googleapis
diff --git a/‎google-cloud-examples/src/main/java/com/google/cloud/examples/securitycenter/snippets/AssetSnippets.java‎
Lines changed: 137 additions & 1 deletion b/‎google-cloud-examples/src/main/java/com/google/cloud/examples/securitycenter/snippets/AssetSnippets.java‎
Lines changed: 137 additions & 1 deletion
diff --git a/‎google-cloud-examples/src/main/java/com/google/cloud/examples/securitycenter/snippets/FindingSnippets.java‎
Lines changed: 188 additions & 1 deletion b/‎google-cloud-examples/src/main/java/com/google/cloud/examples/securitycenter/snippets/FindingSnippets.java‎
Lines changed: 188 additions & 1 deletion
@@ -15,15 +15,24 @@
  */
 package com.google.cloud.examples.securitycenter.snippets;
 
+import com.google.api.gax.longrunning.OperationFuture;
+import com.google.api.gax.rpc.ResourceExhaustedException;
+import com.google.cloud.securitycenter.v1.GroupAssetsRequest;
+import com.google.cloud.securitycenter.v1.GroupResult;
 import com.google.cloud.securitycenter.v1.ListAssetsRequest;
 import com.google.cloud.securitycenter.v1.ListAssetsResponse.ListAssetsResult;
 import com.google.cloud.securitycenter.v1.OrganizationName;
 import com.google.cloud.securitycenter.v1.SecurityCenterClient;
+import com.google.cloud.securitycenter.v1.SecurityCenterClient.GroupAssetsPagedResponse;
 import com.google.cloud.securitycenter.v1.SecurityCenterClient.ListAssetsPagedResponse;
 import com.google.common.base.MoreObjects;
 import com.google.common.base.Preconditions;
 import com.google.common.collect.ImmutableList;
+import com.google.protobuf.Empty;
 import java.io.IOException;
+import java.util.concurrent.ExecutionException;
+import java.util.concurrent.TimeUnit;
+import java.util.concurrent.TimeoutException;
 import org.threeten.bp.Duration;
 import org.threeten.bp.Instant;
 
