akeyless 3.5.4 → 3.6.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/README.md +16 -2
- data/docs/AssocTargetItem.md +8 -0
- data/docs/Auth.md +4 -0
- data/docs/AuthMethod.md +2 -0
- data/docs/AuthMethodAccessInfo.md +2 -0
- data/docs/CertificateChainInfo.md +4 -0
- data/docs/CertificateVersionInfo.md +22 -0
- data/docs/Configure.md +5 -1
- data/docs/Connect.md +1 -1
- data/docs/CreateAuthMethod.md +2 -0
- data/docs/CreateAuthMethodAWSIAM.md +2 -0
- data/docs/CreateAuthMethodAzureAD.md +3 -1
- data/docs/CreateAuthMethodCert.md +2 -0
- data/docs/CreateAuthMethodEmail.md +2 -0
- data/docs/CreateAuthMethodGCP.md +2 -0
- data/docs/CreateAuthMethodHuawei.md +2 -0
- data/docs/CreateAuthMethodK8S.md +2 -0
- data/docs/CreateAuthMethodLDAP.md +2 -0
- data/docs/CreateAuthMethodOAuth2.md +2 -0
- data/docs/CreateAuthMethodOCI.md +40 -0
- data/docs/CreateAuthMethodOCIOutput.md +18 -0
- data/docs/CreateAuthMethodOIDC.md +2 -0
- data/docs/CreateAuthMethodSAML.md +2 -0
- data/docs/CreateAuthMethodUniversalIdentity.md +2 -0
- data/docs/CreateEventForwarder.md +1 -1
- data/docs/CreateLinkedTarget.md +2 -0
- data/docs/CreateRole.md +4 -0
- data/docs/CreateRotatedSecret.md +7 -1
- data/docs/CreateSSHCertIssuer.md +4 -4
- data/docs/CreateSecret.md +2 -0
- data/docs/GatewayCreateMigration.md +2 -0
- data/docs/GatewayCreateProducerCassandra.md +4 -0
- data/docs/GatewayUpdateItem.md +2 -0
- data/docs/GatewayUpdateMigration.md +2 -0
- data/docs/GatewayUpdateProducerCassandra.md +4 -0
- data/docs/GenerateCsr.md +1 -1
- data/docs/GwClusterIdentity.md +2 -0
- data/docs/ImportPasswords.md +3 -1
- data/docs/ImportPasswordsOutput.md +3 -1
- data/docs/ItemVersion.md +2 -0
- data/docs/OCIAccessRules.md +20 -0
- data/docs/ProvisionCertificate.md +28 -0
- data/docs/ProvisionCertificateOutput.md +24 -0
- data/docs/RenewCertificate.md +28 -0
- data/docs/RenewCertificateOutput.md +28 -0
- data/docs/SecureRemoteAccess.md +2 -0
- data/docs/ServerInventoryPayload.md +2 -0
- data/docs/SetRoleRule.md +1 -1
- data/docs/SignDataWithClassicKey.md +2 -0
- data/docs/SignEcDsa.md +5 -1
- data/docs/SignPKCS1.md +9 -1
- data/docs/SignPKCS1Output.md +1 -1
- data/docs/SignRsaSsaPss.md +5 -1
- data/docs/StaticSecretDetailsInfo.md +2 -0
- data/docs/TargetItemVersion.md +2 -0
- data/docs/UpdateAuthMethod.md +2 -0
- data/docs/UpdateAuthMethodAWSIAM.md +2 -0
- data/docs/UpdateAuthMethodAzureAD.md +3 -1
- data/docs/UpdateAuthMethodCert.md +2 -0
- data/docs/UpdateAuthMethodGCP.md +2 -0
- data/docs/UpdateAuthMethodK8S.md +2 -0
- data/docs/UpdateAuthMethodLDAP.md +2 -0
- data/docs/UpdateAuthMethodOAuth2.md +2 -0
- data/docs/UpdateAuthMethodOCI.md +42 -0
- data/docs/UpdateAuthMethodOCIOutput.md +18 -0
- data/docs/UpdateAuthMethodOIDC.md +2 -0
- data/docs/UpdateAuthMethodSAML.md +2 -0
- data/docs/UpdateAuthMethodUniversalIdentity.md +2 -0
- data/docs/UpdateCertificateValue.md +2 -0
- data/docs/UpdateItem.md +6 -0
- data/docs/UpdateLinkedTarget.md +2 -0
- data/docs/UpdateRole.md +4 -0
- data/docs/UpdateSSHCertIssuer.md +3 -3
- data/docs/UpdateSecretVal.md +2 -0
- data/docs/V2Api.md +264 -9
- data/docs/VerifyEcDsa.md +5 -1
- data/docs/VerifyPKCS1.md +9 -1
- data/docs/VerifyRsaSsaPss.md +5 -1
- data/lib/akeyless/api/v2_api.rb +274 -7
- data/lib/akeyless/models/assoc_target_item.rb +43 -1
- data/lib/akeyless/models/auth.rb +25 -1
- data/lib/akeyless/models/auth_method.rb +10 -1
- data/lib/akeyless/models/auth_method_access_info.rb +10 -1
- data/lib/akeyless/models/certificate_chain_info.rb +19 -1
- data/lib/akeyless/models/certificate_version_info.rb +232 -0
- data/lib/akeyless/models/configure.rb +28 -4
- data/lib/akeyless/models/connect.rb +1 -1
- data/lib/akeyless/models/create_auth_method.rb +11 -1
- data/lib/akeyless/models/create_auth_method_awsiam.rb +11 -1
- data/lib/akeyless/models/create_auth_method_azure_ad.rb +12 -2
- data/lib/akeyless/models/create_auth_method_cert.rb +11 -1
- data/lib/akeyless/models/create_auth_method_email.rb +11 -1
- data/lib/akeyless/models/create_auth_method_gcp.rb +11 -1
- data/lib/akeyless/models/create_auth_method_huawei.rb +11 -1
- data/lib/akeyless/models/create_auth_method_k8_s.rb +11 -1
- data/lib/akeyless/models/create_auth_method_ldap.rb +11 -1
- data/lib/akeyless/models/create_auth_method_o_auth2.rb +11 -1
