akeyless 2.15.29 → 2.16.1

data/lib/akeyless/models/create_auth_method_oidc.rb

@@ -43,6 +43,12 @@ module Akeyless
     # Auth Method name
     attr_accessor :name
 
+    # RequiredScopes is a list of required scopes that the oidc method will request from the oidc provider and the user must approve
+    attr_accessor :required_scopes
+
+    # RequiredScopesPrefix is a a prefix to add to all required-scopes when requesting them from the oidc server (for example, azures' Application ID URI)
+    attr_accessor :required_scopes_prefix
+
     # Authentication token (see `/auth` and `/configure`)
     attr_accessor :token
 
@@ -64,6 +70,8 @@ module Akeyless
         :'issuer' => :'issuer',
         :'jwt_ttl' => :'jwt-ttl',
         :'name' => :'name',
+        :'required_scopes' => :'required-scopes',
+        :'required_scopes_prefix' => :'required-scopes-prefix',
         :'token' => :'token',
         :'uid_token' => :'uid-token',
         :'unique_identifier' => :'unique-identifier'
@@ -87,6 +95,8 @@ module Akeyless
         :'issuer' => :'String',
         :'jwt_ttl' => :'Integer',
         :'name' => :'String',
+        :'required_scopes' => :'Array<String>',
+        :'required_scopes_prefix' => :'String',
         :'token' => :'String',
         :'uid_token' => :'String',
         :'unique_identifier' => :'String'
@@ -158,6 +168,16 @@ module Akeyless
         self.name = attributes[:'name']
       end
 
+      if attributes.key?(:'required_scopes')
+        if (value = attributes[:'required_scopes']).is_a?(Array)
+          self.required_scopes = value
+        end
+      end
+
+      if attributes.key?(:'required_scopes_prefix')
+        self.required_scopes_prefix = attributes[:'required_scopes_prefix']
+      end
+
       if attributes.key?(:'token')
         self.token = attributes[:'token']
       end
@@ -208,6 +228,8 @@ module Akeyless
           issuer == o.issuer &&
           jwt_ttl == o.jwt_ttl &&
           name == o.name &&
+          required_scopes == o.required_scopes &&
+          required_scopes_prefix == o.required_scopes_prefix &&
           token == o.token &&
           uid_token == o.uid_token &&
           unique_identifier == o.unique_identifier
@@ -222,7 +244,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [access_expires, allowed_redirect_uri, bound_ips, client_id, client_secret, force_sub_claims, issuer, jwt_ttl, name, token, uid_token, unique_identifier].hash
+      [access_expires, allowed_redirect_uri, bound_ips, client_id, client_secret, force_sub_claims, issuer, jwt_ttl, name, required_scopes, required_scopes_prefix, token, uid_token, unique_identifier].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/create_classic_key.rb

@@ -25,6 +25,9 @@ module Akeyless
     # Base64-encoded classic key value
     attr_accessor :key_data
 
+    # A list of allowed operations for the key (required for azure targets)
+    attr_accessor :key_operations
+
     # Metadata about the classic key
     attr_accessor :metadata
 
@@ -46,19 +49,24 @@ module Akeyless
     # The universal identity token, Required only for universal_identity authentication
     attr_accessor :uid_token
 
+    # Name of the vault used (required for azure targets)
+    attr_accessor :vault_name
+
     # Attribute mapping from ruby-style variable name to JSON key.
     def self.attribute_map
       {
         :'alg' => :'alg',
         :'cert_file_data' => :'cert-file-data',
         :'key_data' => :'key-data',
+        :'key_operations' => :'key-operations',
         :'metadata' => :'metadata',
         :'name' => :'name',
         :'protection_key_name' => :'protection-key-name',
         :'tags' => :'tags',
         :'target_name' => :'target-name',
         :'token' => :'token',
-        :'uid_token' => :'uid-token'
+        :'uid_token' => :'uid-token',
+        :'vault_name' => :'vault-name'
       }
     end
 
@@ -73,13 +81,15 @@ module Akeyless
         :'alg' => :'String',
         :'cert_file_data' => :'String',
         :'key_data' => :'String',
+        :'key_operations' => :'Array<String>',
         :'metadata' => :'String',
         :'name' => :'String',
         :'protection_key_name' => :'String',
         :'tags' => :'Array<String>',
         :'target_name' => :'String',
         :'token' => :'String',
-        :'uid_token' => :'String'
+        :'uid_token' => :'String',
+        :'vault_name' => :'String'
       }
     end
 
@@ -116,6 +126,12 @@ module Akeyless
         self.key_data = attributes[:'key_data']
       end
 
