OMGeeky/google-apis-rs
1
0
Fork 0
mirror of https://github.com/OMGeeky/google-apis-rs.git synced 2026-02-23 15:49:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

update all code after version update

Browse Source
This commit is contained in:
Sebastian Thiel
2020-07-10 09:41:44 +08:00
parent c949124df5
commit d1ffa68287
1798 changed files with 692798 additions and 59942 deletions
Download Patch File Download Diff File Expand all files Collapse all files

335
gen/iam1-cli/src/main.rs
View File

@@ -3077,19 +3077,12 @@ fn main() {
let arg_data = [
("iam-policies", "methods: 'lint-policy' and 'query-auditable-services'", vec![
("lint-policy",
Some(r##"Lints a Cloud IAM policy object or its sub fields. Currently supports
google.iam.v1.Binding.condition.
Some(r##"Lints, or validates, an IAM policy. Currently checks the
google.iam.v1.Binding.condition field, which contains a condition
expression for a role binding.
Each lint operation consists of multiple lint validation units.
Each unit inspects the input object in regard to a particular linting
aspect and issues a google.iam.admin.v1.LintResult disclosing the
result.
The set of applicable validation units is determined by the Cloud IAM
server and is not configurable.
Regardless of any lint issues or their severities, successful calls to
`lintPolicy` return an HTTP 200 OK status code."##),
Successful calls to this method always return an HTTP `200 OK` status code,
even if the linter detects an issue in the IAM policy."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/iam-policies_lint-policy",
vec![
(Some(r##"kv"##),
@@ -3111,8 +3104,11 @@ fn main() {
Some(false)),
]),
("query-auditable-services",
Some(r##"Returns a list of services that support service level audit logging
configuration for the given resource."##),
Some(r##"Returns a list of services that allow you to opt into audit logs that are
not generated by default.
To learn more about audit logs, see the [Logging
documentation](https://cloud.google.com/logging/docs/audit)."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/iam-policies_query-auditable-services",
vec![
(Some(r##"kv"##),
@@ -3137,7 +3133,7 @@ fn main() {
("organizations", "methods: 'roles-create', 'roles-delete', 'roles-get', 'roles-list', 'roles-patch' and 'roles-undelete'", vec![
("roles-create",
Some(r##"Creates a new Role."##),
Some(r##"Creates a new custom Role."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/organizations_roles-create",
vec![
(Some(r##"parent"##),
@@ -3184,13 +3180,23 @@ fn main() {
Some(false)),
]),
("roles-delete",
Some(r##"Soft deletes a role. The role is suspended and cannot be used to create new
IAM Policy Bindings.
The Role will not be included in `ListRoles()` unless `show_deleted` is set
in the `ListRolesRequest`. The Role contains the deleted boolean set.
Existing Bindings remains, but are inactive. The Role can be undeleted
within 7 days. After 7 days the Role is deleted and all Bindings associated
with the role are removed."##),
Some(r##"Deletes a custom Role.
When you delete a custom role, the following changes occur immediately:
* You cannot bind a member to the custom role in an IAM
Policy.
* Existing bindings to the custom role are not changed, but they have no
effect.
* By default, the response from ListRoles does not include the custom
role.
You have 7 days to undelete the custom role. After 7 days, the following
changes occur:
* The custom role is permanently deleted and cannot be recovered.
