akeyless 5.0.22 → 5.0.23

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e46636c1d6bff155fd9a66320a4156d9e72ad18b96638976e12c761a2c70c258
-  data.tar.gz: e6f954813204f8e93a874b72d88c9725f1e51c46bb4691f28dd669324580b5e7
+  metadata.gz: 54d5e27001c7dca8fec528ccef0ba602412ae096e197035019d8730993e73c39
+  data.tar.gz: 6039cf7eda6ffeb169972d322cb1b84fb0395754d001d9ac1bb4d04e08bbf870
 SHA512:
-  metadata.gz: 00cf27d9e20ab8e2a3c35323ced26fff0dd74932948301bb56705e279e6e38b6c5e8884582d126d26aca9b7145aa73795fad766f731baa8f42e70cfc1493e200
-  data.tar.gz: '08be6c31019f3b0d626ba38fa3316cc9456dbb490bf623c59535abba8023adc844f495231e2af789d33ac4608b777021ea04586d136f824a6da969f6863089fc'
+  metadata.gz: 16797736d200f55758755e82e569b4171a6c4187bc5cc546a868886977d793f7ce4f4db36bfc1e583cd531212430fc706096f25450739bc25506ebe9e9550595
+  data.tar.gz: deec5d389acb810bd005cb277622ed957a788e76fce0c2a7a3ce176e9fe25b565c8bcec31935031282bdc1b3ebb476fd060f530a936f907705634362644c33ef

data/README.md

@@ -7,7 +7,7 @@ The purpose of this application is to provide access to Akeyless API.
 This SDK is automatically generated by the [OpenAPI Generator](https://openapi-generator.tech) project:
 
