diff --git a/.github/.OwlBot.lock.yaml b/.github/.OwlBot.lock.yaml index 1ce6085..58fcbee 100644 --- a/.github/.OwlBot.lock.yaml +++ b/.github/.OwlBot.lock.yaml @@ -13,5 +13,5 @@ # limitations under the License. docker: image: gcr.io/cloud-devrel-public-resources/owlbot-python:latest - digest: sha256:e7bb19d47c13839fe8c147e50e02e8b6cf5da8edd1af8b82208cd6f66cc2829c -# created: 2022-07-05T18:31:20.838186805Z + digest: sha256:c8878270182edaab99f2927969d4f700c3af265accd472c3425deedff2b7fd93 +# created: 2022-07-14T01:58:16.015625351Z diff --git a/.repo-metadata.json b/.repo-metadata.json index 40c272a..7710578 100644 --- a/.repo-metadata.json +++ b/.repo-metadata.json @@ -10,7 +10,7 @@ "repo": "googleapis/python-network-security", "distribution_name": "google-cloud-network-security", "api_id": "networksecurity.googleapis.com", - "default_version": "v1beta1", + "default_version": "v1", "codeowner_team": "", "api_shortname": "networksecurity" } diff --git a/CHANGELOG.md b/CHANGELOG.md index 11e01cc..0e9ccbf 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,17 @@ # Changelog +## [0.6.0](https://github.com/googleapis/python-network-security/compare/v0.5.0...v0.6.0) (2022-07-16) + + +### Features + +* add network_security_v1 ([c2694d8](https://github.com/googleapis/python-network-security/commit/c2694d8c07a92fed69a6b4363fc2c70ff4d14022)) + + +### Bug Fixes + +* update default import for network_security to network_security_v1 ([c2694d8](https://github.com/googleapis/python-network-security/commit/c2694d8c07a92fed69a6b4363fc2c70ff4d14022)) + ## [0.5.0](https://github.com/googleapis/python-network-security/compare/v0.4.2...v0.5.0) (2022-07-13) diff --git a/README.rst b/README.rst index cd93a59..3057bef 100644 --- a/README.rst +++ b/README.rst @@ -55,18 +55,22 @@ Code samples and snippets live in the `samples/` folder. Supported Python Versions ^^^^^^^^^^^^^^^^^^^^^^^^^ -Our client libraries are compatible with all current [active](https://devguide.python.org/devcycle/#in-development-main-branch) and [maintenance](https://devguide.python.org/devcycle/#maintenance-branches) versions of +Our client libraries are compatible with all current `active`_ and `maintenance`_ versions of Python. Python >= 3.7 +.. _active: https://devguide.python.org/devcycle/#in-development-main-branch +.. _maintenance: https://devguide.python.org/devcycle/#maintenance-branches + Unsupported Python Versions ^^^^^^^^^^^^^^^^^^^^^^^^^^^ Python <= 3.6 -If you are using an [end-of-life](https://devguide.python.org/devcycle/#end-of-life-branches) +If you are using an `end-of-life`_ version of Python, we recommend that you update as soon as possible to an actively supported version. +.. _end-of-life: https://devguide.python.org/devcycle/#end-of-life-branches Mac/Linux ^^^^^^^^^ diff --git a/docs/index.rst b/docs/index.rst index 85a095f..1154cb8 100644 --- a/docs/index.rst +++ b/docs/index.rst @@ -2,6 +2,17 @@ .. include:: multiprocessing.rst +This package includes clients for multiple versions of Network Security. +By default, you will get version ``network_security_v1``. + + +API Reference +------------- +.. toctree:: + :maxdepth: 2 + + network_security_v1/services + network_security_v1/types API Reference ------------- diff --git a/docs/network_security_v1/network_security.rst b/docs/network_security_v1/network_security.rst new file mode 100644 index 0000000..aa99d3f --- /dev/null +++ b/docs/network_security_v1/network_security.rst @@ -0,0 +1,10 @@ +NetworkSecurity +--------------------------------- + +.. automodule:: google.cloud.network_security_v1.services.network_security + :members: + :inherited-members: + +.. automodule:: google.cloud.network_security_v1.services.network_security.pagers + :members: + :inherited-members: diff --git a/docs/network_security_v1/services.rst b/docs/network_security_v1/services.rst new file mode 100644 index 0000000..3dadbd0 --- /dev/null +++ b/docs/network_security_v1/services.rst @@ -0,0 +1,6 @@ +Services for Google Cloud Network Security v1 API +================================================= +.. toctree:: + :maxdepth: 2 + + network_security diff --git a/docs/network_security_v1/types.rst b/docs/network_security_v1/types.rst new file mode 100644 index 0000000..268558f --- /dev/null +++ b/docs/network_security_v1/types.rst @@ -0,0 +1,7 @@ +Types for Google Cloud Network Security v1 API +============================================== + +.. automodule:: google.cloud.network_security_v1.types + :members: + :undoc-members: + :show-inheritance: diff --git a/google/cloud/network_security/__init__.py b/google/cloud/network_security/__init__.py index 241d9c0..120c018 100644 --- a/google/cloud/network_security/__init__.py +++ b/google/cloud/network_security/__init__.py @@ -14,13 +14,13 @@ # limitations under the License. # -from google.cloud.network_security_v1beta1.services.network_security.async_client import ( +from google.cloud.network_security_v1.services.network_security.async_client import ( NetworkSecurityAsyncClient, ) -from google.cloud.network_security_v1beta1.services.network_security.client import ( +from google.cloud.network_security_v1.services.network_security.client import ( NetworkSecurityClient, ) -from google.cloud.network_security_v1beta1.types.authorization_policy import ( +from google.cloud.network_security_v1.types.authorization_policy import ( AuthorizationPolicy, CreateAuthorizationPolicyRequest, DeleteAuthorizationPolicyRequest, @@ -29,7 +29,7 @@ ListAuthorizationPoliciesResponse, UpdateAuthorizationPolicyRequest, ) -from google.cloud.network_security_v1beta1.types.client_tls_policy import ( +from google.cloud.network_security_v1.types.client_tls_policy import ( ClientTlsPolicy, CreateClientTlsPolicyRequest, DeleteClientTlsPolicyRequest, @@ -38,8 +38,8 @@ ListClientTlsPoliciesResponse, UpdateClientTlsPolicyRequest, ) -from google.cloud.network_security_v1beta1.types.common import OperationMetadata -from google.cloud.network_security_v1beta1.types.server_tls_policy import ( +from google.cloud.network_security_v1.types.common import OperationMetadata +from google.cloud.network_security_v1.types.server_tls_policy import ( CreateServerTlsPolicyRequest, DeleteServerTlsPolicyRequest, GetServerTlsPolicyRequest, @@ -48,7 +48,7 @@ ServerTlsPolicy, UpdateServerTlsPolicyRequest, ) -from google.cloud.network_security_v1beta1.types.tls import ( +from google.cloud.network_security_v1.types.tls import ( CertificateProvider, CertificateProviderInstance, GrpcEndpoint, diff --git a/google/cloud/network_security_v1/__init__.py b/google/cloud/network_security_v1/__init__.py new file mode 100644 index 0000000..73985dc --- /dev/null +++ b/google/cloud/network_security_v1/__init__.py @@ -0,0 +1,82 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# + +from .services.network_security import NetworkSecurityAsyncClient, NetworkSecurityClient +from .types.authorization_policy import ( + AuthorizationPolicy, + CreateAuthorizationPolicyRequest, + DeleteAuthorizationPolicyRequest, + GetAuthorizationPolicyRequest, + ListAuthorizationPoliciesRequest, + ListAuthorizationPoliciesResponse, + UpdateAuthorizationPolicyRequest, +) +from .types.client_tls_policy import ( + ClientTlsPolicy, + CreateClientTlsPolicyRequest, + DeleteClientTlsPolicyRequest, + GetClientTlsPolicyRequest, + ListClientTlsPoliciesRequest, + ListClientTlsPoliciesResponse, + UpdateClientTlsPolicyRequest, +) +from .types.common import OperationMetadata +from .types.server_tls_policy import ( + CreateServerTlsPolicyRequest, + DeleteServerTlsPolicyRequest, + GetServerTlsPolicyRequest, + ListServerTlsPoliciesRequest, + ListServerTlsPoliciesResponse, + ServerTlsPolicy, + UpdateServerTlsPolicyRequest, +) +from .types.tls import ( + CertificateProvider, + CertificateProviderInstance, + GrpcEndpoint, + ValidationCA, +) + +__all__ = ( + "NetworkSecurityAsyncClient", + "AuthorizationPolicy", + "CertificateProvider", + "CertificateProviderInstance", + "ClientTlsPolicy", + "CreateAuthorizationPolicyRequest", + "CreateClientTlsPolicyRequest", + "CreateServerTlsPolicyRequest", + "DeleteAuthorizationPolicyRequest", + "DeleteClientTlsPolicyRequest", + "DeleteServerTlsPolicyRequest", + "GetAuthorizationPolicyRequest", + "GetClientTlsPolicyRequest", + "GetServerTlsPolicyRequest", + "GrpcEndpoint", + "ListAuthorizationPoliciesRequest", + "ListAuthorizationPoliciesResponse", + "ListClientTlsPoliciesRequest", + "ListClientTlsPoliciesResponse", + "ListServerTlsPoliciesRequest", + "ListServerTlsPoliciesResponse", + "NetworkSecurityClient", + "OperationMetadata", + "ServerTlsPolicy", + "UpdateAuthorizationPolicyRequest", + "UpdateClientTlsPolicyRequest", + "UpdateServerTlsPolicyRequest", + "ValidationCA", +) diff --git a/google/cloud/network_security_v1/gapic_metadata.json b/google/cloud/network_security_v1/gapic_metadata.json new file mode 100644 index 0000000..51d7920 --- /dev/null +++ b/google/cloud/network_security_v1/gapic_metadata.json @@ -0,0 +1,173 @@ + { + "comment": "This file maps proto services/RPCs to the corresponding library clients/methods", + "language": "python", + "libraryPackage": "google.cloud.network_security_v1", + "protoPackage": "google.cloud.networksecurity.v1", + "schema": "1.0", + "services": { + "NetworkSecurity": { + "clients": { + "grpc": { + "libraryClient": "NetworkSecurityClient", + "rpcs": { + "CreateAuthorizationPolicy": { + "methods": [ + "create_authorization_policy" + ] + }, + "CreateClientTlsPolicy": { + "methods": [ + "create_client_tls_policy" + ] + }, + "CreateServerTlsPolicy": { + "methods": [ + "create_server_tls_policy" + ] + }, + "DeleteAuthorizationPolicy": { + "methods": [ + "delete_authorization_policy" + ] + }, + "DeleteClientTlsPolicy": { + "methods": [ + "delete_client_tls_policy" + ] + }, + "DeleteServerTlsPolicy": { + "methods": [ + "delete_server_tls_policy" + ] + }, + "GetAuthorizationPolicy": { + "methods": [ + "get_authorization_policy" + ] + }, + "GetClientTlsPolicy": { + "methods": [ + "get_client_tls_policy" + ] + }, + "GetServerTlsPolicy": { + "methods": [ + "get_server_tls_policy" + ] + }, + "ListAuthorizationPolicies": { + "methods": [ + "list_authorization_policies" + ] + }, + "ListClientTlsPolicies": { + "methods": [ + "list_client_tls_policies" + ] + }, + "ListServerTlsPolicies": { + "methods": [ + "list_server_tls_policies" + ] + }, + "UpdateAuthorizationPolicy": { + "methods": [ + "update_authorization_policy" + ] + }, + "UpdateClientTlsPolicy": { + "methods": [ + "update_client_tls_policy" + ] + }, + "UpdateServerTlsPolicy": { + "methods": [ + "update_server_tls_policy" + ] + } + } + }, + "grpc-async": { + "libraryClient": "NetworkSecurityAsyncClient", + "rpcs": { + "CreateAuthorizationPolicy": { + "methods": [ + "create_authorization_policy" + ] + }, + "CreateClientTlsPolicy": { + "methods": [ + "create_client_tls_policy" + ] + }, + "CreateServerTlsPolicy": { + "methods": [ + "create_server_tls_policy" + ] + }, + "DeleteAuthorizationPolicy": { + "methods": [ + "delete_authorization_policy" + ] + }, + "DeleteClientTlsPolicy": { + "methods": [ + "delete_client_tls_policy" + ] + }, + "DeleteServerTlsPolicy": { + "methods": [ + "delete_server_tls_policy" + ] + }, + "GetAuthorizationPolicy": { + "methods": [ + "get_authorization_policy" + ] + }, + "GetClientTlsPolicy": { + "methods": [ + "get_client_tls_policy" + ] + }, + "GetServerTlsPolicy": { + "methods": [ + "get_server_tls_policy" + ] + }, + "ListAuthorizationPolicies": { + "methods": [ + "list_authorization_policies" + ] + }, + "ListClientTlsPolicies": { + "methods": [ + "list_client_tls_policies" + ] + }, + "ListServerTlsPolicies": { + "methods": [ + "list_server_tls_policies" + ] + }, + "UpdateAuthorizationPolicy": { + "methods": [ + "update_authorization_policy" + ] + }, + "UpdateClientTlsPolicy": { + "methods": [ + "update_client_tls_policy" + ] + }, + "UpdateServerTlsPolicy": { + "methods": [ + "update_server_tls_policy" + ] + } + } + } + } + } + } +} diff --git a/google/cloud/network_security_v1/py.typed b/google/cloud/network_security_v1/py.typed new file mode 100644 index 0000000..41b3c30 --- /dev/null +++ b/google/cloud/network_security_v1/py.typed @@ -0,0 +1,2 @@ +# Marker file for PEP 561. +# The google-cloud-network-security package uses inline types. diff --git a/google/cloud/network_security_v1/services/__init__.py b/google/cloud/network_security_v1/services/__init__.py new file mode 100644 index 0000000..e8e1c38 --- /dev/null +++ b/google/cloud/network_security_v1/services/__init__.py @@ -0,0 +1,15 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# diff --git a/google/cloud/network_security_v1/services/network_security/__init__.py b/google/cloud/network_security_v1/services/network_security/__init__.py new file mode 100644 index 0000000..a6eef08 --- /dev/null +++ b/google/cloud/network_security_v1/services/network_security/__init__.py @@ -0,0 +1,22 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +from .async_client import NetworkSecurityAsyncClient +from .client import NetworkSecurityClient + +__all__ = ( + "NetworkSecurityClient", + "NetworkSecurityAsyncClient", +) diff --git a/google/cloud/network_security_v1/services/network_security/async_client.py b/google/cloud/network_security_v1/services/network_security/async_client.py new file mode 100644 index 0000000..76c06e6 --- /dev/null +++ b/google/cloud/network_security_v1/services/network_security/async_client.py @@ -0,0 +1,2085 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +from collections import OrderedDict +import functools +import re +from typing import Dict, Mapping, Optional, Sequence, Tuple, Type, Union + +from google.api_core import exceptions as core_exceptions +from google.api_core import gapic_v1 +from google.api_core import retry as retries +from google.api_core.client_options import ClientOptions +from google.auth import credentials as ga_credentials # type: ignore +from google.oauth2 import service_account # type: ignore +import pkg_resources + +try: + OptionalRetry = Union[retries.Retry, gapic_v1.method._MethodDefault] +except AttributeError: # pragma: NO COVER + OptionalRetry = Union[retries.Retry, object] # type: ignore + +from google.api_core import operation # type: ignore +from google.api_core import operation_async # type: ignore +from google.protobuf import empty_pb2 # type: ignore +from google.protobuf import field_mask_pb2 # type: ignore +from google.protobuf import timestamp_pb2 # type: ignore + +from google.cloud.network_security_v1.services.network_security import pagers +from google.cloud.network_security_v1.types import ( + authorization_policy as gcn_authorization_policy, +) +from google.cloud.network_security_v1.types import ( + client_tls_policy as gcn_client_tls_policy, +) +from google.cloud.network_security_v1.types import ( + server_tls_policy as gcn_server_tls_policy, +) +from google.cloud.network_security_v1.types import authorization_policy +from google.cloud.network_security_v1.types import client_tls_policy +from google.cloud.network_security_v1.types import common +from google.cloud.network_security_v1.types import server_tls_policy +from google.cloud.network_security_v1.types import tls + +from .client import NetworkSecurityClient +from .transports.base import DEFAULT_CLIENT_INFO, NetworkSecurityTransport +from .transports.grpc_asyncio import NetworkSecurityGrpcAsyncIOTransport + + +class NetworkSecurityAsyncClient: + """Network Security API provides resources to configure + authentication and authorization policies. Refer to per API + resource documentation for more information. + """ + + _client: NetworkSecurityClient + + DEFAULT_ENDPOINT = NetworkSecurityClient.DEFAULT_ENDPOINT + DEFAULT_MTLS_ENDPOINT = NetworkSecurityClient.DEFAULT_MTLS_ENDPOINT + + authorization_policy_path = staticmethod( + NetworkSecurityClient.authorization_policy_path + ) + parse_authorization_policy_path = staticmethod( + NetworkSecurityClient.parse_authorization_policy_path + ) + client_tls_policy_path = staticmethod(NetworkSecurityClient.client_tls_policy_path) + parse_client_tls_policy_path = staticmethod( + NetworkSecurityClient.parse_client_tls_policy_path + ) + server_tls_policy_path = staticmethod(NetworkSecurityClient.server_tls_policy_path) + parse_server_tls_policy_path = staticmethod( + NetworkSecurityClient.parse_server_tls_policy_path + ) + common_billing_account_path = staticmethod( + NetworkSecurityClient.common_billing_account_path + ) + parse_common_billing_account_path = staticmethod( + NetworkSecurityClient.parse_common_billing_account_path + ) + common_folder_path = staticmethod(NetworkSecurityClient.common_folder_path) + parse_common_folder_path = staticmethod( + NetworkSecurityClient.parse_common_folder_path + ) + common_organization_path = staticmethod( + NetworkSecurityClient.common_organization_path + ) + parse_common_organization_path = staticmethod( + NetworkSecurityClient.parse_common_organization_path + ) + common_project_path = staticmethod(NetworkSecurityClient.common_project_path) + parse_common_project_path = staticmethod( + NetworkSecurityClient.parse_common_project_path + ) + common_location_path = staticmethod(NetworkSecurityClient.common_location_path) + parse_common_location_path = staticmethod( + NetworkSecurityClient.parse_common_location_path + ) + + @classmethod + def from_service_account_info(cls, info: dict, *args, **kwargs): + """Creates an instance of this client using the provided credentials + info. + + Args: + info (dict): The service account private key info. + args: Additional arguments to pass to the constructor. + kwargs: Additional arguments to pass to the constructor. + + Returns: + NetworkSecurityAsyncClient: The constructed client. + """ + return NetworkSecurityClient.from_service_account_info.__func__(NetworkSecurityAsyncClient, info, *args, **kwargs) # type: ignore + + @classmethod + def from_service_account_file(cls, filename: str, *args, **kwargs): + """Creates an instance of this client using the provided credentials + file. + + Args: + filename (str): The path to the service account private key json + file. + args: Additional arguments to pass to the constructor. + kwargs: Additional arguments to pass to the constructor. + + Returns: + NetworkSecurityAsyncClient: The constructed client. + """ + return NetworkSecurityClient.from_service_account_file.__func__(NetworkSecurityAsyncClient, filename, *args, **kwargs) # type: ignore + + from_service_account_json = from_service_account_file + + @classmethod + def get_mtls_endpoint_and_cert_source( + cls, client_options: Optional[ClientOptions] = None + ): + """Return the API endpoint and client cert source for mutual TLS. + + The client cert source is determined in the following order: + (1) if `GOOGLE_API_USE_CLIENT_CERTIFICATE` environment variable is not "true", the + client cert source is None. + (2) if `client_options.client_cert_source` is provided, use the provided one; if the + default client cert source exists, use the default one; otherwise the client cert + source is None. + + The API endpoint is determined in the following order: + (1) if `client_options.api_endpoint` if provided, use the provided one. + (2) if `GOOGLE_API_USE_CLIENT_CERTIFICATE` environment variable is "always", use the + default mTLS endpoint; if the environment variabel is "never", use the default API + endpoint; otherwise if client cert source exists, use the default mTLS endpoint, otherwise + use the default API endpoint. + + More details can be found at https://google.aip.dev/auth/4114. + + Args: + client_options (google.api_core.client_options.ClientOptions): Custom options for the + client. Only the `api_endpoint` and `client_cert_source` properties may be used + in this method. + + Returns: + Tuple[str, Callable[[], Tuple[bytes, bytes]]]: returns the API endpoint and the + client cert source to use. + + Raises: + google.auth.exceptions.MutualTLSChannelError: If any errors happen. + """ + return NetworkSecurityClient.get_mtls_endpoint_and_cert_source(client_options) # type: ignore + + @property + def transport(self) -> NetworkSecurityTransport: + """Returns the transport used by the client instance. + + Returns: + NetworkSecurityTransport: The transport used by the client instance. + """ + return self._client.transport + + get_transport_class = functools.partial( + type(NetworkSecurityClient).get_transport_class, type(NetworkSecurityClient) + ) + + def __init__( + self, + *, + credentials: ga_credentials.Credentials = None, + transport: Union[str, NetworkSecurityTransport] = "grpc_asyncio", + client_options: ClientOptions = None, + client_info: gapic_v1.client_info.ClientInfo = DEFAULT_CLIENT_INFO, + ) -> None: + """Instantiates the network security client. + + Args: + credentials (Optional[google.auth.credentials.Credentials]): The + authorization credentials to attach to requests. These + credentials identify the application to the service; if none + are specified, the client will attempt to ascertain the + credentials from the environment. + transport (Union[str, ~.NetworkSecurityTransport]): The + transport to use. If set to None, a transport is chosen + automatically. + client_options (ClientOptions): Custom options for the client. It + won't take effect if a ``transport`` instance is provided. + (1) The ``api_endpoint`` property can be used to override the + default endpoint provided by the client. GOOGLE_API_USE_MTLS_ENDPOINT + environment variable can also be used to override the endpoint: + "always" (always use the default mTLS endpoint), "never" (always + use the default regular endpoint) and "auto" (auto switch to the + default mTLS endpoint if client certificate is present, this is + the default value). However, the ``api_endpoint`` property takes + precedence if provided. + (2) If GOOGLE_API_USE_CLIENT_CERTIFICATE environment variable + is "true", then the ``client_cert_source`` property can be used + to provide client certificate for mutual TLS transport. If + not provided, the default SSL client certificate will be used if + present. If GOOGLE_API_USE_CLIENT_CERTIFICATE is "false" or not + set, no client certificate will be used. + + Raises: + google.auth.exceptions.MutualTlsChannelError: If mutual TLS transport + creation failed for any reason. + """ + self._client = NetworkSecurityClient( + credentials=credentials, + transport=transport, + client_options=client_options, + client_info=client_info, + ) + + async def list_authorization_policies( + self, + request: Union[ + authorization_policy.ListAuthorizationPoliciesRequest, dict + ] = None, + *, + parent: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> pagers.ListAuthorizationPoliciesAsyncPager: + r"""Lists AuthorizationPolicies in a given project and + location. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_list_authorization_policies(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.ListAuthorizationPoliciesRequest( + parent="parent_value", + ) + + # Make the request + page_result = client.list_authorization_policies(request=request) + + # Handle the response + async for response in page_result: + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.ListAuthorizationPoliciesRequest, dict]): + The request object. Request used with the + ListAuthorizationPolicies method. + parent (:class:`str`): + Required. The project and location from which the + AuthorizationPolicies should be listed, specified in the + format ``projects/{project}/locations/{location}``. + + This corresponds to the ``parent`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.cloud.network_security_v1.services.network_security.pagers.ListAuthorizationPoliciesAsyncPager: + Response returned by the + ListAuthorizationPolicies method. + Iterating over this object will yield + results and resolve additional pages + automatically. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([parent]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = authorization_policy.ListAuthorizationPoliciesRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if parent is not None: + request.parent = parent + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.list_authorization_policies, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", request.parent),)), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # This method is paged; wrap the response in a pager, which provides + # an `__aiter__` convenience method. + response = pagers.ListAuthorizationPoliciesAsyncPager( + method=rpc, + request=request, + response=response, + metadata=metadata, + ) + + # Done; return the response. + return response + + async def get_authorization_policy( + self, + request: Union[authorization_policy.GetAuthorizationPolicyRequest, dict] = None, + *, + name: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> authorization_policy.AuthorizationPolicy: + r"""Gets details of a single AuthorizationPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_get_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.GetAuthorizationPolicyRequest( + name="name_value", + ) + + # Make the request + response = await client.get_authorization_policy(request=request) + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.GetAuthorizationPolicyRequest, dict]): + The request object. Request used by the + GetAuthorizationPolicy method. + name (:class:`str`): + Required. A name of the AuthorizationPolicy to get. Must + be in the format + ``projects/{project}/locations/{location}/authorizationPolicies/*``. + + This corresponds to the ``name`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.cloud.network_security_v1.types.AuthorizationPolicy: + AuthorizationPolicy is a resource + that specifies how a server should + authorize incoming connections. This + resource in itself does not change the + configuration unless it's attached to a + target https proxy or endpoint config + selector resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([name]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = authorization_policy.GetAuthorizationPolicyRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if name is not None: + request.name = name + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.get_authorization_policy, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("name", request.name),)), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Done; return the response. + return response + + async def create_authorization_policy( + self, + request: Union[ + gcn_authorization_policy.CreateAuthorizationPolicyRequest, dict + ] = None, + *, + parent: str = None, + authorization_policy: gcn_authorization_policy.AuthorizationPolicy = None, + authorization_policy_id: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation_async.AsyncOperation: + r"""Creates a new AuthorizationPolicy in a given project + and location. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_create_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + authorization_policy = network_security_v1.AuthorizationPolicy() + authorization_policy.name = "name_value" + authorization_policy.action = "DENY" + + request = network_security_v1.CreateAuthorizationPolicyRequest( + parent="parent_value", + authorization_policy_id="authorization_policy_id_value", + authorization_policy=authorization_policy, + ) + + # Make the request + operation = client.create_authorization_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.CreateAuthorizationPolicyRequest, dict]): + The request object. Request used by the + CreateAuthorizationPolicy method. + parent (:class:`str`): + Required. The parent resource of the + AuthorizationPolicy. Must be in the format + ``projects/{project}/locations/{location}``. + + This corresponds to the ``parent`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + authorization_policy (:class:`google.cloud.network_security_v1.types.AuthorizationPolicy`): + Required. AuthorizationPolicy + resource to be created. + + This corresponds to the ``authorization_policy`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + authorization_policy_id (:class:`str`): + Required. Short name of the AuthorizationPolicy resource + to be created. This value should be 1-63 characters + long, containing only letters, numbers, hyphens, and + underscores, and should not start with a number. E.g. + "authz_policy". + + This corresponds to the ``authorization_policy_id`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation_async.AsyncOperation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.cloud.network_security_v1.types.AuthorizationPolicy` AuthorizationPolicy is a resource that specifies how a server + should authorize incoming connections. This resource + in itself does not change the configuration unless + it's attached to a target https proxy or endpoint + config selector resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any( + [parent, authorization_policy, authorization_policy_id] + ) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = gcn_authorization_policy.CreateAuthorizationPolicyRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if parent is not None: + request.parent = parent + if authorization_policy is not None: + request.authorization_policy = authorization_policy + if authorization_policy_id is not None: + request.authorization_policy_id = authorization_policy_id + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.create_authorization_policy, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", request.parent),)), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation_async.from_gapic( + response, + self._client._transport.operations_client, + gcn_authorization_policy.AuthorizationPolicy, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + async def update_authorization_policy( + self, + request: Union[ + gcn_authorization_policy.UpdateAuthorizationPolicyRequest, dict + ] = None, + *, + authorization_policy: gcn_authorization_policy.AuthorizationPolicy = None, + update_mask: field_mask_pb2.FieldMask = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation_async.AsyncOperation: + r"""Updates the parameters of a single + AuthorizationPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_update_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + authorization_policy = network_security_v1.AuthorizationPolicy() + authorization_policy.name = "name_value" + authorization_policy.action = "DENY" + + request = network_security_v1.UpdateAuthorizationPolicyRequest( + authorization_policy=authorization_policy, + ) + + # Make the request + operation = client.update_authorization_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.UpdateAuthorizationPolicyRequest, dict]): + The request object. Request used by the + UpdateAuthorizationPolicy method. + authorization_policy (:class:`google.cloud.network_security_v1.types.AuthorizationPolicy`): + Required. Updated AuthorizationPolicy + resource. + + This corresponds to the ``authorization_policy`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + update_mask (:class:`google.protobuf.field_mask_pb2.FieldMask`): + Optional. Field mask is used to specify the fields to be + overwritten in the AuthorizationPolicy resource by the + update. The fields specified in the update_mask are + relative to the resource, not the full request. A field + will be overwritten if it is in the mask. If the user + does not provide a mask then all fields will be + overwritten. + + This corresponds to the ``update_mask`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation_async.AsyncOperation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.cloud.network_security_v1.types.AuthorizationPolicy` AuthorizationPolicy is a resource that specifies how a server + should authorize incoming connections. This resource + in itself does not change the configuration unless + it's attached to a target https proxy or endpoint + config selector resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([authorization_policy, update_mask]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = gcn_authorization_policy.UpdateAuthorizationPolicyRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if authorization_policy is not None: + request.authorization_policy = authorization_policy + if update_mask is not None: + request.update_mask = update_mask + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.update_authorization_policy, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata( + (("authorization_policy.name", request.authorization_policy.name),) + ), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation_async.from_gapic( + response, + self._client._transport.operations_client, + gcn_authorization_policy.AuthorizationPolicy, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + async def delete_authorization_policy( + self, + request: Union[ + authorization_policy.DeleteAuthorizationPolicyRequest, dict + ] = None, + *, + name: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation_async.AsyncOperation: + r"""Deletes a single AuthorizationPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_delete_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.DeleteAuthorizationPolicyRequest( + name="name_value", + ) + + # Make the request + operation = client.delete_authorization_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.DeleteAuthorizationPolicyRequest, dict]): + The request object. Request used by the + DeleteAuthorizationPolicy method. + name (:class:`str`): + Required. A name of the AuthorizationPolicy to delete. + Must be in the format + ``projects/{project}/locations/{location}/authorizationPolicies/*``. + + This corresponds to the ``name`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation_async.AsyncOperation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.protobuf.empty_pb2.Empty` A generic empty message that you can re-use to avoid defining duplicated + empty messages in your APIs. A typical example is to + use it as the request or the response type of an API + method. For instance: + + service Foo { + rpc Bar(google.protobuf.Empty) returns + (google.protobuf.Empty); + + } + + The JSON representation for Empty is empty JSON + object {}. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([name]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = authorization_policy.DeleteAuthorizationPolicyRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if name is not None: + request.name = name + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.delete_authorization_policy, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("name", request.name),)), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation_async.from_gapic( + response, + self._client._transport.operations_client, + empty_pb2.Empty, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + async def list_server_tls_policies( + self, + request: Union[server_tls_policy.ListServerTlsPoliciesRequest, dict] = None, + *, + parent: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> pagers.ListServerTlsPoliciesAsyncPager: + r"""Lists ServerTlsPolicies in a given project and + location. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_list_server_tls_policies(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.ListServerTlsPoliciesRequest( + parent="parent_value", + ) + + # Make the request + page_result = client.list_server_tls_policies(request=request) + + # Handle the response + async for response in page_result: + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.ListServerTlsPoliciesRequest, dict]): + The request object. Request used by the + ListServerTlsPolicies method. + parent (:class:`str`): + Required. The project and location from which the + ServerTlsPolicies should be listed, specified in the + format ``projects/*/locations/{location}``. + + This corresponds to the ``parent`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.cloud.network_security_v1.services.network_security.pagers.ListServerTlsPoliciesAsyncPager: + Response returned by the + ListServerTlsPolicies method. + Iterating over this object will yield + results and resolve additional pages + automatically. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([parent]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = server_tls_policy.ListServerTlsPoliciesRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if parent is not None: + request.parent = parent + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.list_server_tls_policies, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", request.parent),)), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # This method is paged; wrap the response in a pager, which provides + # an `__aiter__` convenience method. + response = pagers.ListServerTlsPoliciesAsyncPager( + method=rpc, + request=request, + response=response, + metadata=metadata, + ) + + # Done; return the response. + return response + + async def get_server_tls_policy( + self, + request: Union[server_tls_policy.GetServerTlsPolicyRequest, dict] = None, + *, + name: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> server_tls_policy.ServerTlsPolicy: + r"""Gets details of a single ServerTlsPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_get_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.GetServerTlsPolicyRequest( + name="name_value", + ) + + # Make the request + response = await client.get_server_tls_policy(request=request) + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.GetServerTlsPolicyRequest, dict]): + The request object. Request used by the + GetServerTlsPolicy method. + name (:class:`str`): + Required. A name of the ServerTlsPolicy to get. Must be + in the format + ``projects/*/locations/{location}/serverTlsPolicies/*``. + + This corresponds to the ``name`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.cloud.network_security_v1.types.ServerTlsPolicy: + ServerTlsPolicy is a resource that + specifies how a server should + authenticate incoming requests. This + resource itself does not affect + configuration unless it is attached to a + target https proxy or endpoint config + selector resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([name]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = server_tls_policy.GetServerTlsPolicyRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if name is not None: + request.name = name + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.get_server_tls_policy, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("name", request.name),)), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Done; return the response. + return response + + async def create_server_tls_policy( + self, + request: Union[gcn_server_tls_policy.CreateServerTlsPolicyRequest, dict] = None, + *, + parent: str = None, + server_tls_policy: gcn_server_tls_policy.ServerTlsPolicy = None, + server_tls_policy_id: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation_async.AsyncOperation: + r"""Creates a new ServerTlsPolicy in a given project and + location. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_create_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + server_tls_policy = network_security_v1.ServerTlsPolicy() + server_tls_policy.name = "name_value" + + request = network_security_v1.CreateServerTlsPolicyRequest( + parent="parent_value", + server_tls_policy_id="server_tls_policy_id_value", + server_tls_policy=server_tls_policy, + ) + + # Make the request + operation = client.create_server_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.CreateServerTlsPolicyRequest, dict]): + The request object. Request used by the + CreateServerTlsPolicy method. + parent (:class:`str`): + Required. The parent resource of the ServerTlsPolicy. + Must be in the format + ``projects/*/locations/{location}``. + + This corresponds to the ``parent`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + server_tls_policy (:class:`google.cloud.network_security_v1.types.ServerTlsPolicy`): + Required. ServerTlsPolicy resource to + be created. + + This corresponds to the ``server_tls_policy`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + server_tls_policy_id (:class:`str`): + Required. Short name of the ServerTlsPolicy resource to + be created. This value should be 1-63 characters long, + containing only letters, numbers, hyphens, and + underscores, and should not start with a number. E.g. + "server_mtls_policy". + + This corresponds to the ``server_tls_policy_id`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation_async.AsyncOperation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.cloud.network_security_v1.types.ServerTlsPolicy` ServerTlsPolicy is a resource that specifies how a server should authenticate + incoming requests. This resource itself does not + affect configuration unless it is attached to a + target https proxy or endpoint config selector + resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([parent, server_tls_policy, server_tls_policy_id]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = gcn_server_tls_policy.CreateServerTlsPolicyRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if parent is not None: + request.parent = parent + if server_tls_policy is not None: + request.server_tls_policy = server_tls_policy + if server_tls_policy_id is not None: + request.server_tls_policy_id = server_tls_policy_id + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.create_server_tls_policy, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", request.parent),)), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation_async.from_gapic( + response, + self._client._transport.operations_client, + gcn_server_tls_policy.ServerTlsPolicy, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + async def update_server_tls_policy( + self, + request: Union[gcn_server_tls_policy.UpdateServerTlsPolicyRequest, dict] = None, + *, + server_tls_policy: gcn_server_tls_policy.ServerTlsPolicy = None, + update_mask: field_mask_pb2.FieldMask = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation_async.AsyncOperation: + r"""Updates the parameters of a single ServerTlsPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_update_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + server_tls_policy = network_security_v1.ServerTlsPolicy() + server_tls_policy.name = "name_value" + + request = network_security_v1.UpdateServerTlsPolicyRequest( + server_tls_policy=server_tls_policy, + ) + + # Make the request + operation = client.update_server_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.UpdateServerTlsPolicyRequest, dict]): + The request object. Request used by + UpdateServerTlsPolicy method. + server_tls_policy (:class:`google.cloud.network_security_v1.types.ServerTlsPolicy`): + Required. Updated ServerTlsPolicy + resource. + + This corresponds to the ``server_tls_policy`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + update_mask (:class:`google.protobuf.field_mask_pb2.FieldMask`): + Optional. Field mask is used to specify the fields to be + overwritten in the ServerTlsPolicy resource by the + update. The fields specified in the update_mask are + relative to the resource, not the full request. A field + will be overwritten if it is in the mask. If the user + does not provide a mask then all fields will be + overwritten. + + This corresponds to the ``update_mask`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation_async.AsyncOperation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.cloud.network_security_v1.types.ServerTlsPolicy` ServerTlsPolicy is a resource that specifies how a server should authenticate + incoming requests. This resource itself does not + affect configuration unless it is attached to a + target https proxy or endpoint config selector + resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([server_tls_policy, update_mask]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = gcn_server_tls_policy.UpdateServerTlsPolicyRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if server_tls_policy is not None: + request.server_tls_policy = server_tls_policy + if update_mask is not None: + request.update_mask = update_mask + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.update_server_tls_policy, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata( + (("server_tls_policy.name", request.server_tls_policy.name),) + ), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation_async.from_gapic( + response, + self._client._transport.operations_client, + gcn_server_tls_policy.ServerTlsPolicy, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + async def delete_server_tls_policy( + self, + request: Union[server_tls_policy.DeleteServerTlsPolicyRequest, dict] = None, + *, + name: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation_async.AsyncOperation: + r"""Deletes a single ServerTlsPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_delete_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.DeleteServerTlsPolicyRequest( + name="name_value", + ) + + # Make the request + operation = client.delete_server_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.DeleteServerTlsPolicyRequest, dict]): + The request object. Request used by the + DeleteServerTlsPolicy method. + name (:class:`str`): + Required. A name of the ServerTlsPolicy to delete. Must + be in the format + ``projects/*/locations/{location}/serverTlsPolicies/*``. + + This corresponds to the ``name`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation_async.AsyncOperation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.protobuf.empty_pb2.Empty` A generic empty message that you can re-use to avoid defining duplicated + empty messages in your APIs. A typical example is to + use it as the request or the response type of an API + method. For instance: + + service Foo { + rpc Bar(google.protobuf.Empty) returns + (google.protobuf.Empty); + + } + + The JSON representation for Empty is empty JSON + object {}. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([name]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = server_tls_policy.DeleteServerTlsPolicyRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if name is not None: + request.name = name + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.delete_server_tls_policy, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("name", request.name),)), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation_async.from_gapic( + response, + self._client._transport.operations_client, + empty_pb2.Empty, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + async def list_client_tls_policies( + self, + request: Union[client_tls_policy.ListClientTlsPoliciesRequest, dict] = None, + *, + parent: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> pagers.ListClientTlsPoliciesAsyncPager: + r"""Lists ClientTlsPolicies in a given project and + location. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_list_client_tls_policies(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.ListClientTlsPoliciesRequest( + parent="parent_value", + ) + + # Make the request + page_result = client.list_client_tls_policies(request=request) + + # Handle the response + async for response in page_result: + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.ListClientTlsPoliciesRequest, dict]): + The request object. Request used by the + ListClientTlsPolicies method. + parent (:class:`str`): + Required. The project and location from which the + ClientTlsPolicies should be listed, specified in the + format ``projects/*/locations/{location}``. + + This corresponds to the ``parent`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.cloud.network_security_v1.services.network_security.pagers.ListClientTlsPoliciesAsyncPager: + Response returned by the + ListClientTlsPolicies method. + Iterating over this object will yield + results and resolve additional pages + automatically. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([parent]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = client_tls_policy.ListClientTlsPoliciesRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if parent is not None: + request.parent = parent + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.list_client_tls_policies, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", request.parent),)), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # This method is paged; wrap the response in a pager, which provides + # an `__aiter__` convenience method. + response = pagers.ListClientTlsPoliciesAsyncPager( + method=rpc, + request=request, + response=response, + metadata=metadata, + ) + + # Done; return the response. + return response + + async def get_client_tls_policy( + self, + request: Union[client_tls_policy.GetClientTlsPolicyRequest, dict] = None, + *, + name: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> client_tls_policy.ClientTlsPolicy: + r"""Gets details of a single ClientTlsPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_get_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.GetClientTlsPolicyRequest( + name="name_value", + ) + + # Make the request + response = await client.get_client_tls_policy(request=request) + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.GetClientTlsPolicyRequest, dict]): + The request object. Request used by the + GetClientTlsPolicy method. + name (:class:`str`): + Required. A name of the ClientTlsPolicy to get. Must be + in the format + ``projects/*/locations/{location}/clientTlsPolicies/*``. + + This corresponds to the ``name`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.cloud.network_security_v1.types.ClientTlsPolicy: + ClientTlsPolicy is a resource that + specifies how a client should + authenticate connections to backends of + a service. This resource itself does not + affect configuration unless it is + attached to a backend service resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([name]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = client_tls_policy.GetClientTlsPolicyRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if name is not None: + request.name = name + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.get_client_tls_policy, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("name", request.name),)), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Done; return the response. + return response + + async def create_client_tls_policy( + self, + request: Union[gcn_client_tls_policy.CreateClientTlsPolicyRequest, dict] = None, + *, + parent: str = None, + client_tls_policy: gcn_client_tls_policy.ClientTlsPolicy = None, + client_tls_policy_id: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation_async.AsyncOperation: + r"""Creates a new ClientTlsPolicy in a given project and + location. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_create_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + client_tls_policy = network_security_v1.ClientTlsPolicy() + client_tls_policy.name = "name_value" + + request = network_security_v1.CreateClientTlsPolicyRequest( + parent="parent_value", + client_tls_policy_id="client_tls_policy_id_value", + client_tls_policy=client_tls_policy, + ) + + # Make the request + operation = client.create_client_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.CreateClientTlsPolicyRequest, dict]): + The request object. Request used by the + CreateClientTlsPolicy method. + parent (:class:`str`): + Required. The parent resource of the ClientTlsPolicy. + Must be in the format + ``projects/*/locations/{location}``. + + This corresponds to the ``parent`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + client_tls_policy (:class:`google.cloud.network_security_v1.types.ClientTlsPolicy`): + Required. ClientTlsPolicy resource to + be created. + + This corresponds to the ``client_tls_policy`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + client_tls_policy_id (:class:`str`): + Required. Short name of the ClientTlsPolicy resource to + be created. This value should be 1-63 characters long, + containing only letters, numbers, hyphens, and + underscores, and should not start with a number. E.g. + "client_mtls_policy". + + This corresponds to the ``client_tls_policy_id`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation_async.AsyncOperation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.cloud.network_security_v1.types.ClientTlsPolicy` ClientTlsPolicy is a resource that specifies how a client should authenticate + connections to backends of a service. This resource + itself does not affect configuration unless it is + attached to a backend service resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([parent, client_tls_policy, client_tls_policy_id]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = gcn_client_tls_policy.CreateClientTlsPolicyRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if parent is not None: + request.parent = parent + if client_tls_policy is not None: + request.client_tls_policy = client_tls_policy + if client_tls_policy_id is not None: + request.client_tls_policy_id = client_tls_policy_id + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.create_client_tls_policy, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", request.parent),)), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation_async.from_gapic( + response, + self._client._transport.operations_client, + gcn_client_tls_policy.ClientTlsPolicy, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + async def update_client_tls_policy( + self, + request: Union[gcn_client_tls_policy.UpdateClientTlsPolicyRequest, dict] = None, + *, + client_tls_policy: gcn_client_tls_policy.ClientTlsPolicy = None, + update_mask: field_mask_pb2.FieldMask = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation_async.AsyncOperation: + r"""Updates the parameters of a single ClientTlsPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_update_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + client_tls_policy = network_security_v1.ClientTlsPolicy() + client_tls_policy.name = "name_value" + + request = network_security_v1.UpdateClientTlsPolicyRequest( + client_tls_policy=client_tls_policy, + ) + + # Make the request + operation = client.update_client_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.UpdateClientTlsPolicyRequest, dict]): + The request object. Request used by + UpdateClientTlsPolicy method. + client_tls_policy (:class:`google.cloud.network_security_v1.types.ClientTlsPolicy`): + Required. Updated ClientTlsPolicy + resource. + + This corresponds to the ``client_tls_policy`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + update_mask (:class:`google.protobuf.field_mask_pb2.FieldMask`): + Optional. Field mask is used to specify the fields to be + overwritten in the ClientTlsPolicy resource by the + update. The fields specified in the update_mask are + relative to the resource, not the full request. A field + will be overwritten if it is in the mask. If the user + does not provide a mask then all fields will be + overwritten. + + This corresponds to the ``update_mask`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation_async.AsyncOperation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.cloud.network_security_v1.types.ClientTlsPolicy` ClientTlsPolicy is a resource that specifies how a client should authenticate + connections to backends of a service. This resource + itself does not affect configuration unless it is + attached to a backend service resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([client_tls_policy, update_mask]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = gcn_client_tls_policy.UpdateClientTlsPolicyRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if client_tls_policy is not None: + request.client_tls_policy = client_tls_policy + if update_mask is not None: + request.update_mask = update_mask + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.update_client_tls_policy, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata( + (("client_tls_policy.name", request.client_tls_policy.name),) + ), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation_async.from_gapic( + response, + self._client._transport.operations_client, + gcn_client_tls_policy.ClientTlsPolicy, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + async def delete_client_tls_policy( + self, + request: Union[client_tls_policy.DeleteClientTlsPolicyRequest, dict] = None, + *, + name: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation_async.AsyncOperation: + r"""Deletes a single ClientTlsPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + async def sample_delete_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.DeleteClientTlsPolicyRequest( + name="name_value", + ) + + # Make the request + operation = client.delete_client_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.DeleteClientTlsPolicyRequest, dict]): + The request object. Request used by the + DeleteClientTlsPolicy method. + name (:class:`str`): + Required. A name of the ClientTlsPolicy to delete. Must + be in the format + ``projects/*/locations/{location}/clientTlsPolicies/*``. + + This corresponds to the ``name`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation_async.AsyncOperation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.protobuf.empty_pb2.Empty` A generic empty message that you can re-use to avoid defining duplicated + empty messages in your APIs. A typical example is to + use it as the request or the response type of an API + method. For instance: + + service Foo { + rpc Bar(google.protobuf.Empty) returns + (google.protobuf.Empty); + + } + + The JSON representation for Empty is empty JSON + object {}. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([name]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + request = client_tls_policy.DeleteClientTlsPolicyRequest(request) + + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if name is not None: + request.name = name + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = gapic_v1.method_async.wrap_method( + self._client._transport.delete_client_tls_policy, + default_timeout=None, + client_info=DEFAULT_CLIENT_INFO, + ) + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("name", request.name),)), + ) + + # Send the request. + response = await rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation_async.from_gapic( + response, + self._client._transport.operations_client, + empty_pb2.Empty, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + async def __aenter__(self): + return self + + async def __aexit__(self, exc_type, exc, tb): + await self.transport.close() + + +try: + DEFAULT_CLIENT_INFO = gapic_v1.client_info.ClientInfo( + gapic_version=pkg_resources.get_distribution( + "google-cloud-network-security", + ).version, + ) +except pkg_resources.DistributionNotFound: + DEFAULT_CLIENT_INFO = gapic_v1.client_info.ClientInfo() + + +__all__ = ("NetworkSecurityAsyncClient",) diff --git a/google/cloud/network_security_v1/services/network_security/client.py b/google/cloud/network_security_v1/services/network_security/client.py new file mode 100644 index 0000000..9265207 --- /dev/null +++ b/google/cloud/network_security_v1/services/network_security/client.py @@ -0,0 +1,2365 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +from collections import OrderedDict +import os +import re +from typing import Dict, Mapping, Optional, Sequence, Tuple, Type, Union + +from google.api_core import client_options as client_options_lib +from google.api_core import exceptions as core_exceptions +from google.api_core import gapic_v1 +from google.api_core import retry as retries +from google.auth import credentials as ga_credentials # type: ignore +from google.auth.exceptions import MutualTLSChannelError # type: ignore +from google.auth.transport import mtls # type: ignore +from google.auth.transport.grpc import SslCredentials # type: ignore +from google.oauth2 import service_account # type: ignore +import pkg_resources + +try: + OptionalRetry = Union[retries.Retry, gapic_v1.method._MethodDefault] +except AttributeError: # pragma: NO COVER + OptionalRetry = Union[retries.Retry, object] # type: ignore + +from google.api_core import operation # type: ignore +from google.api_core import operation_async # type: ignore +from google.protobuf import empty_pb2 # type: ignore +from google.protobuf import field_mask_pb2 # type: ignore +from google.protobuf import timestamp_pb2 # type: ignore + +from google.cloud.network_security_v1.services.network_security import pagers +from google.cloud.network_security_v1.types import ( + authorization_policy as gcn_authorization_policy, +) +from google.cloud.network_security_v1.types import ( + client_tls_policy as gcn_client_tls_policy, +) +from google.cloud.network_security_v1.types import ( + server_tls_policy as gcn_server_tls_policy, +) +from google.cloud.network_security_v1.types import authorization_policy +from google.cloud.network_security_v1.types import client_tls_policy +from google.cloud.network_security_v1.types import common +from google.cloud.network_security_v1.types import server_tls_policy +from google.cloud.network_security_v1.types import tls + +from .transports.base import DEFAULT_CLIENT_INFO, NetworkSecurityTransport +from .transports.grpc import NetworkSecurityGrpcTransport +from .transports.grpc_asyncio import NetworkSecurityGrpcAsyncIOTransport + + +class NetworkSecurityClientMeta(type): + """Metaclass for the NetworkSecurity client. + + This provides class-level methods for building and retrieving + support objects (e.g. transport) without polluting the client instance + objects. + """ + + _transport_registry = ( + OrderedDict() + ) # type: Dict[str, Type[NetworkSecurityTransport]] + _transport_registry["grpc"] = NetworkSecurityGrpcTransport + _transport_registry["grpc_asyncio"] = NetworkSecurityGrpcAsyncIOTransport + + def get_transport_class( + cls, + label: str = None, + ) -> Type[NetworkSecurityTransport]: + """Returns an appropriate transport class. + + Args: + label: The name of the desired transport. If none is + provided, then the first transport in the registry is used. + + Returns: + The transport class to use. + """ + # If a specific transport is requested, return that one. + if label: + return cls._transport_registry[label] + + # No transport is requested; return the default (that is, the first one + # in the dictionary). + return next(iter(cls._transport_registry.values())) + + +class NetworkSecurityClient(metaclass=NetworkSecurityClientMeta): + """Network Security API provides resources to configure + authentication and authorization policies. Refer to per API + resource documentation for more information. + """ + + @staticmethod + def _get_default_mtls_endpoint(api_endpoint): + """Converts api endpoint to mTLS endpoint. + + Convert "*.sandbox.googleapis.com" and "*.googleapis.com" to + "*.mtls.sandbox.googleapis.com" and "*.mtls.googleapis.com" respectively. + Args: + api_endpoint (Optional[str]): the api endpoint to convert. + Returns: + str: converted mTLS api endpoint. + """ + if not api_endpoint: + return api_endpoint + + mtls_endpoint_re = re.compile( + r"(?P[^.]+)(?P\.mtls)?(?P\.sandbox)?(?P\.googleapis\.com)?" + ) + + m = mtls_endpoint_re.match(api_endpoint) + name, mtls, sandbox, googledomain = m.groups() + if mtls or not googledomain: + return api_endpoint + + if sandbox: + return api_endpoint.replace( + "sandbox.googleapis.com", "mtls.sandbox.googleapis.com" + ) + + return api_endpoint.replace(".googleapis.com", ".mtls.googleapis.com") + + DEFAULT_ENDPOINT = "networksecurity.googleapis.com" + DEFAULT_MTLS_ENDPOINT = _get_default_mtls_endpoint.__func__( # type: ignore + DEFAULT_ENDPOINT + ) + + @classmethod + def from_service_account_info(cls, info: dict, *args, **kwargs): + """Creates an instance of this client using the provided credentials + info. + + Args: + info (dict): The service account private key info. + args: Additional arguments to pass to the constructor. + kwargs: Additional arguments to pass to the constructor. + + Returns: + NetworkSecurityClient: The constructed client. + """ + credentials = service_account.Credentials.from_service_account_info(info) + kwargs["credentials"] = credentials + return cls(*args, **kwargs) + + @classmethod + def from_service_account_file(cls, filename: str, *args, **kwargs): + """Creates an instance of this client using the provided credentials + file. + + Args: + filename (str): The path to the service account private key json + file. + args: Additional arguments to pass to the constructor. + kwargs: Additional arguments to pass to the constructor. + + Returns: + NetworkSecurityClient: The constructed client. + """ + credentials = service_account.Credentials.from_service_account_file(filename) + kwargs["credentials"] = credentials + return cls(*args, **kwargs) + + from_service_account_json = from_service_account_file + + @property + def transport(self) -> NetworkSecurityTransport: + """Returns the transport used by the client instance. + + Returns: + NetworkSecurityTransport: The transport used by the client + instance. + """ + return self._transport + + @staticmethod + def authorization_policy_path( + project: str, + location: str, + authorization_policy: str, + ) -> str: + """Returns a fully-qualified authorization_policy string.""" + return "projects/{project}/locations/{location}/authorizationPolicies/{authorization_policy}".format( + project=project, + location=location, + authorization_policy=authorization_policy, + ) + + @staticmethod + def parse_authorization_policy_path(path: str) -> Dict[str, str]: + """Parses a authorization_policy path into its component segments.""" + m = re.match( + r"^projects/(?P.+?)/locations/(?P.+?)/authorizationPolicies/(?P.+?)$", + path, + ) + return m.groupdict() if m else {} + + @staticmethod + def client_tls_policy_path( + project: str, + location: str, + client_tls_policy: str, + ) -> str: + """Returns a fully-qualified client_tls_policy string.""" + return "projects/{project}/locations/{location}/clientTlsPolicies/{client_tls_policy}".format( + project=project, + location=location, + client_tls_policy=client_tls_policy, + ) + + @staticmethod + def parse_client_tls_policy_path(path: str) -> Dict[str, str]: + """Parses a client_tls_policy path into its component segments.""" + m = re.match( + r"^projects/(?P.+?)/locations/(?P.+?)/clientTlsPolicies/(?P.+?)$", + path, + ) + return m.groupdict() if m else {} + + @staticmethod + def server_tls_policy_path( + project: str, + location: str, + server_tls_policy: str, + ) -> str: + """Returns a fully-qualified server_tls_policy string.""" + return "projects/{project}/locations/{location}/serverTlsPolicies/{server_tls_policy}".format( + project=project, + location=location, + server_tls_policy=server_tls_policy, + ) + + @staticmethod + def parse_server_tls_policy_path(path: str) -> Dict[str, str]: + """Parses a server_tls_policy path into its component segments.""" + m = re.match( + r"^projects/(?P.+?)/locations/(?P.+?)/serverTlsPolicies/(?P.+?)$", + path, + ) + return m.groupdict() if m else {} + + @staticmethod + def common_billing_account_path( + billing_account: str, + ) -> str: + """Returns a fully-qualified billing_account string.""" + return "billingAccounts/{billing_account}".format( + billing_account=billing_account, + ) + + @staticmethod + def parse_common_billing_account_path(path: str) -> Dict[str, str]: + """Parse a billing_account path into its component segments.""" + m = re.match(r"^billingAccounts/(?P.+?)$", path) + return m.groupdict() if m else {} + + @staticmethod + def common_folder_path( + folder: str, + ) -> str: + """Returns a fully-qualified folder string.""" + return "folders/{folder}".format( + folder=folder, + ) + + @staticmethod + def parse_common_folder_path(path: str) -> Dict[str, str]: + """Parse a folder path into its component segments.""" + m = re.match(r"^folders/(?P.+?)$", path) + return m.groupdict() if m else {} + + @staticmethod + def common_organization_path( + organization: str, + ) -> str: + """Returns a fully-qualified organization string.""" + return "organizations/{organization}".format( + organization=organization, + ) + + @staticmethod + def parse_common_organization_path(path: str) -> Dict[str, str]: + """Parse a organization path into its component segments.""" + m = re.match(r"^organizations/(?P.+?)$", path) + return m.groupdict() if m else {} + + @staticmethod + def common_project_path( + project: str, + ) -> str: + """Returns a fully-qualified project string.""" + return "projects/{project}".format( + project=project, + ) + + @staticmethod + def parse_common_project_path(path: str) -> Dict[str, str]: + """Parse a project path into its component segments.""" + m = re.match(r"^projects/(?P.+?)$", path) + return m.groupdict() if m else {} + + @staticmethod + def common_location_path( + project: str, + location: str, + ) -> str: + """Returns a fully-qualified location string.""" + return "projects/{project}/locations/{location}".format( + project=project, + location=location, + ) + + @staticmethod + def parse_common_location_path(path: str) -> Dict[str, str]: + """Parse a location path into its component segments.""" + m = re.match(r"^projects/(?P.+?)/locations/(?P.+?)$", path) + return m.groupdict() if m else {} + + @classmethod + def get_mtls_endpoint_and_cert_source( + cls, client_options: Optional[client_options_lib.ClientOptions] = None + ): + """Return the API endpoint and client cert source for mutual TLS. + + The client cert source is determined in the following order: + (1) if `GOOGLE_API_USE_CLIENT_CERTIFICATE` environment variable is not "true", the + client cert source is None. + (2) if `client_options.client_cert_source` is provided, use the provided one; if the + default client cert source exists, use the default one; otherwise the client cert + source is None. + + The API endpoint is determined in the following order: + (1) if `client_options.api_endpoint` if provided, use the provided one. + (2) if `GOOGLE_API_USE_CLIENT_CERTIFICATE` environment variable is "always", use the + default mTLS endpoint; if the environment variabel is "never", use the default API + endpoint; otherwise if client cert source exists, use the default mTLS endpoint, otherwise + use the default API endpoint. + + More details can be found at https://google.aip.dev/auth/4114. + + Args: + client_options (google.api_core.client_options.ClientOptions): Custom options for the + client. Only the `api_endpoint` and `client_cert_source` properties may be used + in this method. + + Returns: + Tuple[str, Callable[[], Tuple[bytes, bytes]]]: returns the API endpoint and the + client cert source to use. + + Raises: + google.auth.exceptions.MutualTLSChannelError: If any errors happen. + """ + if client_options is None: + client_options = client_options_lib.ClientOptions() + use_client_cert = os.getenv("GOOGLE_API_USE_CLIENT_CERTIFICATE", "false") + use_mtls_endpoint = os.getenv("GOOGLE_API_USE_MTLS_ENDPOINT", "auto") + if use_client_cert not in ("true", "false"): + raise ValueError( + "Environment variable `GOOGLE_API_USE_CLIENT_CERTIFICATE` must be either `true` or `false`" + ) + if use_mtls_endpoint not in ("auto", "never", "always"): + raise MutualTLSChannelError( + "Environment variable `GOOGLE_API_USE_MTLS_ENDPOINT` must be `never`, `auto` or `always`" + ) + + # Figure out the client cert source to use. + client_cert_source = None + if use_client_cert == "true": + if client_options.client_cert_source: + client_cert_source = client_options.client_cert_source + elif mtls.has_default_client_cert_source(): + client_cert_source = mtls.default_client_cert_source() + + # Figure out which api endpoint to use. + if client_options.api_endpoint is not None: + api_endpoint = client_options.api_endpoint + elif use_mtls_endpoint == "always" or ( + use_mtls_endpoint == "auto" and client_cert_source + ): + api_endpoint = cls.DEFAULT_MTLS_ENDPOINT + else: + api_endpoint = cls.DEFAULT_ENDPOINT + + return api_endpoint, client_cert_source + + def __init__( + self, + *, + credentials: Optional[ga_credentials.Credentials] = None, + transport: Union[str, NetworkSecurityTransport, None] = None, + client_options: Optional[client_options_lib.ClientOptions] = None, + client_info: gapic_v1.client_info.ClientInfo = DEFAULT_CLIENT_INFO, + ) -> None: + """Instantiates the network security client. + + Args: + credentials (Optional[google.auth.credentials.Credentials]): The + authorization credentials to attach to requests. These + credentials identify the application to the service; if none + are specified, the client will attempt to ascertain the + credentials from the environment. + transport (Union[str, NetworkSecurityTransport]): The + transport to use. If set to None, a transport is chosen + automatically. + client_options (google.api_core.client_options.ClientOptions): Custom options for the + client. It won't take effect if a ``transport`` instance is provided. + (1) The ``api_endpoint`` property can be used to override the + default endpoint provided by the client. GOOGLE_API_USE_MTLS_ENDPOINT + environment variable can also be used to override the endpoint: + "always" (always use the default mTLS endpoint), "never" (always + use the default regular endpoint) and "auto" (auto switch to the + default mTLS endpoint if client certificate is present, this is + the default value). However, the ``api_endpoint`` property takes + precedence if provided. + (2) If GOOGLE_API_USE_CLIENT_CERTIFICATE environment variable + is "true", then the ``client_cert_source`` property can be used + to provide client certificate for mutual TLS transport. If + not provided, the default SSL client certificate will be used if + present. If GOOGLE_API_USE_CLIENT_CERTIFICATE is "false" or not + set, no client certificate will be used. + client_info (google.api_core.gapic_v1.client_info.ClientInfo): + The client info used to send a user-agent string along with + API requests. If ``None``, then default info will be used. + Generally, you only need to set this if you're developing + your own client library. + + Raises: + google.auth.exceptions.MutualTLSChannelError: If mutual TLS transport + creation failed for any reason. + """ + if isinstance(client_options, dict): + client_options = client_options_lib.from_dict(client_options) + if client_options is None: + client_options = client_options_lib.ClientOptions() + + api_endpoint, client_cert_source_func = self.get_mtls_endpoint_and_cert_source( + client_options + ) + + api_key_value = getattr(client_options, "api_key", None) + if api_key_value and credentials: + raise ValueError( + "client_options.api_key and credentials are mutually exclusive" + ) + + # Save or instantiate the transport. + # Ordinarily, we provide the transport, but allowing a custom transport + # instance provides an extensibility point for unusual situations. + if isinstance(transport, NetworkSecurityTransport): + # transport is a NetworkSecurityTransport instance. + if credentials or client_options.credentials_file or api_key_value: + raise ValueError( + "When providing a transport instance, " + "provide its credentials directly." + ) + if client_options.scopes: + raise ValueError( + "When providing a transport instance, provide its scopes " + "directly." + ) + self._transport = transport + else: + import google.auth._default # type: ignore + + if api_key_value and hasattr( + google.auth._default, "get_api_key_credentials" + ): + credentials = google.auth._default.get_api_key_credentials( + api_key_value + ) + + Transport = type(self).get_transport_class(transport) + self._transport = Transport( + credentials=credentials, + credentials_file=client_options.credentials_file, + host=api_endpoint, + scopes=client_options.scopes, + client_cert_source_for_mtls=client_cert_source_func, + quota_project_id=client_options.quota_project_id, + client_info=client_info, + always_use_jwt_access=True, + api_audience=client_options.api_audience, + ) + + def list_authorization_policies( + self, + request: Union[ + authorization_policy.ListAuthorizationPoliciesRequest, dict + ] = None, + *, + parent: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> pagers.ListAuthorizationPoliciesPager: + r"""Lists AuthorizationPolicies in a given project and + location. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_list_authorization_policies(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.ListAuthorizationPoliciesRequest( + parent="parent_value", + ) + + # Make the request + page_result = client.list_authorization_policies(request=request) + + # Handle the response + for response in page_result: + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.ListAuthorizationPoliciesRequest, dict]): + The request object. Request used with the + ListAuthorizationPolicies method. + parent (str): + Required. The project and location from which the + AuthorizationPolicies should be listed, specified in the + format ``projects/{project}/locations/{location}``. + + This corresponds to the ``parent`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.cloud.network_security_v1.services.network_security.pagers.ListAuthorizationPoliciesPager: + Response returned by the + ListAuthorizationPolicies method. + Iterating over this object will yield + results and resolve additional pages + automatically. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([parent]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a authorization_policy.ListAuthorizationPoliciesRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance( + request, authorization_policy.ListAuthorizationPoliciesRequest + ): + request = authorization_policy.ListAuthorizationPoliciesRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if parent is not None: + request.parent = parent + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[ + self._transport.list_authorization_policies + ] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", request.parent),)), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # This method is paged; wrap the response in a pager, which provides + # an `__iter__` convenience method. + response = pagers.ListAuthorizationPoliciesPager( + method=rpc, + request=request, + response=response, + metadata=metadata, + ) + + # Done; return the response. + return response + + def get_authorization_policy( + self, + request: Union[authorization_policy.GetAuthorizationPolicyRequest, dict] = None, + *, + name: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> authorization_policy.AuthorizationPolicy: + r"""Gets details of a single AuthorizationPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_get_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.GetAuthorizationPolicyRequest( + name="name_value", + ) + + # Make the request + response = client.get_authorization_policy(request=request) + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.GetAuthorizationPolicyRequest, dict]): + The request object. Request used by the + GetAuthorizationPolicy method. + name (str): + Required. A name of the AuthorizationPolicy to get. Must + be in the format + ``projects/{project}/locations/{location}/authorizationPolicies/*``. + + This corresponds to the ``name`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.cloud.network_security_v1.types.AuthorizationPolicy: + AuthorizationPolicy is a resource + that specifies how a server should + authorize incoming connections. This + resource in itself does not change the + configuration unless it's attached to a + target https proxy or endpoint config + selector resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([name]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a authorization_policy.GetAuthorizationPolicyRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance(request, authorization_policy.GetAuthorizationPolicyRequest): + request = authorization_policy.GetAuthorizationPolicyRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if name is not None: + request.name = name + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[self._transport.get_authorization_policy] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("name", request.name),)), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Done; return the response. + return response + + def create_authorization_policy( + self, + request: Union[ + gcn_authorization_policy.CreateAuthorizationPolicyRequest, dict + ] = None, + *, + parent: str = None, + authorization_policy: gcn_authorization_policy.AuthorizationPolicy = None, + authorization_policy_id: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation.Operation: + r"""Creates a new AuthorizationPolicy in a given project + and location. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_create_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + authorization_policy = network_security_v1.AuthorizationPolicy() + authorization_policy.name = "name_value" + authorization_policy.action = "DENY" + + request = network_security_v1.CreateAuthorizationPolicyRequest( + parent="parent_value", + authorization_policy_id="authorization_policy_id_value", + authorization_policy=authorization_policy, + ) + + # Make the request + operation = client.create_authorization_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.CreateAuthorizationPolicyRequest, dict]): + The request object. Request used by the + CreateAuthorizationPolicy method. + parent (str): + Required. The parent resource of the + AuthorizationPolicy. Must be in the format + ``projects/{project}/locations/{location}``. + + This corresponds to the ``parent`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + authorization_policy (google.cloud.network_security_v1.types.AuthorizationPolicy): + Required. AuthorizationPolicy + resource to be created. + + This corresponds to the ``authorization_policy`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + authorization_policy_id (str): + Required. Short name of the AuthorizationPolicy resource + to be created. This value should be 1-63 characters + long, containing only letters, numbers, hyphens, and + underscores, and should not start with a number. E.g. + "authz_policy". + + This corresponds to the ``authorization_policy_id`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation.Operation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.cloud.network_security_v1.types.AuthorizationPolicy` AuthorizationPolicy is a resource that specifies how a server + should authorize incoming connections. This resource + in itself does not change the configuration unless + it's attached to a target https proxy or endpoint + config selector resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any( + [parent, authorization_policy, authorization_policy_id] + ) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a gcn_authorization_policy.CreateAuthorizationPolicyRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance( + request, gcn_authorization_policy.CreateAuthorizationPolicyRequest + ): + request = gcn_authorization_policy.CreateAuthorizationPolicyRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if parent is not None: + request.parent = parent + if authorization_policy is not None: + request.authorization_policy = authorization_policy + if authorization_policy_id is not None: + request.authorization_policy_id = authorization_policy_id + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[ + self._transport.create_authorization_policy + ] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", request.parent),)), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation.from_gapic( + response, + self._transport.operations_client, + gcn_authorization_policy.AuthorizationPolicy, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + def update_authorization_policy( + self, + request: Union[ + gcn_authorization_policy.UpdateAuthorizationPolicyRequest, dict + ] = None, + *, + authorization_policy: gcn_authorization_policy.AuthorizationPolicy = None, + update_mask: field_mask_pb2.FieldMask = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation.Operation: + r"""Updates the parameters of a single + AuthorizationPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_update_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + authorization_policy = network_security_v1.AuthorizationPolicy() + authorization_policy.name = "name_value" + authorization_policy.action = "DENY" + + request = network_security_v1.UpdateAuthorizationPolicyRequest( + authorization_policy=authorization_policy, + ) + + # Make the request + operation = client.update_authorization_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.UpdateAuthorizationPolicyRequest, dict]): + The request object. Request used by the + UpdateAuthorizationPolicy method. + authorization_policy (google.cloud.network_security_v1.types.AuthorizationPolicy): + Required. Updated AuthorizationPolicy + resource. + + This corresponds to the ``authorization_policy`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + update_mask (google.protobuf.field_mask_pb2.FieldMask): + Optional. Field mask is used to specify the fields to be + overwritten in the AuthorizationPolicy resource by the + update. The fields specified in the update_mask are + relative to the resource, not the full request. A field + will be overwritten if it is in the mask. If the user + does not provide a mask then all fields will be + overwritten. + + This corresponds to the ``update_mask`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation.Operation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.cloud.network_security_v1.types.AuthorizationPolicy` AuthorizationPolicy is a resource that specifies how a server + should authorize incoming connections. This resource + in itself does not change the configuration unless + it's attached to a target https proxy or endpoint + config selector resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([authorization_policy, update_mask]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a gcn_authorization_policy.UpdateAuthorizationPolicyRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance( + request, gcn_authorization_policy.UpdateAuthorizationPolicyRequest + ): + request = gcn_authorization_policy.UpdateAuthorizationPolicyRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if authorization_policy is not None: + request.authorization_policy = authorization_policy + if update_mask is not None: + request.update_mask = update_mask + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[ + self._transport.update_authorization_policy + ] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata( + (("authorization_policy.name", request.authorization_policy.name),) + ), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation.from_gapic( + response, + self._transport.operations_client, + gcn_authorization_policy.AuthorizationPolicy, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + def delete_authorization_policy( + self, + request: Union[ + authorization_policy.DeleteAuthorizationPolicyRequest, dict + ] = None, + *, + name: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation.Operation: + r"""Deletes a single AuthorizationPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_delete_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.DeleteAuthorizationPolicyRequest( + name="name_value", + ) + + # Make the request + operation = client.delete_authorization_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.DeleteAuthorizationPolicyRequest, dict]): + The request object. Request used by the + DeleteAuthorizationPolicy method. + name (str): + Required. A name of the AuthorizationPolicy to delete. + Must be in the format + ``projects/{project}/locations/{location}/authorizationPolicies/*``. + + This corresponds to the ``name`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation.Operation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.protobuf.empty_pb2.Empty` A generic empty message that you can re-use to avoid defining duplicated + empty messages in your APIs. A typical example is to + use it as the request or the response type of an API + method. For instance: + + service Foo { + rpc Bar(google.protobuf.Empty) returns + (google.protobuf.Empty); + + } + + The JSON representation for Empty is empty JSON + object {}. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([name]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a authorization_policy.DeleteAuthorizationPolicyRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance( + request, authorization_policy.DeleteAuthorizationPolicyRequest + ): + request = authorization_policy.DeleteAuthorizationPolicyRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if name is not None: + request.name = name + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[ + self._transport.delete_authorization_policy + ] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("name", request.name),)), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation.from_gapic( + response, + self._transport.operations_client, + empty_pb2.Empty, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + def list_server_tls_policies( + self, + request: Union[server_tls_policy.ListServerTlsPoliciesRequest, dict] = None, + *, + parent: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> pagers.ListServerTlsPoliciesPager: + r"""Lists ServerTlsPolicies in a given project and + location. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_list_server_tls_policies(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.ListServerTlsPoliciesRequest( + parent="parent_value", + ) + + # Make the request + page_result = client.list_server_tls_policies(request=request) + + # Handle the response + for response in page_result: + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.ListServerTlsPoliciesRequest, dict]): + The request object. Request used by the + ListServerTlsPolicies method. + parent (str): + Required. The project and location from which the + ServerTlsPolicies should be listed, specified in the + format ``projects/*/locations/{location}``. + + This corresponds to the ``parent`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.cloud.network_security_v1.services.network_security.pagers.ListServerTlsPoliciesPager: + Response returned by the + ListServerTlsPolicies method. + Iterating over this object will yield + results and resolve additional pages + automatically. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([parent]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a server_tls_policy.ListServerTlsPoliciesRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance(request, server_tls_policy.ListServerTlsPoliciesRequest): + request = server_tls_policy.ListServerTlsPoliciesRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if parent is not None: + request.parent = parent + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[self._transport.list_server_tls_policies] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", request.parent),)), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # This method is paged; wrap the response in a pager, which provides + # an `__iter__` convenience method. + response = pagers.ListServerTlsPoliciesPager( + method=rpc, + request=request, + response=response, + metadata=metadata, + ) + + # Done; return the response. + return response + + def get_server_tls_policy( + self, + request: Union[server_tls_policy.GetServerTlsPolicyRequest, dict] = None, + *, + name: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> server_tls_policy.ServerTlsPolicy: + r"""Gets details of a single ServerTlsPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_get_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.GetServerTlsPolicyRequest( + name="name_value", + ) + + # Make the request + response = client.get_server_tls_policy(request=request) + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.GetServerTlsPolicyRequest, dict]): + The request object. Request used by the + GetServerTlsPolicy method. + name (str): + Required. A name of the ServerTlsPolicy to get. Must be + in the format + ``projects/*/locations/{location}/serverTlsPolicies/*``. + + This corresponds to the ``name`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.cloud.network_security_v1.types.ServerTlsPolicy: + ServerTlsPolicy is a resource that + specifies how a server should + authenticate incoming requests. This + resource itself does not affect + configuration unless it is attached to a + target https proxy or endpoint config + selector resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([name]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a server_tls_policy.GetServerTlsPolicyRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance(request, server_tls_policy.GetServerTlsPolicyRequest): + request = server_tls_policy.GetServerTlsPolicyRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if name is not None: + request.name = name + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[self._transport.get_server_tls_policy] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("name", request.name),)), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Done; return the response. + return response + + def create_server_tls_policy( + self, + request: Union[gcn_server_tls_policy.CreateServerTlsPolicyRequest, dict] = None, + *, + parent: str = None, + server_tls_policy: gcn_server_tls_policy.ServerTlsPolicy = None, + server_tls_policy_id: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation.Operation: + r"""Creates a new ServerTlsPolicy in a given project and + location. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_create_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + server_tls_policy = network_security_v1.ServerTlsPolicy() + server_tls_policy.name = "name_value" + + request = network_security_v1.CreateServerTlsPolicyRequest( + parent="parent_value", + server_tls_policy_id="server_tls_policy_id_value", + server_tls_policy=server_tls_policy, + ) + + # Make the request + operation = client.create_server_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.CreateServerTlsPolicyRequest, dict]): + The request object. Request used by the + CreateServerTlsPolicy method. + parent (str): + Required. The parent resource of the ServerTlsPolicy. + Must be in the format + ``projects/*/locations/{location}``. + + This corresponds to the ``parent`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + server_tls_policy (google.cloud.network_security_v1.types.ServerTlsPolicy): + Required. ServerTlsPolicy resource to + be created. + + This corresponds to the ``server_tls_policy`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + server_tls_policy_id (str): + Required. Short name of the ServerTlsPolicy resource to + be created. This value should be 1-63 characters long, + containing only letters, numbers, hyphens, and + underscores, and should not start with a number. E.g. + "server_mtls_policy". + + This corresponds to the ``server_tls_policy_id`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation.Operation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.cloud.network_security_v1.types.ServerTlsPolicy` ServerTlsPolicy is a resource that specifies how a server should authenticate + incoming requests. This resource itself does not + affect configuration unless it is attached to a + target https proxy or endpoint config selector + resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([parent, server_tls_policy, server_tls_policy_id]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a gcn_server_tls_policy.CreateServerTlsPolicyRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance(request, gcn_server_tls_policy.CreateServerTlsPolicyRequest): + request = gcn_server_tls_policy.CreateServerTlsPolicyRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if parent is not None: + request.parent = parent + if server_tls_policy is not None: + request.server_tls_policy = server_tls_policy + if server_tls_policy_id is not None: + request.server_tls_policy_id = server_tls_policy_id + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[self._transport.create_server_tls_policy] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", request.parent),)), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation.from_gapic( + response, + self._transport.operations_client, + gcn_server_tls_policy.ServerTlsPolicy, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + def update_server_tls_policy( + self, + request: Union[gcn_server_tls_policy.UpdateServerTlsPolicyRequest, dict] = None, + *, + server_tls_policy: gcn_server_tls_policy.ServerTlsPolicy = None, + update_mask: field_mask_pb2.FieldMask = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation.Operation: + r"""Updates the parameters of a single ServerTlsPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_update_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + server_tls_policy = network_security_v1.ServerTlsPolicy() + server_tls_policy.name = "name_value" + + request = network_security_v1.UpdateServerTlsPolicyRequest( + server_tls_policy=server_tls_policy, + ) + + # Make the request + operation = client.update_server_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.UpdateServerTlsPolicyRequest, dict]): + The request object. Request used by + UpdateServerTlsPolicy method. + server_tls_policy (google.cloud.network_security_v1.types.ServerTlsPolicy): + Required. Updated ServerTlsPolicy + resource. + + This corresponds to the ``server_tls_policy`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + update_mask (google.protobuf.field_mask_pb2.FieldMask): + Optional. Field mask is used to specify the fields to be + overwritten in the ServerTlsPolicy resource by the + update. The fields specified in the update_mask are + relative to the resource, not the full request. A field + will be overwritten if it is in the mask. If the user + does not provide a mask then all fields will be + overwritten. + + This corresponds to the ``update_mask`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation.Operation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.cloud.network_security_v1.types.ServerTlsPolicy` ServerTlsPolicy is a resource that specifies how a server should authenticate + incoming requests. This resource itself does not + affect configuration unless it is attached to a + target https proxy or endpoint config selector + resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([server_tls_policy, update_mask]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a gcn_server_tls_policy.UpdateServerTlsPolicyRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance(request, gcn_server_tls_policy.UpdateServerTlsPolicyRequest): + request = gcn_server_tls_policy.UpdateServerTlsPolicyRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if server_tls_policy is not None: + request.server_tls_policy = server_tls_policy + if update_mask is not None: + request.update_mask = update_mask + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[self._transport.update_server_tls_policy] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata( + (("server_tls_policy.name", request.server_tls_policy.name),) + ), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation.from_gapic( + response, + self._transport.operations_client, + gcn_server_tls_policy.ServerTlsPolicy, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + def delete_server_tls_policy( + self, + request: Union[server_tls_policy.DeleteServerTlsPolicyRequest, dict] = None, + *, + name: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation.Operation: + r"""Deletes a single ServerTlsPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_delete_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.DeleteServerTlsPolicyRequest( + name="name_value", + ) + + # Make the request + operation = client.delete_server_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.DeleteServerTlsPolicyRequest, dict]): + The request object. Request used by the + DeleteServerTlsPolicy method. + name (str): + Required. A name of the ServerTlsPolicy to delete. Must + be in the format + ``projects/*/locations/{location}/serverTlsPolicies/*``. + + This corresponds to the ``name`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation.Operation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.protobuf.empty_pb2.Empty` A generic empty message that you can re-use to avoid defining duplicated + empty messages in your APIs. A typical example is to + use it as the request or the response type of an API + method. For instance: + + service Foo { + rpc Bar(google.protobuf.Empty) returns + (google.protobuf.Empty); + + } + + The JSON representation for Empty is empty JSON + object {}. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([name]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a server_tls_policy.DeleteServerTlsPolicyRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance(request, server_tls_policy.DeleteServerTlsPolicyRequest): + request = server_tls_policy.DeleteServerTlsPolicyRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if name is not None: + request.name = name + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[self._transport.delete_server_tls_policy] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("name", request.name),)), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation.from_gapic( + response, + self._transport.operations_client, + empty_pb2.Empty, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + def list_client_tls_policies( + self, + request: Union[client_tls_policy.ListClientTlsPoliciesRequest, dict] = None, + *, + parent: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> pagers.ListClientTlsPoliciesPager: + r"""Lists ClientTlsPolicies in a given project and + location. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_list_client_tls_policies(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.ListClientTlsPoliciesRequest( + parent="parent_value", + ) + + # Make the request + page_result = client.list_client_tls_policies(request=request) + + # Handle the response + for response in page_result: + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.ListClientTlsPoliciesRequest, dict]): + The request object. Request used by the + ListClientTlsPolicies method. + parent (str): + Required. The project and location from which the + ClientTlsPolicies should be listed, specified in the + format ``projects/*/locations/{location}``. + + This corresponds to the ``parent`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.cloud.network_security_v1.services.network_security.pagers.ListClientTlsPoliciesPager: + Response returned by the + ListClientTlsPolicies method. + Iterating over this object will yield + results and resolve additional pages + automatically. