akeyless 5.0.21 → 5.0.23

data/lib/akeyless/models/account_general_settings.rb

@@ -38,6 +38,8 @@ module Akeyless
 
     attr_accessor :data_protection_section
 
+    attr_accessor :default_auth_method
+
     attr_accessor :default_home_page
 
     attr_accessor :dynamic_secret_max_ttl
@@ -46,11 +48,15 @@ module Akeyless
 
     attr_accessor :hide_personal_folder
 
+    attr_accessor :hide_secret_reveal_copy
+
     attr_accessor :hide_static_password
 
     # InvalidCharacters is the invalid characters for items/targets/roles/auths/notifier_forwarder naming convention
     attr_accessor :invalid_characters
 
+    attr_accessor :item_locking
+
     attr_accessor :item_usage_event
 
     # LockDefaultKey determines whether the configured default key can be updated by end-users on a per-request basis true - all requests use the configured default key false - every request can determine its protection key (default) nil - change nothing (every request can determine its protection key (default)) This parameter is only relevant if AccountDefaultKeyItemID is not empty
@@ -81,12 +87,15 @@ module Akeyless
         :'auth_usage_event' => :'auth_usage_event',
         :'certificate_expiration_events' => :'certificate_expiration_events',
         :'data_protection_section' => :'data_protection_section',
+        :'default_auth_method' => :'default_auth_method',
         :'default_home_page' => :'default_home_page',
         :'dynamic_secret_max_ttl' => :'dynamic_secret_max_ttl',
         :'enable_request_for_access' => :'enable_request_for_access',
         :'hide_personal_folder' => :'hide_personal_folder',
+        :'hide_secret_reveal_copy' => :'hide_secret_reveal_copy',
         :'hide_static_password' => :'hide_static_password',
         :'invalid_characters' => :'invalid_characters',
+        :'item_locking' => :'item_locking',
         :'item_usage_event' => :'item_usage_event',
         :'lock_default_key' => :'lock_default_key',
         :'password_expiration_info' => :'password_expiration_info',
@@ -116,12 +125,15 @@ module Akeyless
         :'auth_usage_event' => :'UsageEventSetting',
         :'certificate_expiration_events' => :'CertificateExpirationEventsSettings',
         :'data_protection_section' => :'DataProtectionSection',
+        :'default_auth_method' => :'DefaultAuthMethodSettings',
         :'default_home_page' => :'DefaultHomePage',
         :'dynamic_secret_max_ttl' => :'DynamicSecretMaxTtl',
         :'enable_request_for_access' => :'Boolean',
         :'hide_personal_folder' => :'Boolean',
+        :'hide_secret_reveal_copy' => :'Boolean',
         :'hide_static_password' => :'Boolean',
         :'invalid_characters' => :'String',
+        :'item_locking' => :'ItemLockingSetting',
         :'item_usage_event' => :'UsageEventSetting',
         :'lock_default_key' => :'Boolean',
         :'password_expiration_info' => :'PasswordExpirationInfo',
@@ -194,6 +206,10 @@ module Akeyless
         self.data_protection_section = attributes[:'data_protection_section']
       end
 
+      if attributes.key?(:'default_auth_method')
+        self.default_auth_method = attributes[:'default_auth_method']
+      end
+
       if attributes.key?(:'default_home_page')
         self.default_home_page = attributes[:'default_home_page']
       end
@@ -210,6 +226,10 @@ module Akeyless
         self.hide_personal_folder = attributes[:'hide_personal_folder']
       end
 
+      if attributes.key?(:'hide_secret_reveal_copy')
+        self.hide_secret_reveal_copy = attributes[:'hide_secret_reveal_copy']
+      end
+
       if attributes.key?(:'hide_static_password')
         self.hide_static_password = attributes[:'hide_static_password']
       end
@@ -218,6 +238,10 @@ module Akeyless
         self.invalid_characters = attributes[:'invalid_characters']
       end
 
