Hi there! Are you looking for the official Deno documentation? Try docs.deno.com for all your Deno learning needs.

GoogleCloudAssuredworkloadsV1Workload

import type { GoogleCloudAssuredworkloadsV1Workload } from "https://googleapis.deno.dev/v1/assuredworkloads:v1.ts";

A Workload object for managing highly regulated workloads of cloud customers.

interface GoogleCloudAssuredworkloadsV1Workload {
billingAccount?: string;
complianceRegime?:
| "COMPLIANCE_REGIME_UNSPECIFIED"
| "IL4"
| "CJIS"
| "FEDRAMP_HIGH"
| "FEDRAMP_MODERATE"
| "US_REGIONAL_ACCESS"
| "HIPAA"
| "HITRUST"
| "EU_REGIONS_AND_SUPPORT"
| "CA_REGIONS_AND_SUPPORT"
| "ITAR"
| "AU_REGIONS_AND_US_SUPPORT"
| "ASSURED_WORKLOADS_FOR_PARTNERS"
| "ISR_REGIONS"
| "ISR_REGIONS_AND_SUPPORT"
| "CA_PROTECTED_B"
| "IL5"
| "IL2"
| "JP_REGIONS_AND_SUPPORT"
| "KSA_REGIONS_AND_SUPPORT_WITH_SOVEREIGNTY_CONTROLS"
| "REGIONAL_CONTROLS"
| "FREE_REGIONS";
readonly complianceStatus?: GoogleCloudAssuredworkloadsV1WorkloadComplianceStatus;
readonly compliantButDisallowedServices?: string[];
readonly createTime?: Date;
displayName?: string;
readonly ekmProvisioningResponse?: GoogleCloudAssuredworkloadsV1WorkloadEkmProvisioningResponse;
enableSovereignControls?: boolean;
etag?: string;
readonly kajEnrollmentState?: "KAJ_ENROLLMENT_STATE_UNSPECIFIED" | "KAJ_ENROLLMENT_STATE_PENDING" | "KAJ_ENROLLMENT_STATE_COMPLETE";
kmsSettings?: GoogleCloudAssuredworkloadsV1WorkloadKMSSettings;
labels?: {
[key: string]: string;
};
name?: string;
partner?:
| "PARTNER_UNSPECIFIED"
| "LOCAL_CONTROLS_BY_S3NS"
| "SOVEREIGN_CONTROLS_BY_T_SYSTEMS"
| "SOVEREIGN_CONTROLS_BY_SIA_MINSAIT"
| "SOVEREIGN_CONTROLS_BY_PSN";
partnerPermissions?: GoogleCloudAssuredworkloadsV1WorkloadPartnerPermissions;
provisionedResourcesParent?: string;
readonly resourceMonitoringEnabled?: boolean;
readonly resources?: GoogleCloudAssuredworkloadsV1WorkloadResourceInfo[];
resourceSettings?: GoogleCloudAssuredworkloadsV1WorkloadResourceSettings[];
readonly saaEnrollmentResponse?: GoogleCloudAssuredworkloadsV1WorkloadSaaEnrollmentResponse;
violationNotificationsEnabled?: boolean;
}

§Properties

§
billingAccount?: string
[src]

Optional. The billing account used for the resources which are direct children of workload. This billing account is initially associated with the resources created as part of Workload creation. After the initial creation of these resources, the customer can change the assigned billing account. The resource name has the form billingAccounts/{billing_account_id}. For example, billingAccounts/012345-567890-ABCDEF.

§
complianceRegime?: "COMPLIANCE_REGIME_UNSPECIFIED" | "IL4" | "CJIS" | "FEDRAMP_HIGH" | "FEDRAMP_MODERATE" | "US_REGIONAL_ACCESS" | "HIPAA" | "HITRUST" | "EU_REGIONS_AND_SUPPORT" | "CA_REGIONS_AND_SUPPORT" | "ITAR" | "AU_REGIONS_AND_US_SUPPORT" | "ASSURED_WORKLOADS_FOR_PARTNERS" | "ISR_REGIONS" | "ISR_REGIONS_AND_SUPPORT" | "CA_PROTECTED_B" | "IL5" | "IL2" | "JP_REGIONS_AND_SUPPORT" | "KSA_REGIONS_AND_SUPPORT_WITH_SOVEREIGNTY_CONTROLS" | "REGIONAL_CONTROLS" | "FREE_REGIONS"
[src]

Required. Immutable. Compliance Regime associated with this workload.

