google-apis-accessapproval_v1 0.15.0 → 0.16.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 714933bdf09d4b08679d573010c94e8eeed7f6d5db73d6b09df602fdd0743fd1
-  data.tar.gz: afd215212eab96dba47bfbbbfff716adbc8afba9391d0043923a6ac1b74904d4
+  metadata.gz: 45af9cc5d51f457ea44562a2a82e4efffcd3e17d2f588563bb4a72828ffca67f
+  data.tar.gz: 34e02c072b1691eb2e81974d4d45ccd5b5c010230a8ec6b5a02d95e5b8d4a3f4
 SHA512:
-  metadata.gz: 3cd61f18d41047e3f47ad15949366beb20249679eef354c97ff1dab04b43d558c57431a3d693603dafb0fbd9b8374cf2cfebc2cbabf46ea77d0403f7be868199
-  data.tar.gz: 563cb48a3d48da26b412efc90c27bdf5a67c27fca11b9f959c81a7f6af1cd30b7b063b12439f00a418d2e6b481a49f23f8537f49e7904a8e3d6415d8597be768
+  metadata.gz: fbc0c349939ac8a3e0908527cda62cf9c65eb81b71ec298a6e975a2efeee95b55e33e652aaa39e06a6555d4a998ef3de6e6e1035e1700d9375e9c11420aaae3d
+  data.tar.gz: 7504c75abc62b19bcba6ea93c73ef8895c63d00177de81dae7b37968d88c945ec467f3ecc253b041f61dd7d03291fe540ff9289b09258afb2e3e2359cefab851

data/CHANGELOG.md

@@ -1,5 +1,9 @@
 # Release history for google-apis-accessapproval_v1
 
+### v0.16.0 (2022-03-08)
+
+* Regenerated from discovery document revision 20220304
+
 ### v0.15.0 (2022-02-15)
 
 * Regenerated from discovery document revision 20220212

data/lib/google/apis/accessapproval_v1/classes.rb

@@ -22,10 +22,55 @@ module Google
   module Apis
     module AccessapprovalV1
       
+      # Access Approval service account related to a project/folder/organization.
+      class AccessApprovalServiceAccount
+        include Google::Apis::Core::Hashable
+      
+        # Email address of the service account.
+        # Corresponds to the JSON property `accountEmail`
+        # @return [String]
+        attr_accessor :account_email
+      
+        # The resource name of the Access Approval service account. Format is one of: * "
+        # projects/`project`/serviceAccount" * "folders/`folder`/serviceAccount" * "
+        # organizations/`organization`/serviceAccount"
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @account_email = args[:account_email] if args.key?(:account_email)
+          @name = args[:name] if args.key?(:name)
+        end
+      end
+      
       # Settings on a Project/Folder/Organization related to Access Approval.
       class AccessApprovalSettings
         include Google::Apis::Core::Hashable
       
+        # The asymmetric crypto key version to use for signing approval requests. Empty
+        # active_key_version indicates that a Google-managed key should be used for
+        # signing. This property will be ignored if set by an ancestor of this resource,
+        # and new non-empty values may not be set.
+        # Corresponds to the JSON property `activeKeyVersion`
+        # @return [String]
+        attr_accessor :active_key_version
+      
+        # Output only. This field is read only (not settable via
+        # UpdateAccessApprovalSettings method). If the field is true, that indicates
+        # that an ancestor of this Project or Folder has set active_key_version (this
+        # field will always be unset for the organization since organizations do not
+        # have ancestors).
+        # Corresponds to the JSON property `ancestorHasActiveKeyVersion`
+        # @return [Boolean]
+        attr_accessor :ancestor_has_active_key_version
+        alias_method :ancestor_has_active_key_version?, :ancestor_has_active_key_version
+      
         # Output only. This field is read only (not settable via
         # UpdateAccessApprovalSettings method). If the field is true, that indicates
         # that at least one service is enrolled for Access Approval in one or more
@@ -49,6 +94,18 @@ module Google
         # @return [Array<Google::Apis::AccessapprovalV1::EnrolledService>]
         attr_accessor :enrolled_services
       