+      if attributes.key?(:'item_locking')
+        self.item_locking = attributes[:'item_locking']
+      end
+
       if attributes.key?(:'item_usage_event')
         self.item_usage_event = attributes[:'item_usage_event']
       end
@@ -281,12 +305,15 @@ module Akeyless
           auth_usage_event == o.auth_usage_event &&
           certificate_expiration_events == o.certificate_expiration_events &&
           data_protection_section == o.data_protection_section &&
+          default_auth_method == o.default_auth_method &&
           default_home_page == o.default_home_page &&
           dynamic_secret_max_ttl == o.dynamic_secret_max_ttl &&
           enable_request_for_access == o.enable_request_for_access &&
           hide_personal_folder == o.hide_personal_folder &&
+          hide_secret_reveal_copy == o.hide_secret_reveal_copy &&
           hide_static_password == o.hide_static_password &&
           invalid_characters == o.invalid_characters &&
+          item_locking == o.item_locking &&
           item_usage_event == o.item_usage_event &&
           lock_default_key == o.lock_default_key &&
           password_expiration_info == o.password_expiration_info &&
@@ -306,7 +333,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [account_default_key_item_id, account_default_key_name, ai_insights, allow_auto_fill, allowed_client_types, allowed_clients_ips, allowed_gateways_ips, auth_usage_event, certificate_expiration_events, data_protection_section, default_home_page, dynamic_secret_max_ttl, enable_request_for_access, hide_personal_folder, hide_static_password, invalid_characters, item_usage_event, lock_default_key, password_expiration_info, password_policy, password_score, protect_items_by_default, rotation_secret_max_interval, sharing_policy].hash
+      [account_default_key_item_id, account_default_key_name, ai_insights, allow_auto_fill, allowed_client_types, allowed_clients_ips, allowed_gateways_ips, auth_usage_event, certificate_expiration_events, data_protection_section, default_auth_method, default_home_page, dynamic_secret_max_ttl, enable_request_for_access, hide_personal_folder, hide_secret_reveal_copy, hide_static_password, invalid_characters, item_locking, item_usage_event, lock_default_key, password_expiration_info, password_policy, password_score, protect_items_by_default, rotation_secret_max_interval, sharing_policy].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/active_directory_payload.rb

@@ -17,12 +17,18 @@ module Akeyless
   class ActiveDirectoryPayload
     attr_accessor :active_directory_target_id
 
+    attr_accessor :ai_certificate_discovery
+
     attr_accessor :auto_rotate
 
     attr_accessor :auto_rotate_interval_in_days
 
     attr_accessor :auto_rotate_rotation_hour
 
+    attr_accessor :certificates_expiration_events
+
+    attr_accessor :certificates_path_template
+
     attr_accessor :computer_base_dn
 
     attr_accessor :discover_iis_apps
@@ -66,9 +72,12 @@ module Akeyless
     def self.attribute_map
       {
         :'active_directory_target_id' => :'active_directory_target_id',
+        :'ai_certificate_discovery' => :'ai_certificate_discovery',
         :'auto_rotate' => :'auto_rotate',
         :'auto_rotate_interval_in_days' => :'auto_rotate_interval_in_days',
         :'auto_rotate_rotation_hour' => :'auto_rotate_rotation_hour',
+        :'certificates_expiration_events' => :'certificates_expiration_events',
+        :'certificates_path_template' => :'certificates_path_template',
         :'computer_base_dn' => :'computer_base_dn',
         :'discover_iis_apps' => :'discover_iis_apps',
         :'discover_local_users' => :'discover_local_users',
@@ -100,9 +109,12 @@ module Akeyless
     def self.openapi_types
       {
         :'active_directory_target_id' => :'Integer',
+        :'ai_certificate_discovery' => :'Boolean',
         :'auto_rotate' => :'Boolean',
         :'auto_rotate_interval_in_days' => :'Integer',
         :'auto_rotate_rotation_hour' => :'Integer',
+        :'certificates_expiration_events' => :'Array<CertificateExpirationEvent>',
+        :'certificates_path_template' => :'String',
         :'computer_base_dn' => :'String',
         :'discover_iis_apps' => :'Boolean',
         :'discover_local_users' => :'Boolean',
@@ -150,6 +162,10 @@ module Akeyless
         self.active_directory_target_id = attributes[:'active_directory_target_id']
       end
 