 - API version: 3.0
-- Package version: 5.0.22
+- Package version: 5.0.23
 - Generator version: 7.10.0
 - Build package: org.openapitools.codegen.languages.RubyClientCodegen
 For more information, please visit [http://akeyless.io](http://akeyless.io)
@@ -443,6 +443,8 @@ Class | Method | HTTP request | Description
 *Akeyless::V2Api* | [**list_sra_bastions**](docs/V2Api.md#list_sra_bastions) | **POST** /list-sra-bastions | 
 *Akeyless::V2Api* | [**list_sra_sessions**](docs/V2Api.md#list_sra_sessions) | **POST** /list-sra-sessions | 
 *Akeyless::V2Api* | [**list_targets**](docs/V2Api.md#list_targets) | **POST** /list-targets | 
+*Akeyless::V2Api* | [**lock_item**](docs/V2Api.md#lock_item) | **POST** /lock-item | 
+*Akeyless::V2Api* | [**lock_target**](docs/V2Api.md#lock_target) | **POST** /lock-target | 
 *Akeyless::V2Api* | [**move_objects**](docs/V2Api.md#move_objects) | **POST** /move-objects | 
 *Akeyless::V2Api* | [**policies_delete**](docs/V2Api.md#policies_delete) | **POST** /policy-delete | 
 *Akeyless::V2Api* | [**policies_get**](docs/V2Api.md#policies_get) | **POST** /policy-get | 
@@ -524,6 +526,7 @@ Class | Method | HTTP request | Description
 *Akeyless::V2Api* | [**target_create_aws**](docs/V2Api.md#target_create_aws) | **POST** /target-create-aws | 
 *Akeyless::V2Api* | [**target_create_azure**](docs/V2Api.md#target_create_azure) | **POST** /target-create-azure | 
 *Akeyless::V2Api* | [**target_create_db**](docs/V2Api.md#target_create_db) | **POST** /target-create-db | 
+*Akeyless::V2Api* | [**target_create_digi_cert**](docs/V2Api.md#target_create_digi_cert) | **POST** /target-create-digicert | 
 *Akeyless::V2Api* | [**target_create_dockerhub**](docs/V2Api.md#target_create_dockerhub) | **POST** /target-create-dockerhub | 
 *Akeyless::V2Api* | [**target_create_eks**](docs/V2Api.md#target_create_eks) | **POST** /target-create-eks | 
 *Akeyless::V2Api* | [**target_create_gcp**](docs/V2Api.md#target_create_gcp) | **POST** /target-create-gcp | 
@@ -534,6 +537,7 @@ Class | Method | HTTP request | Description
 *Akeyless::V2Api* | [**target_create_global_sign**](docs/V2Api.md#target_create_global_sign) | **POST** /target-create-globalsign | 
 *Akeyless::V2Api* | [**target_create_global_sign_atlas**](docs/V2Api.md#target_create_global_sign_atlas) | **POST** /target-create-globalsign-atlas | 
 *Akeyless::V2Api* | [**target_create_godaddy**](docs/V2Api.md#target_create_godaddy) | **POST** /target-create-godaddy | 
+*Akeyless::V2Api* | [**target_create_google_trust**](docs/V2Api.md#target_create_google_trust) | **POST** /target-create-google-trust | 
 *Akeyless::V2Api* | [**target_create_hashi_vault**](docs/V2Api.md#target_create_hashi_vault) | **POST** /target-create-hashi-vault | 
 *Akeyless::V2Api* | [**target_create_k8s**](docs/V2Api.md#target_create_k8s) | **POST** /target-create-k8s | 
 *Akeyless::V2Api* | [**target_create_ldap**](docs/V2Api.md#target_create_ldap) | **POST** /target-create-ldap | 
@@ -557,6 +561,7 @@ Class | Method | HTTP request | Description
 *Akeyless::V2Api* | [**target_update_aws**](docs/V2Api.md#target_update_aws) | **POST** /target-update-aws | 
 *Akeyless::V2Api* | [**target_update_azure**](docs/V2Api.md#target_update_azure) | **POST** /target-update-azure | 
 *Akeyless::V2Api* | [**target_update_db**](docs/V2Api.md#target_update_db) | **POST** /target-update-db | 
+*Akeyless::V2Api* | [**target_update_digi_cert**](docs/V2Api.md#target_update_digi_cert) | **POST** /target-update-digicert | 
 *Akeyless::V2Api* | [**target_update_dockerhub**](docs/V2Api.md#target_update_dockerhub) | **POST** /target-update-dockerhub | 
 *Akeyless::V2Api* | [**target_update_eks**](docs/V2Api.md#target_update_eks) | **POST** /target-update-eks | 
 *Akeyless::V2Api* | [**target_update_gcp**](docs/V2Api.md#target_update_gcp) | **POST** /target-update-gcp | 
@@ -567,6 +572,7 @@ Class | Method | HTTP request | Description
 *Akeyless::V2Api* | [**target_update_global_sign**](docs/V2Api.md#target_update_global_sign) | **POST** /target-update-globalsign | 
 *Akeyless::V2Api* | [**target_update_global_sign_atlas**](docs/V2Api.md#target_update_global_sign_atlas) | **POST** /target-update-globalsign-atlas | 
 *Akeyless::V2Api* | [**target_update_godaddy**](docs/V2Api.md#target_update_godaddy) | **POST** /target-update-godaddy | 
+*Akeyless::V2Api* | [**target_update_google_trust**](docs/V2Api.md#target_update_google_trust) | **POST** /target-update-google-trust | 
 *Akeyless::V2Api* | [**target_update_hashi_vault**](docs/V2Api.md#target_update_hashi_vault) | **POST** /target-update-hashi-vault | 
 *Akeyless::V2Api* | [**target_update_k8s**](docs/V2Api.md#target_update_k8s) | **POST** /target-update-k8s | 
 *Akeyless::V2Api* | [**target_update_ldap**](docs/V2Api.md#target_update_ldap) | **POST** /target-update-ldap | 
@@ -588,6 +594,8 @@ Class | Method | HTTP request | Description
 *Akeyless::V2Api* | [**uid_list_children**](docs/V2Api.md#uid_list_children) | **POST** /uid-list-children | 
 *Akeyless::V2Api* | [**uid_revoke_token**](docs/V2Api.md#uid_revoke_token) | **POST** /uid-revoke-token | 
 *Akeyless::V2Api* | [**uid_rotate_token**](docs/V2Api.md#uid_rotate_token) | **POST** /uid-rotate-token | 
+*Akeyless::V2Api* | [**unlock_item**](docs/V2Api.md#unlock_item) | **POST** /unlock-item | 
+*Akeyless::V2Api* | [**unlock_target**](docs/V2Api.md#unlock_target) | **POST** /unlock-target | 
 *Akeyless::V2Api* | [**unwrap_token**](docs/V2Api.md#unwrap_token) | **POST** /unwrap-token | 
 *Akeyless::V2Api* | [**update_account_settings**](docs/V2Api.md#update_account_settings) | **POST** /update-account-settings | 
 *Akeyless::V2Api* | [**update_artifactory_target**](docs/V2Api.md#update_artifactory_target) | **POST** /update-artifactory-target | 
@@ -962,6 +970,7 @@ Class | Method | HTTP request | Description
