Hi there! Are you looking for the official Deno documentation? Try docs.deno.com for all your Deno learning needs.

GoogleCloudOrgpolicyV2PolicySpecPolicyRule

import type { GoogleCloudOrgpolicyV2PolicySpecPolicyRule } from "https://googleapis.deno.dev/v1/policysimulator:v1.ts";

A rule used to express this policy.

interface GoogleCloudOrgpolicyV2PolicySpecPolicyRule {
allowAll?: boolean;
condition?: GoogleTypeExpr;
denyAll?: boolean;
enforce?: boolean;
parameters?: {
[key: string]: any;
};
values?: GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValues;
}

§Properties

§
allowAll?: boolean
[src]

Setting this to true means that all values are allowed. This field can be set only in policies for list constraints.

§
condition?: GoogleTypeExpr
[src]

A condition that determines whether this rule is used to evaluate the policy. When set, the google.type.Expr.expression field must contain 1 to 10 subexpressions, joined by the || or && operators. Each subexpression must use the resource.matchTag(), resource.matchTagId(), resource.hasTagKey(), or resource.hasTagKeyId() Common Expression Language (CEL) function. The resource.matchTag() function takes the following arguments: * key_name: the namespaced name of the tag key, with the organization ID and a slash (/) as a prefix; for example, 123456789012/environment * value_name: the short name of the tag value For example: resource.matchTag('123456789012/environment, 'prod') The resource.matchTagId() function takes the following arguments: * key_id: the permanent ID of the tag key; for example, tagKeys/123456789012 * value_id: the permanent ID of the tag value; for example, tagValues/567890123456 For example: resource.matchTagId('tagKeys/123456789012', 'tagValues/567890123456') The resource.hasTagKey() function takes the following argument: * key_name: the namespaced name of the tag key, with the organization ID and a slash (/) as a prefix; for example, 123456789012/environment For example: resource.hasTagKey('123456789012/environment') The resource.hasTagKeyId() function takes the following arguments: * key_id: the permanent ID of the tag key; for example, tagKeys/123456789012 For example: resource.hasTagKeyId('tagKeys/123456789012')

§
denyAll?: boolean
[src]

Setting this to true means that all values are denied. This field can be set only in policies for list constraints.

§
enforce?: boolean
[src]

If true, then the policy is enforced. If false, then any configuration is acceptable. This field can be set in policies for boolean constraints, custom constraints and managed constraints.

§
parameters?: {
[key: string]: any;
}
[src]

Optional. Required for managed constraints if parameters are defined. Passes parameter values when policy enforcement is enabled. Ensure that parameter value types match those defined in the constraint definition. For example: { "allowedLocations" : ["us-east1", "us-west1"], "allowAll" : true }

§
values?: GoogleCloudOrgpolicyV2PolicySpecPolicyRuleStringValues
[src]

List of values to be used for this policy rule. This field can be set only in policies for list constraints.