+      if attributes.key?(:'ai_certificate_discovery')
+        self.ai_certificate_discovery = attributes[:'ai_certificate_discovery']
+      end
+
       if attributes.key?(:'auto_rotate')
         self.auto_rotate = attributes[:'auto_rotate']
       end
@@ -162,6 +178,16 @@ module Akeyless
         self.auto_rotate_rotation_hour = attributes[:'auto_rotate_rotation_hour']
       end
 
+      if attributes.key?(:'certificates_expiration_events')
+        if (value = attributes[:'certificates_expiration_events']).is_a?(Array)
+          self.certificates_expiration_events = value
+        end
+      end
+
+      if attributes.key?(:'certificates_path_template')
+        self.certificates_path_template = attributes[:'certificates_path_template']
+      end
+
       if attributes.key?(:'computer_base_dn')
         self.computer_base_dn = attributes[:'computer_base_dn']
       end
@@ -266,9 +292,12 @@ module Akeyless
       return true if self.equal?(o)
       self.class == o.class &&
           active_directory_target_id == o.active_directory_target_id &&
+          ai_certificate_discovery == o.ai_certificate_discovery &&
           auto_rotate == o.auto_rotate &&
           auto_rotate_interval_in_days == o.auto_rotate_interval_in_days &&
           auto_rotate_rotation_hour == o.auto_rotate_rotation_hour &&
+          certificates_expiration_events == o.certificates_expiration_events &&
+          certificates_path_template == o.certificates_path_template &&
           computer_base_dn == o.computer_base_dn &&
           discover_iis_apps == o.discover_iis_apps &&
           discover_local_users == o.discover_local_users &&
@@ -299,7 +328,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [active_directory_target_id, auto_rotate, auto_rotate_interval_in_days, auto_rotate_rotation_hour, computer_base_dn, discover_iis_apps, discover_local_users, discover_services, discovery_types, domain_name, domain_server_targets_path_template, domain_users_rotated_secrets_path_template, enable_rdp_sra, local_users_ignore_list, local_users_rotated_secrets_path_template, os_filter, ssh_port, target_format, targets_type, user_base_dn, user_groups, winrm_over_http, winrm_port].hash
+      [active_directory_target_id, ai_certificate_discovery, auto_rotate, auto_rotate_interval_in_days, auto_rotate_rotation_hour, certificates_expiration_events, certificates_path_template, computer_base_dn, discover_iis_apps, discover_local_users, discover_services, discovery_types, domain_name, domain_server_targets_path_template, domain_users_rotated_secrets_path_template, enable_rdp_sra, local_users_ignore_list, local_users_rotated_secrets_path_template, os_filter, ssh_port, target_format, targets_type, user_base_dn, user_groups, winrm_over_http, winrm_port].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/auth.rb

@@ -33,6 +33,9 @@ module Akeyless
     # Password (relevant only for access-type=password)
     attr_accessor :admin_password
 
+    # Azure cloud environment to use. Values: AzureCloud (default), AzureUSGovernment, AzureChinaCloud.
+    attr_accessor :azure_cloud
+
     # Certificate challenge encoded in base64. (relevant only for access-type=cert)
     attr_accessor :cert_challenge
 
@@ -115,6 +118,7 @@ module Akeyless
         :'account_id' => :'account-id',
         :'admin_email' => :'admin-email',
         :'admin_password' => :'admin-password',
+        :'azure_cloud' => :'azure-cloud',
         :'cert_challenge' => :'cert-challenge',
         :'cert_data' => :'cert-data',
         :'cloud_id' => :'cloud-id',
@@ -157,6 +161,7 @@ module Akeyless
         :'account_id' => :'String',
         :'admin_email' => :'String',
         :'admin_password' => :'String',
+        :'azure_cloud' => :'String',
         :'cert_challenge' => :'String',
         :'cert_data' => :'String',
         :'cloud_id' => :'String',
@@ -232,6 +237,12 @@ module Akeyless
         self.admin_password = attributes[:'admin_password']
       end
 