§
readonly complianceStatus?: GoogleCloudAssuredworkloadsV1WorkloadComplianceStatus
[src]

Output only. Count of active Violations in the Workload.

§
readonly compliantButDisallowedServices?: string[]
[src]

Output only. Urls for services which are compliant for this Assured Workload, but which are currently disallowed by the ResourceUsageRestriction org policy. Invoke RestrictAllowedResources endpoint to allow your project developers to use these services in their environment.

§
readonly createTime?: Date
[src]

Output only. Immutable. The Workload creation timestamp.

§
displayName?: string
[src]

Required. The user-assigned display name of the Workload. When present it must be between 4 to 30 characters. Allowed characters are: lowercase and uppercase letters, numbers, hyphen, and spaces. Example: My Workload

§
readonly ekmProvisioningResponse?: GoogleCloudAssuredworkloadsV1WorkloadEkmProvisioningResponse
[src]

Output only. Represents the Ekm Provisioning State of the given workload.

§
enableSovereignControls?: boolean
[src]

Optional. Indicates the sovereignty status of the given workload. Currently meant to be used by Europe/Canada customers.

§
etag?: string
[src]

Optional. ETag of the workload, it is calculated on the basis of the Workload contents. It will be used in Update & Delete operations.

§
readonly kajEnrollmentState?: "KAJ_ENROLLMENT_STATE_UNSPECIFIED" | "KAJ_ENROLLMENT_STATE_PENDING" | "KAJ_ENROLLMENT_STATE_COMPLETE"
[src]

Output only. Represents the KAJ enrollment state of the given workload.

§
kmsSettings?: GoogleCloudAssuredworkloadsV1WorkloadKMSSettings
[src]

Input only. Settings used to create a CMEK crypto key. When set, a project with a KMS CMEK key is provisioned. This field is deprecated as of Feb 28, 2022. In order to create a Keyring, callers should specify, ENCRYPTION_KEYS_PROJECT or KEYRING in ResourceSettings.resource_type field.

§
labels?: {
[key: string]: string;
}
[src]

Optional. Labels applied to the workload.

§
name?: string
[src]

Optional. The resource name of the workload. Format: organizations/{organization}/locations/{location}/workloads/{workload} Read-only.

§
partner?: "PARTNER_UNSPECIFIED" | "LOCAL_CONTROLS_BY_S3NS" | "SOVEREIGN_CONTROLS_BY_T_SYSTEMS" | "SOVEREIGN_CONTROLS_BY_SIA_MINSAIT" | "SOVEREIGN_CONTROLS_BY_PSN"
[src]

Optional. Partner regime associated with this workload.

§
partnerPermissions?: GoogleCloudAssuredworkloadsV1WorkloadPartnerPermissions
[src]

Optional. Permissions granted to the AW Partner SA account for the customer workload

§
provisionedResourcesParent?: string
[src]

Input only. The parent resource for the resources managed by this Assured Workload. May be either empty or a folder resource which is a child of the Workload parent. If not specified all resources are created under the parent organization. Format: folders/{folder_id}

§
readonly resourceMonitoringEnabled?: boolean
[src]

Output only. Indicates whether resource monitoring is enabled for workload or not. It is true when Resource feed is subscribed to AWM topic and AWM Service Agent Role is binded to AW Service Account for resource Assured workload.

§
readonly resources?: GoogleCloudAssuredworkloadsV1WorkloadResourceInfo[]
[src]

Output only. The resources associated with this workload. These resources will be created when creating the workload. If any of the projects already exist, the workload creation will fail. Always read only.

§
resourceSettings?: GoogleCloudAssuredworkloadsV1WorkloadResourceSettings[]
[src]

Input only. Resource properties that are used to customize workload resources. These properties (such as custom project id) will be used to create workload resources if possible. This field is optional.

§
readonly saaEnrollmentResponse?: GoogleCloudAssuredworkloadsV1WorkloadSaaEnrollmentResponse
[src]

Output only. Represents the SAA enrollment response of the given workload. SAA enrollment response is queried during GetWorkload call. In failure cases, user friendly error message is shown in SAA details page.

§
violationNotificationsEnabled?: boolean
[src]

Optional. Indicates whether the e-mail notification for a violation is enabled for a workload. This value will be by default True, and if not present will be considered as true. This should only be updated via updateWorkload call. Any Changes to this field during the createWorkload call will not be honored. This will always be true while creating the workload.