akeyless 3.1.1 → 3.2.0

data/docs/DSProducerDetails.md

@@ -4,15 +4,18 @@
 
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
+| **access_token_manager_id** | **String** |  | [optional] |
 | **active** | **Boolean** |  | [optional] |
 | **admin_name** | **String** |  | [optional] |
 | **admin_pwd** | **String** |  | [optional] |
 | **admin_rotation_interval_days** | **Integer** |  | [optional] |
+| **administrative_port** | **String** |  | [optional] |
 | **artifactory_admin_apikey** | **String** |  | [optional] |
 | **artifactory_admin_username** | **String** |  | [optional] |
 | **artifactory_base_url** | **String** |  | [optional] |
 | **artifactory_token_audience** | **String** |  | [optional] |
 | **artifactory_token_scope** | **String** |  | [optional] |
+| **authorization_port** | **String** |  | [optional] |
 | **aws_access_key_id** | **String** |  | [optional] |
 | **aws_access_mode** | **String** |  | [optional] |
 | **aws_region** | **String** |  | [optional] |
@@ -45,6 +48,7 @@
 | **chef_server_url** | **String** |  | [optional] |
 | **chef_server_username** | **String** |  | [optional] |
 | **chef_skip_ssl** | **Boolean** |  | [optional] |
+| **client_authentication_type** | **String** |  | [optional] |
 | **create_sync_url** | **String** |  | [optional] |
 | **db_host_name** | **String** |  | [optional] |
 | **db_isolation_level** | **String** |  | [optional] |
@@ -52,6 +56,8 @@
 | **db_max_open_conns** | **String** |  | [optional] |
 | **db_name** | **String** |  | [optional] |
 | **db_port** | **String** |  | [optional] |
+| **db_private_key** | **String** | (Optional) Private Key in PEM format | [optional] |
+| **db_private_key_passphrase** | **String** |  | [optional] |
 | **db_pwd** | **String** |  | [optional] |
 | **db_server_certificates** | **String** | (Optional) DBServerCertificates defines the set of root certificate authorities that clients use when verifying server certificates. If DBServerCertificates is empty, TLS uses the host's root CA set. | [optional] |
 | **db_server_name** | **String** | (Optional) ServerName is used to verify the hostname on the returned certificates unless InsecureSkipVerify is given. It is also included in the client's handshake to support virtual hosting unless it is an IP address. | [optional] |
@@ -69,6 +75,7 @@
 | **eks_region** | **String** |  | [optional] |
 | **eks_secret_access_key** | **String** |  | [optional] |
 | **enable_admin_rotation** | **Boolean** |  | [optional] |
+| **enforce_replay_prevention** | **Boolean** | relevant for PRIVATE_KEY_JWT client authentication type | [optional] |
 | **externally_provided_user** | **String** |  | [optional] |
 | **failure_message** | **String** |  | [optional] |
 | **fixed_user_only** | **String** |  | [optional] |
@@ -94,6 +101,7 @@
 | **gke_cluster_name** | **String** |  | [optional] |
 | **gke_service_account_key** | **String** |  | [optional] |
 | **gke_service_account_name** | **String** |  | [optional] |
+| **grant_types** | **Array<String>** |  | [optional] |
 | **groups** | **String** |  | [optional] |
 | **hanadb_creation_statements** | **String** |  | [optional] |
 | **hanadb_revocation_statements** | **String** |  | [optional] |
@@ -101,12 +109,21 @@
 | **host_port** | **String** |  | [optional] |
 | **implementation_type** | **String** |  | [optional] |
 | **is_fixed_user** | **String** |  | [optional] |
+| **issuer** | **String** | relevant for CLIENT_TLS_CERTIFICATE client authentication type | [optional] |
 | **item_targets_assoc** | [**Array<ItemTargetAssociation>**](ItemTargetAssociation.md) |  | [optional] |
+| **jwks** | **String** |  | [optional] |
+| **jwks_url** | **String** |  | [optional] |
