Reference documentation and code samples for the Cloud Key Management Service (KMS) V1 API class Google::Cloud::Kms::V1::KeyAccessJustificationsPolicy.
A KeyAccessJustificationsPolicy specifies zero or more allowed AccessReason values for encrypt, decrypt, and sign operations on a CryptoKey or [KeyAccessJustificationsPolicyConfig]google.cloud.kms.v1.KeyAccessJustificationsPolicyConfig.
Inherits
- Object
Extended By
- Google::Protobuf::MessageExts::ClassMethods
Includes
- Google::Protobuf::MessageExts
Methods
#allowed_access_reasons
def allowed_access_reasons() -> ::Array<::Google::Cloud::Kms::V1::AccessReason>
Returns
- (::Array<::Google::Cloud::Kms::V1::AccessReason>) — The list of allowed reasons for access to a CryptoKey. Note that empty allowed_access_reasons has a different meaning depending on where this message appears. If this is under [KeyAccessJustificationsPolicyConfig][google.cloud.kms.v1.KeyAccessJustificationsPolicyConfig], it means allow-all. If this is under CryptoKey, it means deny-all.
#allowed_access_reasons=
def allowed_access_reasons=(value) -> ::Array<::Google::Cloud::Kms::V1::AccessReason>
Parameter
- value (::Array<::Google::Cloud::Kms::V1::AccessReason>) — The list of allowed reasons for access to a CryptoKey. Note that empty allowed_access_reasons has a different meaning depending on where this message appears. If this is under [KeyAccessJustificationsPolicyConfig][google.cloud.kms.v1.KeyAccessJustificationsPolicyConfig], it means allow-all. If this is under CryptoKey, it means deny-all.
Returns
- (::Array<::Google::Cloud::Kms::V1::AccessReason>) — The list of allowed reasons for access to a CryptoKey. Note that empty allowed_access_reasons has a different meaning depending on where this message appears. If this is under [KeyAccessJustificationsPolicyConfig][google.cloud.kms.v1.KeyAccessJustificationsPolicyConfig], it means allow-all. If this is under CryptoKey, it means deny-all.