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([parent]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a client_tls_policy.ListClientTlsPoliciesRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance(request, client_tls_policy.ListClientTlsPoliciesRequest): + request = client_tls_policy.ListClientTlsPoliciesRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if parent is not None: + request.parent = parent + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[self._transport.list_client_tls_policies] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", request.parent),)), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # This method is paged; wrap the response in a pager, which provides + # an `__iter__` convenience method. + response = pagers.ListClientTlsPoliciesPager( + method=rpc, + request=request, + response=response, + metadata=metadata, + ) + + # Done; return the response. + return response + + def get_client_tls_policy( + self, + request: Union[client_tls_policy.GetClientTlsPolicyRequest, dict] = None, + *, + name: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> client_tls_policy.ClientTlsPolicy: + r"""Gets details of a single ClientTlsPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_get_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.GetClientTlsPolicyRequest( + name="name_value", + ) + + # Make the request + response = client.get_client_tls_policy(request=request) + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.GetClientTlsPolicyRequest, dict]): + The request object. Request used by the + GetClientTlsPolicy method. + name (str): + Required. A name of the ClientTlsPolicy to get. Must be + in the format + ``projects/*/locations/{location}/clientTlsPolicies/*``. + + This corresponds to the ``name`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.cloud.network_security_v1.types.ClientTlsPolicy: + ClientTlsPolicy is a resource that + specifies how a client should + authenticate connections to backends of + a service. This resource itself does not + affect configuration unless it is + attached to a backend service resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([name]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a client_tls_policy.GetClientTlsPolicyRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance(request, client_tls_policy.GetClientTlsPolicyRequest): + request = client_tls_policy.GetClientTlsPolicyRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if name is not None: + request.name = name + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[self._transport.get_client_tls_policy] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("name", request.name),)), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Done; return the response. + return response + + def create_client_tls_policy( + self, + request: Union[gcn_client_tls_policy.CreateClientTlsPolicyRequest, dict] = None, + *, + parent: str = None, + client_tls_policy: gcn_client_tls_policy.ClientTlsPolicy = None, + client_tls_policy_id: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation.Operation: + r"""Creates a new ClientTlsPolicy in a given project and + location. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_create_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + client_tls_policy = network_security_v1.ClientTlsPolicy() + client_tls_policy.name = "name_value" + + request = network_security_v1.CreateClientTlsPolicyRequest( + parent="parent_value", + client_tls_policy_id="client_tls_policy_id_value", + client_tls_policy=client_tls_policy, + ) + + # Make the request + operation = client.create_client_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.CreateClientTlsPolicyRequest, dict]): + The request object. Request used by the + CreateClientTlsPolicy method. + parent (str): + Required. The parent resource of the ClientTlsPolicy. + Must be in the format + ``projects/*/locations/{location}``. + + This corresponds to the ``parent`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + client_tls_policy (google.cloud.network_security_v1.types.ClientTlsPolicy): + Required. ClientTlsPolicy resource to + be created. + + This corresponds to the ``client_tls_policy`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + client_tls_policy_id (str): + Required. Short name of the ClientTlsPolicy resource to + be created. This value should be 1-63 characters long, + containing only letters, numbers, hyphens, and + underscores, and should not start with a number. E.g. + "client_mtls_policy". + + This corresponds to the ``client_tls_policy_id`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation.Operation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.cloud.network_security_v1.types.ClientTlsPolicy` ClientTlsPolicy is a resource that specifies how a client should authenticate + connections to backends of a service. This resource + itself does not affect configuration unless it is + attached to a backend service resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([parent, client_tls_policy, client_tls_policy_id]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a gcn_client_tls_policy.CreateClientTlsPolicyRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance(request, gcn_client_tls_policy.CreateClientTlsPolicyRequest): + request = gcn_client_tls_policy.CreateClientTlsPolicyRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if parent is not None: + request.parent = parent + if client_tls_policy is not None: + request.client_tls_policy = client_tls_policy + if client_tls_policy_id is not None: + request.client_tls_policy_id = client_tls_policy_id + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[self._transport.create_client_tls_policy] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", request.parent),)), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation.from_gapic( + response, + self._transport.operations_client, + gcn_client_tls_policy.ClientTlsPolicy, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + def update_client_tls_policy( + self, + request: Union[gcn_client_tls_policy.UpdateClientTlsPolicyRequest, dict] = None, + *, + client_tls_policy: gcn_client_tls_policy.ClientTlsPolicy = None, + update_mask: field_mask_pb2.FieldMask = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation.Operation: + r"""Updates the parameters of a single ClientTlsPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_update_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + client_tls_policy = network_security_v1.ClientTlsPolicy() + client_tls_policy.name = "name_value" + + request = network_security_v1.UpdateClientTlsPolicyRequest( + client_tls_policy=client_tls_policy, + ) + + # Make the request + operation = client.update_client_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.UpdateClientTlsPolicyRequest, dict]): + The request object. Request used by + UpdateClientTlsPolicy method. + client_tls_policy (google.cloud.network_security_v1.types.ClientTlsPolicy): + Required. Updated ClientTlsPolicy + resource. + + This corresponds to the ``client_tls_policy`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + update_mask (google.protobuf.field_mask_pb2.FieldMask): + Optional. Field mask is used to specify the fields to be + overwritten in the ClientTlsPolicy resource by the + update. The fields specified in the update_mask are + relative to the resource, not the full request. A field + will be overwritten if it is in the mask. If the user + does not provide a mask then all fields will be + overwritten. + + This corresponds to the ``update_mask`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation.Operation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.cloud.network_security_v1.types.ClientTlsPolicy` ClientTlsPolicy is a resource that specifies how a client should authenticate + connections to backends of a service. This resource + itself does not affect configuration unless it is + attached to a backend service resource. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([client_tls_policy, update_mask]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a gcn_client_tls_policy.UpdateClientTlsPolicyRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance(request, gcn_client_tls_policy.UpdateClientTlsPolicyRequest): + request = gcn_client_tls_policy.UpdateClientTlsPolicyRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if client_tls_policy is not None: + request.client_tls_policy = client_tls_policy + if update_mask is not None: + request.update_mask = update_mask + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[self._transport.update_client_tls_policy] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata( + (("client_tls_policy.name", request.client_tls_policy.name),) + ), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation.from_gapic( + response, + self._transport.operations_client, + gcn_client_tls_policy.ClientTlsPolicy, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + def delete_client_tls_policy( + self, + request: Union[client_tls_policy.DeleteClientTlsPolicyRequest, dict] = None, + *, + name: str = None, + retry: OptionalRetry = gapic_v1.method.DEFAULT, + timeout: float = None, + metadata: Sequence[Tuple[str, str]] = (), + ) -> operation.Operation: + r"""Deletes a single ClientTlsPolicy. + + .. code-block:: python + + from google.cloud import network_security_v1 + + def sample_delete_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.DeleteClientTlsPolicyRequest( + name="name_value", + ) + + # Make the request + operation = client.delete_client_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + + Args: + request (Union[google.cloud.network_security_v1.types.DeleteClientTlsPolicyRequest, dict]): + The request object. Request used by the + DeleteClientTlsPolicy method. + name (str): + Required. A name of the ClientTlsPolicy to delete. Must + be in the format + ``projects/*/locations/{location}/clientTlsPolicies/*``. + + This corresponds to the ``name`` field + on the ``request`` instance; if ``request`` is provided, this + should not be set. + retry (google.api_core.retry.Retry): Designation of what errors, if any, + should be retried. + timeout (float): The timeout for this request. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + + Returns: + google.api_core.operation.Operation: + An object representing a long-running operation. + + The result type for the operation will be :class:`google.protobuf.empty_pb2.Empty` A generic empty message that you can re-use to avoid defining duplicated + empty messages in your APIs. A typical example is to + use it as the request or the response type of an API + method. For instance: + + service Foo { + rpc Bar(google.protobuf.Empty) returns + (google.protobuf.Empty); + + } + + The JSON representation for Empty is empty JSON + object {}. + + """ + # Create or coerce a protobuf request object. + # Quick check: If we got a request object, we should *not* have + # gotten any keyword arguments that map to the request. + has_flattened_params = any([name]) + if request is not None and has_flattened_params: + raise ValueError( + "If the `request` argument is set, then none of " + "the individual field arguments should be set." + ) + + # Minor optimization to avoid making a copy if the user passes + # in a client_tls_policy.DeleteClientTlsPolicyRequest. + # There's no risk of modifying the input as we've already verified + # there are no flattened fields. + if not isinstance(request, client_tls_policy.DeleteClientTlsPolicyRequest): + request = client_tls_policy.DeleteClientTlsPolicyRequest(request) + # If we have keyword arguments corresponding to fields on the + # request, apply these. + if name is not None: + request.name = name + + # Wrap the RPC method; this adds retry and timeout information, + # and friendly error handling. + rpc = self._transport._wrapped_methods[self._transport.delete_client_tls_policy] + + # Certain fields should be provided within the metadata header; + # add these here. + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("name", request.name),)), + ) + + # Send the request. + response = rpc( + request, + retry=retry, + timeout=timeout, + metadata=metadata, + ) + + # Wrap the response in an operation future. + response = operation.from_gapic( + response, + self._transport.operations_client, + empty_pb2.Empty, + metadata_type=common.OperationMetadata, + ) + + # Done; return the response. + return response + + def __enter__(self): + return self + + def __exit__(self, type, value, traceback): + """Releases underlying transport's resources. + + .. warning:: + ONLY use as a context manager if the transport is NOT shared + with other clients! Exiting the with block will CLOSE the transport + and may cause errors in other clients! + """ + self.transport.close() + + +try: + DEFAULT_CLIENT_INFO = gapic_v1.client_info.ClientInfo( + gapic_version=pkg_resources.get_distribution( + "google-cloud-network-security", + ).version, + ) +except pkg_resources.DistributionNotFound: + DEFAULT_CLIENT_INFO = gapic_v1.client_info.ClientInfo() + + +__all__ = ("NetworkSecurityClient",) diff --git a/google/cloud/network_security_v1/services/network_security/pagers.py b/google/cloud/network_security_v1/services/network_security/pagers.py new file mode 100644 index 0000000..5577d51 --- /dev/null +++ b/google/cloud/network_security_v1/services/network_security/pagers.py @@ -0,0 +1,427 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +from typing import ( + Any, + AsyncIterator, + Awaitable, + Callable, + Iterator, + Optional, + Sequence, + Tuple, +) + +from google.cloud.network_security_v1.types import ( + authorization_policy, + client_tls_policy, + server_tls_policy, +) + + +class ListAuthorizationPoliciesPager: + """A pager for iterating through ``list_authorization_policies`` requests. + + This class thinly wraps an initial + :class:`google.cloud.network_security_v1.types.ListAuthorizationPoliciesResponse` object, and + provides an ``__iter__`` method to iterate through its + ``authorization_policies`` field. + + If there are more pages, the ``__iter__`` method will make additional + ``ListAuthorizationPolicies`` requests and continue to iterate + through the ``authorization_policies`` field on the + corresponding responses. + + All the usual :class:`google.cloud.network_security_v1.types.ListAuthorizationPoliciesResponse` + attributes are available on the pager. If multiple requests are made, only + the most recent response is retained, and thus used for attribute lookup. + """ + + def __init__( + self, + method: Callable[..., authorization_policy.ListAuthorizationPoliciesResponse], + request: authorization_policy.ListAuthorizationPoliciesRequest, + response: authorization_policy.ListAuthorizationPoliciesResponse, + *, + metadata: Sequence[Tuple[str, str]] = () + ): + """Instantiate the pager. + + Args: + method (Callable): The method that was originally called, and + which instantiated this pager. + request (google.cloud.network_security_v1.types.ListAuthorizationPoliciesRequest): + The initial request object. + response (google.cloud.network_security_v1.types.ListAuthorizationPoliciesResponse): + The initial response object. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + """ + self._method = method + self._request = authorization_policy.ListAuthorizationPoliciesRequest(request) + self._response = response + self._metadata = metadata + + def __getattr__(self, name: str) -> Any: + return getattr(self._response, name) + + @property + def pages(self) -> Iterator[authorization_policy.ListAuthorizationPoliciesResponse]: + yield self._response + while self._response.next_page_token: + self._request.page_token = self._response.next_page_token + self._response = self._method(self._request, metadata=self._metadata) + yield self._response + + def __iter__(self) -> Iterator[authorization_policy.AuthorizationPolicy]: + for page in self.pages: + yield from page.authorization_policies + + def __repr__(self) -> str: + return "{0}<{1!r}>".format(self.__class__.__name__, self._response) + + +class ListAuthorizationPoliciesAsyncPager: + """A pager for iterating through ``list_authorization_policies`` requests. + + This class thinly wraps an initial + :class:`google.cloud.network_security_v1.types.ListAuthorizationPoliciesResponse` object, and + provides an ``__aiter__`` method to iterate through its + ``authorization_policies`` field. + + If there are more pages, the ``__aiter__`` method will make additional + ``ListAuthorizationPolicies`` requests and continue to iterate + through the ``authorization_policies`` field on the + corresponding responses. + + All the usual :class:`google.cloud.network_security_v1.types.ListAuthorizationPoliciesResponse` + attributes are available on the pager. If multiple requests are made, only + the most recent response is retained, and thus used for attribute lookup. + """ + + def __init__( + self, + method: Callable[ + ..., Awaitable[authorization_policy.ListAuthorizationPoliciesResponse] + ], + request: authorization_policy.ListAuthorizationPoliciesRequest, + response: authorization_policy.ListAuthorizationPoliciesResponse, + *, + metadata: Sequence[Tuple[str, str]] = () + ): + """Instantiates the pager. + + Args: + method (Callable): The method that was originally called, and + which instantiated this pager. + request (google.cloud.network_security_v1.types.ListAuthorizationPoliciesRequest): + The initial request object. + response (google.cloud.network_security_v1.types.ListAuthorizationPoliciesResponse): + The initial response object. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + """ + self._method = method + self._request = authorization_policy.ListAuthorizationPoliciesRequest(request) + self._response = response + self._metadata = metadata + + def __getattr__(self, name: str) -> Any: + return getattr(self._response, name) + + @property + async def pages( + self, + ) -> AsyncIterator[authorization_policy.ListAuthorizationPoliciesResponse]: + yield self._response + while self._response.next_page_token: + self._request.page_token = self._response.next_page_token + self._response = await self._method(self._request, metadata=self._metadata) + yield self._response + + def __aiter__(self) -> AsyncIterator[authorization_policy.AuthorizationPolicy]: + async def async_generator(): + async for page in self.pages: + for response in page.authorization_policies: + yield response + + return async_generator() + + def __repr__(self) -> str: + return "{0}<{1!r}>".format(self.__class__.__name__, self._response) + + +class ListServerTlsPoliciesPager: + """A pager for iterating through ``list_server_tls_policies`` requests. + + This class thinly wraps an initial + :class:`google.cloud.network_security_v1.types.ListServerTlsPoliciesResponse` object, and + provides an ``__iter__`` method to iterate through its + ``server_tls_policies`` field. + + If there are more pages, the ``__iter__`` method will make additional + ``ListServerTlsPolicies`` requests and continue to iterate + through the ``server_tls_policies`` field on the + corresponding responses. + + All the usual :class:`google.cloud.network_security_v1.types.ListServerTlsPoliciesResponse` + attributes are available on the pager. If multiple requests are made, only + the most recent response is retained, and thus used for attribute lookup. + """ + + def __init__( + self, + method: Callable[..., server_tls_policy.ListServerTlsPoliciesResponse], + request: server_tls_policy.ListServerTlsPoliciesRequest, + response: server_tls_policy.ListServerTlsPoliciesResponse, + *, + metadata: Sequence[Tuple[str, str]] = () + ): + """Instantiate the pager. + + Args: + method (Callable): The method that was originally called, and + which instantiated this pager. + request (google.cloud.network_security_v1.types.ListServerTlsPoliciesRequest): + The initial request object. + response (google.cloud.network_security_v1.types.ListServerTlsPoliciesResponse): + The initial response object. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + """ + self._method = method + self._request = server_tls_policy.ListServerTlsPoliciesRequest(request) + self._response = response + self._metadata = metadata + + def __getattr__(self, name: str) -> Any: + return getattr(self._response, name) + + @property + def pages(self) -> Iterator[server_tls_policy.ListServerTlsPoliciesResponse]: + yield self._response + while self._response.next_page_token: + self._request.page_token = self._response.next_page_token + self._response = self._method(self._request, metadata=self._metadata) + yield self._response + + def __iter__(self) -> Iterator[server_tls_policy.ServerTlsPolicy]: + for page in self.pages: + yield from page.server_tls_policies + + def __repr__(self) -> str: + return "{0}<{1!r}>".format(self.__class__.__name__, self._response) + + +class ListServerTlsPoliciesAsyncPager: + """A pager for iterating through ``list_server_tls_policies`` requests. + + This class thinly wraps an initial + :class:`google.cloud.network_security_v1.types.ListServerTlsPoliciesResponse` object, and + provides an ``__aiter__`` method to iterate through its + ``server_tls_policies`` field. + + If there are more pages, the ``__aiter__`` method will make additional + ``ListServerTlsPolicies`` requests and continue to iterate + through the ``server_tls_policies`` field on the + corresponding responses. + + All the usual :class:`google.cloud.network_security_v1.types.ListServerTlsPoliciesResponse` + attributes are available on the pager. If multiple requests are made, only + the most recent response is retained, and thus used for attribute lookup. + """ + + def __init__( + self, + method: Callable[ + ..., Awaitable[server_tls_policy.ListServerTlsPoliciesResponse] + ], + request: server_tls_policy.ListServerTlsPoliciesRequest, + response: server_tls_policy.ListServerTlsPoliciesResponse, + *, + metadata: Sequence[Tuple[str, str]] = () + ): + """Instantiates the pager. + + Args: + method (Callable): The method that was originally called, and + which instantiated this pager. + request (google.cloud.network_security_v1.types.ListServerTlsPoliciesRequest): + The initial request object. + response (google.cloud.network_security_v1.types.ListServerTlsPoliciesResponse): + The initial response object. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + """ + self._method = method + self._request = server_tls_policy.ListServerTlsPoliciesRequest(request) + self._response = response + self._metadata = metadata + + def __getattr__(self, name: str) -> Any: + return getattr(self._response, name) + + @property + async def pages( + self, + ) -> AsyncIterator[server_tls_policy.ListServerTlsPoliciesResponse]: + yield self._response + while self._response.next_page_token: + self._request.page_token = self._response.next_page_token + self._response = await self._method(self._request, metadata=self._metadata) + yield self._response + + def __aiter__(self) -> AsyncIterator[server_tls_policy.ServerTlsPolicy]: + async def async_generator(): + async for page in self.pages: + for response in page.server_tls_policies: + yield response + + return async_generator() + + def __repr__(self) -> str: + return "{0}<{1!r}>".format(self.__class__.__name__, self._response) + + +class ListClientTlsPoliciesPager: + """A pager for iterating through ``list_client_tls_policies`` requests. + + This class thinly wraps an initial + :class:`google.cloud.network_security_v1.types.ListClientTlsPoliciesResponse` object, and + provides an ``__iter__`` method to iterate through its + ``client_tls_policies`` field. + + If there are more pages, the ``__iter__`` method will make additional + ``ListClientTlsPolicies`` requests and continue to iterate + through the ``client_tls_policies`` field on the + corresponding responses. + + All the usual :class:`google.cloud.network_security_v1.types.ListClientTlsPoliciesResponse` + attributes are available on the pager. If multiple requests are made, only + the most recent response is retained, and thus used for attribute lookup. + """ + + def __init__( + self, + method: Callable[..., client_tls_policy.ListClientTlsPoliciesResponse], + request: client_tls_policy.ListClientTlsPoliciesRequest, + response: client_tls_policy.ListClientTlsPoliciesResponse, + *, + metadata: Sequence[Tuple[str, str]] = () + ): + """Instantiate the pager. + + Args: + method (Callable): The method that was originally called, and + which instantiated this pager. + request (google.cloud.network_security_v1.types.ListClientTlsPoliciesRequest): + The initial request object. + response (google.cloud.network_security_v1.types.ListClientTlsPoliciesResponse): + The initial response object. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + """ + self._method = method + self._request = client_tls_policy.ListClientTlsPoliciesRequest(request) + self._response = response + self._metadata = metadata + + def __getattr__(self, name: str) -> Any: + return getattr(self._response, name) + + @property + def pages(self) -> Iterator[client_tls_policy.ListClientTlsPoliciesResponse]: + yield self._response + while self._response.next_page_token: + self._request.page_token = self._response.next_page_token + self._response = self._method(self._request, metadata=self._metadata) + yield self._response + + def __iter__(self) -> Iterator[client_tls_policy.ClientTlsPolicy]: + for page in self.pages: + yield from page.client_tls_policies + + def __repr__(self) -> str: + return "{0}<{1!r}>".format(self.__class__.__name__, self._response) + + +class ListClientTlsPoliciesAsyncPager: + """A pager for iterating through ``list_client_tls_policies`` requests. + + This class thinly wraps an initial + :class:`google.cloud.network_security_v1.types.ListClientTlsPoliciesResponse` object, and + provides an ``__aiter__`` method to iterate through its + ``client_tls_policies`` field. + + If there are more pages, the ``__aiter__`` method will make additional + ``ListClientTlsPolicies`` requests and continue to iterate + through the ``client_tls_policies`` field on the + corresponding responses. + + All the usual :class:`google.cloud.network_security_v1.types.ListClientTlsPoliciesResponse` + attributes are available on the pager. If multiple requests are made, only + the most recent response is retained, and thus used for attribute lookup. + """ + + def __init__( + self, + method: Callable[ + ..., Awaitable[client_tls_policy.ListClientTlsPoliciesResponse] + ], + request: client_tls_policy.ListClientTlsPoliciesRequest, + response: client_tls_policy.ListClientTlsPoliciesResponse, + *, + metadata: Sequence[Tuple[str, str]] = () + ): + """Instantiates the pager. + + Args: + method (Callable): The method that was originally called, and + which instantiated this pager. + request (google.cloud.network_security_v1.types.ListClientTlsPoliciesRequest): + The initial request object. + response (google.cloud.network_security_v1.types.ListClientTlsPoliciesResponse): + The initial response object. + metadata (Sequence[Tuple[str, str]]): Strings which should be + sent along with the request as metadata. + """ + self._method = method + self._request = client_tls_policy.ListClientTlsPoliciesRequest(request) + self._response = response + self._metadata = metadata + + def __getattr__(self, name: str) -> Any: + return getattr(self._response, name) + + @property + async def pages( + self, + ) -> AsyncIterator[client_tls_policy.ListClientTlsPoliciesResponse]: + yield self._response + while self._response.next_page_token: + self._request.page_token = self._response.next_page_token + self._response = await self._method(self._request, metadata=self._metadata) + yield self._response + + def __aiter__(self) -> AsyncIterator[client_tls_policy.ClientTlsPolicy]: + async def async_generator(): + async for page in self.pages: + for response in page.client_tls_policies: + yield response + + return async_generator() + + def __repr__(self) -> str: + return "{0}<{1!r}>".format(self.__class__.__name__, self._response) diff --git a/google/cloud/network_security_v1/services/network_security/transports/__init__.py b/google/cloud/network_security_v1/services/network_security/transports/__init__.py new file mode 100644 index 0000000..e6f7341 --- /dev/null +++ b/google/cloud/network_security_v1/services/network_security/transports/__init__.py @@ -0,0 +1,32 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +from collections import OrderedDict +from typing import Dict, Type + +from .base import NetworkSecurityTransport +from .grpc import NetworkSecurityGrpcTransport +from .grpc_asyncio import NetworkSecurityGrpcAsyncIOTransport + +# Compile a registry of transports. +_transport_registry = OrderedDict() # type: Dict[str, Type[NetworkSecurityTransport]] +_transport_registry["grpc"] = NetworkSecurityGrpcTransport +_transport_registry["grpc_asyncio"] = NetworkSecurityGrpcAsyncIOTransport + +__all__ = ( + "NetworkSecurityTransport", + "NetworkSecurityGrpcTransport", + "NetworkSecurityGrpcAsyncIOTransport", +) diff --git a/google/cloud/network_security_v1/services/network_security/transports/base.py b/google/cloud/network_security_v1/services/network_security/transports/base.py new file mode 100644 index 0000000..0442237 --- /dev/null +++ b/google/cloud/network_security_v1/services/network_security/transports/base.py @@ -0,0 +1,391 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +import abc +from typing import Awaitable, Callable, Dict, Optional, Sequence, Union + +import google.api_core +from google.api_core import exceptions as core_exceptions +from google.api_core import gapic_v1, operations_v1 +from google.api_core import retry as retries +import google.auth # type: ignore +from google.auth import credentials as ga_credentials # type: ignore +from google.longrunning import operations_pb2 # type: ignore +from google.oauth2 import service_account # type: ignore +import pkg_resources + +from google.cloud.network_security_v1.types import ( + authorization_policy as gcn_authorization_policy, +) +from google.cloud.network_security_v1.types import ( + client_tls_policy as gcn_client_tls_policy, +) +from google.cloud.network_security_v1.types import ( + server_tls_policy as gcn_server_tls_policy, +) +from google.cloud.network_security_v1.types import authorization_policy +from google.cloud.network_security_v1.types import client_tls_policy +from google.cloud.network_security_v1.types import server_tls_policy + +try: + DEFAULT_CLIENT_INFO = gapic_v1.client_info.ClientInfo( + gapic_version=pkg_resources.get_distribution( + "google-cloud-network-security", + ).version, + ) +except pkg_resources.DistributionNotFound: + DEFAULT_CLIENT_INFO = gapic_v1.client_info.ClientInfo() + + +class NetworkSecurityTransport(abc.ABC): + """Abstract transport class for NetworkSecurity.""" + + AUTH_SCOPES = ("https://www.googleapis.com/auth/cloud-platform",) + + DEFAULT_HOST: str = "networksecurity.googleapis.com" + + def __init__( + self, + *, + host: str = DEFAULT_HOST, + credentials: ga_credentials.Credentials = None, + credentials_file: Optional[str] = None, + scopes: Optional[Sequence[str]] = None, + quota_project_id: Optional[str] = None, + client_info: gapic_v1.client_info.ClientInfo = DEFAULT_CLIENT_INFO, + always_use_jwt_access: Optional[bool] = False, + api_audience: Optional[str] = None, + **kwargs, + ) -> None: + """Instantiate the transport. + + Args: + host (Optional[str]): + The hostname to connect to. + credentials (Optional[google.auth.credentials.Credentials]): The + authorization credentials to attach to requests. These + credentials identify the application to the service; if none + are specified, the client will attempt to ascertain the + credentials from the environment. + credentials_file (Optional[str]): A file with credentials that can + be loaded with :func:`google.auth.load_credentials_from_file`. + This argument is mutually exclusive with credentials. + scopes (Optional[Sequence[str]]): A list of scopes. + quota_project_id (Optional[str]): An optional project to use for billing + and quota. + client_info (google.api_core.gapic_v1.client_info.ClientInfo): + The client info used to send a user-agent string along with + API requests. If ``None``, then default info will be used. + Generally, you only need to set this if you're developing + your own client library. + always_use_jwt_access (Optional[bool]): Whether self signed JWT should + be used for service account credentials. + """ + + scopes_kwargs = {"scopes": scopes, "default_scopes": self.AUTH_SCOPES} + + # Save the scopes. + self._scopes = scopes + + # If no credentials are provided, then determine the appropriate + # defaults. + if credentials and credentials_file: + raise core_exceptions.DuplicateCredentialArgs( + "'credentials_file' and 'credentials' are mutually exclusive" + ) + + if credentials_file is not None: + credentials, _ = google.auth.load_credentials_from_file( + credentials_file, **scopes_kwargs, quota_project_id=quota_project_id + ) + elif credentials is None: + credentials, _ = google.auth.default( + **scopes_kwargs, quota_project_id=quota_project_id + ) + # Don't apply audience if the credentials file passed from user. + if hasattr(credentials, "with_gdch_audience"): + credentials = credentials.with_gdch_audience( + api_audience if api_audience else host + ) + + # If the credentials are service account credentials, then always try to use self signed JWT. + if ( + always_use_jwt_access + and isinstance(credentials, service_account.Credentials) + and hasattr(service_account.Credentials, "with_always_use_jwt_access") + ): + credentials = credentials.with_always_use_jwt_access(True) + + # Save the credentials. + self._credentials = credentials + + # Save the hostname. Default to port 443 (HTTPS) if none is specified. + if ":" not in host: + host += ":443" + self._host = host + + def _prep_wrapped_messages(self, client_info): + # Precompute the wrapped methods. + self._wrapped_methods = { + self.list_authorization_policies: gapic_v1.method.wrap_method( + self.list_authorization_policies, + default_timeout=None, + client_info=client_info, + ), + self.get_authorization_policy: gapic_v1.method.wrap_method( + self.get_authorization_policy, + default_timeout=None, + client_info=client_info, + ), + self.create_authorization_policy: gapic_v1.method.wrap_method( + self.create_authorization_policy, + default_timeout=None, + client_info=client_info, + ), + self.update_authorization_policy: gapic_v1.method.wrap_method( + self.update_authorization_policy, + default_timeout=None, + client_info=client_info, + ), + self.delete_authorization_policy: gapic_v1.method.wrap_method( + self.delete_authorization_policy, + default_timeout=None, + client_info=client_info, + ), + self.list_server_tls_policies: gapic_v1.method.wrap_method( + self.list_server_tls_policies, + default_timeout=None, + client_info=client_info, + ), + self.get_server_tls_policy: gapic_v1.method.wrap_method( + self.get_server_tls_policy, + default_timeout=None, + client_info=client_info, + ), + self.create_server_tls_policy: gapic_v1.method.wrap_method( + self.create_server_tls_policy, + default_timeout=None, + client_info=client_info, + ), + self.update_server_tls_policy: gapic_v1.method.wrap_method( + self.update_server_tls_policy, + default_timeout=None, + client_info=client_info, + ), + self.delete_server_tls_policy: gapic_v1.method.wrap_method( + self.delete_server_tls_policy, + default_timeout=None, + client_info=client_info, + ), + self.list_client_tls_policies: gapic_v1.method.wrap_method( + self.list_client_tls_policies, + default_timeout=None, + client_info=client_info, + ), + self.get_client_tls_policy: gapic_v1.method.wrap_method( + self.get_client_tls_policy, + default_timeout=None, + client_info=client_info, + ), + self.create_client_tls_policy: gapic_v1.method.wrap_method( + self.create_client_tls_policy, + default_timeout=None, + client_info=client_info, + ), + self.update_client_tls_policy: gapic_v1.method.wrap_method( + self.update_client_tls_policy, + default_timeout=None, + client_info=client_info, + ), + self.delete_client_tls_policy: gapic_v1.method.wrap_method( + self.delete_client_tls_policy, + default_timeout=None, + client_info=client_info, + ), + } + + def close(self): + """Closes resources associated with the transport. + + .. warning:: + Only call this method if the transport is NOT shared + with other clients - this may cause errors in other clients! + """ + raise NotImplementedError() + + @property + def operations_client(self): + """Return the client designed to process long-running operations.""" + raise NotImplementedError() + + @property + def list_authorization_policies( + self, + ) -> Callable[ + [authorization_policy.ListAuthorizationPoliciesRequest], + Union[ + authorization_policy.ListAuthorizationPoliciesResponse, + Awaitable[authorization_policy.ListAuthorizationPoliciesResponse], + ], + ]: + raise NotImplementedError() + + @property + def get_authorization_policy( + self, + ) -> Callable[ + [authorization_policy.GetAuthorizationPolicyRequest], + Union[ + authorization_policy.AuthorizationPolicy, + Awaitable[authorization_policy.AuthorizationPolicy], + ], + ]: + raise NotImplementedError() + + @property + def create_authorization_policy( + self, + ) -> Callable[ + [gcn_authorization_policy.CreateAuthorizationPolicyRequest], + Union[operations_pb2.Operation, Awaitable[operations_pb2.Operation]], + ]: + raise NotImplementedError() + + @property + def update_authorization_policy( + self, + ) -> Callable[ + [gcn_authorization_policy.UpdateAuthorizationPolicyRequest], + Union[operations_pb2.Operation, Awaitable[operations_pb2.Operation]], + ]: + raise NotImplementedError() + + @property + def delete_authorization_policy( + self, + ) -> Callable[ + [authorization_policy.DeleteAuthorizationPolicyRequest], + Union[operations_pb2.Operation, Awaitable[operations_pb2.Operation]], + ]: + raise NotImplementedError() + + @property + def list_server_tls_policies( + self, + ) -> Callable[ + [server_tls_policy.ListServerTlsPoliciesRequest], + Union[ + server_tls_policy.ListServerTlsPoliciesResponse, + Awaitable[server_tls_policy.ListServerTlsPoliciesResponse], + ], + ]: + raise NotImplementedError() + + @property + def get_server_tls_policy( + self, + ) -> Callable[ + [server_tls_policy.GetServerTlsPolicyRequest], + Union[ + server_tls_policy.ServerTlsPolicy, + Awaitable[server_tls_policy.ServerTlsPolicy], + ], + ]: + raise NotImplementedError() + + @property + def create_server_tls_policy( + self, + ) -> Callable[ + [gcn_server_tls_policy.CreateServerTlsPolicyRequest], + Union[operations_pb2.Operation, Awaitable[operations_pb2.Operation]], + ]: + raise NotImplementedError() + + @property + def update_server_tls_policy( + self, + ) -> Callable[ + [gcn_server_tls_policy.UpdateServerTlsPolicyRequest], + Union[operations_pb2.Operation, Awaitable[operations_pb2.Operation]], + ]: + raise NotImplementedError() + + @property + def delete_server_tls_policy( + self, + ) -> Callable[ + [server_tls_policy.DeleteServerTlsPolicyRequest], + Union[operations_pb2.Operation, Awaitable[operations_pb2.Operation]], + ]: + raise NotImplementedError() + + @property + def list_client_tls_policies( + self, + ) -> Callable[ + [client_tls_policy.ListClientTlsPoliciesRequest], + Union[ + client_tls_policy.ListClientTlsPoliciesResponse, + Awaitable[client_tls_policy.ListClientTlsPoliciesResponse], + ], + ]: + raise NotImplementedError() + + @property + def get_client_tls_policy( + self, + ) -> Callable[ + [client_tls_policy.GetClientTlsPolicyRequest], + Union[ + client_tls_policy.ClientTlsPolicy, + Awaitable[client_tls_policy.ClientTlsPolicy], + ], + ]: + raise NotImplementedError() + + @property + def create_client_tls_policy( + self, + ) -> Callable[ + [gcn_client_tls_policy.CreateClientTlsPolicyRequest], + Union[operations_pb2.Operation, Awaitable[operations_pb2.Operation]], + ]: + raise NotImplementedError() + + @property + def update_client_tls_policy( + self, + ) -> Callable[ + [gcn_client_tls_policy.UpdateClientTlsPolicyRequest], + Union[operations_pb2.Operation, Awaitable[operations_pb2.Operation]], + ]: + raise NotImplementedError() + + @property + def delete_client_tls_policy( + self, + ) -> Callable[ + [client_tls_policy.DeleteClientTlsPolicyRequest], + Union[operations_pb2.Operation, Awaitable[operations_pb2.Operation]], + ]: + raise NotImplementedError() + + @property + def kind(self) -> str: + raise NotImplementedError() + + +__all__ = ("NetworkSecurityTransport",) diff --git a/google/cloud/network_security_v1/services/network_security/transports/grpc.py b/google/cloud/network_security_v1/services/network_security/transports/grpc.py new file mode 100644 index 0000000..aabdcff --- /dev/null +++ b/google/cloud/network_security_v1/services/network_security/transports/grpc.py @@ -0,0 +1,702 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +from typing import Callable, Dict, Optional, Sequence, Tuple, Union +import warnings + +from google.api_core import gapic_v1, grpc_helpers, operations_v1 +import google.auth # type: ignore +from google.auth import credentials as ga_credentials # type: ignore +from google.auth.transport.grpc import SslCredentials # type: ignore +from google.longrunning import operations_pb2 # type: ignore +import grpc # type: ignore + +from google.cloud.network_security_v1.types import ( + authorization_policy as gcn_authorization_policy, +) +from google.cloud.network_security_v1.types import ( + client_tls_policy as gcn_client_tls_policy, +) +from google.cloud.network_security_v1.types import ( + server_tls_policy as gcn_server_tls_policy, +) +from google.cloud.network_security_v1.types import authorization_policy +from google.cloud.network_security_v1.types import client_tls_policy +from google.cloud.network_security_v1.types import server_tls_policy + +from .base import DEFAULT_CLIENT_INFO, NetworkSecurityTransport + + +class NetworkSecurityGrpcTransport(NetworkSecurityTransport): + """gRPC backend transport for NetworkSecurity. + + Network Security API provides resources to configure + authentication and authorization policies. Refer to per API + resource documentation for more information. + + This class defines the same methods as the primary client, so the + primary client can load the underlying transport implementation + and call it. + + It sends protocol buffers over the wire using gRPC (which is built on + top of HTTP/2); the ``grpcio`` package must be installed. + """ + + _stubs: Dict[str, Callable] + + def __init__( + self, + *, + host: str = "networksecurity.googleapis.com", + credentials: ga_credentials.Credentials = None, + credentials_file: str = None, + scopes: Sequence[str] = None, + channel: grpc.Channel = None, + api_mtls_endpoint: str = None, + client_cert_source: Callable[[], Tuple[bytes, bytes]] = None, + ssl_channel_credentials: grpc.ChannelCredentials = None, + client_cert_source_for_mtls: Callable[[], Tuple[bytes, bytes]] = None, + quota_project_id: Optional[str] = None, + client_info: gapic_v1.client_info.ClientInfo = DEFAULT_CLIENT_INFO, + always_use_jwt_access: Optional[bool] = False, + api_audience: Optional[str] = None, + ) -> None: + """Instantiate the transport. + + Args: + host (Optional[str]): + The hostname to connect to. + credentials (Optional[google.auth.credentials.Credentials]): The + authorization credentials to attach to requests. These + credentials identify the application to the service; if none + are specified, the client will attempt to ascertain the + credentials from the environment. + This argument is ignored if ``channel`` is provided. + credentials_file (Optional[str]): A file with credentials that can + be loaded with :func:`google.auth.load_credentials_from_file`. + This argument is ignored if ``channel`` is provided. + scopes (Optional(Sequence[str])): A list of scopes. This argument is + ignored if ``channel`` is provided. + channel (Optional[grpc.Channel]): A ``Channel`` instance through + which to make calls. + api_mtls_endpoint (Optional[str]): Deprecated. The mutual TLS endpoint. + If provided, it overrides the ``host`` argument and tries to create + a mutual TLS channel with client SSL credentials from + ``client_cert_source`` or application default SSL credentials. + client_cert_source (Optional[Callable[[], Tuple[bytes, bytes]]]): + Deprecated. A callback to provide client SSL certificate bytes and + private key bytes, both in PEM format. It is ignored if + ``api_mtls_endpoint`` is None. + ssl_channel_credentials (grpc.ChannelCredentials): SSL credentials + for the grpc channel. It is ignored if ``channel`` is provided. + client_cert_source_for_mtls (Optional[Callable[[], Tuple[bytes, bytes]]]): + A callback to provide client certificate bytes and private key bytes, + both in PEM format. It is used to configure a mutual TLS channel. It is + ignored if ``channel`` or ``ssl_channel_credentials`` is provided. + quota_project_id (Optional[str]): An optional project to use for billing + and quota. + client_info (google.api_core.gapic_v1.client_info.ClientInfo): + The client info used to send a user-agent string along with + API requests. If ``None``, then default info will be used. + Generally, you only need to set this if you're developing + your own client library. + always_use_jwt_access (Optional[bool]): Whether self signed JWT should + be used for service account credentials. + + Raises: + google.auth.exceptions.MutualTLSChannelError: If mutual TLS transport + creation failed for any reason. + google.api_core.exceptions.DuplicateCredentialArgs: If both ``credentials`` + and ``credentials_file`` are passed. + """ + self._grpc_channel = None + self._ssl_channel_credentials = ssl_channel_credentials + self._stubs: Dict[str, Callable] = {} + self._operations_client: Optional[operations_v1.OperationsClient] = None + + if api_mtls_endpoint: + warnings.warn("api_mtls_endpoint is deprecated", DeprecationWarning) + if client_cert_source: + warnings.warn("client_cert_source is deprecated", DeprecationWarning) + + if channel: + # Ignore credentials if a channel was passed. + credentials = False + # If a channel was explicitly provided, set it. + self._grpc_channel = channel + self._ssl_channel_credentials = None + + else: + if api_mtls_endpoint: + host = api_mtls_endpoint + + # Create SSL credentials with client_cert_source or application + # default SSL credentials. + if client_cert_source: + cert, key = client_cert_source() + self._ssl_channel_credentials = grpc.ssl_channel_credentials( + certificate_chain=cert, private_key=key + ) + else: + self._ssl_channel_credentials = SslCredentials().ssl_credentials + + else: + if client_cert_source_for_mtls and not ssl_channel_credentials: + cert, key = client_cert_source_for_mtls() + self._ssl_channel_credentials = grpc.ssl_channel_credentials( + certificate_chain=cert, private_key=key + ) + + # The base transport sets the host, credentials and scopes + super().