+| **k8s_allowed_namespaces** | **String** | comma-separated list of allowed namespaces. Can hold just * which signifies that any namespace is allowed | [optional] |
 | **k8s_bearer_token** | **String** |  | [optional] |
 | **k8s_cluster_ca_certificate** | **String** |  | [optional] |
 | **k8s_cluster_endpoint** | **String** |  | [optional] |
+| **k8s_dynamic_mode** | **Boolean** | when native k8s is in dynamic mode, user can define allowed namespaces, K8sServiceAccount doesn't exist from the start and will only be created at time of getting dynamic secret value By default dynamic mode is false and producer behaves like it did before | [optional] |
 | **k8s_namespace** | **String** |  | [optional] |
+| **k8s_role_name** | **String** | Name of the pre-existing Role or ClusterRole to bind a generated service account to. | [optional] |
+| **k8s_role_type** | **String** |  | [optional] |
 | **k8s_service_account** | **String** |  | [optional] |
+| **k8s_temp_role_binding_definition** | **Array<Integer>** | Yaml/Json definition of temporary role binding that will be created and deleted when TTL is due. Must have as subject name of Service Account specified in K8sServiceAccount field | [optional] |
+| **k8s_temp_role_definition** | **Array<Integer>** | Yaml/Json definition of temporary role that will be created and deleted when TTL is due | [optional] |
 | **last_admin_rotation** | **Integer** |  | [optional] |
 | **ldap_audience** | **String** |  | [optional] |
 | **ldap_bind_dn** | **String** |  | [optional] |
@@ -138,8 +155,10 @@
 | **password_length** | **Integer** |  | [optional] |
 | **password_policy** | **String** |  | [optional] |
 | **payload** | **String** |  | [optional] |
+| **ping_url** | **String** |  | [optional] |
 | **postgres_creation_statements** | **String** |  | [optional] |
 | **postgres_revocation_statements** | **String** |  | [optional] |
+| **privileged_user** | **String** |  | [optional] |
 | **rabbitmq_server_password** | **String** |  | [optional] |
 | **rabbitmq_server_uri** | **String** |  | [optional] |
 | **rabbitmq_server_user** | **String** |  | [optional] |
@@ -148,7 +167,9 @@
 | **rabbitmq_user_tags** | **String** |  | [optional] |
 | **rabbitmq_user_vhost** | **String** |  | [optional] |
 | **rabbitmq_user_write_permission** | **String** |  | [optional] |
+| **redirect_uris** | **Array<String>** |  | [optional] |
 | **redshift_creation_statements** | **String** |  | [optional] |
+| **restricted_scopes** | **Array<String>** |  | [optional] |
 | **revoke_sync_url** | **String** |  | [optional] |
 | **rotate_sync_url** | **String** |  | [optional] |
 | **scopes** | **Array<String>** |  | [optional] |
@@ -158,12 +179,15 @@
 | **sf_user_role** | **String** | generated  users info | [optional] |
 | **sf_warehouse_name** | **String** |  | [optional] |
 | **should_stop** | **String** | TODO delete this after migration | [optional] |
+| **signing_algorithm** | **String** |  | [optional] |
 | **ssl_connection_certificate** | **String** | (Optional) SSLConnectionCertificate defines the certificate for SSL connection. Must be base64 certificate loaded by UI using file loader field | [optional] |
 | **ssl_connection_mode** | **Boolean** | (Optional) SSLConnectionMode defines if SSL mode will be used to connect to DB | [optional] |
+| **subject_dn** | **String** |  | [optional] |
 | **tags** | **Array<String>** |  | [optional] |
 | **timeout_seconds** | **Integer** |  | [optional] |
 | **use_gw_cloud_identity** | **Boolean** |  | [optional] |
 | **user_name** | **String** |  | [optional] |
+| **user_password** | **String** |  | [optional] |
 | **user_principal_name** | **String** |  | [optional] |
 | **user_ttl** | **String** |  | [optional] |
 | **username_length** | **Integer** |  | [optional] |
@@ -189,15 +213,18 @@
 require 'akeyless'
 
