files.com 1.1.637 → 1.1.639

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: ab7e15bd7e2cb1cbecafe43e01c0671b51460590d3ab267a5573c60090076cd3
-  data.tar.gz: 1f8e2f122d0588da5e096a06fd65df71a6c4367ff346a05bc6fecf6a5e1a66c7
+  metadata.gz: 8b59284de42c7da23c9e65b5f909d3a13da712d33d55e829b47fdaaffa36d768
+  data.tar.gz: 0f0dc9988f81bbf9d5b7da67a5aaef0a9f1eead98234bc28d68bb0270f88eb74
 SHA512:
-  metadata.gz: b1bb6c3a3bd178e8811e86b0f9a2c63aa7846c6790b5323ab8d323f030f1589afc618e77d467b1f112ba3adbd475154fb6374d4f804a906c6e8c55835d177b52
-  data.tar.gz: c18ba21cddaad6c682805f53486123831d844450cd08b609cbf44c309d304991e455c87d57926699c4f87921c178c3d907254939a75673992915519549a8e563
+  metadata.gz: 40c766a8afb817f6af59452771cfe011772c6d2b7504ecfc54241605a6964f7957afac5629f83c26a3398130aecefee45384ad51444b82c05ad675d2c7899575
+  data.tar.gz: 484ef5c4bb04c18243b494814e931baa2cfbd1cb0e0ccb7e0066b75f16639c1b0a8bf048d7a917aaaa92f3e6533f64cb5d912efe992dbf2869d0f31b70e95a97

