akeyless 5.0.14 → 5.0.16

data/docs/GatewayCreateProducerGcp.md

@@ -4,20 +4,28 @@
 
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
+| **access_type** | **String** |  | [optional] |
 | **custom_username_template** | **String** | Customize how temporary usernames are generated using go template | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
+| **fixed_user_claim_keyname** | **String** | For externally provided users, denotes the key-name of IdP claim to extract the username from (Relevant only when --access-type=external) | [optional][default to 'ext_email'] |
 | **gcp_cred_type** | **String** |  | [optional] |
 | **gcp_key** | **String** | Base64-encoded service account private key text | [optional] |
-| **gcp_key_algo** | **String** | Service account key algorithm, e.g. KEY_ALG_RSA_1024 | [optional] |
-| **gcp_project_id** | **String** | GCP Project ID override for dynamic secret operations (tmp service accounts) | [optional] |
-| **gcp_sa_email** | **String** | The email of the fixed service acocunt to generate keys or tokens for. (revelant for service-account-type=fixed) | [optional] |
-| **gcp_token_scopes** | **String** | Access token scopes list, e.g. scope1,scope2 | [optional] |
+| **gcp_key_algo** | **String** | Service account key algorithm, e.g. KEY_ALG_RSA_1024 (Relevant only when --access-type=sa and --gcp-cred-type=key) | [optional] |
+| **gcp_project_id** | **String** | GCP Project ID override for dynamic secret operations | [optional] |
+| **gcp_sa_email** | **String** | The email of the fixed service account to generate keys or tokens for (Relevant only when --access-type=sa and --service-account-type=fixed) | [optional] |
+| **gcp_token_scopes** | **String** | Access token scopes list, e.g. scope1,scope2 (Relevant only when --access-type=sa; required when --gcp-cred-type=token) | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
-| **role_binding** | **String** | Role binding definitions in json format | [optional] |
-| **service_account_type** | **String** | The type of the gcp dynamic secret. Options[fixed, dynamic] | [default to 'fixed'] |
+| **role_binding** | **String** | Role binding definitions in JSON format (Relevant only when --access-type=sa and --service-account-type=dynamic) | [optional] |
+| **role_names** | **String** | Comma-separated list of GCP roles to assign to the user (Relevant only when --access-type=external) | [optional] |
+| **secure_access_delay** | **Integer** | The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds | [optional] |
+| **secure_access_enable** | **String** | Enable/Disable secure remote access [true/false] | [optional] |
+| **secure_access_url** | **String** | Destination URL to inject secrets | [optional] |
+| **secure_access_web_browsing** | **Boolean** | Secure browser via Akeyless's Secure Remote Access (SRA) | [optional][default to false] |
+| **secure_access_web_proxy** | **Boolean** | Web-Proxy via Akeyless's Secure Remote Access (SRA) | [optional][default to false] |
+| **service_account_type** | **String** | The type of the GCP service account. Options [fixed, dynamic] (Relevant only when --access-type=sa) | [optional][default to 'fixed'] |
 | **tags** | **Array<String>** | Add tags attached to this object | [optional] |
 | **target_name** | **String** | Target name | [optional] |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
@@ -30,8 +38,10 @@
 require 'akeyless'
 
 instance = Akeyless::GatewayCreateProducerGcp.new(
+  access_type: null,
   custom_username_template: null,
   delete_protection: null,
+  fixed_user_claim_keyname: null,
   gcp_cred_type: null,
   gcp_key: null,
   gcp_key_algo: null,
@@ -43,6 +53,12 @@ instance = Akeyless::GatewayCreateProducerGcp.new(
   name: null,
   producer_encryption_key_name: null,
   role_binding: null,
+  role_names: null,
+  secure_access_delay: null,
+  secure_access_enable: null,
+  secure_access_url: null,
+  secure_access_web_browsing: null,
+  secure_access_web_proxy: null,
   service_account_type: null,
   tags: null,
   target_name: null,