 instance = Akeyless::DSProducerDetails.new(
+  access_token_manager_id: null,
   active: null,
   admin_name: null,
   admin_pwd: null,
   admin_rotation_interval_days: null,
+  administrative_port: null,
   artifactory_admin_apikey: null,
   artifactory_admin_username: null,
   artifactory_base_url: null,
   artifactory_token_audience: null,
   artifactory_token_scope: null,
+  authorization_port: null,
   aws_access_key_id: null,
   aws_access_mode: null,
   aws_region: null,
@@ -230,6 +257,7 @@ instance = Akeyless::DSProducerDetails.new(
   chef_server_url: null,
   chef_server_username: null,
   chef_skip_ssl: null,
+  client_authentication_type: null,
   create_sync_url: null,
   db_host_name: null,
   db_isolation_level: null,
@@ -237,6 +265,8 @@ instance = Akeyless::DSProducerDetails.new(
   db_max_open_conns: null,
   db_name: null,
   db_port: null,
+  db_private_key: null,
+  db_private_key_passphrase: null,
   db_pwd: null,
   db_server_certificates: null,
   db_server_name: null,
@@ -254,6 +284,7 @@ instance = Akeyless::DSProducerDetails.new(
   eks_region: null,
   eks_secret_access_key: null,
   enable_admin_rotation: null,
+  enforce_replay_prevention: null,
   externally_provided_user: null,
   failure_message: null,
   fixed_user_only: null,
@@ -279,6 +310,7 @@ instance = Akeyless::DSProducerDetails.new(
   gke_cluster_name: null,
   gke_service_account_key: null,
   gke_service_account_name: null,
+  grant_types: null,
   groups: null,
   hanadb_creation_statements: null,
   hanadb_revocation_statements: null,
@@ -286,12 +318,21 @@ instance = Akeyless::DSProducerDetails.new(
   host_port: null,
   implementation_type: null,
   is_fixed_user: null,
+  issuer: null,
   item_targets_assoc: null,
+  jwks: null,
+  jwks_url: null,
+  k8s_allowed_namespaces: null,
   k8s_bearer_token: null,
   k8s_cluster_ca_certificate: null,
   k8s_cluster_endpoint: null,
+  k8s_dynamic_mode: null,
   k8s_namespace: null,
+  k8s_role_name: null,
+  k8s_role_type: null,
   k8s_service_account: null,
+  k8s_temp_role_binding_definition: null,
+  k8s_temp_role_definition: null,
   last_admin_rotation: null,
   ldap_audience: null,
   ldap_bind_dn: null,
@@ -323,8 +364,10 @@ instance = Akeyless::DSProducerDetails.new(
   password_length: null,
   password_policy: null,
   payload: null,
+  ping_url: null,
   postgres_creation_statements: null,
   postgres_revocation_statements: null,
+  privileged_user: null,
   rabbitmq_server_password: null,
   rabbitmq_server_uri: null,
   rabbitmq_server_user: null,
@@ -333,7 +376,9 @@ instance = Akeyless::DSProducerDetails.new(
   rabbitmq_user_tags: null,
   rabbitmq_user_vhost: null,
   rabbitmq_user_write_permission: null,
+  redirect_uris: null,
   redshift_creation_statements: null,
+  restricted_scopes: null,
   revoke_sync_url: null,
   rotate_sync_url: null,
   scopes: null,
@@ -343,12 +388,15 @@ instance = Akeyless::DSProducerDetails.new(
   sf_user_role: null,
   sf_warehouse_name: null,
   should_stop: null,
+  signing_algorithm: null,
   ssl_connection_certificate: null,
   ssl_connection_mode: null,
+  subject_dn: null,
   tags: null,
   timeout_seconds: null,
   use_gw_cloud_identity: null,
   user_name: null,
+  user_password: null,
   user_principal_name: null,
   user_ttl: null,
   username_length: null,

