Reference documentation and code samples for the Google Cloud Network Security V1 Client class RequestSource.
Describes the properties of a single source.
Generated from protobuf message google.cloud.networksecurity.v1.AuthzPolicy.AuthzRule.From.RequestSource
Namespace
Google \ Cloud \ NetworkSecurity \ V1 \ AuthzPolicy \ AuthzRule \ FromMethods
__construct
Constructor.
| Parameters | |
|---|---|
| Name | Description |
data |
array
Optional. Data for populating the Message object. |
↳ principals |
array<Google\Cloud\NetworkSecurity\V1\AuthzPolicy\AuthzRule\Principal>
Optional. A list of identities derived from the client's certificate. This field will not match on a request unless frontend mutual TLS is enabled for the forwarding rule or Gateway and the client certificate has been successfully validated by mTLS. Each identity is a string whose value is matched against a list of URI SANs, DNS Name SANs, or the common name in the client's certificate. A match happens when any principal matches with the rule. Limited to 50 principals per Authorization Policy for regional internal Application Load Balancers, regional external Application Load Balancers, cross-region internal Application Load Balancers, and Cloud Service Mesh. This field is not supported for global external Application Load Balancers. |
↳ ip_blocks |
array<Google\Cloud\NetworkSecurity\V1\AuthzPolicy\AuthzRule\IpBlock>
Optional. A list of IP addresses or IP address ranges to match against the source IP address of the request. Limited to 10 ip_blocks per Authorization Policy |
↳ resources |
array<Google\Cloud\NetworkSecurity\V1\AuthzPolicy\AuthzRule\RequestResource>
Optional. A list of resources to match against the resource of the source VM of a request. Limited to 10 resources per Authorization Policy. |
getPrincipals
Optional. A list of identities derived from the client's certificate.
This field will not match on a request unless frontend mutual TLS is enabled for the forwarding rule or Gateway and the client certificate has been successfully validated by mTLS. Each identity is a string whose value is matched against a list of URI SANs, DNS Name SANs, or the common name in the client's certificate. A match happens when any principal matches with the rule. Limited to 50 principals per Authorization Policy for regional internal Application Load Balancers, regional external Application Load Balancers, cross-region internal Application Load Balancers, and Cloud Service Mesh. This field is not supported for global external Application Load Balancers.
| Returns | |
|---|---|
| Type | Description |
Google\Protobuf\RepeatedField<Google\Cloud\NetworkSecurity\V1\AuthzPolicy\AuthzRule\Principal> |
|
setPrincipals
Optional. A list of identities derived from the client's certificate.
This field will not match on a request unless frontend mutual TLS is enabled for the forwarding rule or Gateway and the client certificate has been successfully validated by mTLS. Each identity is a string whose value is matched against a list of URI SANs, DNS Name SANs, or the common name in the client's certificate. A match happens when any principal matches with the rule. Limited to 50 principals per Authorization Policy for regional internal Application Load Balancers, regional external Application Load Balancers, cross-region internal Application Load Balancers, and Cloud Service Mesh. This field is not supported for global external Application Load Balancers.
| Parameter | |
|---|---|
| Name | Description |
var |
array<Google\Cloud\NetworkSecurity\V1\AuthzPolicy\AuthzRule\Principal>
|
| Returns | |
|---|---|
| Type | Description |
$this |
|
getIpBlocks
Optional. A list of IP addresses or IP address ranges to match against the source IP address of the request. Limited to 10 ip_blocks per Authorization Policy
| Returns | |
|---|---|
| Type | Description |
Google\Protobuf\RepeatedField<Google\Cloud\NetworkSecurity\V1\AuthzPolicy\AuthzRule\IpBlock> |
|
setIpBlocks
Optional. A list of IP addresses or IP address ranges to match against the source IP address of the request. Limited to 10 ip_blocks per Authorization Policy
| Parameter | |
|---|---|
| Name | Description |
var |
array<Google\Cloud\NetworkSecurity\V1\AuthzPolicy\AuthzRule\IpBlock>
|
| Returns | |
|---|---|
| Type | Description |
$this |
|
getResources
Optional. A list of resources to match against the resource of the source VM of a request. Limited to 10 resources per Authorization Policy.
| Returns | |
|---|---|
| Type | Description |
Google\Protobuf\RepeatedField<Google\Cloud\NetworkSecurity\V1\AuthzPolicy\AuthzRule\RequestResource> |
|
setResources
Optional. A list of resources to match against the resource of the source VM of a request. Limited to 10 resources per Authorization Policy.
| Parameter | |
|---|---|
| Name | Description |
var |
array<Google\Cloud\NetworkSecurity\V1\AuthzPolicy\AuthzRule\RequestResource>
|
| Returns | |
|---|---|
| Type | Description |
$this |
|