gws-cloudidentity
Compare original and translation side by side
🇺🇸
Original
English🇨🇳
Translation
Chinesecloudidentity (v1)
cloudidentity (v1)
PREREQUISITE: Readfor auth, global flags, and security rules. If missing, run../gws-shared/SKILL.mdto create it.gws generate-skills
bash
gws cloudidentity <resource> <method> [flags]前提条件: 请阅读了解认证、全局标志和安全规则。如果该文件缺失,请运行../gws-shared/SKILL.md命令生成。gws generate-skills
bash
gws cloudidentity <resource> <method> [flags]API Resources
API 资源
customers
customers
- — Operations on the 'userinvitations' resource
userinvitations
- — 对'userinvitations'资源执行的操作
userinvitations
devices
devices
- — Cancels an unfinished device wipe. This operation can be used to cancel device wipe in the gap between the wipe operation returning success and the device being wiped. This operation is possible when the device is in a "pending wipe" state. The device enters the "pending wipe" state when a wipe device command is issued, but has not yet been sent to the device. The cancel wipe will fail if the wipe command has already been issued to the device.
cancelWipe- — Creates a device. Only company-owned device may be created. Note: This method is available only to customers who have one of the following SKUs: Enterprise Standard, Enterprise Plus, Enterprise for Education, and Cloud Identity Premium
create - — Deletes the specified device.
delete - — Retrieves the specified device.
get - — Lists/Searches devices.
list - — Wipes all data on the specified device.
wipe - — Operations on the 'deviceUsers' resource
deviceUsers
- — 取消未完成的设备擦除操作。该操作可用于在擦除操作返回成功但设备尚未开始擦除的间隙中取消擦除。仅当设备处于“待擦除(pending wipe)”状态时,此操作才有效。当发出设备擦除命令但尚未发送到设备时,设备会进入“待擦除”状态。如果擦除命令已发送至设备,取消擦除操作将失败。
cancelWipe- — 创建设备。仅允许创建公司所有的设备。注意:此方法仅对拥有以下SKU的客户开放:Enterprise Standard、Enterprise Plus、Enterprise for Education和Cloud Identity Premium
create - — 删除指定设备。
delete - — 获取指定设备的信息。
get - — 列出/搜索设备。
list - — 擦除指定设备上的所有数据。
wipe - — 对'deviceUsers'资源执行的操作
deviceUsers
groups
groups
- — Creates a Group.
create- — Deletes a
delete.Group - — Retrieves a
get.Group - — Get Security Settings
getSecuritySettings - — Lists the
listresources under a customer or namespace.Group - — Looks up the resource name of a
lookupby itsGroup.EntityKey - — Updates a
patch.Group - — Searches for
searchresources matching a specified query.Group - — Update Security Settings
updateSecuritySettings - — Operations on the 'memberships' resource
memberships
- — 创建身份组(Group)。
create- — 删除身份组(Group)。
delete - — 获取身份组(Group)的信息。
get - — 获取安全设置
getSecuritySettings - — 列出客户或命名空间下的身份组(Group)资源。
list - — 通过
lookup查找身份组(Group)的资源名称。EntityKey - — 更新身份组(Group)。
patch - — 搜索符合指定查询条件的身份组(Group)资源。
search - — 更新安全设置
updateSecuritySettings - — 对'memberships'资源执行的操作
memberships
inboundOidcSsoProfiles
inboundOidcSsoProfiles
- — Creates an InboundOidcSsoProfile for a customer. When the target customer has enabled Multi-party approval for sensitive actions, the
createin the response will haveOperation, it will not have a response, and the metadata will have"done": false."state": "awaiting-multi-party-approval"- — Deletes an InboundOidcSsoProfile.
delete - — Gets an InboundOidcSsoProfile.
get - — Lists InboundOidcSsoProfile objects for a Google enterprise customer.