data/docs/GatewayCreateProducerMSSQL.md

@@ -8,6 +8,7 @@
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
+| **mssql_allowed_db_names** | **String** | CSV of allowed DB names for runtime selection when getting the secret value. Empty => use target DB only; \"*\" => any DB allowed; One or more names => user must choose from this list | [optional] |
 | **mssql_create_statements** | **String** | MSSQL Creation statements | [optional] |
 | **mssql_dbname** | **String** | MSSQL Name | [optional] |
 | **mssql_host** | **String** | MSSQL Host | [optional][default to '127.0.0.1'] |
@@ -42,6 +43,7 @@ instance = Akeyless::GatewayCreateProducerMSSQL.new(
   delete_protection: null,
   item_custom_fields: null,
   json: null,
+  mssql_allowed_db_names: null,
   mssql_create_statements: null,
   mssql_dbname: null,
   mssql_host: null,

data/docs/GatewayCreateProducerMongo.md

@@ -17,6 +17,7 @@
 | **mongodb_name** | **String** | MongoDB Name | [optional] |
 | **mongodb_password** | **String** | MongoDB server password. You will prompted to provide a password if it will not appear in CLI parameters | [optional] |
 | **mongodb_roles** | **String** | MongoDB Roles | [optional][default to '[]'] |
+| **mongodb_scopes** | **String** | MongoDB Scopes (Atlas only) | [optional] |
 | **mongodb_server_uri** | **String** | MongoDB server URI | [optional] |
 | **mongodb_uri_options** | **String** | MongoDB server URI options | [optional] |
 | **mongodb_username** | **String** | MongoDB server username | [optional] |
@@ -55,6 +56,7 @@ instance = Akeyless::GatewayCreateProducerMongo.new(
   mongodb_name: null,
   mongodb_password: null,
   mongodb_roles: null,
+  mongodb_scopes: null,
   mongodb_server_uri: null,
   mongodb_uri_options: null,
   mongodb_username: null,

data/docs/GatewayUpdateMigration.md

@@ -7,6 +7,7 @@
 | **service_account_key_decoded** | **String** |  | [optional] |
 | **ad_auto_rotate** | **String** | Enable/Disable automatic/recurrent rotation for migrated secrets. Default is false: only manual rotation is allowed for migrated secrets. If set to true, this command should be combined with --ad-rotation-interval and --ad-rotation-hour parameters (Relevant only for Active Directory migration) | [optional] |
 | **ad_computer_base_dn** | **String** | Distinguished Name of Computer objects (servers) to search in Active Directory e.g.: CN=Computers,DC=example,DC=com (Relevant only for Active Directory migration) | [optional] |
+| **ad_discover_iis_app** | **String** | Enable/Disable discovery of IIS application from each domain server as part of the SSH/Windows Rotated Secrets. Default is false. (Relevant only for Active Directory migration) | [optional][default to 'false'] |
 | **ad_discover_services** | **String** | Enable/Disable discovery of Windows services from each domain server as part of the SSH/Windows Rotated Secrets. Default is false. (Relevant only for Active Directory migration) | [optional][default to 'false'] |
 | **ad_discovery_types** | **Array<String>** | Set migration discovery types (domain-users, computers, local-users). (Relevant only for Active Directory migration) | [optional] |
 | **ad_domain_name** | **String** | Active Directory Domain Name (Relevant only for Active Directory migration) | [optional] |
@@ -74,6 +75,7 @@ instance = Akeyless::GatewayUpdateMigration.new(
   service_account_key_decoded: null,
   ad_auto_rotate: null,
   ad_computer_base_dn: null,
+  ad_discover_iis_app: null,
   ad_discover_services: null,
   ad_discovery_types: null,
   ad_domain_name: null,

