akeyless 2.17.0 → 2.18.0

data/lib/akeyless/models/account_general_settings.rb

@@ -18,10 +18,13 @@ module Akeyless
   class AccountGeneralSettings
     attr_accessor :data_protection_section
 
+    attr_accessor :password_policy
+
     # Attribute mapping from ruby-style variable name to JSON key.
     def self.attribute_map
       {
-        :'data_protection_section' => :'data_protection_section'
+        :'data_protection_section' => :'data_protection_section',
+        :'password_policy' => :'password_policy'
       }
     end
 
@@ -33,7 +36,8 @@ module Akeyless
     # Attribute type mapping.
     def self.openapi_types
       {
-        :'data_protection_section' => :'DataProtectionSection'
+        :'data_protection_section' => :'DataProtectionSection',
+        :'password_policy' => :'PasswordPolicyInfo'
       }
     end
 
@@ -61,6 +65,10 @@ module Akeyless
       if attributes.key?(:'data_protection_section')
         self.data_protection_section = attributes[:'data_protection_section']
       end
+
+      if attributes.key?(:'password_policy')
+        self.password_policy = attributes[:'password_policy']
+      end
     end
 
     # Show invalid properties with the reasons. Usually used together with valid?
@@ -81,7 +89,8 @@ module Akeyless
     def ==(o)
       return true if self.equal?(o)
       self.class == o.class &&
-          data_protection_section == o.data_protection_section
+          data_protection_section == o.data_protection_section &&
+          password_policy == o.password_policy
     end
 
     # @see the `==` method
@@ -93,7 +102,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [data_protection_section].hash
+      [data_protection_section, password_policy].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/create_auth_method_k8_s.rb

@@ -37,7 +37,7 @@ module Akeyless
     # if true: enforce role-association must include sub claims
     attr_accessor :force_sub_claims
 
-    # If this flag is set to true, there is no need to manually provide a public key for the Kubernetes Auth Method, and instead, a key pair, will be generated as part of the command and the private part of the key will be returned (the private key is required for the K8S Auth Config in the Akeyless Gateway)
+    # Automatically generate key-pair for K8S configuration. If set to false, a public key needs to be provided
     attr_accessor :gen_key
 
     # A CIDR whitelist with the GW IPs that the access is restricted to
@@ -49,7 +49,7 @@ module Akeyless
     # Auth Method name
     attr_accessor :name
 
-    # Base64-encoded public key text for K8S authentication method is required [RSA2048]
+    # Base64-encoded or PEM formatted public key data for K8S authentication method is required [RSA2048]
     attr_accessor :public_key
 
     # Authentication token (see `/auth` and `/configure`)

data/lib/akeyless/models/create_auth_method_ldap.rb

@@ -25,6 +25,9 @@ module Akeyless
     # if true: enforce role-association must include sub claims
     attr_accessor :force_sub_claims
 
+    # Automatically generate key-pair for LDAP configuration. If set to false, a public key needs to be provided
+    attr_accessor :gen_key
+
     # A CIDR whitelist with the GW IPs that the access is restricted to
     attr_accessor :gw_bound_ips
 
@@ -34,7 +37,7 @@ module Akeyless
     # Auth Method name
     attr_accessor :name
 
-    # A public key generated for LDAP authentication method on Akeyless in base64 format [RSA2048]
+    # A public key generated for LDAP authentication method on Akeyless in base64 or PEM format [RSA2048]
     attr_accessor :public_key_data
 
     # Authentication token (see `/auth` and `/configure`)
@@ -52,6 +55,7 @@ module Akeyless
         :'access_expires' => :'access-expires',
         :'bound_ips' => :'bound-ips',
         :'force_sub_claims' => :'force-sub-claims',
+        :'gen_key' => :'gen-key',
         :'gw_bound_ips' => :'gw-bound-ips',
         :'jwt_ttl' => :'jwt-ttl',
         :'name' => :'name',
@@ -73,6 +77,7 @@ module Akeyless
         :'access_expires' => :'Integer',
         :'bound_ips' => :'Array<String>',
         :'force_sub_claims' => :'Boolean',
+        :'gen_key' => :'String',
         :'gw_bound_ips' => :'Array<String>',
         :'jwt_ttl' => :'Integer',
         :'name' => :'String',
@@ -120,6 +125,12 @@ module Akeyless
         self.force_sub_claims = attributes[:'force_sub_claims']
       end
 