@@ -174,7 +183,134 @@ static ImmutableList<ListAssetsResult> listAssetAndStatusChanges(
       throw new RuntimeException("Couldn't create client.", e);
     }
   }
-  // [END list_asset_changes_status_changes]
+  // [END list_asset_changes_status_changes]\
+
+
+  /**
+   * Groups all assets by their specified properties (e.g. type) for an organization.
+   *
+   * @param organizationName The organization to group assets for.
+   */
+  // [START group_all_assets]
+  static ImmutableList<GroupResult> groupAssets(OrganizationName organizationName) {
+    try (SecurityCenterClient client = SecurityCenterClient.create()) {
+      // Start setting up a request for to group all assets by type in an organization.
+      // OrganizationName organizationName = OrganizationName.of("123234324");
+      GroupAssetsRequest.Builder request =
+          GroupAssetsRequest.newBuilder()
+              .setGroupBy("security_center_properties.resource_type")
+              .setParent(organizationName.toString());
+
+      // Call the API.
+      GroupAssetsPagedResponse response = client.groupAssets(request.build());
+
+      // This creates one list for all assets.  If your organization has a large number of assets
+      // this can cause out of memory issues.  You can process them batches by returning
+      // the Iterable returned response.iterateAll() directly.
+      ImmutableList<GroupResult> results = ImmutableList.copyOf(response.iterateAll());
+      System.out.println("All assets:");
+      System.out.println(results);
+      return results;
+    } catch (IOException e) {
+      throw new RuntimeException("Couldn't create client.", e);
+    }
+  }
+  // [END group_all_assets]
+
+  /**
+   * Filters all assets by their specified properties and groups them by specified properties for an
+   * organization.
+   *
+   * @param organizationName The organization to group assets for.
+   */
+  // [START group_all_assets_with_filter]
+  static ImmutableList<GroupResult> groupAssetsWithFilter(OrganizationName organizationName) {
+    try (SecurityCenterClient client = SecurityCenterClient.create()) {
+      // Start setting up a request for to filter all assets by type and group them by project in an
+      // organization.
+      // OrganizationName organizationName = OrganizationName.of("123234324");
+      GroupAssetsRequest.Builder request =
+          GroupAssetsRequest.newBuilder()
+              .setFilter(
+                  "security_center_properties.resource_type=\"google.cloud.resourcemanager.Project\"")
+              .setGroupBy("security_center_properties.resource_project")
+              .setParent(organizationName.toString());
+
+      // Call the API.
+      GroupAssetsPagedResponse response = client.groupAssets(request.build());
+
+      // This creates one list for all assets.  If your organization has a large number of assets
+      // this can cause out of memory issues.  You can process them batches by returning
+      // the Iterable returned response.iterateAll() directly.
+      ImmutableList<GroupResult> results = ImmutableList.copyOf(response.iterateAll());
+      System.out.println("All assets:");
+      System.out.println(results);
+      return results;
+    } catch (IOException e) {
+      throw new RuntimeException("Couldn't create client.", e);
+    }
+  }
+  // [END group_all_assets_with_filter]
+
+  /**
+   * Groups all assets by their state_changes (ADDED/DELETED/ACTIVE) during a period of time for an
+   * organization.
+   *
+   * @param organizationName The organization to group assets for.
+   */
+  // [START group_all_assets_with_compare_duration]
+  static ImmutableList<GroupResult> groupAssetsWithCompareDuration(
+      OrganizationName organizationName, Duration duration) {
+    try (SecurityCenterClient client = SecurityCenterClient.create()) {
+      // Start setting up a request for to group all assets during a period of time in an
+      // organization.
+      // OrganizationName organizationName = OrganizationName.of("123234324");
+      GroupAssetsRequest.Builder request =
+          GroupAssetsRequest.newBuilder()
+              .setGroupBy("state_change")
+              .setParent(organizationName.toString());
+      request
+          .getCompareDurationBuilder()
+          .setSeconds(duration.getSeconds())
+          .setNanos(duration.getNano());
+
+      // Call the API.
+      GroupAssetsPagedResponse response = client.groupAssets(request.build());
+
+      // This creates one list for all assets.  If your organization has a large number of assets
+      // this can cause out of memory issues.  You can process them batches by returning
+      // the Iterable returned response.iterateAll() directly.
+      ImmutableList<GroupResult> results = ImmutableList.copyOf(response.iterateAll());
+      System.out.println("All assets:");
+      System.out.println(results);
+      return results;
+    } catch (IOException e) {
+      throw new RuntimeException("Couldn't create client.", e);
+    }
+  }
+  // [END group_all_assets_with_compare_duration]
+
+  // [START run_asset_discovery]
+  static void runAssetDiscovery(OrganizationName organizationName) {
+    try (SecurityCenterClient client = SecurityCenterClient.create()) {
+      // Call the API.  Note calls to runAssetDiscovery are throttled if too many requests
+      // are made.
+      OperationFuture<Empty, Empty> result = client
+          .runAssetDiscoveryAsync(organizationName);
+
+
+      // Uncomment this line to wait for a certain amount of time for the asset discovery run
+      // to complete.
+      // result.get(130, TimeUnit.SECONDS);
+      System.out.println("Asset discovery runs asynchronously.");
+    } catch (IOException e) {
+      throw new RuntimeException("Couldn't create client.", e);
+    } catch (ResourceExhaustedException e) {
+      System.out.println("Asset discovery run already in progress.");
+    }
+  }
+  // [END run_asset_discovery]
+
 
   public static void main(String... args) {
     String org_id = System.getenv("ORGANIZATION_ID");
 
@@ -18,10 +18,13 @@
 import com.google.cloud.securitycenter.v1.Finding;
 import com.google.cloud.securitycenter.v1.Finding.State;
 import com.google.cloud.securitycenter.v1.FindingName;
+import com.google.cloud.securitycenter.v1.GroupFindingsRequest;
+import com.google.cloud.securitycenter.v1.GroupResult;
 import com.google.cloud.securitycenter.v1.ListFindingsRequest;
 import com.google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult;
 import com.google.cloud.securitycenter.v1.OrganizationName;
 import com.google.cloud.securitycenter.v1.SecurityCenterClient;
+import com.google.cloud.securitycenter.v1.SecurityCenterClient.GroupFindingsPagedResponse;
 import com.google.cloud.securitycenter.v1.SecurityCenterClient.ListFindingsPagedResponse;
 import com.google.cloud.securitycenter.v1.SourceName;
 import com.google.cloud.securitycenter.v1.UpdateFindingRequest;
@@ -33,6 +36,7 @@
 import com.google.protobuf.Value;
 import java.io.IOException;
 import java.util.ArrayList;
+import java.util.List;
 import org.threeten.bp.Duration;
 import org.threeten.bp.Instant;
 