+      if attributes.key?(:'azure_cloud')
+        self.azure_cloud = attributes[:'azure_cloud']
+      else
+        self.azure_cloud = 'AzureCloud'
+      end
+
       if attributes.key?(:'cert_challenge')
         self.cert_challenge = attributes[:'cert_challenge']
       end
@@ -367,6 +378,7 @@ module Akeyless
           account_id == o.account_id &&
           admin_email == o.admin_email &&
           admin_password == o.admin_password &&
+          azure_cloud == o.azure_cloud &&
           cert_challenge == o.cert_challenge &&
           cert_data == o.cert_data &&
           cloud_id == o.cloud_id &&
@@ -403,7 +415,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [access_id, access_key, access_type, account_id, admin_email, admin_password, cert_challenge, cert_data, cloud_id, debug, disable_pafxfast, gateway_spn, gateway_url, gcp_audience, json, jwt, k8s_auth_config_name, k8s_service_account_token, kerberos_token, kerberos_username, key_data, keytab_data, krb5_conf_data, ldap_password, oci_auth_type, oci_group_ocid, otp, signed_cert_challenge, uid_token, use_remote_browser, username].hash
+      [access_id, access_key, access_type, account_id, admin_email, admin_password, azure_cloud, cert_challenge, cert_data, cloud_id, debug, disable_pafxfast, gateway_spn, gateway_url, gcp_audience, json, jwt, k8s_auth_config_name, k8s_service_account_token, kerberos_token, kerberos_username, key_data, keytab_data, krb5_conf_data, ldap_password, oci_auth_type, oci_group_ocid, otp, signed_cert_challenge, uid_token, use_remote_browser, username].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/auth_method_create_cert.rb

@@ -79,6 +79,9 @@ module Akeyless
     # Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]
     attr_accessor :product_type
 
+    # Require certificate CRL distribution points (CDP) and enforce CRL validation during authentication.
+    attr_accessor :require_crl_dp
+
     # A list of revoked cert ids
     attr_accessor :revoked_cert_ids
 
@@ -115,6 +118,7 @@ module Akeyless
         :'jwt_ttl' => :'jwt-ttl',
         :'name' => :'name',
         :'product_type' => :'product-type',
+        :'require_crl_dp' => :'require-crl-dp',
         :'revoked_cert_ids' => :'revoked-cert-ids',
         :'token' => :'token',
         :'uid_token' => :'uid-token',
@@ -151,6 +155,7 @@ module Akeyless
         :'jwt_ttl' => :'Integer',
         :'name' => :'String',
         :'product_type' => :'Array<String>',
+        :'require_crl_dp' => :'Boolean',
         :'revoked_cert_ids' => :'Array<String>',
         :'token' => :'String',
         :'uid_token' => :'String',
@@ -295,6 +300,10 @@ module Akeyless
         end
       end
 
+      if attributes.key?(:'require_crl_dp')
+        self.require_crl_dp = attributes[:'require_crl_dp']
+      end
+
       if attributes.key?(:'revoked_cert_ids')
         if (value = attributes[:'revoked_cert_ids']).is_a?(Array)
           self.revoked_cert_ids = value
@@ -367,6 +376,7 @@ module Akeyless
           jwt_ttl == o.jwt_ttl &&
           name == o.name &&
           product_type == o.product_type &&
+          require_crl_dp == o.require_crl_dp &&
           revoked_cert_ids == o.revoked_cert_ids &&
           token == o.token &&
           uid_token == o.uid_token &&
@@ -382,7 +392,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [access_expires, allowed_client_type, allowed_cors, audit_logs_claims, bound_common_names, bound_dns_sans, bound_email_sans, bound_extensions, bound_ips, bound_organizational_units, bound_uri_sans, certificate_data, delete_protection, description, expiration_event_in, force_sub_claims, gw_bound_ips, json, jwt_ttl, name, product_type, revoked_cert_ids, token, uid_token, unique_identifier].hash
+      [access_expires, allowed_client_type, allowed_cors, audit_logs_claims, bound_common_names, bound_dns_sans, bound_email_sans, bound_extensions, bound_ips, bound_organizational_units, bound_uri_sans, certificate_data, delete_protection, description, expiration_event_in, force_sub_claims, gw_bound_ips, json, jwt_ttl, name, product_type, require_crl_dp, revoked_cert_ids, token, uid_token, unique_identifier].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/auth_method_create_universal_identity.rb