+      if attributes.key?(:'gen_key')
+        self.gen_key = attributes[:'gen_key']
+      else
+        self.gen_key = 'true'
+      end
+
       if attributes.key?(:'gw_bound_ips')
         if (value = attributes[:'gw_bound_ips']).is_a?(Array)
           self.gw_bound_ips = value
@@ -177,6 +188,7 @@ module Akeyless
           access_expires == o.access_expires &&
           bound_ips == o.bound_ips &&
           force_sub_claims == o.force_sub_claims &&
+          gen_key == o.gen_key &&
           gw_bound_ips == o.gw_bound_ips &&
           jwt_ttl == o.jwt_ttl &&
           name == o.name &&
@@ -195,7 +207,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [access_expires, bound_ips, force_sub_claims, gw_bound_ips, jwt_ttl, name, public_key_data, token, uid_token, unique_identifier].hash
+      [access_expires, bound_ips, force_sub_claims, gen_key, gw_bound_ips, jwt_ttl, name, public_key_data, token, uid_token, unique_identifier].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/create_auth_method_ldap_output.rb

@@ -17,10 +17,13 @@ module Akeyless
   class CreateAuthMethodLDAPOutput
     attr_accessor :access_id
 
+    attr_accessor :prv_key
+
     # Attribute mapping from ruby-style variable name to JSON key.
     def self.attribute_map
       {
-        :'access_id' => :'access_id'
+        :'access_id' => :'access_id',
+        :'prv_key' => :'prv_key'
       }
     end
 
@@ -32,7 +35,8 @@ module Akeyless
     # Attribute type mapping.
     def self.openapi_types
       {
-        :'access_id' => :'String'
+        :'access_id' => :'String',
+        :'prv_key' => :'String'
       }
     end
 
@@ -60,6 +64,10 @@ module Akeyless
       if attributes.key?(:'access_id')
         self.access_id = attributes[:'access_id']
       end
+
+      if attributes.key?(:'prv_key')
+        self.prv_key = attributes[:'prv_key']
+      end
     end
 
     # Show invalid properties with the reasons. Usually used together with valid?
@@ -80,7 +88,8 @@ module Akeyless
     def ==(o)
       return true if self.equal?(o)
       self.class == o.class &&
-          access_id == o.access_id
+          access_id == o.access_id &&
+          prv_key == o.prv_key
     end
 
     # @see the `==` method
@@ -92,7 +101,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [access_id].hash
+      [access_id, prv_key].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/create_pki_cert_issuer.rb

@@ -33,7 +33,7 @@ module Akeyless
     # If set, certificates will be flagged for code signing use
     attr_accessor :code_signing_flag
 
-    # A comma-separated list of the country that will be set in the issued certificate
+    # A comma-separated list of countries that will be set in the issued certificate
     attr_accessor :country
 
     # Protection from accidental deletion of this item
@@ -42,7 +42,7 @@ module Akeyless
     # key-usage
     attr_accessor :key_usage
 
-    # A comma-separated list of the locality that will be set in the issued certificate
+    # A comma-separated list of localities that will be set in the issued certificate
     attr_accessor :locality
 
     # A metadata about the issuer
@@ -63,10 +63,10 @@ module Akeyless
     # A comma-separated list of organizations (O) that will be set in the issued certificate
     attr_accessor :organizations
 
-    # A comma-separated list of the postal code that will be set in the issued certificate
+    # A comma-separated list of postal codes that will be set in the issued certificate
     attr_accessor :postal_code
 
-    # A comma-separated list of the province that will be set in the issued certificate
+    # A comma-separated list of provinces that will be set in the issued certificate
     attr_accessor :province
 