data/docs/DecryptGPG.md

@@ -0,0 +1,34 @@
+# Akeyless::DecryptGPG
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **ciphertext** | **String** | Ciphertext to be decrypted in base64 encoded format |  |
+| **display_id** | **String** | The display id of the key to use in the decryption process | [optional] |
+| **item_id** | **Integer** | The item id of the key to use in the decryption process | [optional] |
+| **json** | **Boolean** | Set output format to JSON | [optional] |
+| **key_name** | **String** | The name of the key to use in the decryption process |  |
+| **output_format** | **String** | If specified, the output will be formatted accordingly. options: [base64] | [optional] |
+| **passphrase** | **String** | Passphrase that was used to generate the key | [optional] |
+| **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
+| **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::DecryptGPG.new(
+  ciphertext: null,
+  display_id: null,
+  item_id: null,
+  json: null,
+  key_name: null,
+  output_format: null,
+  passphrase: null,
+  token: null,
+  uid_token: null
+)
+```
+

data/docs/DecryptGPGOutput.md

@@ -0,0 +1,18 @@
+# Akeyless::DecryptGPGOutput
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **result** | **String** |  | [optional] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::DecryptGPGOutput.new(
+  result: null
+)
+```
+

data/docs/EncryptGPG.md

@@ -0,0 +1,32 @@
+# Akeyless::EncryptGPG
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **display_id** | **String** | The display id of the key to use in the encryption process | [optional] |
+| **input_format** | **String** | If specified, the plaintext input is assumed to be formatted accordingly. Current supported options: [base64] | [optional] |
+| **item_id** | **Integer** | The item id of the key to use in the encryption process | [optional] |
+| **json** | **Boolean** | Set output format to JSON | [optional] |
+| **key_name** | **String** | The name of the key to use in the encryption process |  |
+| **plaintext** | **String** | Data to be encrypted |  |
+| **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
+| **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::EncryptGPG.new(
+  display_id: null,
+  input_format: null,
+  item_id: null,
+  json: null,
+  key_name: null,
+  plaintext: null,
+  token: null,
+  uid_token: null
+)
+```
+

data/docs/EncryptGPGOutput.md

@@ -0,0 +1,18 @@
+# Akeyless::EncryptGPGOutput
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **result** | **String** |  | [optional] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::EncryptGPGOutput.new(
+  result: null
+)
+```
+