@@ -28,6 +28,9 @@ module Akeyless
     # A CIDR whitelist with the IPs that the access is restricted to
     attr_accessor :bound_ips
 
+    # Maximum child token ttl allowed in uid-create-child-token
+    attr_accessor :child_ttl_limit
+
     # Protection from accidental deletion of this object [true/false]
     attr_accessor :delete_protection
 
@@ -64,6 +67,9 @@ module Akeyless
     # Authentication token (see `/auth` and `/configure`)
     attr_accessor :token
 
+    # Maximum UID tree depth allowed (child of child of ...)
+    attr_accessor :tree_length
+
     # Token ttl
     attr_accessor :ttl
 
@@ -77,6 +83,7 @@ module Akeyless
         :'allowed_client_type' => :'allowed-client-type',
         :'audit_logs_claims' => :'audit-logs-claims',
         :'bound_ips' => :'bound-ips',
+        :'child_ttl_limit' => :'child-ttl-limit',
         :'delete_protection' => :'delete_protection',
         :'deny_inheritance' => :'deny-inheritance',
         :'deny_rotate' => :'deny-rotate',
@@ -89,6 +96,7 @@ module Akeyless
         :'name' => :'name',
         :'product_type' => :'product-type',
         :'token' => :'token',
+        :'tree_length' => :'tree-length',
         :'ttl' => :'ttl',
         :'uid_token' => :'uid-token'
       }
@@ -106,6 +114,7 @@ module Akeyless
         :'allowed_client_type' => :'Array<String>',
         :'audit_logs_claims' => :'Array<String>',
         :'bound_ips' => :'Array<String>',
+        :'child_ttl_limit' => :'Integer',
         :'delete_protection' => :'String',
         :'deny_inheritance' => :'Boolean',
         :'deny_rotate' => :'Boolean',
@@ -118,6 +127,7 @@ module Akeyless
         :'name' => :'String',
         :'product_type' => :'Array<String>',
         :'token' => :'String',
+        :'tree_length' => :'Integer',
         :'ttl' => :'Integer',
         :'uid_token' => :'String'
       }
@@ -168,6 +178,12 @@ module Akeyless
         end
       end
 
+      if attributes.key?(:'child_ttl_limit')
+        self.child_ttl_limit = attributes[:'child_ttl_limit']
+      else
+        self.child_ttl_limit = 43200
+      end
+
       if attributes.key?(:'delete_protection')
         self.delete_protection = attributes[:'delete_protection']
       end
@@ -228,6 +244,12 @@ module Akeyless
         self.token = attributes[:'token']
       end
 