+        # Output only. This field is read only (not settable via
+        # UpdateAccessApprovalSettings method). If the field is true, that indicates
+        # that there is some configuration issue with the active_key_version configured
+        # at this level in the resource hierarchy (e.g. it doesn't exist or the Access
+        # Approval service account doesn't have the correct permissions on it, etc.)
+        # This key version is not necessarily the effective key version at this level,
+        # as key versions are inherited top-down.
+        # Corresponds to the JSON property `invalidKeyVersion`
+        # @return [Boolean]
+        attr_accessor :invalid_key_version
+        alias_method :invalid_key_version?, :invalid_key_version
+      
         # The resource name of the settings. Format is one of: * "projects/`project`/
         # accessApprovalSettings" * "folders/`folder`/accessApprovalSettings" * "
         # organizations/`organization`/accessApprovalSettings"
@@ -70,8 +127,11 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @active_key_version = args[:active_key_version] if args.key?(:active_key_version)
+          @ancestor_has_active_key_version = args[:ancestor_has_active_key_version] if args.key?(:ancestor_has_active_key_version)
           @enrolled_ancestor = args[:enrolled_ancestor] if args.key?(:enrolled_ancestor)
           @enrolled_services = args[:enrolled_services] if args.key?(:enrolled_services)
+          @invalid_key_version = args[:invalid_key_version] if args.key?(:invalid_key_version)
           @name = args[:name] if args.key?(:name)
           @notification_emails = args[:notification_emails] if args.key?(:notification_emails)
         end
@@ -238,11 +298,22 @@ module Google
         # @return [String]
         attr_accessor :approve_time
       
+        # True when the request has been auto-approved.
+        # Corresponds to the JSON property `autoApproved`
+        # @return [Boolean]
+        attr_accessor :auto_approved
+        alias_method :auto_approved?, :auto_approved
+      
         # The time at which the approval expires.
         # Corresponds to the JSON property `expireTime`
         # @return [String]
         attr_accessor :expire_time
       
+        # Information about the digital signature of the resource.
+        # Corresponds to the JSON property `signatureInfo`
+        # @return [Google::Apis::AccessapprovalV1::SignatureInfo]
+        attr_accessor :signature_info
+      
         def initialize(**args)
            update!(**args)
         end
@@ -250,7 +321,9 @@ module Google
         # Update properties of this object
         def update!(**args)
           @approve_time = args[:approve_time] if args.key?(:approve_time)
+          @auto_approved = args[:auto_approved] if args.key?(:auto_approved)
           @expire_time = args[:expire_time] if args.key?(:expire_time)
+          @signature_info = args[:signature_info] if args.key?(:signature_info)
         end
       end
       
@@ -400,6 +473,40 @@ module Google
           @excludes_descendants = args[:excludes_descendants] if args.key?(:excludes_descendants)
         end
       end
+      
+      # Information about the digital signature of the resource.
+      class SignatureInfo
+        include Google::Apis::Core::Hashable
+      
+        # The resource name of the customer CryptoKeyVersion used for signing.
+        # Corresponds to the JSON property `customerKmsKeyVersion`
+        # @return [String]
+        attr_accessor :customer_kms_key_version
+      
+        # The public key for the Google default signing, encoded in PEM format. The
+        # signature was created using a private key which may be verified using this
+        # public key.
+        # Corresponds to the JSON property `googlePublicKeyPem`
+        # @return [String]
+        attr_accessor :google_public_key_pem
+      
+        # The digital signature.
+        # Corresponds to the JSON property `signature`
+        # NOTE: Values are automatically base64 encoded/decoded in the client library.
+        # @return [String]
+        attr_accessor :signature
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @customer_kms_key_version = args[:customer_kms_key_version] if args.key?(:customer_kms_key_version)
+          @google_public_key_pem = args[:google_public_key_pem] if args.key?(:google_public_key_pem)
+          @signature = args[:signature] if args.key?(:signature)
+        end
+      end
     end
   end
 end

data/lib/google/apis/accessapproval_v1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module AccessapprovalV1
       # Version of the google-apis-accessapproval_v1 gem
-      GEM_VERSION = "0.15.0"
+      GEM_VERSION = "0.16.0"
 
       # Version of the code generator used to generate this client
       GENERATOR_VERSION = "0.4.1"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20220212"
+      REVISION = "20220304"
     end
   end
 end

data/lib/google/apis/accessapproval_v1/representations.rb

@@ -22,6 +22,12 @@ module Google
   module Apis
     module AccessapprovalV1
       
+      class AccessApprovalServiceAccount
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class AccessApprovalSettings
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -94,12 +100,29 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class SignatureInfo
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class AccessApprovalServiceAccount
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :account_email, as: 'accountEmail'
+          property :name, as: 'name'
+        end
+      end
+      
       class AccessApprovalSettings
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
+          property :active_key_version, as: 'activeKeyVersion'
+          property :ancestor_has_active_key_version, as: 'ancestorHasActiveKeyVersion'
           property :enrolled_ancestor, as: 'enrolledAncestor'
           collection :enrolled_services, as: 'enrolledServices', class: Google::Apis::AccessapprovalV1::EnrolledService, decorator: Google::Apis::AccessapprovalV1::EnrolledService::Representation
       