- data/lib/akeyless/models/create_auth_method_oci.rb +359 -0
- data/lib/akeyless/models/create_auth_method_oci_output.rb +214 -0
- data/lib/akeyless/models/create_auth_method_oidc.rb +11 -1
- data/lib/akeyless/models/create_auth_method_saml.rb +11 -1
- data/lib/akeyless/models/create_auth_method_universal_identity.rb +11 -1
- data/lib/akeyless/models/create_event_forwarder.rb +1 -1
- data/lib/akeyless/models/create_linked_target.rb +11 -1
- data/lib/akeyless/models/create_role.rb +21 -1
- data/lib/akeyless/models/create_rotated_secret.rb +35 -2
- data/lib/akeyless/models/create_secret.rb +11 -1
- data/lib/akeyless/models/create_ssh_cert_issuer.rb +9 -9
- data/lib/akeyless/models/gateway_create_migration.rb +11 -1
- data/lib/akeyless/models/gateway_create_producer_cassandra.rb +23 -1
- data/lib/akeyless/models/gateway_update_item.rb +11 -1
- data/lib/akeyless/models/gateway_update_migration.rb +11 -1
- data/lib/akeyless/models/gateway_update_producer_cassandra.rb +23 -1
- data/lib/akeyless/models/generate_csr.rb +1 -1
- data/lib/akeyless/models/gw_cluster_identity.rb +10 -1
- data/lib/akeyless/models/import_passwords.rb +13 -4
- data/lib/akeyless/models/import_passwords_output.rb +13 -4
- data/lib/akeyless/models/item_version.rb +10 -1
- data/lib/akeyless/models/oci_access_rules.rb +226 -0
- data/lib/akeyless/models/provision_certificate.rb +275 -0
- data/lib/akeyless/models/provision_certificate_output.rb +243 -0
- data/lib/akeyless/models/renew_certificate.rb +267 -0
- data/lib/akeyless/models/renew_certificate_output.rb +259 -0
- data/lib/akeyless/models/secure_remote_access.rb +12 -1
- data/lib/akeyless/models/server_inventory_payload.rb +12 -1
- data/lib/akeyless/models/set_role_rule.rb +1 -1
- data/lib/akeyless/models/sign_data_with_classic_key.rb +13 -1
- data/lib/akeyless/models/sign_ec_dsa.rb +24 -4
- data/lib/akeyless/models/sign_pkcs1.rb +44 -4
- data/lib/akeyless/models/sign_pkcs1_output.rb +2 -4
- data/lib/akeyless/models/sign_rsa_ssa_pss.rb +24 -4
- data/lib/akeyless/models/static_secret_details_info.rb +10 -1
- data/lib/akeyless/models/target_item_version.rb +10 -1
- data/lib/akeyless/models/update_auth_method.rb +11 -1
- data/lib/akeyless/models/update_auth_method_awsiam.rb +11 -1
- data/lib/akeyless/models/update_auth_method_azure_ad.rb +12 -2
- data/lib/akeyless/models/update_auth_method_cert.rb +11 -1
- data/lib/akeyless/models/update_auth_method_gcp.rb +11 -1
- data/lib/akeyless/models/update_auth_method_k8_s.rb +11 -1
- data/lib/akeyless/models/update_auth_method_ldap.rb +11 -1
- data/lib/akeyless/models/update_auth_method_o_auth2.rb +11 -1
- data/lib/akeyless/models/update_auth_method_oci.rb +369 -0
- data/lib/akeyless/models/update_auth_method_oci_output.rb +214 -0
- data/lib/akeyless/models/update_auth_method_oidc.rb +11 -1
- data/lib/akeyless/models/update_auth_method_saml.rb +11 -1
- data/lib/akeyless/models/update_auth_method_universal_identity.rb +11 -1
- data/lib/akeyless/models/update_certificate_value.rb +11 -1
- data/lib/akeyless/models/update_item.rb +32 -1
- data/lib/akeyless/models/update_linked_target.rb +11 -1
- data/lib/akeyless/models/update_role.rb +21 -1
- data/lib/akeyless/models/update_secret_val.rb +11 -1
- data/lib/akeyless/models/update_ssh_cert_issuer.rb +8 -8
- data/lib/akeyless/models/verify_ec_dsa.rb +24 -4
- data/lib/akeyless/models/verify_pkcs1.rb +44 -4
- data/lib/akeyless/models/verify_rsa_ssa_pss.rb +24 -4
- data/lib/akeyless/version.rb +1 -1
- data/lib/akeyless.rb +10 -0
- data/spec/models/certificate_version_info_spec.rb +48 -0
- data/spec/models/create_auth_method_oci_output_spec.rb +36 -0
- data/spec/models/create_auth_method_oci_spec.rb +102 -0
- data/spec/models/oci_access_rules_spec.rb +42 -0
- data/spec/models/provision_certificate_output_spec.rb +54 -0
- data/spec/models/provision_certificate_spec.rb +66 -0
- data/spec/models/renew_certificate_output_spec.rb +66 -0
- data/spec/models/renew_certificate_spec.rb +66 -0
- data/spec/models/update_auth_method_oci_output_spec.rb +36 -0
- data/spec/models/update_auth_method_oci_spec.rb +108 -0
- metadata +43 -3
@@ -0,0 +1,214 @@
|
|
1
|
+
=begin
|
2
|
+
#Akeyless API
|
3
|
+
|
4
|
+
#The purpose of this application is to provide access to Akeyless API.
