HEX
Server: Apache/2.4.65 (Ubuntu)
System: Linux ielts-store-v2 6.8.0-1036-gcp #38~22.04.1-Ubuntu SMP Thu Aug 14 01:19:18 UTC 2025 x86_64
User: root (0)
PHP: 7.2.34-54+ubuntu20.04.1+deb.sury.org+1
Disabled: pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,
$ pwd: /snap/google-cloud-cli/396/lib/googlecloudsdk/command_lib/storage/tasks/
Upload Files
File: //snap/google-cloud-cli/396/lib/googlecloudsdk/command_lib/storage/tasks/set_iam_policy_task.py
# -*- coding: utf-8 -*- #
# Copyright 2022 Google LLC. All Rights Reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#    http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
"""Task for IAM policies on storage resources."""

from __future__ import absolute_import
from __future__ import division
from __future__ import unicode_literals

import abc

from googlecloudsdk.api_lib.storage import api_factory
from googlecloudsdk.command_lib.storage import progress_callbacks
from googlecloudsdk.command_lib.storage.tasks import task


class _SetIamPolicyTask(task.Task):
  """Base class for tasks that set IAM policies."""

  def __init__(self, url, policy):
    """Initializes task.

    Args:
      url (StorageUrl): Used to identify cloud resource to set policy on.
      policy (object): Provider-specific data type. Currently, only available
        for GCS so Apitools messages.Policy object. If supported for more
        providers in the future, use a generic container.
    """
    super(_SetIamPolicyTask, self).__init__()
    self._url = url
    self._policy = policy

  @abc.abstractmethod
  def _make_set_api_call(self, client):
    """Makes an API call to set the IAM policy. Overridden by children."""
    pass

  def execute(self, task_status_queue=None):
    """Executes task."""
    client = api_factory.get_api(self._url.scheme)
    new_policy = self._make_set_api_call(client)

    if task_status_queue:
      progress_callbacks.increment_count_callback(task_status_queue)

    return task.Output(
        additional_task_iterators=None,
        messages=[task.Message(task.Topic.SET_IAM_POLICY, payload=new_policy)])

  def __eq__(self, other):
    if not isinstance(other, _SetIamPolicyTask):
      return NotImplemented
    return self._url == other._url and self._policy == other._policy


class SetBucketIamPolicyTask(_SetIamPolicyTask):

  def _make_set_api_call(self, client):
    return client.set_bucket_iam_policy(self._url.bucket_name, self._policy)


class SetManagedFolderIamPolicyTask(_SetIamPolicyTask):

  def _make_set_api_call(self, client):
    return client.set_managed_folder_iam_policy(
        self._url.bucket_name, self._url.resource_name, self._policy
    )


class SetObjectIamPolicyTask(_SetIamPolicyTask):

  def _make_set_api_call(self, client):
    return client.set_object_iam_policy(
        self._url.bucket_name,
        self._url.resource_name,
        self._policy,
        generation=self._url.generation,
    )
@ Telegram