data/_VERSION

@@ -1 +1 @@
-1.1.637
+1.1.639

data/docs/scheduled_export.md

@@ -0,0 +1,228 @@
+# ScheduledExport
+
+## Example ScheduledExport Object
+
+```
+{
+  "id": 1,
+  "name": "Monthly access review",
+  "export_type": "permission_audit",
+  "report_name": "Permission audit",
+  "export_options": {
+    "group_by": "user"
+  },
+  "user_id": 1,
+  "disabled": true,
+  "trigger": "daily",
+  "interval": "month",
+  "recurring_day": 1,
+  "schedule_days_of_week": [
+    1,
+    3,
+    5
+  ],
+  "schedule_times_of_day": [
+    "06:30"
+  ],
+  "schedule_time_zone": "Eastern Time (US & Canada)",
+  "holiday_region": "us",
+  "human_readable_schedule": "Runs every month at 06:30 AM UTC TZ.",
+  "last_run_at": "2000-01-01T01:00:00Z",
+  "last_export_id": 1,
+  "created_at": "2000-01-01T01:00:00Z",
+  "updated_at": "2000-01-01T01:00:00Z"
+}
+```
+
+* `id` (int64): Scheduled Export ID
+* `name` (string): Name for this scheduled export.
+* `export_type` (string): Export report type. Valid values: folder_size_audit, group_membership_audit, permission_audit, share_link_audit
+* `report_name` (string): Human-readable report name.
+* `export_options` (object): Report-specific options. `permission_audit` supports `group_by` with `user` or `path`.
+* `user_id` (int64): Site Admin user who receives the completed export e-mail.
+* `disabled` (boolean): If true, this scheduled export will not run.
+* `trigger` (string): Schedule trigger type: `daily` or `custom_schedule`.
+* `interval` (string): If trigger is `daily`, this specifies how often to run the scheduled export.
+* `recurring_day` (int64): If trigger is `daily`, this selects the day number inside the chosen interval.
+* `schedule_days_of_week` (array(int64)): If trigger is `custom_schedule`, the 0-based weekdays used by the schedule.
+* `schedule_times_of_day` (array(string)): Times of day in HH:MM format for schedule-driven exports.
+* `schedule_time_zone` (string): Time zone used by the scheduled export.
+* `holiday_region` (string): Optional holiday region used by schedule-driven exports.
+* `human_readable_schedule` (string): Human-readable schedule description.
+* `last_run_at` (date-time): Most recent scheduled run time.
+* `last_export_id` (int64): Most recent Export ID created by this schedule.
+* `created_at` (date-time): Creation time.
+* `updated_at` (date-time): Last update time.
+
+
+---
+
+## List Scheduled Exports
+
+```
+Files::ScheduledExport.list
+```
+
+### Parameters
+
+* `cursor` (string): Used for pagination.  When a list request has more records available, cursors are provided in the response headers `X-Files-Cursor-Next` and `X-Files-Cursor-Prev`.  Send one of those cursor value here to resume an existing list from the next available record.  Note: many of our SDKs have iterator methods that will automatically handle cursor-based pagination.
+* `per_page` (int64): Number of records to show per page.  (Max: 10000, 1,000 or less is recommended).
+* `sort_by` (object): If set, sort records by the specified field in either `asc` or `desc` direction. Valid fields are `name`, `export_type` or `disabled`.
+* `filter` (object): If set, return records where the specified field is equal to the supplied value. Valid fields are `disabled` and `export_type`.
+* `filter_prefix` (object): If set, return records where the specified field is prefixed by the supplied value. Valid fields are `export_type`.
+
+
+---
+
+## Show Scheduled Export
+
+```
+Files::ScheduledExport.find(id)
+```
+
+### Parameters
+
+* `id` (int64): Required - Scheduled Export ID.
+
+
+---
+
+## Create Scheduled Export
+
+```
+Files::ScheduledExport.create(
+  name: "Monthly access review", 
+  export_type: "permission_audit", 
+  export_options: {"group_by":"user"}, 
+  user_id: 1, 
+  disabled: true, 
+  trigger: "daily", 
+  interval: "month", 
+  recurring_day: 1, 
+  schedule_days_of_week: [1,3,5], 
+  schedule_times_of_day: ["06:30"], 
+  schedule_time_zone: "Eastern Time (US & Canada)", 
+  holiday_region: "us"
+)
+```
+
+### Parameters
+
+* `name` (string): Required - Name for this scheduled export.
+* `export_type` (string): Required - Export report type. Valid values: folder_size_audit, group_membership_audit, permission_audit, share_link_audit
+* `export_options` (object): Report-specific options. `permission_audit` supports `group_by` with `user` or `path`.
+* `user_id` (int64): Site Admin user who receives the completed export e-mail.
+* `disabled` (boolean): If true, this scheduled export will not run.
+* `trigger` (string): Schedule trigger type: `daily` or `custom_schedule`.
+* `interval` (string): If trigger is `daily`, this specifies how often to run the scheduled export.
+* `recurring_day` (int64): If trigger is `daily`, this selects the day number inside the chosen interval.
+* `schedule_days_of_week` (array(int64)): If trigger is `custom_schedule`, the 0-based weekdays used by the schedule.
+* `schedule_times_of_day` (array(string)): Times of day in HH:MM format for schedule-driven exports.
+* `schedule_time_zone` (string): Time zone used by the scheduled export.
+* `holiday_region` (string): Optional holiday region used by schedule-driven exports.
+
+
+---
+
+## Update Scheduled Export
+
+```
+Files::ScheduledExport.update(id, 
+  name: "Monthly access review", 
+  export_type: "permission_audit", 
+  export_options: {"group_by":"user"}, 
+  user_id: 1, 
+  disabled: true, 
+  trigger: "daily", 
+  interval: "month", 
+  recurring_day: 1, 
+  schedule_days_of_week: [1,3,5], 
+  schedule_times_of_day: ["06:30"], 
+  schedule_time_zone: "Eastern Time (US & Canada)", 
+  holiday_region: "us"
+)
+```
+
+### Parameters
+
+* `id` (int64): Required - Scheduled Export ID.
+* `name` (string): Name for this scheduled export.
+* `export_type` (string): Export report type. Valid values: folder_size_audit, group_membership_audit, permission_audit, share_link_audit
+* `export_options` (object): Report-specific options. `permission_audit` supports `group_by` with `user` or `path`.
+* `user_id` (int64): Site Admin user who receives the completed export e-mail.
+* `disabled` (boolean): If true, this scheduled export will not run.
+* `trigger` (string): Schedule trigger type: `daily` or `custom_schedule`.
+* `interval` (string): If trigger is `daily`, this specifies how often to run the scheduled export.
+* `recurring_day` (int64): If trigger is `daily`, this selects the day number inside the chosen interval.
+* `schedule_days_of_week` (array(int64)): If trigger is `custom_schedule`, the 0-based weekdays used by the schedule.
+* `schedule_times_of_day` (array(string)): Times of day in HH:MM format for schedule-driven exports.
+* `schedule_time_zone` (string): Time zone used by the scheduled export.
+* `holiday_region` (string): Optional holiday region used by schedule-driven exports.
+
+
+---
+
+## Delete Scheduled Export
+
+```
+Files::ScheduledExport.delete(id)
+```
+
+### Parameters
+
+* `id` (int64): Required - Scheduled Export ID.
+
+
+---
+
+## Update Scheduled Export
+
+```
+scheduled_export = Files::ScheduledExport.find(id)
+
+scheduled_export.update(
+  name: "Monthly access review",
+  export_type: "permission_audit",
+  export_options: {"group_by":"user"},
+  user_id: 1,
+  disabled: true,
+  trigger: "daily",
+  interval: "month",
+  recurring_day: 1,
+  schedule_days_of_week: [1,3,5],
+  schedule_times_of_day: ["06:30"],
+  schedule_time_zone: "Eastern Time (US & Canada)",
+  holiday_region: "us"
+)
+```
+
+### Parameters
+
+* `id` (int64): Required - Scheduled Export ID.
+* `name` (string): Name for this scheduled export.
+* `export_type` (string): Export report type. Valid values: folder_size_audit, group_membership_audit, permission_audit, share_link_audit
+* `export_options` (object): Report-specific options. `permission_audit` supports `group_by` with `user` or `path`.
+* `user_id` (int64): Site Admin user who receives the completed export e-mail.
+* `disabled` (boolean): If true, this scheduled export will not run.
+* `trigger` (string): Schedule trigger type: `daily` or `custom_schedule`.
+* `interval` (string): If trigger is `daily`, this specifies how often to run the scheduled export.
+* `recurring_day` (int64): If trigger is `daily`, this selects the day number inside the chosen interval.
+* `schedule_days_of_week` (array(int64)): If trigger is `custom_schedule`, the 0-based weekdays used by the schedule.
+* `schedule_times_of_day` (array(string)): Times of day in HH:MM format for schedule-driven exports.
+* `schedule_time_zone` (string): Time zone used by the scheduled export.
+* `holiday_region` (string): Optional holiday region used by schedule-driven exports.
+
+
+---
+
+## Delete Scheduled Export
+
+```
+scheduled_export = Files::ScheduledExport.find(id)
+
+scheduled_export.delete
+```
+
+### Parameters
+
+* `id` (int64): Required - Scheduled Export ID.