|
5
|
+
|
6
|
+
The version of the OpenAPI document: 2.0
|
7
|
+
Contact: support@akeyless.io
|
8
|
+
Generated by: https://openapi-generator.tech
|
9
|
+
OpenAPI Generator version: 7.3.0-SNAPSHOT
|
10
|
+
|
11
|
+
=end
|
12
|
+
|
13
|
+
require 'date'
|
14
|
+
require 'time'
|
15
|
+
|
16
|
+
module Akeyless
|
17
|
+
class CreateAuthMethodOCIOutput
|
18
|
+
attr_accessor :access_id
|
19
|
+
|
20
|
+
# Attribute mapping from ruby-style variable name to JSON key.
|
21
|
+
def self.attribute_map
|
22
|
+
{
|
23
|
+
:'access_id' => :'access_id'
|
24
|
+
}
|
25
|
+
end
|
26
|
+
|
27
|
+
# Returns all the JSON keys this model knows about
|
28
|
+
def self.acceptable_attributes
|
29
|
+
attribute_map.values
|
30
|
+
end
|
31
|
+
|
32
|
+
# Attribute type mapping.
|
33
|
+
def self.openapi_types
|
34
|
+
{
|
35
|
+
:'access_id' => :'String'
|
36
|
+
}
|
37
|
+
end
|
38
|
+
|
39
|
+
# List of attributes with nullable: true
|
40
|
+
def self.openapi_nullable
|
41
|
+
Set.new([
|
42
|
+
])
|
43
|
+
end
|
44
|
+
|
45
|
+
# Initializes the object
|
46
|
+
# @param [Hash] attributes Model attributes in the form of hash
|
47
|
+
def initialize(attributes = {})
|
48
|
+
if (!attributes.is_a?(Hash))
|
49
|
+
fail ArgumentError, "The input argument (attributes) must be a hash in `Akeyless::CreateAuthMethodOCIOutput` initialize method"
|
50
|
+
end
|
51
|
+
|
52
|
+
# check to see if the attribute exists and convert string to symbol for hash key
|
53
|
+
attributes = attributes.each_with_object({}) { |(k, v), h|
|
54
|
+
if (!self.class.attribute_map.key?(k.to_sym))
|
55
|
+
fail ArgumentError, "`#{k}` is not a valid attribute in `Akeyless::CreateAuthMethodOCIOutput`. Please check the name to make sure it's valid. List of attributes: " + self.class.attribute_map.keys.inspect
|
56
|
+
end
|
57
|
+
h[k.to_sym] = v
|
58
|
+
}
|
59
|
+
|
60
|
+
if attributes.key?(:'access_id')
|
61
|
+
self.access_id = attributes[:'access_id']
|
62
|
+
end
|
63
|
+
end
|
64
|
+
|
65
|
+
# Show invalid properties with the reasons. Usually used together with valid?
|
66
|
+
# @return Array for valid properties with the reasons
|
67
|
+
def list_invalid_properties
|
68
|
+
warn '[DEPRECATED] the `list_invalid_properties` method is obsolete'
|
69
|
+
invalid_properties = Array.new
|
70
|
+
invalid_properties
|
71
|
+
end
|
72
|
+
|
73
|
+
# Check to see if the all the properties in the model are valid
|
74
|
+
# @return true if the model is valid
|
75
|
+
def valid?
|
76
|
+
warn '[DEPRECATED] the `valid?` method is obsolete'
|
77
|
+
true
|
78
|
+
end
|
79
|
+
|
80
|
+
# Checks equality by comparing each attribute.
|
81
|
+
# @param [Object] Object to be compared
|
82
|
+
def ==(o)
|
83
|
+
return true if self.equal?(o)
|
84
|
+
self.class == o.class &&
|
85
|
+
access_id == o.access_id
|
86
|
+
end
|
87
|
+
|
88
|
+
# @see the `==` method
|
89
|
+
# @param [Object] Object to be compared
|
90
|
+
def eql?(o)
|
91
|
+
self == o
|
92
|
+
end
|
93
|
+
|
94
|
+
# Calculates hash code according to all attributes.
|
95
|
+
# @return [Integer] Hash code
|
96
|
+
def hash
|
97
|
+
[access_id].hash
|
98
|
+
end
|
99
|
+
|
100
|
+
# Builds the object from hash
|
101
|
+
# @param [Hash] attributes Model attributes in the form of hash
|
102
|
+
# @return [Object] Returns the model itself
|
103
|
+
def self.build_from_hash(attributes)
|
104
|
+
return nil unless attributes.is_a?(Hash)
|
105
|
+
attributes = attributes.transform_keys(&:to_sym)
|
106
|
+
transformed_hash = {}
|
107
|
+
openapi_types.each_pair do |key, type|
|
108
|
+
if attributes.key?(attribute_map[key]) && attributes[attribute_map[key]].nil?
|
109
|
+
transformed_hash["#{key}"] = nil
|
110
|
+
elsif type =~ /\AArray<(.*)>/i
|
111
|
+
# check to ensure the input is an array given that the attribute
|
112
|
+
# is documented as an array but the input is not
|
113
|
+
if attributes[attribute_map[key]].is_a?(Array)
|
114
|
+
transformed_hash["#{key}"] = attributes[attribute_map[key]].map { |v| _deserialize($1, v) }
|
115
|
+
end
|
116
|
+
elsif !attributes[attribute_map[key]].nil?
