GoogleCloudOrgpolicyV2Constraint
import type { GoogleCloudOrgpolicyV2Constraint } from "https://googleapis.deno.dev/v1/orgpolicy:v2.ts";
A constraint describes a way to restrict resource's configuration. For
example, you could enforce a constraint that controls which Google Cloud
services can be activated across an organization, or whether a Compute Engine
instance can have serial port connections established. Constraints can be
configured by the organization policy administrator to fit the needs of the
organization by setting a policy that includes constraints at different
locations in the organization's resource hierarchy. Policies are inherited
down the resource hierarchy from higher levels, but can also be overridden.
For details about the inheritance rules, see Policy
. Constraints have a
default behavior determined by the constraint_default
field, which is the
enforcement behavior that is used in the absence of a policy being defined or
inherited for the resource in question.
§Properties
Defines this constraint as being a boolean constraint.
The evaluation behavior of this constraint in the absence of a policy.
Detailed description of what this constraint controls as well as how and where it is enforced. Mutable.
Managed constraint and canned constraint sometimes can have equivalents. This field is used to store the equivalent constraint name.
Defines this constraint as being a list constraint.
Immutable. The resource name of the constraint. Must be in one of the
following forms: *
projects/{project_number}/constraints/{constraint_name}
*
folders/{folder_id}/constraints/{constraint_name}
*
organizations/{organization_id}/constraints/{constraint_name}
For
example, "/projects/123/constraints/compute.disableSerialPortAccess".