data/docs/siem_http_destination.md

@@ -17,6 +17,7 @@
   "sending_active": true,
   "generic_payload_type": "example",
   "splunk_token_masked": "example",
+  "crowdstrike_token_masked": "example",
   "azure_dcr_immutable_id": "example",
   "azure_stream_name": "example",
   "azure_oauth_client_credentials_tenant_id": "example",
@@ -73,7 +74,8 @@
 * `additional_headers` (object): Additional HTTP Headers included in calls to the destination URL
 * `sending_active` (boolean): Whether this SIEM HTTP Destination is currently being sent to or not
 * `generic_payload_type` (string): Applicable only for destination type: generic. Indicates the type of HTTP body. Can be json_newline or json_array. json_newline is multiple log entries as JSON separated by newlines. json_array is a single JSON array containing multiple log entries as JSON.
-* `splunk_token_masked` (string): Applicable only for destination type: splunk. Authentication token provided by Splunk.
+* `splunk_token_masked` (string): Applicable only for destination types: splunk, splunk_compatible. Authentication token for the destination.
+* `crowdstrike_token_masked` (string): Applicable only for destination type: crowdstrike. Authentication token provided by Crowdstrike.
 * `azure_dcr_immutable_id` (string): Applicable only for destination types: azure, azure_legacy. Immutable ID of the Data Collection Rule.
 * `azure_stream_name` (string): Applicable only for destination type: azure. Name of the stream in the DCR that represents the destination table.
 * `azure_oauth_client_credentials_tenant_id` (string): Applicable only for destination types: azure, azure_legacy. Client Credentials OAuth Tenant ID.
@@ -117,7 +119,8 @@
 * `last_http_call_duration_ms` (int64): Duration of the last HTTP Call in milliseconds
 * `most_recent_http_call_success_time` (string): Time of Most Recent Successful HTTP Call
 * `connection_test_entry` (string): Connection Test Entry
-* `splunk_token` (string): Applicable only for destination type: splunk. Authentication token provided by Splunk.
+* `splunk_token` (string): Applicable only for destination types: splunk, splunk_compatible. Authentication token for the destination.
+* `crowdstrike_token` (string): Applicable only for destination type: crowdstrike. Authentication token provided by Crowdstrike.
 * `azure_oauth_client_credentials_client_secret` (string): Applicable only for destination type: azure. Client Credentials OAuth Client Secret.
 * `qradar_password` (string): Applicable only for destination type: qradar. Basic auth password provided by QRadar.
 * `solar_winds_token` (string): Applicable only for destination type: solar_winds. Authentication token provided by Solar Winds.
@@ -196,7 +199,8 @@ Files::SiemHttpDestination.create(
 * `file_destination_path` (string): Applicable only for destination type: file. Destination folder path on Files.com.
 * `file_format` (string): Applicable only for destination type: file. Generated file format.
 * `file_interval_minutes` (int64): Applicable only for destination type: file. Interval, in minutes, between file deliveries. Valid values are 5, 10, 15, 20, 30, 60, 90, 180, 240, 360.
-* `splunk_token` (string): Applicable only for destination type: splunk. Authentication token provided by Splunk.
+* `splunk_token` (string): Applicable only for destination types: splunk, splunk_compatible. Authentication token for the destination.
+* `crowdstrike_token` (string): Applicable only for destination type: crowdstrike. Authentication token provided by Crowdstrike.
 * `azure_dcr_immutable_id` (string): Applicable only for destination types: azure, azure_legacy. Immutable ID of the Data Collection Rule.
 * `azure_stream_name` (string): Applicable only for destination type: azure. Name of the stream in the DCR that represents the destination table.
 * `azure_oauth_client_credentials_tenant_id` (string): Applicable only for destination types: azure, azure_legacy. Client Credentials OAuth Tenant ID.
@@ -271,7 +275,8 @@ Files::SiemHttpDestination.send_test_entry(
 * `file_destination_path` (string): Applicable only for destination type: file. Destination folder path on Files.com.
 * `file_format` (string): Applicable only for destination type: file. Generated file format.
 * `file_interval_minutes` (int64): Applicable only for destination type: file. Interval, in minutes, between file deliveries. Valid values are 5, 10, 15, 20, 30, 60, 90, 180, 240, 360.
-* `splunk_token` (string): Applicable only for destination type: splunk. Authentication token provided by Splunk.
+* `splunk_token` (string): Applicable only for destination types: splunk, splunk_compatible. Authentication token for the destination.
+* `crowdstrike_token` (string): Applicable only for destination type: crowdstrike. Authentication token provided by Crowdstrike.
 * `azure_dcr_immutable_id` (string): Applicable only for destination types: azure, azure_legacy. Immutable ID of the Data Collection Rule.
 * `azure_stream_name` (string): Applicable only for destination type: azure. Name of the stream in the DCR that represents the destination table.
 * `azure_oauth_client_credentials_tenant_id` (string): Applicable only for destination types: azure, azure_legacy. Client Credentials OAuth Tenant ID.
@@ -341,7 +346,8 @@ Files::SiemHttpDestination.update(id,
 * `file_destination_path` (string): Applicable only for destination type: file. Destination folder path on Files.com.
 * `file_format` (string): Applicable only for destination type: file. Generated file format.
 * `file_interval_minutes` (int64): Applicable only for destination type: file. Interval, in minutes, between file deliveries. Valid values are 5, 10, 15, 20, 30, 60, 90, 180, 240, 360.
-* `splunk_token` (string): Applicable only for destination type: splunk. Authentication token provided by Splunk.
+* `splunk_token` (string): Applicable only for destination types: splunk, splunk_compatible. Authentication token for the destination.
+* `crowdstrike_token` (string): Applicable only for destination type: crowdstrike. Authentication token provided by Crowdstrike.
 * `azure_dcr_immutable_id` (string): Applicable only for destination types: azure, azure_legacy. Immutable ID of the Data Collection Rule.
 * `azure_stream_name` (string): Applicable only for destination type: azure. Name of the stream in the DCR that represents the destination table.
 * `azure_oauth_client_credentials_tenant_id` (string): Applicable only for destination types: azure, azure_legacy. Client Credentials OAuth Tenant ID.
@@ -428,7 +434,8 @@ siem_http_destination.update(
 * `file_destination_path` (string): Applicable only for destination type: file. Destination folder path on Files.com.
 * `file_format` (string): Applicable only for destination type: file. Generated file format.
 * `file_interval_minutes` (int64): Applicable only for destination type: file. Interval, in minutes, between file deliveries. Valid values are 5, 10, 15, 20, 30, 60, 90, 180, 240, 360.
-* `splunk_token` (string): Applicable only for destination type: splunk. Authentication token provided by Splunk.
+* `splunk_token` (string): Applicable only for destination types: splunk, splunk_compatible. Authentication token for the destination.
+* `crowdstrike_token` (string): Applicable only for destination type: crowdstrike. Authentication token provided by Crowdstrike.
 * `azure_dcr_immutable_id` (string): Applicable only for destination types: azure, azure_legacy. Immutable ID of the Data Collection Rule.
 * `azure_stream_name` (string): Applicable only for destination type: azure. Name of the stream in the DCR that represents the destination table.
 * `azure_oauth_client_credentials_tenant_id` (string): Applicable only for destination types: azure, azure_legacy. Client Credentials OAuth Tenant ID.

