I want to use the securityPolicies API for the Google Cloud Platform in Linux in a script written in Python.
To do this:
I installed google-api-python-client:
pip install google-api-python-client
I generated and downloaded from GCP this credential information (private key) in JSON format and exported the path to this file under the environmental variable:
export GOOGLE_APPLICATION_CREDENTIALS='[PATH]'
Now I have a doubt about how to properly use the google-api-python-client library to achieve my goal.
Using the addRule method according to the documentation I write the following script (of course with valid values for project keys and securityPolicy), but when I execute it, although the interpreter doesn't return any error, but the script doesn't give the expected effect:
from googleapiclient import discovery
compute_service = discovery.build('compute', 'v1')
security_policies = compute_service.securityPolicies()
security_policies.addRule(
project='existed_project_name',
securityPolicy='existed_security_policy_name',
body={
'kind': 'compute#securityPolicyRule',
'priority': 303,
'action': 'deny(403)',
'preview': False,
'match': {
'config': {
'srcIpRanges': [
'192.0.2.0/24',
'198.51.100.0/24',
'203.0.113.0/24'
]
},
'versionedExpr': 'SRC_IPS_V1'
}
}
)
So I have the following questions:
1. What should I improve or change?
2. Is my approach to authentication correct?
Any ideas?