data/docs/GatewayUpdateProducerGcp.md

@@ -4,21 +4,29 @@
 
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
+| **access_type** | **String** |  | [optional] |
 | **custom_username_template** | **String** | Customize how temporary usernames are generated using go template | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
+| **fixed_user_claim_keyname** | **String** | For externally provided users, denotes the key-name of IdP claim to extract the username from (Relevant only when --access-type=external) | [optional][default to 'ext_email'] |
 | **gcp_cred_type** | **String** |  | [optional] |
 | **gcp_key** | **String** | Base64-encoded service account private key text | [optional] |
-| **gcp_key_algo** | **String** | Service account key algorithm, e.g. KEY_ALG_RSA_1024 | [optional] |
-| **gcp_project_id** | **String** | GCP Project ID override for dynamic secret operations (tmp service accounts) | [optional] |
-| **gcp_sa_email** | **String** | The email of the fixed service acocunt to generate keys or tokens for. (revelant for service-account-type=fixed) | [optional] |
-| **gcp_token_scopes** | **String** | Access token scopes list, e.g. scope1,scope2 | [optional] |
+| **gcp_key_algo** | **String** | Service account key algorithm, e.g. KEY_ALG_RSA_1024 (Relevant only when --access-type=sa and --gcp-cred-type=key) | [optional] |
+| **gcp_project_id** | **String** | GCP Project ID override for dynamic secret operations | [optional] |
+| **gcp_sa_email** | **String** | The email of the fixed service account to generate keys or tokens for (Relevant only when --access-type=sa and --service-account-type=fixed) | [optional] |
+| **gcp_token_scopes** | **String** | Access token scopes list, e.g. scope1,scope2 (Relevant only when --access-type=sa; required when --gcp-cred-type=token) | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
-| **role_binding** | **String** | Role binding definitions in json format | [optional] |
-| **service_account_type** | **String** | The type of the gcp dynamic secret. Options[fixed, dynamic] | [default to 'fixed'] |
+| **role_binding** | **String** | Role binding definitions in JSON format (Relevant only when --access-type=sa and --service-account-type=dynamic) | [optional] |
+| **role_names** | **String** | Comma-separated list of GCP roles to assign to the user (Relevant only when --access-type=external) | [optional] |
+| **secure_access_delay** | **Integer** | The delay duration, in seconds, to wait after generating just-in-time credentials. Accepted range: 0-120 seconds | [optional] |
+| **secure_access_enable** | **String** | Enable/Disable secure remote access [true/false] | [optional] |
+| **secure_access_url** | **String** | Destination URL to inject secrets | [optional] |
+| **secure_access_web_browsing** | **Boolean** | Secure browser via Akeyless's Secure Remote Access (SRA) | [optional][default to false] |
+| **secure_access_web_proxy** | **Boolean** | Web-Proxy via Akeyless's Secure Remote Access (SRA) | [optional][default to false] |
+| **service_account_type** | **String** | The type of the GCP service account. Options [fixed, dynamic] (Relevant only when --access-type=sa) | [optional][default to 'fixed'] |
 | **tags** | **Array<String>** | Add tags attached to this object | [optional] |
 | **target_name** | **String** | Target name | [optional] |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
@@ -31,8 +39,10 @@
 require 'akeyless'
 
 instance = Akeyless::GatewayUpdateProducerGcp.new(
+  access_type: null,
   custom_username_template: null,
   delete_protection: null,
+  fixed_user_claim_keyname: null,
   gcp_cred_type: null,
   gcp_key: null,
   gcp_key_algo: null,
@@ -45,6 +55,12 @@ instance = Akeyless::GatewayUpdateProducerGcp.new(
   new_name: null,
   producer_encryption_key_name: null,
   role_binding: null,
+  role_names: null,
+  secure_access_delay: null,
+  secure_access_enable: null,
+  secure_access_url: null,
+  secure_access_web_browsing: null,
+  secure_access_web_proxy: null,
   service_account_type: null,
   tags: null,
   target_name: null,

data/docs/GatewayUpdateProducerMSSQL.md

@@ -8,6 +8,7 @@
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
+| **mssql_allowed_db_names** | **String** | CSV of allowed DB names for runtime selection when getting the secret value. Empty => use target DB only; \"*\" => any DB allowed; One or more names => user must choose from this list | [optional] |
 | **mssql_create_statements** | **String** | MSSQL Creation statements | [optional] |
 | **mssql_dbname** | **String** | MSSQL Name | [optional] |
 | **mssql_host** | **String** | MSSQL Host | [optional][default to '127.0.0.1'] |
@@ -43,6 +44,7 @@ instance = Akeyless::GatewayUpdateProducerMSSQL.new(
   delete_protection: null,
   item_custom_fields: null,
   json: null,
+  mssql_allowed_db_names: null,
   mssql_create_statements: null,
   mssql_dbname: null,
   mssql_host: null,