@@ -329,7 +333,7 @@ static TestIamPermissionsResponse testIamPermissions(SourceName sourceName) {
       // /*sourceId=*/"423432321");
 
       // Iam permission to test.
-      ArrayList permissionsToTest = new ArrayList<>();
+      List<String> permissionsToTest = new ArrayList<>();
       permissionsToTest.add("securitycenter.findings.update");
 
       // Call the API.
@@ -344,4 +348,187 @@ static TestIamPermissionsResponse testIamPermissions(SourceName sourceName) {
     }
   }
   // [END test_iam_permissions]
+
+  /**
+   * Group all findings under an organization across all sources by their specified properties (e.g.
+   * category).
+   *
+   * @param organizationName The organizatoin to group all findings for.
+   */
+  // [START group_all_findings]
+  static ImmutableList<GroupResult> groupFindings(OrganizationName organizationName) {
+    try (SecurityCenterClient client = SecurityCenterClient.create()) {
+      // OrganizationName organizationName = OrganizationName.of("123234324");
+      SourceName sourceName = SourceName.of(organizationName.getOrganization(), "-");
+
+      GroupFindingsRequest.Builder request =
+          GroupFindingsRequest.newBuilder().setParent(sourceName.toString()).setGroupBy("category");
+
+      // Call the API.
+      GroupFindingsPagedResponse response = client.groupFindings(request.build());
+
+      // This creates one list for all findings.  If your organization has a large number of
+      // findings
+      // this can cause out of memory issues.  You can process them batches by returning
+      // the Iterable returned response.iterateAll() directly.
+      ImmutableList<GroupResult> results = ImmutableList.copyOf(response.iterateAll());
+      System.out.println("Findings:");
+      System.out.println(results);
+      return results;
+    } catch (IOException e) {
+      throw new RuntimeException("Couldn't create client.", e);
+    }
+  }
+  // [END group_all_findings]
+
+  /**
+   * Group findings under an organization and a source by their specified properties (e.g.
+   * category).
+   *
+   * @param sourceName The source to limit the findings to.
+   */
+  // [START group_findings_with_source]
+  static ImmutableList<GroupResult> groupFindingsWithSource(SourceName sourceName) {
+    try (SecurityCenterClient client = SecurityCenterClient.create()) {
+      // SourceName sourceName = SourceName.of(/*organization=*/"123234324",/*source=*/
+      // "423432321");
+
+      GroupFindingsRequest.Builder request =
+          GroupFindingsRequest.newBuilder().setParent(sourceName.toString()).setGroupBy("category");
+
+      // Call the API.
+      GroupFindingsPagedResponse response = client.groupFindings(request.build());
+
+      // This creates one list for all findings.  If your organization has a large number of
+      // findings
+      // this can cause out of memory issues.  You can process them batches by returning
+      // the Iterable returned response.iterateAll() directly.
+      ImmutableList<GroupResult> results = ImmutableList.copyOf(response.iterateAll());
+      System.out.println("Findings:");
+      System.out.println(results);
+      return results;
+    } catch (IOException e) {
+      throw new RuntimeException("Couldn't create client.", e);
+    }
+  }
+  // [END group_findings_with_source]
+
+  /**
+   * Group active findings under an organization and a source by their specified properties (e.g.
+   * category).
+   *
+   * @param sourceName The source to limit the findings to.
+   */
+  // [START group_active_findings_with_source]
+  static ImmutableList<GroupResult> groupActiveFindingsWithSource(
+      SourceName sourceName) {
+    try (SecurityCenterClient client = SecurityCenterClient.create()) {
+      // SourceName sourceName = SourceName.of(/*organization=*/"123234324",/*source=*/
+      // "423432321");
+
+      GroupFindingsRequest.Builder request =
+          GroupFindingsRequest.newBuilder()
+              .setParent(sourceName.toString())
+              .setGroupBy("category")
+              .setFilter("state=\"ACTIVE\"");
+
+      // Call the API.
+      GroupFindingsPagedResponse response = client.groupFindings(request.build());