|
117
|
+
transformed_hash["#{key}"] = _deserialize(type, attributes[attribute_map[key]])
|
118
|
+
end
|
119
|
+
end
|
120
|
+
new(transformed_hash)
|
121
|
+
end
|
122
|
+
|
123
|
+
# Deserializes the data based on type
|
124
|
+
# @param string type Data type
|
125
|
+
# @param string value Value to be deserialized
|
126
|
+
# @return [Object] Deserialized data
|
127
|
+
def self._deserialize(type, value)
|
128
|
+
case type.to_sym
|
129
|
+
when :Time
|
130
|
+
Time.parse(value)
|
131
|
+
when :Date
|
132
|
+
Date.parse(value)
|
133
|
+
when :String
|
134
|
+
value.to_s
|
135
|
+
when :Integer
|
136
|
+
value.to_i
|
137
|
+
when :Float
|
138
|
+
value.to_f
|
139
|
+
when :Boolean
|
140
|
+
if value.to_s =~ /\A(true|t|yes|y|1)\z/i
|
141
|
+
true
|
142
|
+
else
|
143
|
+
false
|
144
|
+
end
|
145
|
+
when :Object
|
146
|
+
# generic object (usually a Hash), return directly
|
147
|
+
value
|
148
|
+
when /\AArray<(?<inner_type>.+)>\z/
|
149
|
+
inner_type = Regexp.last_match[:inner_type]
|
150
|
+
value.map { |v| _deserialize(inner_type, v) }
|
151
|
+
when /\AHash<(?<k_type>.+?), (?<v_type>.+)>\z/
|
152
|
+
k_type = Regexp.last_match[:k_type]
|
153
|
+
v_type = Regexp.last_match[:v_type]
|
154
|
+
{}.tap do |hash|
|
155
|
+
value.each do |k, v|
|
156
|
+
hash[_deserialize(k_type, k)] = _deserialize(v_type, v)
|
157
|
+
end
|
158
|
+
end
|
159
|
+
else # model
|
160
|
+
# models (e.g. Pet) or oneOf
|
161
|
+
klass = Akeyless.const_get(type)
|
162
|
+
klass.respond_to?(:openapi_any_of) || klass.respond_to?(:openapi_one_of) ? klass.build(value) : klass.build_from_hash(value)
|
163
|
+
end
|
164
|
+
end
|
165
|
+
|
166
|
+
# Returns the string representation of the object
|
167
|
+
# @return [String] String presentation of the object
|
168
|
+
def to_s
|
169
|
+
to_hash.to_s
|
170
|
+
end
|
171
|
+
|
172
|
+
# to_body is an alias to to_hash (backward compatibility)
|
173
|
+
# @return [Hash] Returns the object in the form of hash
|
174
|
+
def to_body
|
175
|
+
to_hash
|
176
|
+
end
|
177
|
+
|
178
|
+
# Returns the object in the form of hash
|
179
|
+
# @return [Hash] Returns the object in the form of hash
|
180
|
+
def to_hash
|
181
|
+
hash = {}
|
182
|
+
self.class.attribute_map.each_pair do |attr, param|
|
183
|
+
value = self.send(attr)
|
184
|
+
if value.nil?
|
185
|
+
is_nullable = self.class.openapi_nullable.include?(attr)
|
186
|
+
next if !is_nullable || (is_nullable && !instance_variable_defined?(:"@#{attr}"))
|
187
|
+
end
|
188
|
+
|
189
|
+
hash[param] = _to_hash(value)
|
190
|
+
end
|
191
|
+
hash
|
192
|
+
end
|
193
|
+
|
194
|
+
# Outputs non-array value in the form of hash
|
195
|
+
# For object, use to_hash. Otherwise, just return the value
|
196
|
+
# @param [Object] value Any valid value
|
197
|
+
# @return [Hash] Returns the value in the form of hash
|
198
|
+
def _to_hash(value)
|
199
|
+
if value.is_a?(Array)
|
200
|
+
value.compact.map { |v| _to_hash(v) }
|
201
|
+
elsif value.is_a?(Hash)
|
202
|
+
{}.tap do |hash|
|
203
|
+
value.each { |k, v| hash[k] = _to_hash(v) }
|
204
|
+
end
|
205
|
+
elsif value.respond_to? :to_hash
|
206
|
+
value.to_hash
|
207
|
+
else
|
208
|
+
value
|
209
|
+
end
|
210
|
+
end
|
211
|
+
|
212
|
+
end
|
213
|
+
|
214
|
+
end
|
@@ -34,6 +34,9 @@ module Akeyless
|
|
34
34
|
# Client Secret
|
35
35
|
attr_accessor :client_secret
|
36
36
|
|
37
|
+
# Auth Method description
|
38
|
+
attr_accessor :description
|
39
|
+
|
37
40
|
# if true: enforce role-association must include sub claims
|
38
41
|
attr_accessor :force_sub_claims
|
39
42
|
|
@@ -79,6 +82,7 @@ module Akeyless
|
|
79
82
|
:'bound_ips' => :'bound-ips',
|
80
83
|
:'client_id' => :'client-id',
|
81
84
|
:'client_secret' => :'client-secret',
|
85
|
+
:'description' => :'description',
|
82
86
|
:'force_sub_claims' => :'force-sub-claims',
|
83
87
|
:'gw_bound_ips' => :'gw-bound-ips',
|
84
88
|
:'issuer' => :'issuer',
|
@@ -108,6 +112,7 @@ module Akeyless
|
|
108
112
|
:'bound_ips' => :'Array<String>',
|
109
113
|
:'client_id' => :'String',
|
110
114
|
:'client_secret' => :'String',
|
115
|
+
:'description' => :'String',
|
111
116
|
:'force_sub_claims' => :'Boolean',
|
112
117
|
:'gw_bound_ips' => :'Array<String>',
|
113
118
|
:'issuer' => :'String',
|
@@ -174,6 +179,10 @@ module Akeyless
|
|
174
179
|
self.client_secret = attributes[:'client_secret']
|
175
180
|
end
|
176
181
|
|
182
|
+
if attributes.key?(:'description')
|
183
|
+
self.description = attributes[:'description']
|
184
|
+
end
|
185
|
+
|
177
186
|
if attributes.key?(:'force_sub_claims')
|
178
187
|
self.force_sub_claims = attributes[:'force_sub_claims']