  - [Akeyless::DesktopAppConf](docs/DesktopAppConf.md)
  - [Akeyless::Detokenize](docs/Detokenize.md)
  - [Akeyless::DetokenizeOutput](docs/DetokenizeOutput.md)
+ - [Akeyless::DigiCertTargetDetails](docs/DigiCertTargetDetails.md)
  - [Akeyless::DockerhubTargetDetails](docs/DockerhubTargetDetails.md)
  - [Akeyless::DynamicSecretCreateArtifactory](docs/DynamicSecretCreateArtifactory.md)
  - [Akeyless::DynamicSecretCreateAws](docs/DynamicSecretCreateAws.md)
@@ -1322,6 +1331,7 @@ Class | Method | HTTP request | Description
  - [Akeyless::GlobalSignGCCTargetDetails](docs/GlobalSignGCCTargetDetails.md)
  - [Akeyless::GodaddyTargetDetails](docs/GodaddyTargetDetails.md)
  - [Akeyless::GoogleChronicleForwardingConfig](docs/GoogleChronicleForwardingConfig.md)
+ - [Akeyless::GoogleTrustTargetDetails](docs/GoogleTrustTargetDetails.md)
  - [Akeyless::Group](docs/Group.md)
  - [Akeyless::GwClusterIdentity](docs/GwClusterIdentity.md)
  - [Akeyless::GwUpdateRemoteAccessSessionLogsAwsS3](docs/GwUpdateRemoteAccessSessionLogsAwsS3.md)
@@ -1349,6 +1359,7 @@ Class | Method | HTTP request | Description
  - [Akeyless::Item](docs/Item.md)
  - [Akeyless::ItemCustomFieldsDetails](docs/ItemCustomFieldsDetails.md)
  - [Akeyless::ItemGeneralInfo](docs/ItemGeneralInfo.md)
+ - [Akeyless::ItemLockingSetting](docs/ItemLockingSetting.md)
  - [Akeyless::ItemSraStatus](docs/ItemSraStatus.md)
  - [Akeyless::ItemTargetAssociation](docs/ItemTargetAssociation.md)
  - [Akeyless::ItemUSCSyncAssociation](docs/ItemUSCSyncAssociation.md)
@@ -1425,6 +1436,9 @@ Class | Method | HTTP request | Description
  - [Akeyless::ListSraSessionsOutput](docs/ListSraSessionsOutput.md)
  - [Akeyless::ListTargets](docs/ListTargets.md)
  - [Akeyless::ListTargetsOutput](docs/ListTargetsOutput.md)
+ - [Akeyless::LockItem](docs/LockItem.md)
+ - [Akeyless::LockTarget](docs/LockTarget.md)
+ - [Akeyless::LockingInfo](docs/LockingInfo.md)
  - [Akeyless::LogForwardingConfigPart](docs/LogForwardingConfigPart.md)
  - [Akeyless::LogstashLogForwardingConfig](docs/LogstashLogForwardingConfig.md)
  - [Akeyless::LogzIoLogForwardingConfig](docs/LogzIoLogForwardingConfig.md)
@@ -1440,6 +1454,7 @@ Class | Method | HTTP request | Description
  - [Akeyless::MoveObjects](docs/MoveObjects.md)
  - [Akeyless::Name](docs/Name.md)
  - [Akeyless::NativeK8sTargetDetails](docs/NativeK8sTargetDetails.md)
+ - [Akeyless::NetappStorage](docs/NetappStorage.md)
  - [Akeyless::NextAutoRotationEvent](docs/NextAutoRotationEvent.md)
  - [Akeyless::NotiForwarder](docs/NotiForwarder.md)
  - [Akeyless::NotiForwarderDetailsInput](docs/NotiForwarderDetailsInput.md)
@@ -1609,6 +1624,7 @@ Class | Method | HTTP request | Description
  - [Akeyless::StaticSecretDetailsInfo](docs/StaticSecretDetailsInfo.md)
  - [Akeyless::StaticSecretSync](docs/StaticSecretSync.md)
  - [Akeyless::SumologicLogForwardingConfig](docs/SumologicLogForwardingConfig.md)
+ - [Akeyless::SyncCounters](docs/SyncCounters.md)
  - [Akeyless::SyslogLogForwardingConfig](docs/SyslogLogForwardingConfig.md)
  - [Akeyless::SystemAccessCredentialsReplyObj](docs/SystemAccessCredentialsReplyObj.md)
  - [Akeyless::SystemAccessCredsSettings](docs/SystemAccessCredsSettings.md)
@@ -1617,6 +1633,7 @@ Class | Method | HTTP request | Description
  - [Akeyless::TargetCreateAws](docs/TargetCreateAws.md)
  - [Akeyless::TargetCreateAzure](docs/TargetCreateAzure.md)
  - [Akeyless::TargetCreateDB](docs/TargetCreateDB.md)
+ - [Akeyless::TargetCreateDigiCert](docs/TargetCreateDigiCert.md)
  - [Akeyless::TargetCreateDockerhub](docs/TargetCreateDockerhub.md)
  - [Akeyless::TargetCreateEks](docs/TargetCreateEks.md)
  - [Akeyless::TargetCreateGcp](docs/TargetCreateGcp.md)
@@ -1627,6 +1644,7 @@ Class | Method | HTTP request | Description
  - [Akeyless::TargetCreateGlobalSign](docs/TargetCreateGlobalSign.md)
  - [Akeyless::TargetCreateGlobalSignAtlas](docs/TargetCreateGlobalSignAtlas.md)
  - [Akeyless::TargetCreateGodaddy](docs/TargetCreateGodaddy.md)
+ - [Akeyless::TargetCreateGoogleTrust](docs/TargetCreateGoogleTrust.md)
  - [Akeyless::TargetCreateHashiVault](docs/TargetCreateHashiVault.md)
  - [Akeyless::TargetCreateK8s](docs/TargetCreateK8s.md)
  - [Akeyless::TargetCreateLdap](docs/TargetCreateLdap.md)
@@ -1656,6 +1674,7 @@ Class | Method | HTTP request | Description
  - [Akeyless::TargetUpdateAws](docs/TargetUpdateAws.md)
  - [Akeyless::TargetUpdateAzure](docs/TargetUpdateAzure.md)
  - [Akeyless::TargetUpdateDB](docs/TargetUpdateDB.md)
+ - [Akeyless::TargetUpdateDigiCert](docs/TargetUpdateDigiCert.md)
  - [Akeyless::TargetUpdateDockerhub](docs/TargetUpdateDockerhub.md)
  - [Akeyless::TargetUpdateEks](docs/TargetUpdateEks.md)
  - [Akeyless::TargetUpdateGcp](docs/TargetUpdateGcp.md)
@@ -1666,6 +1685,7 @@ Class | Method | HTTP request | Description
  - [Akeyless::TargetUpdateGlobalSign](docs/TargetUpdateGlobalSign.md)
  - [Akeyless::TargetUpdateGlobalSignAtlas](docs/TargetUpdateGlobalSignAtlas.md)
  - [Akeyless::TargetUpdateGodaddy](docs/TargetUpdateGodaddy.md)
+ - [Akeyless::TargetUpdateGoogleTrust](docs/TargetUpdateGoogleTrust.md)
  - [Akeyless::TargetUpdateHashiVault](docs/TargetUpdateHashiVault.md)
  - [Akeyless::TargetUpdateK8s](docs/TargetUpdateK8s.md)
  - [Akeyless::TargetUpdateLdap](docs/TargetUpdateLdap.md)
@@ -1698,6 +1718,8 @@ Class | Method | HTTP request | Description
  - [Akeyless::Unconfigure](docs/Unconfigure.md)
  - [Akeyless::UniversalIdentityAccessRules](docs/UniversalIdentityAccessRules.md)
  - [Akeyless::UniversalIdentityDetails](docs/UniversalIdentityDetails.md)
+ - [Akeyless::UnlockItem](docs/UnlockItem.md)
+ - [Akeyless::UnlockTarget](docs/UnlockTarget.md)
  - [Akeyless::UnwrapToken](docs/UnwrapToken.md)
  - [Akeyless::UnwrapTokenOutput](docs/UnwrapTokenOutput.md)
  - [Akeyless::Update](docs/Update.md)

