GoogleCloudOrgpolicyV2Constraint
import type { GoogleCloudOrgpolicyV2Constraint } from "https://googleapis.deno.dev/v1/orgpolicy:v2.ts";A constraint describes a way to restrict a resource's configuration. For
example, you could enforce a constraint that controls which Google Cloud
services can be activated across an organization, or whether a Compute Engine
instance can have serial port connections established. Constraints can be
configured by the organization policy administrator to fit the needs of the
organization by setting a policy that includes constraints at different
locations in the organization's resource hierarchy. Policies are inherited
down the resource hierarchy from higher levels, but can also be overridden.
For details about the inheritance rules, see Policy. Constraints have a
default behavior determined by the constraint_default field, which is the
enforcement behavior that is used in the absence of a policy being defined or
inherited for the resource in question.
§Properties
Defines this constraint as being a boolean constraint.
The evaluation behavior of this constraint in the absence of a policy.
Detailed description of what this constraint controls as well as how and where it is enforced. Mutable.
Defines the equivalent constraint name, if it exists. Managed constraints can have an equivalent legacy managed constraint, and legacy managed constraints can have an equivalent managed constraint. For example, "constraints/iam.disableServiceAccountKeyUpload" is equivalent to "constraints/iam.managed.disableServiceAccountKeyUpload".
Defines this constraint as being a list constraint.
Immutable. The resource name of the constraint. Must be in one of the
following forms: *
projects/{project_number}/constraints/{constraint_name} *
folders/{folder_id}/constraints/{constraint_name} *
organizations/{organization_id}/constraints/{constraint_name} For
example, "/projects/123/constraints/compute.disableSerialPortAccess".