data/docs/GatewayUpdateProducerMongo.md

@@ -17,6 +17,7 @@
 | **mongodb_name** | **String** | MongoDB Name | [optional] |
 | **mongodb_password** | **String** | MongoDB server password. You will prompted to provide a password if it will not appear in CLI parameters | [optional] |
 | **mongodb_roles** | **String** | MongoDB Roles | [optional][default to '[]'] |
+| **mongodb_scopes** | **String** | MongoDB Scopes (Atlas only) | [optional] |
 | **mongodb_server_uri** | **String** | MongoDB server URI | [optional] |
 | **mongodb_uri_options** | **String** | MongoDB server URI options | [optional] |
 | **mongodb_username** | **String** | MongoDB server username | [optional] |
@@ -56,6 +57,7 @@ instance = Akeyless::GatewayUpdateProducerMongo.new(
   mongodb_name: null,
   mongodb_password: null,
   mongodb_roles: null,
+  mongodb_scopes: null,
   mongodb_server_uri: null,
   mongodb_uri_options: null,
   mongodb_username: null,

data/docs/GatewayUpdateRemoteAccess.md

@@ -4,7 +4,9 @@
 
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
+| **allowed_ssh_url** | **String** | Specify a valid SSH-URL to tunnel to SSH session | [optional][default to 'use-existing'] |
 | **allowed_urls** | **String** | List of valid URLs to redirect from the Portal back to the remote access server (in a comma-delimited list) | [optional][default to 'use-existing'] |
+| **default_session_ttl_minutes** | **String** | Default session TTL in minutes | [optional][default to 'use-existing'] |
 | **hide_session_recording** | **String** | Specifies whether to show/hide if the session is currently recorded [true/false] | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **kexalgs** | **String** | Decide which algorithm will be used as part of the SSH initial hand-shake process | [optional][default to 'use-existing'] |
@@ -21,7 +23,9 @@
 require 'akeyless'
 
 instance = Akeyless::GatewayUpdateRemoteAccess.new(
+  allowed_ssh_url: null,
   allowed_urls: null,
+  default_session_ttl_minutes: null,
   hide_session_recording: null,
   json: null,
   kexalgs: null,

data/docs/GetDynamicSecretValue.md

@@ -5,6 +5,7 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **args** | **Array<String>** | Optional arguments as key=value pairs or JSON strings, e.g - \\\"--args=csr=base64_encoded_csr --args=common_name=bar\\\" or args='{\\\"csr\\\":\\\"base64_encoded_csr\\\"}. It is possible to combine both formats.' | [optional] |
+| **dbname** | **String** | DBName: Optional override DB name (works only if DS allows it. only relevant for MSSQL) | [optional] |
 | **host** | **String** | Host | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
@@ -20,6 +21,7 @@ require 'akeyless'
 
 instance = Akeyless::GetDynamicSecretValue.new(
   args: null,
+  dbname: null,
   host: null,
   json: null,
   name: null,

data/docs/NotiForwarderDetailsInput.md

@@ -0,0 +1,28 @@
+# Akeyless::NotiForwarderDetailsInput
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **app_private_key_pem_base64** | **String** |  | [optional] |
+| **client_secret** | **String** | Auth - JWT | [optional] |
+| **password** | **String** | Auth - User Password | [optional] |
+| **slack_noti_forwarder_details** | [**SlackNotiForwarderDetails**](SlackNotiForwarderDetails.md) |  | [optional] |
+| **teams_noti_forwarder_details** | [**TeamsNotiForwarderDetails**](TeamsNotiForwarderDetails.md) |  | [optional] |
+| **webhook_noti_forwarder_details** | [**WebhookNotiForwarderDetails**](WebhookNotiForwarderDetails.md) |  | [optional] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::NotiForwarderDetailsInput.new(
+  app_private_key_pem_base64: null,
+  client_secret: null,
+  password: null,
+  slack_noti_forwarder_details: null,
+  teams_noti_forwarder_details: null,
+  webhook_noti_forwarder_details: null
+)
+```
+

