You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
<pclass="firstline">Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.</p>
<pclass="firstline">Validates a trust state, that the target domain is reachable, and that the target domain is able to accept incoming trust requests.</p>
name: string, Required. The domain resource name using the form: `projects/{project_id}/locations/global/domains/{domain_name}` (required)
455
+
x__xgafv: string, V1 error format.
456
+
Allowed values
457
+
1 - v1 error format
458
+
2 - v2 error format
459
+
460
+
Returns:
461
+
An object of the form:
462
+
463
+
{ # LDAPSSettings represents the ldaps settings for domain resource. LDAP is the Lightweight Directory Access Protocol, defined in https://tools.ietf.org/html/rfc4511. The settings object configures LDAP over SSL/TLS, whether it is over port 636 or the StartTLS operation. If LDAPSSettings is being changed, it will be placed into the UPDATING state, which indicates that the resource is being reconciled. At this point, Get will reflect an intermediate state.
464
+
"certificate": { # Certificate used to configure LDAPS. # Output only. The certificate used to configure LDAPS. Certificates can be chained with a maximum length of 15.
465
+
"expireTime": "A String", # The certificate expire time.
466
+
"issuingCertificate": # Object with schema name: Certificate # The issuer of this certificate.
467
+
"subject": "A String", # The certificate subject.
468
+
"subjectAlternativeName": [ # The additional hostnames for the domain.
469
+
"A String",
470
+
],
471
+
"thumbprint": "A String", # The certificate thumbprint which uniquely identifies the certificate.
472
+
},
473
+
"certificatePassword": "A String", # Input only. The password used to encrypt the uploaded pfx certificate.
474
+
"certificatePfx": "A String", # Input only. The uploaded PKCS12-formatted certificate to configure LDAPS with. It will enable the domain controllers in this domain to accept LDAPS connections (either LDAP over SSL/TLS or the StartTLS operation). A valid certificate chain must form a valid x.509 certificate chain (or be comprised of a single self-signed certificate. It must be encrypted with either: 1) PBES2 + PBKDF2 + AES256 encryption and SHA256 PRF; or 2) pbeWithSHA1And3-KeyTripleDES-CBC Private key must be included for the leaf / single self-signed certificate. Note: For a fqdn your-example-domain.com, the wildcard fqdn is *.your-example-domain.com. Specifically the leaf certificate must have: - Either a blank subject or a subject with CN matching the wildcard fqdn. - Exactly two SANs - the fqdn and wildcard fqdn. - Encipherment and digital key signature key usages. - Server authentication extended key usage (OID=1.3.6.1.5.5.7.3.1) - Private key must be in one of the following formats: RSA, ECDSA, ED25519. - Private key must have appropriate key length: 2048 for RSA, 256 for ECDSA - Signature algorithm of the leaf certificate cannot be MD2, MD5 or SHA1.
475
+
"name": "A String", # The resource name of the LDAPS settings. Uses the form: `projects/{project}/locations/{location}/domains/{domain}`.
476
+
"state": "A String", # Output only. The current state of this LDAPS settings.
477
+
"updateTime": "A String", # Output only. Last update time.
"updateTime": "A String", # Output only. The last update time.
565
603
}
566
604
567
-
updateMask: string, Required. Mask of fields to update. At least one path must be supplied in this field. The elements of the repeated paths field may only include fields from Domain: * `labels` * `locations` * `authorized_networks`
605
+
updateMask: string, Required. Mask of fields to update. At least one path must be supplied in this field. The elements of the repeated paths field may only include fields from Domain: * `labels` * `locations` * `authorized_networks` * `audit_logs_enabled`
name: string, The resource name of the LDAPS settings. Uses the form: `projects/{project}/locations/{location}/domains/{domain}`. (required)
799
+
body: object, The request body.
800
+
The object takes the form of:
801
+
802
+
{ # LDAPSSettings represents the ldaps settings for domain resource. LDAP is the Lightweight Directory Access Protocol, defined in https://tools.ietf.org/html/rfc4511. The settings object configures LDAP over SSL/TLS, whether it is over port 636 or the StartTLS operation. If LDAPSSettings is being changed, it will be placed into the UPDATING state, which indicates that the resource is being reconciled. At this point, Get will reflect an intermediate state.
803
+
"certificate": { # Certificate used to configure LDAPS. # Output only. The certificate used to configure LDAPS. Certificates can be chained with a maximum length of 15.