__init__( + host=host, + credentials=credentials, + credentials_file=credentials_file, + scopes=scopes, + quota_project_id=quota_project_id, + client_info=client_info, + always_use_jwt_access=always_use_jwt_access, + api_audience=api_audience, + ) + + if not self._grpc_channel: + self._grpc_channel = type(self).create_channel( + self._host, + # use the credentials which are saved + credentials=self._credentials, + # Set ``credentials_file`` to ``None`` here as + # the credentials that we saved earlier should be used. + credentials_file=None, + scopes=self._scopes, + ssl_credentials=self._ssl_channel_credentials, + quota_project_id=quota_project_id, + options=[ + ("grpc.max_send_message_length", -1), + ("grpc.max_receive_message_length", -1), + ], + ) + + # Wrap messages. This must be done after self._grpc_channel exists + self._prep_wrapped_messages(client_info) + + @classmethod + def create_channel( + cls, + host: str = "networksecurity.googleapis.com", + credentials: ga_credentials.Credentials = None, + credentials_file: str = None, + scopes: Optional[Sequence[str]] = None, + quota_project_id: Optional[str] = None, + **kwargs, + ) -> grpc.Channel: + """Create and return a gRPC channel object. + Args: + host (Optional[str]): The host for the channel to use. + credentials (Optional[~.Credentials]): The + authorization credentials to attach to requests. These + credentials identify this application to the service. If + none are specified, the client will attempt to ascertain + the credentials from the environment. + credentials_file (Optional[str]): A file with credentials that can + be loaded with :func:`google.auth.load_credentials_from_file`. + This argument is mutually exclusive with credentials. + scopes (Optional[Sequence[str]]): A optional list of scopes needed for this + service. These are only used when credentials are not specified and + are passed to :func:`google.auth.default`. + quota_project_id (Optional[str]): An optional project to use for billing + and quota. + kwargs (Optional[dict]): Keyword arguments, which are passed to the + channel creation. + Returns: + grpc.Channel: A gRPC channel object. + + Raises: + google.api_core.exceptions.DuplicateCredentialArgs: If both ``credentials`` + and ``credentials_file`` are passed. + """ + + return grpc_helpers.create_channel( + host, + credentials=credentials, + credentials_file=credentials_file, + quota_project_id=quota_project_id, + default_scopes=cls.AUTH_SCOPES, + scopes=scopes, + default_host=cls.DEFAULT_HOST, + **kwargs, + ) + + @property + def grpc_channel(self) -> grpc.Channel: + """Return the channel designed to connect to this service.""" + return self._grpc_channel + + @property + def operations_client(self) -> operations_v1.OperationsClient: + """Create the client designed to process long-running operations. + + This property caches on the instance; repeated calls return the same + client. + """ + # Quick check: Only create a new client if we do not already have one. + if self._operations_client is None: + self._operations_client = operations_v1.OperationsClient(self.grpc_channel) + + # Return the client from cache. + return self._operations_client + + @property + def list_authorization_policies( + self, + ) -> Callable[ + [authorization_policy.ListAuthorizationPoliciesRequest], + authorization_policy.ListAuthorizationPoliciesResponse, + ]: + r"""Return a callable for the list authorization policies method over gRPC. + + Lists AuthorizationPolicies in a given project and + location. + + Returns: + Callable[[~.ListAuthorizationPoliciesRequest], + ~.ListAuthorizationPoliciesResponse]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "list_authorization_policies" not in self._stubs: + self._stubs["list_authorization_policies"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/ListAuthorizationPolicies", + request_serializer=authorization_policy.ListAuthorizationPoliciesRequest.serialize, + response_deserializer=authorization_policy.ListAuthorizationPoliciesResponse.deserialize, + ) + return self._stubs["list_authorization_policies"] + + @property + def get_authorization_policy( + self, + ) -> Callable[ + [authorization_policy.GetAuthorizationPolicyRequest], + authorization_policy.AuthorizationPolicy, + ]: + r"""Return a callable for the get authorization policy method over gRPC. + + Gets details of a single AuthorizationPolicy. + + Returns: + Callable[[~.GetAuthorizationPolicyRequest], + ~.AuthorizationPolicy]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "get_authorization_policy" not in self._stubs: + self._stubs["get_authorization_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/GetAuthorizationPolicy", + request_serializer=authorization_policy.GetAuthorizationPolicyRequest.serialize, + response_deserializer=authorization_policy.AuthorizationPolicy.deserialize, + ) + return self._stubs["get_authorization_policy"] + + @property + def create_authorization_policy( + self, + ) -> Callable[ + [gcn_authorization_policy.CreateAuthorizationPolicyRequest], + operations_pb2.Operation, + ]: + r"""Return a callable for the create authorization policy method over gRPC. + + Creates a new AuthorizationPolicy in a given project + and location. + + Returns: + Callable[[~.CreateAuthorizationPolicyRequest], + ~.Operation]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "create_authorization_policy" not in self._stubs: + self._stubs["create_authorization_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/CreateAuthorizationPolicy", + request_serializer=gcn_authorization_policy.CreateAuthorizationPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["create_authorization_policy"] + + @property + def update_authorization_policy( + self, + ) -> Callable[ + [gcn_authorization_policy.UpdateAuthorizationPolicyRequest], + operations_pb2.Operation, + ]: + r"""Return a callable for the update authorization policy method over gRPC. + + Updates the parameters of a single + AuthorizationPolicy. + + Returns: + Callable[[~.UpdateAuthorizationPolicyRequest], + ~.Operation]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "update_authorization_policy" not in self._stubs: + self._stubs["update_authorization_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/UpdateAuthorizationPolicy", + request_serializer=gcn_authorization_policy.UpdateAuthorizationPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["update_authorization_policy"] + + @property + def delete_authorization_policy( + self, + ) -> Callable[ + [authorization_policy.DeleteAuthorizationPolicyRequest], + operations_pb2.Operation, + ]: + r"""Return a callable for the delete authorization policy method over gRPC. + + Deletes a single AuthorizationPolicy. + + Returns: + Callable[[~.DeleteAuthorizationPolicyRequest], + ~.Operation]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "delete_authorization_policy" not in self._stubs: + self._stubs["delete_authorization_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/DeleteAuthorizationPolicy", + request_serializer=authorization_policy.DeleteAuthorizationPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["delete_authorization_policy"] + + @property + def list_server_tls_policies( + self, + ) -> Callable[ + [server_tls_policy.ListServerTlsPoliciesRequest], + server_tls_policy.ListServerTlsPoliciesResponse, + ]: + r"""Return a callable for the list server tls policies method over gRPC. + + Lists ServerTlsPolicies in a given project and + location. + + Returns: + Callable[[~.ListServerTlsPoliciesRequest], + ~.ListServerTlsPoliciesResponse]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "list_server_tls_policies" not in self._stubs: + self._stubs["list_server_tls_policies"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/ListServerTlsPolicies", + request_serializer=server_tls_policy.ListServerTlsPoliciesRequest.serialize, + response_deserializer=server_tls_policy.ListServerTlsPoliciesResponse.deserialize, + ) + return self._stubs["list_server_tls_policies"] + + @property + def get_server_tls_policy( + self, + ) -> Callable[ + [server_tls_policy.GetServerTlsPolicyRequest], server_tls_policy.ServerTlsPolicy + ]: + r"""Return a callable for the get server tls policy method over gRPC. + + Gets details of a single ServerTlsPolicy. + + Returns: + Callable[[~.GetServerTlsPolicyRequest], + ~.ServerTlsPolicy]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "get_server_tls_policy" not in self._stubs: + self._stubs["get_server_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/GetServerTlsPolicy", + request_serializer=server_tls_policy.GetServerTlsPolicyRequest.serialize, + response_deserializer=server_tls_policy.ServerTlsPolicy.deserialize, + ) + return self._stubs["get_server_tls_policy"] + + @property + def create_server_tls_policy( + self, + ) -> Callable[ + [gcn_server_tls_policy.CreateServerTlsPolicyRequest], operations_pb2.Operation + ]: + r"""Return a callable for the create server tls policy method over gRPC. + + Creates a new ServerTlsPolicy in a given project and + location. + + Returns: + Callable[[~.CreateServerTlsPolicyRequest], + ~.Operation]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "create_server_tls_policy" not in self._stubs: + self._stubs["create_server_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/CreateServerTlsPolicy", + request_serializer=gcn_server_tls_policy.CreateServerTlsPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["create_server_tls_policy"] + + @property + def update_server_tls_policy( + self, + ) -> Callable[ + [gcn_server_tls_policy.UpdateServerTlsPolicyRequest], operations_pb2.Operation + ]: + r"""Return a callable for the update server tls policy method over gRPC. + + Updates the parameters of a single ServerTlsPolicy. + + Returns: + Callable[[~.UpdateServerTlsPolicyRequest], + ~.Operation]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "update_server_tls_policy" not in self._stubs: + self._stubs["update_server_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/UpdateServerTlsPolicy", + request_serializer=gcn_server_tls_policy.UpdateServerTlsPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["update_server_tls_policy"] + + @property + def delete_server_tls_policy( + self, + ) -> Callable[ + [server_tls_policy.DeleteServerTlsPolicyRequest], operations_pb2.Operation + ]: + r"""Return a callable for the delete server tls policy method over gRPC. + + Deletes a single ServerTlsPolicy. + + Returns: + Callable[[~.DeleteServerTlsPolicyRequest], + ~.Operation]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "delete_server_tls_policy" not in self._stubs: + self._stubs["delete_server_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/DeleteServerTlsPolicy", + request_serializer=server_tls_policy.DeleteServerTlsPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["delete_server_tls_policy"] + + @property + def list_client_tls_policies( + self, + ) -> Callable[ + [client_tls_policy.ListClientTlsPoliciesRequest], + client_tls_policy.ListClientTlsPoliciesResponse, + ]: + r"""Return a callable for the list client tls policies method over gRPC. + + Lists ClientTlsPolicies in a given project and + location. + + Returns: + Callable[[~.ListClientTlsPoliciesRequest], + ~.ListClientTlsPoliciesResponse]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "list_client_tls_policies" not in self._stubs: + self._stubs["list_client_tls_policies"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/ListClientTlsPolicies", + request_serializer=client_tls_policy.ListClientTlsPoliciesRequest.serialize, + response_deserializer=client_tls_policy.ListClientTlsPoliciesResponse.deserialize, + ) + return self._stubs["list_client_tls_policies"] + + @property + def get_client_tls_policy( + self, + ) -> Callable[ + [client_tls_policy.GetClientTlsPolicyRequest], client_tls_policy.ClientTlsPolicy + ]: + r"""Return a callable for the get client tls policy method over gRPC. + + Gets details of a single ClientTlsPolicy. + + Returns: + Callable[[~.GetClientTlsPolicyRequest], + ~.ClientTlsPolicy]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "get_client_tls_policy" not in self._stubs: + self._stubs["get_client_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/GetClientTlsPolicy", + request_serializer=client_tls_policy.GetClientTlsPolicyRequest.serialize, + response_deserializer=client_tls_policy.ClientTlsPolicy.deserialize, + ) + return self._stubs["get_client_tls_policy"] + + @property + def create_client_tls_policy( + self, + ) -> Callable[ + [gcn_client_tls_policy.CreateClientTlsPolicyRequest], operations_pb2.Operation + ]: + r"""Return a callable for the create client tls policy method over gRPC. + + Creates a new ClientTlsPolicy in a given project and + location. + + Returns: + Callable[[~.CreateClientTlsPolicyRequest], + ~.Operation]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "create_client_tls_policy" not in self._stubs: + self._stubs["create_client_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/CreateClientTlsPolicy", + request_serializer=gcn_client_tls_policy.CreateClientTlsPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["create_client_tls_policy"] + + @property + def update_client_tls_policy( + self, + ) -> Callable[ + [gcn_client_tls_policy.UpdateClientTlsPolicyRequest], operations_pb2.Operation + ]: + r"""Return a callable for the update client tls policy method over gRPC. + + Updates the parameters of a single ClientTlsPolicy. + + Returns: + Callable[[~.UpdateClientTlsPolicyRequest], + ~.Operation]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "update_client_tls_policy" not in self._stubs: + self._stubs["update_client_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/UpdateClientTlsPolicy", + request_serializer=gcn_client_tls_policy.UpdateClientTlsPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["update_client_tls_policy"] + + @property + def delete_client_tls_policy( + self, + ) -> Callable[ + [client_tls_policy.DeleteClientTlsPolicyRequest], operations_pb2.Operation + ]: + r"""Return a callable for the delete client tls policy method over gRPC. + + Deletes a single ClientTlsPolicy. + + Returns: + Callable[[~.DeleteClientTlsPolicyRequest], + ~.Operation]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "delete_client_tls_policy" not in self._stubs: + self._stubs["delete_client_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/DeleteClientTlsPolicy", + request_serializer=client_tls_policy.DeleteClientTlsPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["delete_client_tls_policy"] + + def close(self): + self.grpc_channel.close() + + @property + def kind(self) -> str: + return "grpc" + + +__all__ = ("NetworkSecurityGrpcTransport",) diff --git a/google/cloud/network_security_v1/services/network_security/transports/grpc_asyncio.py b/google/cloud/network_security_v1/services/network_security/transports/grpc_asyncio.py new file mode 100644 index 0000000..12f1562 --- /dev/null +++ b/google/cloud/network_security_v1/services/network_security/transports/grpc_asyncio.py @@ -0,0 +1,711 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +from typing import Awaitable, Callable, Dict, Optional, Sequence, Tuple, Union +import warnings + +from google.api_core import gapic_v1, grpc_helpers_async, operations_v1 +from google.auth import credentials as ga_credentials # type: ignore +from google.auth.transport.grpc import SslCredentials # type: ignore +from google.longrunning import operations_pb2 # type: ignore +import grpc # type: ignore +from grpc.experimental import aio # type: ignore + +from google.cloud.network_security_v1.types import ( + authorization_policy as gcn_authorization_policy, +) +from google.cloud.network_security_v1.types import ( + client_tls_policy as gcn_client_tls_policy, +) +from google.cloud.network_security_v1.types import ( + server_tls_policy as gcn_server_tls_policy, +) +from google.cloud.network_security_v1.types import authorization_policy +from google.cloud.network_security_v1.types import client_tls_policy +from google.cloud.network_security_v1.types import server_tls_policy + +from .base import DEFAULT_CLIENT_INFO, NetworkSecurityTransport +from .grpc import NetworkSecurityGrpcTransport + + +class NetworkSecurityGrpcAsyncIOTransport(NetworkSecurityTransport): + """gRPC AsyncIO backend transport for NetworkSecurity. + + Network Security API provides resources to configure + authentication and authorization policies. Refer to per API + resource documentation for more information. + + This class defines the same methods as the primary client, so the + primary client can load the underlying transport implementation + and call it. + + It sends protocol buffers over the wire using gRPC (which is built on + top of HTTP/2); the ``grpcio`` package must be installed. + """ + + _grpc_channel: aio.Channel + _stubs: Dict[str, Callable] = {} + + @classmethod + def create_channel( + cls, + host: str = "networksecurity.googleapis.com", + credentials: ga_credentials.Credentials = None, + credentials_file: Optional[str] = None, + scopes: Optional[Sequence[str]] = None, + quota_project_id: Optional[str] = None, + **kwargs, + ) -> aio.Channel: + """Create and return a gRPC AsyncIO channel object. + Args: + host (Optional[str]): The host for the channel to use. + credentials (Optional[~.Credentials]): The + authorization credentials to attach to requests. These + credentials identify this application to the service. If + none are specified, the client will attempt to ascertain + the credentials from the environment. + credentials_file (Optional[str]): A file with credentials that can + be loaded with :func:`google.auth.load_credentials_from_file`. + This argument is ignored if ``channel`` is provided. + scopes (Optional[Sequence[str]]): A optional list of scopes needed for this + service. These are only used when credentials are not specified and + are passed to :func:`google.auth.default`. + quota_project_id (Optional[str]): An optional project to use for billing + and quota. + kwargs (Optional[dict]): Keyword arguments, which are passed to the + channel creation. + Returns: + aio.Channel: A gRPC AsyncIO channel object. + """ + + return grpc_helpers_async.create_channel( + host, + credentials=credentials, + credentials_file=credentials_file, + quota_project_id=quota_project_id, + default_scopes=cls.AUTH_SCOPES, + scopes=scopes, + default_host=cls.DEFAULT_HOST, + **kwargs, + ) + + def __init__( + self, + *, + host: str = "networksecurity.googleapis.com", + credentials: ga_credentials.Credentials = None, + credentials_file: Optional[str] = None, + scopes: Optional[Sequence[str]] = None, + channel: aio.Channel = None, + api_mtls_endpoint: str = None, + client_cert_source: Callable[[], Tuple[bytes, bytes]] = None, + ssl_channel_credentials: grpc.ChannelCredentials = None, + client_cert_source_for_mtls: Callable[[], Tuple[bytes, bytes]] = None, + quota_project_id=None, + client_info: gapic_v1.client_info.ClientInfo = DEFAULT_CLIENT_INFO, + always_use_jwt_access: Optional[bool] = False, + api_audience: Optional[str] = None, + ) -> None: + """Instantiate the transport. + + Args: + host (Optional[str]): + The hostname to connect to. + credentials (Optional[google.auth.credentials.Credentials]): The + authorization credentials to attach to requests. These + credentials identify the application to the service; if none + are specified, the client will attempt to ascertain the + credentials from the environment. + This argument is ignored if ``channel`` is provided. + credentials_file (Optional[str]): A file with credentials that can + be loaded with :func:`google.auth.load_credentials_from_file`. + This argument is ignored if ``channel`` is provided. + scopes (Optional[Sequence[str]]): A optional list of scopes needed for this + service. These are only used when credentials are not specified and + are passed to :func:`google.auth.default`. + channel (Optional[aio.Channel]): A ``Channel`` instance through + which to make calls. + api_mtls_endpoint (Optional[str]): Deprecated. The mutual TLS endpoint. + If provided, it overrides the ``host`` argument and tries to create + a mutual TLS channel with client SSL credentials from + ``client_cert_source`` or application default SSL credentials. + client_cert_source (Optional[Callable[[], Tuple[bytes, bytes]]]): + Deprecated. A callback to provide client SSL certificate bytes and + private key bytes, both in PEM format. It is ignored if + ``api_mtls_endpoint`` is None. + ssl_channel_credentials (grpc.ChannelCredentials): SSL credentials + for the grpc channel. It is ignored if ``channel`` is provided. + client_cert_source_for_mtls (Optional[Callable[[], Tuple[bytes, bytes]]]): + A callback to provide client certificate bytes and private key bytes, + both in PEM format. It is used to configure a mutual TLS channel. It is + ignored if ``channel`` or ``ssl_channel_credentials`` is provided. + quota_project_id (Optional[str]): An optional project to use for billing + and quota. + client_info (google.api_core.gapic_v1.client_info.ClientInfo): + The client info used to send a user-agent string along with + API requests. If ``None``, then default info will be used. + Generally, you only need to set this if you're developing + your own client library. + always_use_jwt_access (Optional[bool]): Whether self signed JWT should + be used for service account credentials. + + Raises: + google.auth.exceptions.MutualTlsChannelError: If mutual TLS transport + creation failed for any reason. + google.api_core.exceptions.DuplicateCredentialArgs: If both ``credentials`` + and ``credentials_file`` are passed. + """ + self._grpc_channel = None + self._ssl_channel_credentials = ssl_channel_credentials + self._stubs: Dict[str, Callable] = {} + self._operations_client: Optional[operations_v1.OperationsAsyncClient] = None + + if api_mtls_endpoint: + warnings.warn("api_mtls_endpoint is deprecated", DeprecationWarning) + if client_cert_source: + warnings.warn("client_cert_source is deprecated", DeprecationWarning) + + if channel: + # Ignore credentials if a channel was passed. + credentials = False + # If a channel was explicitly provided, set it. + self._grpc_channel = channel + self._ssl_channel_credentials = None + else: + if api_mtls_endpoint: + host = api_mtls_endpoint + + # Create SSL credentials with client_cert_source or application + # default SSL credentials. + if client_cert_source: + cert, key = client_cert_source() + self._ssl_channel_credentials = grpc.ssl_channel_credentials( + certificate_chain=cert, private_key=key + ) + else: + self._ssl_channel_credentials = SslCredentials().ssl_credentials + + else: + if client_cert_source_for_mtls and not ssl_channel_credentials: + cert, key = client_cert_source_for_mtls() + self._ssl_channel_credentials = grpc.ssl_channel_credentials( + certificate_chain=cert, private_key=key + ) + + # The base transport sets the host, credentials and scopes + super().__init__( + host=host, + credentials=credentials, + credentials_file=credentials_file, + scopes=scopes, + quota_project_id=quota_project_id, + client_info=client_info, + always_use_jwt_access=always_use_jwt_access, + api_audience=api_audience, + ) + + if not self._grpc_channel: + self._grpc_channel = type(self).create_channel( + self._host, + # use the credentials which are saved + credentials=self._credentials, + # Set ``credentials_file`` to ``None`` here as + # the credentials that we saved earlier should be used. + credentials_file=None, + scopes=self._scopes, + ssl_credentials=self._ssl_channel_credentials, + quota_project_id=quota_project_id, + options=[ + ("grpc.max_send_message_length", -1), + ("grpc.max_receive_message_length", -1), + ], + ) + + # Wrap messages. This must be done after self._grpc_channel exists + self._prep_wrapped_messages(client_info) + + @property + def grpc_channel(self) -> aio.Channel: + """Create the channel designed to connect to this service. + + This property caches on the instance; repeated calls return + the same channel. + """ + # Return the channel from cache. + return self._grpc_channel + + @property + def operations_client(self) -> operations_v1.OperationsAsyncClient: + """Create the client designed to process long-running operations. + + This property caches on the instance; repeated calls return the same + client. + """ + # Quick check: Only create a new client if we do not already have one. + if self._operations_client is None: + self._operations_client = operations_v1.OperationsAsyncClient( + self.grpc_channel + ) + + # Return the client from cache. + return self._operations_client + + @property + def list_authorization_policies( + self, + ) -> Callable[ + [authorization_policy.ListAuthorizationPoliciesRequest], + Awaitable[authorization_policy.ListAuthorizationPoliciesResponse], + ]: + r"""Return a callable for the list authorization policies method over gRPC. + + Lists AuthorizationPolicies in a given project and + location. + + Returns: + Callable[[~.ListAuthorizationPoliciesRequest], + Awaitable[~.ListAuthorizationPoliciesResponse]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "list_authorization_policies" not in self._stubs: + self._stubs["list_authorization_policies"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/ListAuthorizationPolicies", + request_serializer=authorization_policy.ListAuthorizationPoliciesRequest.serialize, + response_deserializer=authorization_policy.ListAuthorizationPoliciesResponse.deserialize, + ) + return self._stubs["list_authorization_policies"] + + @property + def get_authorization_policy( + self, + ) -> Callable[ + [authorization_policy.GetAuthorizationPolicyRequest], + Awaitable[authorization_policy.AuthorizationPolicy], + ]: + r"""Return a callable for the get authorization policy method over gRPC. + + Gets details of a single AuthorizationPolicy. + + Returns: + Callable[[~.GetAuthorizationPolicyRequest], + Awaitable[~.AuthorizationPolicy]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "get_authorization_policy" not in self._stubs: + self._stubs["get_authorization_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/GetAuthorizationPolicy", + request_serializer=authorization_policy.GetAuthorizationPolicyRequest.serialize, + response_deserializer=authorization_policy.AuthorizationPolicy.deserialize, + ) + return self._stubs["get_authorization_policy"] + + @property + def create_authorization_policy( + self, + ) -> Callable[ + [gcn_authorization_policy.CreateAuthorizationPolicyRequest], + Awaitable[operations_pb2.Operation], + ]: + r"""Return a callable for the create authorization policy method over gRPC. + + Creates a new AuthorizationPolicy in a given project + and location. + + Returns: + Callable[[~.CreateAuthorizationPolicyRequest], + Awaitable[~.Operation]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "create_authorization_policy" not in self._stubs: + self._stubs["create_authorization_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/CreateAuthorizationPolicy", + request_serializer=gcn_authorization_policy.CreateAuthorizationPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["create_authorization_policy"] + + @property + def update_authorization_policy( + self, + ) -> Callable[ + [gcn_authorization_policy.UpdateAuthorizationPolicyRequest], + Awaitable[operations_pb2.Operation], + ]: + r"""Return a callable for the update authorization policy method over gRPC. + + Updates the parameters of a single + AuthorizationPolicy. + + Returns: + Callable[[~.UpdateAuthorizationPolicyRequest], + Awaitable[~.Operation]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "update_authorization_policy" not in self._stubs: + self._stubs["update_authorization_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/UpdateAuthorizationPolicy", + request_serializer=gcn_authorization_policy.UpdateAuthorizationPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["update_authorization_policy"] + + @property + def delete_authorization_policy( + self, + ) -> Callable[ + [authorization_policy.DeleteAuthorizationPolicyRequest], + Awaitable[operations_pb2.Operation], + ]: + r"""Return a callable for the delete authorization policy method over gRPC. + + Deletes a single AuthorizationPolicy. + + Returns: + Callable[[~.DeleteAuthorizationPolicyRequest], + Awaitable[~.Operation]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "delete_authorization_policy" not in self._stubs: + self._stubs["delete_authorization_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/DeleteAuthorizationPolicy", + request_serializer=authorization_policy.DeleteAuthorizationPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["delete_authorization_policy"] + + @property + def list_server_tls_policies( + self, + ) -> Callable[ + [server_tls_policy.ListServerTlsPoliciesRequest], + Awaitable[server_tls_policy.ListServerTlsPoliciesResponse], + ]: + r"""Return a callable for the list server tls policies method over gRPC. + + Lists ServerTlsPolicies in a given project and + location. + + Returns: + Callable[[~.ListServerTlsPoliciesRequest], + Awaitable[~.ListServerTlsPoliciesResponse]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "list_server_tls_policies" not in self._stubs: + self._stubs["list_server_tls_policies"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/ListServerTlsPolicies", + request_serializer=server_tls_policy.ListServerTlsPoliciesRequest.serialize, + response_deserializer=server_tls_policy.ListServerTlsPoliciesResponse.deserialize, + ) + return self._stubs["list_server_tls_policies"] + + @property + def get_server_tls_policy( + self, + ) -> Callable[ + [server_tls_policy.GetServerTlsPolicyRequest], + Awaitable[server_tls_policy.ServerTlsPolicy], + ]: + r"""Return a callable for the get server tls policy method over gRPC. + + Gets details of a single ServerTlsPolicy. + + Returns: + Callable[[~.GetServerTlsPolicyRequest], + Awaitable[~.ServerTlsPolicy]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "get_server_tls_policy" not in self._stubs: + self._stubs["get_server_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/GetServerTlsPolicy", + request_serializer=server_tls_policy.GetServerTlsPolicyRequest.serialize, + response_deserializer=server_tls_policy.ServerTlsPolicy.deserialize, + ) + return self._stubs["get_server_tls_policy"] + + @property + def create_server_tls_policy( + self, + ) -> Callable[ + [gcn_server_tls_policy.CreateServerTlsPolicyRequest], + Awaitable[operations_pb2.Operation], + ]: + r"""Return a callable for the create server tls policy method over gRPC. + + Creates a new ServerTlsPolicy in a given project and + location. + + Returns: + Callable[[~.CreateServerTlsPolicyRequest], + Awaitable[~.Operation]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "create_server_tls_policy" not in self._stubs: + self._stubs["create_server_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/CreateServerTlsPolicy", + request_serializer=gcn_server_tls_policy.CreateServerTlsPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["create_server_tls_policy"] + + @property + def update_server_tls_policy( + self, + ) -> Callable[ + [gcn_server_tls_policy.UpdateServerTlsPolicyRequest], + Awaitable[operations_pb2.Operation], + ]: + r"""Return a callable for the update server tls policy method over gRPC. + + Updates the parameters of a single ServerTlsPolicy. + + Returns: + Callable[[~.UpdateServerTlsPolicyRequest], + Awaitable[~.Operation]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "update_server_tls_policy" not in self._stubs: + self._stubs["update_server_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/UpdateServerTlsPolicy", + request_serializer=gcn_server_tls_policy.UpdateServerTlsPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["update_server_tls_policy"] + + @property + def delete_server_tls_policy( + self, + ) -> Callable[ + [server_tls_policy.DeleteServerTlsPolicyRequest], + Awaitable[operations_pb2.Operation], + ]: + r"""Return a callable for the delete server tls policy method over gRPC. + + Deletes a single ServerTlsPolicy. + + Returns: + Callable[[~.DeleteServerTlsPolicyRequest], + Awaitable[~.Operation]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "delete_server_tls_policy" not in self._stubs: + self._stubs["delete_server_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/DeleteServerTlsPolicy", + request_serializer=server_tls_policy.DeleteServerTlsPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["delete_server_tls_policy"] + + @property + def list_client_tls_policies( + self, + ) -> Callable[ + [client_tls_policy.ListClientTlsPoliciesRequest], + Awaitable[client_tls_policy.ListClientTlsPoliciesResponse], + ]: + r"""Return a callable for the list client tls policies method over gRPC. + + Lists ClientTlsPolicies in a given project and + location. + + Returns: + Callable[[~.ListClientTlsPoliciesRequest], + Awaitable[~.ListClientTlsPoliciesResponse]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "list_client_tls_policies" not in self._stubs: + self._stubs["list_client_tls_policies"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/ListClientTlsPolicies", + request_serializer=client_tls_policy.ListClientTlsPoliciesRequest.serialize, + response_deserializer=client_tls_policy.ListClientTlsPoliciesResponse.deserialize, + ) + return self._stubs["list_client_tls_policies"] + + @property + def get_client_tls_policy( + self, + ) -> Callable[ + [client_tls_policy.GetClientTlsPolicyRequest], + Awaitable[client_tls_policy.ClientTlsPolicy], + ]: + r"""Return a callable for the get client tls policy method over gRPC. + + Gets details of a single ClientTlsPolicy. + + Returns: + Callable[[~.GetClientTlsPolicyRequest], + Awaitable[~.ClientTlsPolicy]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "get_client_tls_policy" not in self._stubs: + self._stubs["get_client_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/GetClientTlsPolicy", + request_serializer=client_tls_policy.GetClientTlsPolicyRequest.serialize, + response_deserializer=client_tls_policy.ClientTlsPolicy.deserialize, + ) + return self._stubs["get_client_tls_policy"] + + @property + def create_client_tls_policy( + self, + ) -> Callable[ + [gcn_client_tls_policy.CreateClientTlsPolicyRequest], + Awaitable[operations_pb2.Operation], + ]: + r"""Return a callable for the create client tls policy method over gRPC. + + Creates a new ClientTlsPolicy in a given project and + location. + + Returns: + Callable[[~.CreateClientTlsPolicyRequest], + Awaitable[~.Operation]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "create_client_tls_policy" not in self._stubs: + self._stubs["create_client_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/CreateClientTlsPolicy", + request_serializer=gcn_client_tls_policy.CreateClientTlsPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["create_client_tls_policy"] + + @property + def update_client_tls_policy( + self, + ) -> Callable[ + [gcn_client_tls_policy.UpdateClientTlsPolicyRequest], + Awaitable[operations_pb2.Operation], + ]: + r"""Return a callable for the update client tls policy method over gRPC. + + Updates the parameters of a single ClientTlsPolicy. + + Returns: + Callable[[~.UpdateClientTlsPolicyRequest], + Awaitable[~.Operation]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "update_client_tls_policy" not in self._stubs: + self._stubs["update_client_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/UpdateClientTlsPolicy", + request_serializer=gcn_client_tls_policy.UpdateClientTlsPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["update_client_tls_policy"] + + @property + def delete_client_tls_policy( + self, + ) -> Callable[ + [client_tls_policy.DeleteClientTlsPolicyRequest], + Awaitable[operations_pb2.Operation], + ]: + r"""Return a callable for the delete client tls policy method over gRPC. + + Deletes a single ClientTlsPolicy. + + Returns: + Callable[[~.DeleteClientTlsPolicyRequest], + Awaitable[~.Operation]]: + A function that, when called, will call the underlying RPC + on the server. + """ + # Generate a "stub function" on-the-fly which will actually make + # the request. + # gRPC handles serialization and deserialization, so we just need + # to pass in the functions for each. + if "delete_client_tls_policy" not in self._stubs: + self._stubs["delete_client_tls_policy"] = self.grpc_channel.unary_unary( + "/google.cloud.networksecurity.v1.NetworkSecurity/DeleteClientTlsPolicy", + request_serializer=client_tls_policy.DeleteClientTlsPolicyRequest.serialize, + response_deserializer=operations_pb2.Operation.FromString, + ) + return self._stubs["delete_client_tls_policy"] + + def close(self): + return self.grpc_channel.close() + + +__all__ = ("NetworkSecurityGrpcAsyncIOTransport",) diff --git a/google/cloud/network_security_v1/types/__init__.py b/google/cloud/network_security_v1/types/__init__.py new file mode 100644 index 0000000..7765e9a --- /dev/null +++ b/google/cloud/network_security_v1/types/__init__.py @@ -0,0 +1,78 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +from .authorization_policy import ( + AuthorizationPolicy, + CreateAuthorizationPolicyRequest, + DeleteAuthorizationPolicyRequest, + GetAuthorizationPolicyRequest, + ListAuthorizationPoliciesRequest, + ListAuthorizationPoliciesResponse, + UpdateAuthorizationPolicyRequest, +) +from .client_tls_policy import ( + ClientTlsPolicy, + CreateClientTlsPolicyRequest, + DeleteClientTlsPolicyRequest, + GetClientTlsPolicyRequest, + ListClientTlsPoliciesRequest, + ListClientTlsPoliciesResponse, + UpdateClientTlsPolicyRequest, +) +from .common import OperationMetadata +from .server_tls_policy import ( + CreateServerTlsPolicyRequest, + DeleteServerTlsPolicyRequest, + GetServerTlsPolicyRequest, + ListServerTlsPoliciesRequest, + ListServerTlsPoliciesResponse, + ServerTlsPolicy, + UpdateServerTlsPolicyRequest, +) +from .tls import ( + CertificateProvider, + CertificateProviderInstance, + GrpcEndpoint, + ValidationCA, +) + +__all__ = ( + "AuthorizationPolicy", + "CreateAuthorizationPolicyRequest", + "DeleteAuthorizationPolicyRequest", + "GetAuthorizationPolicyRequest", + "ListAuthorizationPoliciesRequest", + "ListAuthorizationPoliciesResponse", + "UpdateAuthorizationPolicyRequest", + "ClientTlsPolicy", + "CreateClientTlsPolicyRequest", + "DeleteClientTlsPolicyRequest", + "GetClientTlsPolicyRequest", + "ListClientTlsPoliciesRequest", + "ListClientTlsPoliciesResponse", + "UpdateClientTlsPolicyRequest", + "OperationMetadata", + "CreateServerTlsPolicyRequest", + "DeleteServerTlsPolicyRequest", + "GetServerTlsPolicyRequest", + "ListServerTlsPoliciesRequest", + "ListServerTlsPoliciesResponse", + "ServerTlsPolicy", + "UpdateServerTlsPolicyRequest", + "CertificateProvider", + "CertificateProviderInstance", + "GrpcEndpoint", + "ValidationCA", +) diff --git a/google/cloud/network_security_v1/types/authorization_policy.py b/google/cloud/network_security_v1/types/authorization_policy.py new file mode 100644 index 0000000..6168f33 --- /dev/null +++ b/google/cloud/network_security_v1/types/authorization_policy.py @@ -0,0 +1,409 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +from google.protobuf import field_mask_pb2 # type: ignore +from google.protobuf import timestamp_pb2 # type: ignore +import proto # type: ignore + +__protobuf__ = proto.module( + package="google.cloud.networksecurity.v1", + manifest={ + "AuthorizationPolicy", + "ListAuthorizationPoliciesRequest", + "ListAuthorizationPoliciesResponse", + "GetAuthorizationPolicyRequest", + "CreateAuthorizationPolicyRequest", + "UpdateAuthorizationPolicyRequest", + "DeleteAuthorizationPolicyRequest", + }, +) + + +class AuthorizationPolicy(proto.Message): + r"""AuthorizationPolicy is a resource that specifies how a server + should authorize incoming connections. This resource in itself + does not change the configuration unless it's attached to a + target https proxy or endpoint config selector resource. + + Attributes: + name (str): + Required. Name of the AuthorizationPolicy resource. It + matches pattern + ``projects/{project}/locations/{location}/authorizationPolicies/``. + description (str): + Optional. Free-text description of the + resource. + create_time (google.protobuf.timestamp_pb2.Timestamp): + Output only. The timestamp when the resource + was created. + update_time (google.protobuf.timestamp_pb2.Timestamp): + Output only. The timestamp when the resource + was updated. + labels (Mapping[str, str]): + Optional. Set of label tags associated with + the AuthorizationPolicy resource. + action (google.cloud.network_security_v1.types.AuthorizationPolicy.Action): + Required. The action to take when a rule + match is found. Possible values are "ALLOW" or + "DENY". + rules (Sequence[google.cloud.network_security_v1.types.AuthorizationPolicy.Rule]): + Optional. List of rules to match. Note that at least one of + the rules must match in order for the action specified in + the 'action' field to be taken. A rule is a match if there + is a matching source and destination. If left blank, the + action specified in the ``action`` field will be applied on + every request. + """ + + class Action(proto.Enum): + r"""Possible values that define what action to take.""" + ACTION_UNSPECIFIED = 0 + ALLOW = 1 + DENY = 2 + + class Rule(proto.Message): + r"""Specification of rules. + + Attributes: + sources (Sequence[google.cloud.network_security_v1.types.AuthorizationPolicy.Rule.Source]): + Optional. List of attributes for the traffic source. All of + the sources must match. A source is a match if both + principals and ip_blocks match. If not set, the action + specified in the 'action' field will be applied without any + rule checks for the source. + destinations (Sequence[google.cloud.network_security_v1.types.AuthorizationPolicy.Rule.Destination]): + Optional. List of attributes for the traffic + destination. All of the destinations must match. + A destination is a match if a request matches + all the specified hosts, ports, methods and + headers. If not set, the action specified in the + 'action' field will be applied without any rule + checks for the destination. + """ + + class Source(proto.Message): + r"""Specification of traffic source attributes. + + Attributes: + principals (Sequence[str]): + Optional. List of peer identities to match for + authorization. At least one principal should match. Each + peer can be an exact match, or a prefix match (example, + "namespace/*") or a suffix match (example, + "*/service-account") or a presence match "*". Authorization + based on the principal name without certificate validation + (configured by ServerTlsPolicy resource) is considered + insecure. + ip_blocks (Sequence[str]): + Optional. List of CIDR ranges to match based + on source IP address. At least one IP block + should match. Single IP (e.g., "1.2.3.4") and + CIDR (e.g., "1.2.3.0/24") are supported. + Authorization based on source IP alone should be + avoided. The IP addresses of any load balancers + or proxies should be considered untrusted. + """ + + principals = proto.RepeatedField( + proto.STRING, + number=1, + ) + ip_blocks = proto.RepeatedField( + proto.STRING, + number=2, + ) + + class Destination(proto.Message): + r"""Specification of traffic destination attributes. + + Attributes: + hosts (Sequence[str]): + Required. List of host names to match. Matched against the + ":authority" header in http requests. At least one host + should match. Each host can be an exact match, or a prefix + match (example "mydomain.*") or a suffix match (example + "*.myorg.com") or a presence (any) match "*". + ports (Sequence[int]): + Required. List of destination ports to match. + At least one port should match. + methods (Sequence[str]): + Optional. A list of HTTP methods to match. At + least one method should match. Should not be set + for gRPC services. + http_header_match (google.cloud.network_security_v1.types.AuthorizationPolicy.Rule.Destination.HttpHeaderMatch): + Optional. Match against key:value pair in + http header. Provides a flexible match based on + HTTP headers, for potentially advanced use + cases. At least one header should match. Avoid + using header matches to make authorization + decisions unless there is a strong guarantee + that requests arrive through a trusted client or + proxy. + """ + + class HttpHeaderMatch(proto.Message): + r"""Specification of HTTP header match attributes. + + .. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields + + Attributes: + regex_match (str): + Required. The value of the header must match + the regular expression specified in regexMatch. + For regular expression grammar, please see: + en.cppreference.com/w/cpp/regex/ecmascript For + matching against a port specified in the HTTP + request, use a headerMatch with headerName set + to Host and a regular expression that satisfies + the RFC2616 Host header's port specifier. + + This field is a member of `oneof`_ ``type``. + header_name (str): + Required. The name of the HTTP header to + match. For matching against the HTTP request's + authority, use a headerMatch with the header + name ":authority". For matching a request's + method, use the headerName ":method". + """ + + regex_match = proto.Field( + proto.STRING, + number=2, + oneof="type", + ) + header_name = proto.Field( + proto.STRING, + number=1, + ) + + hosts = proto.RepeatedField( + proto.STRING, + number=1, + ) + ports = proto.RepeatedField( + proto.UINT32, + number=2, + ) + methods = proto.RepeatedField( + proto.STRING, + number=4, + ) + http_header_match = proto.Field( + proto.MESSAGE, + number=5, + message="AuthorizationPolicy.Rule.Destination.HttpHeaderMatch", + ) + + sources = proto.RepeatedField( + proto.MESSAGE, + number=1, + message="AuthorizationPolicy.Rule.Source", + ) + destinations = proto.RepeatedField( + proto.MESSAGE, + number=2, + message="AuthorizationPolicy.Rule.Destination", + ) + + name = proto.Field( + proto.STRING, + number=1, + ) + description = proto.Field( + proto.STRING, + number=2, + ) + create_time = proto.Field( + proto.MESSAGE, + number=3, + message=timestamp_pb2.Timestamp, + ) + update_time = proto.Field( + proto.MESSAGE, + number=4, + message=timestamp_pb2.Timestamp, + ) + labels = proto.MapField( + proto.STRING, + proto.STRING, + number=5, + ) + action = proto.Field( + proto.ENUM, + number=6, + enum=Action, + ) + rules = proto.RepeatedField( + proto.MESSAGE, + number=7, + message=Rule, + ) + + +class ListAuthorizationPoliciesRequest(proto.Message): + r"""Request used with the ListAuthorizationPolicies method. + + Attributes: + parent (str): + Required. The project and location from which the + AuthorizationPolicies should be listed, specified in the + format ``projects/{project}/locations/{location}``. + page_size (int): + Maximum number of AuthorizationPolicies to + return per call. + page_token (str): + The value returned by the last + ``ListAuthorizationPoliciesResponse`` Indicates that this is + a continuation of a prior ``ListAuthorizationPolicies`` + call, and that the system should return the next page of + data. + """ + + parent = proto.Field( + proto.STRING, + number=1, + ) + page_size = proto.Field( + proto.INT32, + number=2, + ) + page_token = proto.Field( + proto.STRING, + number=3, + ) + + +class ListAuthorizationPoliciesResponse(proto.Message): + r"""Response returned by the ListAuthorizationPolicies method. + + Attributes: + authorization_policies (Sequence[google.cloud.network_security_v1.types.AuthorizationPolicy]): + List of AuthorizationPolicies resources. + next_page_token (str): + If there might be more results than those appearing in this + response, then ``next_page_token`` is included. To get the + next set of results, call this method again using the value + of ``next_page_token`` as ``page_token``. + """ + + @property + def raw_page(self): + return self + + authorization_policies = proto.RepeatedField( + proto.MESSAGE, + number=1, + message="AuthorizationPolicy", + ) + next_page_token = proto.Field( + proto.STRING, + number=2, + ) + + +class GetAuthorizationPolicyRequest(proto.Message): + r"""Request used by the GetAuthorizationPolicy method. + + Attributes: + name (str): + Required. A name of the AuthorizationPolicy to get. Must be + in the format + ``projects/{project}/locations/{location}/authorizationPolicies/*``. + """ + + name = proto.Field( + proto.STRING, + number=1, + ) + + +class CreateAuthorizationPolicyRequest(proto.Message): + r"""Request used by the CreateAuthorizationPolicy method. + + Attributes: + parent (str): + Required. The parent resource of the AuthorizationPolicy. + Must be in the format + ``projects/{project}/locations/{location}``. + authorization_policy_id (str): + Required. Short name of the AuthorizationPolicy resource to + be created. This value should be 1-63 characters long, + containing only letters, numbers, hyphens, and underscores, + and should not start with a number. E.g. "authz_policy". + authorization_policy (google.cloud.network_security_v1.types.AuthorizationPolicy): + Required. AuthorizationPolicy resource to be + created. + """ + + parent = proto.Field( + proto.STRING, + number=1, + ) + authorization_policy_id = proto.Field( + proto.STRING, + number=2, + ) + authorization_policy = proto.Field( + proto.MESSAGE, + number=3, + message="AuthorizationPolicy", + ) + + +class UpdateAuthorizationPolicyRequest(proto.Message): + r"""Request used by the UpdateAuthorizationPolicy method. + + Attributes: + update_mask (google.protobuf.field_mask_pb2.FieldMask): + Optional. Field mask is used to specify the fields to be + overwritten in the AuthorizationPolicy resource by the + update. The fields specified in the update_mask are relative + to the resource, not the full request. A field will be + overwritten if it is in the mask. If the user does not + provide a mask then all fields will be overwritten. + authorization_policy (google.cloud.network_security_v1.types.AuthorizationPolicy): + Required. Updated AuthorizationPolicy + resource. + """ + + update_mask = proto.Field( + proto.MESSAGE, + number=1, + message=field_mask_pb2.FieldMask, + ) + authorization_policy = proto.Field( + proto.MESSAGE, + number=2, + message="AuthorizationPolicy", + ) + + +class DeleteAuthorizationPolicyRequest(proto.Message): + r"""Request used by the DeleteAuthorizationPolicy method. + + Attributes: + name (str): + Required. A name of the AuthorizationPolicy to delete. Must + be in the format + ``projects/{project}/locations/{location}/authorizationPolicies/*``. + """ + + name = proto.Field( + proto.STRING, + number=1, + ) + + +__all__ = tuple(sorted(__protobuf__.manifest)) diff --git a/google/cloud/network_security_v1/types/client_tls_policy.py b/google/cloud/network_security_v1/types/client_tls_policy.py new file mode 100644 index 0000000..56a7331 --- /dev/null +++ b/google/cloud/network_security_v1/types/client_tls_policy.py @@ -0,0 +1,266 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +from google.protobuf import field_mask_pb2 # type: ignore +from google.protobuf import timestamp_pb2 # type: ignore +import proto # type: ignore + +from google.cloud.network_security_v1.types import tls + +__protobuf__ = proto.module( + package="google.cloud.networksecurity.v1", + manifest={ + "ClientTlsPolicy", + "ListClientTlsPoliciesRequest", + "ListClientTlsPoliciesResponse", + "GetClientTlsPolicyRequest", + "CreateClientTlsPolicyRequest", + "UpdateClientTlsPolicyRequest", + "DeleteClientTlsPolicyRequest", + }, +) + + +class ClientTlsPolicy(proto.Message): + r"""ClientTlsPolicy is a resource that specifies how a client + should authenticate connections to backends of a service. This + resource itself does not affect configuration unless it is + attached to a backend service resource. + + Attributes: + name (str): + Required. Name of the ClientTlsPolicy resource. It matches + the pattern + ``projects/*/locations/{location}/clientTlsPolicies/{client_tls_policy}`` + description (str): + Optional. Free-text description of the + resource. + create_time (google.protobuf.timestamp_pb2.Timestamp): + Output only. The timestamp when the resource + was created. + update_time (google.protobuf.timestamp_pb2.Timestamp): + Output only. The timestamp when the resource + was updated. + labels (Mapping[str, str]): + Optional. Set of label tags associated with + the resource. + sni (str): + Optional. Server Name Indication string to + present to the server during TLS handshake. E.g: + "secure.example.com". + client_certificate (google.cloud.network_security_v1.types.CertificateProvider): + Optional. Defines a mechanism to provision + client identity (public and private keys) for + peer to peer authentication. The presence of + this dictates mTLS. + server_validation_ca (Sequence[google.cloud.network_security_v1.types.ValidationCA]): + Optional. Defines the mechanism to obtain the + Certificate Authority certificate to validate + the server certificate. If empty, client does + not validate the server certificate. + """ + + name = proto.Field( + proto.STRING, + number=1, + ) + description = proto.Field( + proto.STRING, + number=2, + ) + create_time = proto.Field( + proto.MESSAGE, + number=3, + message=timestamp_pb2.Timestamp, + ) + update_time = proto.Field( + proto.MESSAGE, + number=4, + message=timestamp_pb2.Timestamp, + ) + labels = proto.MapField( + proto.STRING, + proto.STRING, + number=5, + ) + sni = proto.Field( + proto.STRING, + number=6, + ) + client_certificate = proto.Field( + proto.MESSAGE, + number=7, + message=tls.CertificateProvider, + ) + server_validation_ca = proto.RepeatedField( + proto.MESSAGE, + number=8, + message=tls.ValidationCA, + ) + + +class ListClientTlsPoliciesRequest(proto.Message): + r"""Request used by the ListClientTlsPolicies method. + + Attributes: + parent (str): + Required. The project and location from which the + ClientTlsPolicies should be listed, specified in the format + ``projects/*/locations/{location}``. + page_size (int): + Maximum number of ClientTlsPolicies to return + per call. + page_token (str): + The value returned by the last + ``ListClientTlsPoliciesResponse`` Indicates that this is a + continuation of a prior ``ListClientTlsPolicies`` call, and + that the system should return the next page of data. + """ + + parent = proto.Field( + proto.STRING, + number=1, + ) + page_size = proto.Field( + proto.INT32, + number=2, + ) + page_token = proto.Field( + proto.STRING, + number=3, + ) + + +class ListClientTlsPoliciesResponse(proto.Message): + r"""Response returned by the ListClientTlsPolicies method. + + Attributes: + client_tls_policies (Sequence[google.cloud.network_security_v1.types.ClientTlsPolicy]): + List of ClientTlsPolicy resources. + next_page_token (str): + If there might be more results than those appearing in this + response, then ``next_page_token`` is included. To get the + next set of results, call this method again using the value + of ``next_page_token`` as ``page_token``. + """ + + @property + def raw_page(self): + return self + + client_tls_policies = proto.RepeatedField( + proto.MESSAGE, + number=1, + message="ClientTlsPolicy", + ) + next_page_token = proto.Field( + proto.STRING, + number=2, + ) + + +class GetClientTlsPolicyRequest(proto.Message): + r"""Request used by the GetClientTlsPolicy method. + + Attributes: + name (str): + Required. A name of the ClientTlsPolicy to get. Must be in + the format + ``projects/*/locations/{location}/clientTlsPolicies/*``. + """ + + name = proto.Field( + proto.STRING, + number=1, + ) + + +class CreateClientTlsPolicyRequest(proto.Message): + r"""Request used by the CreateClientTlsPolicy method. + + Attributes: + parent (str): + Required. The parent resource of the ClientTlsPolicy. Must + be in the format ``projects/*/locations/{location}``. + client_tls_policy_id (str): + Required. Short name of the ClientTlsPolicy resource to be + created. This value should be 1-63 characters long, + containing only letters, numbers, hyphens, and underscores, + and should not start with a number. E.g. + "client_mtls_policy". + client_tls_policy (google.cloud.network_security_v1.types.ClientTlsPolicy): + Required. ClientTlsPolicy resource to be + created. + """ + + parent = proto.Field( + proto.STRING, + number=1, + ) + client_tls_policy_id = proto.Field( + proto.STRING, + number=2, + ) + client_tls_policy = proto.Field( + proto.MESSAGE, + number=3, + message="ClientTlsPolicy", + ) + + +class UpdateClientTlsPolicyRequest(proto.Message): + r"""Request used by UpdateClientTlsPolicy method. + + Attributes: + update_mask (google.protobuf.field_mask_pb2.FieldMask): + Optional. Field mask is used to specify the fields to be + overwritten in the ClientTlsPolicy resource by the update. + The fields specified in the update_mask are relative to the + resource, not the full request. A field will be overwritten + if it is in the mask. If the user does not provide a mask + then all fields will be overwritten. + client_tls_policy (google.cloud.network_security_v1.types.ClientTlsPolicy): + Required. Updated ClientTlsPolicy resource. + """ + + update_mask = proto.Field( + proto.MESSAGE, + number=1, + message=field_mask_pb2.FieldMask, + ) + client_tls_policy = proto.Field( + proto.MESSAGE, + number=2, + message="ClientTlsPolicy", + ) + + +class DeleteClientTlsPolicyRequest(proto.Message): + r"""Request used by the DeleteClientTlsPolicy method. + + Attributes: + name (str): + Required. A name of the ClientTlsPolicy to delete. Must be + in the format + ``projects/*/locations/{location}/clientTlsPolicies/*``. + """ + + name = proto.Field( + proto.STRING, + number=1, + ) + + +__all__ = tuple(sorted(__protobuf__.manifest)) diff --git a/google/cloud/network_security_v1/types/common.py b/google/cloud/network_security_v1/types/common.py new file mode 100644 index 0000000..602b582 --- /dev/null +++ b/google/cloud/network_security_v1/types/common.py @@ -0,0 +1,89 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +from google.protobuf import timestamp_pb2 # type: ignore +import proto # type: ignore + +__protobuf__ = proto.module( + package="google.cloud.networksecurity.v1", + manifest={ + "OperationMetadata", + }, +) + + +class OperationMetadata(proto.Message): + r"""Represents the metadata of the long-running operation. + + Attributes: + create_time (google.protobuf.timestamp_pb2.Timestamp): + Output only. The time the operation was + created. + end_time (google.protobuf.timestamp_pb2.Timestamp): + Output only. The time the operation finished + running. + target (str): + Output only. Server-defined resource path for + the target of the operation. + verb (str): + Output only. Name of the verb executed by the + operation. + status_message (str): + Output only. Human-readable status of the + operation, if any. + requested_cancellation (bool): + Output only. Identifies whether the user has requested + cancellation of the operation. Operations that have + successfully been cancelled have [Operation.error][] value + with a [google.rpc.Status.code][google.rpc.Status.code] of + 1, corresponding to ``Code.CANCELLED``. + api_version (str): + Output only. API version used to start the + operation. + """ + + create_time = proto.Field( + proto.MESSAGE, + number=1, + message=timestamp_pb2.Timestamp, + ) + end_time = proto.Field( + proto.MESSAGE, + number=2, + message=timestamp_pb2.Timestamp, + ) + target = proto.Field( + proto.STRING, + number=3, + ) + verb = proto.Field( + proto.STRING, + number=4, + ) + status_message = proto.Field( + proto.STRING, + number=5, + ) + requested_cancellation = proto.Field( + proto.BOOL, + number=6, + ) + api_version = proto.Field( + proto.STRING, + number=7, + ) + + +__all__ = tuple(sorted(__protobuf__.manifest)) diff --git a/google/cloud/network_security_v1/types/network_security.py b/google/cloud/network_security_v1/types/network_security.py new file mode 100644 index 0000000..6a0958a --- /dev/null +++ b/google/cloud/network_security_v1/types/network_security.py @@ -0,0 +1,24 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# + + +__protobuf__ = proto.module( + package="google.cloud.networksecurity.v1", + manifest={}, +) + + +__all__ = tuple(sorted(__protobuf__.manifest)) diff --git a/google/cloud/network_security_v1/types/server_tls_policy.py b/google/cloud/network_security_v1/types/server_tls_policy.py new file mode 100644 index 0000000..2db0d5a --- /dev/null +++ b/google/cloud/network_security_v1/types/server_tls_policy.py @@ -0,0 +1,291 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +from google.protobuf import field_mask_pb2 # type: ignore +from google.protobuf import timestamp_pb2 # type: ignore +import proto # type: ignore + +from google.cloud.network_security_v1.types import tls + +__protobuf__ = proto.module( + package="google.cloud.networksecurity.v1", + manifest={ + "ServerTlsPolicy", + "ListServerTlsPoliciesRequest", + "ListServerTlsPoliciesResponse", + "GetServerTlsPolicyRequest", + "CreateServerTlsPolicyRequest", + "UpdateServerTlsPolicyRequest", + "DeleteServerTlsPolicyRequest", + }, +) + + +class ServerTlsPolicy(proto.Message): + r"""ServerTlsPolicy is a resource that specifies how a server + should authenticate incoming requests. This resource itself does + not affect configuration unless it is attached to a target https + proxy or endpoint config selector resource. + + Attributes: + name (str): + Required. Name of the ServerTlsPolicy resource. It matches + the pattern + ``projects/*/locations/{location}/serverTlsPolicies/{server_tls_policy}`` + description (str): + Free-text description of the resource. + create_time (google.protobuf.timestamp_pb2.Timestamp): + Output only. The timestamp when the resource + was created. + update_time (google.protobuf.timestamp_pb2.Timestamp): + Output only. The timestamp when the resource + was updated. + labels (Mapping[str, str]): + Set of label tags associated with the + resource. + allow_open (bool): + Determines if server allows plaintext connections. If set to + true, server allows plain text connections. By default, it + is set to false. This setting is not exclusive of other + encryption modes. For example, if ``allow_open`` and + ``mtls_policy`` are set, server allows both plain text and + mTLS connections. See documentation of other encryption + modes to confirm compatibility. + + Consider using it if you wish to upgrade in place your + deployment to TLS while having mixed TLS and non-TLS traffic + reaching port :80. + server_certificate (google.cloud.network_security_v1.types.CertificateProvider): + Defines a mechanism to provision server identity (public and + private keys). Cannot be combined with ``allow_open`` as a + permissive mode that allows both plain text and TLS is not + supported. + mtls_policy (google.cloud.network_security_v1.types.ServerTlsPolicy.MTLSPolicy): + Defines a mechanism to provision peer validation + certificates for peer to peer authentication (Mutual TLS - + mTLS). If not specified, client certificate will not be + requested. The connection is treated as TLS and not mTLS. If + ``allow_open`` and ``mtls_policy`` are set, server allows + both plain text and mTLS connections. + """ + + class MTLSPolicy(proto.Message): + r"""Specification of the MTLSPolicy. + + Attributes: + client_validation_ca (Sequence[google.cloud.network_security_v1.types.ValidationCA]): + Defines the mechanism to obtain the + Certificate Authority certificate to validate + the client certificate. + """ + + client_validation_ca = proto.RepeatedField( + proto.MESSAGE, + number=1, + message=tls.ValidationCA, + ) + + name = proto.Field( + proto.STRING, + number=1, + ) + description = proto.Field( + proto.STRING, + number=2, + ) + create_time = proto.Field( + proto.MESSAGE, + number=3, + message=timestamp_pb2.Timestamp, + ) + update_time = proto.Field( + proto.MESSAGE, + number=4, + message=timestamp_pb2.Timestamp, + ) + labels = proto.MapField( + proto.STRING, + proto.STRING, + number=5, + ) + allow_open = proto.Field( + proto.BOOL, + number=6, + ) + server_certificate = proto.Field( + proto.MESSAGE, + number=7, + message=tls.CertificateProvider, + ) + mtls_policy = proto.Field( + proto.MESSAGE, + number=8, + message=MTLSPolicy, + ) + + +class ListServerTlsPoliciesRequest(proto.Message): + r"""Request used by the ListServerTlsPolicies method. + + Attributes: + parent (str): + Required. The project and location from which the + ServerTlsPolicies should be listed, specified in the format + ``projects/*/locations/{location}``. + page_size (int): + Maximum number of ServerTlsPolicies to return + per call. + page_token (str): + The value returned by the last + ``ListServerTlsPoliciesResponse`` Indicates that this is a + continuation of a prior ``ListServerTlsPolicies`` call, and + that the system should return the next page of data. + """ + + parent = proto.Field( + proto.STRING, + number=1, + ) + page_size = proto.Field( + proto.INT32, + number=2, + ) + page_token = proto.Field( + proto.STRING, + number=3, + ) + + +class ListServerTlsPoliciesResponse(proto.Message): + r"""Response returned by the ListServerTlsPolicies method. + + Attributes: + server_tls_policies (Sequence[google.cloud.network_security_v1.types.ServerTlsPolicy]): + List of ServerTlsPolicy resources. + next_page_token (str): + If there might be more results than those appearing in this + response, then ``next_page_token`` is included. To get the + next set of results, call this method again using the value + of ``next_page_token`` as ``page_token``. + """ + + @property + def raw_page(self): + return self + + server_tls_policies = proto.RepeatedField( + proto.MESSAGE, + number=1, + message="ServerTlsPolicy", + ) + next_page_token = proto.Field( + proto.STRING, + number=2, + ) + + +class GetServerTlsPolicyRequest(proto.Message): + r"""Request used by the GetServerTlsPolicy method. + + Attributes: + name (str): + Required. A name of the ServerTlsPolicy to get. Must be in + the format + ``projects/*/locations/{location}/serverTlsPolicies/*``. + """ + + name = proto.Field( + proto.STRING, + number=1, + ) + + +class CreateServerTlsPolicyRequest(proto.Message): + r"""Request used by the CreateServerTlsPolicy method. + + Attributes: + parent (str): + Required. The parent resource of the ServerTlsPolicy. Must + be in the format ``projects/*/locations/{location}``. + server_tls_policy_id (str): + Required. Short name of the ServerTlsPolicy resource to be + created. This value should be 1-63 characters long, + containing only letters, numbers, hyphens, and underscores, + and should not start with a number. E.g. + "server_mtls_policy". + server_tls_policy (google.cloud.network_security_v1.types.ServerTlsPolicy): + Required. ServerTlsPolicy resource to be + created. + """ + + parent = proto.Field( + proto.STRING, + number=1, + ) + server_tls_policy_id = proto.Field( + proto.STRING, + number=2, + ) + server_tls_policy = proto.Field( + proto.MESSAGE, + number=3, + message="ServerTlsPolicy", + ) + + +class UpdateServerTlsPolicyRequest(proto.Message): + r"""Request used by UpdateServerTlsPolicy method. + + Attributes: + update_mask (google.protobuf.field_mask_pb2.FieldMask): + Optional. Field mask is used to specify the fields to be + overwritten in the ServerTlsPolicy resource by the update. + The fields specified in the update_mask are relative to the + resource, not the full request. A field will be overwritten + if it is in the mask. If the user does not provide a mask + then all fields will be overwritten. + server_tls_policy (google.cloud.network_security_v1.types.ServerTlsPolicy): + Required. Updated ServerTlsPolicy resource. + """ + + update_mask = proto.Field( + proto.MESSAGE, + number=1, + message=field_mask_pb2.FieldMask, + ) + server_tls_policy = proto.Field( + proto.MESSAGE, + number=2, + message="ServerTlsPolicy", + ) + + +class DeleteServerTlsPolicyRequest(proto.Message): + r"""Request used by the DeleteServerTlsPolicy method. + + Attributes: + name (str): + Required. A name of the ServerTlsPolicy to delete. Must be + in the format + ``projects/*/locations/{location}/serverTlsPolicies/*``. + """ + + name = proto.Field( + proto.STRING, + number=1, + ) + + +__all__ = tuple(sorted(__protobuf__.manifest)) diff --git a/google/cloud/network_security_v1/types/tls.py b/google/cloud/network_security_v1/types/tls.py new file mode 100644 index 0000000..41a53e9 --- /dev/null +++ b/google/cloud/network_security_v1/types/tls.py @@ -0,0 +1,149 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +import proto # type: ignore + +__protobuf__ = proto.module( + package="google.cloud.networksecurity.v1", + manifest={ + "GrpcEndpoint", + "ValidationCA", + "CertificateProviderInstance", + "CertificateProvider", + }, +) + + +class GrpcEndpoint(proto.Message): + r"""Specification of the GRPC Endpoint. + + Attributes: + target_uri (str): + Required. The target URI of the gRPC + endpoint. Only UDS path is supported, and should + start with "unix:". + """ + + target_uri = proto.Field( + proto.STRING, + number=1, + ) + + +class ValidationCA(proto.Message): + r"""Specification of ValidationCA. Defines the mechanism to + obtain the Certificate Authority certificate to validate the + peer certificate. + + This message has `oneof`_ fields (mutually exclusive fields). + For each oneof, at most one member field can be set at the same time. + Setting any member of the oneof automatically clears all other + members. + + .. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields + + Attributes: + grpc_endpoint (google.cloud.network_security_v1.types.GrpcEndpoint): + gRPC specific configuration to access the + gRPC server to obtain the CA certificate. + + This field is a member of `oneof`_ ``type``. + certificate_provider_instance (google.cloud.network_security_v1.types.CertificateProviderInstance): + The certificate provider instance + specification that will be passed to the data + plane, which will be used to load necessary + credential information. + + This field is a member of `oneof`_ ``type``. + """ + + grpc_endpoint = proto.Field( + proto.MESSAGE, + number=2, + oneof="type", + message="GrpcEndpoint", + ) + certificate_provider_instance = proto.Field( + proto.MESSAGE, + number=3, + oneof="type", + message="CertificateProviderInstance", + ) + + +class CertificateProviderInstance(proto.Message): + r"""Specification of a TLS certificate provider instance. + Workloads may have one or more CertificateProvider instances + (plugins) and one of them is enabled and configured by + specifying this message. Workloads use the values from this + message to locate and load the CertificateProvider instance + configuration. + + Attributes: + plugin_instance (str): + Required. Plugin instance name, used to locate and load + CertificateProvider instance configuration. Set to + "google_cloud_private_spiffe" to use Certificate Authority + Service certificate provider instance. + """ + + plugin_instance = proto.Field( + proto.STRING, + number=1, + ) + + +class CertificateProvider(proto.Message): + r"""Specification of certificate provider. Defines the mechanism + to obtain the certificate and private key for peer to peer + authentication. + + This message has `oneof`_ fields (mutually exclusive fields). + For each oneof, at most one member field can be set at the same time. + Setting any member of the oneof automatically clears all other + members. + + .. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields + + Attributes: + grpc_endpoint (google.cloud.network_security_v1.types.GrpcEndpoint): + gRPC specific configuration to access the + gRPC server to obtain the cert and private key. + + This field is a member of `oneof`_ ``type``. + certificate_provider_instance (google.cloud.network_security_v1.types.CertificateProviderInstance): + The certificate provider instance + specification that will be passed to the data + plane, which will be used to load necessary + credential information. + + This field is a member of `oneof`_ ``type``. + """ + + grpc_endpoint = proto.Field( + proto.MESSAGE, + number=2, + oneof="type", + message="GrpcEndpoint", + ) + certificate_provider_instance = proto.Field( + proto.MESSAGE, + number=3, + oneof="type", + message="CertificateProviderInstance", + ) + + +__all__ = tuple(sorted(__protobuf__.manifest)) diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_create_authorization_policy_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_create_authorization_policy_async.py new file mode 100644 index 0000000..672cb47 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_create_authorization_policy_async.py @@ -0,0 +1,55 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for CreateAuthorizationPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_CreateAuthorizationPolicy_async] +from google.cloud import network_security_v1 + + +async def sample_create_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + authorization_policy = network_security_v1.AuthorizationPolicy() + authorization_policy.name = "name_value" + authorization_policy.action = "DENY" + + request = network_security_v1.CreateAuthorizationPolicyRequest( + parent="parent_value", + authorization_policy_id="authorization_policy_id_value", + authorization_policy=authorization_policy, + ) + + # Make the request + operation = client.create_authorization_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_CreateAuthorizationPolicy_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_create_authorization_policy_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_create_authorization_policy_sync.py new file mode 100644 index 0000000..c57d95e --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_create_authorization_policy_sync.py @@ -0,0 +1,55 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for CreateAuthorizationPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_CreateAuthorizationPolicy_sync] +from google.cloud import network_security_v1 + + +def sample_create_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + authorization_policy = network_security_v1.AuthorizationPolicy() + authorization_policy.name = "name_value" + authorization_policy.action = "DENY" + + request = network_security_v1.CreateAuthorizationPolicyRequest( + parent="parent_value", + authorization_policy_id="authorization_policy_id_value", + authorization_policy=authorization_policy, + ) + + # Make the request + operation = client.create_authorization_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_CreateAuthorizationPolicy_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_create_client_tls_policy_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_create_client_tls_policy_async.py new file mode 100644 index 0000000..94cac01 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_create_client_tls_policy_async.py @@ -0,0 +1,54 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for CreateClientTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_CreateClientTlsPolicy_async] +from google.cloud import network_security_v1 + + +async def sample_create_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + client_tls_policy = network_security_v1.ClientTlsPolicy() + client_tls_policy.name = "name_value" + + request = network_security_v1.CreateClientTlsPolicyRequest( + parent="parent_value", + client_tls_policy_id="client_tls_policy_id_value", + client_tls_policy=client_tls_policy, + ) + + # Make the request + operation = client.create_client_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_CreateClientTlsPolicy_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_create_client_tls_policy_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_create_client_tls_policy_sync.py new file mode 100644 index 0000000..9447825 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_create_client_tls_policy_sync.py @@ -0,0 +1,54 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for CreateClientTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_CreateClientTlsPolicy_sync] +from google.cloud import network_security_v1 + + +def sample_create_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + client_tls_policy = network_security_v1.ClientTlsPolicy() + client_tls_policy.name = "name_value" + + request = network_security_v1.CreateClientTlsPolicyRequest( + parent="parent_value", + client_tls_policy_id="client_tls_policy_id_value", + client_tls_policy=client_tls_policy, + ) + + # Make the request + operation = client.create_client_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_CreateClientTlsPolicy_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_create_server_tls_policy_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_create_server_tls_policy_async.py new file mode 100644 index 0000000..d8db6df --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_create_server_tls_policy_async.py @@ -0,0 +1,54 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for CreateServerTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_CreateServerTlsPolicy_async] +from google.cloud import network_security_v1 + + +async def sample_create_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + server_tls_policy = network_security_v1.ServerTlsPolicy() + server_tls_policy.name = "name_value" + + request = network_security_v1.CreateServerTlsPolicyRequest( + parent="parent_value", + server_tls_policy_id="server_tls_policy_id_value", + server_tls_policy=server_tls_policy, + ) + + # Make the request + operation = client.create_server_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_CreateServerTlsPolicy_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_create_server_tls_policy_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_create_server_tls_policy_sync.py new file mode 100644 index 0000000..2c0b73c --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_create_server_tls_policy_sync.py @@ -0,0 +1,54 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for CreateServerTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_CreateServerTlsPolicy_sync] +from google.cloud import network_security_v1 + + +def sample_create_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + server_tls_policy = network_security_v1.ServerTlsPolicy() + server_tls_policy.name = "name_value" + + request = network_security_v1.CreateServerTlsPolicyRequest( + parent="parent_value", + server_tls_policy_id="server_tls_policy_id_value", + server_tls_policy=server_tls_policy, + ) + + # Make the request + operation = client.create_server_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_CreateServerTlsPolicy_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_delete_authorization_policy_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_delete_authorization_policy_async.py new file mode 100644 index 0000000..ffcff04 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_delete_authorization_policy_async.py @@ -0,0 +1,49 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for DeleteAuthorizationPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_DeleteAuthorizationPolicy_async] +from google.cloud import network_security_v1 + + +async def sample_delete_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.DeleteAuthorizationPolicyRequest( + name="name_value", + ) + + # Make the request + operation = client.delete_authorization_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_DeleteAuthorizationPolicy_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_delete_authorization_policy_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_delete_authorization_policy_sync.py new file mode 100644 index 0000000..df77969 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_delete_authorization_policy_sync.py @@ -0,0 +1,49 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for DeleteAuthorizationPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_DeleteAuthorizationPolicy_sync] +from google.cloud import network_security_v1 + + +def sample_delete_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.DeleteAuthorizationPolicyRequest( + name="name_value", + ) + + # Make the request + operation = client.delete_authorization_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_DeleteAuthorizationPolicy_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_delete_client_tls_policy_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_delete_client_tls_policy_async.py new file mode 100644 index 0000000..67db41a --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_delete_client_tls_policy_async.py @@ -0,0 +1,49 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for DeleteClientTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_DeleteClientTlsPolicy_async] +from google.cloud import network_security_v1 + + +async def sample_delete_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.DeleteClientTlsPolicyRequest( + name="name_value", + ) + + # Make the request + operation = client.delete_client_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_DeleteClientTlsPolicy_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_delete_client_tls_policy_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_delete_client_tls_policy_sync.py new file mode 100644 index 0000000..ab77f65 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_delete_client_tls_policy_sync.py @@ -0,0 +1,49 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for DeleteClientTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_DeleteClientTlsPolicy_sync] +from google.cloud import network_security_v1 + + +def sample_delete_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.DeleteClientTlsPolicyRequest( + name="name_value", + ) + + # Make the request + operation = client.delete_client_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_DeleteClientTlsPolicy_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_delete_server_tls_policy_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_delete_server_tls_policy_async.py new file mode 100644 index 0000000..2a687a2 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_delete_server_tls_policy_async.py @@ -0,0 +1,49 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for DeleteServerTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_DeleteServerTlsPolicy_async] +from google.cloud import network_security_v1 + + +async def sample_delete_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.DeleteServerTlsPolicyRequest( + name="name_value", + ) + + # Make the request + operation = client.delete_server_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_DeleteServerTlsPolicy_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_delete_server_tls_policy_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_delete_server_tls_policy_sync.py new file mode 100644 index 0000000..3c114ee --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_delete_server_tls_policy_sync.py @@ -0,0 +1,49 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for DeleteServerTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_DeleteServerTlsPolicy_sync] +from google.cloud import network_security_v1 + + +def sample_delete_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.DeleteServerTlsPolicyRequest( + name="name_value", + ) + + # Make the request + operation = client.delete_server_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_DeleteServerTlsPolicy_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_get_authorization_policy_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_get_authorization_policy_async.py new file mode 100644 index 0000000..a630169 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_get_authorization_policy_async.py @@ -0,0 +1,45 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for GetAuthorizationPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_GetAuthorizationPolicy_async] +from google.cloud import network_security_v1 + + +async def sample_get_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.GetAuthorizationPolicyRequest( + name="name_value", + ) + + # Make the request + response = await client.get_authorization_policy(request=request) + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_GetAuthorizationPolicy_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_get_authorization_policy_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_get_authorization_policy_sync.py new file mode 100644 index 0000000..3f1a734 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_get_authorization_policy_sync.py @@ -0,0 +1,45 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for GetAuthorizationPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_GetAuthorizationPolicy_sync] +from google.cloud import network_security_v1 + + +def sample_get_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.GetAuthorizationPolicyRequest( + name="name_value", + ) + + # Make the request + response = client.get_authorization_policy(request=request) + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_GetAuthorizationPolicy_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_get_client_tls_policy_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_get_client_tls_policy_async.py new file mode 100644 index 0000000..e1fa0b4 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_get_client_tls_policy_async.py @@ -0,0 +1,45 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for GetClientTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_GetClientTlsPolicy_async] +from google.cloud import network_security_v1 + + +async def sample_get_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.GetClientTlsPolicyRequest( + name="name_value", + ) + + # Make the request + response = await client.get_client_tls_policy(request=request) + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_GetClientTlsPolicy_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_get_client_tls_policy_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_get_client_tls_policy_sync.py new file mode 100644 index 0000000..050fd5d --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_get_client_tls_policy_sync.py @@ -0,0 +1,45 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for GetClientTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_GetClientTlsPolicy_sync] +from google.cloud import network_security_v1 + + +def sample_get_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.GetClientTlsPolicyRequest( + name="name_value", + ) + + # Make the request + response = client.get_client_tls_policy(request=request) + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_GetClientTlsPolicy_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_get_server_tls_policy_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_get_server_tls_policy_async.py new file mode 100644 index 0000000..d203dbd --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_get_server_tls_policy_async.py @@ -0,0 +1,45 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for GetServerTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_GetServerTlsPolicy_async] +from google.cloud import network_security_v1 + + +async def sample_get_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.GetServerTlsPolicyRequest( + name="name_value", + ) + + # Make the request + response = await client.get_server_tls_policy(request=request) + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_GetServerTlsPolicy_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_get_server_tls_policy_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_get_server_tls_policy_sync.py new file mode 100644 index 0000000..9ddb080 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_get_server_tls_policy_sync.py @@ -0,0 +1,45 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for GetServerTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_GetServerTlsPolicy_sync] +from google.cloud import network_security_v1 + + +def sample_get_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.GetServerTlsPolicyRequest( + name="name_value", + ) + + # Make the request + response = client.get_server_tls_policy(request=request) + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_GetServerTlsPolicy_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_list_authorization_policies_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_list_authorization_policies_async.py new file mode 100644 index 0000000..55f690c --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_list_authorization_policies_async.py @@ -0,0 +1,46 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for ListAuthorizationPolicies +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_ListAuthorizationPolicies_async] +from google.cloud import network_security_v1 + + +async def sample_list_authorization_policies(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.ListAuthorizationPoliciesRequest( + parent="parent_value", + ) + + # Make the request + page_result = client.list_authorization_policies(request=request) + + # Handle the response + async for response in page_result: + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_ListAuthorizationPolicies_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_list_authorization_policies_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_list_authorization_policies_sync.py new file mode 100644 index 0000000..c6c078d --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_list_authorization_policies_sync.py @@ -0,0 +1,46 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for ListAuthorizationPolicies +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_ListAuthorizationPolicies_sync] +from google.cloud import network_security_v1 + + +def sample_list_authorization_policies(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.ListAuthorizationPoliciesRequest( + parent="parent_value", + ) + + # Make the request + page_result = client.list_authorization_policies(request=request) + + # Handle the response + for response in page_result: + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_ListAuthorizationPolicies_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_list_client_tls_policies_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_list_client_tls_policies_async.py new file mode 100644 index 0000000..b9dda7b --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_list_client_tls_policies_async.py @@ -0,0 +1,46 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for ListClientTlsPolicies +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_ListClientTlsPolicies_async] +from google.cloud import network_security_v1 + + +async def sample_list_client_tls_policies(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.ListClientTlsPoliciesRequest( + parent="parent_value", + ) + + # Make the request + page_result = client.list_client_tls_policies(request=request) + + # Handle the response + async for response in page_result: + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_ListClientTlsPolicies_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_list_client_tls_policies_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_list_client_tls_policies_sync.py new file mode 100644 index 0000000..3ee630a --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_list_client_tls_policies_sync.py @@ -0,0 +1,46 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for ListClientTlsPolicies +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_ListClientTlsPolicies_sync] +from google.cloud import network_security_v1 + + +def sample_list_client_tls_policies(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.ListClientTlsPoliciesRequest( + parent="parent_value", + ) + + # Make the request + page_result = client.list_client_tls_policies(request=request) + + # Handle the response + for response in page_result: + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_ListClientTlsPolicies_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_list_server_tls_policies_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_list_server_tls_policies_async.py new file mode 100644 index 0000000..fc27048 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_list_server_tls_policies_async.py @@ -0,0 +1,46 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for ListServerTlsPolicies +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_ListServerTlsPolicies_async] +from google.cloud import network_security_v1 + + +async def sample_list_server_tls_policies(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + request = network_security_v1.ListServerTlsPoliciesRequest( + parent="parent_value", + ) + + # Make the request + page_result = client.list_server_tls_policies(request=request) + + # Handle the response + async for response in page_result: + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_ListServerTlsPolicies_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_list_server_tls_policies_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_list_server_tls_policies_sync.py new file mode 100644 index 0000000..402bafd --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_list_server_tls_policies_sync.py @@ -0,0 +1,46 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for ListServerTlsPolicies +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_ListServerTlsPolicies_sync] +from google.cloud import network_security_v1 + + +def sample_list_server_tls_policies(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + request = network_security_v1.ListServerTlsPoliciesRequest( + parent="parent_value", + ) + + # Make the request + page_result = client.list_server_tls_policies(request=request) + + # Handle the response + for response in page_result: + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_ListServerTlsPolicies_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_update_authorization_policy_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_update_authorization_policy_async.py new file mode 100644 index 0000000..616ec8c --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_update_authorization_policy_async.py @@ -0,0 +1,53 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for UpdateAuthorizationPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_UpdateAuthorizationPolicy_async] +from google.cloud import network_security_v1 + + +async def sample_update_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + authorization_policy = network_security_v1.AuthorizationPolicy() + authorization_policy.name = "name_value" + authorization_policy.action = "DENY" + + request = network_security_v1.UpdateAuthorizationPolicyRequest( + authorization_policy=authorization_policy, + ) + + # Make the request + operation = client.update_authorization_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_UpdateAuthorizationPolicy_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_update_authorization_policy_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_update_authorization_policy_sync.py new file mode 100644 index 0000000..dc2c564 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_update_authorization_policy_sync.py @@ -0,0 +1,53 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for UpdateAuthorizationPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_UpdateAuthorizationPolicy_sync] +from google.cloud import network_security_v1 + + +def sample_update_authorization_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + authorization_policy = network_security_v1.AuthorizationPolicy() + authorization_policy.name = "name_value" + authorization_policy.action = "DENY" + + request = network_security_v1.UpdateAuthorizationPolicyRequest( + authorization_policy=authorization_policy, + ) + + # Make the request + operation = client.update_authorization_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_UpdateAuthorizationPolicy_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_update_client_tls_policy_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_update_client_tls_policy_async.py new file mode 100644 index 0000000..5b1d2c9 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_update_client_tls_policy_async.py @@ -0,0 +1,52 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for UpdateClientTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_UpdateClientTlsPolicy_async] +from google.cloud import network_security_v1 + + +async def sample_update_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + client_tls_policy = network_security_v1.ClientTlsPolicy() + client_tls_policy.name = "name_value" + + request = network_security_v1.UpdateClientTlsPolicyRequest( + client_tls_policy=client_tls_policy, + ) + + # Make the request + operation = client.update_client_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_UpdateClientTlsPolicy_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_update_client_tls_policy_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_update_client_tls_policy_sync.py new file mode 100644 index 0000000..ba70fad --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_update_client_tls_policy_sync.py @@ -0,0 +1,52 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for UpdateClientTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_UpdateClientTlsPolicy_sync] +from google.cloud import network_security_v1 + + +def sample_update_client_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + client_tls_policy = network_security_v1.ClientTlsPolicy() + client_tls_policy.name = "name_value" + + request = network_security_v1.UpdateClientTlsPolicyRequest( + client_tls_policy=client_tls_policy, + ) + + # Make the request + operation = client.update_client_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_UpdateClientTlsPolicy_sync] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_update_server_tls_policy_async.py b/samples/generated_samples/networksecurity_v1_generated_network_security_update_server_tls_policy_async.py new file mode 100644 index 0000000..39300ef --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_update_server_tls_policy_async.py @@ -0,0 +1,52 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for UpdateServerTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_UpdateServerTlsPolicy_async] +from google.cloud import network_security_v1 + + +async def sample_update_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityAsyncClient() + + # Initialize request argument(s) + server_tls_policy = network_security_v1.ServerTlsPolicy() + server_tls_policy.name = "name_value" + + request = network_security_v1.UpdateServerTlsPolicyRequest( + server_tls_policy=server_tls_policy, + ) + + # Make the request + operation = client.update_server_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = await operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_UpdateServerTlsPolicy_async] diff --git a/samples/generated_samples/networksecurity_v1_generated_network_security_update_server_tls_policy_sync.py b/samples/generated_samples/networksecurity_v1_generated_network_security_update_server_tls_policy_sync.py new file mode 100644 index 0000000..d757ae1 --- /dev/null +++ b/samples/generated_samples/networksecurity_v1_generated_network_security_update_server_tls_policy_sync.py @@ -0,0 +1,52 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# Generated code. DO NOT EDIT! +# +# Snippet for UpdateServerTlsPolicy +# NOTE: This snippet has been automatically generated for illustrative purposes only. +# It may require modifications to work in your environment. + +# To install the latest published package dependency, execute the following: +# python3 -m pip install google-cloud-network-security + + +# [START networksecurity_v1_generated_NetworkSecurity_UpdateServerTlsPolicy_sync] +from google.cloud import network_security_v1 + + +def sample_update_server_tls_policy(): + # Create a client + client = network_security_v1.NetworkSecurityClient() + + # Initialize request argument(s) + server_tls_policy = network_security_v1.ServerTlsPolicy() + server_tls_policy.name = "name_value" + + request = network_security_v1.UpdateServerTlsPolicyRequest( + server_tls_policy=server_tls_policy, + ) + + # Make the request + operation = client.update_server_tls_policy(request=request) + + print("Waiting for operation to complete...") + + response = operation.result() + + # Handle the response + print(response) + +# [END networksecurity_v1_generated_NetworkSecurity_UpdateServerTlsPolicy_sync] diff --git a/samples/generated_samples/snippet_metadata_network security_v1.json b/samples/generated_samples/snippet_metadata_network security_v1.json new file mode 100644 index 0000000..d5eab66 --- /dev/null +++ b/samples/generated_samples/snippet_metadata_network security_v1.json @@ -0,0 +1,2501 @@ +{ + "clientLibrary": { + "apis": [ + { + "id": "google.cloud.networksecurity.v1", + "version": "v1" + } + ], + "language": "PYTHON", + "name": "google-cloud-network-security" + }, + "snippets": [ + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.create_authorization_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.CreateAuthorizationPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "CreateAuthorizationPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.CreateAuthorizationPolicyRequest" + }, + { + "name": "parent", + "type": "str" + }, + { + "name": "authorization_policy", + "type": "google.cloud.network_security_v1.types.AuthorizationPolicy" + }, + { + "name": "authorization_policy_id", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation_async.AsyncOperation", + "shortName": "create_authorization_policy" + }, + "description": "Sample for CreateAuthorizationPolicy", + "file": "networksecurity_v1_generated_network_security_create_authorization_policy_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_CreateAuthorizationPolicy_async", + "segments": [ + { + "end": 54, + "start": 27, + "type": "FULL" + }, + { + "end": 54, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 44, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 51, + "start": 45, + "type": "REQUEST_EXECUTION" + }, + { + "end": 55, + "start": 52, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_create_authorization_policy_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.create_authorization_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.CreateAuthorizationPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "CreateAuthorizationPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.CreateAuthorizationPolicyRequest" + }, + { + "name": "parent", + "type": "str" + }, + { + "name": "authorization_policy", + "type": "google.cloud.network_security_v1.types.AuthorizationPolicy" + }, + { + "name": "authorization_policy_id", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation.Operation", + "shortName": "create_authorization_policy" + }, + "description": "Sample for CreateAuthorizationPolicy", + "file": "networksecurity_v1_generated_network_security_create_authorization_policy_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_CreateAuthorizationPolicy_sync", + "segments": [ + { + "end": 54, + "start": 27, + "type": "FULL" + }, + { + "end": 54, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 44, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 51, + "start": 45, + "type": "REQUEST_EXECUTION" + }, + { + "end": 55, + "start": 52, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_create_authorization_policy_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.create_client_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.CreateClientTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "CreateClientTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.CreateClientTlsPolicyRequest" + }, + { + "name": "parent", + "type": "str" + }, + { + "name": "client_tls_policy", + "type": "google.cloud.network_security_v1.types.ClientTlsPolicy" + }, + { + "name": "client_tls_policy_id", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation_async.AsyncOperation", + "shortName": "create_client_tls_policy" + }, + "description": "Sample for CreateClientTlsPolicy", + "file": "networksecurity_v1_generated_network_security_create_client_tls_policy_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_CreateClientTlsPolicy_async", + "segments": [ + { + "end": 53, + "start": 27, + "type": "FULL" + }, + { + "end": 53, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 43, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 50, + "start": 44, + "type": "REQUEST_EXECUTION" + }, + { + "end": 54, + "start": 51, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_create_client_tls_policy_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.create_client_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.CreateClientTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "CreateClientTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.CreateClientTlsPolicyRequest" + }, + { + "name": "parent", + "type": "str" + }, + { + "name": "client_tls_policy", + "type": "google.cloud.network_security_v1.types.ClientTlsPolicy" + }, + { + "name": "client_tls_policy_id", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation.Operation", + "shortName": "create_client_tls_policy" + }, + "description": "Sample for CreateClientTlsPolicy", + "file": "networksecurity_v1_generated_network_security_create_client_tls_policy_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_CreateClientTlsPolicy_sync", + "segments": [ + { + "end": 53, + "start": 27, + "type": "FULL" + }, + { + "end": 53, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 43, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 50, + "start": 44, + "type": "REQUEST_EXECUTION" + }, + { + "end": 54, + "start": 51, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_create_client_tls_policy_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.create_server_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.CreateServerTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "CreateServerTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.CreateServerTlsPolicyRequest" + }, + { + "name": "parent", + "type": "str" + }, + { + "name": "server_tls_policy", + "type": "google.cloud.network_security_v1.types.ServerTlsPolicy" + }, + { + "name": "server_tls_policy_id", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation_async.AsyncOperation", + "shortName": "create_server_tls_policy" + }, + "description": "Sample for CreateServerTlsPolicy", + "file": "networksecurity_v1_generated_network_security_create_server_tls_policy_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_CreateServerTlsPolicy_async", + "segments": [ + { + "end": 53, + "start": 27, + "type": "FULL" + }, + { + "end": 53, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 43, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 50, + "start": 44, + "type": "REQUEST_EXECUTION" + }, + { + "end": 54, + "start": 51, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_create_server_tls_policy_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.create_server_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.CreateServerTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "CreateServerTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.CreateServerTlsPolicyRequest" + }, + { + "name": "parent", + "type": "str" + }, + { + "name": "server_tls_policy", + "type": "google.cloud.network_security_v1.types.ServerTlsPolicy" + }, + { + "name": "server_tls_policy_id", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation.Operation", + "shortName": "create_server_tls_policy" + }, + "description": "Sample for CreateServerTlsPolicy", + "file": "networksecurity_v1_generated_network_security_create_server_tls_policy_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_CreateServerTlsPolicy_sync", + "segments": [ + { + "end": 53, + "start": 27, + "type": "FULL" + }, + { + "end": 53, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 43, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 50, + "start": 44, + "type": "REQUEST_EXECUTION" + }, + { + "end": 54, + "start": 51, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_create_server_tls_policy_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.delete_authorization_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.DeleteAuthorizationPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "DeleteAuthorizationPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.DeleteAuthorizationPolicyRequest" + }, + { + "name": "name", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation_async.AsyncOperation", + "shortName": "delete_authorization_policy" + }, + "description": "Sample for DeleteAuthorizationPolicy", + "file": "networksecurity_v1_generated_network_security_delete_authorization_policy_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_DeleteAuthorizationPolicy_async", + "segments": [ + { + "end": 48, + "start": 27, + "type": "FULL" + }, + { + "end": 48, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 45, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 49, + "start": 46, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_delete_authorization_policy_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.delete_authorization_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.DeleteAuthorizationPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "DeleteAuthorizationPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.DeleteAuthorizationPolicyRequest" + }, + { + "name": "name", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation.Operation", + "shortName": "delete_authorization_policy" + }, + "description": "Sample for DeleteAuthorizationPolicy", + "file": "networksecurity_v1_generated_network_security_delete_authorization_policy_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_DeleteAuthorizationPolicy_sync", + "segments": [ + { + "end": 48, + "start": 27, + "type": "FULL" + }, + { + "end": 48, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 45, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 49, + "start": 46, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_delete_authorization_policy_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.delete_client_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.DeleteClientTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "DeleteClientTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.DeleteClientTlsPolicyRequest" + }, + { + "name": "name", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation_async.AsyncOperation", + "shortName": "delete_client_tls_policy" + }, + "description": "Sample for DeleteClientTlsPolicy", + "file": "networksecurity_v1_generated_network_security_delete_client_tls_policy_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_DeleteClientTlsPolicy_async", + "segments": [ + { + "end": 48, + "start": 27, + "type": "FULL" + }, + { + "end": 48, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 45, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 49, + "start": 46, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_delete_client_tls_policy_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.delete_client_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.DeleteClientTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "DeleteClientTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.DeleteClientTlsPolicyRequest" + }, + { + "name": "name", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation.Operation", + "shortName": "delete_client_tls_policy" + }, + "description": "Sample for DeleteClientTlsPolicy", + "file": "networksecurity_v1_generated_network_security_delete_client_tls_policy_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_DeleteClientTlsPolicy_sync", + "segments": [ + { + "end": 48, + "start": 27, + "type": "FULL" + }, + { + "end": 48, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 45, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 49, + "start": 46, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_delete_client_tls_policy_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.delete_server_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.DeleteServerTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "DeleteServerTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.DeleteServerTlsPolicyRequest" + }, + { + "name": "name", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation_async.AsyncOperation", + "shortName": "delete_server_tls_policy" + }, + "description": "Sample for DeleteServerTlsPolicy", + "file": "networksecurity_v1_generated_network_security_delete_server_tls_policy_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_DeleteServerTlsPolicy_async", + "segments": [ + { + "end": 48, + "start": 27, + "type": "FULL" + }, + { + "end": 48, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 45, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 49, + "start": 46, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_delete_server_tls_policy_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.delete_server_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.DeleteServerTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "DeleteServerTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.DeleteServerTlsPolicyRequest" + }, + { + "name": "name", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation.Operation", + "shortName": "delete_server_tls_policy" + }, + "description": "Sample for DeleteServerTlsPolicy", + "file": "networksecurity_v1_generated_network_security_delete_server_tls_policy_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_DeleteServerTlsPolicy_sync", + "segments": [ + { + "end": 48, + "start": 27, + "type": "FULL" + }, + { + "end": 48, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 45, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 49, + "start": 46, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_delete_server_tls_policy_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.get_authorization_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.GetAuthorizationPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "GetAuthorizationPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.GetAuthorizationPolicyRequest" + }, + { + "name": "name", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.cloud.network_security_v1.types.AuthorizationPolicy", + "shortName": "get_authorization_policy" + }, + "description": "Sample for GetAuthorizationPolicy", + "file": "networksecurity_v1_generated_network_security_get_authorization_policy_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_GetAuthorizationPolicy_async", + "segments": [ + { + "end": 44, + "start": 27, + "type": "FULL" + }, + { + "end": 44, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 41, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 45, + "start": 42, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_get_authorization_policy_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.get_authorization_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.GetAuthorizationPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "GetAuthorizationPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.GetAuthorizationPolicyRequest" + }, + { + "name": "name", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.cloud.network_security_v1.types.AuthorizationPolicy", + "shortName": "get_authorization_policy" + }, + "description": "Sample for GetAuthorizationPolicy", + "file": "networksecurity_v1_generated_network_security_get_authorization_policy_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_GetAuthorizationPolicy_sync", + "segments": [ + { + "end": 44, + "start": 27, + "type": "FULL" + }, + { + "end": 44, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 41, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 45, + "start": 42, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_get_authorization_policy_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.get_client_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.GetClientTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "GetClientTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.GetClientTlsPolicyRequest" + }, + { + "name": "name", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.cloud.network_security_v1.types.ClientTlsPolicy", + "shortName": "get_client_tls_policy" + }, + "description": "Sample for GetClientTlsPolicy", + "file": "networksecurity_v1_generated_network_security_get_client_tls_policy_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_GetClientTlsPolicy_async", + "segments": [ + { + "end": 44, + "start": 27, + "type": "FULL" + }, + { + "end": 44, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 41, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 45, + "start": 42, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_get_client_tls_policy_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.get_client_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.GetClientTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "GetClientTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.GetClientTlsPolicyRequest" + }, + { + "name": "name", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.cloud.network_security_v1.types.ClientTlsPolicy", + "shortName": "get_client_tls_policy" + }, + "description": "Sample for GetClientTlsPolicy", + "file": "networksecurity_v1_generated_network_security_get_client_tls_policy_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_GetClientTlsPolicy_sync", + "segments": [ + { + "end": 44, + "start": 27, + "type": "FULL" + }, + { + "end": 44, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 41, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 45, + "start": 42, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_get_client_tls_policy_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.get_server_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.GetServerTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "GetServerTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.GetServerTlsPolicyRequest" + }, + { + "name": "name", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.cloud.network_security_v1.types.ServerTlsPolicy", + "shortName": "get_server_tls_policy" + }, + "description": "Sample for GetServerTlsPolicy", + "file": "networksecurity_v1_generated_network_security_get_server_tls_policy_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_GetServerTlsPolicy_async", + "segments": [ + { + "end": 44, + "start": 27, + "type": "FULL" + }, + { + "end": 44, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 41, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 45, + "start": 42, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_get_server_tls_policy_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.get_server_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.GetServerTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "GetServerTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.GetServerTlsPolicyRequest" + }, + { + "name": "name", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.cloud.network_security_v1.types.ServerTlsPolicy", + "shortName": "get_server_tls_policy" + }, + "description": "Sample for GetServerTlsPolicy", + "file": "networksecurity_v1_generated_network_security_get_server_tls_policy_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_GetServerTlsPolicy_sync", + "segments": [ + { + "end": 44, + "start": 27, + "type": "FULL" + }, + { + "end": 44, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 41, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 45, + "start": 42, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_get_server_tls_policy_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.list_authorization_policies", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.ListAuthorizationPolicies", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "ListAuthorizationPolicies" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.ListAuthorizationPoliciesRequest" + }, + { + "name": "parent", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.cloud.network_security_v1.services.network_security.pagers.ListAuthorizationPoliciesAsyncPager", + "shortName": "list_authorization_policies" + }, + "description": "Sample for ListAuthorizationPolicies", + "file": "networksecurity_v1_generated_network_security_list_authorization_policies_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_ListAuthorizationPolicies_async", + "segments": [ + { + "end": 45, + "start": 27, + "type": "FULL" + }, + { + "end": 45, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 41, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 46, + "start": 42, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_list_authorization_policies_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.list_authorization_policies", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.ListAuthorizationPolicies", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "ListAuthorizationPolicies" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.ListAuthorizationPoliciesRequest" + }, + { + "name": "parent", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.cloud.network_security_v1.services.network_security.pagers.ListAuthorizationPoliciesPager", + "shortName": "list_authorization_policies" + }, + "description": "Sample for ListAuthorizationPolicies", + "file": "networksecurity_v1_generated_network_security_list_authorization_policies_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_ListAuthorizationPolicies_sync", + "segments": [ + { + "end": 45, + "start": 27, + "type": "FULL" + }, + { + "end": 45, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 41, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 46, + "start": 42, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_list_authorization_policies_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.list_client_tls_policies", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.ListClientTlsPolicies", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "ListClientTlsPolicies" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.ListClientTlsPoliciesRequest" + }, + { + "name": "parent", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.cloud.network_security_v1.services.network_security.pagers.ListClientTlsPoliciesAsyncPager", + "shortName": "list_client_tls_policies" + }, + "description": "Sample for ListClientTlsPolicies", + "file": "networksecurity_v1_generated_network_security_list_client_tls_policies_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_ListClientTlsPolicies_async", + "segments": [ + { + "end": 45, + "start": 27, + "type": "FULL" + }, + { + "end": 45, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 41, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 46, + "start": 42, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_list_client_tls_policies_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.list_client_tls_policies", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.ListClientTlsPolicies", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "ListClientTlsPolicies" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.ListClientTlsPoliciesRequest" + }, + { + "name": "parent", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.cloud.network_security_v1.services.network_security.pagers.ListClientTlsPoliciesPager", + "shortName": "list_client_tls_policies" + }, + "description": "Sample for ListClientTlsPolicies", + "file": "networksecurity_v1_generated_network_security_list_client_tls_policies_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_ListClientTlsPolicies_sync", + "segments": [ + { + "end": 45, + "start": 27, + "type": "FULL" + }, + { + "end": 45, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 41, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 46, + "start": 42, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_list_client_tls_policies_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.list_server_tls_policies", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.ListServerTlsPolicies", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "ListServerTlsPolicies" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.ListServerTlsPoliciesRequest" + }, + { + "name": "parent", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.cloud.network_security_v1.services.network_security.pagers.ListServerTlsPoliciesAsyncPager", + "shortName": "list_server_tls_policies" + }, + "description": "Sample for ListServerTlsPolicies", + "file": "networksecurity_v1_generated_network_security_list_server_tls_policies_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_ListServerTlsPolicies_async", + "segments": [ + { + "end": 45, + "start": 27, + "type": "FULL" + }, + { + "end": 45, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 41, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 46, + "start": 42, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_list_server_tls_policies_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.list_server_tls_policies", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.ListServerTlsPolicies", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "ListServerTlsPolicies" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.ListServerTlsPoliciesRequest" + }, + { + "name": "parent", + "type": "str" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.cloud.network_security_v1.services.network_security.pagers.ListServerTlsPoliciesPager", + "shortName": "list_server_tls_policies" + }, + "description": "Sample for ListServerTlsPolicies", + "file": "networksecurity_v1_generated_network_security_list_server_tls_policies_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_ListServerTlsPolicies_sync", + "segments": [ + { + "end": 45, + "start": 27, + "type": "FULL" + }, + { + "end": 45, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 38, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 41, + "start": 39, + "type": "REQUEST_EXECUTION" + }, + { + "end": 46, + "start": 42, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_list_server_tls_policies_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.update_authorization_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.UpdateAuthorizationPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "UpdateAuthorizationPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.UpdateAuthorizationPolicyRequest" + }, + { + "name": "authorization_policy", + "type": "google.cloud.network_security_v1.types.AuthorizationPolicy" + }, + { + "name": "update_mask", + "type": "google.protobuf.field_mask_pb2.FieldMask" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation_async.AsyncOperation", + "shortName": "update_authorization_policy" + }, + "description": "Sample for UpdateAuthorizationPolicy", + "file": "networksecurity_v1_generated_network_security_update_authorization_policy_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_UpdateAuthorizationPolicy_async", + "segments": [ + { + "end": 52, + "start": 27, + "type": "FULL" + }, + { + "end": 52, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 42, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 49, + "start": 43, + "type": "REQUEST_EXECUTION" + }, + { + "end": 53, + "start": 50, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_update_authorization_policy_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.update_authorization_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.UpdateAuthorizationPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "UpdateAuthorizationPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.UpdateAuthorizationPolicyRequest" + }, + { + "name": "authorization_policy", + "type": "google.cloud.network_security_v1.types.AuthorizationPolicy" + }, + { + "name": "update_mask", + "type": "google.protobuf.field_mask_pb2.FieldMask" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation.Operation", + "shortName": "update_authorization_policy" + }, + "description": "Sample for UpdateAuthorizationPolicy", + "file": "networksecurity_v1_generated_network_security_update_authorization_policy_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_UpdateAuthorizationPolicy_sync", + "segments": [ + { + "end": 52, + "start": 27, + "type": "FULL" + }, + { + "end": 52, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 42, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 49, + "start": 43, + "type": "REQUEST_EXECUTION" + }, + { + "end": 53, + "start": 50, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_update_authorization_policy_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.update_client_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.UpdateClientTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "UpdateClientTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.UpdateClientTlsPolicyRequest" + }, + { + "name": "client_tls_policy", + "type": "google.cloud.network_security_v1.types.ClientTlsPolicy" + }, + { + "name": "update_mask", + "type": "google.protobuf.field_mask_pb2.FieldMask" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation_async.AsyncOperation", + "shortName": "update_client_tls_policy" + }, + "description": "Sample for UpdateClientTlsPolicy", + "file": "networksecurity_v1_generated_network_security_update_client_tls_policy_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_UpdateClientTlsPolicy_async", + "segments": [ + { + "end": 51, + "start": 27, + "type": "FULL" + }, + { + "end": 51, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 41, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 48, + "start": 42, + "type": "REQUEST_EXECUTION" + }, + { + "end": 52, + "start": 49, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_update_client_tls_policy_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.update_client_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.UpdateClientTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "UpdateClientTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.UpdateClientTlsPolicyRequest" + }, + { + "name": "client_tls_policy", + "type": "google.cloud.network_security_v1.types.ClientTlsPolicy" + }, + { + "name": "update_mask", + "type": "google.protobuf.field_mask_pb2.FieldMask" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation.Operation", + "shortName": "update_client_tls_policy" + }, + "description": "Sample for UpdateClientTlsPolicy", + "file": "networksecurity_v1_generated_network_security_update_client_tls_policy_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_UpdateClientTlsPolicy_sync", + "segments": [ + { + "end": 51, + "start": 27, + "type": "FULL" + }, + { + "end": 51, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 41, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 48, + "start": 42, + "type": "REQUEST_EXECUTION" + }, + { + "end": 52, + "start": 49, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_update_client_tls_policy_sync.py" + }, + { + "canonical": true, + "clientMethod": { + "async": true, + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient", + "shortName": "NetworkSecurityAsyncClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityAsyncClient.update_server_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.UpdateServerTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "UpdateServerTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.UpdateServerTlsPolicyRequest" + }, + { + "name": "server_tls_policy", + "type": "google.cloud.network_security_v1.types.ServerTlsPolicy" + }, + { + "name": "update_mask", + "type": "google.protobuf.field_mask_pb2.FieldMask" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation_async.AsyncOperation", + "shortName": "update_server_tls_policy" + }, + "description": "Sample for UpdateServerTlsPolicy", + "file": "networksecurity_v1_generated_network_security_update_server_tls_policy_async.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_UpdateServerTlsPolicy_async", + "segments": [ + { + "end": 51, + "start": 27, + "type": "FULL" + }, + { + "end": 51, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 41, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 48, + "start": 42, + "type": "REQUEST_EXECUTION" + }, + { + "end": 52, + "start": 49, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_update_server_tls_policy_async.py" + }, + { + "canonical": true, + "clientMethod": { + "client": { + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient", + "shortName": "NetworkSecurityClient" + }, + "fullName": "google.cloud.network_security_v1.NetworkSecurityClient.update_server_tls_policy", + "method": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity.UpdateServerTlsPolicy", + "service": { + "fullName": "google.cloud.networksecurity.v1.NetworkSecurity", + "shortName": "NetworkSecurity" + }, + "shortName": "UpdateServerTlsPolicy" + }, + "parameters": [ + { + "name": "request", + "type": "google.cloud.network_security_v1.types.UpdateServerTlsPolicyRequest" + }, + { + "name": "server_tls_policy", + "type": "google.cloud.network_security_v1.types.ServerTlsPolicy" + }, + { + "name": "update_mask", + "type": "google.protobuf.field_mask_pb2.FieldMask" + }, + { + "name": "retry", + "type": "google.api_core.retry.Retry" + }, + { + "name": "timeout", + "type": "float" + }, + { + "name": "metadata", + "type": "Sequence[Tuple[str, str]" + } + ], + "resultType": "google.api_core.operation.Operation", + "shortName": "update_server_tls_policy" + }, + "description": "Sample for UpdateServerTlsPolicy", + "file": "networksecurity_v1_generated_network_security_update_server_tls_policy_sync.py", + "language": "PYTHON", + "origin": "API_DEFINITION", + "regionTag": "networksecurity_v1_generated_NetworkSecurity_UpdateServerTlsPolicy_sync", + "segments": [ + { + "end": 51, + "start": 27, + "type": "FULL" + }, + { + "end": 51, + "start": 27, + "type": "SHORT" + }, + { + "end": 33, + "start": 31, + "type": "CLIENT_INITIALIZATION" + }, + { + "end": 41, + "start": 34, + "type": "REQUEST_INITIALIZATION" + }, + { + "end": 48, + "start": 42, + "type": "REQUEST_EXECUTION" + }, + { + "end": 52, + "start": 49, + "type": "RESPONSE_HANDLING" + } + ], + "title": "networksecurity_v1_generated_network_security_update_server_tls_policy_sync.py" + } + ] +} diff --git a/scripts/fixup_network_security_v1_keywords.py b/scripts/fixup_network_security_v1_keywords.py new file mode 100644 index 0000000..04f56ad --- /dev/null +++ b/scripts/fixup_network_security_v1_keywords.py @@ -0,0 +1,190 @@ +#! /usr/bin/env python3 +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +import argparse +import os +import libcst as cst +import pathlib +import sys +from typing import (Any, Callable, Dict, List, Sequence, Tuple) + + +def partition( + predicate: Callable[[Any], bool], + iterator: Sequence[Any] +) -> Tuple[List[Any], List[Any]]: + """A stable, out-of-place partition.""" + results = ([], []) + + for i in iterator: + results[int(predicate(i))].append(i) + + # Returns trueList, falseList + return results[1], results[0] + + +class network_securityCallTransformer(cst.CSTTransformer): + CTRL_PARAMS: Tuple[str] = ('retry', 'timeout', 'metadata') + METHOD_TO_PARAMS: Dict[str, Tuple[str]] = { + 'create_authorization_policy': ('parent', 'authorization_policy_id', 'authorization_policy', ), + 'create_client_tls_policy': ('parent', 'client_tls_policy_id', 'client_tls_policy', ), + 'create_server_tls_policy': ('parent', 'server_tls_policy_id', 'server_tls_policy', ), + 'delete_authorization_policy': ('name', ), + 'delete_client_tls_policy': ('name', ), + 'delete_server_tls_policy': ('name', ), + 'get_authorization_policy': ('name', ), + 'get_client_tls_policy': ('name', ), + 'get_server_tls_policy': ('name', ), + 'list_authorization_policies': ('parent', 'page_size', 'page_token', ), + 'list_client_tls_policies': ('parent', 'page_size', 'page_token', ), + 'list_server_tls_policies': ('parent', 'page_size', 'page_token', ), + 'update_authorization_policy': ('authorization_policy', 'update_mask', ), + 'update_client_tls_policy': ('client_tls_policy', 'update_mask', ), + 'update_server_tls_policy': ('server_tls_policy', 'update_mask', ), + } + + def leave_Call(self, original: cst.Call, updated: cst.Call) -> cst.CSTNode: + try: + key = original.func.attr.value + kword_params = self.METHOD_TO_PARAMS[key] + except (AttributeError, KeyError): + # Either not a method from the API or too convoluted to be sure. + return updated + + # If the existing code is valid, keyword args come after positional args. + # Therefore, all positional args must map to the first parameters. + args, kwargs = partition(lambda a: not bool(a.keyword), updated.args) + if any(k.keyword.value == "request" for k in kwargs): + # We've already fixed this file, don't fix it again. + return updated + + kwargs, ctrl_kwargs = partition( + lambda a: a.keyword.value not in self.CTRL_PARAMS, + kwargs + ) + + args, ctrl_args = args[:len(kword_params)], args[len(kword_params):] + ctrl_kwargs.extend(cst.Arg(value=a.value, keyword=cst.Name(value=ctrl)) + for a, ctrl in zip(ctrl_args, self.CTRL_PARAMS)) + + request_arg = cst.Arg( + value=cst.Dict([ + cst.DictElement( + cst.SimpleString("'{}'".format(name)), +cst.Element(value=arg.value) + ) + # Note: the args + kwargs looks silly, but keep in mind that + # the control parameters had to be stripped out, and that + # those could have been passed positionally or by keyword. + for name, arg in zip(kword_params, args + kwargs)]), + keyword=cst.Name("request") + ) + + return updated.with_changes( + args=[request_arg] + ctrl_kwargs + ) + + +def fix_files( + in_dir: pathlib.Path, + out_dir: pathlib.Path, + *, + transformer=network_securityCallTransformer(), +): + """Duplicate the input dir to the output dir, fixing file method calls. + + Preconditions: + * in_dir is a real directory + * out_dir is a real, empty directory + """ + pyfile_gen = ( + pathlib.Path(os.path.join(root, f)) + for root, _, files in os.walk(in_dir) + for f in files if os.path.splitext(f)[1] == ".py" + ) + + for fpath in pyfile_gen: + with open(fpath, 'r') as f: + src = f.read() + + # Parse the code and insert method call fixes. + tree = cst.parse_module(src) + updated = tree.visit(transformer) + + # Create the path and directory structure for the new file. + updated_path = out_dir.joinpath(fpath.relative_to(in_dir)) + updated_path.parent.mkdir(parents=True, exist_ok=True) + + # Generate the updated source file at the corresponding path. + with open(updated_path, 'w') as f: + f.write(updated.code) + + +if __name__ == '__main__': + parser = argparse.ArgumentParser( + description="""Fix up source that uses the network_security client library. + +The existing sources are NOT overwritten but are copied to output_dir with changes made. + +Note: This tool operates at a best-effort level at converting positional + parameters in client method calls to keyword based parameters. + Cases where it WILL FAIL include + A) * or ** expansion in a method call. + B) Calls via function or method alias (includes free function calls) + C) Indirect or dispatched calls (e.g. the method is looked up dynamically) + + These all constitute false negatives. The tool will also detect false + positives when an API method shares a name with another method. +""") + parser.add_argument( + '-d', + '--input-directory', + required=True, + dest='input_dir', + help='the input directory to walk for python files to fix up', + ) + parser.add_argument( + '-o', + '--output-directory', + required=True, + dest='output_dir', + help='the directory to output files fixed via un-flattening', + ) + args = parser.parse_args() + input_dir = pathlib.Path(args.input_dir) + output_dir = pathlib.Path(args.output_dir) + if not input_dir.is_dir(): + print( + f"input directory '{input_dir}' does not exist or is not a directory", + file=sys.stderr, + ) + sys.exit(-1) + + if not output_dir.is_dir(): + print( + f"output directory '{output_dir}' does not exist or is not a directory", + file=sys.stderr, + ) + sys.exit(-1) + + if os.listdir(output_dir): + print( + f"output directory '{output_dir}' is not empty", + file=sys.stderr, + ) + sys.exit(-1) + + fix_files(input_dir, output_dir) diff --git a/setup.py b/setup.py index ce8688f..2793f88 100644 --- a/setup.py +++ b/setup.py @@ -21,7 +21,7 @@ name = "google-cloud-network-security" description = "Network Security API client library" -version = "0.5.0" +version = "0.6.0" release_status = "Development Status :: 4 - Beta" dependencies = [ "google-api-core[grpc] >= 1.32.0, <3.0.0dev,!=2.0.*,!=2.1.*,!=2.2.*,!=2.3.*,!=2.4.*,!=2.5.*,!=2.6.*,!=2.7.*", diff --git a/tests/unit/gapic/network_security_v1/__init__.py b/tests/unit/gapic/network_security_v1/__init__.py new file mode 100644 index 0000000..e8e1c38 --- /dev/null +++ b/tests/unit/gapic/network_security_v1/__init__.py @@ -0,0 +1,15 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# diff --git a/tests/unit/gapic/network_security_v1/test_network_security.py b/tests/unit/gapic/network_security_v1/test_network_security.py new file mode 100644 index 0000000..aaca116 --- /dev/null +++ b/tests/unit/gapic/network_security_v1/test_network_security.py @@ -0,0 +1,5915 @@ +# -*- coding: utf-8 -*- +# Copyright 2022 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +import os + +# try/except added for compatibility with python < 3.8 +try: + from unittest import mock + from unittest.mock import AsyncMock +except ImportError: + import mock + +import math + +from google.api_core import ( + future, + gapic_v1, + grpc_helpers, + grpc_helpers_async, + operation, + operations_v1, + path_template, +) +from google.api_core import client_options +from google.api_core import exceptions as core_exceptions +from google.api_core import operation_async # type: ignore +import google.auth +from google.auth import credentials as ga_credentials +from google.auth.exceptions import MutualTLSChannelError +from google.longrunning import operations_pb2 +from google.oauth2 import service_account +from google.protobuf import field_mask_pb2 # type: ignore +from google.protobuf import timestamp_pb2 # type: ignore +import grpc +from grpc.experimental import aio +from proto.marshal.rules.dates import DurationRule, TimestampRule +import pytest + +from google.cloud.network_security_v1.services.network_security import ( + NetworkSecurityAsyncClient, + NetworkSecurityClient, + pagers, + transports, +) +from google.cloud.network_security_v1.types import ( + authorization_policy as gcn_authorization_policy, +) +from google.cloud.network_security_v1.types import ( + client_tls_policy as gcn_client_tls_policy, +) +from google.cloud.network_security_v1.types import ( + server_tls_policy as gcn_server_tls_policy, +) +from google.cloud.network_security_v1.types import authorization_policy +from google.cloud.network_security_v1.types import client_tls_policy +from google.cloud.network_security_v1.types import common +from google.cloud.network_security_v1.types import server_tls_policy +from google.cloud.network_security_v1.types import tls + + +def client_cert_source_callback(): + return b"cert bytes", b"key bytes" + + +# If default endpoint is localhost, then default mtls endpoint will be the same. +# This method modifies the default endpoint so the client can produce a different +# mtls endpoint for endpoint testing purposes. +def modify_default_endpoint(client): + return ( + "foo.googleapis.com" + if ("localhost" in client.DEFAULT_ENDPOINT) + else client.DEFAULT_ENDPOINT + ) + + +def test__get_default_mtls_endpoint(): + api_endpoint = "example.googleapis.com" + api_mtls_endpoint = "example.mtls.googleapis.com" + sandbox_endpoint = "example.sandbox.googleapis.com" + sandbox_mtls_endpoint = "example.mtls.sandbox.googleapis.com" + non_googleapi = "api.example.com" + + assert NetworkSecurityClient._get_default_mtls_endpoint(None) is None + assert ( + NetworkSecurityClient._get_default_mtls_endpoint(api_endpoint) + == api_mtls_endpoint + ) + assert ( + NetworkSecurityClient._get_default_mtls_endpoint(api_mtls_endpoint) + == api_mtls_endpoint + ) + assert ( + NetworkSecurityClient._get_default_mtls_endpoint(sandbox_endpoint) + == sandbox_mtls_endpoint + ) + assert ( + NetworkSecurityClient._get_default_mtls_endpoint(sandbox_mtls_endpoint) + == sandbox_mtls_endpoint + ) + assert ( + NetworkSecurityClient._get_default_mtls_endpoint(non_googleapi) == non_googleapi + ) + + +@pytest.mark.parametrize( + "client_class,transport_name", + [ + (NetworkSecurityClient, "grpc"), + (NetworkSecurityAsyncClient, "grpc_asyncio"), + ], +) +def test_network_security_client_from_service_account_info( + client_class, transport_name +): + creds = ga_credentials.AnonymousCredentials() + with mock.patch.object( + service_account.Credentials, "from_service_account_info" + ) as factory: + factory.return_value = creds + info = {"valid": True} + client = client_class.from_service_account_info(info, transport=transport_name) + assert client.transport._credentials == creds + assert isinstance(client, client_class) + + assert client.transport._host == ("networksecurity.googleapis.com:443") + + +@pytest.mark.parametrize( + "transport_class,transport_name", + [ + (transports.NetworkSecurityGrpcTransport, "grpc"), + (transports.NetworkSecurityGrpcAsyncIOTransport, "grpc_asyncio"), + ], +) +def test_network_security_client_service_account_always_use_jwt( + transport_class, transport_name +): + with mock.patch.object( + service_account.Credentials, "with_always_use_jwt_access", create=True + ) as use_jwt: + creds = service_account.Credentials(None, None, None) + transport = transport_class(credentials=creds, always_use_jwt_access=True) + use_jwt.assert_called_once_with(True) + + with mock.patch.object( + service_account.Credentials, "with_always_use_jwt_access", create=True + ) as use_jwt: + creds = service_account.Credentials(None, None, None) + transport = transport_class(credentials=creds, always_use_jwt_access=False) + use_jwt.assert_not_called() + + +@pytest.mark.parametrize( + "client_class,transport_name", + [ + (NetworkSecurityClient, "grpc"), + (NetworkSecurityAsyncClient, "grpc_asyncio"), + ], +) +def test_network_security_client_from_service_account_file( + client_class, transport_name +): + creds = ga_credentials.AnonymousCredentials() + with mock.patch.object( + service_account.Credentials, "from_service_account_file" + ) as factory: + factory.return_value = creds + client = client_class.from_service_account_file( + "dummy/file/path.json", transport=transport_name + ) + assert client.transport._credentials == creds + assert isinstance(client, client_class) + + client = client_class.from_service_account_json( + "dummy/file/path.json", transport=transport_name + ) + assert client.transport._credentials == creds + assert isinstance(client, client_class) + + assert client.transport._host == ("networksecurity.googleapis.com:443") + + +def test_network_security_client_get_transport_class(): + transport = NetworkSecurityClient.get_transport_class() + available_transports = [ + transports.NetworkSecurityGrpcTransport, + ] + assert transport in available_transports + + transport = NetworkSecurityClient.get_transport_class("grpc") + assert transport == transports.NetworkSecurityGrpcTransport + + +@pytest.mark.parametrize( + "client_class,transport_class,transport_name", + [ + (NetworkSecurityClient, transports.NetworkSecurityGrpcTransport, "grpc"), + ( + NetworkSecurityAsyncClient, + transports.NetworkSecurityGrpcAsyncIOTransport, + "grpc_asyncio", + ), + ], +) +@mock.patch.object( + NetworkSecurityClient, + "DEFAULT_ENDPOINT", + modify_default_endpoint(NetworkSecurityClient), +) +@mock.patch.object( + NetworkSecurityAsyncClient, + "DEFAULT_ENDPOINT", + modify_default_endpoint(NetworkSecurityAsyncClient), +) +def test_network_security_client_client_options( + client_class, transport_class, transport_name +): + # Check that if channel is provided we won't create a new one. + with mock.patch.object(NetworkSecurityClient, "get_transport_class") as gtc: + transport = transport_class(credentials=ga_credentials.AnonymousCredentials()) + client = client_class(transport=transport) + gtc.assert_not_called() + + # Check that if channel is provided via str we will create a new one. + with mock.patch.object(NetworkSecurityClient, "get_transport_class") as gtc: + client = client_class(transport=transport_name) + gtc.assert_called() + + # Check the case api_endpoint is provided. + options = client_options.ClientOptions(api_endpoint="squid.clam.whelk") + with mock.patch.object(transport_class, "__init__") as patched: + patched.return_value = None + client = client_class(transport=transport_name, client_options=options) + patched.assert_called_once_with( + credentials=None, + credentials_file=None, + host="squid.clam.whelk", + scopes=None, + client_cert_source_for_mtls=None, + quota_project_id=None, + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience=None, + ) + + # Check the case api_endpoint is not provided and GOOGLE_API_USE_MTLS_ENDPOINT is + # "never". + with mock.patch.dict(os.environ, {"GOOGLE_API_USE_MTLS_ENDPOINT": "never"}): + with mock.patch.object(transport_class, "__init__") as patched: + patched.return_value = None + client = client_class(transport=transport_name) + patched.assert_called_once_with( + credentials=None, + credentials_file=None, + host=client.DEFAULT_ENDPOINT, + scopes=None, + client_cert_source_for_mtls=None, + quota_project_id=None, + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience=None, + ) + + # Check the case api_endpoint is not provided and GOOGLE_API_USE_MTLS_ENDPOINT is + # "always". + with mock.patch.dict(os.environ, {"GOOGLE_API_USE_MTLS_ENDPOINT": "always"}): + with mock.patch.object(transport_class, "__init__") as patched: + patched.return_value = None + client = client_class(transport=transport_name) + patched.assert_called_once_with( + credentials=None, + credentials_file=None, + host=client.DEFAULT_MTLS_ENDPOINT, + scopes=None, + client_cert_source_for_mtls=None, + quota_project_id=None, + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience=None, + ) + + # Check the case api_endpoint is not provided and GOOGLE_API_USE_MTLS_ENDPOINT has + # unsupported value. + with mock.patch.dict(os.environ, {"GOOGLE_API_USE_MTLS_ENDPOINT": "Unsupported"}): + with pytest.raises(MutualTLSChannelError): + client = client_class(transport=transport_name) + + # Check the case GOOGLE_API_USE_CLIENT_CERTIFICATE has unsupported value. + with mock.patch.dict( + os.environ, {"GOOGLE_API_USE_CLIENT_CERTIFICATE": "Unsupported"} + ): + with pytest.raises(ValueError): + client = client_class(transport=transport_name) + + # Check the case quota_project_id is provided + options = client_options.ClientOptions(quota_project_id="octopus") + with mock.patch.object(transport_class, "__init__") as patched: + patched.return_value = None + client = client_class(client_options=options, transport=transport_name) + patched.assert_called_once_with( + credentials=None, + credentials_file=None, + host=client.DEFAULT_ENDPOINT, + scopes=None, + client_cert_source_for_mtls=None, + quota_project_id="octopus", + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience=None, + ) + # Check the case api_endpoint is provided + options = client_options.ClientOptions( + api_audience="https://language.googleapis.com" + ) + with mock.patch.object(transport_class, "__init__") as patched: + patched.return_value = None + client = client_class(client_options=options, transport=transport_name) + patched.assert_called_once_with( + credentials=None, + credentials_file=None, + host=client.DEFAULT_ENDPOINT, + scopes=None, + client_cert_source_for_mtls=None, + quota_project_id=None, + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience="https://language.googleapis.com", + ) + + +@pytest.mark.parametrize( + "client_class,transport_class,transport_name,use_client_cert_env", + [ + ( + NetworkSecurityClient, + transports.NetworkSecurityGrpcTransport, + "grpc", + "true", + ), + ( + NetworkSecurityAsyncClient, + transports.NetworkSecurityGrpcAsyncIOTransport, + "grpc_asyncio", + "true", + ), + ( + NetworkSecurityClient, + transports.NetworkSecurityGrpcTransport, + "grpc", + "false", + ), + ( + NetworkSecurityAsyncClient, + transports.NetworkSecurityGrpcAsyncIOTransport, + "grpc_asyncio", + "false", + ), + ], +) +@mock.patch.object( + NetworkSecurityClient, + "DEFAULT_ENDPOINT", + modify_default_endpoint(NetworkSecurityClient), +) +@mock.patch.object( + NetworkSecurityAsyncClient, + "DEFAULT_ENDPOINT", + modify_default_endpoint(NetworkSecurityAsyncClient), +) +@mock.patch.dict(os.environ, {"GOOGLE_API_USE_MTLS_ENDPOINT": "auto"}) +def test_network_security_client_mtls_env_auto( + client_class, transport_class, transport_name, use_client_cert_env +): + # This tests the endpoint autoswitch behavior. Endpoint is autoswitched to the default + # mtls endpoint, if GOOGLE_API_USE_CLIENT_CERTIFICATE is "true" and client cert exists. + + # Check the case client_cert_source is provided. Whether client cert is used depends on + # GOOGLE_API_USE_CLIENT_CERTIFICATE value. + with mock.patch.dict( + os.environ, {"GOOGLE_API_USE_CLIENT_CERTIFICATE": use_client_cert_env} + ): + options = client_options.ClientOptions( + client_cert_source=client_cert_source_callback + ) + with mock.patch.object(transport_class, "__init__") as patched: + patched.return_value = None + client = client_class(client_options=options, transport=transport_name) + + if use_client_cert_env == "false": + expected_client_cert_source = None + expected_host = client.DEFAULT_ENDPOINT + else: + expected_client_cert_source = client_cert_source_callback + expected_host = client.DEFAULT_MTLS_ENDPOINT + + patched.assert_called_once_with( + credentials=None, + credentials_file=None, + host=expected_host, + scopes=None, + client_cert_source_for_mtls=expected_client_cert_source, + quota_project_id=None, + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience=None, + ) + + # Check the case ADC client cert is provided. Whether client cert is used depends on + # GOOGLE_API_USE_CLIENT_CERTIFICATE value. + with mock.patch.dict( + os.environ, {"GOOGLE_API_USE_CLIENT_CERTIFICATE": use_client_cert_env} + ): + with mock.patch.object(transport_class, "__init__") as patched: + with mock.patch( + "google.auth.transport.mtls.has_default_client_cert_source", + return_value=True, + ): + with mock.patch( + "google.auth.transport.mtls.default_client_cert_source", + return_value=client_cert_source_callback, + ): + if use_client_cert_env == "false": + expected_host = client.DEFAULT_ENDPOINT + expected_client_cert_source = None + else: + expected_host = client.DEFAULT_MTLS_ENDPOINT + expected_client_cert_source = client_cert_source_callback + + patched.return_value = None + client = client_class(transport=transport_name) + patched.assert_called_once_with( + credentials=None, + credentials_file=None, + host=expected_host, + scopes=None, + client_cert_source_for_mtls=expected_client_cert_source, + quota_project_id=None, + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience=None, + ) + + # Check the case client_cert_source and ADC client cert are not provided. + with mock.patch.dict( + os.environ, {"GOOGLE_API_USE_CLIENT_CERTIFICATE": use_client_cert_env} + ): + with mock.patch.object(transport_class, "__init__") as patched: + with mock.patch( + "google.auth.transport.mtls.has_default_client_cert_source", + return_value=False, + ): + patched.return_value = None + client = client_class(transport=transport_name) + patched.assert_called_once_with( + credentials=None, + credentials_file=None, + host=client.DEFAULT_ENDPOINT, + scopes=None, + client_cert_source_for_mtls=None, + quota_project_id=None, + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience=None, + ) + + +@pytest.mark.parametrize( + "client_class", [NetworkSecurityClient, NetworkSecurityAsyncClient] +) +@mock.patch.object( + NetworkSecurityClient, + "DEFAULT_ENDPOINT", + modify_default_endpoint(NetworkSecurityClient), +) +@mock.patch.object( + NetworkSecurityAsyncClient, + "DEFAULT_ENDPOINT", + modify_default_endpoint(NetworkSecurityAsyncClient), +) +def test_network_security_client_get_mtls_endpoint_and_cert_source(client_class): + mock_client_cert_source = mock.Mock() + + # Test the case GOOGLE_API_USE_CLIENT_CERTIFICATE is "true". + with mock.patch.dict(os.environ, {"GOOGLE_API_USE_CLIENT_CERTIFICATE": "true"}): + mock_api_endpoint = "foo" + options = client_options.ClientOptions( + client_cert_source=mock_client_cert_source, api_endpoint=mock_api_endpoint + ) + api_endpoint, cert_source = client_class.get_mtls_endpoint_and_cert_source( + options + ) + assert api_endpoint == mock_api_endpoint + assert cert_source == mock_client_cert_source + + # Test the case GOOGLE_API_USE_CLIENT_CERTIFICATE is "false". + with mock.patch.dict(os.environ, {"GOOGLE_API_USE_CLIENT_CERTIFICATE": "false"}): + mock_client_cert_source = mock.Mock() + mock_api_endpoint = "foo" + options = client_options.ClientOptions( + client_cert_source=mock_client_cert_source, api_endpoint=mock_api_endpoint + ) + api_endpoint, cert_source = client_class.get_mtls_endpoint_and_cert_source( + options + ) + assert api_endpoint == mock_api_endpoint + assert cert_source is None + + # Test the case GOOGLE_API_USE_MTLS_ENDPOINT is "never". + with mock.patch.dict(os.environ, {"GOOGLE_API_USE_MTLS_ENDPOINT": "never"}): + api_endpoint, cert_source = client_class.get_mtls_endpoint_and_cert_source() + assert api_endpoint == client_class.DEFAULT_ENDPOINT + assert cert_source is None + + # Test the case GOOGLE_API_USE_MTLS_ENDPOINT is "always". + with mock.patch.dict(os.environ, {"GOOGLE_API_USE_MTLS_ENDPOINT": "always"}): + api_endpoint, cert_source = client_class.get_mtls_endpoint_and_cert_source() + assert api_endpoint == client_class.DEFAULT_MTLS_ENDPOINT + assert cert_source is None + + # Test the case GOOGLE_API_USE_MTLS_ENDPOINT is "auto" and default cert doesn't exist. + with mock.patch.dict(os.environ, {"GOOGLE_API_USE_CLIENT_CERTIFICATE": "true"}): + with mock.patch( + "google.auth.transport.mtls.has_default_client_cert_source", + return_value=False, + ): + api_endpoint, cert_source = client_class.get_mtls_endpoint_and_cert_source() + assert api_endpoint == client_class.DEFAULT_ENDPOINT + assert cert_source is None + + # Test the case GOOGLE_API_USE_MTLS_ENDPOINT is "auto" and default cert exists. + with mock.patch.dict(os.environ, {"GOOGLE_API_USE_CLIENT_CERTIFICATE": "true"}): + with mock.patch( + "google.auth.transport.mtls.has_default_client_cert_source", + return_value=True, + ): + with mock.patch( + "google.auth.transport.mtls.default_client_cert_source", + return_value=mock_client_cert_source, + ): + ( + api_endpoint, + cert_source, + ) = client_class.get_mtls_endpoint_and_cert_source() + assert api_endpoint == client_class.DEFAULT_MTLS_ENDPOINT + assert cert_source == mock_client_cert_source + + +@pytest.mark.parametrize( + "client_class,transport_class,transport_name", + [ + (NetworkSecurityClient, transports.NetworkSecurityGrpcTransport, "grpc"), + ( + NetworkSecurityAsyncClient, + transports.NetworkSecurityGrpcAsyncIOTransport, + "grpc_asyncio", + ), + ], +) +def test_network_security_client_client_options_scopes( + client_class, transport_class, transport_name +): + # Check the case scopes are provided. + options = client_options.ClientOptions( + scopes=["1", "2"], + ) + with mock.patch.object(transport_class, "__init__") as patched: + patched.return_value = None + client = client_class(client_options=options, transport=transport_name) + patched.assert_called_once_with( + credentials=None, + credentials_file=None, + host=client.DEFAULT_ENDPOINT, + scopes=["1", "2"], + client_cert_source_for_mtls=None, + quota_project_id=None, + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience=None, + ) + + +@pytest.mark.parametrize( + "client_class,transport_class,transport_name,grpc_helpers", + [ + ( + NetworkSecurityClient, + transports.NetworkSecurityGrpcTransport, + "grpc", + grpc_helpers, + ), + ( + NetworkSecurityAsyncClient, + transports.NetworkSecurityGrpcAsyncIOTransport, + "grpc_asyncio", + grpc_helpers_async, + ), + ], +) +def test_network_security_client_client_options_credentials_file( + client_class, transport_class, transport_name, grpc_helpers +): + # Check the case credentials file is provided. + options = client_options.ClientOptions(credentials_file="credentials.json") + + with mock.patch.object(transport_class, "__init__") as patched: + patched.return_value = None + client = client_class(client_options=options, transport=transport_name) + patched.assert_called_once_with( + credentials=None, + credentials_file="credentials.json", + host=client.DEFAULT_ENDPOINT, + scopes=None, + client_cert_source_for_mtls=None, + quota_project_id=None, + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience=None, + ) + + +def test_network_security_client_client_options_from_dict(): + with mock.patch( + "google.cloud.network_security_v1.services.network_security.transports.NetworkSecurityGrpcTransport.