* If an IAM policy contains a binding to the custom role, the binding is
permanently removed."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/organizations_roles-delete",
vec![
(Some(r##"name"##),
@@ -3231,7 +3237,7 @@ fn main() {
Some(false)),
]),
("roles-get",
Some(r##"Gets a Role definition."##),
Some(r##"Gets the definition of a Role."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/organizations_roles-get",
vec![
(Some(r##"name"##),
@@ -3279,7 +3285,8 @@ fn main() {
Some(false)),
]),
("roles-list",
Some(r##"Lists the Roles defined on a resource."##),
Some(r##"Lists every predefined Role that IAM supports, or every custom role
that is defined for an organization or project."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/organizations_roles-list",
vec![
(Some(r##"parent"##),
@@ -3327,7 +3334,7 @@ fn main() {
Some(false)),
]),
("roles-patch",
Some(r##"Updates a Role definition."##),
Some(r##"Updates the definition of a custom Role."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/organizations_roles-patch",
vec![
(Some(r##"name"##),
@@ -3374,7 +3381,7 @@ fn main() {
Some(false)),
]),
("roles-undelete",
Some(r##"Undelete a Role, bringing it back in its previous state."##),
Some(r##"Undeletes a custom Role."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/organizations_roles-undelete",
vec![
(Some(r##"name"##),
@@ -3424,8 +3431,9 @@ fn main() {
("permissions", "methods: 'query-testable-permissions'", vec![
("query-testable-permissions",
Some(r##"Lists the permissions testable on a resource.
A permission is testable if it can be tested for an identity on a resource."##),
Some(r##"Lists every permission that you can test on a resource. A permission is
testable if you can check whether a member has that permission on the
resource."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/permissions_query-testable-permissions",
vec![
(Some(r##"kv"##),
@@ -3450,7 +3458,7 @@ fn main() {
("projects", "methods: 'roles-create', 'roles-delete', 'roles-get', 'roles-list', 'roles-patch', 'roles-undelete', 'service-accounts-create', 'service-accounts-delete', 'service-accounts-disable', 'service-accounts-enable', 'service-accounts-get', 'service-accounts-get-iam-policy', 'service-accounts-keys-create', 'service-accounts-keys-delete', 'service-accounts-keys-get', 'service-accounts-keys-list', 'service-accounts-keys-upload', 'service-accounts-list', 'service-accounts-patch', 'service-accounts-set-iam-policy', 'service-accounts-sign-blob', 'service-accounts-sign-jwt', 'service-accounts-test-iam-permissions', 'service-accounts-undelete' and 'service-accounts-update'", vec![
("roles-create",
Some(r##"Creates a new Role."##),
Some(r##"Creates a new custom Role."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_roles-create",
vec![
(Some(r##"parent"##),
@@ -3497,13 +3505,23 @@ fn main() {
Some(false)),
]),
("roles-delete",
Some(r##"Soft deletes a role. The role is suspended and cannot be used to create new
IAM Policy Bindings.
The Role will not be included in `ListRoles()` unless `show_deleted` is set
in the `ListRolesRequest`. The Role contains the deleted boolean set.
Existing Bindings remains, but are inactive. The Role can be undeleted
within 7 days. After 7 days the Role is deleted and all Bindings associated
with the role are removed."##),
Some(r##"Deletes a custom Role.
When you delete a custom role, the following changes occur immediately:
* You cannot bind a member to the custom role in an IAM
Policy.
* Existing bindings to the custom role are not changed, but they have no
effect.
* By default, the response from ListRoles does not include the custom
role.
You have 7 days to undelete the custom role. After 7 days, the following
changes occur:
* The custom role is permanently deleted and cannot be recovered.