data/docs/AccountGeneralSettings.md

@@ -19,8 +19,10 @@
 | **dynamic_secret_max_ttl** | [**DynamicSecretMaxTtl**](DynamicSecretMaxTtl.md) |  | [optional] |
 | **enable_request_for_access** | **Boolean** |  | [optional] |
 | **hide_personal_folder** | **Boolean** |  | [optional] |
+| **hide_secret_reveal_copy** | **Boolean** |  | [optional] |
 | **hide_static_password** | **Boolean** |  | [optional] |
 | **invalid_characters** | **String** | InvalidCharacters is the invalid characters for items/targets/roles/auths/notifier_forwarder naming convention | [optional] |
+| **item_locking** | [**ItemLockingSetting**](ItemLockingSetting.md) |  | [optional] |
 | **item_usage_event** | [**UsageEventSetting**](UsageEventSetting.md) |  | [optional] |
 | **lock_default_key** | **Boolean** | LockDefaultKey determines whether the configured default key can be updated by end-users on a per-request basis true - all requests use the configured default key false - every request can determine its protection key (default) nil - change nothing (every request can determine its protection key (default)) This parameter is only relevant if AccountDefaultKeyItemID is not empty | [optional] |
 | **password_expiration_info** | [**PasswordExpirationInfo**](PasswordExpirationInfo.md) |  | [optional] |
@@ -51,8 +53,10 @@ instance = Akeyless::AccountGeneralSettings.new(
   dynamic_secret_max_ttl: null,
   enable_request_for_access: null,
   hide_personal_folder: null,
+  hide_secret_reveal_copy: null,
   hide_static_password: null,
   invalid_characters: null,
+  item_locking: null,
   item_usage_event: null,
   lock_default_key: null,
   password_expiration_info: null,

data/docs/AuthMethodCreateUniversalIdentity.md

@@ -8,6 +8,7 @@
 | **allowed_client_type** | **Array<String>** | limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension] | [optional] |
 | **audit_logs_claims** | **Array<String>** | Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\" | [optional] |
 | **bound_ips** | **Array<String>** | A CIDR whitelist with the IPs that the access is restricted to | [optional] |
+| **child_ttl_limit** | **Integer** | Maximum child token ttl allowed in uid-create-child-token | [optional][default to 43200] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **deny_inheritance** | **Boolean** | Deny from root to create children | [optional] |
 | **deny_rotate** | **Boolean** | Deny from the token to rotate | [optional] |
@@ -20,6 +21,7 @@
 | **name** | **String** | Auth Method name |  |
 | **product_type** | **Array<String>** | Choose the relevant product type for the auth method [sm, sra, pm, dp, ca] | [optional] |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
+| **tree_length** | **Integer** | Maximum UID tree depth allowed (child of child of ...) | [optional][default to 200] |
 | **ttl** | **Integer** | Token ttl | [optional][default to 60] |
 | **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
 
@@ -33,6 +35,7 @@ instance = Akeyless::AuthMethodCreateUniversalIdentity.new(
   allowed_client_type: null,
   audit_logs_claims: null,
   bound_ips: null,
+  child_ttl_limit: null,
   delete_protection: null,
   deny_inheritance: null,
   deny_rotate: null,
@@ -45,6 +48,7 @@ instance = Akeyless::AuthMethodCreateUniversalIdentity.new(
   name: null,
   product_type: null,
   token: null,
+  tree_length: null,
   ttl: null,
   uid_token: null
 )

data/docs/AuthMethodUpdateUniversalIdentity.md

@@ -8,6 +8,7 @@
 | **allowed_client_type** | **Array<String>** | limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension] | [optional] |
 | **audit_logs_claims** | **Array<String>** | Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\" | [optional] |
 | **bound_ips** | **Array<String>** | A CIDR whitelist with the IPs that the access is restricted to | [optional] |
+| **child_ttl_limit** | **Integer** | Maximum child token ttl allowed in uid-create-child-token | [optional][default to 43200] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **deny_inheritance** | **Boolean** | Deny from root to create children | [optional] |
 | **deny_rotate** | **Boolean** | Deny from the token to rotate | [optional] |
@@ -21,6 +22,7 @@
 | **new_name** | **String** | Auth Method new name | [optional] |
 | **product_type** | **Array<String>** | Choose the relevant product type for the auth method [sm, sra, pm, dp, ca] | [optional] |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
+| **tree_length** | **Integer** | Maximum UID tree depth allowed (child of child of ...) | [optional][default to 200] |
 | **ttl** | **Integer** | Token ttl | [optional][default to 60] |
 | **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
 