data/docs/PKICertificateIssueDetails.md

@@ -19,7 +19,9 @@
 | **code_signing_flag** | **Boolean** |  | [optional] |
 | **country** | **Array<String>** |  | [optional] |
 | **create_private_crl** | **Boolean** |  | [optional] |
+| **create_private_ocsp** | **Boolean** | CreatePrivateOcsp enables exposing an OCSP endpoint on the Gateway and embedding its URL in the AIA extension of issued certificates. | [optional] |
 | **create_public_crl** | **Boolean** |  | [optional] |
+| **create_public_ocsp** | **Boolean** | CreatePublicOcsp enables exposing a public OCSP endpoint on the Gateway and embedding its URL in the AIA extension of issued certificates. | [optional] |
 | **destination_path** | **String** | DestinationPath is the destination to save generated certificates | [optional] |
 | **disable_wildcards** | **Boolean** |  | [optional] |
 | **enforce_hostnames** | **Boolean** |  | [optional] |
@@ -34,6 +36,7 @@
 | **max_path_len** | **Integer** |  | [optional] |
 | **non_critical_key_usage** | **Boolean** |  | [optional] |
 | **not_before_duration** | **Integer** | A Duration represents the elapsed time between two instants as an int64 nanosecond count. The representation limits the largest representable duration to approximately 290 years. | [optional] |
+| **ocsp_next_update** | **Integer** | OcspNextUpdate defines the desired NextUpdate window for OCSP responses. Value is in seconds; 0 means not set. Minimum enforced is 10 minutes. | [optional] |
 | **organization_list** | **Array<String>** |  | [optional] |
 | **organization_unit_list** | **Array<String>** |  | [optional] |
 | **pki_issuer_type** | **String** |  | [optional] |
@@ -66,7 +69,9 @@ instance = Akeyless::PKICertificateIssueDetails.new(
   code_signing_flag: null,
   country: null,
   create_private_crl: null,
+  create_private_ocsp: null,
   create_public_crl: null,
+  create_public_ocsp: null,
   destination_path: null,
   disable_wildcards: null,
   enforce_hostnames: null,
@@ -81,6 +86,7 @@ instance = Akeyless::PKICertificateIssueDetails.new(
   max_path_len: null,
   non_critical_key_usage: null,
   not_before_duration: null,
+  ocsp_next_update: null,
   organization_list: null,
   organization_unit_list: null,
   pki_issuer_type: null,

data/docs/RotatedSecretCreateSsh.md

@@ -11,9 +11,11 @@
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **key** | **String** | The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used) | [optional] |
+| **key_data_base64** | **String** | Private key file contents encoded using base64 | [optional] |
 | **max_versions** | **String** | Set the maximum number of versions, limited by the account settings defaults. | [optional] |
 | **name** | **String** | Rotated secret name |  |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
+| **public_key_remote_path** | **String** | The path to the public key that will be rotated on the server | [optional] |
 | **rotate_after_disconnect** | **String** | Rotate the value of the secret after SRA session ends [true/false] | [optional][default to 'false'] |
 | **rotated_password** | **String** | rotated-username password (relevant only for rotator-type=password) | [optional] |
 | **rotated_username** | **String** | username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password) | [optional] |
@@ -50,9 +52,11 @@ instance = Akeyless::RotatedSecretCreateSsh.new(
   item_custom_fields: null,
   json: null,
   key: null,
+  key_data_base64: null,
   max_versions: null,
   name: null,
   password_length: null,
+  public_key_remote_path: null,
   rotate_after_disconnect: null,
   rotated_password: null,
   rotated_username: null,

data/docs/RotatedSecretDeleteSync.md

@@ -6,6 +6,7 @@
 | ---- | ---- | ----------- | ----- |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Rotated secret name |  |
+| **remote_secret_name** | **String** | Remote Secret Name to disambiguate when multiple syncs exist under the same USC | [optional] |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
 | **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
 | **usc_name** | **String** | Universal Secret Connector name |  |
@@ -18,6 +19,7 @@ require 'akeyless'
 instance = Akeyless::RotatedSecretDeleteSync.new(
   json: null,
   name: null,
+  remote_secret_name: null,
   token: null,
   uid_token: null,
   usc_name: null