__init__" + ) as grpc_transport: + grpc_transport.return_value = None + client = NetworkSecurityClient( + client_options={"api_endpoint": "squid.clam.whelk"} + ) + grpc_transport.assert_called_once_with( + credentials=None, + credentials_file=None, + host="squid.clam.whelk", + scopes=None, + client_cert_source_for_mtls=None, + quota_project_id=None, + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience=None, + ) + + +@pytest.mark.parametrize( + "client_class,transport_class,transport_name,grpc_helpers", + [ + ( + NetworkSecurityClient, + transports.NetworkSecurityGrpcTransport, + "grpc", + grpc_helpers, + ), + ( + NetworkSecurityAsyncClient, + transports.NetworkSecurityGrpcAsyncIOTransport, + "grpc_asyncio", + grpc_helpers_async, + ), + ], +) +def test_network_security_client_create_channel_credentials_file( + client_class, transport_class, transport_name, grpc_helpers +): + # Check the case credentials file is provided. + options = client_options.ClientOptions(credentials_file="credentials.json") + + with mock.patch.object(transport_class, "__init__") as patched: + patched.return_value = None + client = client_class(client_options=options, transport=transport_name) + patched.assert_called_once_with( + credentials=None, + credentials_file="credentials.json", + host=client.DEFAULT_ENDPOINT, + scopes=None, + client_cert_source_for_mtls=None, + quota_project_id=None, + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience=None, + ) + + # test that the credentials from file are saved and used as the credentials. + with mock.patch.object( + google.auth, "load_credentials_from_file", autospec=True + ) as load_creds, mock.patch.object( + google.auth, "default", autospec=True + ) as adc, mock.patch.object( + grpc_helpers, "create_channel" + ) as create_channel: + creds = ga_credentials.AnonymousCredentials() + file_creds = ga_credentials.AnonymousCredentials() + load_creds.return_value = (file_creds, None) + adc.return_value = (creds, None) + client = client_class(client_options=options, transport=transport_name) + create_channel.assert_called_with( + "networksecurity.googleapis.com:443", + credentials=file_creds, + credentials_file=None, + quota_project_id=None, + default_scopes=("https://www.googleapis.com/auth/cloud-platform",), + scopes=None, + default_host="networksecurity.googleapis.com", + ssl_credentials=None, + options=[ + ("grpc.max_send_message_length", -1), + ("grpc.max_receive_message_length", -1), + ], + ) + + +@pytest.mark.parametrize( + "request_type", + [ + authorization_policy.ListAuthorizationPoliciesRequest, + dict, + ], +) +def test_list_authorization_policies(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_authorization_policies), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = authorization_policy.ListAuthorizationPoliciesResponse( + next_page_token="next_page_token_value", + ) + response = client.list_authorization_policies(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == authorization_policy.ListAuthorizationPoliciesRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, pagers.ListAuthorizationPoliciesPager) + assert response.next_page_token == "next_page_token_value" + + +def test_list_authorization_policies_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_authorization_policies), "__call__" + ) as call: + client.list_authorization_policies() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == authorization_policy.ListAuthorizationPoliciesRequest() + + +@pytest.mark.asyncio +async def test_list_authorization_policies_async( + transport: str = "grpc_asyncio", + request_type=authorization_policy.ListAuthorizationPoliciesRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_authorization_policies), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + authorization_policy.ListAuthorizationPoliciesResponse( + next_page_token="next_page_token_value", + ) + ) + response = await client.list_authorization_policies(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == authorization_policy.ListAuthorizationPoliciesRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, pagers.ListAuthorizationPoliciesAsyncPager) + assert response.next_page_token == "next_page_token_value" + + +@pytest.mark.asyncio +async def test_list_authorization_policies_async_from_dict(): + await test_list_authorization_policies_async(request_type=dict) + + +def test_list_authorization_policies_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = authorization_policy.ListAuthorizationPoliciesRequest() + + request.parent = "parent_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_authorization_policies), "__call__" + ) as call: + call.return_value = authorization_policy.ListAuthorizationPoliciesResponse() + client.list_authorization_policies(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "parent=parent_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_list_authorization_policies_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = authorization_policy.ListAuthorizationPoliciesRequest() + + request.parent = "parent_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_authorization_policies), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + authorization_policy.ListAuthorizationPoliciesResponse() + ) + await client.list_authorization_policies(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "parent=parent_value", + ) in kw["metadata"] + + +def test_list_authorization_policies_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_authorization_policies), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = authorization_policy.ListAuthorizationPoliciesResponse() + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.list_authorization_policies( + parent="parent_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].parent + mock_val = "parent_value" + assert arg == mock_val + + +def test_list_authorization_policies_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.list_authorization_policies( + authorization_policy.ListAuthorizationPoliciesRequest(), + parent="parent_value", + ) + + +@pytest.mark.asyncio +async def test_list_authorization_policies_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_authorization_policies), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = authorization_policy.ListAuthorizationPoliciesResponse() + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + authorization_policy.ListAuthorizationPoliciesResponse() + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.list_authorization_policies( + parent="parent_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].parent + mock_val = "parent_value" + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_list_authorization_policies_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.list_authorization_policies( + authorization_policy.ListAuthorizationPoliciesRequest(), + parent="parent_value", + ) + + +def test_list_authorization_policies_pager(transport_name: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials, + transport=transport_name, + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_authorization_policies), "__call__" + ) as call: + # Set the response to a series of pages. + call.side_effect = ( + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[ + authorization_policy.AuthorizationPolicy(), + authorization_policy.AuthorizationPolicy(), + authorization_policy.AuthorizationPolicy(), + ], + next_page_token="abc", + ), + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[], + next_page_token="def", + ), + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[ + authorization_policy.AuthorizationPolicy(), + ], + next_page_token="ghi", + ), + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[ + authorization_policy.AuthorizationPolicy(), + authorization_policy.AuthorizationPolicy(), + ], + ), + RuntimeError, + ) + + metadata = () + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", ""),)), + ) + pager = client.list_authorization_policies(request={}) + + assert pager._metadata == metadata + + results = list(pager) + assert len(results) == 6 + assert all( + isinstance(i, authorization_policy.AuthorizationPolicy) for i in results + ) + + +def test_list_authorization_policies_pages(transport_name: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials, + transport=transport_name, + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_authorization_policies), "__call__" + ) as call: + # Set the response to a series of pages. + call.side_effect = ( + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[ + authorization_policy.AuthorizationPolicy(), + authorization_policy.AuthorizationPolicy(), + authorization_policy.AuthorizationPolicy(), + ], + next_page_token="abc", + ), + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[], + next_page_token="def", + ), + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[ + authorization_policy.AuthorizationPolicy(), + ], + next_page_token="ghi", + ), + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[ + authorization_policy.AuthorizationPolicy(), + authorization_policy.AuthorizationPolicy(), + ], + ), + RuntimeError, + ) + pages = list(client.list_authorization_policies(request={}).pages) + for page_, token in zip(pages, ["abc", "def", "ghi", ""]): + assert page_.raw_page.next_page_token == token + + +@pytest.mark.asyncio +async def test_list_authorization_policies_async_pager(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials, + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_authorization_policies), + "__call__", + new_callable=mock.AsyncMock, + ) as call: + # Set the response to a series of pages. + call.side_effect = ( + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[ + authorization_policy.AuthorizationPolicy(), + authorization_policy.AuthorizationPolicy(), + authorization_policy.AuthorizationPolicy(), + ], + next_page_token="abc", + ), + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[], + next_page_token="def", + ), + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[ + authorization_policy.AuthorizationPolicy(), + ], + next_page_token="ghi", + ), + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[ + authorization_policy.AuthorizationPolicy(), + authorization_policy.AuthorizationPolicy(), + ], + ), + RuntimeError, + ) + async_pager = await client.list_authorization_policies( + request={}, + ) + assert async_pager.next_page_token == "abc" + responses = [] + async for response in async_pager: # pragma: no branch + responses.append(response) + + assert len(responses) == 6 + assert all( + isinstance(i, authorization_policy.AuthorizationPolicy) for i in responses + ) + + +@pytest.mark.asyncio +async def test_list_authorization_policies_async_pages(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials, + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_authorization_policies), + "__call__", + new_callable=mock.AsyncMock, + ) as call: + # Set the response to a series of pages. + call.side_effect = ( + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[ + authorization_policy.AuthorizationPolicy(), + authorization_policy.AuthorizationPolicy(), + authorization_policy.AuthorizationPolicy(), + ], + next_page_token="abc", + ), + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[], + next_page_token="def", + ), + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[ + authorization_policy.AuthorizationPolicy(), + ], + next_page_token="ghi", + ), + authorization_policy.ListAuthorizationPoliciesResponse( + authorization_policies=[ + authorization_policy.AuthorizationPolicy(), + authorization_policy.AuthorizationPolicy(), + ], + ), + RuntimeError, + ) + pages = [] + async for page_ in ( + await client.list_authorization_policies(request={}) + ).pages: # pragma: no branch + pages.append(page_) + for page_, token in zip(pages, ["abc", "def", "ghi", ""]): + assert page_.raw_page.next_page_token == token + + +@pytest.mark.parametrize( + "request_type", + [ + authorization_policy.GetAuthorizationPolicyRequest, + dict, + ], +) +def test_get_authorization_policy(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = authorization_policy.AuthorizationPolicy( + name="name_value", + description="description_value", + action=authorization_policy.AuthorizationPolicy.Action.ALLOW, + ) + response = client.get_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == authorization_policy.GetAuthorizationPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, authorization_policy.AuthorizationPolicy) + assert response.name == "name_value" + assert response.description == "description_value" + assert response.action == authorization_policy.AuthorizationPolicy.Action.ALLOW + + +def test_get_authorization_policy_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_authorization_policy), "__call__" + ) as call: + client.get_authorization_policy() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == authorization_policy.GetAuthorizationPolicyRequest() + + +@pytest.mark.asyncio +async def test_get_authorization_policy_async( + transport: str = "grpc_asyncio", + request_type=authorization_policy.GetAuthorizationPolicyRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + authorization_policy.AuthorizationPolicy( + name="name_value", + description="description_value", + action=authorization_policy.AuthorizationPolicy.Action.ALLOW, + ) + ) + response = await client.get_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == authorization_policy.GetAuthorizationPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, authorization_policy.AuthorizationPolicy) + assert response.name == "name_value" + assert response.description == "description_value" + assert response.action == authorization_policy.AuthorizationPolicy.Action.ALLOW + + +@pytest.mark.asyncio +async def test_get_authorization_policy_async_from_dict(): + await test_get_authorization_policy_async(request_type=dict) + + +def test_get_authorization_policy_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = authorization_policy.GetAuthorizationPolicyRequest() + + request.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_authorization_policy), "__call__" + ) as call: + call.return_value = authorization_policy.AuthorizationPolicy() + client.get_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "name=name_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_get_authorization_policy_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = authorization_policy.GetAuthorizationPolicyRequest() + + request.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_authorization_policy), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + authorization_policy.AuthorizationPolicy() + ) + await client.get_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "name=name_value", + ) in kw["metadata"] + + +def test_get_authorization_policy_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = authorization_policy.AuthorizationPolicy() + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.get_authorization_policy( + name="name_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].name + mock_val = "name_value" + assert arg == mock_val + + +def test_get_authorization_policy_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.get_authorization_policy( + authorization_policy.GetAuthorizationPolicyRequest(), + name="name_value", + ) + + +@pytest.mark.asyncio +async def test_get_authorization_policy_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = authorization_policy.AuthorizationPolicy() + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + authorization_policy.AuthorizationPolicy() + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.get_authorization_policy( + name="name_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].name + mock_val = "name_value" + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_get_authorization_policy_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.get_authorization_policy( + authorization_policy.GetAuthorizationPolicyRequest(), + name="name_value", + ) + + +@pytest.mark.parametrize( + "request_type", + [ + gcn_authorization_policy.CreateAuthorizationPolicyRequest, + dict, + ], +) +def test_create_authorization_policy(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/spam") + response = client.create_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_authorization_policy.CreateAuthorizationPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +def test_create_authorization_policy_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_authorization_policy), "__call__" + ) as call: + client.create_authorization_policy() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_authorization_policy.CreateAuthorizationPolicyRequest() + + +@pytest.mark.asyncio +async def test_create_authorization_policy_async( + transport: str = "grpc_asyncio", + request_type=gcn_authorization_policy.CreateAuthorizationPolicyRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + response = await client.create_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_authorization_policy.CreateAuthorizationPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +@pytest.mark.asyncio +async def test_create_authorization_policy_async_from_dict(): + await test_create_authorization_policy_async(request_type=dict) + + +def test_create_authorization_policy_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = gcn_authorization_policy.CreateAuthorizationPolicyRequest() + + request.parent = "parent_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_authorization_policy), "__call__" + ) as call: + call.return_value = operations_pb2.Operation(name="operations/op") + client.create_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "parent=parent_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_create_authorization_policy_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = gcn_authorization_policy.CreateAuthorizationPolicyRequest() + + request.parent = "parent_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_authorization_policy), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/op") + ) + await client.create_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "parent=parent_value", + ) in kw["metadata"] + + +def test_create_authorization_policy_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.create_authorization_policy( + parent="parent_value", + authorization_policy=gcn_authorization_policy.AuthorizationPolicy( + name="name_value" + ), + authorization_policy_id="authorization_policy_id_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].parent + mock_val = "parent_value" + assert arg == mock_val + arg = args[0].authorization_policy + mock_val = gcn_authorization_policy.AuthorizationPolicy(name="name_value") + assert arg == mock_val + arg = args[0].authorization_policy_id + mock_val = "authorization_policy_id_value" + assert arg == mock_val + + +def test_create_authorization_policy_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.create_authorization_policy( + gcn_authorization_policy.CreateAuthorizationPolicyRequest(), + parent="parent_value", + authorization_policy=gcn_authorization_policy.AuthorizationPolicy( + name="name_value" + ), + authorization_policy_id="authorization_policy_id_value", + ) + + +@pytest.mark.asyncio +async def test_create_authorization_policy_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.create_authorization_policy( + parent="parent_value", + authorization_policy=gcn_authorization_policy.AuthorizationPolicy( + name="name_value" + ), + authorization_policy_id="authorization_policy_id_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].parent + mock_val = "parent_value" + assert arg == mock_val + arg = args[0].authorization_policy + mock_val = gcn_authorization_policy.AuthorizationPolicy(name="name_value") + assert arg == mock_val + arg = args[0].authorization_policy_id + mock_val = "authorization_policy_id_value" + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_create_authorization_policy_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.create_authorization_policy( + gcn_authorization_policy.CreateAuthorizationPolicyRequest(), + parent="parent_value", + authorization_policy=gcn_authorization_policy.AuthorizationPolicy( + name="name_value" + ), + authorization_policy_id="authorization_policy_id_value", + ) + + +@pytest.mark.parametrize( + "request_type", + [ + gcn_authorization_policy.UpdateAuthorizationPolicyRequest, + dict, + ], +) +def test_update_authorization_policy(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/spam") + response = client.update_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_authorization_policy.UpdateAuthorizationPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +def test_update_authorization_policy_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_authorization_policy), "__call__" + ) as call: + client.update_authorization_policy() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_authorization_policy.UpdateAuthorizationPolicyRequest() + + +@pytest.mark.asyncio +async def test_update_authorization_policy_async( + transport: str = "grpc_asyncio", + request_type=gcn_authorization_policy.UpdateAuthorizationPolicyRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + response = await client.update_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_authorization_policy.UpdateAuthorizationPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +@pytest.mark.asyncio +async def test_update_authorization_policy_async_from_dict(): + await test_update_authorization_policy_async(request_type=dict) + + +def test_update_authorization_policy_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = gcn_authorization_policy.UpdateAuthorizationPolicyRequest() + + request.authorization_policy.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_authorization_policy), "__call__" + ) as call: + call.return_value = operations_pb2.Operation(name="operations/op") + client.update_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "authorization_policy.name=name_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_update_authorization_policy_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = gcn_authorization_policy.UpdateAuthorizationPolicyRequest() + + request.authorization_policy.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_authorization_policy), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/op") + ) + await client.update_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "authorization_policy.name=name_value", + ) in kw["metadata"] + + +def test_update_authorization_policy_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.update_authorization_policy( + authorization_policy=gcn_authorization_policy.AuthorizationPolicy( + name="name_value" + ), + update_mask=field_mask_pb2.FieldMask(paths=["paths_value"]), + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].authorization_policy + mock_val = gcn_authorization_policy.AuthorizationPolicy(name="name_value") + assert arg == mock_val + arg = args[0].update_mask + mock_val = field_mask_pb2.FieldMask(paths=["paths_value"]) + assert arg == mock_val + + +def test_update_authorization_policy_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.update_authorization_policy( + gcn_authorization_policy.UpdateAuthorizationPolicyRequest(), + authorization_policy=gcn_authorization_policy.AuthorizationPolicy( + name="name_value" + ), + update_mask=field_mask_pb2.FieldMask(paths=["paths_value"]), + ) + + +@pytest.mark.asyncio +async def test_update_authorization_policy_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.update_authorization_policy( + authorization_policy=gcn_authorization_policy.AuthorizationPolicy( + name="name_value" + ), + update_mask=field_mask_pb2.FieldMask(paths=["paths_value"]), + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].authorization_policy + mock_val = gcn_authorization_policy.AuthorizationPolicy(name="name_value") + assert arg == mock_val + arg = args[0].update_mask + mock_val = field_mask_pb2.FieldMask(paths=["paths_value"]) + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_update_authorization_policy_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.update_authorization_policy( + gcn_authorization_policy.UpdateAuthorizationPolicyRequest(), + authorization_policy=gcn_authorization_policy.AuthorizationPolicy( + name="name_value" + ), + update_mask=field_mask_pb2.FieldMask(paths=["paths_value"]), + ) + + +@pytest.mark.parametrize( + "request_type", + [ + authorization_policy.DeleteAuthorizationPolicyRequest, + dict, + ], +) +def test_delete_authorization_policy(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/spam") + response = client.delete_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == authorization_policy.DeleteAuthorizationPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +def test_delete_authorization_policy_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_authorization_policy), "__call__" + ) as call: + client.delete_authorization_policy() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == authorization_policy.DeleteAuthorizationPolicyRequest() + + +@pytest.mark.asyncio +async def test_delete_authorization_policy_async( + transport: str = "grpc_asyncio", + request_type=authorization_policy.DeleteAuthorizationPolicyRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + response = await client.delete_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == authorization_policy.DeleteAuthorizationPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +@pytest.mark.asyncio +async def test_delete_authorization_policy_async_from_dict(): + await test_delete_authorization_policy_async(request_type=dict) + + +def test_delete_authorization_policy_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = authorization_policy.DeleteAuthorizationPolicyRequest() + + request.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_authorization_policy), "__call__" + ) as call: + call.return_value = operations_pb2.Operation(name="operations/op") + client.delete_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "name=name_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_delete_authorization_policy_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = authorization_policy.DeleteAuthorizationPolicyRequest() + + request.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_authorization_policy), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/op") + ) + await client.delete_authorization_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "name=name_value", + ) in kw["metadata"] + + +def test_delete_authorization_policy_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.delete_authorization_policy( + name="name_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].name + mock_val = "name_value" + assert arg == mock_val + + +def test_delete_authorization_policy_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.delete_authorization_policy( + authorization_policy.DeleteAuthorizationPolicyRequest(), + name="name_value", + ) + + +@pytest.mark.asyncio +async def test_delete_authorization_policy_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_authorization_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.delete_authorization_policy( + name="name_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].name + mock_val = "name_value" + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_delete_authorization_policy_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.delete_authorization_policy( + authorization_policy.DeleteAuthorizationPolicyRequest(), + name="name_value", + ) + + +@pytest.mark.parametrize( + "request_type", + [ + server_tls_policy.ListServerTlsPoliciesRequest, + dict, + ], +) +def test_list_server_tls_policies(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_server_tls_policies), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = server_tls_policy.ListServerTlsPoliciesResponse( + next_page_token="next_page_token_value", + ) + response = client.list_server_tls_policies(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == server_tls_policy.ListServerTlsPoliciesRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, pagers.ListServerTlsPoliciesPager) + assert response.next_page_token == "next_page_token_value" + + +def test_list_server_tls_policies_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_server_tls_policies), "__call__" + ) as call: + client.list_server_tls_policies() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == server_tls_policy.ListServerTlsPoliciesRequest() + + +@pytest.mark.asyncio +async def test_list_server_tls_policies_async( + transport: str = "grpc_asyncio", + request_type=server_tls_policy.ListServerTlsPoliciesRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_server_tls_policies), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + server_tls_policy.ListServerTlsPoliciesResponse( + next_page_token="next_page_token_value", + ) + ) + response = await client.list_server_tls_policies(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == server_tls_policy.ListServerTlsPoliciesRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, pagers.ListServerTlsPoliciesAsyncPager) + assert response.next_page_token == "next_page_token_value" + + +@pytest.mark.asyncio +async def test_list_server_tls_policies_async_from_dict(): + await test_list_server_tls_policies_async(request_type=dict) + + +def test_list_server_tls_policies_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = server_tls_policy.ListServerTlsPoliciesRequest() + + request.parent = "parent_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_server_tls_policies), "__call__" + ) as call: + call.return_value = server_tls_policy.ListServerTlsPoliciesResponse() + client.list_server_tls_policies(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "parent=parent_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_list_server_tls_policies_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = server_tls_policy.ListServerTlsPoliciesRequest() + + request.parent = "parent_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_server_tls_policies), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + server_tls_policy.ListServerTlsPoliciesResponse() + ) + await client.list_server_tls_policies(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "parent=parent_value", + ) in kw["metadata"] + + +def test_list_server_tls_policies_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_server_tls_policies), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = server_tls_policy.ListServerTlsPoliciesResponse() + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.list_server_tls_policies( + parent="parent_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].parent + mock_val = "parent_value" + assert arg == mock_val + + +def test_list_server_tls_policies_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.list_server_tls_policies( + server_tls_policy.ListServerTlsPoliciesRequest(), + parent="parent_value", + ) + + +@pytest.mark.asyncio +async def test_list_server_tls_policies_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_server_tls_policies), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = server_tls_policy.ListServerTlsPoliciesResponse() + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + server_tls_policy.ListServerTlsPoliciesResponse() + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.list_server_tls_policies( + parent="parent_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].parent + mock_val = "parent_value" + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_list_server_tls_policies_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.list_server_tls_policies( + server_tls_policy.ListServerTlsPoliciesRequest(), + parent="parent_value", + ) + + +def test_list_server_tls_policies_pager(transport_name: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials, + transport=transport_name, + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_server_tls_policies), "__call__" + ) as call: + # Set the response to a series of pages. + call.side_effect = ( + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[ + server_tls_policy.ServerTlsPolicy(), + server_tls_policy.ServerTlsPolicy(), + server_tls_policy.ServerTlsPolicy(), + ], + next_page_token="abc", + ), + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[], + next_page_token="def", + ), + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[ + server_tls_policy.ServerTlsPolicy(), + ], + next_page_token="ghi", + ), + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[ + server_tls_policy.ServerTlsPolicy(), + server_tls_policy.ServerTlsPolicy(), + ], + ), + RuntimeError, + ) + + metadata = () + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", ""),)), + ) + pager = client.list_server_tls_policies(request={}) + + assert pager._metadata == metadata + + results = list(pager) + assert len(results) == 6 + assert all(isinstance(i, server_tls_policy.ServerTlsPolicy) for i in results) + + +def test_list_server_tls_policies_pages(transport_name: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials, + transport=transport_name, + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_server_tls_policies), "__call__" + ) as call: + # Set the response to a series of pages. + call.side_effect = ( + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[ + server_tls_policy.ServerTlsPolicy(), + server_tls_policy.ServerTlsPolicy(), + server_tls_policy.ServerTlsPolicy(), + ], + next_page_token="abc", + ), + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[], + next_page_token="def", + ), + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[ + server_tls_policy.ServerTlsPolicy(), + ], + next_page_token="ghi", + ), + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[ + server_tls_policy.ServerTlsPolicy(), + server_tls_policy.ServerTlsPolicy(), + ], + ), + RuntimeError, + ) + pages = list(client.list_server_tls_policies(request={}).pages) + for page_, token in zip(pages, ["abc", "def", "ghi", ""]): + assert page_.raw_page.next_page_token == token + + +@pytest.mark.asyncio +async def test_list_server_tls_policies_async_pager(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials, + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_server_tls_policies), + "__call__", + new_callable=mock.AsyncMock, + ) as call: + # Set the response to a series of pages. + call.side_effect = ( + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[ + server_tls_policy.ServerTlsPolicy(), + server_tls_policy.ServerTlsPolicy(), + server_tls_policy.ServerTlsPolicy(), + ], + next_page_token="abc", + ), + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[], + next_page_token="def", + ), + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[ + server_tls_policy.ServerTlsPolicy(), + ], + next_page_token="ghi", + ), + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[ + server_tls_policy.ServerTlsPolicy(), + server_tls_policy.ServerTlsPolicy(), + ], + ), + RuntimeError, + ) + async_pager = await client.list_server_tls_policies( + request={}, + ) + assert async_pager.next_page_token == "abc" + responses = [] + async for response in async_pager: # pragma: no branch + responses.append(response) + + assert len(responses) == 6 + assert all(isinstance(i, server_tls_policy.ServerTlsPolicy) for i in responses) + + +@pytest.mark.asyncio +async def test_list_server_tls_policies_async_pages(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials, + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_server_tls_policies), + "__call__", + new_callable=mock.AsyncMock, + ) as call: + # Set the response to a series of pages. + call.side_effect = ( + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[ + server_tls_policy.ServerTlsPolicy(), + server_tls_policy.ServerTlsPolicy(), + server_tls_policy.ServerTlsPolicy(), + ], + next_page_token="abc", + ), + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[], + next_page_token="def", + ), + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[ + server_tls_policy.ServerTlsPolicy(), + ], + next_page_token="ghi", + ), + server_tls_policy.ListServerTlsPoliciesResponse( + server_tls_policies=[ + server_tls_policy.ServerTlsPolicy(), + server_tls_policy.ServerTlsPolicy(), + ], + ), + RuntimeError, + ) + pages = [] + async for page_ in ( + await client.list_server_tls_policies(request={}) + ).pages: # pragma: no branch + pages.append(page_) + for page_, token in zip(pages, ["abc", "def", "ghi", ""]): + assert page_.raw_page.next_page_token == token + + +@pytest.mark.parametrize( + "request_type", + [ + server_tls_policy.GetServerTlsPolicyRequest, + dict, + ], +) +def test_get_server_tls_policy(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = server_tls_policy.ServerTlsPolicy( + name="name_value", + description="description_value", + allow_open=True, + ) + response = client.get_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == server_tls_policy.GetServerTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, server_tls_policy.ServerTlsPolicy) + assert response.name == "name_value" + assert response.description == "description_value" + assert response.allow_open is True + + +def test_get_server_tls_policy_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_server_tls_policy), "__call__" + ) as call: + client.get_server_tls_policy() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == server_tls_policy.GetServerTlsPolicyRequest() + + +@pytest.mark.asyncio +async def test_get_server_tls_policy_async( + transport: str = "grpc_asyncio", + request_type=server_tls_policy.GetServerTlsPolicyRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + server_tls_policy.ServerTlsPolicy( + name="name_value", + description="description_value", + allow_open=True, + ) + ) + response = await client.get_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == server_tls_policy.GetServerTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, server_tls_policy.ServerTlsPolicy) + assert response.name == "name_value" + assert response.description == "description_value" + assert response.allow_open is True + + +@pytest.mark.asyncio +async def test_get_server_tls_policy_async_from_dict(): + await test_get_server_tls_policy_async(request_type=dict) + + +def test_get_server_tls_policy_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = server_tls_policy.GetServerTlsPolicyRequest() + + request.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_server_tls_policy), "__call__" + ) as call: + call.return_value = server_tls_policy.ServerTlsPolicy() + client.get_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "name=name_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_get_server_tls_policy_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = server_tls_policy.GetServerTlsPolicyRequest() + + request.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_server_tls_policy), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + server_tls_policy.ServerTlsPolicy() + ) + await client.get_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "name=name_value", + ) in kw["metadata"] + + +def test_get_server_tls_policy_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = server_tls_policy.ServerTlsPolicy() + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.get_server_tls_policy( + name="name_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].name + mock_val = "name_value" + assert arg == mock_val + + +def test_get_server_tls_policy_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.get_server_tls_policy( + server_tls_policy.GetServerTlsPolicyRequest(), + name="name_value", + ) + + +@pytest.mark.asyncio +async def test_get_server_tls_policy_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = server_tls_policy.ServerTlsPolicy() + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + server_tls_policy.ServerTlsPolicy() + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.get_server_tls_policy( + name="name_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].name + mock_val = "name_value" + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_get_server_tls_policy_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.get_server_tls_policy( + server_tls_policy.GetServerTlsPolicyRequest(), + name="name_value", + ) + + +@pytest.mark.parametrize( + "request_type", + [ + gcn_server_tls_policy.CreateServerTlsPolicyRequest, + dict, + ], +) +def test_create_server_tls_policy(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/spam") + response = client.create_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_server_tls_policy.CreateServerTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +def test_create_server_tls_policy_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_server_tls_policy), "__call__" + ) as call: + client.create_server_tls_policy() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_server_tls_policy.CreateServerTlsPolicyRequest() + + +@pytest.mark.asyncio +async def test_create_server_tls_policy_async( + transport: str = "grpc_asyncio", + request_type=gcn_server_tls_policy.CreateServerTlsPolicyRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + response = await client.create_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_server_tls_policy.CreateServerTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +@pytest.mark.asyncio +async def test_create_server_tls_policy_async_from_dict(): + await test_create_server_tls_policy_async(request_type=dict) + + +def test_create_server_tls_policy_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = gcn_server_tls_policy.CreateServerTlsPolicyRequest() + + request.parent = "parent_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_server_tls_policy), "__call__" + ) as call: + call.return_value = operations_pb2.Operation(name="operations/op") + client.create_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "parent=parent_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_create_server_tls_policy_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = gcn_server_tls_policy.CreateServerTlsPolicyRequest() + + request.parent = "parent_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_server_tls_policy), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/op") + ) + await client.create_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "parent=parent_value", + ) in kw["metadata"] + + +def test_create_server_tls_policy_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.create_server_tls_policy( + parent="parent_value", + server_tls_policy=gcn_server_tls_policy.ServerTlsPolicy(name="name_value"), + server_tls_policy_id="server_tls_policy_id_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].parent + mock_val = "parent_value" + assert arg == mock_val + arg = args[0].server_tls_policy + mock_val = gcn_server_tls_policy.ServerTlsPolicy(name="name_value") + assert arg == mock_val + arg = args[0].server_tls_policy_id + mock_val = "server_tls_policy_id_value" + assert arg == mock_val + + +def test_create_server_tls_policy_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.create_server_tls_policy( + gcn_server_tls_policy.CreateServerTlsPolicyRequest(), + parent="parent_value", + server_tls_policy=gcn_server_tls_policy.ServerTlsPolicy(name="name_value"), + server_tls_policy_id="server_tls_policy_id_value", + ) + + +@pytest.mark.asyncio +async def test_create_server_tls_policy_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.create_server_tls_policy( + parent="parent_value", + server_tls_policy=gcn_server_tls_policy.ServerTlsPolicy(name="name_value"), + server_tls_policy_id="server_tls_policy_id_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].parent + mock_val = "parent_value" + assert arg == mock_val + arg = args[0].server_tls_policy + mock_val = gcn_server_tls_policy.ServerTlsPolicy(name="name_value") + assert arg == mock_val + arg = args[0].server_tls_policy_id + mock_val = "server_tls_policy_id_value" + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_create_server_tls_policy_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.create_server_tls_policy( + gcn_server_tls_policy.CreateServerTlsPolicyRequest(), + parent="parent_value", + server_tls_policy=gcn_server_tls_policy.ServerTlsPolicy(name="name_value"), + server_tls_policy_id="server_tls_policy_id_value", + ) + + +@pytest.mark.parametrize( + "request_type", + [ + gcn_server_tls_policy.UpdateServerTlsPolicyRequest, + dict, + ], +) +def test_update_server_tls_policy(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/spam") + response = client.update_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_server_tls_policy.UpdateServerTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +def test_update_server_tls_policy_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_server_tls_policy), "__call__" + ) as call: + client.update_server_tls_policy() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_server_tls_policy.UpdateServerTlsPolicyRequest() + + +@pytest.mark.asyncio +async def test_update_server_tls_policy_async( + transport: str = "grpc_asyncio", + request_type=gcn_server_tls_policy.UpdateServerTlsPolicyRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + response = await client.update_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_server_tls_policy.UpdateServerTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +@pytest.mark.asyncio +async def test_update_server_tls_policy_async_from_dict(): + await test_update_server_tls_policy_async(request_type=dict) + + +def test_update_server_tls_policy_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = gcn_server_tls_policy.UpdateServerTlsPolicyRequest() + + request.server_tls_policy.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_server_tls_policy), "__call__" + ) as call: + call.return_value = operations_pb2.Operation(name="operations/op") + client.update_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "server_tls_policy.name=name_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_update_server_tls_policy_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = gcn_server_tls_policy.UpdateServerTlsPolicyRequest() + + request.server_tls_policy.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_server_tls_policy), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/op") + ) + await client.update_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "server_tls_policy.name=name_value", + ) in kw["metadata"] + + +def test_update_server_tls_policy_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.update_server_tls_policy( + server_tls_policy=gcn_server_tls_policy.ServerTlsPolicy(name="name_value"), + update_mask=field_mask_pb2.FieldMask(paths=["paths_value"]), + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].server_tls_policy + mock_val = gcn_server_tls_policy.ServerTlsPolicy(name="name_value") + assert arg == mock_val + arg = args[0].update_mask + mock_val = field_mask_pb2.FieldMask(paths=["paths_value"]) + assert arg == mock_val + + +def test_update_server_tls_policy_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.update_server_tls_policy( + gcn_server_tls_policy.UpdateServerTlsPolicyRequest(), + server_tls_policy=gcn_server_tls_policy.ServerTlsPolicy(name="name_value"), + update_mask=field_mask_pb2.FieldMask(paths=["paths_value"]), + ) + + +@pytest.mark.asyncio +async def test_update_server_tls_policy_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.update_server_tls_policy( + server_tls_policy=gcn_server_tls_policy.ServerTlsPolicy(name="name_value"), + update_mask=field_mask_pb2.FieldMask(paths=["paths_value"]), + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].server_tls_policy + mock_val = gcn_server_tls_policy.ServerTlsPolicy(name="name_value") + assert arg == mock_val + arg = args[0].update_mask + mock_val = field_mask_pb2.FieldMask(paths=["paths_value"]) + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_update_server_tls_policy_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.update_server_tls_policy( + gcn_server_tls_policy.UpdateServerTlsPolicyRequest(), + server_tls_policy=gcn_server_tls_policy.ServerTlsPolicy(name="name_value"), + update_mask=field_mask_pb2.FieldMask(paths=["paths_value"]), + ) + + +@pytest.mark.parametrize( + "request_type", + [ + server_tls_policy.DeleteServerTlsPolicyRequest, + dict, + ], +) +def test_delete_server_tls_policy(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/spam") + response = client.delete_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == server_tls_policy.DeleteServerTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +def test_delete_server_tls_policy_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_server_tls_policy), "__call__" + ) as call: + client.delete_server_tls_policy() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == server_tls_policy.DeleteServerTlsPolicyRequest() + + +@pytest.mark.asyncio +async def test_delete_server_tls_policy_async( + transport: str = "grpc_asyncio", + request_type=server_tls_policy.DeleteServerTlsPolicyRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + response = await client.delete_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == server_tls_policy.DeleteServerTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +@pytest.mark.asyncio +async def test_delete_server_tls_policy_async_from_dict(): + await test_delete_server_tls_policy_async(request_type=dict) + + +def test_delete_server_tls_policy_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = server_tls_policy.DeleteServerTlsPolicyRequest() + + request.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_server_tls_policy), "__call__" + ) as call: + call.return_value = operations_pb2.Operation(name="operations/op") + client.delete_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "name=name_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_delete_server_tls_policy_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = server_tls_policy.DeleteServerTlsPolicyRequest() + + request.