|
179
188
|
end
|
@@ -273,6 +282,7 @@ module Akeyless
|
|
273
282
|
bound_ips == o.bound_ips &&
|
274
283
|
client_id == o.client_id &&
|
275
284
|
client_secret == o.client_secret &&
|
285
|
+
description == o.description &&
|
276
286
|
force_sub_claims == o.force_sub_claims &&
|
277
287
|
gw_bound_ips == o.gw_bound_ips &&
|
278
288
|
issuer == o.issuer &&
|
@@ -296,7 +306,7 @@ module Akeyless
|
|
296
306
|
# Calculates hash code according to all attributes.
|
297
307
|
# @return [Integer] Hash code
|
298
308
|
def hash
|
299
|
-
[access_expires, allowed_redirect_uri, audience, bound_ips, client_id, client_secret, force_sub_claims, gw_bound_ips, issuer, json, jwt_ttl, name, required_scopes, required_scopes_prefix, subclaims_delimiters, token, uid_token, unique_identifier].hash
|
309
|
+
[access_expires, allowed_redirect_uri, audience, bound_ips, client_id, client_secret, description, force_sub_claims, gw_bound_ips, issuer, json, jwt_ttl, name, required_scopes, required_scopes_prefix, subclaims_delimiters, token, uid_token, unique_identifier].hash
|
300
310
|
end
|
301
311
|
|
302
312
|
# Builds the object from hash
|
@@ -25,6 +25,9 @@ module Akeyless
|
|
25
25
|
# A CIDR whitelist with the IPs that the access is restricted to
|
26
26
|
attr_accessor :bound_ips
|
27
27
|
|
28
|
+
# Auth Method description
|
29
|
+
attr_accessor :description
|
30
|
+
|
28
31
|
# if true: enforce role-association must include sub claims
|
29
32
|
attr_accessor :force_sub_claims
|
30
33
|
|
@@ -64,6 +67,7 @@ module Akeyless
|
|
64
67
|
:'access_expires' => :'access-expires',
|
65
68
|
:'allowed_redirect_uri' => :'allowed-redirect-uri',
|
66
69
|
:'bound_ips' => :'bound-ips',
|
70
|
+
:'description' => :'description',
|
67
71
|
:'force_sub_claims' => :'force-sub-claims',
|
68
72
|
:'gw_bound_ips' => :'gw-bound-ips',
|
69
73
|
:'idp_metadata_url' => :'idp-metadata-url',
|
@@ -89,6 +93,7 @@ module Akeyless
|
|
89
93
|
:'access_expires' => :'Integer',
|
90
94
|
:'allowed_redirect_uri' => :'Array<String>',
|
91
95
|
:'bound_ips' => :'Array<String>',
|
96
|
+
:'description' => :'String',
|
92
97
|
:'force_sub_claims' => :'Boolean',
|
93
98
|
:'gw_bound_ips' => :'Array<String>',
|
94
99
|
:'idp_metadata_url' => :'String',
|
@@ -142,6 +147,10 @@ module Akeyless
|
|
142
147
|
end
|
143
148
|
end
|
144
149
|
|
150
|
+
if attributes.key?(:'description')
|
151
|
+
self.description = attributes[:'description']
|
152
|
+
end
|
153
|
+
|
145
154
|
if attributes.key?(:'force_sub_claims')
|
146
155
|
self.force_sub_claims = attributes[:'force_sub_claims']
|
147
156
|
end
|
@@ -232,6 +241,7 @@ module Akeyless
|
|
232
241
|
access_expires == o.access_expires &&
|
233
242
|
allowed_redirect_uri == o.allowed_redirect_uri &&
|
234
243
|
bound_ips == o.bound_ips &&
|
244
|
+
description == o.description &&
|
235
245
|
force_sub_claims == o.force_sub_claims &&
|
236
246
|
gw_bound_ips == o.gw_bound_ips &&
|
237
247
|
idp_metadata_url == o.idp_metadata_url &&
|
@@ -254,7 +264,7 @@ module Akeyless
|
|
254
264
|
# Calculates hash code according to all attributes.
|
255
265
|
# @return [Integer] Hash code
|
256
266
|
def hash
|
257
|
-
[access_expires, allowed_redirect_uri, bound_ips, force_sub_claims, gw_bound_ips, idp_metadata_url, idp_metadata_xml_data, json, jwt_ttl, name, subclaims_delimiters, token, uid_token, unique_identifier].hash
|
267
|
+
[access_expires, allowed_redirect_uri, bound_ips, description, force_sub_claims, gw_bound_ips, idp_metadata_url, idp_metadata_xml_data, json, jwt_ttl, name, subclaims_delimiters, token, uid_token, unique_identifier].hash
|
258
268
|
end
|
259
269
|
|
260
270
|
# Builds the object from hash
|
@@ -28,6 +28,9 @@ module Akeyless
|
|
28
28
|
# Deny from the token to rotate
|
29
29
|
attr_accessor :deny_rotate
|
30
30
|
|
31
|
+
# Auth Method description
|
32
|
+
attr_accessor :description
|
33
|
+
|
31
34
|
# if true: enforce role-association must include sub claims
|
32
35
|
attr_accessor :force_sub_claims
|
33
36
|
|
@@ -59,6 +62,7 @@ module Akeyless
|
|
59
62
|
:'bound_ips' => :'bound-ips',
|
60
63
|
:'deny_inheritance' => :'deny-inheritance',
|
61
64
|
:'deny_rotate' => :'deny-rotate',
|
65
|
+
:'description' => :'description',
|
62
66
|
:'force_sub_claims' => :'force-sub-claims',
|
63
67
|
:'gw_bound_ips' => :'gw-bound-ips',
|
64
68
|
:'json' => :'json',
|
@@ -82,6 +86,7 @@ module Akeyless
|
|
82
86
|
:'bound_ips' => :'Array<String>',
|
83
87
|
:'deny_inheritance' => :'Boolean',
|
84
88
|
:'deny_rotate' => :'Boolean',
|
89
|
+
:'description' => :'String',
|
85
90
|
:'force_sub_claims' => :'Boolean',
|
86
91
|
:'gw_bound_ips' => :'Array<String>',
|
87
92
|
:'json' => :'Boolean',
|
@@ -134,6 +139,10 @@ module Akeyless
|
|
134
139
|
self.deny_rotate = attributes[:'deny_rotate']
|
135
140
|
end
|
136
141
|
|
142
|
+
if attributes.key?(:'description')
|
143
|
+
self.description = attributes[:'description']
|
144
|
+
end
|
145
|
+
|
137
146
|
if attributes.key?(:'force_sub_claims')
|
138
147
|
self.force_sub_claims = attributes[:'force_sub_claims']