data/docs/GatewayCreateProducerPing.md

@@ -0,0 +1,66 @@
+# Akeyless::GatewayCreateProducerPing
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **delete_protection** | **String** | Protection from accidental deletion of this item | [optional] |
+| **json** | **Boolean** | Set output format to JSON | [optional] |
+| **name** | **String** | Producer name |  |
+| **ping_administrative_port** | **String** | Ping Federate administrative port | [optional][default to '9999'] |
+| **ping_atm_id** | **String** | Set a specific Access Token Management (ATM) instance for the created OAuth Client by providing the ATM Id. If no explicit value is given, the default pingfederate server ATM will be set. | [optional] |
+| **ping_authorization_port** | **String** | Ping Federate authorization port | [optional][default to '9031'] |
+| **ping_cert_subject_dn** | **String** | The subject DN of the client certificate. If no explicit value is given, the producer will create CA certificate and matched client certificate and return it as value. Used in conjunction with ping-issuer-dn (relevant for CLIENT_TLS_CERTIFICATE authentication method) | [optional] |
+| **ping_client_authentication_type** | **String** | OAuth Client Authentication Type [CLIENT_SECRET, PRIVATE_KEY_JWT, CLIENT_TLS_CERTIFICATE] | [optional][default to 'CLIENT_SECRET'] |
+| **ping_enforce_replay_prevention** | **String** | Determines whether PingFederate requires a unique signed JWT from the client for each action (relevant for PRIVATE_KEY_JWT authentication method) | [optional] |
+| **ping_grant_types** | **Array<String>** | List of OAuth client grant types [IMPLICIT, AUTHORIZATION_CODE, CLIENT_CREDENTIALS, TOKEN_EXCHANGE, REFRESH_TOKEN, ASSERTION_GRANTS, PASSWORD, RESOURCE_OWNER_CREDENTIALS]. If no explicit value is given, AUTHORIZATION_CODE will be selected as default. | [optional] |
+| **ping_issuer_dn** | **String** | Issuer DN of trusted CA certificate that imported into Ping Federate server. You may select \\\"Trust Any\\\" to trust all the existing issuers in Ping Federate server. Used in conjunction with ping-cert-subject-dn (relevant for CLIENT_TLS_CERTIFICATE authentication method) | [optional] |
+| **ping_jwks** | **String** | Base64-encoded JSON Web Key Set (JWKS). If no explicit value is given, the producer will create JWKs and matched signed JWT (Sign Algo: RS256) and return it as value (relevant for PRIVATE_KEY_JWT authentication method) | [optional] |
+| **ping_jwks_url** | **String** | The URL of the JSON Web Key Set (JWKS). If no explicit value is given, the producer will create JWKs and matched signed JWT and return it as value (relevant for PRIVATE_KEY_JWT authentication method) | [optional] |
+| **ping_password** | **String** | Ping Federate privileged user password | [optional] |
+| **ping_privileged_user** | **String** | Ping Federate privileged user | [optional] |
+| **ping_redirect_uris** | **Array<String>** | List of URIs to which the OAuth authorization server may redirect the resource owner's user agent after authorization is obtained. At least one redirection URI is required for the AUTHORIZATION_CODE and IMPLICIT grant types. | [optional] |
+| **ping_restricted_scopes** | **Array<String>** | Limit the OAuth client to specific scopes list | [optional] |
+| **ping_signing_algo** | **String** | The signing algorithm that the client must use to sign its request objects [RS256,RS384,RS512,ES256,ES384,ES512,PS256,PS384,PS512] If no explicit value is given, the client can use any of the supported signing algorithms (relevant for PRIVATE_KEY_JWT authentication method) | [optional] |
+| **ping_url** | **String** | Ping URL | [optional] |
+| **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
+| **tags** | **Array<String>** | List of the tags attached to this secret | [optional] |
+| **target_name** | **String** | Target name | [optional] |
+| **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
+| **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
+| **user_ttl** | **String** | The time from dynamic secret creation to expiration. | [optional][default to '60m'] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::GatewayCreateProducerPing.new(
+  delete_protection: null,
+  json: null,
+  name: null,
+  ping_administrative_port: null,
+  ping_atm_id: null,
+  ping_authorization_port: null,
+  ping_cert_subject_dn: null,
+  ping_client_authentication_type: null,
+  ping_enforce_replay_prevention: null,
+  ping_grant_types: null,
+  ping_issuer_dn: null,
+  ping_jwks: null,
+  ping_jwks_url: null,
+  ping_password: null,
+  ping_privileged_user: null,
+  ping_redirect_uris: null,
+  ping_restricted_scopes: null,
+  ping_signing_algo: null,
+  ping_url: null,
+  producer_encryption_key_name: null,
+  tags: null,
+  target_name: null,
+  token: null,
+  uid_token: null,
+  user_ttl: null
+)
+```
+

data/docs/GatewayCreateProducerPingOutput.md

@@ -0,0 +1,18 @@
+# Akeyless::GatewayCreateProducerPingOutput
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **producer_details** | [**DSProducerDetails**](DSProducerDetails.md) |  | [optional] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::GatewayCreateProducerPingOutput.new(
+  producer_details: null
+)
+```
+

data/docs/GatewayCreateProducerSnowflake.md

@@ -11,6 +11,8 @@
 | **delete_protection** | **String** | Protection from accidental deletion of this item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional] |
 | **name** | **String** | Producer name |  |
+| **private_key** | **String** | RSA Private key (base64 encoded) | [optional] |
+| **private_key_passphrase** | **String** | The Private key passphrase | [optional] |
 | **role** | **String** | User role | [optional] |
 | **tags** | **Array<String>** | List of the tags attached to this secret | [optional] |
 | **target_name** | **String** | Target name | [optional] |
@@ -32,6 +34,8 @@ instance = Akeyless::GatewayCreateProducerSnowflake.new(
   delete_protection: null,
   json: null,
   name: null,
+  private_key: null,
+  private_key_passphrase: null,
   role: null,
   tags: null,
   target_name: null,