@@ -34,6 +36,7 @@ instance = Akeyless::AuthMethodUpdateUniversalIdentity.new(
   allowed_client_type: null,
   audit_logs_claims: null,
   bound_ips: null,
+  child_ttl_limit: null,
   delete_protection: null,
   deny_inheritance: null,
   deny_rotate: null,
@@ -47,6 +50,7 @@ instance = Akeyless::AuthMethodUpdateUniversalIdentity.new(
   new_name: null,
   product_type: null,
   token: null,
+  tree_length: null,
   ttl: null,
   uid_token: null
 )

data/docs/AwsStorage.md

@@ -8,6 +8,7 @@
 | **access_key_secret** | **String** |  | [optional] |
 | **auth_type** | **String** |  | [optional] |
 | **bucket** | **String** |  | [optional] |
+| **endpoint_url** | **String** |  | [optional] |
 | **prefix** | **String** |  | [optional] |
 | **region** | **String** |  | [optional] |
 
@@ -21,6 +22,7 @@ instance = Akeyless::AwsStorage.new(
   access_key_secret: null,
   auth_type: null,
   bucket: null,
+  endpoint_url: null,
   prefix: null,
   region: null
 )

data/docs/CreateAuthMethodUniversalIdentity.md

@@ -8,6 +8,7 @@
 | **allowed_client_type** | **Array<String>** | limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension] | [optional] |
 | **audit_logs_claims** | **Array<String>** | Subclaims to include in audit logs, e.g \"--audit-logs-claims email --audit-logs-claims username\" | [optional] |
 | **bound_ips** | **Array<String>** | A CIDR whitelist with the IPs that the access is restricted to | [optional] |
+| **child_ttl_limit** | **Integer** | Maximum child token ttl allowed in uid-create-child-token | [optional][default to 43200] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **deny_inheritance** | **Boolean** | Deny from root to create children | [optional] |
 | **deny_rotate** | **Boolean** | Deny from the token to rotate | [optional] |
@@ -20,6 +21,7 @@
 | **name** | **String** | Auth Method name |  |
 | **product_type** | **Array<String>** | Choose the relevant product type for the auth method [sm, sra, pm, dp, ca] | [optional] |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
+| **tree_length** | **Integer** | Maximum UID tree depth allowed (child of child of ...) | [optional][default to 200] |
 | **ttl** | **Integer** | Token ttl | [optional][default to 60] |
 | **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
 
@@ -33,6 +35,7 @@ instance = Akeyless::CreateAuthMethodUniversalIdentity.new(
   allowed_client_type: null,
   audit_logs_claims: null,
   bound_ips: null,
+  child_ttl_limit: null,
   delete_protection: null,
   deny_inheritance: null,
   deny_rotate: null,
@@ -45,6 +48,7 @@ instance = Akeyless::CreateAuthMethodUniversalIdentity.new(
   name: null,
   product_type: null,
   token: null,
+  tree_length: null,
   ttl: null,
   uid_token: null
 )

data/docs/CreateRotatedSecret.md

@@ -21,10 +21,11 @@
 | **host_provider** | **String** | Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **key** | **String** | The name of a key that used to encrypt the secret value (if empty, the account default protectionKey key will be used) | [optional] |
+| **lock_during_sra_session** | **String** | Lock this secret for read/update while an SRA session is active | [optional] |
 | **metadata** | **String** | Deprecated - use description | [optional] |
 | **name** | **String** | Secret name |  |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
-| **rotate_after_disconnect** | **String** | Rotate the value of the secret after SRA session ends [true/false] | [optional][default to 'false'] |
+| **rotate_after_disconnect** | **String** | StringOrBool accepts JSON strings, booleans, and numbers for backward compatibility with older SDK versions that send boolean values for rotate-after-disconnect. | [optional] |
 | **rotated_password** | **String** | rotated-username password (relevant only for rotator-type=password) | [optional] |
 | **rotated_username** | **String** | username to be rotated, if selected use-self-creds at rotator-creds-type, this username will try to rotate it's own password, if use-target-creds is selected, target credentials will be use to rotate the rotated-password (relevant only for rotator-type=password) | [optional] |
 | **rotation_hour** | **Integer** | The Hour of the rotation in UTC. Default rotation-hour is 14:00 | [optional] |
@@ -83,6 +84,7 @@ instance = Akeyless::CreateRotatedSecret.new(
   host_provider: null,
   json: null,
   key: null,
+  lock_during_sra_session: null,
   metadata: null,
   name: null,
   password_length: null,

data/docs/CreateSecret.md

@@ -13,6 +13,7 @@
 | **inject_url** | **Array<String>** | For Password Management use, reflect the website context | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
+| **lock_during_sra_session** | **String** | Lock this secret for read/update while an SRA session is active | [optional] |
 | **max_versions** | **String** | Set the maximum number of versions, limited by the account settings defaults. | [optional] |
 | **metadata** | **String** | Deprecated - use description | [optional] |
 | **multiline_value** | **Boolean** | The provided value is a multiline value (separated by '\\n') | [optional] |
@@ -52,6 +53,7 @@ instance = Akeyless::CreateSecret.new(
   inject_url: null,
   item_custom_fields: null,
   json: null,
+  lock_during_sra_session: null,
   max_versions: null,
   metadata: null,
   multiline_value: null,