|
139
148
|
end
|
@@ -206,6 +215,7 @@ module Akeyless
|
|
206
215
|
bound_ips == o.bound_ips &&
|
207
216
|
deny_inheritance == o.deny_inheritance &&
|
208
217
|
deny_rotate == o.deny_rotate &&
|
218
|
+
description == o.description &&
|
209
219
|
force_sub_claims == o.force_sub_claims &&
|
210
220
|
gw_bound_ips == o.gw_bound_ips &&
|
211
221
|
json == o.json &&
|
@@ -225,7 +235,7 @@ module Akeyless
|
|
225
235
|
# Calculates hash code according to all attributes.
|
226
236
|
# @return [Integer] Hash code
|
227
237
|
def hash
|
228
|
-
[access_expires, bound_ips, deny_inheritance, deny_rotate, force_sub_claims, gw_bound_ips, json, jwt_ttl, name, token, ttl, uid_token].hash
|
238
|
+
[access_expires, bound_ips, deny_inheritance, deny_rotate, description, force_sub_claims, gw_bound_ips, json, jwt_ttl, name, token, ttl, uid_token].hash
|
229
239
|
end
|
230
240
|
|
231
241
|
# Builds the object from hash
|
@@ -48,7 +48,7 @@ module Akeyless
|
|
48
48
|
# Event Source type [item, target, auth_method, gateway]
|
49
49
|
attr_accessor :event_source_type
|
50
50
|
|
51
|
-
# List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, auth-method-pending-expiration, auth-method-expired, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure]
|
51
|
+
# List of event types to notify about [request-access, certificate-pending-expiration, certificate-expired, certificate-provisioning-success, certificate-provisioning-failure, auth-method-pending-expiration, auth-method-expired, rotated-secret-success, rotated-secret-failure, dynamic-secret-failure, multi-auth-failure, uid-rotation-failure, apply-justification, email-auth-method-approved, usage, rotation-usage, gateway-inactive, static-secret-updated]
|
52
52
|
attr_accessor :event_types
|
53
53
|
|
54
54
|
# Rate of periodic runner repetition in hours
|
@@ -33,6 +33,9 @@ module Akeyless
|
|
33
33
|
# Authentication token (see `/auth` and `/configure`)
|
34
34
|
attr_accessor :token
|
35
35
|
|
36
|
+
# Specifies the hosts type, relevant only when working without parent target
|
37
|
+
attr_accessor :type
|
38
|
+
|
36
39
|
# The universal identity token, Required only for universal_identity authentication
|
37
40
|
attr_accessor :uid_token
|
38
41
|
|
@@ -45,6 +48,7 @@ module Akeyless
|
|
45
48
|
:'name' => :'name',
|
46
49
|
:'parent_target_name' => :'parent-target-name',
|
47
50
|
:'token' => :'token',
|
51
|
+
:'type' => :'type',
|
48
52
|
:'uid_token' => :'uid-token'
|
49
53
|
}
|
50
54
|
end
|
@@ -63,6 +67,7 @@ module Akeyless
|
|
63
67
|
:'name' => :'String',
|
64
68
|
:'parent_target_name' => :'String',
|
65
69
|
:'token' => :'String',
|
70
|
+
:'type' => :'String',
|
66
71
|
:'uid_token' => :'String'
|
67
72
|
}
|
68
73
|
end
|
@@ -116,6 +121,10 @@ module Akeyless
|
|
116
121
|
self.token = attributes[:'token']
|
117
122
|
end
|
118
123
|
|
124
|
+
if attributes.key?(:'type')
|
125
|
+
self.type = attributes[:'type']
|
126
|
+
end
|
127
|
+
|
119
128
|
if attributes.key?(:'uid_token')
|
120
129
|
self.uid_token = attributes[:'uid_token']
|
121
130
|
end
|
@@ -152,6 +161,7 @@ module Akeyless
|
|
152
161
|
name == o.name &&
|
153
162
|
parent_target_name == o.parent_target_name &&
|
154
163
|
token == o.token &&
|
164
|
+
type == o.type &&
|
155
165
|
uid_token == o.uid_token
|
156
166
|
end
|
157
167
|
|
@@ -164,7 +174,7 @@ module Akeyless
|
|
164
174
|
# Calculates hash code according to all attributes.
|
165
175
|
# @return [Integer] Hash code
|
166
176
|
def hash
|
167
|
-
[description, hosts, json, name, parent_target_name, token, uid_token].hash
|
177
|
+
[description, hosts, json, name, parent_target_name, token, type, uid_token].hash
|
168
178
|
end
|
169
179
|
|
170
180
|
# Builds the object from hash
|
@@ -27,6 +27,12 @@ module Akeyless
|
|
27
27
|
# Description of the object
|
28
28
|
attr_accessor :description
|
29
29
|
|
30
|
+
# Allow this role to view Event Center. Currently only 'none', 'own' and 'all' values are supported
|
31
|
+
attr_accessor :event_center_access
|
32
|
+
|
33
|
+
# Allow this role to manage Event Forwarders. Currently only 'none' and 'all' values are supported.
|
34
|
+
attr_accessor :event_forwarders_access
|
35
|
+
|
30
36
|
# Allow this role to view gw analytics. Currently only 'none', 'own', 'all' values are supported, allowing associated auth methods to view reports produced by the same auth methods.