data/docs/GatewayUpdateItem.md

@@ -10,12 +10,13 @@
 | **auto_rotate** | **String** | Whether to automatically rotate every --rotation-interval days, or disable existing automatic rotation | [optional] |
 | **custom_payload** | **String** |  | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this item | [optional] |
+| **description** | **String** | Description of the object | [optional][default to 'default_metadata'] |
 | **gcp_key** | **String** | Base64-encoded service account private key text | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional] |
 | **keep_prev_version** | **String** |  | [optional] |
 | **key** | **String** | The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used) | [optional] |
 | **name** | **String** | Item name |  |
-| **new_metadata** | **String** | New item metadata | [optional][default to 'default_metadata'] |
+| **new_metadata** | **String** | Deprecated - use description | [optional][default to 'default_metadata'] |
 | **new_name** | **String** | New item name | [optional] |
 | **new_version** | **Boolean** | Deprecated | [optional] |
 | **rm_tag** | **Array<String>** | List of the existent tags that will be removed from this item | [optional] |
@@ -40,6 +41,7 @@ instance = Akeyless::GatewayUpdateItem.new(
   auto_rotate: null,
   custom_payload: null,
   delete_protection: null,
+  description: null,
   gcp_key: null,
   json: null,
   keep_prev_version: null,

data/docs/GatewayUpdateProducerPing.md

@@ -0,0 +1,68 @@
+# Akeyless::GatewayUpdateProducerPing
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **delete_protection** | **String** | Protection from accidental deletion of this item | [optional] |
+| **json** | **Boolean** | Set output format to JSON | [optional] |
+| **name** | **String** | Producer name |  |
+| **new_name** | **String** | Producer New name | [optional] |
+| **ping_administrative_port** | **String** | Ping Federate administrative port | [optional][default to '9999'] |
+| **ping_atm_id** | **String** | Set a specific Access Token Management (ATM) instance for the created OAuth Client by providing the ATM Id. If no explicit value is given, the default pingfederate server ATM will be set. | [optional] |
+| **ping_authorization_port** | **String** | Ping Federate authorization port | [optional][default to '9031'] |
+| **ping_cert_subject_dn** | **String** | The subject DN of the client certificate. If no explicit value is given, the producer will create CA certificate and matched client certificate and return it as value. Used in conjunction with ping-issuer-dn (relevant for CLIENT_TLS_CERTIFICATE authentication method) | [optional] |
+| **ping_client_authentication_type** | **String** | OAuth Client Authentication Type [CLIENT_SECRET, PRIVATE_KEY_JWT, CLIENT_TLS_CERTIFICATE] | [optional][default to 'CLIENT_SECRET'] |
+| **ping_enforce_replay_prevention** | **String** | Determines whether PingFederate requires a unique signed JWT from the client for each action (relevant for PRIVATE_KEY_JWT authentication method) | [optional] |
+| **ping_grant_types** | **Array<String>** | List of OAuth client grant types [IMPLICIT, AUTHORIZATION_CODE, CLIENT_CREDENTIALS, TOKEN_EXCHANGE, REFRESH_TOKEN, ASSERTION_GRANTS, PASSWORD, RESOURCE_OWNER_CREDENTIALS]. If no explicit value is given, AUTHORIZATION_CODE will be selected as default. | [optional] |
+| **ping_issuer_dn** | **String** | Issuer DN of trusted CA certificate that imported into Ping Federate server. You may select \\\"Trust Any\\\" to trust all the existing issuers in Ping Federate server. Used in conjunction with ping-cert-subject-dn (relevant for CLIENT_TLS_CERTIFICATE authentication method) | [optional] |
+| **ping_jwks** | **String** | Base64-encoded JSON Web Key Set (JWKS). If no explicit value is given, the producer will create JWKs and matched signed JWT (Sign Algo: RS256) and return it as value (relevant for PRIVATE_KEY_JWT authentication method) | [optional] |
+| **ping_jwks_url** | **String** | The URL of the JSON Web Key Set (JWKS). If no explicit value is given, the producer will create JWKs and matched signed JWT and return it as value (relevant for PRIVATE_KEY_JWT authentication method) | [optional] |
+| **ping_password** | **String** | Ping Federate privileged user password | [optional] |
+| **ping_privileged_user** | **String** | Ping Federate privileged user | [optional] |
+| **ping_redirect_uris** | **Array<String>** | List of URIs to which the OAuth authorization server may redirect the resource owner's user agent after authorization is obtained. At least one redirection URI is required for the AUTHORIZATION_CODE and IMPLICIT grant types. | [optional] |
+| **ping_restricted_scopes** | **Array<String>** | Limit the OAuth client to specific scopes list | [optional] |
+| **ping_signing_algo** | **String** | The signing algorithm that the client must use to sign its request objects [RS256,RS384,RS512,ES256,ES384,ES512,PS256,PS384,PS512] If no explicit value is given, the client can use any of the supported signing algorithms (relevant for PRIVATE_KEY_JWT authentication method) | [optional] |
+| **ping_url** | **String** | Ping URL | [optional] |
+| **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
+| **tags** | **Array<String>** | List of the tags attached to this secret | [optional] |
+| **target_name** | **String** | Target name | [optional] |
+| **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
+| **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
+| **user_ttl** | **String** | The time from dynamic secret creation to expiration. | [optional][default to '60m'] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::GatewayUpdateProducerPing.new(
+  delete_protection: null,
+  json: null,
+  name: null,
+  new_name: null,
+  ping_administrative_port: null,
+  ping_atm_id: null,
+  ping_authorization_port: null,
+  ping_cert_subject_dn: null,
+  ping_client_authentication_type: null,
+  ping_enforce_replay_prevention: null,
+  ping_grant_types: null,
+  ping_issuer_dn: null,
+  ping_jwks: null,
+  ping_jwks_url: null,
+  ping_password: null,
+  ping_privileged_user: null,
+  ping_redirect_uris: null,
+  ping_restricted_scopes: null,
+  ping_signing_algo: null,
+  ping_url: null,
+  producer_encryption_key_name: null,
+  tags: null,
+  target_name: null,
+  token: null,
+  uid_token: null,
+  user_ttl: null
+)
+```
+

