$schema: "http://json-schema.org/draft-06/schema#" title: networksecurity v1beta1 AuthzPolicyAuthzRuleFromRequestSource export schema description: A gcloud export/import command YAML validation schema. type: object additionalProperties: false properties: COMMENT: type: object description: User specified info ignored by gcloud import. additionalProperties: false properties: template-id: type: string region: type: string description: type: string date: type: string version: type: string UNKNOWN: type: array description: Unknown API fields that cannot be imported. items: type: string ipBlocks: description: |- A list of IP addresses or IP address ranges to match against the source IP address of the request. Limited to 10 ip_blocks per Authorization Policy type: array items: $ref: AuthzPolicyAuthzRuleIpBlock.yaml principals: description: |- A list of identities derived from the client's certificate. This field will not match on a request unless frontend mutual TLS is enabled for the forwarding rule or Gateway and the client certificate has been successfully validated by mTLS. Each identity is a string whose value is matched against a list of URI SANs, DNS Name SANs, or the common name in the client's certificate. A match happens when any principal matches with the rule. Limited to 50 principals per Authorization Policy for Regional Internal Application Load Balancer, Regional External Application Load Balancer, Cross-region Internal Application Load Balancer, and Cloud Service Mesh. Limited to 25 principals per Authorization Policy for Global External Application Load Balancer. type: array items: $ref: AuthzPolicyAuthzRulePrincipal.yaml resources: description: |- A list of resources to match against the resource of the source VM of a request. Limited to 10 resources per Authorization Policy. type: array items: $ref: AuthzPolicyAuthzRuleRequestResource.yaml