Add Resource Organization, folder and project Mute Config

mmv1/products/securitycenterv2/FolderMuteConfig.yaml

@@ -0,0 +1,106 @@
+# Copyright 2024 Google Inc.
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+--- !ruby/object:Api::Resource
+name: 'FolderMuteConfig'
+base_url: '{{parent}}/foldermuteConfigs'
+self_link: '{{name}}'
+create_url: '{{parent}}/foldermuteConfigs?foldermuteConfigId={{folder_mute_config_id}}'
+update_verb: :PATCH
+update_mask: true
+description: |
+  Mute Findings is a volume management feature in Security Command Center
+  that lets you manually or programmatically hide irrelevant findings,
+  and create filters to automatically silence existing and future
+  findings based on criteria you specify.
+references: !ruby/object:Api::Resource::ReferenceLinks
+  api: 'https://cloud.google.com/security-command-center/docs/reference/rest/v2/folders.locations.muteConfigs'
+examples:
+  - !ruby/object:Provider::Terraform::Examples
+    name: 'scc_v2_folder_mute_config_basic'
+    primary_resource_id: 'default'
+    vars:
+      folder_mute_config_id: 'my-config'
+    test_env_vars:
+      org_id: :ORG_ID
+# Skipping sweeper since this is a child resource
+skip_sweeper: true
+import_format: ['{{name}}']
+custom_code: !ruby/object:Provider::Terraform::CustomCode
+  custom_import: templates/terraform/custom_import/scc_mute_config.go.erb
+parameters:
+  - !ruby/object:Api::Type::String
+    name: foldermuteConfigId
+    required: true
+    immutable: true
+    url_param_only: true
+    description: |
+      Unique identifier provided by the client within the parent scope.
+  - !ruby/object:Api::Type::String
+    name: location
+    required: false
+    immutable: true
+    url_param_only: true
+    default_value: global
+    description: |
+      location Id is provided by organization. If not provided, Use global as default.
+  - !ruby/object:Api::Type::String
+    name: parent
+    required: true
+    immutable: true
+    url_param_only: true
+    description: |
+      Resource name of the new mute configs's parent. Its format is
+      "organizations/[organization_id]", "folders/[folder_id]", or
+      "projects/[project_id]".
+properties:
+  - !ruby/object:Api::Type::String
+    name: 'name'
+    output: true
+    description: |
+      Name of the mute config. Its format is
+      organizations/{organization}/muteConfigs/{configId},
+      folders/{folder}/muteConfigs/{configId},
+      or projects/{project}/muteConfigs/{configId}
+  - !ruby/object:Api::Type::String
+    name: 'description'
+    description: A description of the mute config.
+  - !ruby/object:Api::Type::String
+    name: 'filter'
+    description: |
+      An expression that defines the filter to apply across create/update
+      events of findings. While creating a filter string, be mindful of
+      the scope in which the mute configuration is being created. E.g.,
+      If a filter contains project = X but is created under the
+      project = Y scope, it might not match any findings.
+    required: true
+  - !ruby/object:Api::Type::String
+    name: 'createTime'
+    description: |
+      The time at which the mute config was created. This field is set by
+      the server and will be ignored if provided on config creation.
+    output: true
+  - !ruby/object:Api::Type::String
+    name: 'updateTime'
+    description: |
+      Output only. The most recent time at which the mute config was
+      updated. This field is set by the server and will be ignored if
+      provided on config creation or update.
+    output: true
+  - !ruby/object:Api::Type::String
+    name: 'mostRecentEditor'
+    description: |
+      Email address of the user who last edited the mute config. This
+      field is set by the server and will be ignored if provided on
+      config creation or update.
+    output: true