data/lib/files.com/models/scheduled_export.rb

@@ -0,0 +1,353 @@
+# frozen_string_literal: true
+
+module Files
+  class ScheduledExport
+    attr_reader :options, :attributes
+
+    def initialize(attributes = {}, options = {})
+      @attributes = attributes || {}
+      @options = options || {}
+    end
+
+    # int64 - Scheduled Export ID
+    def id
+      @attributes[:id]
+    end
+
+    def id=(value)
+      @attributes[:id] = value
+    end
+
+    # string - Name for this scheduled export.
+    def name
+      @attributes[:name]
+    end
+
+    def name=(value)
+      @attributes[:name] = value
+    end
+
+    # string - Export report type. Valid values: folder_size_audit, group_membership_audit, permission_audit, share_link_audit
+    def export_type
+      @attributes[:export_type]
+    end
+
+    def export_type=(value)
+      @attributes[:export_type] = value
+    end
+
+    # string - Human-readable report name.
+    def report_name
+      @attributes[:report_name]
+    end
+
+    def report_name=(value)
+      @attributes[:report_name] = value
+    end
+
+    # object - Report-specific options. `permission_audit` supports `group_by` with `user` or `path`.
+    def export_options
+      @attributes[:export_options]
+    end
+
+    def export_options=(value)
+      @attributes[:export_options] = value
+    end
+
+    # int64 - Site Admin user who receives the completed export e-mail.
+    def user_id
+      @attributes[:user_id]
+    end
+
+    def user_id=(value)
+      @attributes[:user_id] = value
+    end
+
+    # boolean - If true, this scheduled export will not run.
+    def disabled
+      @attributes[:disabled]
+    end
+
+    def disabled=(value)
+      @attributes[:disabled] = value
+    end
+
+    # string - Schedule trigger type: `daily` or `custom_schedule`.
+    def trigger
+      @attributes[:trigger]
+    end
+
+    def trigger=(value)
+      @attributes[:trigger] = value
+    end
+
+    # string - If trigger is `daily`, this specifies how often to run the scheduled export.
+    def interval
+      @attributes[:interval]
+    end
+
+    def interval=(value)
+      @attributes[:interval] = value
+    end
+
+    # int64 - If trigger is `daily`, this selects the day number inside the chosen interval.
+    def recurring_day
+      @attributes[:recurring_day]
+    end
+
+    def recurring_day=(value)
+      @attributes[:recurring_day] = value
+    end
+
+    # array(int64) - If trigger is `custom_schedule`, the 0-based weekdays used by the schedule.
+    def schedule_days_of_week
+      @attributes[:schedule_days_of_week]
+    end
+
+    def schedule_days_of_week=(value)
+      @attributes[:schedule_days_of_week] = value
+    end
+
+    # array(string) - Times of day in HH:MM format for schedule-driven exports.
+    def schedule_times_of_day
+      @attributes[:schedule_times_of_day]
+    end
+
+    def schedule_times_of_day=(value)
+      @attributes[:schedule_times_of_day] = value
+    end
+
+    # string - Time zone used by the scheduled export.
+    def schedule_time_zone
+      @attributes[:schedule_time_zone]
+    end
+
+    def schedule_time_zone=(value)
+      @attributes[:schedule_time_zone] = value
+    end
+
+    # string - Optional holiday region used by schedule-driven exports.
+    def holiday_region
+      @attributes[:holiday_region]
+    end
+
+    def holiday_region=(value)
+      @attributes[:holiday_region] = value
+    end
+
+    # string - Human-readable schedule description.
+    def human_readable_schedule
+      @attributes[:human_readable_schedule]
+    end
+
+    def human_readable_schedule=(value)
+      @attributes[:human_readable_schedule] = value
+    end
+
+    # date-time - Most recent scheduled run time.
+    def last_run_at
+      @attributes[:last_run_at]
+    end
+
+    def last_run_at=(value)
+      @attributes[:last_run_at] = value
+    end
+
+    # int64 - Most recent Export ID created by this schedule.
+    def last_export_id
+      @attributes[:last_export_id]
+    end
+
+    def last_export_id=(value)
+      @attributes[:last_export_id] = value
+    end
+
+    # date-time - Creation time.
+    def created_at
+      @attributes[:created_at]
+    end
+
+    # date-time - Last update time.
+    def updated_at
+      @attributes[:updated_at]
+    end
+
+    # Parameters:
+    #   name - string - Name for this scheduled export.
+    #   export_type - string - Export report type. Valid values: folder_size_audit, group_membership_audit, permission_audit, share_link_audit
+    #   export_options - object - Report-specific options. `permission_audit` supports `group_by` with `user` or `path`.
+    #   user_id - int64 - Site Admin user who receives the completed export e-mail.
+    #   disabled - boolean - If true, this scheduled export will not run.
+    #   trigger - string - Schedule trigger type: `daily` or `custom_schedule`.
+    #   interval - string - If trigger is `daily`, this specifies how often to run the scheduled export.
+    #   recurring_day - int64 - If trigger is `daily`, this selects the day number inside the chosen interval.
+    #   schedule_days_of_week - array(int64) - If trigger is `custom_schedule`, the 0-based weekdays used by the schedule.
+    #   schedule_times_of_day - array(string) - Times of day in HH:MM format for schedule-driven exports.
+    #   schedule_time_zone - string - Time zone used by the scheduled export.
+    #   holiday_region - string - Optional holiday region used by schedule-driven exports.
+    def update(params = {})
+      params ||= {}
+      params[:id] = @attributes[:id]
+      raise MissingParameterError.new("Current object doesn't have a id") unless @attributes[:id]
+      raise InvalidParameterError.new("Bad parameter: id must be an Integer") if params[:id] and !params[:id].is_a?(Integer)