+      if attributes.key?(:'tree_length')
+        self.tree_length = attributes[:'tree_length']
+      else
+        self.tree_length = 200
+      end
+
       if attributes.key?(:'ttl')
         self.ttl = attributes[:'ttl']
       else
@@ -268,6 +290,7 @@ module Akeyless
           allowed_client_type == o.allowed_client_type &&
           audit_logs_claims == o.audit_logs_claims &&
           bound_ips == o.bound_ips &&
+          child_ttl_limit == o.child_ttl_limit &&
           delete_protection == o.delete_protection &&
           deny_inheritance == o.deny_inheritance &&
           deny_rotate == o.deny_rotate &&
@@ -280,6 +303,7 @@ module Akeyless
           name == o.name &&
           product_type == o.product_type &&
           token == o.token &&
+          tree_length == o.tree_length &&
           ttl == o.ttl &&
           uid_token == o.uid_token
     end
@@ -293,7 +317,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [access_expires, allowed_client_type, audit_logs_claims, bound_ips, delete_protection, deny_inheritance, deny_rotate, description, expiration_event_in, force_sub_claims, gw_bound_ips, json, jwt_ttl, name, product_type, token, ttl, uid_token].hash
+      [access_expires, allowed_client_type, audit_logs_claims, bound_ips, child_ttl_limit, delete_protection, deny_inheritance, deny_rotate, description, expiration_event_in, force_sub_claims, gw_bound_ips, json, jwt_ttl, name, product_type, token, tree_length, ttl, uid_token].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/auth_method_update_cert.rb

@@ -82,6 +82,9 @@ module Akeyless
     # Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]
     attr_accessor :product_type
 
+    # Require certificate CRL distribution points (CDP) and enforce CRL validation during authentication.
+    attr_accessor :require_crl_dp
+
     # A list of revoked cert ids
     attr_accessor :revoked_cert_ids
 
@@ -119,6 +122,7 @@ module Akeyless
         :'name' => :'name',
         :'new_name' => :'new-name',
         :'product_type' => :'product-type',
+        :'require_crl_dp' => :'require-crl-dp',
         :'revoked_cert_ids' => :'revoked-cert-ids',
         :'token' => :'token',
         :'uid_token' => :'uid-token',
@@ -156,6 +160,7 @@ module Akeyless
         :'name' => :'String',
         :'new_name' => :'String',
         :'product_type' => :'Array<String>',
+        :'require_crl_dp' => :'Boolean',
         :'revoked_cert_ids' => :'Array<String>',
         :'token' => :'String',
         :'uid_token' => :'String',
@@ -304,6 +309,10 @@ module Akeyless
         end
       end
 
+      if attributes.key?(:'require_crl_dp')
+        self.require_crl_dp = attributes[:'require_crl_dp']
+      end
+
       if attributes.key?(:'revoked_cert_ids')
         if (value = attributes[:'revoked_cert_ids']).is_a?(Array)
           self.revoked_cert_ids = value
@@ -377,6 +386,7 @@ module Akeyless
           name == o.name &&
           new_name == o.new_name &&
           product_type == o.product_type &&
+          require_crl_dp == o.require_crl_dp &&
           revoked_cert_ids == o.revoked_cert_ids &&
           token == o.token &&
           uid_token == o.uid_token &&
@@ -392,7 +402,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [access_expires, allowed_client_type, allowed_cors, audit_logs_claims, bound_common_names, bound_dns_sans, bound_email_sans, bound_extensions, bound_ips, bound_organizational_units, bound_uri_sans, certificate_data, delete_protection, description, expiration_event_in, force_sub_claims, gw_bound_ips, json, jwt_ttl, name, new_name, product_type, revoked_cert_ids, token, uid_token, unique_identifier].hash
+      [access_expires, allowed_client_type, allowed_cors, audit_logs_claims, bound_common_names, bound_dns_sans, bound_email_sans, bound_extensions, bound_ips, bound_organizational_units, bound_uri_sans, certificate_data, delete_protection, description, expiration_event_in, force_sub_claims, gw_bound_ips, json, jwt_ttl, name, new_name, product_type, require_crl_dp, revoked_cert_ids, token, uid_token, unique_identifier].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/auth_method_update_universal_identity.rb

@@ -28,6 +28,9 @@ module Akeyless
     # A CIDR whitelist with the IPs that the access is restricted to
     attr_accessor :bound_ips
 
+    # Maximum child token ttl allowed in uid-create-child-token
+    attr_accessor :child_ttl_limit
+
     # Protection from accidental deletion of this object [true/false]
     attr_accessor :delete_protection
 
@@ -67,6 +70,9 @@ module Akeyless
     # Authentication token (see `/auth` and `/configure`)
     attr_accessor :token
 
