N |dZddlmZddlmZddlmZddlmZddlm Z ddl m Z ddl m Ze je j e j"j$Gd d e j&Ze je j e j"j*Gd d eZy )z Set the IAM policy for a secret.)absolute_import)division)unicode_literals)api)base)iam_util)argsc.eZdZdZddiZedZdZy) SetIamPolicyzSet the IAM policy binding for a secret. Sets the IAM policy for the given secret as defined in a JSON or YAML file. See https://cloud.google.com/iam/docs/managing-policies for details of the policy file format and contents. EXAMPLESz The following command will read an IAM policy defined in a JSON file 'policy.json' and set it for the secret 'my-secret': $ {command} my-secret policy.json ctj|ddddtj|ddtj|t j j|t jj|t jj|t jj|t jj|y)NTz3Name of the secret for which to set the IAM policy.)purpose positionalrequired help_textzto set iam policyF)rhidden) secrets_args AddSecret AddLocationrAddArgForPolicyFilerURI_FLAGRemoveFromParser FILTER_FLAG LIMIT_FLAGPAGE_SIZE_FLAG SORT_BY_FLAG)parsers %lib/surface/secrets/set_iam_policy.pyArgszSetIamPolicy.Args/sG V-@O   (MM""6*%%f-OO$$V,((0&&v.ctj|j}|jjj }tj |}tj|j|j\}}tj|j||||j}tj|jd|S)N)version) api_version)secret_locationsecret) secrets_apiGetApiFromTrack ReleaseTrackCONCEPTSr&Parse GetMessagesrParseYamlOrJsonPolicyFile policy_filePolicySecretsr locationLogSetIamPolicyName)selfr r$ secret_refmessagespolicy update_maskresults rRunzSetIamPolicy.Run@s--d.?.?.ABK%%++-J&&{;H"<< (//FK [ 9 F FFKGF Z__.9 Mr!N)__name__ __module__ __qualname____doc__ detailed_help staticmethodr r:r!rr r s1-// r!r ceZdZdZddiZy)SetIamPolicyBetazSet the IAM policy for a secret. Sets the IAM policy for the given secret. Returns an empty policy if the resource does not have a policy set. r z| To print the IAM policy for secret named 'my-secret', run: $ {command} my-secret [--location=] N)r;r<r=r>r?rAr!rrCrCNs-r!rCN)r> __future__rrrgooglecloudsdk.api_lib.secretsrr'googlecloudsdk.calliopergooglecloudsdk.command_lib.iamr"googlecloudsdk.command_lib.secretsr rDefaultUniverseOnly ReleaseTracksr)GA ListCommandr BETArCrAr!rrNs'&'=(3CD%%(().4##.*.bD%%**+|,r!