+      raise InvalidParameterError.new("Bad parameter: name must be an String") if params[:name] and !params[:name].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: export_type must be an String") if params[:export_type] and !params[:export_type].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: user_id must be an Integer") if params[:user_id] and !params[:user_id].is_a?(Integer)
+      raise InvalidParameterError.new("Bad parameter: trigger must be an String") if params[:trigger] and !params[:trigger].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: interval must be an String") if params[:interval] and !params[:interval].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: recurring_day must be an Integer") if params[:recurring_day] and !params[:recurring_day].is_a?(Integer)
+      raise InvalidParameterError.new("Bad parameter: schedule_days_of_week must be an Array") if params[:schedule_days_of_week] and !params[:schedule_days_of_week].is_a?(Array)
+      raise InvalidParameterError.new("Bad parameter: schedule_times_of_day must be an Array") if params[:schedule_times_of_day] and !params[:schedule_times_of_day].is_a?(Array)
+      raise InvalidParameterError.new("Bad parameter: schedule_time_zone must be an String") if params[:schedule_time_zone] and !params[:schedule_time_zone].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: holiday_region must be an String") if params[:holiday_region] and !params[:holiday_region].is_a?(String)
+      raise MissingParameterError.new("Parameter missing: id") unless params[:id]
+
+      Api.send_request("/scheduled_exports/#{@attributes[:id]}", :patch, params, @options)
+    end
+
+    def delete(params = {})
+      params ||= {}
+      params[:id] = @attributes[:id]
+      raise MissingParameterError.new("Current object doesn't have a id") unless @attributes[:id]
+      raise InvalidParameterError.new("Bad parameter: id must be an Integer") if params[:id] and !params[:id].is_a?(Integer)
+      raise MissingParameterError.new("Parameter missing: id") unless params[:id]
+
+      Api.send_request("/scheduled_exports/#{@attributes[:id]}", :delete, params, @options)
+    end
+
+    def destroy(params = {})
+      delete(params)
+      nil
+    end
+
+    def save
+      if @attributes[:id]
+        new_obj = update(@attributes)
+      else
+        new_obj = ScheduledExport.create(@attributes, @options)
+      end
+
+      @attributes = new_obj.attributes
+      true
+    end
+
+    # Parameters:
+    #   cursor - string - Used for pagination.  When a list request has more records available, cursors are provided in the response headers `X-Files-Cursor-Next` and `X-Files-Cursor-Prev`.  Send one of those cursor value here to resume an existing list from the next available record.  Note: many of our SDKs have iterator methods that will automatically handle cursor-based pagination.
+    #   per_page - int64 - Number of records to show per page.  (Max: 10000, 1,000 or less is recommended).
+    #   sort_by - object - If set, sort records by the specified field in either `asc` or `desc` direction. Valid fields are `name`, `export_type` or `disabled`.
+    #   filter - object - If set, return records where the specified field is equal to the supplied value. Valid fields are `disabled` and `export_type`.
+    #   filter_prefix - object - If set, return records where the specified field is prefixed by the supplied value. Valid fields are `export_type`.
+    def self.list(params = {}, options = {})
+      raise InvalidParameterError.new("Bad parameter: cursor must be an String") if params[:cursor] and !params[:cursor].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: per_page must be an Integer") if params[:per_page] and !params[:per_page].is_a?(Integer)
+      raise InvalidParameterError.new("Bad parameter: sort_by must be an Hash") if params[:sort_by] and !params[:sort_by].is_a?(Hash)
+      raise InvalidParameterError.new("Bad parameter: filter must be an Hash") if params[:filter] and !params[:filter].is_a?(Hash)
+      raise InvalidParameterError.new("Bad parameter: filter_prefix must be an Hash") if params[:filter_prefix] and !params[:filter_prefix].is_a?(Hash)
+
+      List.new(ScheduledExport, params) do
+        Api.send_request("/scheduled_exports", :get, params, options)
+      end
+    end
+
+    def self.all(params = {}, options = {})
+      list(params, options)
+    end
+
+    # Parameters:
+    #   id (required) - int64 - Scheduled Export ID.
+    def self.find(id, params = {}, options = {})
+      params ||= {}
+      params[:id] = id
+      raise InvalidParameterError.new("Bad parameter: id must be an Integer") if params[:id] and !params[:id].is_a?(Integer)
+      raise MissingParameterError.new("Parameter missing: id") unless params[:id]
+
+      response, options = Api.send_request("/scheduled_exports/#{params[:id]}", :get, params, options)
+      ScheduledExport.new(response.data, options)
+    end
+
+    def self.get(id, params = {}, options = {})
+      find(id, params, options)
+    end
+
+    # Parameters:
+    #   name (required) - string - Name for this scheduled export.
+    #   export_type (required) - string - Export report type. Valid values: folder_size_audit, group_membership_audit, permission_audit, share_link_audit
+    #   export_options - object - Report-specific options. `permission_audit` supports `group_by` with `user` or `path`.
+    #   user_id - int64 - Site Admin user who receives the completed export e-mail.
+    #   disabled - boolean - If true, this scheduled export will not run.
+    #   trigger - string - Schedule trigger type: `daily` or `custom_schedule`.
+    #   interval - string - If trigger is `daily`, this specifies how often to run the scheduled export.
+    #   recurring_day - int64 - If trigger is `daily`, this selects the day number inside the chosen interval.
+    #   schedule_days_of_week - array(int64) - If trigger is `custom_schedule`, the 0-based weekdays used by the schedule.
+    #   schedule_times_of_day - array(string) - Times of day in HH:MM format for schedule-driven exports.
+    #   schedule_time_zone - string - Time zone used by the scheduled export.