     # If set, certificates will be flagged for server auth use
@@ -75,7 +75,7 @@ module Akeyless
     # A key to sign the certificate with
     attr_accessor :signer_key_name
 
-    # A comma-separated list of the street address that will be set in the issued certificate
+    # A comma-separated list of street addresses that will be set in the issued certificate
     attr_accessor :street_address
 
     # List of the tags attached to this key

data/lib/akeyless/models/create_ssh_cert_issuer.rb

@@ -54,7 +54,7 @@ module Akeyless
     # Authentication token (see `/auth` and `/configure`)
     attr_accessor :token
 
-    # he requested Time To Live for the certificate, in seconds
+    # The requested Time To Live for the certificate, in seconds
     attr_accessor :ttl
 
     # The universal identity token, Required only for universal_identity authentication

data/lib/akeyless/models/gateway_create_k8_s_auth_config.rb

@@ -25,7 +25,7 @@ module Akeyless
     # Config encryption key
     attr_accessor :config_encryption_key_name
 
-    # The CA Cert (in PEM format) to use to call into the kubernetes API server
+    # The CA Certificate (base64 encoded) to use to call into the kubernetes API server
     attr_accessor :k8s_ca_cert
 
     # The URL of the kubernetes API server
@@ -43,7 +43,7 @@ module Akeyless
     # The cluster id as define in rancher (relevant for \"rancher\" only)
     attr_accessor :rancher_cluster_id
 
-    # The private key (in base64 encoded of the PEM format) associated with the public key defined in the Kubernetes auth
+    # The private key (base64 encoded) associated with the public key defined in the Kubernetes auth
     attr_accessor :signing_key
 
     # Authentication token (see `/auth` and `/configure`)

data/lib/akeyless/models/gateway_revoke_tmp_users.rb

@@ -16,12 +16,15 @@ require 'time'
 module Akeyless
   # gatewayRevokeTmpUsers is a command that revoke producer tmp user
   class GatewayRevokeTmpUsers
-    # Host
+    # Deprecated: has no effect
     attr_accessor :host
 
     # Producer Name
     attr_accessor :name
 
+    # Revoke All Temp Creds
+    attr_accessor :revoke_all
+
     # Soft Delete
     attr_accessor :soft_delete
 
@@ -39,6 +42,7 @@ module Akeyless
       {
         :'host' => :'host',
         :'name' => :'name',
+        :'revoke_all' => :'revoke-all',
         :'soft_delete' => :'soft-delete',
         :'tmp_creds_id' => :'tmp-creds-id',
         :'token' => :'token',
@@ -56,6 +60,7 @@ module Akeyless
       {
         :'host' => :'String',
         :'name' => :'String',
+        :'revoke_all' => :'Boolean',
         :'soft_delete' => :'Boolean',
         :'tmp_creds_id' => :'String',
         :'token' => :'String',
@@ -92,12 +97,18 @@ module Akeyless
         self.name = attributes[:'name']
       end
 
+      if attributes.key?(:'revoke_all')
+        self.revoke_all = attributes[:'revoke_all']
+      end
+
       if attributes.key?(:'soft_delete')
         self.soft_delete = attributes[:'soft_delete']
       end
 
       if attributes.key?(:'tmp_creds_id')
         self.tmp_creds_id = attributes[:'tmp_creds_id']
+      else
+        self.tmp_creds_id = 'demo_default_tmp_creds_id_for_sdk_bc'
       end
 
       if attributes.key?(:'token')
@@ -139,6 +150,7 @@ module Akeyless
       self.class == o.class &&
           host == o.host &&
           name == o.name &&
+          revoke_all == o.revoke_all &&
           soft_delete == o.soft_delete &&
           tmp_creds_id == o.tmp_creds_id &&
           token == o.token &&
@@ -154,7 +166,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [host, name, soft_delete, tmp_creds_id, token, uid_token].hash
+      [host, name, revoke_all, soft_delete, tmp_creds_id, token, uid_token].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/gateway_update_k8_s_auth_config.rb