mmv1/products/securitycenterv2/OrganizationMuteConfig.yaml

@@ -0,0 +1,103 @@
+# Copyright 2024 Google Inc.
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+--- !ruby/object:Api::Resource
+name: 'OrganizationMuteConfig'
+base_url: '{{parent}}/organizationmuteConfigs'
+self_link: '{{name}}'
+create_url: '{{parent}}/organizationmuteConfigs?organizationmuteConfigId={{organization_mute_Configs_id}}'
+update_verb: :PATCH
+update_mask: true
+description: |
+  Mute Findings is a volume management feature in Security Command Center
+  that lets you manually or programmatically hide irrelevant findings,
+  and create filters to automatically silence existing and future
+  findings based on criteria you specify.
+references: !ruby/object:Api::Resource::ReferenceLinks
+  api: 'https://cloud.google.com/security-command-center/docs/reference/rest/v2/organizations.locations.muteConfigs'
+examples:
+  - !ruby/object:Provider::Terraform::Examples
+    name: 'scc_v2_organization_mute_config_basic'
+    primary_resource_id: 'default'
+    vars:
+      organization_mute_config_id: 'my-config'
+    test_env_vars:
+      org_id: :ORG_ID
+# Skipping sweeper since this is a child resource
+skip_sweeper: true
+import_format: ['{{name}}']
+custom_code: !ruby/object:Provider::Terraform::CustomCode
+  custom_import: templates/terraform/custom_import/scc_mute_config.go.erb
+parameters:
+  - !ruby/object:Api::Type::String
+    name: organizationmuteConfigId
+    required: true
+    immutable: true
+    url_param_only: true
+    description: |
+      Unique identifier provided by the client within the parent scope.
+  - !ruby/object:Api::Type::String
+    name: parent
+    required: true
+    immutable: true
+    url_param_only: true
+    description: |
+      Resource name of the new organization mute configs's parent. Its format is
+      "organizations/[organization_id]"
+  - !ruby/object:Api::Type::String
+    name: location
+    required: false
+    immutable: true
+    url_param_only: true
+    default_value: global
+    description: |
+      location Id is provided by organization. If not provided, Use global as default.
+properties:
+  - !ruby/object:Api::Type::String
+    name: 'name'
+    output: true
+    description: |
+      Name of the Organization mute config. Its format is
+      organizations/{organization}/OrgmuteConfigs/{configId},
+  - !ruby/object:Api::Type::String
+    name: 'description'
+    description: A description of the Organization mute config.
+  - !ruby/object:Api::Type::String
+    name: 'filter'
+    description: |
+      An expression that defines the filter to apply across create/update
+      events of findings. While creating a filter string, be mindful of
+      the scope in which the mute configuration is being created. E.g.,
+      If a filter contains project = X but is created under the
+      project = Y scope, it might not match any findings.
+    required: true
+  - !ruby/object:Api::Type::String
+    name: 'createTime'
+    description: |
+      The time at which the mute config was created. This field is set by
+      the server and will be ignored if provided on config creation.
+    output: true
+  - !ruby/object:Api::Type::String
+    name: 'updateTime'
+    description: |
+      Output only. The most recent time at which the mute config was
+      updated. This field is set by the server and will be ignored if
+      provided on config creation or update.
+    output: true
+  - !ruby/object:Api::Type::String
+    name: 'mostRecentEditor'
+    description: |
+      Email address of the user who last edited the mute config. This
+      field is set by the server and will be ignored if provided on
+      config creation or update.
+    output: true

mmv1/products/securitycenterv2/ProjectMuteConfig.yaml

@@ -0,0 +1,106 @@
+# Copyright 2024 Google Inc.
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+--- !ruby/object:Api::Resource
+name: 'projectMuteConfig'
+base_url: '{{parent}}/projectmuteConfigs'
+self_link: '{{name}}'
+create_url: '{{parent}}/projectmuteConfigs?projectmuteConfigId={{project_mute_config_id}}'
+update_verb: :PATCH
+update_mask: true
+description: |
+  Mute Findings is a volume management feature in Security Command Center
+  that lets you manually or programmatically hide irrelevant findings,
+  and create filters to automatically silence existing and future
+  findings based on criteria you specify.
+references: !ruby/object:Api::Resource::ReferenceLinks
+  api: 'https://cloud.google.com/security-command-center/docs/reference/rest/v2/projects.locations.muteConfigs'
+examples:
+  - !ruby/object:Provider::Terraform::Examples
+    name: 'scc_v2_project_mute_config_basic'
+    primary_resource_id: 'default'
+    vars:
+      project_mute_config_id: 'my-config'
+    test_env_vars:
+      org_id: :ORG_ID
+# Skipping sweeper since this is a child resource
+skip_sweeper: true
+import_format: ['{{name}}']
+custom_code: !ruby/object:Provider::Terraform::CustomCode
+  custom_import: templates/terraform/custom_import/scc_mute_config.go.erb
+parameters:
+  - !ruby/object:Api::Type::String
+    name: projectmuteConfigId
+    required: true
+    immutable: true
+    url_param_only: true
+    description: |
+      Unique identifier provided by the client within the parent scope.
+  - !ruby/object:Api::Type::String
+    name: location
+    required: false
+    immutable: true
+    url_param_only: true
+    default_value: global
+    description: |
+      location Id is provided by organization. If not provided, Use global as default.
+  - !ruby/object:Api::Type::String
+    name: parent
+    required: true
+    immutable: true
+    url_param_only: true
+    description: |
+      Resource name of the new mute configs's parent. Its format is
+      "organizations/[organization_id]", "folders/[folder_id]", or
+      "projects/[project_id]".
+properties:
+  - !ruby/object:Api::Type::String
+    name: 'name'
+    output: true
+    description: |
+      Name of the mute config. Its format is
+      organizations/{organization}/muteConfigs/{configId},
+      folders/{folder}/muteConfigs/{configId},
+      or projects/{project}/muteConfigs/{configId}
+  - !ruby/object:Api::Type::String
+    name: 'description'
+    description: A description of the mute config.
+  - !ruby/object:Api::Type::String
+    name: 'filter'
+    description: |
+      An expression that defines the filter to apply across create/update
+      events of findings. While creating a filter string, be mindful of
+      the scope in which the mute configuration is being created. E.g.,
+      If a filter contains project = X but is created under the
+      project = Y scope, it might not match any findings.
+    required: true
+  - !ruby/object:Api::Type::String
+    name: 'createTime'
+    description: |
+      The time at which the mute config was created. This field is set by
+      the server and will be ignored if provided on config creation.
+    output: true
+  - !ruby/object:Api::Type::String
+    name: 'updateTime'
+    description: |
+      Output only. The most recent time at which the mute config was
+      updated. This field is set by the server and will be ignored if
+      provided on config creation or update.
+    output: true
+  - !ruby/object:Api::Type::String
+    name: 'mostRecentEditor'
+    description: |
+      Email address of the user who last edited the mute config. This
+      field is set by the server and will be ignored if provided on
+      config creation or update.
+    output: true