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_server_tls_policy), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/op") + ) + await client.delete_server_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "name=name_value", + ) in kw["metadata"] + + +def test_delete_server_tls_policy_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.delete_server_tls_policy( + name="name_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].name + mock_val = "name_value" + assert arg == mock_val + + +def test_delete_server_tls_policy_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.delete_server_tls_policy( + server_tls_policy.DeleteServerTlsPolicyRequest(), + name="name_value", + ) + + +@pytest.mark.asyncio +async def test_delete_server_tls_policy_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_server_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.delete_server_tls_policy( + name="name_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].name + mock_val = "name_value" + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_delete_server_tls_policy_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.delete_server_tls_policy( + server_tls_policy.DeleteServerTlsPolicyRequest(), + name="name_value", + ) + + +@pytest.mark.parametrize( + "request_type", + [ + client_tls_policy.ListClientTlsPoliciesRequest, + dict, + ], +) +def test_list_client_tls_policies(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_client_tls_policies), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = client_tls_policy.ListClientTlsPoliciesResponse( + next_page_token="next_page_token_value", + ) + response = client.list_client_tls_policies(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == client_tls_policy.ListClientTlsPoliciesRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, pagers.ListClientTlsPoliciesPager) + assert response.next_page_token == "next_page_token_value" + + +def test_list_client_tls_policies_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_client_tls_policies), "__call__" + ) as call: + client.list_client_tls_policies() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == client_tls_policy.ListClientTlsPoliciesRequest() + + +@pytest.mark.asyncio +async def test_list_client_tls_policies_async( + transport: str = "grpc_asyncio", + request_type=client_tls_policy.ListClientTlsPoliciesRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_client_tls_policies), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + client_tls_policy.ListClientTlsPoliciesResponse( + next_page_token="next_page_token_value", + ) + ) + response = await client.list_client_tls_policies(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == client_tls_policy.ListClientTlsPoliciesRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, pagers.ListClientTlsPoliciesAsyncPager) + assert response.next_page_token == "next_page_token_value" + + +@pytest.mark.asyncio +async def test_list_client_tls_policies_async_from_dict(): + await test_list_client_tls_policies_async(request_type=dict) + + +def test_list_client_tls_policies_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = client_tls_policy.ListClientTlsPoliciesRequest() + + request.parent = "parent_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_client_tls_policies), "__call__" + ) as call: + call.return_value = client_tls_policy.ListClientTlsPoliciesResponse() + client.list_client_tls_policies(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "parent=parent_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_list_client_tls_policies_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = client_tls_policy.ListClientTlsPoliciesRequest() + + request.parent = "parent_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_client_tls_policies), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + client_tls_policy.ListClientTlsPoliciesResponse() + ) + await client.list_client_tls_policies(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "parent=parent_value", + ) in kw["metadata"] + + +def test_list_client_tls_policies_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_client_tls_policies), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = client_tls_policy.ListClientTlsPoliciesResponse() + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.list_client_tls_policies( + parent="parent_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].parent + mock_val = "parent_value" + assert arg == mock_val + + +def test_list_client_tls_policies_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.list_client_tls_policies( + client_tls_policy.ListClientTlsPoliciesRequest(), + parent="parent_value", + ) + + +@pytest.mark.asyncio +async def test_list_client_tls_policies_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_client_tls_policies), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = client_tls_policy.ListClientTlsPoliciesResponse() + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + client_tls_policy.ListClientTlsPoliciesResponse() + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.list_client_tls_policies( + parent="parent_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].parent + mock_val = "parent_value" + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_list_client_tls_policies_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.list_client_tls_policies( + client_tls_policy.ListClientTlsPoliciesRequest(), + parent="parent_value", + ) + + +def test_list_client_tls_policies_pager(transport_name: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials, + transport=transport_name, + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_client_tls_policies), "__call__" + ) as call: + # Set the response to a series of pages. + call.side_effect = ( + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[ + client_tls_policy.ClientTlsPolicy(), + client_tls_policy.ClientTlsPolicy(), + client_tls_policy.ClientTlsPolicy(), + ], + next_page_token="abc", + ), + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[], + next_page_token="def", + ), + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[ + client_tls_policy.ClientTlsPolicy(), + ], + next_page_token="ghi", + ), + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[ + client_tls_policy.ClientTlsPolicy(), + client_tls_policy.ClientTlsPolicy(), + ], + ), + RuntimeError, + ) + + metadata = () + metadata = tuple(metadata) + ( + gapic_v1.routing_header.to_grpc_metadata((("parent", ""),)), + ) + pager = client.list_client_tls_policies(request={}) + + assert pager._metadata == metadata + + results = list(pager) + assert len(results) == 6 + assert all(isinstance(i, client_tls_policy.ClientTlsPolicy) for i in results) + + +def test_list_client_tls_policies_pages(transport_name: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials, + transport=transport_name, + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_client_tls_policies), "__call__" + ) as call: + # Set the response to a series of pages. + call.side_effect = ( + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[ + client_tls_policy.ClientTlsPolicy(), + client_tls_policy.ClientTlsPolicy(), + client_tls_policy.ClientTlsPolicy(), + ], + next_page_token="abc", + ), + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[], + next_page_token="def", + ), + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[ + client_tls_policy.ClientTlsPolicy(), + ], + next_page_token="ghi", + ), + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[ + client_tls_policy.ClientTlsPolicy(), + client_tls_policy.ClientTlsPolicy(), + ], + ), + RuntimeError, + ) + pages = list(client.list_client_tls_policies(request={}).pages) + for page_, token in zip(pages, ["abc", "def", "ghi", ""]): + assert page_.raw_page.next_page_token == token + + +@pytest.mark.asyncio +async def test_list_client_tls_policies_async_pager(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials, + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_client_tls_policies), + "__call__", + new_callable=mock.AsyncMock, + ) as call: + # Set the response to a series of pages. + call.side_effect = ( + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[ + client_tls_policy.ClientTlsPolicy(), + client_tls_policy.ClientTlsPolicy(), + client_tls_policy.ClientTlsPolicy(), + ], + next_page_token="abc", + ), + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[], + next_page_token="def", + ), + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[ + client_tls_policy.ClientTlsPolicy(), + ], + next_page_token="ghi", + ), + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[ + client_tls_policy.ClientTlsPolicy(), + client_tls_policy.ClientTlsPolicy(), + ], + ), + RuntimeError, + ) + async_pager = await client.list_client_tls_policies( + request={}, + ) + assert async_pager.next_page_token == "abc" + responses = [] + async for response in async_pager: # pragma: no branch + responses.append(response) + + assert len(responses) == 6 + assert all(isinstance(i, client_tls_policy.ClientTlsPolicy) for i in responses) + + +@pytest.mark.asyncio +async def test_list_client_tls_policies_async_pages(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials, + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.list_client_tls_policies), + "__call__", + new_callable=mock.AsyncMock, + ) as call: + # Set the response to a series of pages. + call.side_effect = ( + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[ + client_tls_policy.ClientTlsPolicy(), + client_tls_policy.ClientTlsPolicy(), + client_tls_policy.ClientTlsPolicy(), + ], + next_page_token="abc", + ), + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[], + next_page_token="def", + ), + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[ + client_tls_policy.ClientTlsPolicy(), + ], + next_page_token="ghi", + ), + client_tls_policy.ListClientTlsPoliciesResponse( + client_tls_policies=[ + client_tls_policy.ClientTlsPolicy(), + client_tls_policy.ClientTlsPolicy(), + ], + ), + RuntimeError, + ) + pages = [] + async for page_ in ( + await client.list_client_tls_policies(request={}) + ).pages: # pragma: no branch + pages.append(page_) + for page_, token in zip(pages, ["abc", "def", "ghi", ""]): + assert page_.raw_page.next_page_token == token + + +@pytest.mark.parametrize( + "request_type", + [ + client_tls_policy.GetClientTlsPolicyRequest, + dict, + ], +) +def test_get_client_tls_policy(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = client_tls_policy.ClientTlsPolicy( + name="name_value", + description="description_value", + sni="sni_value", + ) + response = client.get_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == client_tls_policy.GetClientTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, client_tls_policy.ClientTlsPolicy) + assert response.name == "name_value" + assert response.description == "description_value" + assert response.sni == "sni_value" + + +def test_get_client_tls_policy_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_client_tls_policy), "__call__" + ) as call: + client.get_client_tls_policy() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == client_tls_policy.GetClientTlsPolicyRequest() + + +@pytest.mark.asyncio +async def test_get_client_tls_policy_async( + transport: str = "grpc_asyncio", + request_type=client_tls_policy.GetClientTlsPolicyRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + client_tls_policy.ClientTlsPolicy( + name="name_value", + description="description_value", + sni="sni_value", + ) + ) + response = await client.get_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == client_tls_policy.GetClientTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, client_tls_policy.ClientTlsPolicy) + assert response.name == "name_value" + assert response.description == "description_value" + assert response.sni == "sni_value" + + +@pytest.mark.asyncio +async def test_get_client_tls_policy_async_from_dict(): + await test_get_client_tls_policy_async(request_type=dict) + + +def test_get_client_tls_policy_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = client_tls_policy.GetClientTlsPolicyRequest() + + request.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_client_tls_policy), "__call__" + ) as call: + call.return_value = client_tls_policy.ClientTlsPolicy() + client.get_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "name=name_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_get_client_tls_policy_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = client_tls_policy.GetClientTlsPolicyRequest() + + request.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_client_tls_policy), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + client_tls_policy.ClientTlsPolicy() + ) + await client.get_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "name=name_value", + ) in kw["metadata"] + + +def test_get_client_tls_policy_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = client_tls_policy.ClientTlsPolicy() + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.get_client_tls_policy( + name="name_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].name + mock_val = "name_value" + assert arg == mock_val + + +def test_get_client_tls_policy_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.get_client_tls_policy( + client_tls_policy.GetClientTlsPolicyRequest(), + name="name_value", + ) + + +@pytest.mark.asyncio +async def test_get_client_tls_policy_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.get_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = client_tls_policy.ClientTlsPolicy() + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + client_tls_policy.ClientTlsPolicy() + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.get_client_tls_policy( + name="name_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].name + mock_val = "name_value" + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_get_client_tls_policy_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.get_client_tls_policy( + client_tls_policy.GetClientTlsPolicyRequest(), + name="name_value", + ) + + +@pytest.mark.parametrize( + "request_type", + [ + gcn_client_tls_policy.CreateClientTlsPolicyRequest, + dict, + ], +) +def test_create_client_tls_policy(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/spam") + response = client.create_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_client_tls_policy.CreateClientTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +def test_create_client_tls_policy_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_client_tls_policy), "__call__" + ) as call: + client.create_client_tls_policy() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_client_tls_policy.CreateClientTlsPolicyRequest() + + +@pytest.mark.asyncio +async def test_create_client_tls_policy_async( + transport: str = "grpc_asyncio", + request_type=gcn_client_tls_policy.CreateClientTlsPolicyRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + response = await client.create_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_client_tls_policy.CreateClientTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +@pytest.mark.asyncio +async def test_create_client_tls_policy_async_from_dict(): + await test_create_client_tls_policy_async(request_type=dict) + + +def test_create_client_tls_policy_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = gcn_client_tls_policy.CreateClientTlsPolicyRequest() + + request.parent = "parent_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_client_tls_policy), "__call__" + ) as call: + call.return_value = operations_pb2.Operation(name="operations/op") + client.create_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "parent=parent_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_create_client_tls_policy_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = gcn_client_tls_policy.CreateClientTlsPolicyRequest() + + request.parent = "parent_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_client_tls_policy), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/op") + ) + await client.create_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "parent=parent_value", + ) in kw["metadata"] + + +def test_create_client_tls_policy_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.create_client_tls_policy( + parent="parent_value", + client_tls_policy=gcn_client_tls_policy.ClientTlsPolicy(name="name_value"), + client_tls_policy_id="client_tls_policy_id_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].parent + mock_val = "parent_value" + assert arg == mock_val + arg = args[0].client_tls_policy + mock_val = gcn_client_tls_policy.ClientTlsPolicy(name="name_value") + assert arg == mock_val + arg = args[0].client_tls_policy_id + mock_val = "client_tls_policy_id_value" + assert arg == mock_val + + +def test_create_client_tls_policy_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.create_client_tls_policy( + gcn_client_tls_policy.CreateClientTlsPolicyRequest(), + parent="parent_value", + client_tls_policy=gcn_client_tls_policy.ClientTlsPolicy(name="name_value"), + client_tls_policy_id="client_tls_policy_id_value", + ) + + +@pytest.mark.asyncio +async def test_create_client_tls_policy_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.create_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.create_client_tls_policy( + parent="parent_value", + client_tls_policy=gcn_client_tls_policy.ClientTlsPolicy(name="name_value"), + client_tls_policy_id="client_tls_policy_id_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].parent + mock_val = "parent_value" + assert arg == mock_val + arg = args[0].client_tls_policy + mock_val = gcn_client_tls_policy.ClientTlsPolicy(name="name_value") + assert arg == mock_val + arg = args[0].client_tls_policy_id + mock_val = "client_tls_policy_id_value" + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_create_client_tls_policy_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.create_client_tls_policy( + gcn_client_tls_policy.CreateClientTlsPolicyRequest(), + parent="parent_value", + client_tls_policy=gcn_client_tls_policy.ClientTlsPolicy(name="name_value"), + client_tls_policy_id="client_tls_policy_id_value", + ) + + +@pytest.mark.parametrize( + "request_type", + [ + gcn_client_tls_policy.UpdateClientTlsPolicyRequest, + dict, + ], +) +def test_update_client_tls_policy(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/spam") + response = client.update_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_client_tls_policy.UpdateClientTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +def test_update_client_tls_policy_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_client_tls_policy), "__call__" + ) as call: + client.update_client_tls_policy() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_client_tls_policy.UpdateClientTlsPolicyRequest() + + +@pytest.mark.asyncio +async def test_update_client_tls_policy_async( + transport: str = "grpc_asyncio", + request_type=gcn_client_tls_policy.UpdateClientTlsPolicyRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + response = await client.update_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == gcn_client_tls_policy.UpdateClientTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +@pytest.mark.asyncio +async def test_update_client_tls_policy_async_from_dict(): + await test_update_client_tls_policy_async(request_type=dict) + + +def test_update_client_tls_policy_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = gcn_client_tls_policy.UpdateClientTlsPolicyRequest() + + request.client_tls_policy.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_client_tls_policy), "__call__" + ) as call: + call.return_value = operations_pb2.Operation(name="operations/op") + client.update_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "client_tls_policy.name=name_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_update_client_tls_policy_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = gcn_client_tls_policy.UpdateClientTlsPolicyRequest() + + request.client_tls_policy.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_client_tls_policy), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/op") + ) + await client.update_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "client_tls_policy.name=name_value", + ) in kw["metadata"] + + +def test_update_client_tls_policy_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.update_client_tls_policy( + client_tls_policy=gcn_client_tls_policy.ClientTlsPolicy(name="name_value"), + update_mask=field_mask_pb2.FieldMask(paths=["paths_value"]), + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].client_tls_policy + mock_val = gcn_client_tls_policy.ClientTlsPolicy(name="name_value") + assert arg == mock_val + arg = args[0].update_mask + mock_val = field_mask_pb2.FieldMask(paths=["paths_value"]) + assert arg == mock_val + + +def test_update_client_tls_policy_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.update_client_tls_policy( + gcn_client_tls_policy.UpdateClientTlsPolicyRequest(), + client_tls_policy=gcn_client_tls_policy.ClientTlsPolicy(name="name_value"), + update_mask=field_mask_pb2.FieldMask(paths=["paths_value"]), + ) + + +@pytest.mark.asyncio +async def test_update_client_tls_policy_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.update_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.update_client_tls_policy( + client_tls_policy=gcn_client_tls_policy.ClientTlsPolicy(name="name_value"), + update_mask=field_mask_pb2.FieldMask(paths=["paths_value"]), + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].client_tls_policy + mock_val = gcn_client_tls_policy.ClientTlsPolicy(name="name_value") + assert arg == mock_val + arg = args[0].update_mask + mock_val = field_mask_pb2.FieldMask(paths=["paths_value"]) + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_update_client_tls_policy_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.update_client_tls_policy( + gcn_client_tls_policy.UpdateClientTlsPolicyRequest(), + client_tls_policy=gcn_client_tls_policy.ClientTlsPolicy(name="name_value"), + update_mask=field_mask_pb2.FieldMask(paths=["paths_value"]), + ) + + +@pytest.mark.parametrize( + "request_type", + [ + client_tls_policy.DeleteClientTlsPolicyRequest, + dict, + ], +) +def test_delete_client_tls_policy(request_type, transport: str = "grpc"): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/spam") + response = client.delete_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == client_tls_policy.DeleteClientTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +def test_delete_client_tls_policy_empty_call(): + # This test is a coverage failsafe to make sure that totally empty calls, + # i.e. request == None and no flattened fields passed, work. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_client_tls_policy), "__call__" + ) as call: + client.delete_client_tls_policy() + call.assert_called() + _, args, _ = call.mock_calls[0] + assert args[0] == client_tls_policy.DeleteClientTlsPolicyRequest() + + +@pytest.mark.asyncio +async def test_delete_client_tls_policy_async( + transport: str = "grpc_asyncio", + request_type=client_tls_policy.DeleteClientTlsPolicyRequest, +): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # Everything is optional in proto3 as far as the runtime is concerned, + # and we are mocking out the actual API, so just send an empty request. + request = request_type() + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + response = await client.delete_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == client_tls_policy.DeleteClientTlsPolicyRequest() + + # Establish that the response is the type that we expect. + assert isinstance(response, future.Future) + + +@pytest.mark.asyncio +async def test_delete_client_tls_policy_async_from_dict(): + await test_delete_client_tls_policy_async(request_type=dict) + + +def test_delete_client_tls_policy_field_headers(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = client_tls_policy.DeleteClientTlsPolicyRequest() + + request.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_client_tls_policy), "__call__" + ) as call: + call.return_value = operations_pb2.Operation(name="operations/op") + client.delete_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "name=name_value", + ) in kw["metadata"] + + +@pytest.mark.asyncio +async def test_delete_client_tls_policy_field_headers_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Any value that is part of the HTTP/1.1 URI should be sent as + # a field header. Set these to a non-empty value. + request = client_tls_policy.DeleteClientTlsPolicyRequest() + + request.name = "name_value" + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_client_tls_policy), "__call__" + ) as call: + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/op") + ) + await client.delete_client_tls_policy(request) + + # Establish that the underlying gRPC stub method was called. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + assert args[0] == request + + # Establish that the field header was sent. + _, _, kw = call.mock_calls[0] + assert ( + "x-goog-request-params", + "name=name_value", + ) in kw["metadata"] + + +def test_delete_client_tls_policy_flattened(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + client.delete_client_tls_policy( + name="name_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) == 1 + _, args, _ = call.mock_calls[0] + arg = args[0].name + mock_val = "name_value" + assert arg == mock_val + + +def test_delete_client_tls_policy_flattened_error(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + client.delete_client_tls_policy( + client_tls_policy.DeleteClientTlsPolicyRequest(), + name="name_value", + ) + + +@pytest.mark.asyncio +async def test_delete_client_tls_policy_flattened_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Mock the actual call within the gRPC stub, and fake the request. + with mock.patch.object( + type(client.transport.delete_client_tls_policy), "__call__" + ) as call: + # Designate an appropriate return value for the call. + call.return_value = operations_pb2.Operation(name="operations/op") + + call.return_value = grpc_helpers_async.FakeUnaryUnaryCall( + operations_pb2.Operation(name="operations/spam") + ) + # Call the method with a truthy value for each flattened field, + # using the keyword arguments to the method. + response = await client.delete_client_tls_policy( + name="name_value", + ) + + # Establish that the underlying call was made with the expected + # request object values. + assert len(call.mock_calls) + _, args, _ = call.mock_calls[0] + arg = args[0].name + mock_val = "name_value" + assert arg == mock_val + + +@pytest.mark.asyncio +async def test_delete_client_tls_policy_flattened_error_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Attempting to call a method with both a request object and flattened + # fields is an error. + with pytest.raises(ValueError): + await client.delete_client_tls_policy( + client_tls_policy.DeleteClientTlsPolicyRequest(), + name="name_value", + ) + + +def test_credentials_transport_error(): + # It is an error to provide credentials and a transport instance. + transport = transports.NetworkSecurityGrpcTransport( + credentials=ga_credentials.AnonymousCredentials(), + ) + with pytest.raises(ValueError): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport=transport, + ) + + # It is an error to provide a credentials file and a transport instance. + transport = transports.NetworkSecurityGrpcTransport( + credentials=ga_credentials.AnonymousCredentials(), + ) + with pytest.raises(ValueError): + client = NetworkSecurityClient( + client_options={"credentials_file": "credentials.json"}, + transport=transport, + ) + + # It is an error to provide an api_key and a transport instance. + transport = transports.NetworkSecurityGrpcTransport( + credentials=ga_credentials.AnonymousCredentials(), + ) + options = client_options.ClientOptions() + options.api_key = "api_key" + with pytest.raises(ValueError): + client = NetworkSecurityClient( + client_options=options, + transport=transport, + ) + + # It is an error to provide an api_key and a credential. + options = mock.Mock() + options.api_key = "api_key" + with pytest.raises(ValueError): + client = NetworkSecurityClient( + client_options=options, credentials=ga_credentials.AnonymousCredentials() + ) + + # It is an error to provide scopes and a transport instance. + transport = transports.NetworkSecurityGrpcTransport( + credentials=ga_credentials.AnonymousCredentials(), + ) + with pytest.raises(ValueError): + client = NetworkSecurityClient( + client_options={"scopes": ["1", "2"]}, + transport=transport, + ) + + +def test_transport_instance(): + # A client may be instantiated with a custom transport instance. + transport = transports.NetworkSecurityGrpcTransport( + credentials=ga_credentials.AnonymousCredentials(), + ) + client = NetworkSecurityClient(transport=transport) + assert client.transport is transport + + +def test_transport_get_channel(): + # A client may be instantiated with a custom transport instance. + transport = transports.NetworkSecurityGrpcTransport( + credentials=ga_credentials.AnonymousCredentials(), + ) + channel = transport.grpc_channel + assert channel + + transport = transports.NetworkSecurityGrpcAsyncIOTransport( + credentials=ga_credentials.AnonymousCredentials(), + ) + channel = transport.grpc_channel + assert channel + + +@pytest.mark.parametrize( + "transport_class", + [ + transports.NetworkSecurityGrpcTransport, + transports.NetworkSecurityGrpcAsyncIOTransport, + ], +) +def test_transport_adc(transport_class): + # Test default credentials are used if not provided. + with mock.patch.object(google.auth, "default") as adc: + adc.return_value = (ga_credentials.AnonymousCredentials(), None) + transport_class() + adc.assert_called_once() + + +@pytest.mark.parametrize( + "transport_name", + [ + "grpc", + ], +) +def test_transport_kind(transport_name): + transport = NetworkSecurityClient.get_transport_class(transport_name)( + credentials=ga_credentials.AnonymousCredentials(), + ) + assert transport.kind == transport_name + + +def test_transport_grpc_default(): + # A client should use the gRPC transport by default. + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + ) + assert isinstance( + client.transport, + transports.NetworkSecurityGrpcTransport, + ) + + +def test_network_security_base_transport_error(): + # Passing both a credentials object and credentials_file should raise an error + with pytest.raises(core_exceptions.DuplicateCredentialArgs): + transport = transports.NetworkSecurityTransport( + credentials=ga_credentials.AnonymousCredentials(), + credentials_file="credentials.json", + ) + + +def test_network_security_base_transport(): + # Instantiate the base transport. + with mock.patch( + "google.cloud.network_security_v1.services.network_security.transports.NetworkSecurityTransport.__init__" + ) as Transport: + Transport.return_value = None + transport = transports.NetworkSecurityTransport( + credentials=ga_credentials.AnonymousCredentials(), + ) + + # Every method on the transport should just blindly + # raise NotImplementedError. + methods = ( + "list_authorization_policies", + "get_authorization_policy", + "create_authorization_policy", + "update_authorization_policy", + "delete_authorization_policy", + "list_server_tls_policies", + "get_server_tls_policy", + "create_server_tls_policy", + "update_server_tls_policy", + "delete_server_tls_policy", + "list_client_tls_policies", + "get_client_tls_policy", + "create_client_tls_policy", + "update_client_tls_policy", + "delete_client_tls_policy", + ) + for method in methods: + with pytest.raises(NotImplementedError): + getattr(transport, method)(request=object()) + + with pytest.raises(NotImplementedError): + transport.close() + + # Additionally, the LRO client (a property) should + # also raise NotImplementedError + with pytest.raises(NotImplementedError): + transport.operations_client + + # Catch all for all remaining methods and properties + remainder = [ + "kind", + ] + for r in remainder: + with pytest.raises(NotImplementedError): + getattr(transport, r)() + + +def test_network_security_base_transport_with_credentials_file(): + # Instantiate the base transport with a credentials file + with mock.patch.object( + google.auth, "load_credentials_from_file", autospec=True + ) as load_creds, mock.patch( + "google.cloud.network_security_v1.services.network_security.transports.NetworkSecurityTransport._prep_wrapped_messages" + ) as Transport: + Transport.return_value = None + load_creds.return_value = (ga_credentials.AnonymousCredentials(), None) + transport = transports.NetworkSecurityTransport( + credentials_file="credentials.json", + quota_project_id="octopus", + ) + load_creds.assert_called_once_with( + "credentials.json", + scopes=None, + default_scopes=("https://www.googleapis.com/auth/cloud-platform",), + quota_project_id="octopus", + ) + + +def test_network_security_base_transport_with_adc(): + # Test the default credentials are used if credentials and credentials_file are None. + with mock.patch.object(google.auth, "default", autospec=True) as adc, mock.patch( + "google.cloud.network_security_v1.services.network_security.transports.NetworkSecurityTransport._prep_wrapped_messages" + ) as Transport: + Transport.return_value = None + adc.return_value = (ga_credentials.AnonymousCredentials(), None) + transport = transports.NetworkSecurityTransport() + adc.assert_called_once() + + +def test_network_security_auth_adc(): + # If no credentials are provided, we should use ADC credentials. + with mock.patch.object(google.auth, "default", autospec=True) as adc: + adc.return_value = (ga_credentials.AnonymousCredentials(), None) + NetworkSecurityClient() + adc.assert_called_once_with( + scopes=None, + default_scopes=("https://www.googleapis.com/auth/cloud-platform",), + quota_project_id=None, + ) + + +@pytest.mark.parametrize( + "transport_class", + [ + transports.NetworkSecurityGrpcTransport, + transports.NetworkSecurityGrpcAsyncIOTransport, + ], +) +def test_network_security_transport_auth_adc(transport_class): + # If credentials and host are not provided, the transport class should use + # ADC credentials. + with mock.patch.object(google.auth, "default", autospec=True) as adc: + adc.return_value = (ga_credentials.AnonymousCredentials(), None) + transport_class(quota_project_id="octopus", scopes=["1", "2"]) + adc.assert_called_once_with( + scopes=["1", "2"], + default_scopes=("https://www.googleapis.com/auth/cloud-platform",), + quota_project_id="octopus", + ) + + +@pytest.mark.parametrize( + "transport_class", + [ + transports.NetworkSecurityGrpcTransport, + transports.NetworkSecurityGrpcAsyncIOTransport, + ], +) +def test_network_security_transport_auth_gdch_credentials(transport_class): + host = "https://language.com" + api_audience_tests = [None, "https://language2.com"] + api_audience_expect = [host, "https://language2.com"] + for t, e in zip(api_audience_tests, api_audience_expect): + with mock.patch.object(google.auth, "default", autospec=True) as adc: + gdch_mock = mock.MagicMock() + type(gdch_mock).with_gdch_audience = mock.PropertyMock( + return_value=gdch_mock + ) + adc.return_value = (gdch_mock, None) + transport_class(host=host, api_audience=t) + gdch_mock.with_gdch_audience.assert_called_once_with(e) + + +@pytest.mark.parametrize( + "transport_class,grpc_helpers", + [ + (transports.NetworkSecurityGrpcTransport, grpc_helpers), + (transports.NetworkSecurityGrpcAsyncIOTransport, grpc_helpers_async), + ], +) +def test_network_security_transport_create_channel(transport_class, grpc_helpers): + # If credentials and host are not provided, the transport class should use + # ADC credentials. + with mock.patch.object( + google.auth, "default", autospec=True + ) as adc, mock.patch.object( + grpc_helpers, "create_channel", autospec=True + ) as create_channel: + creds = ga_credentials.AnonymousCredentials() + adc.return_value = (creds, None) + transport_class(quota_project_id="octopus", scopes=["1", "2"]) + + create_channel.assert_called_with( + "networksecurity.googleapis.com:443", + credentials=creds, + credentials_file=None, + quota_project_id="octopus", + default_scopes=("https://www.googleapis.com/auth/cloud-platform",), + scopes=["1", "2"], + default_host="networksecurity.googleapis.com", + ssl_credentials=None, + options=[ + ("grpc.max_send_message_length", -1), + ("grpc.max_receive_message_length", -1), + ], + ) + + +@pytest.mark.parametrize( + "transport_class", + [ + transports.NetworkSecurityGrpcTransport, + transports.NetworkSecurityGrpcAsyncIOTransport, + ], +) +def test_network_security_grpc_transport_client_cert_source_for_mtls(transport_class): + cred = ga_credentials.AnonymousCredentials() + + # Check ssl_channel_credentials is used if provided. + with mock.patch.object(transport_class, "create_channel") as mock_create_channel: + mock_ssl_channel_creds = mock.Mock() + transport_class( + host="squid.clam.whelk", + credentials=cred, + ssl_channel_credentials=mock_ssl_channel_creds, + ) + mock_create_channel.assert_called_once_with( + "squid.clam.whelk:443", + credentials=cred, + credentials_file=None, + scopes=None, + ssl_credentials=mock_ssl_channel_creds, + quota_project_id=None, + options=[ + ("grpc.max_send_message_length", -1), + ("grpc.max_receive_message_length", -1), + ], + ) + + # Check if ssl_channel_credentials is not provided, then client_cert_source_for_mtls + # is used. + with mock.patch.object(transport_class, "create_channel", return_value=mock.Mock()): + with mock.patch("grpc.ssl_channel_credentials") as mock_ssl_cred: + transport_class( + credentials=cred, + client_cert_source_for_mtls=client_cert_source_callback, + ) + expected_cert, expected_key = client_cert_source_callback() + mock_ssl_cred.assert_called_once_with( + certificate_chain=expected_cert, private_key=expected_key + ) + + +@pytest.mark.parametrize( + "transport_name", + [ + "grpc", + "grpc_asyncio", + ], +) +def test_network_security_host_no_port(transport_name): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + client_options=client_options.ClientOptions( + api_endpoint="networksecurity.googleapis.com" + ), + transport=transport_name, + ) + assert client.transport._host == ("networksecurity.googleapis.com:443") + + +@pytest.mark.parametrize( + "transport_name", + [ + "grpc", + "grpc_asyncio", + ], +) +def test_network_security_host_with_port(transport_name): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + client_options=client_options.ClientOptions( + api_endpoint="networksecurity.googleapis.com:8000" + ), + transport=transport_name, + ) + assert client.transport._host == ("networksecurity.googleapis.com:8000") + + +def test_network_security_grpc_transport_channel(): + channel = grpc.secure_channel("http://localhost/", grpc.local_channel_credentials()) + + # Check that channel is used if provided. + transport = transports.NetworkSecurityGrpcTransport( + host="squid.clam.whelk", + channel=channel, + ) + assert transport.grpc_channel == channel + assert transport._host == "squid.clam.whelk:443" + assert transport._ssl_channel_credentials == None + + +def test_network_security_grpc_asyncio_transport_channel(): + channel = aio.secure_channel("http://localhost/", grpc.local_channel_credentials()) + + # Check that channel is used if provided. + transport = transports.NetworkSecurityGrpcAsyncIOTransport( + host="squid.clam.whelk", + channel=channel, + ) + assert transport.grpc_channel == channel + assert transport._host == "squid.clam.whelk:443" + assert transport._ssl_channel_credentials == None + + +# Remove this test when deprecated arguments (api_mtls_endpoint, client_cert_source) are +# removed from grpc/grpc_asyncio transport constructor. +@pytest.mark.parametrize( + "transport_class", + [ + transports.NetworkSecurityGrpcTransport, + transports.NetworkSecurityGrpcAsyncIOTransport, + ], +) +def test_network_security_transport_channel_mtls_with_client_cert_source( + transport_class, +): + with mock.patch( + "grpc.ssl_channel_credentials", autospec=True + ) as grpc_ssl_channel_cred: + with mock.patch.object( + transport_class, "create_channel" + ) as grpc_create_channel: + mock_ssl_cred = mock.Mock() + grpc_ssl_channel_cred.return_value = mock_ssl_cred + + mock_grpc_channel = mock.Mock() + grpc_create_channel.return_value = mock_grpc_channel + + cred = ga_credentials.AnonymousCredentials() + with pytest.warns(DeprecationWarning): + with mock.patch.object(google.auth, "default") as adc: + adc.return_value = (cred, None) + transport = transport_class( + host="squid.clam.whelk", + api_mtls_endpoint="mtls.squid.clam.whelk", + client_cert_source=client_cert_source_callback, + ) + adc.assert_called_once() + + grpc_ssl_channel_cred.assert_called_once_with( + certificate_chain=b"cert bytes", private_key=b"key bytes" + ) + grpc_create_channel.assert_called_once_with( + "mtls.squid.clam.whelk:443", + credentials=cred, + credentials_file=None, + scopes=None, + ssl_credentials=mock_ssl_cred, + quota_project_id=None, + options=[ + ("grpc.max_send_message_length", -1), + ("grpc.max_receive_message_length", -1), + ], + ) + assert transport.grpc_channel == mock_grpc_channel + assert transport._ssl_channel_credentials == mock_ssl_cred + + +# Remove this test when deprecated arguments (api_mtls_endpoint, client_cert_source) are +# removed from grpc/grpc_asyncio transport constructor. +@pytest.mark.parametrize( + "transport_class", + [ + transports.NetworkSecurityGrpcTransport, + transports.NetworkSecurityGrpcAsyncIOTransport, + ], +) +def test_network_security_transport_channel_mtls_with_adc(transport_class): + mock_ssl_cred = mock.Mock() + with mock.patch.multiple( + "google.auth.transport.grpc.SslCredentials", + __init__=mock.Mock(return_value=None), + ssl_credentials=mock.PropertyMock(return_value=mock_ssl_cred), + ): + with mock.patch.object( + transport_class, "create_channel" + ) as grpc_create_channel: + mock_grpc_channel = mock.Mock() + grpc_create_channel.return_value = mock_grpc_channel + mock_cred = mock.Mock() + + with pytest.warns(DeprecationWarning): + transport = transport_class( + host="squid.clam.whelk", + credentials=mock_cred, + api_mtls_endpoint="mtls.squid.clam.whelk", + client_cert_source=None, + ) + + grpc_create_channel.assert_called_once_with( + "mtls.squid.clam.whelk:443", + credentials=mock_cred, + credentials_file=None, + scopes=None, + ssl_credentials=mock_ssl_cred, + quota_project_id=None, + options=[ + ("grpc.max_send_message_length", -1), + ("grpc.max_receive_message_length", -1), + ], + ) + assert transport.grpc_channel == mock_grpc_channel + + +def test_network_security_grpc_lro_client(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc", + ) + transport = client.transport + + # Ensure that we have a api-core operations client. + assert isinstance( + transport.operations_client, + operations_v1.OperationsClient, + ) + + # Ensure that subsequent calls to the property send the exact same object. + assert transport.operations_client is transport.operations_client + + +def test_network_security_grpc_lro_async_client(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc_asyncio", + ) + transport = client.transport + + # Ensure that we have a api-core operations client. + assert isinstance( + transport.operations_client, + operations_v1.OperationsAsyncClient, + ) + + # Ensure that subsequent calls to the property send the exact same object. + assert transport.operations_client is transport.operations_client + + +def test_authorization_policy_path(): + project = "squid" + location = "clam" + authorization_policy = "whelk" + expected = "projects/{project}/locations/{location}/authorizationPolicies/{authorization_policy}".format( + project=project, + location=location, + authorization_policy=authorization_policy, + ) + actual = NetworkSecurityClient.authorization_policy_path( + project, location, authorization_policy + ) + assert expected == actual + + +def test_parse_authorization_policy_path(): + expected = { + "project": "octopus", + "location": "oyster", + "authorization_policy": "nudibranch", + } + path = NetworkSecurityClient.authorization_policy_path(**expected) + + # Check that the path construction is reversible. + actual = NetworkSecurityClient.parse_authorization_policy_path(path) + assert expected == actual + + +def test_client_tls_policy_path(): + project = "cuttlefish" + location = "mussel" + client_tls_policy = "winkle" + expected = "projects/{project}/locations/{location}/clientTlsPolicies/{client_tls_policy}".format( + project=project, + location=location, + client_tls_policy=client_tls_policy, + ) + actual = NetworkSecurityClient.client_tls_policy_path( + project, location, client_tls_policy + ) + assert expected == actual + + +def test_parse_client_tls_policy_path(): + expected = { + "project": "nautilus", + "location": "scallop", + "client_tls_policy": "abalone", + } + path = NetworkSecurityClient.client_tls_policy_path(**expected) + + # Check that the path construction is reversible. + actual = NetworkSecurityClient.parse_client_tls_policy_path(path) + assert expected == actual + + +def test_server_tls_policy_path(): + project = "squid" + location = "clam" + server_tls_policy = "whelk" + expected = "projects/{project}/locations/{location}/serverTlsPolicies/{server_tls_policy}".format( + project=project, + location=location, + server_tls_policy=server_tls_policy, + ) + actual = NetworkSecurityClient.server_tls_policy_path( + project, location, server_tls_policy + ) + assert expected == actual + + +def test_parse_server_tls_policy_path(): + expected = { + "project": "octopus", + "location": "oyster", + "server_tls_policy": "nudibranch", + } + path = NetworkSecurityClient.server_tls_policy_path(**expected) + + # Check that the path construction is reversible. + actual = NetworkSecurityClient.parse_server_tls_policy_path(path) + assert expected == actual + + +def test_common_billing_account_path(): + billing_account = "cuttlefish" + expected = "billingAccounts/{billing_account}".format( + billing_account=billing_account, + ) + actual = NetworkSecurityClient.common_billing_account_path(billing_account) + assert expected == actual + + +def test_parse_common_billing_account_path(): + expected = { + "billing_account": "mussel", + } + path = NetworkSecurityClient.common_billing_account_path(**expected) + + # Check that the path construction is reversible. + actual = NetworkSecurityClient.parse_common_billing_account_path(path) + assert expected == actual + + +def test_common_folder_path(): + folder = "winkle" + expected = "folders/{folder}".format( + folder=folder, + ) + actual = NetworkSecurityClient.common_folder_path(folder) + assert expected == actual + + +def test_parse_common_folder_path(): + expected = { + "folder": "nautilus", + } + path = NetworkSecurityClient.common_folder_path(**expected) + + # Check that the path construction is reversible. + actual = NetworkSecurityClient.parse_common_folder_path(path) + assert expected == actual + + +def test_common_organization_path(): + organization = "scallop" + expected = "organizations/{organization}".format( + organization=organization, + ) + actual = NetworkSecurityClient.common_organization_path(organization) + assert expected == actual + + +def test_parse_common_organization_path(): + expected = { + "organization": "abalone", + } + path = NetworkSecurityClient.common_organization_path(**expected) + + # Check that the path construction is reversible. + actual = NetworkSecurityClient.parse_common_organization_path(path) + assert expected == actual + + +def test_common_project_path(): + project = "squid" + expected = "projects/{project}".format( + project=project, + ) + actual = NetworkSecurityClient.common_project_path(project) + assert expected == actual + + +def test_parse_common_project_path(): + expected = { + "project": "clam", + } + path = NetworkSecurityClient.common_project_path(**expected) + + # Check that the path construction is reversible. + actual = NetworkSecurityClient.parse_common_project_path(path) + assert expected == actual + + +def test_common_location_path(): + project = "whelk" + location = "octopus" + expected = "projects/{project}/locations/{location}".format( + project=project, + location=location, + ) + actual = NetworkSecurityClient.common_location_path(project, location) + assert expected == actual + + +def test_parse_common_location_path(): + expected = { + "project": "oyster", + "location": "nudibranch", + } + path = NetworkSecurityClient.common_location_path(**expected) + + # Check that the path construction is reversible. + actual = NetworkSecurityClient.parse_common_location_path(path) + assert expected == actual + + +def test_client_with_default_client_info(): + client_info = gapic_v1.client_info.ClientInfo() + + with mock.patch.object( + transports.NetworkSecurityTransport, "_prep_wrapped_messages" + ) as prep: + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), + client_info=client_info, + ) + prep.assert_called_once_with(client_info) + + with mock.patch.object( + transports.NetworkSecurityTransport, "_prep_wrapped_messages" + ) as prep: + transport_class = NetworkSecurityClient.get_transport_class() + transport = transport_class( + credentials=ga_credentials.AnonymousCredentials(), + client_info=client_info, + ) + prep.assert_called_once_with(client_info) + + +@pytest.mark.asyncio +async def test_transport_close_async(): + client = NetworkSecurityAsyncClient( + credentials=ga_credentials.AnonymousCredentials(), + transport="grpc_asyncio", + ) + with mock.patch.object( + type(getattr(client.transport, "grpc_channel")), "close" + ) as close: + async with client: + close.assert_not_called() + close.assert_called_once() + + +def test_transport_close(): + transports = { + "grpc": "_grpc_channel", + } + + for transport, close_name in transports.items(): + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), transport=transport + ) + with mock.patch.object( + type(getattr(client.transport, close_name)), "close" + ) as close: + with client: + close.assert_not_called() + close.assert_called_once() + + +def test_client_ctx(): + transports = [ + "grpc", + ] + for transport in transports: + client = NetworkSecurityClient( + credentials=ga_credentials.AnonymousCredentials(), transport=transport + ) + # Test client calls underlying transport. + with mock.patch.object(type(client.transport), "close") as close: + close.assert_not_called() + with client: + pass + close.assert_called() + + +@pytest.mark.parametrize( + "client_class,transport_class", + [ + (NetworkSecurityClient, transports.NetworkSecurityGrpcTransport), + (NetworkSecurityAsyncClient, transports.NetworkSecurityGrpcAsyncIOTransport), + ], +) +def test_api_key_credentials(client_class, transport_class): + with mock.patch.object( + google.auth._default, "get_api_key_credentials", create=True + ) as get_api_key_credentials: + mock_cred = mock.Mock() + get_api_key_credentials.return_value = mock_cred + options = client_options.ClientOptions() + options.api_key = "api_key" + with mock.patch.object(transport_class, "__init__") as patched: + patched.return_value = None + client = client_class(client_options=options) + patched.assert_called_once_with( + credentials=mock_cred, + credentials_file=None, + host=client.DEFAULT_ENDPOINT, + scopes=None, + client_cert_source_for_mtls=None, + quota_project_id=None, + client_info=transports.base.DEFAULT_CLIENT_INFO, + always_use_jwt_access=True, + api_audience=None, + )