data/docs/GatewayUpdateProducerPingOutput.md

@@ -0,0 +1,18 @@
+# Akeyless::GatewayUpdateProducerPingOutput
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **producer_details** | [**DSProducerDetails**](DSProducerDetails.md) |  | [optional] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::GatewayUpdateProducerPingOutput.new(
+  producer_details: null
+)
+```
+

data/docs/GatewayUpdateProducerSnowflake.md

@@ -12,6 +12,8 @@
 | **json** | **Boolean** | Set output format to JSON | [optional] |
 | **name** | **String** | Producer name |  |
 | **new_name** | **String** | Producer name | [optional] |
+| **private_key** | **String** | RSA Private key (base64 encoded) | [optional] |
+| **private_key_passphrase** | **String** | The Private key passphrase | [optional] |
 | **role** | **String** | User role | [optional] |
 | **tags** | **Array<String>** | List of the tags attached to this secret | [optional] |
 | **target_name** | **String** | Target name | [optional] |
@@ -34,6 +36,8 @@ instance = Akeyless::GatewayUpdateProducerSnowflake.new(
   json: null,
   name: null,
   new_name: null,
+  private_key: null,
+  private_key_passphrase: null,
   role: null,
   tags: null,
   target_name: null,

data/docs/GenCustomerFragment.md

@@ -4,8 +4,9 @@
 
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
-| **description** | **String** | The Customer Fragment Description | [optional] |
+| **description** | **String** | Description of the object | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional] |
+| **metadata** | **String** | Deprecated - use description | [optional] |
 
 ## Example
 
@@ -14,7 +15,8 @@ require 'akeyless'
 