* If an IAM policy contains a binding to the custom role, the binding is
permanently removed."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_roles-delete",
vec![
(Some(r##"name"##),
@@ -3544,7 +3562,7 @@ fn main() {
Some(false)),
]),
("roles-get",
Some(r##"Gets a Role definition."##),
Some(r##"Gets the definition of a Role."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_roles-get",
vec![
(Some(r##"name"##),
@@ -3592,7 +3610,8 @@ fn main() {
Some(false)),
]),
("roles-list",
Some(r##"Lists the Roles defined on a resource."##),
Some(r##"Lists every predefined Role that IAM supports, or every custom role
that is defined for an organization or project."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_roles-list",
vec![
(Some(r##"parent"##),
@@ -3640,7 +3659,7 @@ fn main() {
Some(false)),
]),
("roles-patch",
Some(r##"Updates a Role definition."##),
Some(r##"Updates the definition of a custom Role."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_roles-patch",
vec![
(Some(r##"name"##),
@@ -3687,7 +3706,7 @@ fn main() {
Some(false)),
]),
("roles-undelete",
Some(r##"Undelete a Role, bringing it back in its previous state."##),
Some(r##"Undeletes a custom Role."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_roles-undelete",
vec![
(Some(r##"name"##),
@@ -3734,8 +3753,7 @@ fn main() {
Some(false)),
]),
("service-accounts-create",
Some(r##"Creates a ServiceAccount
and returns it."##),
Some(r##"Creates a ServiceAccount."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-create",
vec![
(Some(r##"name"##),
@@ -3764,7 +3782,21 @@ fn main() {
Some(false)),
]),
("service-accounts-delete",
Some(r##"Deletes a ServiceAccount."##),
Some(r##"Deletes a ServiceAccount.
**Warning:** After you delete a service account, you might not be able to
undelete it. If you know that you need to re-enable the service account in
the future, use DisableServiceAccount instead.
If you delete a service account, IAM permanently removes the service
account 30 days later. Google Cloud cannot recover the service account
after it is permanently removed, even if you file a support request.
To help avoid unplanned outages, we recommend that you disable the service
account before you delete it. Use DisableServiceAccount to disable the
service account, then wait at least 24 hours and watch for unintended
consequences. If there are no unintended consequences, you can delete the
service account."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-delete",
vec![
(Some(r##"name"##),
@@ -3790,24 +3822,22 @@ fn main() {
Some(false)),
]),
("service-accounts-disable",
Some(r##"DisableServiceAccount is currently in the alpha launch stage.
Some(r##"Disables a ServiceAccount immediately.
Disables a ServiceAccount,
which immediately prevents the service account from authenticating and
gaining access to APIs.
If an application uses the service account to authenticate, that
application can no longer call Google APIs or access Google Cloud
resources. Existing access tokens for the service account are rejected, and
requests for new access tokens will fail.
Disabled service accounts can be safely restored by using
EnableServiceAccount at any point. Deleted service accounts cannot be
restored using this method.
To re-enable the service account, use EnableServiceAccount. After you
re-enable the service account, its existing access tokens will be accepted,
and you can request new access tokens.
Disabling a service account that is bound to VMs, Apps, Functions, or
other jobs will cause those jobs to lose access to resources if they are
using the disabled service account.
To improve reliability of your services and avoid unexpected outages, it
is recommended to first disable a service account rather than delete it.
After disabling the service account, wait at least 24 hours to verify there
are no unintended consequences, and then delete the service account."##),
To help avoid unplanned outages, we recommend that you disable the service
account before you delete it. Use this method to disable the service
account, then wait at least 24 hours and watch for unintended consequences.
If there are no unintended consequences, you can delete the service account
with DeleteServiceAccount."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-disable",
vec![
(Some(r##"name"##),
@@ -3839,16 +3869,14 @@ fn main() {
Some(false)),
]),
("service-accounts-enable",
Some(r##"EnableServiceAccount is currently in the alpha launch stage.
Some(r##"Enables a ServiceAccount that was disabled by
DisableServiceAccount.
Restores a disabled ServiceAccount
that has been manually disabled by using DisableServiceAccount. Service
accounts that have been disabled by other means or for other reasons,
such as abuse, cannot be restored using this method.
If the service account is already enabled, then this method has no effect.
EnableServiceAccount will have no effect on a service account that is
not disabled. Enabling an already enabled service account will have no
effect."##),
If the service account was disabled by other means—for example, if Google
disabled the service account because it was compromised—you cannot use this
method to enable the service account."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-enable",
vec![
(Some(r##"name"##),
@@ -3906,20 +3934,15 @@ fn main() {
Some(false)),
]),
("service-accounts-get-iam-policy",
Some(r##"Returns the Cloud IAM access control policy for a
ServiceAccount.