|
31
37
|
attr_accessor :gw_analytics_access
|
32
38
|
|
@@ -55,6 +61,8 @@ module Akeyless
|
|
55
61
|
:'audit_access' => :'audit-access',
|
56
62
|
:'comment' => :'comment',
|
57
63
|
:'description' => :'description',
|
64
|
+
:'event_center_access' => :'event-center-access',
|
65
|
+
:'event_forwarders_access' => :'event-forwarders-access',
|
58
66
|
:'gw_analytics_access' => :'gw-analytics-access',
|
59
67
|
:'json' => :'json',
|
60
68
|
:'name' => :'name',
|
@@ -77,6 +85,8 @@ module Akeyless
|
|
77
85
|
:'audit_access' => :'String',
|
78
86
|
:'comment' => :'String',
|
79
87
|
:'description' => :'String',
|
88
|
+
:'event_center_access' => :'String',
|
89
|
+
:'event_forwarders_access' => :'String',
|
80
90
|
:'gw_analytics_access' => :'String',
|
81
91
|
:'json' => :'Boolean',
|
82
92
|
:'name' => :'String',
|
@@ -124,6 +134,14 @@ module Akeyless
|
|
124
134
|
self.description = attributes[:'description']
|
125
135
|
end
|
126
136
|
|
137
|
+
if attributes.key?(:'event_center_access')
|
138
|
+
self.event_center_access = attributes[:'event_center_access']
|
139
|
+
end
|
140
|
+
|
141
|
+
if attributes.key?(:'event_forwarders_access')
|
142
|
+
self.event_forwarders_access = attributes[:'event_forwarders_access']
|
143
|
+
end
|
144
|
+
|
127
145
|
if attributes.key?(:'gw_analytics_access')
|
128
146
|
self.gw_analytics_access = attributes[:'gw_analytics_access']
|
129
147
|
end
|
@@ -186,6 +204,8 @@ module Akeyless
|
|
186
204
|
audit_access == o.audit_access &&
|
187
205
|
comment == o.comment &&
|
188
206
|
description == o.description &&
|
207
|
+
event_center_access == o.event_center_access &&
|
208
|
+
event_forwarders_access == o.event_forwarders_access &&
|
189
209
|
gw_analytics_access == o.gw_analytics_access &&
|
190
210
|
json == o.json &&
|
191
211
|
name == o.name &&
|
@@ -204,7 +224,7 @@ module Akeyless
|
|
204
224
|
# Calculates hash code according to all attributes.
|
205
225
|
# @return [Integer] Hash code
|
206
226
|
def hash
|
207
|
-
[analytics_access, audit_access, comment, description, gw_analytics_access, json, name, sra_reports_access, token, uid_token, usage_reports_access].hash
|
227
|
+
[analytics_access, audit_access, comment, description, event_center_access, event_forwarders_access, gw_analytics_access, json, name, sra_reports_access, token, uid_token, usage_reports_access].hash
|
208
228
|
end
|
209
229
|
|
210
230
|
# Builds the object from hash
|
@@ -15,6 +15,8 @@ require 'time'
|
|
15
15
|
|
16
16
|
module Akeyless
|
17
17
|
class CreateRotatedSecret
|
18
|
+
attr_accessor :provider_type
|
19
|
+
|
18
20
|
# API ID to rotate (relevant only for rotator-type=api-key)
|
19
21
|
attr_accessor :api_id
|
20
22
|
|
@@ -51,6 +53,9 @@ module Akeyless
|
|
51
53
|
# The key id of the gcp service account to rotate
|
52
54
|
attr_accessor :gcp_service_account_key_id
|
53
55
|
|
56
|
+
# Host provider type [explicit/target], Relevant only for Secure Remote Access of ssh cert issuer and ldap rotated secret
|
57
|
+
attr_accessor :host_provider
|
58
|
+
|
54
59
|
# Set output format to JSON
|
55
60
|
attr_accessor :json
|
56
61
|
|
@@ -72,7 +77,7 @@ module Akeyless
|
|
72
77
|
# username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password)
|
73
78
|
attr_accessor :rotated_username
|
74
79
|
|
75
|
-
# The Hour of the rotation in UTC
|
80
|
+
# The Hour of the rotation in UTC. Default rotation-hour is 14:00
|
76
81
|
attr_accessor :rotation_hour
|
77
82
|
|
78
83
|
# The number of days to wait between every automatic key rotation (1-365)
|
@@ -140,6 +145,9 @@ module Akeyless
|
|
140
145
|
# Add tags attached to this object
|
141
146
|
attr_accessor :tags
|
142
147
|
|
148
|
+
# A list of linked targets to be associated, Relevant only for Secure Remote Access for ssh cert issuer and ldap rotated secret, To specify multiple targets use argument multiple times