@@ -25,7 +25,7 @@ module Akeyless
     # Config encryption key
     attr_accessor :config_encryption_key_name
 
-    # The CA Cert (in PEM format) to use to call into the kubernetes API server
+    # The CA Certificate (base64 encoded) to use to call into the kubernetes API server
     attr_accessor :k8s_ca_cert
 
     # The URL of the kubernetes API server
@@ -46,7 +46,7 @@ module Akeyless
     # The cluster id as define in rancher (relevant for \"rancher\" only)
     attr_accessor :rancher_cluster_id
 
-    # The private key (in base64 encoded of the PEM format) associated with the public key defined in the Kubernetes auth
+    # The private key (base64 encoded) associated with the public key defined in the Kubernetes auth
     attr_accessor :signing_key
 
     # Authentication token (see `/auth` and `/configure`)

data/lib/akeyless/models/gateway_update_ldap_auth_config.rb

@@ -34,7 +34,7 @@ module Akeyless
     # Group Filter
     attr_accessor :group_filter
 
-    # The CA Cert (in PEM format) to use to call into the ldap API server
+    # LDAP CA Certificate (base64 encoded)
     attr_accessor :ldap_ca_cert
 
     # Enable Ldap
@@ -46,7 +46,7 @@ module Akeyless
     # Ldap Anonymous Search
     attr_accessor :ldap_anonymous_search
 
-    # The private key (in PEM format) associated with the public key defined in the Ldap auth
+    # The private key (base64 encoded), associated with the public key defined in the Ldap auth
     attr_accessor :signing_key_data
 
     # Authentication token (see `/auth` and `/configure`)

data/lib/akeyless/models/item.rb

@@ -72,6 +72,8 @@ module Akeyless
 
     attr_accessor :rotation_interval
 
+    attr_accessor :shared_by
+
     attr_accessor :target_versions
 
     attr_accessor :with_customer_fragment
@@ -107,6 +109,7 @@ module Akeyless
         :'protection_key_type' => :'protection_key_type',
         :'public_value' => :'public_value',
         :'rotation_interval' => :'rotation_interval',
+        :'shared_by' => :'shared_by',
         :'target_versions' => :'target_versions',
         :'with_customer_fragment' => :'with_customer_fragment'
       }
@@ -148,6 +151,7 @@ module Akeyless
         :'protection_key_type' => :'String',
         :'public_value' => :'String',
         :'rotation_interval' => :'Integer',
+        :'shared_by' => :'RuleAssigner',
         :'target_versions' => :'Array<TargetItemVersion>',
         :'with_customer_fragment' => :'Boolean'
       }
@@ -294,6 +298,10 @@ module Akeyless
         self.rotation_interval = attributes[:'rotation_interval']
       end
 
+      if attributes.key?(:'shared_by')
+        self.shared_by = attributes[:'shared_by']
+      end
+
       if attributes.key?(:'target_versions')
         if (value = attributes[:'target_versions']).is_a?(Array)
           self.target_versions = value
@@ -351,6 +359,7 @@ module Akeyless
           protection_key_type == o.protection_key_type &&
           public_value == o.public_value &&
           rotation_interval == o.rotation_interval &&
+          shared_by == o.shared_by &&
           target_versions == o.target_versions &&
           with_customer_fragment == o.with_customer_fragment
     end
@@ -364,7 +373,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [auto_rotate, cert_issuer_signer_key_name, certificate_issue_details, certificates, client_permissions, customer_fragment_id, delete_protection, deletion_date, display_id, is_enabled, item_accessibility, item_general_info, item_id, item_metadata, item_name, item_size, item_state, item_sub_type, item_tags, item_targets_assoc, item_type, item_versions, last_version, next_rotation_date, protection_key_name, protection_key_type, public_value, rotation_interval, target_versions, with_customer_fragment].hash
+      [auto_rotate, cert_issuer_signer_key_name, certificate_issue_details, certificates, client_permissions, customer_fragment_id, delete_protection, deletion_date, display_id, is_enabled, item_accessibility, item_general_info, item_id, item_metadata, item_name, item_size, item_state, item_sub_type, item_tags, item_targets_assoc, item_type, item_versions, last_version, next_rotation_date, protection_key_name, protection_key_type, public_value, rotation_interval, shared_by, target_versions, with_customer_fragment].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/kubernetes_access_rules.rb