+    # Maximum UID tree depth allowed (child of child of ...)
+    attr_accessor :tree_length
+
     # Token ttl
     attr_accessor :ttl
 
@@ -80,6 +86,7 @@ module Akeyless
         :'allowed_client_type' => :'allowed-client-type',
         :'audit_logs_claims' => :'audit-logs-claims',
         :'bound_ips' => :'bound-ips',
+        :'child_ttl_limit' => :'child-ttl-limit',
         :'delete_protection' => :'delete_protection',
         :'deny_inheritance' => :'deny-inheritance',
         :'deny_rotate' => :'deny-rotate',
@@ -93,6 +100,7 @@ module Akeyless
         :'new_name' => :'new-name',
         :'product_type' => :'product-type',
         :'token' => :'token',
+        :'tree_length' => :'tree-length',
         :'ttl' => :'ttl',
         :'uid_token' => :'uid-token'
       }
@@ -110,6 +118,7 @@ module Akeyless
         :'allowed_client_type' => :'Array<String>',
         :'audit_logs_claims' => :'Array<String>',
         :'bound_ips' => :'Array<String>',
+        :'child_ttl_limit' => :'Integer',
         :'delete_protection' => :'String',
         :'deny_inheritance' => :'Boolean',
         :'deny_rotate' => :'Boolean',
@@ -123,6 +132,7 @@ module Akeyless
         :'new_name' => :'String',
         :'product_type' => :'Array<String>',
         :'token' => :'String',
+        :'tree_length' => :'Integer',
         :'ttl' => :'Integer',
         :'uid_token' => :'String'
       }
@@ -173,6 +183,12 @@ module Akeyless
         end
       end
 
+      if attributes.key?(:'child_ttl_limit')
+        self.child_ttl_limit = attributes[:'child_ttl_limit']
+      else
+        self.child_ttl_limit = 43200
+      end
+
       if attributes.key?(:'delete_protection')
         self.delete_protection = attributes[:'delete_protection']
       end
@@ -237,6 +253,12 @@ module Akeyless
         self.token = attributes[:'token']
       end
 
+      if attributes.key?(:'tree_length')
+        self.tree_length = attributes[:'tree_length']
+      else
+        self.tree_length = 200
+      end
+
       if attributes.key?(:'ttl')
         self.ttl = attributes[:'ttl']
       else
@@ -277,6 +299,7 @@ module Akeyless
           allowed_client_type == o.allowed_client_type &&
           audit_logs_claims == o.audit_logs_claims &&
           bound_ips == o.bound_ips &&
+          child_ttl_limit == o.child_ttl_limit &&
           delete_protection == o.delete_protection &&
           deny_inheritance == o.deny_inheritance &&
           deny_rotate == o.deny_rotate &&
@@ -290,6 +313,7 @@ module Akeyless
           new_name == o.new_name &&
           product_type == o.product_type &&
           token == o.token &&
+          tree_length == o.tree_length &&
           ttl == o.ttl &&
           uid_token == o.uid_token
     end
@@ -303,7 +327,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [access_expires, allowed_client_type, audit_logs_claims, bound_ips, delete_protection, deny_inheritance, deny_rotate, description, expiration_event_in, force_sub_claims, gw_bound_ips, json, jwt_ttl, name, new_name, product_type, token, ttl, uid_token].hash
+      [access_expires, allowed_client_type, audit_logs_claims, bound_ips, child_ttl_limit, delete_protection, deny_inheritance, deny_rotate, description, expiration_event_in, force_sub_claims, gw_bound_ips, json, jwt_ttl, name, new_name, product_type, token, tree_length, ttl, uid_token].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/aws_storage.rb