+      if attributes.key?(:'key_operations')
+        if (value = attributes[:'key_operations']).is_a?(Array)
+          self.key_operations = value
+        end
+      end
+
       if attributes.key?(:'metadata')
         self.metadata = attributes[:'metadata']
       end
@@ -145,6 +161,10 @@ module Akeyless
       if attributes.key?(:'uid_token')
         self.uid_token = attributes[:'uid_token']
       end
+
+      if attributes.key?(:'vault_name')
+        self.vault_name = attributes[:'vault_name']
+      end
     end
 
     # Show invalid properties with the reasons. Usually used together with valid?
@@ -178,13 +198,15 @@ module Akeyless
           alg == o.alg &&
           cert_file_data == o.cert_file_data &&
           key_data == o.key_data &&
+          key_operations == o.key_operations &&
           metadata == o.metadata &&
           name == o.name &&
           protection_key_name == o.protection_key_name &&
           tags == o.tags &&
           target_name == o.target_name &&
           token == o.token &&
-          uid_token == o.uid_token
+          uid_token == o.uid_token &&
+          vault_name == o.vault_name
     end
 
     # @see the `==` method
@@ -196,7 +218,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [alg, cert_file_data, key_data, metadata, name, protection_key_name, tags, target_name, token, uid_token].hash
+      [alg, cert_file_data, key_data, key_operations, metadata, name, protection_key_name, tags, target_name, token, uid_token, vault_name].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/ds_producer_details.rb

@@ -185,6 +185,10 @@ module Akeyless
 
     attr_accessor :groups
 
+    attr_accessor :hanadb_creation_statements
+
+    attr_accessor :hanadb_revocation_statements
+
     attr_accessor :host_name
 
     attr_accessor :host_port
@@ -446,6 +450,8 @@ module Akeyless
         :'gke_service_account_key' => :'gke_service_account_key',
         :'gke_service_account_name' => :'gke_service_account_name',
         :'groups' => :'groups',
+        :'hanadb_creation_statements' => :'hanadb_creation_statements',
+        :'hanadb_revocation_statements' => :'hanadb_revocation_statements',
         :'host_name' => :'host_name',
         :'host_port' => :'host_port',
         :'is_fixed_user' => :'is_fixed_user',
@@ -624,6 +630,8 @@ module Akeyless
         :'gke_service_account_key' => :'String',
         :'gke_service_account_name' => :'String',
         :'groups' => :'String',
+        :'hanadb_creation_statements' => :'String',
+        :'hanadb_revocation_statements' => :'String',
         :'host_name' => :'String',
         :'host_port' => :'String',
         :'is_fixed_user' => :'String',
@@ -1073,6 +1081,14 @@ module Akeyless
         self.groups = attributes[:'groups']
       end
 