+    #   holiday_region - string - Optional holiday region used by schedule-driven exports.
+    def self.create(params = {}, options = {})
+      raise InvalidParameterError.new("Bad parameter: name must be an String") if params[:name] and !params[:name].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: export_type must be an String") if params[:export_type] and !params[:export_type].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: export_options must be an Hash") if params[:export_options] and !params[:export_options].is_a?(Hash)
+      raise InvalidParameterError.new("Bad parameter: user_id must be an Integer") if params[:user_id] and !params[:user_id].is_a?(Integer)
+      raise InvalidParameterError.new("Bad parameter: trigger must be an String") if params[:trigger] and !params[:trigger].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: interval must be an String") if params[:interval] and !params[:interval].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: recurring_day must be an Integer") if params[:recurring_day] and !params[:recurring_day].is_a?(Integer)
+      raise InvalidParameterError.new("Bad parameter: schedule_days_of_week must be an Array") if params[:schedule_days_of_week] and !params[:schedule_days_of_week].is_a?(Array)
+      raise InvalidParameterError.new("Bad parameter: schedule_times_of_day must be an Array") if params[:schedule_times_of_day] and !params[:schedule_times_of_day].is_a?(Array)
+      raise InvalidParameterError.new("Bad parameter: schedule_time_zone must be an String") if params[:schedule_time_zone] and !params[:schedule_time_zone].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: holiday_region must be an String") if params[:holiday_region] and !params[:holiday_region].is_a?(String)
+      raise MissingParameterError.new("Parameter missing: name") unless params[:name]
+      raise MissingParameterError.new("Parameter missing: export_type") unless params[:export_type]
+
+      response, options = Api.send_request("/scheduled_exports", :post, params, options)
+      ScheduledExport.new(response.data, options)
+    end
+
+    # Parameters:
+    #   name - string - Name for this scheduled export.
+    #   export_type - string - Export report type. Valid values: folder_size_audit, group_membership_audit, permission_audit, share_link_audit
+    #   export_options - object - Report-specific options. `permission_audit` supports `group_by` with `user` or `path`.
+    #   user_id - int64 - Site Admin user who receives the completed export e-mail.
+    #   disabled - boolean - If true, this scheduled export will not run.
+    #   trigger - string - Schedule trigger type: `daily` or `custom_schedule`.
+    #   interval - string - If trigger is `daily`, this specifies how often to run the scheduled export.
+    #   recurring_day - int64 - If trigger is `daily`, this selects the day number inside the chosen interval.
+    #   schedule_days_of_week - array(int64) - If trigger is `custom_schedule`, the 0-based weekdays used by the schedule.
+    #   schedule_times_of_day - array(string) - Times of day in HH:MM format for schedule-driven exports.
+    #   schedule_time_zone - string - Time zone used by the scheduled export.
+    #   holiday_region - string - Optional holiday region used by schedule-driven exports.
+    def self.update(id, params = {}, options = {})
+      params ||= {}
+      params[:id] = id
+      raise InvalidParameterError.new("Bad parameter: id must be an Integer") if params[:id] and !params[:id].is_a?(Integer)
+      raise InvalidParameterError.new("Bad parameter: name must be an String") if params[:name] and !params[:name].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: export_type must be an String") if params[:export_type] and !params[:export_type].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: export_options must be an Hash") if params[:export_options] and !params[:export_options].is_a?(Hash)
+      raise InvalidParameterError.new("Bad parameter: user_id must be an Integer") if params[:user_id] and !params[:user_id].is_a?(Integer)
+      raise InvalidParameterError.new("Bad parameter: trigger must be an String") if params[:trigger] and !params[:trigger].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: interval must be an String") if params[:interval] and !params[:interval].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: recurring_day must be an Integer") if params[:recurring_day] and !params[:recurring_day].is_a?(Integer)
+      raise InvalidParameterError.new("Bad parameter: schedule_days_of_week must be an Array") if params[:schedule_days_of_week] and !params[:schedule_days_of_week].is_a?(Array)
+      raise InvalidParameterError.new("Bad parameter: schedule_times_of_day must be an Array") if params[:schedule_times_of_day] and !params[:schedule_times_of_day].is_a?(Array)
+      raise InvalidParameterError.new("Bad parameter: schedule_time_zone must be an String") if params[:schedule_time_zone] and !params[:schedule_time_zone].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: holiday_region must be an String") if params[:holiday_region] and !params[:holiday_region].is_a?(String)
+      raise MissingParameterError.new("Parameter missing: id") unless params[:id]
+
+      response, options = Api.send_request("/scheduled_exports/#{params[:id]}", :patch, params, options)
+      ScheduledExport.new(response.data, options)
+    end
+
+    def self.delete(id, params = {}, options = {})
+      params ||= {}
+      params[:id] = id
+      raise InvalidParameterError.new("Bad parameter: id must be an Integer") if params[:id] and !params[:id].is_a?(Integer)
+      raise MissingParameterError.new("Parameter missing: id") unless params[:id]
+
+      Api.send_request("/scheduled_exports/#{params[:id]}", :delete, params, options)
+      nil
+    end
+
+    def self.destroy(id, params = {}, options = {})
+      delete(id, params, options)
+      nil
+    end
+  end
+end