|
149
|
+
attr_accessor :target
|
150
|
+
|
143
151
|
# Target name
|
144
152
|
attr_accessor :target_name
|
145
153
|
|
@@ -158,6 +166,7 @@ module Akeyless
|
|
158
166
|
# Attribute mapping from ruby-style variable name to JSON key.
|
159
167
|
def self.attribute_map
|
160
168
|
{
|
169
|
+
:'provider_type' => :'ProviderType',
|
161
170
|
:'api_id' => :'api-id',
|
162
171
|
:'api_key' => :'api-key',
|
163
172
|
:'application_id' => :'application-id',
|
@@ -170,6 +179,7 @@ module Akeyless
|
|
170
179
|
:'gcp_key' => :'gcp-key',
|
171
180
|
:'gcp_service_account_email' => :'gcp-service-account-email',
|
172
181
|
:'gcp_service_account_key_id' => :'gcp-service-account-key-id',
|
182
|
+
:'host_provider' => :'host-provider',
|
173
183
|
:'json' => :'json',
|
174
184
|
:'key' => :'key',
|
175
185
|
:'metadata' => :'metadata',
|
@@ -200,6 +210,7 @@ module Akeyless
|
|
200
210
|
:'ssh_username' => :'ssh-username',
|
201
211
|
:'storage_account_key_name' => :'storage-account-key-name',
|
202
212
|
:'tags' => :'tags',
|
213
|
+
:'target' => :'target',
|
203
214
|
:'target_name' => :'target-name',
|
204
215
|
:'token' => :'token',
|
205
216
|
:'uid_token' => :'uid-token',
|
@@ -216,6 +227,7 @@ module Akeyless
|
|
216
227
|
# Attribute type mapping.
|
217
228
|
def self.openapi_types
|
218
229
|
{
|
230
|
+
:'provider_type' => :'String',
|
219
231
|
:'api_id' => :'String',
|
220
232
|
:'api_key' => :'String',
|
221
233
|
:'application_id' => :'String',
|
@@ -228,6 +240,7 @@ module Akeyless
|
|
228
240
|
:'gcp_key' => :'String',
|
229
241
|
:'gcp_service_account_email' => :'String',
|
230
242
|
:'gcp_service_account_key_id' => :'String',
|
243
|
+
:'host_provider' => :'String',
|
231
244
|
:'json' => :'Boolean',
|
232
245
|
:'key' => :'String',
|
233
246
|
:'metadata' => :'String',
|
@@ -258,6 +271,7 @@ module Akeyless
|
|
258
271
|
:'ssh_username' => :'String',
|
259
272
|
:'storage_account_key_name' => :'String',
|
260
273
|
:'tags' => :'Array<String>',
|
274
|
+
:'target' => :'Array<String>',
|
261
275
|
:'target_name' => :'String',
|
262
276
|
:'token' => :'String',
|
263
277
|
:'uid_token' => :'String',
|
@@ -287,6 +301,10 @@ module Akeyless
|
|
287
301
|
h[k.to_sym] = v
|
288
302
|
}
|
289
303
|
|
304
|
+
if attributes.key?(:'provider_type')
|
305
|
+
self.provider_type = attributes[:'provider_type']
|
306
|
+
end
|
307
|
+
|
290
308
|
if attributes.key?(:'api_id')
|
291
309
|
self.api_id = attributes[:'api_id']
|
292
310
|
end
|
@@ -339,6 +357,12 @@ module Akeyless
|
|
339
357
|
self.gcp_service_account_key_id = attributes[:'gcp_service_account_key_id']
|
340
358
|
end
|
341
359
|
|
360
|
+
if attributes.key?(:'host_provider')
|
361
|
+
self.host_provider = attributes[:'host_provider']
|
362
|
+
else
|
363
|
+
self.host_provider = 'explicit'
|
364
|
+
end
|
365
|
+
|
342
366
|
if attributes.key?(:'json')
|
343
367
|
self.json = attributes[:'json']
|
344
368
|
else
|
@@ -479,6 +503,12 @@ module Akeyless
|
|
479
503
|
end
|
480
504
|
end
|
481
505
|
|
506
|
+
if attributes.key?(:'target')
|
507
|
+
if (value = attributes[:'target']).is_a?(Array)
|
508
|
+
self.target = value
|
509
|
+
end
|
510
|
+
end
|
511
|
+
|
482
512
|
if attributes.key?(:'target_name')
|
483
513
|
self.target_name = attributes[:'target_name']
|
484
514
|
else
|
@@ -537,6 +567,7 @@ module Akeyless
|
|
537
567
|
def ==(o)
|
538
568
|
return true if self.equal?(o)
|
539
569
|
self.class == o.class &&
|
570
|
+
provider_type == o.provider_type &&
|
540
571
|
api_id == o.api_id &&
|
541
572
|
api_key == o.api_key &&
|
542
573
|
application_id == o.application_id &&
|
@@ -549,6 +580,7 @@ module Akeyless
|
|
549
580
|
gcp_key == o.gcp_key &&
|
550
581
|
gcp_service_account_email == o.gcp_service_account_email &&
|
551
582
|
gcp_service_account_key_id == o.gcp_service_account_key_id &&
|
583
|
+
host_provider == o.host_provider &&
|
552
584
|
json == o.json &&
|
553
585
|
key == o.key &&
|
554
586
|
metadata == o.metadata &&
|
@@ -579,6 +611,7 @@ module Akeyless
|
|
579
611
|
ssh_username == o.ssh_username &&
|
580
612
|
storage_account_key_name == o.storage_account_key_name &&
|
581
613
|
tags == o.tags &&
|
614
|
+
target == o.target &&
|
582
615
|
target_name == o.target_name &&
|
583
616
|
token == o.token &&
|
584
617
|
uid_token == o.uid_token &&
|
@@ -595,7 +628,7 @@ module Akeyless
|
|
595
628
|
# Calculates hash code according to all attributes.
|
596
629
|
# @return [Integer] Hash code
|
597
630
|
def hash
|
598
|
-
[api_id, api_key, application_id, authentication_credentials, auto_rotate, aws_region, custom_payload, delete_protection, description, gcp_key, gcp_service_account_email, gcp_service_account_key_id, json, key, metadata, name, rotate_after_disconnect, rotated_password, rotated_username, rotation_hour, rotation_interval, rotator_creds_type, rotator_custom_cmd, rotator_type, same_password, secure_access_allow_external_user, secure_access_aws_account_id, secure_access_aws_native_cli, secure_access_bastion_issuer, secure_access_db_name, secure_access_db_schema, secure_access_enable, secure_access_host, secure_access_rdp_domain, secure_access_rdp_user, secure_access_web, secure_access_web_browsing, secure_access_web_proxy, ssh_password, ssh_username, storage_account_key_name, tags, target_name, token, uid_token, user_attribute, user_dn].hash
|
631
|
+
[provider_type, api_id, api_key, application_id, authentication_credentials, auto_rotate, aws_region, custom_payload, delete_protection, description, gcp_key, gcp_service_account_email, gcp_service_account_key_id, host_provider, json, key, metadata, name, rotate_after_disconnect, rotated_password, rotated_username, rotation_hour, rotation_interval, rotator_creds_type, rotator_custom_cmd, rotator_type, same_password, secure_access_allow_external_user, secure_access_aws_account_id, secure_access_aws_native_cli, secure_access_bastion_issuer, secure_access_db_name, secure_access_db_schema, secure_access_enable, secure_access_host, secure_access_rdp_domain, secure_access_rdp_user, secure_access_web, secure_access_web_browsing, secure_access_web_proxy, ssh_password, ssh_username, storage_account_key_name, tags, target, target_name, token, uid_token, user_attribute, user_dn].hash
|
599
632
|
end
|
600
633
|
|
601
634
|
# Builds the object from hash
|