data/docs/RotatedSecretDetailsInfo.md

@@ -10,11 +10,13 @@
 | **grace_rotation_hour** | **Integer** |  | [optional] |
 | **grace_rotation_interval** | **Integer** |  | [optional] |
 | **gw_cluster_id** | **Integer** |  | [optional] |
+| **iis_apps_details** | [**Array<WindowsService>**](WindowsService.md) |  | [optional] |
 | **last_rotation_error** | **String** |  | [optional] |
 | **managed_by_akeyless** | **Boolean** |  | [optional] |
 | **max_versions** | **Integer** |  | [optional] |
 | **next_auto_rotate_type** | **String** |  | [optional] |
 | **number_of_versions_to_save** | **Integer** |  | [optional] |
+| **public_key_remote_path** | **String** |  | [optional] |
 | **rotation_hour** | **Integer** |  | [optional] |
 | **rotation_interval_min** | **Boolean** |  | [optional] |
 | **rotation_statement** | **String** |  | [optional] |
@@ -37,11 +39,13 @@ instance = Akeyless::RotatedSecretDetailsInfo.new(
   grace_rotation_hour: null,
   grace_rotation_interval: null,
   gw_cluster_id: null,
+  iis_apps_details: null,
   last_rotation_error: null,
   managed_by_akeyless: null,
   max_versions: null,
   next_auto_rotate_type: null,
   number_of_versions_to_save: null,
+  public_key_remote_path: null,
   rotation_hour: null,
   rotation_interval_min: null,
   rotation_statement: null,

data/docs/RotatedSecretUpdateSsh.md

@@ -13,10 +13,12 @@
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **keep_prev_version** | **String** | Whether to keep previous version [true/false]. If not set, use default according to account settings | [optional] |
 | **key** | **String** | The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used) | [optional] |
+| **key_data_base64** | **String** | Private key file contents encoded using base64 | [optional] |
 | **max_versions** | **String** | Set the maximum number of versions, limited by the account settings defaults. | [optional] |
 | **name** | **String** | Rotated secret name |  |
 | **new_name** | **String** | New item name | [optional] |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
+| **public_key_remote_path** | **String** | The path to the public key that will be rotated on the server | [optional] |
 | **rm_tag** | **Array<String>** | List of the existent tags that will be removed from this item | [optional] |
 | **rotate_after_disconnect** | **String** | Rotate the value of the secret after SRA session ends [true/false] | [optional][default to 'false'] |
 | **rotated_password** | **String** | rotated-username password (relevant only for rotator-type=password) | [optional] |
@@ -54,10 +56,12 @@ instance = Akeyless::RotatedSecretUpdateSsh.new(
   json: null,
   keep_prev_version: null,
   key: null,
+  key_data_base64: null,
   max_versions: null,
   name: null,
   new_name: null,
   password_length: null,
+  public_key_remote_path: null,
   rm_tag: null,
   rotate_after_disconnect: null,
   rotated_password: null,

data/docs/SlackNotiForwarderDetails.md

@@ -0,0 +1,18 @@
+# Akeyless::SlackNotiForwarderDetails
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **endpoint_url** | **String** |  | [optional] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::SlackNotiForwarderDetails.new(
+  endpoint_url: null
+)
+```
+

data/docs/StaticSecretDeleteSync.md

@@ -6,6 +6,7 @@
 | ---- | ---- | ----------- | ----- |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Static secret name |  |
+| **remote_secret_name** | **String** | Remote Secret Name to disambiguate when multiple syncs exist under the same USC | [optional] |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
 | **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
 | **usc_name** | **String** | Universal Secret Connector name |  |
@@ -18,6 +19,7 @@ require 'akeyless'
 instance = Akeyless::StaticSecretDeleteSync.new(
   json: null,
   name: null,
+  remote_secret_name: null,
   token: null,
   uid_token: null,
   usc_name: null

data/docs/TeamsNotiForwarderDetails.md

@@ -0,0 +1,18 @@
+# Akeyless::TeamsNotiForwarderDetails
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **webhook_url** | **String** |  | [optional] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::TeamsNotiForwarderDetails.new(
+  webhook_url: null
+)
+```
+