+      if attributes.key?(:'hanadb_creation_statements')
+        self.hanadb_creation_statements = attributes[:'hanadb_creation_statements']
+      end
+
+      if attributes.key?(:'hanadb_revocation_statements')
+        self.hanadb_revocation_statements = attributes[:'hanadb_revocation_statements']
+      end
+
       if attributes.key?(:'host_name')
         self.host_name = attributes[:'host_name']
       end
@@ -1516,6 +1532,8 @@ module Akeyless
           gke_service_account_key == o.gke_service_account_key &&
           gke_service_account_name == o.gke_service_account_name &&
           groups == o.groups &&
+          hanadb_creation_statements == o.hanadb_creation_statements &&
+          hanadb_revocation_statements == o.hanadb_revocation_statements &&
           host_name == o.host_name &&
           host_port == o.host_port &&
           is_fixed_user == o.is_fixed_user &&
@@ -1610,7 +1628,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [active, admin_name, admin_pwd, admin_rotation_interval_days, artifactory_admin_apikey, artifactory_admin_username, artifactory_base_url, artifactory_token_audience, artifactory_token_scope, aws_access_key_id, aws_access_mode, aws_region, aws_role_arns, aws_secret_access_key, aws_session_token, aws_user_console_access, aws_user_groups, aws_user_policies, aws_user_programmatic_access, azure_app_object_id, azure_client_id, azure_client_secret, azure_fixed_user_name_sub_claim_key, azure_fixed_user_only, azure_tenant_id, azure_user_groups_obj_id, azure_user_portal_access, azure_user_programmatic_access, azure_user_roles_template_id, cassandra_creation_statements, chef_organizations, chef_server_access_mode, chef_server_host_name, chef_server_key, chef_server_port, chef_server_url, chef_server_username, chef_skip_ssl, create_sync_url, db_host_name, db_isolation_level, db_max_idle_conns, db_max_open_conns, db_name, db_port, db_pwd, db_server_certificates, db_server_name, db_user_name, dynamic_secret_id, dynamic_secret_key, dynamic_secret_name, dynamic_secret_type, eks_access_key_id, eks_assume_role, eks_cluster_ca_certificate, eks_cluster_endpoint, eks_cluster_name, eks_region, eks_secret_access_key, enable_admin_rotation, externally_provided_user, failure_message, fixed_user_only, gcp_key_algo, gcp_service_account_email, gcp_service_account_key, gcp_token_lifetime, gcp_token_scope, gcp_token_type, github_app_id, github_app_private_key, github_base_url, github_installation_id, github_installation_token_permissions, github_installation_token_repositories, github_installation_token_repositories_ids, github_repository_path, gke_cluster_ca_certificate, gke_cluster_endpoint, gke_cluster_name, gke_service_account_key, gke_service_account_name, groups, host_name, host_port, is_fixed_user, item_targets_assoc, k8s_bearer_token, k8s_cluster_ca_certificate, k8s_cluster_endpoint, k8s_namespace, k8s_service_account, last_admin_rotation, ldap_audience, ldap_bind_dn, ldap_bind_password, ldap_certificate, ldap_token_expiration, ldap_url, ldap_user_attr, ldap_user_dn, mongodb_atlas_api_private_key, mongodb_atlas_api_public_key, mongodb_atlas_project_id, mongodb_custom_data, mongodb_db_name, mongodb_default_auth_db, mongodb_host_port, mongodb_is_atlas, mongodb_password, mongodb_roles, mongodb_uri_connection, mongodb_uri_options, mongodb_username, mssql_creation_statements, mssql_revocation_statements, mysql_creation_statements, oracle_creation_statements, password, password_length, password_policy, payload, postgres_creation_statements, postgres_revocation_statements, rabbitmq_server_password, rabbitmq_server_uri, rabbitmq_server_user, rabbitmq_user_conf_permission, rabbitmq_user_read_permission, rabbitmq_user_tags, rabbitmq_user_vhost, rabbitmq_user_write_permission, redshift_creation_statements, revoke_sync_url, rotate_sync_url, scopes, secure_remote_access_details, session_extension_warn_interval_min, sf_account, sf_user_role, sf_warehouse_name, should_stop, ssl_connection_certificate, ssl_connection_mode, tags, timeout_seconds, use_gw_cloud_identity, user_name, user_principal_name, user_ttl, username_length, username_policy, venafi_allow_subdomains, venafi_allowed_domains, venafi_api_key, venafi_auto_generated_folder, venafi_base_url, venafi_root_first_in_chain, venafi_sign_using_akeyless_pki, venafi_signer_key_name, venafi_store_private_key, venafi_tpp_password, venafi_tpp_username, venafi_use_tpp, venafi_zone, warn_before_user_expiration_min].hash
+      [active, admin_name, admin_pwd, admin_rotation_interval_days, artifactory_admin_apikey, artifactory_admin_username, artifactory_base_url, artifactory_token_audience, artifactory_token_scope, aws_access_key_id, aws_access_mode, aws_region, aws_role_arns, aws_secret_access_key, aws_session_token, aws_user_console_access, aws_user_groups, aws_user_policies, aws_user_programmatic_access, azure_app_object_id, azure_client_id, azure_client_secret, azure_fixed_user_name_sub_claim_key, azure_fixed_user_only, azure_tenant_id, azure_user_groups_obj_id, azure_user_portal_access, azure_user_programmatic_access, azure_user_roles_template_id, cassandra_creation_statements, chef_organizations, chef_server_access_mode, chef_server_host_name, chef_server_key, chef_server_port, chef_server_url, chef_server_username, chef_skip_ssl, create_sync_url, db_host_name, db_isolation_level, db_max_idle_conns, db_max_open_conns, db_name, db_port, db_pwd, db_server_certificates, db_server_name, db_user_name, dynamic_secret_id, dynamic_secret_key, dynamic_secret_name, dynamic_secret_type, eks_access_key_id, eks_assume_role, eks_cluster_ca_certificate, eks_cluster_endpoint, eks_cluster_name, eks_region, eks_secret_access_key, enable_admin_rotation, externally_provided_user, failure_message, fixed_user_only, gcp_key_algo, gcp_service_account_email, gcp_service_account_key, gcp_token_lifetime, gcp_token_scope, gcp_token_type, github_app_id, github_app_private_key, github_base_url, github_installation_id, github_installation_token_permissions, github_installation_token_repositories, github_installation_token_repositories_ids, github_repository_path, gke_cluster_ca_certificate, gke_cluster_endpoint, gke_cluster_name, gke_service_account_key, gke_service_account_name, groups, hanadb_creation_statements, hanadb_revocation_statements, host_name, host_port, is_fixed_user, item_targets_assoc, k8s_bearer_token, k8s_cluster_ca_certificate, k8s_cluster_endpoint, k8s_namespace, k8s_service_account, last_admin_rotation, ldap_audience, ldap_bind_dn, ldap_bind_password, ldap_certificate, ldap_token_expiration, ldap_url, ldap_user_attr, ldap_user_dn, mongodb_atlas_api_private_key, mongodb_atlas_api_public_key, mongodb_atlas_project_id, mongodb_custom_data, mongodb_db_name, mongodb_default_auth_db, mongodb_host_port, mongodb_is_atlas, mongodb_password, mongodb_roles, mongodb_uri_connection, mongodb_uri_options, mongodb_username, mssql_creation_statements, mssql_revocation_statements, mysql_creation_statements, oracle_creation_statements, password, password_length, password_policy, payload, postgres_creation_statements, postgres_revocation_statements, rabbitmq_server_password, rabbitmq_server_uri, rabbitmq_server_user, rabbitmq_user_conf_permission, rabbitmq_user_read_permission, rabbitmq_user_tags, rabbitmq_user_vhost, rabbitmq_user_write_permission, redshift_creation_statements, revoke_sync_url, rotate_sync_url, scopes, secure_remote_access_details, session_extension_warn_interval_min, sf_account, sf_user_role, sf_warehouse_name, should_stop, ssl_connection_certificate, ssl_connection_mode, tags, timeout_seconds, use_gw_cloud_identity, user_name, user_principal_name, user_ttl, username_length, username_policy, venafi_allow_subdomains, venafi_allowed_domains, venafi_api_key, venafi_auto_generated_folder, venafi_base_url, venafi_root_first_in_chain, venafi_sign_using_akeyless_pki, venafi_signer_key_name, venafi_store_private_key, venafi_tpp_password, venafi_tpp_username, venafi_use_tpp, venafi_zone, warn_before_user_expiration_min].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/gateway_create_producer_custom.rb