data/lib/files.com/models/siem_http_destination.rb

@@ -99,7 +99,7 @@ module Files
       @attributes[:generic_payload_type] = value
     end
 
-    # string - Applicable only for destination type: splunk. Authentication token provided by Splunk.
+    # string - Applicable only for destination types: splunk, splunk_compatible. Authentication token for the destination.
     def splunk_token_masked
       @attributes[:splunk_token_masked]
     end
@@ -108,6 +108,15 @@ module Files
       @attributes[:splunk_token_masked] = value
     end
 
+    # string - Applicable only for destination type: crowdstrike. Authentication token provided by Crowdstrike.
+    def crowdstrike_token_masked
+      @attributes[:crowdstrike_token_masked]
+    end
+
+    def crowdstrike_token_masked=(value)
+      @attributes[:crowdstrike_token_masked] = value
+    end
+
     # string - Applicable only for destination types: azure, azure_legacy. Immutable ID of the Data Collection Rule.
     def azure_dcr_immutable_id
       @attributes[:azure_dcr_immutable_id]
@@ -495,7 +504,7 @@ module Files
       @attributes[:connection_test_entry] = value
     end
 
-    # string - Applicable only for destination type: splunk. Authentication token provided by Splunk.
+    # string - Applicable only for destination types: splunk, splunk_compatible. Authentication token for the destination.
     def splunk_token
       @attributes[:splunk_token]
     end
@@ -504,6 +513,15 @@ module Files
       @attributes[:splunk_token] = value
     end
 
+    # string - Applicable only for destination type: crowdstrike. Authentication token provided by Crowdstrike.
+    def crowdstrike_token
+      @attributes[:crowdstrike_token]
+    end
+
+    def crowdstrike_token=(value)
+      @attributes[:crowdstrike_token] = value
+    end
+
     # string - Applicable only for destination type: azure. Client Credentials OAuth Client Secret.
     def azure_oauth_client_credentials_client_secret
       @attributes[:azure_oauth_client_credentials_client_secret]
@@ -557,7 +575,8 @@ module Files
     #   file_destination_path - string - Applicable only for destination type: file. Destination folder path on Files.com.
     #   file_format - string - Applicable only for destination type: file. Generated file format.
     #   file_interval_minutes - int64 - Applicable only for destination type: file. Interval, in minutes, between file deliveries. Valid values are 5, 10, 15, 20, 30, 60, 90, 180, 240, 360.
-    #   splunk_token - string - Applicable only for destination type: splunk. Authentication token provided by Splunk.
+    #   splunk_token - string - Applicable only for destination types: splunk, splunk_compatible. Authentication token for the destination.
+    #   crowdstrike_token - string - Applicable only for destination type: crowdstrike. Authentication token provided by Crowdstrike.
     #   azure_dcr_immutable_id - string - Applicable only for destination types: azure, azure_legacy. Immutable ID of the Data Collection Rule.
     #   azure_stream_name - string - Applicable only for destination type: azure. Name of the stream in the DCR that represents the destination table.
     #   azure_oauth_client_credentials_tenant_id - string - Applicable only for destination types: azure, azure_legacy. Client Credentials OAuth Tenant ID.
@@ -593,6 +612,7 @@ module Files
       raise InvalidParameterError.new("Bad parameter: file_format must be an String") if params[:file_format] and !params[:file_format].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: file_interval_minutes must be an Integer") if params[:file_interval_minutes] and !params[:file_interval_minutes].is_a?(Integer)
       raise InvalidParameterError.new("Bad parameter: splunk_token must be an String") if params[:splunk_token] and !params[:splunk_token].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: crowdstrike_token must be an String") if params[:crowdstrike_token] and !params[:crowdstrike_token].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: azure_dcr_immutable_id must be an String") if params[:azure_dcr_immutable_id] and !params[:azure_dcr_immutable_id].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: azure_stream_name must be an String") if params[:azure_stream_name] and !params[:azure_stream_name].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: azure_oauth_client_credentials_tenant_id must be an String") if params[:azure_oauth_client_credentials_tenant_id] and !params[:azure_oauth_client_credentials_tenant_id].is_a?(String)
@@ -676,7 +696,8 @@ module Files
     #   file_destination_path - string - Applicable only for destination type: file. Destination folder path on Files.com.
     #   file_format - string - Applicable only for destination type: file. Generated file format.
     #   file_interval_minutes - int64 - Applicable only for destination type: file. Interval, in minutes, between file deliveries. Valid values are 5, 10, 15, 20, 30, 60, 90, 180, 240, 360.
-    #   splunk_token - string - Applicable only for destination type: splunk. Authentication token provided by Splunk.
+    #   splunk_token - string - Applicable only for destination types: splunk, splunk_compatible. Authentication token for the destination.
+    #   crowdstrike_token - string - Applicable only for destination type: crowdstrike. Authentication token provided by Crowdstrike.
     #   azure_dcr_immutable_id - string - Applicable only for destination types: azure, azure_legacy. Immutable ID of the Data Collection Rule.
     #   azure_stream_name - string - Applicable only for destination type: azure. Name of the stream in the DCR that represents the destination table.
     #   azure_oauth_client_credentials_tenant_id - string - Applicable only for destination types: azure, azure_legacy. Client Credentials OAuth Tenant ID.
@@ -709,6 +730,7 @@ module Files
       raise InvalidParameterError.new("Bad parameter: file_format must be an String") if params[:file_format] and !params[:file_format].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: file_interval_minutes must be an Integer") if params[:file_interval_minutes] and !params[:file_interval_minutes].is_a?(Integer)
       raise InvalidParameterError.new("Bad parameter: splunk_token must be an String") if params[:splunk_token] and !params[:splunk_token].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: crowdstrike_token must be an String") if params[:crowdstrike_token] and !params[:crowdstrike_token].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: azure_dcr_immutable_id must be an String") if params[:azure_dcr_immutable_id] and !params[:azure_dcr_immutable_id].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: azure_stream_name must be an String") if params[:azure_stream_name] and !params[:azure_stream_name].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: azure_oauth_client_credentials_tenant_id must be an String") if params[:azure_oauth_client_credentials_tenant_id] and !params[:azure_oauth_client_credentials_tenant_id].is_a?(String)
@@ -738,7 +760,8 @@ module Files
     #   file_destination_path - string - Applicable only for destination type: file. Destination folder path on Files.com.
     #   file_format - string - Applicable only for destination type: file. Generated file format.
     #   file_interval_minutes - int64 - Applicable only for destination type: file. Interval, in minutes, between file deliveries. Valid values are 5, 10, 15, 20, 30, 60, 90, 180, 240, 360.
-    #   splunk_token - string - Applicable only for destination type: splunk. Authentication token provided by Splunk.
+    #   splunk_token - string - Applicable only for destination types: splunk, splunk_compatible. Authentication token for the destination.
+    #   crowdstrike_token - string - Applicable only for destination type: crowdstrike. Authentication token provided by Crowdstrike.
     #   azure_dcr_immutable_id - string - Applicable only for destination types: azure, azure_legacy. Immutable ID of the Data Collection Rule.
     #   azure_stream_name - string - Applicable only for destination type: azure. Name of the stream in the DCR that represents the destination table.
     #   azure_oauth_client_credentials_tenant_id - string - Applicable only for destination types: azure, azure_legacy. Client Credentials OAuth Tenant ID.
@@ -772,6 +795,7 @@ module Files
       raise InvalidParameterError.new("Bad parameter: file_format must be an String") if params[:file_format] and !params[:file_format].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: file_interval_minutes must be an Integer") if params[:file_interval_minutes] and !params[:file_interval_minutes].is_a?(Integer)
       raise InvalidParameterError.new("Bad parameter: splunk_token must be an String") if params[:splunk_token] and !params[:splunk_token].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: crowdstrike_token must be an String") if params[:crowdstrike_token] and !params[:crowdstrike_token].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: azure_dcr_immutable_id must be an String") if params[:azure_dcr_immutable_id] and !params[:azure_dcr_immutable_id].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: azure_stream_name must be an String") if params[:azure_stream_name] and !params[:azure_stream_name].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: azure_oauth_client_credentials_tenant_id must be an String") if params[:azure_oauth_client_credentials_tenant_id] and !params[:azure_oauth_client_credentials_tenant_id].is_a?(String)
@@ -795,7 +819,8 @@ module Files
     #   file_destination_path - string - Applicable only for destination type: file. Destination folder path on Files.com.
     #   file_format - string - Applicable only for destination type: file. Generated file format.
     #   file_interval_minutes - int64 - Applicable only for destination type: file. Interval, in minutes, between file deliveries. Valid values are 5, 10, 15, 20, 30, 60, 90, 180, 240, 360.
-    #   splunk_token - string - Applicable only for destination type: splunk. Authentication token provided by Splunk.
+    #   splunk_token - string - Applicable only for destination types: splunk, splunk_compatible. Authentication token for the destination.
+    #   crowdstrike_token - string - Applicable only for destination type: crowdstrike. Authentication token provided by Crowdstrike.
     #   azure_dcr_immutable_id - string - Applicable only for destination types: azure, azure_legacy. Immutable ID of the Data Collection Rule.
     #   azure_stream_name - string - Applicable only for destination type: azure. Name of the stream in the DCR that represents the destination table.
     #   azure_oauth_client_credentials_tenant_id - string - Applicable only for destination types: azure, azure_legacy. Client Credentials OAuth Tenant ID.
@@ -831,6 +856,7 @@ module Files
       raise InvalidParameterError.new("Bad parameter: file_format must be an String") if params[:file_format] and !params[:file_format].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: file_interval_minutes must be an Integer") if params[:file_interval_minutes] and !params[:file_interval_minutes].is_a?(Integer)
       raise InvalidParameterError.new("Bad parameter: splunk_token must be an String") if params[:splunk_token] and !params[:splunk_token].is_a?(String)
+      raise InvalidParameterError.new("Bad parameter: crowdstrike_token must be an String") if params[:crowdstrike_token] and !params[:crowdstrike_token].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: azure_dcr_immutable_id must be an String") if params[:azure_dcr_immutable_id] and !params[:azure_dcr_immutable_id].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: azure_stream_name must be an String") if params[:azure_stream_name] and !params[:azure_stream_name].is_a?(String)
       raise InvalidParameterError.new("Bad parameter: azure_oauth_client_credentials_tenant_id must be an String") if params[:azure_oauth_client_credentials_tenant_id] and !params[:azure_oauth_client_credentials_tenant_id].is_a?(String)