data/docs/UpdateAccountSettings.md

@@ -5,6 +5,7 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **address** | **String** | Address | [optional] |
+| **allowed_client_type** | **Array<String>** |  | [optional] |
 | **allowed_email_domains** | **Array<String>** | Limits email sharing to the specified domains. Relevant only when item sharing is enabled. By default, all domains are allowed. | [optional] |
 | **bound_ips** | **Array<String>** | A default list of comma-separated CIDR block that are allowed to authenticate. | [optional] |
 | **city** | **String** | City | [optional] |
@@ -32,6 +33,7 @@
 | **jwt_ttl_default** | **Integer** | Default ttl | [optional] |
 | **jwt_ttl_max** | **Integer** | Maximum ttl | [optional] |
 | **jwt_ttl_min** | **Integer** | Minimum ttl | [optional] |
+| **lock_allowed_client_type** | **String** |  | [optional] |
 | **lock_bound_ips** | **String** | Lock bound-ips setting globally in the account. | [optional] |
 | **lock_default_key** | **String** | Lock the account's default protection key, if set - users will not be able to use a different protection key, relevant only if default-key-name is configured [true/false] | [optional] |
 | **lock_gw_bound_ips** | **String** | Lock gw-bound-ips setting in the account. | [optional] |
@@ -60,6 +62,7 @@ require 'akeyless'
 
 instance = Akeyless::UpdateAccountSettings.new(
   address: null,
+  allowed_client_type: null,
   allowed_email_domains: null,
   bound_ips: null,
   city: null,
@@ -87,6 +90,7 @@ instance = Akeyless::UpdateAccountSettings.new(
   jwt_ttl_default: null,
   jwt_ttl_max: null,
   jwt_ttl_min: null,
+  lock_allowed_client_type: null,
   lock_bound_ips: null,
   lock_default_key: null,
   lock_gw_bound_ips: null,

data/docs/UpdateAuthMethod.md

@@ -5,6 +5,7 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **access_expires** | **Integer** | Access expiration date in Unix timestamp (select 0 for access without expiry date) | [optional][default to 0] |
+| **allowed_client_type** | **Array<String>** |  | [optional] |
 | **audit_logs_claims** | **Array<String>** | Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\" | [optional] |
 | **bound_ips** | **Array<String>** | A CIDR whitelist with the IPs that the access is restricted to | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
@@ -27,6 +28,7 @@ require 'akeyless'
 
 instance = Akeyless::UpdateAuthMethod.new(
   access_expires: null,
+  allowed_client_type: null,
   audit_logs_claims: null,
   bound_ips: null,
   delete_protection: null,

data/docs/UpdateAuthMethodAWSIAM.md

@@ -5,6 +5,7 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **access_expires** | **Integer** | Access expiration date in Unix timestamp (select 0 for access without expiry date) | [optional][default to 0] |
+| **allowed_client_type** | **Array<String>** |  | [optional] |
 | **audit_logs_claims** | **Array<String>** | Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\" | [optional] |
 | **bound_arn** | **Array<String>** | A list of full arns that the access is restricted to | [optional] |
 | **bound_aws_account_id** | **Array<String>** | A list of AWS account-IDs that the access is restricted to |  |
@@ -36,6 +37,7 @@ require 'akeyless'
 
 instance = Akeyless::UpdateAuthMethodAWSIAM.new(
   access_expires: null,
+  allowed_client_type: null,
   audit_logs_claims: null,
   bound_arn: null,
   bound_aws_account_id: null,

data/docs/UpdateAuthMethodAzureAD.md

@@ -5,6 +5,7 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **access_expires** | **Integer** | Access expiration date in Unix timestamp (select 0 for access without expiry date) | [optional][default to 0] |
+| **allowed_client_type** | **Array<String>** |  | [optional] |
 | **audience** | **String** | Deprecated (Deprecated) The audience in the JWT | [optional][default to 'https://management.azure.com/'] |
 | **audit_logs_claims** | **Array<String>** | Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\" | [optional] |
 | **bound_group_id** | **Array<String>** | A list of group ids that the access is restricted to | [optional] |
@@ -40,6 +41,7 @@ require 'akeyless'
 
 instance = Akeyless::UpdateAuthMethodAzureAD.new(
   access_expires: null,
+  allowed_client_type: null,
   audience: null,
   audit_logs_claims: null,
   bound_group_id: null,