Some(r##"Gets the IAM policy that is attached to a ServiceAccount. This IAM
policy specifies which members have access to the service account.
Note: Service accounts are both
[resources and
identities](/iam/docs/service-accounts#service_account_permissions). This
method treats the service account as a resource. It returns the Cloud IAM
policy that reflects what members have access to the service account.
This method does not return what resources the service account has access
to. To see if a service account has access to a resource, call the
`getIamPolicy` method on the target resource. For example, to view grants
for a project, call the
[projects.getIamPolicy](/resource-manager/reference/rest/v1/projects/getIamPolicy)
This method does not tell you whether the service account has been granted
any roles on other resources. To check whether a service account has role
grants on a resource, use the `getIamPolicy` method for that resource. For
example, to view the role grants for a project, call the Resource Manager
API's
[`projects.getIamPolicy`](https://cloud.google.com/resource-manager/reference/rest/v1/projects/getIamPolicy)
method."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-get-iam-policy",
vec![
@@ -3943,8 +3966,7 @@ fn main() {
Some(false)),
]),
("service-accounts-keys-create",
Some(r##"Creates a ServiceAccountKey
and returns it."##),
Some(r##"Creates a ServiceAccountKey."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-keys-create",
vec![
(Some(r##"name"##),
@@ -4002,8 +4024,7 @@ fn main() {
Some(false)),
]),
("service-accounts-keys-get",
Some(r##"Gets the ServiceAccountKey
by key id."##),
Some(r##"Gets a ServiceAccountKey."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-keys-get",
vec![
(Some(r##"name"##),
@@ -4030,7 +4051,7 @@ fn main() {
Some(false)),
]),
("service-accounts-keys-list",
Some(r##"Lists ServiceAccountKeys."##),
Some(r##"Lists every ServiceAccountKey for a service account."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-keys-list",
vec![
(Some(r##"name"##),
@@ -4057,10 +4078,7 @@ fn main() {
Some(false)),
]),
("service-accounts-keys-upload",
Some(r##"Upload public key for a given service account.
This rpc will create a
ServiceAccountKey that has the
provided public key and returns it."##),
Some(r##"Creates a ServiceAccountKey, using a public key that you provide."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-keys-upload",
vec![
(Some(r##"name"##),
@@ -4092,7 +4110,7 @@ fn main() {
Some(false)),
]),
("service-accounts-list",
Some(r##"Lists ServiceAccounts for a project."##),
Some(r##"Lists every ServiceAccount that belongs to a specific project."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-list",
vec![
(Some(r##"name"##),
@@ -4115,28 +4133,30 @@ fn main() {
Some(false)),
]),
("service-accounts-patch",
Some(r##"Patches a ServiceAccount.
Currently, only the following fields are updatable:
`display_name` and `description`.
Only fields specified in the request are guaranteed to be returned in
the response. Other fields in the response may be empty.
Note: The field mask is required."##),
Some(r##"Patches a ServiceAccount."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-patch",
vec![
(Some(r##"name"##),
None,
Some(r##"The resource name of the service account in the following format:
`projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`.
Some(r##"The resource name of the service account.
Requests using `-` as a wildcard for the `PROJECT_ID` will infer the
project from the `account` and the `ACCOUNT` value can be the `email`
address or the `unique_id` of the service account.