data/docs/CreateUSC.md

@@ -15,7 +15,7 @@
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **k8s_namespace** | **String** | K8s namespace (Relevant to Kubernetes targets) | [optional] |
 | **name** | **String** | Universal Secrets Connector name |  |
-| **organization_name** | **String** | The organization name to create the secret in (only relevant for: github-scope=organization) | [optional] |
+| **organization_name** | **String** | The organization name to create the secret in | [optional] |
 | **repository_access** | **String** |  | [optional][default to 'public'] |
 | **repository_names** | **String** | The repository names, comma-separated (only relevant for: github-scope=repository) | [optional] |
 | **tags** | **Array<String>** | List of the tags attached to this Universal Secrets Connector | [optional] |

data/docs/DeleteRoleRule.md

@@ -7,7 +7,7 @@
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **path** | **String** | The path the rule refers to |  |
 | **role_name** | **String** | The role name to be updated |  |
-| **rule_type** | **String** | item-rule, role-rule, auth-method-rule, search-rule, reports-rule, gw-reports-rule or sra-reports-rule | [optional][default to 'item-rule'] |
+| **rule_type** | **String** | item-rule, role-rule, auth-method-rule, search-rule, reports-rule, gw-reports-rule, sra-reports-rule, sra-rule, ara-rule | [optional][default to 'item-rule'] |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
 | **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
 

data/docs/DescribePermissions.md

@@ -7,7 +7,7 @@
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **path** | **String** | Path to an object |  |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
-| **type** | **String** | Type of object (item, am, role, target) |  |
+| **type** | **String** | Type of object (item, am, role, target, sra, ara) |  |
 | **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
 
 ## Example

data/docs/DigiCertTargetDetails.md

@@ -0,0 +1,42 @@
+# Akeyless::DigiCertTargetDetails
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **account_key_pem** | **String** | ACME Account Private Key (PEM-encoded). Supports ECDSA (P-256, P-384, P-521), RSA (2048+), and Ed25519. Auto-generated as ECDSA P-256 during first certificate issuance bootstrap. Stored encrypted, required for certificate operations and revocation. | [optional] |
+| **account_url** | **String** | ACME Account URL (returned after registration with DigiCert ACME). Used to retrieve existing account instead of re-registering. | [optional] |
+| **challenge_type** | **String** | ACMEChallengeType defines ACME challenge type for Let's Encrypt | [optional] |
+| **digicert_directory_type** | **String** |  | [optional] |
+| **dns_target_name** | **String** | Name of DNS target (transient field - not stored in DB). Used by CLI to pass DNS target name to SDK for creating target_object_assoc. Retrieved from target_object_assoc when reading target. Required when ChallengeType is dns. | [optional] |
+| **dns_target_type** | **String** |  | [optional] |
+| **eab_hmac_key** | **String** | External Account Binding HMAC key. Required until ACME account is bootstrapped on first issuance. | [optional] |
+| **eab_key_id** | **String** | External Account Binding key identifier. Required until ACME account is bootstrapped on first issuance. | [optional] |
+| **email** | **String** | Email address for ACME account registration. Required. | [optional] |
+| **gcp_project** | **String** | GCP Cloud DNS: Project ID. Optional - can be derived from service account. | [optional] |
+| **hosted_zone** | **String** | AWS Route53: Hosted zone ID. Required when DNSTargetType is AWS. | [optional] |
+| **resource_group** | **String** | Azure DNS: Resource group name. Required when DNSTargetType is Azure. | [optional] |
+| **timeout** | **Integer** | A Duration represents the elapsed time between two instants as an int64 nanosecond count. The representation limits the largest representable duration to approximately 290 years. | [optional] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::DigiCertTargetDetails.new(
+  account_key_pem: null,
+  account_url: null,
+  challenge_type: null,
+  digicert_directory_type: null,
+  dns_target_name: null,
+  dns_target_type: null,
+  eab_hmac_key: null,
+  eab_key_id: null,
+  email: null,
+  gcp_project: null,
+  hosted_zone: null,
+  resource_group: null,
+  timeout: null
+)
+```
+

data/docs/EsmListSecretsOutput.md

@@ -5,6 +5,7 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **secrets_list** | [**Array<SecretInfo>**](SecretInfo.md) |  | [optional] |
+| **warnings** | **Array<String>** |  | [optional] |
 
 ## Example
 
@@ -12,7 +13,8 @@
 require 'akeyless'
 