mmv1/products/securitycenterv2/product.yaml

@@ -0,0 +1,23 @@
+# Copyright 2024 Google Inc.
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+--- !ruby/object:Api::Product
+name: SecurityCenterV2
+display_name: Security Command Center (SCC)
+legacy_name: scc
+versions:
+  - !ruby/object:Api::Product::Version
+    name: ga
+    base_url: https://securitycenter.googleapis.com/v2/
+scopes:
+  - https://www.googleapis.com/auth/cloud-platform

mmv1/templates/terraform/examples/scc_v2_folder_mute_config_basic.tf.erb

@@ -0,0 +1,10 @@
+resource "google_pubsub_topic" "scc_v2_folder_mute_config" {
+  name = "<%= ctx[:vars]['topic_name'] %>"
+}
+
+resource "google_scc_v2_folder_mute_config" "<%= ctx[:primary_resource_id] %>" {
+  mute_config_id = "<%= ctx[:vars]['mute_config_id'] %>"
+  folder         = "<%= ctx[:test_env_vars]['folder_id'] %>"
+  description    = "My custom Cloud Security Command Center Mute Configuration"
+  filter         = "severity = \"HIGH\""
+}

mmv1/templates/terraform/examples/scc_v2_organization_mute_config_basic.tf.erb

@@ -0,0 +1,10 @@
+resource "google_pubsub_topic" "scc_v2_organization_mute_config" {
+  name = "<%= ctx[:vars]['topic_name'] %>"
+}
+
+resource "google_scc_v2_organization_mute_config" "<%= ctx[:primary_resource_id] %>" {
+  mute_config_id = "<%= ctx[:vars]['mute_config_id'] %>"
+  organization   = "<%= ctx[:test_env_vars]['org_id'] %>"
+  description    = "My custom Cloud Security Command Center Organization Mute Configuration"
+  filter         = "severity = \"HIGH\""
+}

mmv1/templates/terraform/examples/scc_v2_project_mute_config_basic.tf.erb

@@ -0,0 +1,10 @@
+resource "google_pubsub_topic" "scc_v2_project_mute_config" {
+  name = "<%= ctx[:vars]['topic_name'] %>"
+}
+
+resource "google_scc_v2_project_mute_config" "<%= ctx[:primary_resource_id] %>" {
+  mute_config_id = "<%= ctx[:vars]['mute_config_id'] %>"
+  project        = "<%= ctx[:test_env_vars]['project_id'] %>"
+  description    = "My custom Cloud Security Command Center Project Mute Configuration"
+  filter         = "severity = \"HIGH\""
+}

mmv1/third_party/terraform/.teamcity/components/inputs/services_beta.kt

@@ -620,6 +620,11 @@ var ServicesListBeta = mapOf(
         "name" to "securityposture",
         "displayName" to "Securityposture",
         "path" to "./google-beta/services/securityposture"
+    ),
+     "securitycenterV2" to mapOf(
+        "name" to "securitycenterV2",
+        "displayName" to "securitycenterV2",
+        "path" to "./google-beta/services/securitycenterV2"
     ),
     "securityscanner" to mapOf(
         "name" to "securityscanner",

mmv1/third_party/terraform/.teamcity/components/inputs/services_ga.kt

@@ -615,6 +615,11 @@ var ServicesListGa = mapOf(
         "name" to "securityposture",
         "displayName" to "Securityposture",
         "path" to "./google/services/securityposture"
+    ),
+     "securitycenterV2" to mapOf(
+        "name" to "securitycenterV2",
+        "displayName" to "securitycenterV2",
+        "path" to "./google-beta/services/securitycenterV2"
     ),
     "securityscanner" to mapOf(
         "name" to "securityscanner",