G dZddlmZddlmZddlmZddlmZddlmZddl m Z ddl m Z dd l mZdd l mZdd l mZdd l mZdd l mZddlmZdZe j,Gdde j.Zy)z1Implementation of buckets set-iam-policy command.)absolute_import)division)unicode_literals) cloud_api)metadata_field_converters)base)iam_util) errors_util)flags)iam_command_util) storage_url)wildcard_iterator)set_iam_policy_taskc#K|D]X}tj|tjjD]$}t j |j|&Zyw)z+Generates SetIamPolicyTask's for execution.) fields_scopeN)rget_wildcard_iteratorr FieldsScopeSHORTrSetBucketIamPolicyTaskr ) url_stringspolicy url_stringresources -lib/surface/storage/buckets/set_iam_policy.py_set_iam_policy_task_iteratorr!sTj%;;!6!6!  6 6    > sAA!c0eZdZdZdddZedZdZy) SetIamPolicyz Set the IAM policy for a bucket.z Set the IAM policy for a bucket. For more information, see [Cloud Identity and Access Management](https://cloud.google.com/storage/docs/access-control/iam). z To set the IAM policy in POLICY-FILE on BUCKET: $ {command} gs://BUCKET POLICY-FILE To set the IAM policy in POLICY-FILE on all buckets beginning with "b": $ {command} gs://b* POLICY-FILE ) DESCRIPTIONEXAMPLESc|jddd|jdddtj|tj|y) Nurls+zCURLs for buckets to apply the IAM policy to. Can include wildcards.)nargshelpz-ez--etagzCustom etag to set on IAM policy. API will reject etags that do not match this value, making it useful as a precondition during concurrent operations.)r$) add_argumentr AddArgForPolicyFiler add_continue_on_error_flag)parsers rArgszSetIamPolicy.ArgsBs^ "#   "#    ( $$V,cd|jD]7}tj|}tj|j |9t j|j|j}tjt|j||j\}}||_|S)N) custom_etag)r!r storage_url_from_stringr raise_error_if_not_gcs_bucket command_pathrprocess_iam_file policy_fileetagr execute_set_iam_task_iteratorrcontinue_on_error exit_code)selfargsrurlrr5outputs rRunzSetIamPolicy.RunRsii  / / ;c//0A0A3G ' 7 7 dii1F(FF%dii8  IvDN Mr*N)__name__ __module__ __qualname____doc__ detailed_help staticmethodr)r:r*rrr+s/(  -& - - r*rN)r> __future__rrrgooglecloudsdk.api_lib.storager'googlecloudsdk.api_lib.storage.gcs_jsonrgooglecloudsdk.calliopergooglecloudsdk.command_lib.iamr "googlecloudsdk.command_lib.storager r r r r(googlecloudsdk.command_lib.storage.tasksrrUniverseCompatibleCommandrrAr*rrKs[8&'4M(3:4?:@H24<<22r*