@@ -15,9 +15,15 @@ require 'time'
 
 module Akeyless
   class GatewayCreateProducerCustom
+    # Define rotation interval in days
+    attr_accessor :admin_rotation_interval_days
+
     # URL of an endpoint that implements /sync/create method, for example https://webhook.example.com/sync/create
     attr_accessor :create_sync_url
 
+    # Should admin credentials be rotated
+    attr_accessor :enable_admin_rotation
+
     # Producer name
     attr_accessor :name
 
@@ -51,7 +57,9 @@ module Akeyless
     # Attribute mapping from ruby-style variable name to JSON key.
     def self.attribute_map
       {
+        :'admin_rotation_interval_days' => :'admin_rotation_interval_days',
         :'create_sync_url' => :'create-sync-url',
+        :'enable_admin_rotation' => :'enable_admin_rotation',
         :'name' => :'name',
         :'payload' => :'payload',
         :'producer_encryption_key_name' => :'producer-encryption-key-name',
@@ -73,7 +81,9 @@ module Akeyless
     # Attribute type mapping.
     def self.openapi_types
       {
+        :'admin_rotation_interval_days' => :'Integer',
         :'create_sync_url' => :'String',
+        :'enable_admin_rotation' => :'Boolean',
         :'name' => :'String',
         :'payload' => :'String',
         :'producer_encryption_key_name' => :'String',
@@ -108,10 +118,20 @@ module Akeyless
         h[k.to_sym] = v
       }
 
+      if attributes.key?(:'admin_rotation_interval_days')
+        self.admin_rotation_interval_days = attributes[:'admin_rotation_interval_days']
+      end
+
       if attributes.key?(:'create_sync_url')
         self.create_sync_url = attributes[:'create_sync_url']
       end
 
+      if attributes.key?(:'enable_admin_rotation')
+        self.enable_admin_rotation = attributes[:'enable_admin_rotation']
+      else
+        self.enable_admin_rotation = false
+      end
+
       if attributes.key?(:'name')
         self.name = attributes[:'name']
       end
@@ -192,7 +212,9 @@ module Akeyless
     def ==(o)
       return true if self.equal?(o)
       self.class == o.class &&
+          admin_rotation_interval_days == o.admin_rotation_interval_days &&
           create_sync_url == o.create_sync_url &&
+          enable_admin_rotation == o.enable_admin_rotation &&
           name == o.name &&
           payload == o.payload &&
           producer_encryption_key_name == o.producer_encryption_key_name &&
@@ -214,7 +236,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [create_sync_url, name, payload, producer_encryption_key_name, revoke_sync_url, rotate_sync_url, tags, timeout_sec, token, uid_token, user_ttl].hash
+      [admin_rotation_interval_days, create_sync_url, enable_admin_rotation, name, payload, producer_encryption_key_name, revoke_sync_url, rotate_sync_url, tags, timeout_sec, token, uid_token, user_ttl].hash
     end
 
     # Builds the object from hash