 instance = Akeyless::EsmListSecretsOutput.new(
-  secrets_list: null
+  secrets_list: null,
+  warnings: null
 )
 ```
 

data/docs/GatewayCreateMigration.md

@@ -42,6 +42,7 @@
 | **conjur_api_key** | **String** | Conjur API Key for the specified user (relevant only for Conjur migration). | [optional] |
 | **conjur_url** | **String** | Conjur server base URL (relevant only for Conjur migration). If conjur-url is HTTPS and Conjur uses a private CA/self-signed certificate, make the CA bundle available on the Gateway and set CONJUR_SSL_CERT_PATH to its path. | [optional] |
 | **conjur_username** | **String** | Conjur username used to authenticate (relevant only for Conjur migration). | [optional] |
+| **delete_remote** | **Boolean** | Delete the secret from the remote target as well, relevant only when usc-name is not empty (relevant only for HasiCorp Vault migration) | [optional] |
 | **expiration_event_in** | **Array<String>** | How many days before the expiration of the certificate would you like to be notified. | [optional] |
 | **gcp_key** | **String** | Base64-encoded GCP Service Account private key text with sufficient permissions to Secrets Manager, Minimum required permission is Secret Manager Secret Accessor, e.g. 'roles/secretmanager.secretAccessor' (relevant only for GCP migration) | [optional] |
 | **gcp_project_id** | **String** | GCP Project ID (cross-project override) | [optional] |
@@ -75,6 +76,7 @@
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
 | **type** | **String** | Migration type (hashi/aws/gcp/k8s/azure_kv/conjur/active_directory/server_inventory/certificate) | [optional] |
 | **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
+| **usc_name** | **String** | Universal Secret Connector name | [optional] |
 | **use_gw_cloud_identity** | **Boolean** | Use the GW's Cloud IAM | [optional] |
 
 ## Example
@@ -121,6 +123,7 @@ instance = Akeyless::GatewayCreateMigration.new(
   conjur_api_key: null,
   conjur_url: null,
   conjur_username: null,
+  delete_remote: null,
   expiration_event_in: null,
   gcp_key: null,
   gcp_project_id: null,
@@ -154,6 +157,7 @@ instance = Akeyless::GatewayCreateMigration.new(
   token: null,
   type: null,
   uid_token: null,
+  usc_name: null,
   use_gw_cloud_identity: null
 )
 ```

data/docs/GatewayUpdateMigration.md

@@ -42,6 +42,7 @@
 | **conjur_api_key** | **String** | Conjur API Key for the specified user (relevant only for Conjur migration). | [optional] |
 | **conjur_url** | **String** | Conjur server base URL (relevant only for Conjur migration). If conjur-url is HTTPS and Conjur uses a private CA/self-signed certificate, make the CA bundle available on the Gateway and set CONJUR_SSL_CERT_PATH to its path. | [optional] |
 | **conjur_username** | **String** | Conjur username used to authenticate (relevant only for Conjur migration). | [optional] |
+| **delete_remote** | **Boolean** | Delete the secret from the remote target as well, relevant only when usc-name is not empty (relevant only for HasiCorp Vault migration) | [optional] |
 | **expiration_event_in** | **Array<String>** | How many days before the expiration of the certificate would you like to be notified. | [optional] |
 | **gcp_key** | **String** | Base64-encoded GCP Service Account private key text with sufficient permissions to Secrets Manager, Minimum required permission is Secret Manager Secret Accessor, e.g. 'roles/secretmanager.secretAccessor' (relevant only for GCP migration) | [optional] |
 | **gcp_project_id** | **String** | GCP Project ID (cross-project override) | [optional] |
@@ -76,6 +77,7 @@
 | **target_location** | **String** | Target location in Akeyless for imported secrets |  |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
 | **uid_token** | **String** | The universal identity token, Required only for universal_identity authentication | [optional] |
+| **usc_name** | **String** | Universal Secret Connector name | [optional] |
 | **use_gw_cloud_identity** | **Boolean** | Use the GW's Cloud IAM | [optional] |
 
