ndZddlmZddlmZddlmZddlmZddlmZdZ dZ d Z d Z e Z Gd d eZy )z7Helper functions for interacting with the binauthz API.)absolute_import)division)unicode_literals) list_pager)apiscontaineranalysisv1alpha1v1beta1v1c4eZdZdZddZ ddZ ddZy)Clientz;A client to access containeranalysis for binauthz purposes.Nc|xst|_tjt|j|_tj t|j|_y)zoCreates a ContainerAnalysisClient. Args: api_version: The containeranalysis API version to use. N)DEFAULT_VERSION api_versionrGetClientInstanceAPI_NAMEclientGetMessagesModulemessages)selfrs Blib/googlecloudsdk/api_lib/container/binauthz/containeranalysis.py__init__zClient.__init__#sE #5oD((43C3CDDK**8T5E5EFDMc#K|dj|nd}|Bjj}jj |j |}nAjj }jj|j |}tj||d|xsdd| } fd } | D]} | | s | yw) a`Yields occurrences associated with a given attestor Note or Project. Args: note_ref: The Note reference that will be queried for attached occurrences. If None, then all occurrences from the given project will be listed. (containeranalysis.projects.notes Resource) project_ref: The Project referenece that will be queried for occurrences if note_ref is None. artifact_digest: Digest of the artifact for which to fetch occurrences. If None, then all occurrences attached to the AA Note are returned. page_size: The number of attestations to retrieve per request. (If None, use the default page size.) limit: The maxium number of attestations to retrieve. (If None, unlimited.) Yields: Occurrences bound to `note_ref` with matching `artifact_digest` (if passed). Nzhas_suffix(resourceUrl, "{}"))parentfilter)namer occurrencesdpageSize)servicerequestfield batch_sizebatch_size_attributelimitcv|jjjjjk7ryy)NFT)kindr OccurrenceKindValueValuesEnum ATTESTATION) occurrencers r MatchesFilterz/Client.YieldAttestations..MatchesFiltergs1 // ]] % % 9 9 E E F r) formatrprojects_occurrencesr/ContaineranalysisProjectsOccurrencesListRequest RelativeNameprojects_notes_occurrences4ContaineranalysisProjectsNotesOccurrencesListRequestr YieldFromList) rnote_ref project_refartifact_digest page_sizer'artifact_filterr"r#occurrence_iterr.r-s ` rYieldAttestationszClient.YieldAttestations.s:  & (..?   00g MM))+ONg 66g -- L L((*? M  !..#' O& z "&s C CCc|jtk(sJ|jj||jj ||g}|jj |jj j j||j|} |jj|j| } ||| |jjj| S)aCreates an Occurrence referencing given URL and Note. This only supports the AttestationOccurrence-type Occurrence, currently only present in the v1 version of the API. Args: note_ref: The Note reference that the created Occurrence will be bound to. (containeranalysis.projects.notes Resource) project_ref: The project ref where the Occurrence will be created. (cloudresourcemanager.projects Resource) artifact_url: URL of artifact to which the signature is associated. (string) public_key_id: The URI of the public key that will be used to verify the signature. (string) signature: The content artifact's signature as generated by the specified key's signing operation. (string) plaintext: The content that was signed. (string) validation_callback: If provided, a function to validate the Occurrence prior to creation. (Callable[[Occurrence], None]) Returns: Created Occurrence. ) publicKeyId signature)serializedPayload signatures)r) resourceUrinoteName attestation)rr-) rV1rAttestationOccurrence Signaturer*r+r,r21ContaineranalysisProjectsOccurrencesCreateRequestrr0Create) rr6r7 artifact_url public_key_idr? plaintextvalidation_callbackrDr-r#s rCreateAttestationOccurrencez"Client.CreateAttestationOccurrencessB   r !! !--55# MM # #)Y $  6K)) ]] % % 9 9 E E &&( *J mmMM'')NG &*% ;; + + 2 27 ;;r)N)NNNNN)__name__ __module__ __qualname____doc__rr<rNrrr r s-C G  CZ8rZs@>&'',    K