+
+      // This creates one list for all findings.  If your organization has a large number of
+      // findings
+      // this can cause out of memory issues.  You can process them batches by returning
+      // the Iterable returned response.iterateAll() directly.
+      ImmutableList<GroupResult> results = ImmutableList.copyOf(response.iterateAll());
+      System.out.println("Findings:");
+      System.out.println(results);
+      return results;
+    } catch (IOException e) {
+      throw new RuntimeException("Couldn't create client.", e);
+    }
+  }
+  // [END group_active_findings_with_source]
+
+  /**
+   * Group active findings under an organization and a source by their specified properties (e.g.
+   * category) at a specified time.
+   *
+   * @param sourceName The source to limit the findings to.
+   */
+  // [START group_active_findings_with_source_at_time]
+  static ImmutableList<GroupResult> groupActiveFindingsWithSourceAtTime(
+      SourceName sourceName) {
+    try (SecurityCenterClient client = SecurityCenterClient.create()) {
+      // SourceName sourceName = SourceName.of(/*organization=*/"123234324",/*source=*/
+      // "423432321");
+
+      // 1 day ago
+      Instant oneDayAgo = Instant.now().minusSeconds(60 * 60 * 24);
+
+      GroupFindingsRequest.Builder request =
+          GroupFindingsRequest.newBuilder()
+              .setParent(sourceName.toString())
+              .setGroupBy("category")
+              .setFilter("state=\"ACTIVE\"")
+              .setReadTime(
+                  Timestamp.newBuilder()
+                      .setSeconds(oneDayAgo.getEpochSecond())
+                      .setNanos(oneDayAgo.getNano()));
+
+      // Call the API.
+      GroupFindingsPagedResponse response = client.groupFindings(request.build());
+
+      // This creates one list for all findings.  If your organization has a large number of
+      // findings
+      // this can cause out of memory issues.  You can process them batches by returning
+      // the Iterable returned response.iterateAll() directly.
+      ImmutableList<GroupResult> results = ImmutableList.copyOf(response.iterateAll());
+      System.out.println("Findings:");
+      System.out.println(results);
+      return results;
+    } catch (IOException e) {
+      throw new RuntimeException("Couldn't create client.", e);
+    }
+  }
+  // [END group_active_findings_with_source_at_time]
+
+  /**
+   * Group active findings under an organization and a source by their state_changes
+   * (ADDED/CHANGED/UNCHANGED) during a period.
+   *
+   * @param sourceName The source to limit the findings to.
+   */
+  // [START group_active_findings_with_source_and_compare_duration]
+  static ImmutableList<GroupResult> groupActiveFindingsWithSourceAndCompareDuration(
+      SourceName sourceName, Duration duration) {
+    try (SecurityCenterClient client = SecurityCenterClient.create()) {
+      // SourceName sourceName = SourceName.of(/*organization=*/"123234324",/*source=*/
+      // "423432321");
+
+      GroupFindingsRequest.Builder request =
+          GroupFindingsRequest.newBuilder()
+              .setParent(sourceName.toString())
+              .setGroupBy("state_change")
+              .setFilter("state=\"ACTIVE\"");
+      request
+          .getCompareDurationBuilder()
+          .setSeconds(duration.getSeconds())
+          .setNanos(duration.getNano());
+
+      // Call the API.
+      GroupFindingsPagedResponse response = client.groupFindings(request.build());
+
+      // This creates one list for all findings.  If your organization has a large number of
+      // findings
+      // this can cause out of memory issues.  You can process them batches by returning
+      // the Iterable returned response.iterateAll() directly.
+      ImmutableList<GroupResult> results = ImmutableList.copyOf(response.iterateAll());
+      System.out.println("Findings:");
+      System.out.println(results);
+      return results;
+    } catch (IOException e) {
+      throw new RuntimeException("Couldn't create client.", e);
+    }
+  }
+  // [END group_active_findings_with_source_and_compare_duration]
 }