 ## Example
@@ -122,6 +124,7 @@ instance = Akeyless::GatewayUpdateMigration.new(
   conjur_api_key: null,
   conjur_url: null,
   conjur_username: null,
+  delete_remote: null,
   expiration_event_in: null,
   gcp_key: null,
   gcp_project_id: null,
@@ -156,6 +159,7 @@ instance = Akeyless::GatewayUpdateMigration.new(
   target_location: null,
   token: null,
   uid_token: null,
+  usc_name: null,
   use_gw_cloud_identity: null
 )
 ```

data/docs/GatewayUpdateRemoteAccessRdpRecordings.md

@@ -7,6 +7,7 @@
 | **aws_storage_access_key_id** | **String** | AWS access key id. For more information refer to https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html | [optional] |
 | **aws_storage_bucket_name** | **String** | The AWS bucket name. For more information refer to https://docs.aws.amazon.com/s3/ | [optional] |
 | **aws_storage_bucket_prefix** | **String** | The folder name in S3 bucket. For more information refer to https://docs.aws.amazon.com/s3/ | [optional] |
+| **aws_storage_endpoint_url** | **String** | Custom AWS endpoint URL for S3-compatible storage (e.g. a private AWS endpoint) | [optional] |
 | **aws_storage_region** | **String** | The region where the storage is located | [optional] |
 | **aws_storage_secret_access_key** | **String** | AWS secret access key. For more information refer to https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html | [optional] |
 | **azure_storage_account_name** | **String** | Azure account name. For more information refer to https://learn.microsoft.com/en-us/azure/storage/common/storage-account-overview | [optional] |
@@ -32,6 +33,7 @@ instance = Akeyless::GatewayUpdateRemoteAccessRdpRecordings.new(
   aws_storage_access_key_id: null,
   aws_storage_bucket_name: null,
   aws_storage_bucket_prefix: null,
+  aws_storage_endpoint_url: null,
   aws_storage_region: null,
   aws_storage_secret_access_key: null,
   azure_storage_account_name: null,

data/docs/GeneralConfigPart.md

@@ -7,6 +7,7 @@
 | **akeyless_url** | **String** | AkeylessUrl is here for BC only. Gator will still return it if it exists in the configuration, but new clients (>=2.34.0) will ignore it and override it with what exists in their local file. It will no longer be sent to Gator for update, so new clusters will only have the default value saved in the DB. | [optional] |
 | **api_token_ttl** | **String** |  | [optional] |
 | **display_name** | **String** |  | [optional] |
+| **enable_json_body_limit** | **Boolean** |  | [optional] |
 | **enable_sni_proxy** | **Boolean** |  | [optional] |
 | **enable_tls** | **Boolean** |  | [optional] |
 | **enable_tls_configure** | **Boolean** |  | [optional] |
@@ -14,6 +15,7 @@
 | **enable_tls_hvp** | **Boolean** |  | [optional] |
 | **gw_cluster_url** | **String** |  | [optional] |
 | **hvp_route_version** | **Integer** |  | [optional] |
+| **json_body_limit_mb** | **Integer** |  | [optional] |
 | **notify_on_status_change** | **Boolean** |  | [optional] |
 | **tcp_port** | **String** |  | [optional] |
 | **tls_cert** | **String** |  | [optional] |
@@ -31,6 +33,7 @@ instance = Akeyless::GeneralConfigPart.new(
   akeyless_url: null,
   api_token_ttl: null,
   display_name: null,
+  enable_json_body_limit: null,
   enable_sni_proxy: null,
   enable_tls: null,
   enable_tls_configure: null,
@@ -38,6 +41,7 @@ instance = Akeyless::GeneralConfigPart.new(
   enable_tls_hvp: null,
   gw_cluster_url: null,
   hvp_route_version: null,
+  json_body_limit_mb: null,
   notify_on_status_change: null,
   tcp_port: null,
   tls_cert: null,

data/docs/GoogleTrustTargetDetails.md

@@ -0,0 +1,42 @@
+# Akeyless::GoogleTrustTargetDetails
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **account_key_pem** | **String** | ACME Account Private Key (PEM-encoded) Supports ECDSA (P-256, P-384, P-521), RSA (2048+), and Ed25519 Auto-generated as ECDSA P-256 during target creation bootstrap Stored encrypted, required for certificate operations and revocation | [optional] |
+| **account_url** | **String** | ACME Account URL (returned after registration with Google Trust Services) Used to retrieve existing account instead of re-registering | [optional] |
+| **acme_environment** | **String** | ACMEEnvironment defines Let's Encrypt ACME directory environment | [optional] |
+| **challenge_type** | **String** | ACMEChallengeType defines ACME challenge type for Let's Encrypt | [optional] |
+| **dns_target_name** | **String** | Name of DNS target (transient field - not stored in DB) Used by CLI to pass DNS target name to SDK for creating target_object_assoc Retrieved from target_object_assoc when reading target Required when ChallengeType is \"dns\" | [optional] |
+| **dns_target_type** | **String** |  | [optional] |
+| **eab_hmac_key** | **String** | External Account Binding HMAC key (required for ACME account bootstrap on target creation) Not persisted after bootstrap | [optional] |
+| **eab_key_id** | **String** | External Account Binding key identifier (required for ACME account bootstrap on target creation) Not persisted after bootstrap | [optional] |
+| **email** | **String** | Email address for ACME account registration Required | [optional] |
+| **gcp_project** | **String** | GCP Cloud DNS: Project ID Optional - can be derived from service account | [optional] |
+| **hosted_zone** | **String** | AWS Route53: Hosted zone ID Required when DNSTargetType is AWS | [optional] |
+| **resource_group** | **String** | Azure DNS: Resource group name Required when DNSTargetType is Azure | [optional] |
+| **timeout** | **Integer** | A Duration represents the elapsed time between two instants as an int64 nanosecond count. The representation limits the largest representable duration to approximately 290 years. | [optional] |
+
+## Example
+
+```ruby
+require 'akeyless'
+
+instance = Akeyless::GoogleTrustTargetDetails.new(
+  account_key_pem: null,
+  account_url: null,
+  acme_environment: null,
+  challenge_type: null,
+  dns_target_name: null,
+  dns_target_type: null,
+  eab_hmac_key: null,
+  eab_key_id: null,
+  email: null,
+  gcp_project: null,
+  hosted_zone: null,
+  resource_group: null,
+  timeout: null
+)
+```
+

data/docs/HashiPayload.md

@@ -4,10 +4,12 @@
 
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
+| **delete_sync_on_deletion** | **Boolean** |  | [optional] |
 | **import_as_json** | **Boolean** |  | [optional] |
 | **namespaces** | **Array<String>** |  | [optional] |
 | **token** | **String** |  | [optional] |
 | **url** | **String** |  | [optional] |
+| **usc_name** | **String** |  | [optional] |
 
 ## Example
 
@@ -15,10 +17,12 @@
 require 'akeyless'
 
 instance = Akeyless::HashiPayload.new(
+  delete_sync_on_deletion: null,
   import_as_json: null,
   namespaces: null,
   token: null,
-  url: null
+  url: null,
+  usc_name: null
 )
 ```
 

data/docs/Item.md

@@ -37,6 +37,7 @@
 | **last_rotation_date** | **Time** |  | [optional] |
 | **last_version** | **Integer** |  | [optional] |
 | **linked_details** | [**LinkedDetails**](LinkedDetails.md) |  | [optional] |
+| **locking_info** | [**LockingInfo**](LockingInfo.md) |  | [optional] |
 | **modification_date** | **Time** |  | [optional] |
 | **next_rotation_date** | **Time** |  | [optional] |
 | **protection_key_name** | **String** |  | [optional] |
@@ -87,6 +88,7 @@ instance = Akeyless::Item.new(
   last_rotation_date: null,
   last_version: null,
   linked_details: null,
+  locking_info: null,
   modification_date: null,
   next_rotation_date: null,
   protection_key_name: null,