Use one of the following formats:
In responses the resource name will always be in the format
`projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`."##),
* `projects/{PROJECT_ID}/serviceAccounts/{EMAIL_ADDRESS}`
* `projects/{PROJECT_ID}/serviceAccounts/{UNIQUE_ID}`
As an alternative, you can use the `-` wildcard character instead of the
project ID:
* `projects/-/serviceAccounts/{EMAIL_ADDRESS}`
* `projects/-/serviceAccounts/{UNIQUE_ID}`
When possible, avoid using the `-` wildcard character, because it can cause
response messages to contain misleading error codes. For example, if you
try to get the service account
`projects/-/serviceAccounts/fake@example.com`, which does not exist, the
response contains an HTTP `403 Forbidden` error instead of a `404 Not
Found` error."##),
Some(true),
Some(false)),
@@ -4159,22 +4179,23 @@ fn main() {
Some(false)),
]),
("service-accounts-set-iam-policy",
Some(r##"Sets the Cloud IAM access control policy for a
ServiceAccount.
Some(r##"Sets the IAM policy that is attached to a ServiceAccount.
Note: Service accounts are both
[resources and
identities](/iam/docs/service-accounts#service_account_permissions). This
method treats the service account as a resource. Use it to grant members
access to the service account, such as when they need to impersonate it.
Use this method to grant or revoke access to the service account. For
example, you could grant a member the ability to impersonate the service
account.
This method does not grant the service account access to other resources,
such as projects. To grant a service account access to resources, include
the service account in the Cloud IAM policy for the desired resource, then
call the appropriate `setIamPolicy` method on the target resource. For
example, to grant a service account access to a project, call the
[projects.setIamPolicy](/resource-manager/reference/rest/v1/projects/setIamPolicy)
method."##),
This method does not enable the service account to access other resources.
To grant roles to a service account on a resource, follow these steps:
1. Call the resource's `getIamPolicy` method to get its current IAM policy.
2. Edit the policy so that it binds the service account to an IAM role for
the resource.
3. Call the resource's `setIamPolicy` method to update its IAM policy.
For detailed instructions, see
[Granting roles to a service account for specific
resources](https://cloud.google.com/iam/help/service-accounts/granting-access-to-service-accounts)."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-set-iam-policy",
vec![
(Some(r##"resource"##),
@@ -4203,11 +4224,11 @@ fn main() {
Some(false)),
]),
("service-accounts-sign-blob",
Some(r##"**Note**: This method is in the process of being deprecated. Call the
[`signBlob()`](/iam/credentials/reference/rest/v1/projects.serviceAccounts/signBlob)
method of the Cloud IAM Service Account Credentials API instead.
Some(r##"**Note:** We are in the process of deprecating this method. Use the
[`signBlob`](https://cloud.google.com/iam/help/rest-credentials/v1/projects.serviceAccounts/signBlob)
method in the IAM Service Account Credentials API instead.
Signs a blob using a service account's system-managed private key."##),
Signs a blob using the system-managed private key for a ServiceAccount."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-sign-blob",
vec![
(Some(r##"name"##),
@@ -4239,15 +4260,12 @@ fn main() {
Some(false)),
]),
("service-accounts-sign-jwt",
Some(r##"**Note**: This method is in the process of being deprecated. Call the
[`signJwt()`](/iam/credentials/reference/rest/v1/projects.serviceAccounts/signJwt)
method of the Cloud IAM Service Account Credentials API instead.
Some(r##"**Note:** We are in the process of deprecating this method. Use the
[`signJwt`](https://cloud.google.com/iam/help/rest-credentials/v1/projects.serviceAccounts/signJwt)
method in the IAM Service Account Credentials API instead.
Signs a JWT using a service account's system-managed private key.
If no expiry time (`exp`) is provided in the `SignJwtRequest`, IAM sets an
an expiry time of one hour by default. If you request an expiry time of
more than one hour, the request will fail."##),
Signs a JSON Web Token (JWT) using the system-managed private key for a
ServiceAccount."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-sign-jwt",
vec![
(Some(r##"name"##),
@@ -4279,8 +4297,8 @@ fn main() {
Some(false)),
]),
("service-accounts-test-iam-permissions",
Some(r##"Tests the specified permissions against the IAM access control policy
for a ServiceAccount."##),
Some(r##"Tests whether the caller has the specified permissions on a
ServiceAccount."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-test-iam-permissions",
vec![
(Some(r##"resource"##),
@@ -4310,8 +4328,13 @@ fn main() {
]),
("service-accounts-undelete",
Some(r##"Restores a deleted ServiceAccount.