@@ -29,6 +29,9 @@ module Akeyless
     # A list of service account names that the authentication is restricted to.
     attr_accessor :bound_service_account_names
 
+    # Generate public/private key (the private key is required for the K8S Auth Config in the Akeyless Gateway)
+    attr_accessor :gen_key_pair
+
     # The public key value of the Kubernetes auth method configuration in the Akeyless Gateway.
     attr_accessor :pub_key
 
@@ -40,6 +43,7 @@ module Akeyless
         :'bound_namespaces' => :'bound_namespaces',
         :'bound_pod_names' => :'bound_pod_names',
         :'bound_service_account_names' => :'bound_service_account_names',
+        :'gen_key_pair' => :'gen_key_pair',
         :'pub_key' => :'pub_key'
       }
     end
@@ -57,6 +61,7 @@ module Akeyless
         :'bound_namespaces' => :'Array<String>',
         :'bound_pod_names' => :'Array<String>',
         :'bound_service_account_names' => :'Array<String>',
+        :'gen_key_pair' => :'String',
         :'pub_key' => :'String'
       }
     end
@@ -108,6 +113,10 @@ module Akeyless
         end
       end
 
+      if attributes.key?(:'gen_key_pair')
+        self.gen_key_pair = attributes[:'gen_key_pair']
+      end
+
       if attributes.key?(:'pub_key')
         self.pub_key = attributes[:'pub_key']
       end
@@ -136,6 +145,7 @@ module Akeyless
           bound_namespaces == o.bound_namespaces &&
           bound_pod_names == o.bound_pod_names &&
           bound_service_account_names == o.bound_service_account_names &&
+          gen_key_pair == o.gen_key_pair &&
           pub_key == o.pub_key
     end
 
@@ -148,7 +158,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [alg, audience, bound_namespaces, bound_pod_names, bound_service_account_names, pub_key].hash
+      [alg, audience, bound_namespaces, bound_pod_names, bound_service_account_names, gen_key_pair, pub_key].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/ldap_access_rules.rb

@@ -17,6 +17,9 @@ module Akeyless
   class LDAPAccessRules
     attr_accessor :alg
 
+    # Generate public/private key (the private key is required for the LDAP Auth Config in the Akeyless Gateway)
+    attr_accessor :gen_key_pair
+
     # The public key value of LDAP.
     attr_accessor :key
 
@@ -27,6 +30,7 @@ module Akeyless
     def self.attribute_map
       {
         :'alg' => :'alg',
+        :'gen_key_pair' => :'gen_key_pair',
         :'key' => :'key',
         :'unique_identifier' => :'unique_identifier'
       }
@@ -41,6 +45,7 @@ module Akeyless
     def self.openapi_types
       {
         :'alg' => :'String',
+        :'gen_key_pair' => :'String',
         :'key' => :'String',
         :'unique_identifier' => :'String'
       }
@@ -71,6 +76,10 @@ module Akeyless
         self.alg = attributes[:'alg']
       end
 
+      if attributes.key?(:'gen_key_pair')
+        self.gen_key_pair = attributes[:'gen_key_pair']
+      end
+
       if attributes.key?(:'key')
         self.key = attributes[:'key']
       end
@@ -99,6 +108,7 @@ module Akeyless
       return true if self.equal?(o)
       self.class == o.class &&
           alg == o.alg &&
+          gen_key_pair == o.gen_key_pair &&
           key == o.key &&
           unique_identifier == o.unique_identifier
     end
@@ -112,7 +122,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [alg, key, unique_identifier].hash
+      [alg, gen_key_pair, key, unique_identifier].hash
     end
 
     # Builds the object from hash