+          property :invalid_key_version, as: 'invalidKeyVersion'
           property :name, as: 'name'
           collection :notification_emails, as: 'notificationEmails'
         end
@@ -152,7 +175,10 @@ module Google
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
           property :approve_time, as: 'approveTime'
+          property :auto_approved, as: 'autoApproved'
           property :expire_time, as: 'expireTime'
+          property :signature_info, as: 'signatureInfo', class: Google::Apis::AccessapprovalV1::SignatureInfo, decorator: Google::Apis::AccessapprovalV1::SignatureInfo::Representation
+      
         end
       end
       
@@ -199,6 +225,15 @@ module Google
           property :excludes_descendants, as: 'excludesDescendants'
         end
       end
+      
+      class SignatureInfo
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :customer_kms_key_version, as: 'customerKmsKeyVersion'
+          property :google_public_key_pem, as: 'googlePublicKeyPem'
+          property :signature, :base64 => true, as: 'signature'
+        end
+      end
     end
   end
 end

data/lib/google/apis/accessapproval_v1/service.rb

@@ -114,6 +114,37 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
+        # Retrieves the service account that is used by Access Approval to access KMS
+        # keys for signing approved approval requests.
+        # @param [String] name
+        #   Name of the AccessApprovalServiceAccount to retrieve.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::AccessapprovalV1::AccessApprovalServiceAccount] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::AccessapprovalV1::AccessApprovalServiceAccount]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def get_folder_service_account(name, fields: nil, quota_user: nil, options: nil, &block)
+          command = make_simple_command(:get, 'v1/{+name}', options)
+          command.response_representation = Google::Apis::AccessapprovalV1::AccessApprovalServiceAccount::Representation
+          command.response_class = Google::Apis::AccessapprovalV1::AccessApprovalServiceAccount
+          command.params['name'] = name unless name.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
         # Updates the settings associated with a project, folder, or organization.
         # Settings to update are determined by the value of field_mask.
         # @param [String] name
@@ -375,6 +406,37 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
+        # Retrieves the service account that is used by Access Approval to access KMS
+        # keys for signing approved approval requests.
+        # @param [String] name
+        #   Name of the AccessApprovalServiceAccount to retrieve.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::AccessapprovalV1::AccessApprovalServiceAccount] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::AccessapprovalV1::AccessApprovalServiceAccount]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def get_organization_service_account(name, fields: nil, quota_user: nil, options: nil, &block)
+          command = make_simple_command(:get, 'v1/{+name}', options)
+          command.response_representation = Google::Apis::AccessapprovalV1::AccessApprovalServiceAccount::Representation
+          command.response_class = Google::Apis::AccessapprovalV1::AccessApprovalServiceAccount
+          command.params['name'] = name unless name.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
         # Updates the settings associated with a project, folder, or organization.
         # Settings to update are determined by the value of field_mask.
         # @param [String] name
@@ -636,6 +698,37 @@ module Google
           execute_or_queue_command(command, &block)
         end
         
+        # Retrieves the service account that is used by Access Approval to access KMS
+        # keys for signing approved approval requests.
+        # @param [String] name
+        #   Name of the AccessApprovalServiceAccount to retrieve.
+        # @param [String] fields
+        #   Selector specifying which fields to include in a partial response.
+        # @param [String] quota_user
+        #   Available to use for quota purposes for server-side applications. Can be any
+        #   arbitrary string assigned to a user, but should not exceed 40 characters.
+        # @param [Google::Apis::RequestOptions] options
+        #   Request-specific options
+        #
+        # @yield [result, err] Result & error if block supplied
+        # @yieldparam result [Google::Apis::AccessapprovalV1::AccessApprovalServiceAccount] parsed result object
+        # @yieldparam err [StandardError] error object if request failed
+        #
+        # @return [Google::Apis::AccessapprovalV1::AccessApprovalServiceAccount]
+        #
+        # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
+        # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
+        # @raise [Google::Apis::AuthorizationError] Authorization is required
+        def get_project_service_account(name, fields: nil, quota_user: nil, options: nil, &block)
+          command = make_simple_command(:get, 'v1/{+name}', options)
+          command.response_representation = Google::Apis::AccessapprovalV1::AccessApprovalServiceAccount::Representation
+          command.response_class = Google::Apis::AccessapprovalV1::AccessApprovalServiceAccount
+          command.params['name'] = name unless name.nil?
+          command.query['fields'] = fields unless fields.nil?
+          command.query['quotaUser'] = quota_user unless quota_user.nil?
+          execute_or_queue_command(command, &block)
+        end
+        
         # Updates the settings associated with a project, folder, or organization.
         # Settings to update are determined by the value of field_mask.
         # @param [String] name

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-accessapproval_v1
 version: !ruby/object:Gem::Version
-  version: 0.15.0
+  version: 0.16.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-02-21 00:00:00.000000000 Z
+date: 2022-03-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accessapproval_v1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-accessapproval_v1/v0.15.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-accessapproval_v1/v0.16.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accessapproval_v1
 post_install_message: 
 rdoc_options: []