list - — Updates an InboundOidcSsoProfile. When the target customer has enabled Multi-party approval for sensitive actions, the
patchin the response will haveOperation, it will not have a response, and the metadata will have"done": false."state": "awaiting-multi-party-approval"
- — 为客户创建入站OIDC SSO配置文件(InboundOidcSsoProfile)。当目标客户启用了敏感操作多方审批时,响应中的
create会包含Operation,不会返回响应内容,且元数据中会包含"done": false。"state": "awaiting-multi-party-approval"- — 删除入站OIDC SSO配置文件(InboundOidcSsoProfile)。
delete - — 获取入站OIDC SSO配置文件(InboundOidcSsoProfile)的信息。
get - — 列出Google企业客户的入站OIDC SSO配置文件(InboundOidcSsoProfile)。
list - — 更新入站OIDC SSO配置文件(InboundOidcSsoProfile)。当目标客户启用了敏感操作多方审批时,响应中的
patch会包含Operation,不会返回响应内容,且元数据中会包含"done": false。"state": "awaiting-multi-party-approval"
inboundSamlSsoProfiles
inboundSamlSsoProfiles
- — Creates an InboundSamlSsoProfile for a customer. When the target customer has enabled Multi-party approval for sensitive actions, the
createin the response will haveOperation, it will not have a response, and the metadata will have"done": false."state": "awaiting-multi-party-approval"- — Deletes an InboundSamlSsoProfile.
delete - — Gets an InboundSamlSsoProfile.
get - — Lists InboundSamlSsoProfiles for a customer.
list - — Updates an InboundSamlSsoProfile. When the target customer has enabled Multi-party approval for sensitive actions, the
patchin the response will haveOperation, it will not have a response, and the metadata will have"done": false."state": "awaiting-multi-party-approval" - — Operations on the 'idpCredentials' resource
idpCredentials
- — 为客户创建入站SAML SSO配置文件(InboundSamlSsoProfile)。当目标客户启用了敏感操作多方审批时,响应中的
create会包含Operation,不会返回响应内容,且元数据中会包含"done": false。"state": "awaiting-multi-party-approval"- — 删除入站SAML SSO配置文件(InboundSamlSsoProfile)。
delete - — 获取入站SAML SSO配置文件(InboundSamlSsoProfile)的信息。
get - — 列出客户的入站SAML SSO配置文件(InboundSamlSsoProfile)。
list - — 更新入站SAML SSO配置文件(InboundSamlSsoProfile)。当目标客户启用了敏感操作多方审批时,响应中的
patch会包含Operation,不会返回响应内容,且元数据中会包含"done": false。"state": "awaiting-multi-party-approval" - — 对'idpCredentials'资源执行的操作
idpCredentials
inboundSsoAssignments
inboundSsoAssignments
- — Creates an InboundSsoAssignment for users and devices in a
createunder a givenCustomerorGroup.OrgUnit- — Deletes an InboundSsoAssignment. To disable SSO, Create (or Update) an assignment that has
delete==sso_mode.SSO_OFF - — Gets an InboundSsoAssignment.
get - — Lists the InboundSsoAssignments for a
list.Customer - — Updates an InboundSsoAssignment. The body of this request is the
patchfield and theinbound_sso_assignmentis relative to that. For example: a PATCH toupdate_maskwith a body of/v1/inboundSsoAssignments/0abcdefg1234567&update_mask=rankmoves that (presumably group-targeted) SSO assignment to the highest priority and shifts any other group-targeted assignments down in priority.{ "rank": 1 }
- — 为客户中指定身份组(Group)或组织单元(OrgUnit)下的用户和设备创建入站SSO分配(InboundSsoAssignment)。
create- — 删除入站SSO分配(InboundSsoAssignment)。如需禁用SSO,请创建(或更新)一个
delete==sso_mode的分配。SSO_OFF - — 获取入站SSO分配(InboundSsoAssignment)的信息。
get - — 列出客户的入站SSO分配(InboundSsoAssignment)。
list - — 更新入站SSO分配(InboundSsoAssignment)。此请求的主体为
patch字段,inbound_sso_assignment是相对于该字段的。例如:向update_mask发送PATCH请求,主体为/v1/inboundSsoAssignments/0abcdefg1234567&update_mask=rank,会将该(以身份组为目标的)SSO分配设置为最高优先级,并将其他以身份组为目标的分配优先级依次下调。{ "rank": 1 }
policies
policies
- — Get a policy.
get- — List policies.
list
- — 获取策略。
get- — 列出策略。
list
Discovering Commands
命令查询
Before calling any API method, inspect it:
bash
undefined调用任何API方法前,请先查看其详情:
bash
undefinedBrowse resources and methods
浏览资源与方法
gws cloudidentity --help
gws cloudidentity --help
Inspect a method's required params, types, and defaults
查看方法的必填参数、类型和默认值
gws schema cloudidentity.<resource>.<method>
Use `gws schema` output to build your `--params` and `--json` flags.gws schema cloudidentity.<resource>.<method>
可借助`gws schema`的输出来构建`--params`和`--json`标志。