data/lib/files.com/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Files
-  VERSION = "1.1.637"
+  VERSION = "1.1.639"
 end

data/lib/files.com.rb

@@ -129,6 +129,7 @@ require "files.com/models/remote_server_configuration_file"
 require "files.com/models/remote_server_credential"
 require "files.com/models/request"
 require "files.com/models/restore"
+require "files.com/models/scheduled_export"
 require "files.com/models/scim_log"
 require "files.com/models/session"
 require "files.com/models/settings_change"

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: files.com
 version: !ruby/object:Gem::Version
-  version: 1.1.637
+  version: 1.1.639
 platform: ruby
 authors:
 - files.com
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2026-06-05 00:00:00.000000000 Z
+date: 2026-06-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: addressable
@@ -268,6 +268,7 @@ files:
 - docs/remote_server_credential.md
 - docs/request.md
 - docs/restore.md
+- docs/scheduled_export.md
 - docs/scim_log.md
 - docs/session.md
 - docs/settings_change.md
@@ -406,6 +407,7 @@ files:
 - lib/files.com/models/remote_server_credential.rb
 - lib/files.com/models/request.rb
 - lib/files.com/models/restore.rb
+- lib/files.com/models/scheduled_export.rb
 - lib/files.com/models/scim_log.rb
 - lib/files.com/models/session.rb
 - lib/files.com/models/settings_change.rb