data/docs/UpdateAuthMethodCert.md

@@ -5,6 +5,7 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **access_expires** | **Integer** | Access expiration date in Unix timestamp (select 0 for access without expiry date) | [optional][default to 0] |
+| **allowed_client_type** | **Array<String>** |  | [optional] |
 | **allowed_cors** | **String** | Comma separated list of allowed CORS domains to be validated as part of the authentication flow. | [optional] |
 | **audit_logs_claims** | **Array<String>** | Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\" | [optional] |
 | **bound_common_names** | **Array<String>** | A list of names. At least one must exist in the Common Name. Supports globbing. | [optional] |
@@ -37,6 +38,7 @@ require 'akeyless'
 
 instance = Akeyless::UpdateAuthMethodCert.new(
   access_expires: null,
+  allowed_client_type: null,
   allowed_cors: null,
   audit_logs_claims: null,
   bound_common_names: null,

data/docs/UpdateAuthMethodGCP.md

@@ -5,6 +5,7 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **access_expires** | **Integer** | Access expiration date in Unix timestamp (select 0 for access without expiry date) | [optional][default to 0] |
+| **allowed_client_type** | **Array<String>** |  | [optional] |
 | **audience** | **String** | The audience to verify in the JWT received by the client | [default to 'akeyless.io'] |
 | **audit_logs_claims** | **Array<String>** | Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\" | [optional] |
 | **bound_ips** | **Array<String>** | A CIDR whitelist with the IPs that the access is restricted to | [optional] |
@@ -36,6 +37,7 @@ require 'akeyless'
 
 instance = Akeyless::UpdateAuthMethodGCP.new(
   access_expires: null,
+  allowed_client_type: null,
   audience: null,
   audit_logs_claims: null,
   bound_ips: null,

data/docs/UpdateAuthMethodK8S.md

@@ -5,6 +5,7 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **access_expires** | **Integer** | Access expiration date in Unix timestamp (select 0 for access without expiry date) | [optional][default to 0] |
+| **allowed_client_type** | **Array<String>** |  | [optional] |
 | **audience** | **String** | The audience in the Kubernetes JWT that the access is restricted to | [optional] |
 | **audit_logs_claims** | **Array<String>** | Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\" | [optional] |
 | **bound_ips** | **Array<String>** | A CIDR whitelist with the IPs that the access is restricted to | [optional] |
@@ -33,6 +34,7 @@ require 'akeyless'
 
 instance = Akeyless::UpdateAuthMethodK8S.new(
   access_expires: null,
+  allowed_client_type: null,
   audience: null,
   audit_logs_claims: null,
   bound_ips: null,

data/docs/UpdateAuthMethodLDAP.md

@@ -5,6 +5,7 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **access_expires** | **Integer** | Access expiration date in Unix timestamp (select 0 for access without expiry date) | [optional][default to 0] |
+| **allowed_client_type** | **Array<String>** |  | [optional] |
 | **audit_logs_claims** | **Array<String>** | Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\" | [optional] |
 | **bound_ips** | **Array<String>** | A CIDR whitelist with the IPs that the access is restricted to | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
@@ -30,6 +31,7 @@ require 'akeyless'
 
 instance = Akeyless::UpdateAuthMethodLDAP.new(
   access_expires: null,
+  allowed_client_type: null,
   audit_logs_claims: null,
   bound_ips: null,
   delete_protection: null,

data/docs/UpdateAuthMethodOAuth2.md

@@ -5,6 +5,7 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **access_expires** | **Integer** | Access expiration date in Unix timestamp (select 0 for access without expiry date) | [optional][default to 0] |
+| **allowed_client_type** | **Array<String>** |  | [optional] |
 | **audience** | **String** | The audience in the JWT | [optional] |
 | **audit_logs_claims** | **Array<String>** | Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\" | [optional] |
 | **bound_client_ids** | **Array<String>** | The clients ids that the access is restricted to | [optional] |
@@ -37,6 +38,7 @@ require 'akeyless'
 
 instance = Akeyless::UpdateAuthMethodOAuth2.new(
   access_expires: null,
+  allowed_client_type: null,
   audience: null,
   audit_logs_claims: null,
   bound_client_ids: null,