@@ -24,6 +24,8 @@ module Akeyless
 
     attr_accessor :bucket
 
+    attr_accessor :endpoint_url
+
     attr_accessor :prefix
 
     attr_accessor :region
@@ -35,6 +37,7 @@ module Akeyless
         :'access_key_secret' => :'access_key_secret',
         :'auth_type' => :'auth_type',
         :'bucket' => :'bucket',
+        :'endpoint_url' => :'endpoint_url',
         :'prefix' => :'prefix',
         :'region' => :'region'
       }
@@ -52,6 +55,7 @@ module Akeyless
         :'access_key_secret' => :'String',
         :'auth_type' => :'String',
         :'bucket' => :'String',
+        :'endpoint_url' => :'String',
         :'prefix' => :'String',
         :'region' => :'String'
       }
@@ -94,6 +98,10 @@ module Akeyless
         self.bucket = attributes[:'bucket']
       end
 
+      if attributes.key?(:'endpoint_url')
+        self.endpoint_url = attributes[:'endpoint_url']
+      end
+
       if attributes.key?(:'prefix')
         self.prefix = attributes[:'prefix']
       end
@@ -127,6 +135,7 @@ module Akeyless
           access_key_secret == o.access_key_secret &&
           auth_type == o.auth_type &&
           bucket == o.bucket &&
+          endpoint_url == o.endpoint_url &&
           prefix == o.prefix &&
           region == o.region
     end
@@ -140,7 +149,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [access_key_id, access_key_secret, auth_type, bucket, prefix, region].hash
+      [access_key_id, access_key_secret, auth_type, bucket, endpoint_url, prefix, region].hash
     end
 
     # Builds the object from hash

data/lib/akeyless/models/azure_ad_access_rules.rb

@@ -19,6 +19,9 @@ module Akeyless
     # The audience in the JWT.
     attr_accessor :ad_endpoint
 
+    # Azure cloud environment [AzureCloud/AzureUSGovernment/AzureChinaCloud]. For create/update, cloud is inferred from jwks_uri.
+    attr_accessor :azure_cloud
+
     # The list of group ids that login is restricted to.
     attr_accessor :bound_group_ids
 
@@ -59,6 +62,7 @@ module Akeyless
     def self.attribute_map
       {
         :'ad_endpoint' => :'ad_endpoint',
+        :'azure_cloud' => :'azure_cloud',
         :'bound_group_ids' => :'bound_group_ids',
         :'bound_resource_groups' => :'bound_resource_groups',
         :'bound_resource_ids' => :'bound_resource_ids',
@@ -83,6 +87,7 @@ module Akeyless
     def self.openapi_types
       {
         :'ad_endpoint' => :'String',
+        :'azure_cloud' => :'String',
         :'bound_group_ids' => :'Array<String>',
         :'bound_resource_groups' => :'Array<String>',
         :'bound_resource_ids' => :'Array<String>',
@@ -123,6 +128,10 @@ module Akeyless
         self.ad_endpoint = attributes[:'ad_endpoint']
       end
 
+      if attributes.key?(:'azure_cloud')
+        self.azure_cloud = attributes[:'azure_cloud']
+      end
+
       if attributes.key?(:'bound_group_ids')
         if (value = attributes[:'bound_group_ids']).is_a?(Array)
           self.bound_group_ids = value
@@ -209,6 +218,7 @@ module Akeyless
       return true if self.equal?(o)
       self.class == o.class &&
           ad_endpoint == o.ad_endpoint &&
+          azure_cloud == o.azure_cloud &&
           bound_group_ids == o.bound_group_ids &&
           bound_resource_groups == o.bound_resource_groups &&
           bound_resource_ids == o.bound_resource_ids &&
@@ -232,7 +242,7 @@ module Akeyless
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [ad_endpoint, bound_group_ids, bound_resource_groups, bound_resource_ids, bound_resource_names, bound_resource_providers, bound_resource_types, bound_service_principal_ids, bound_subscription_ids, bound_tenant_id, issuer, jwks_uri, unique_identifier].hash
+      [ad_endpoint, azure_cloud, bound_group_ids, bound_resource_groups, bound_resource_ids, bound_resource_names, bound_resource_providers, bound_resource_types, bound_service_principal_ids, bound_subscription_ids, bound_tenant_id, issuer, jwks_uri, unique_identifier].hash
     end
 
     # Builds the object from hash