 instance = Akeyless::GenCustomerFragment.new(
   description: null,
-  json: null
+  json: null,
+  metadata: null
 )
 ```
 

data/docs/GetKubeExecCreds.md

@@ -4,16 +4,17 @@
 
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
-| **alt_names** | **String** | The Subject Alternative Names to be included in the PKI certificate (in a comma-delimited list) | [optional] |
+| **alt_names** | **String** | The Subject Alternative Names to be included in the PKI certificate (in a comma-separated list) (if CSR is supplied this flag is ignored and any DNS.* names are taken from it) | [optional] |
 | **cert_issuer_name** | **String** | The name of the PKI certificate issuer |  |
-| **common_name** | **String** | The common name to be included in the PKI certificate | [optional] |
+| **common_name** | **String** | The common name to be included in the PKI certificate (if CSR is supplied this flag is ignored and the CSR subject CN is taken) | [optional] |
+| **csr_data_base64** | **String** | Certificate Signing Request contents encoded in base64 to generate the certificate with | [optional] |
 | **extended_key_usage** | **String** | A comma-separated list of extended key usage requests which will be used for certificate issuance. Supported values: 'clientauth', 'serverauth'. | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional] |
 | **key_data_base64** | **String** | PKI key file contents. If this option is used, the certificate will be printed to stdout | [optional] |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
 | **ttl** | **Integer** | Updated certificate lifetime in seconds (must be less than the Certificate Issuer default TTL) | [optional] |
 | **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
-| **uri_sans** | **String** | The URI Subject Alternative Names to be included in the PKI certificate (in a comma-delimited list) | [optional] |
+| **uri_sans** | **String** | The URI Subject Alternative Names to be included in the PKI certificate (in a comma-separated list) (if CSR is supplied this flag is ignored and any URI.* names are taken from it) | [optional] |
 
 ## Example
 
@@ -24,6 +25,7 @@ instance = Akeyless::GetKubeExecCreds.new(
   alt_names: null,
   cert_issuer_name: null,
   common_name: null,
+  csr_data_base64: null,
   extended_key_usage: null,
   json: null,
   key_data_base64: null,

data/docs/GetPKICertificate.md

@@ -4,16 +4,17 @@
 
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
-| **alt_names** | **String** | The Subject Alternative Names to be included in the PKI certificate (in a comma-delimited list) | [optional] |
+| **alt_names** | **String** | The Subject Alternative Names to be included in the PKI certificate (in a comma-separated list) (if CSR is supplied this flag is ignored and any DNS.* names are taken from it) | [optional] |
 | **cert_issuer_name** | **String** | The name of the PKI certificate issuer |  |
-| **common_name** | **String** | The common name to be included in the PKI certificate | [optional] |
+| **common_name** | **String** | The common name to be included in the PKI certificate (if CSR is supplied this flag is ignored and the CSR subject CN is taken) | [optional] |
+| **csr_data_base64** | **String** | Certificate Signing Request contents encoded in base64 to generate the certificate with | [optional] |
 | **extended_key_usage** | **String** | A comma-separated list of extended key usage requests which will be used for certificate issuance. Supported values: 'clientauth', 'serverauth'. | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional] |
 | **key_data_base64** | **String** | PKI key file contents. If this option is used, the certificate will be printed to stdout | [optional] |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
 | **ttl** | **Integer** | Updated certificate lifetime in seconds (must be less than the Certificate Issuer default TTL) | [optional] |
 | **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
-| **uri_sans** | **String** | The URI Subject Alternative Names to be included in the PKI certificate (in a comma-delimited list) | [optional] |
+| **uri_sans** | **String** | The URI Subject Alternative Names to be included in the PKI certificate (in a comma-separated list) (if CSR is supplied this flag is ignored and any URI.* names are taken from it) | [optional] |
 
 ## Example
 
@@ -24,6 +25,7 @@ instance = Akeyless::GetPKICertificate.new(
   alt_names: null,
   cert_issuer_name: null,
   common_name: null,
+  csr_data_base64: null,
   extended_key_usage: null,
   json: null,
   key_data_base64: null,

data/docs/SecureRemoteAccess.md

@@ -24,6 +24,7 @@
 | **native** | **Boolean** |  | [optional] |
 | **rdp_user** | **String** |  | [optional] |
 | **region** | **String** |  | [optional] |
+| **rotate_after_disconnect** | **Boolean** |  | [optional] |
 | **schema** | **String** |  | [optional] |
 | **ssh_password** | **Boolean** |  | [optional] |
 | **ssh_private_key** | **Boolean** |  | [optional] |
@@ -58,6 +59,7 @@ instance = Akeyless::SecureRemoteAccess.new(
   native: null,
   rdp_user: null,
   region: null,
+  rotate_after_disconnect: null,
   schema: null,
   ssh_password: null,
   ssh_private_key: null,