804
+
"expireTime": "A String", # The certificate expire time.
805
+
"issuingCertificate": # Object with schema name: Certificate # The issuer of this certificate.
806
+
"subject": "A String", # The certificate subject.
807
+
"subjectAlternativeName": [ # The additional hostnames for the domain.
808
+
"A String",
809
+
],
810
+
"thumbprint": "A String", # The certificate thumbprint which uniquely identifies the certificate.
811
+
},
812
+
"certificatePassword": "A String", # Input only. The password used to encrypt the uploaded pfx certificate.
813
+
"certificatePfx": "A String", # Input only. The uploaded PKCS12-formatted certificate to configure LDAPS with. It will enable the domain controllers in this domain to accept LDAPS connections (either LDAP over SSL/TLS or the StartTLS operation). A valid certificate chain must form a valid x.509 certificate chain (or be comprised of a single self-signed certificate. It must be encrypted with either: 1) PBES2 + PBKDF2 + AES256 encryption and SHA256 PRF; or 2) pbeWithSHA1And3-KeyTripleDES-CBC Private key must be included for the leaf / single self-signed certificate. Note: For a fqdn your-example-domain.com, the wildcard fqdn is *.your-example-domain.com. Specifically the leaf certificate must have: - Either a blank subject or a subject with CN matching the wildcard fqdn. - Exactly two SANs - the fqdn and wildcard fqdn. - Encipherment and digital key signature key usages. - Server authentication extended key usage (OID=1.3.6.1.5.5.7.3.1) - Private key must be in one of the following formats: RSA, ECDSA, ED25519. - Private key must have appropriate key length: 2048 for RSA, 256 for ECDSA - Signature algorithm of the leaf certificate cannot be MD2, MD5 or SHA1.
814
+
"name": "A String", # The resource name of the LDAPS settings. Uses the form: `projects/{project}/locations/{location}/domains/{domain}`.
815
+
"state": "A String", # Output only. The current state of this LDAPS settings.
816
+
"updateTime": "A String", # Output only. Last update time.
817
+
}
818
+
819
+
updateMask: string, Required. Mask of fields to update. At least one path must be supplied in this field. For the `FieldMask` definition, see https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#fieldmask
820
+
x__xgafv: string, V1 error format.
821
+
Allowed values
822
+
1 - v1 error format
823
+
2 - v2 error format
824
+
825
+
Returns:
826
+
An object of the form:
827
+
828
+
{ # This resource represents a long-running operation that is the result of a network API call.
829
+
"done": True or False, # If the value is `false`, it means the operation is still in progress. If `true`, the operation is completed, and either `error` or `response` is available.
830
+
"error": { # The `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. It is used by [gRPC](https://github.com/grpc). Each `Status` message contains three pieces of data: error code, error message, and error details. You can find out more about this error model and how to work with it in the [API Design Guide](https://cloud.google.com/apis/design/errors). # The error result of the operation in case of failure or cancellation.
831
+
"code": 42, # The status code, which should be an enum value of google.rpc.Code.
832
+
"details": [ # A list of messages that carry the error details. There is a common set of message types for APIs to use.
833
+
{
834
+
"a_key": "", # Properties of the object. Contains field @type with type URL.
835
+
},
836
+
],
837
+
"message": "A String", # A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
838
+
},
839
+
"metadata": { # Service-specific metadata associated with the operation. It typically contains progress information and common metadata such as create time. Some services might not provide such metadata. Any method that returns a long-running operation should document the metadata type, if any.
840
+
"a_key": "", # Properties of the object. Contains field @type with type URL.
841
+
},
842
+
"name": "A String", # The server-assigned name, which is only unique within the same service that originally returns it. If you use the default HTTP mapping, the `name` should be a resource name ending with `operations/{unique_id}`.
843
+
"response": { # The normal response of the operation in case of success. If the original method returns no data on success, such as `Delete`, the response is `google.protobuf.Empty`. If the original method is standard `Get`/`Create`/`Update`, the response should be the resource. For other methods, the response should have the type `XxxResponse`, where `Xxx` is the original method name. For example, if the original method name is `TakeSnapshot()`, the inferred response type is `TakeSnapshotResponse`.
844
+
"a_key": "", # Properties of the object. Contains field @type with type URL.
0 commit comments