This is to be used as an action of last resort. A service account may
not always be restorable."##),
**Important:** It is not always possible to restore a deleted service
account. Use this method only as a last resort.
After you delete a service account, IAM permanently removes the service
account 30 days later. There is no way to restore a deleted service account
that has been permanently removed."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-undelete",
vec![
(Some(r##"name"##),
@@ -4342,26 +4365,35 @@ fn main() {
Some(false)),
]),
("service-accounts-update",
Some(r##"Note: This method is in the process of being deprecated. Use
Some(r##"**Note:** We are in the process of deprecating this method. Use
PatchServiceAccount instead.
Updates a ServiceAccount.
Currently, only the following fields are updatable:
`display_name` and `description`."##),
You can update only the `display_name` and `description` fields."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/projects_service-accounts-update",
vec![
(Some(r##"name"##),
None,
Some(r##"The resource name of the service account in the following format:
`projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`.
Some(r##"The resource name of the service account.
Requests using `-` as a wildcard for the `PROJECT_ID` will infer the
project from the `account` and the `ACCOUNT` value can be the `email`
address or the `unique_id` of the service account.
Use one of the following formats:
In responses the resource name will always be in the format
`projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`."##),
* `projects/{PROJECT_ID}/serviceAccounts/{EMAIL_ADDRESS}`
* `projects/{PROJECT_ID}/serviceAccounts/{UNIQUE_ID}`
As an alternative, you can use the `-` wildcard character instead of the
project ID:
* `projects/-/serviceAccounts/{EMAIL_ADDRESS}`
* `projects/-/serviceAccounts/{UNIQUE_ID}`
When possible, avoid using the `-` wildcard character, because it can cause
response messages to contain misleading error codes. For example, if you
try to get the service account
`projects/-/serviceAccounts/fake@example.com`, which does not exist, the
response contains an HTTP `403 Forbidden` error instead of a `404 Not
Found` error."##),
Some(true),
Some(false)),
@@ -4387,7 +4419,7 @@ fn main() {
("roles", "methods: 'get', 'list' and 'query-grantable-roles'", vec![
("get",
Some(r##"Gets a Role definition."##),
Some(r##"Gets the definition of a Role."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/roles_get",
vec![
(Some(r##"name"##),
@@ -4435,7 +4467,8 @@ fn main() {
Some(false)),
]),
("list",
Some(r##"Lists the Roles defined on a resource."##),
Some(r##"Lists every predefined Role that IAM supports, or every custom role
that is defined for an organization or project."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/roles_list",
vec![
(Some(r##"v"##),
@@ -4451,9 +4484,9 @@ fn main() {
Some(false)),
]),
("query-grantable-roles",
Some(r##"Queries roles that can be granted on a particular resource.
A role is grantable if it can be used as the role in a binding for a policy
for that resource."##),
Some(r##"Lists roles that can be granted on a Google Cloud resource. A role is
grantable if the IAM policy for the resource can contain bindings to the
role."##),
"Details at http://byron.github.io/google-apis-rs/google_iam1_cli/roles_query-grantable-roles",
vec![
(Some(r##"kv"##),
@@ -4480,7 +4513,7 @@ fn main() {
let mut app = App::new("iam1")
.author("Sebastian Thiel <byronimo@gmail.com>")
.version("1.0.13+20200319")
.version("1.0.14+20200617")
.about("Manages identity and access control for Google Cloud Platform resources, including the creation of service accounts, which you can use to authenticate to Google and make API calls.")
.after_help("All documentation details can be found at http://byron.github.io/google-apis-rs/google_iam1_cli")
.arg(Arg::with_name("url")