google-apis-accesscontextmanager_v1 0.46.0 → 0.48.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 2b267188ce297827737d31ae2feeab25e4ac875ef38806fa970fb0b0b9b5bf5a
-  data.tar.gz: 7d3e7078b135bd859ea05a39e15e31733a91f8fc73f08cd5a5a3f0942f2ca65f
+  metadata.gz: a844175f384216a0f24f903877368f24f5782b5225a9b0af71bab60d8ebe83d8
+  data.tar.gz: 7227826da154e7bd1ddafe610d6ed5aaa1260084166b2ce7ad13bcbd976b84a0
 SHA512:
-  metadata.gz: 4368e0a4732091b5e9fcc1157a7f8ff22b4d58de6972102850aa2bd00f9defeb5b9512ab9395792164c3f9fd81cda4d98db622ee0d7f6717dbc6e79e74d84f3e
-  data.tar.gz: 9449d808fd4c8965ed73d3734fa257caf0427d4d795d6841a71e7c79421c6114227c045d5704990b550782f7de92cf5f3198040af7f2c4fa1764214ef9c83d0c
+  metadata.gz: 6c0eac976f6fc7e98f4a8d46cab1fa67e45d9a9373cd75e5ca5d25eecef0fb25c0250a95bffef6fbfbe37c25ff823d318e4000b99f47d9240794be5ef2445fa0
+  data.tar.gz: 5480edb4b71115961e68e249987c4a5ccdd149be84983ff9cab00fade1c0fa599c0d97f102ca47ad1cc666a0bfbc0a818e0cebdf0b1759927ad62c6e74df25ea

data/CHANGELOG.md

@@ -1,5 +1,14 @@
 # Release history for google-apis-accesscontextmanager_v1
 
+### v0.48.0 (2024-09-15)
+
+* Regenerated from discovery document revision 20240908
+
+### v0.47.0 (2024-08-18)
+
+* Regenerated from discovery document revision 20240811
+* Regenerated using generator version 0.15.1
+
 ### v0.46.0 (2024-06-26)
 
 * Regenerated from discovery document revision 20240623

data/lib/google/apis/accesscontextmanager_v1/classes.rb

@@ -147,6 +147,57 @@ module Google
         end
       end
       
+      # Access scope represents the client scope, etc. to which the settings will be
+      # applied to.
+      class AccessScope
+        include Google::Apis::Core::Hashable
+      
+        # Client scope represents the application, etc. subject to this binding's
+        # restrictions.
+        # Corresponds to the JSON property `clientScope`
+        # @return [Google::Apis::AccesscontextmanagerV1::ClientScope]
+        attr_accessor :client_scope
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @client_scope = args[:client_scope] if args.key?(:client_scope)
+        end
+      end
+      
+      # Access settings represent the set of conditions that must be met for access to
+      # be granted. At least one of the fields must be set.
+      class AccessSettings
+        include Google::Apis::Core::Hashable
+      
+        # Optional. Access level that a user must have to be granted access. Only one
+        # access level is supported, not multiple. This repeated field must have exactly
+        # one element. Example: "accessPolicies/9522/accessLevels/device_trusted"
+        # Corresponds to the JSON property `accessLevels`
+        # @return [Array<String>]
+        attr_accessor :access_levels
+      
+        # Stores settings related to Google Cloud Session Length including session
+        # duration, the type of challenge (i.e. method) they should face when their
+        # session expires, and other related settings.
+        # Corresponds to the JSON property `reauthSettings`
+        # @return [Google::Apis::AccesscontextmanagerV1::ReauthSettings]
+        attr_accessor :reauth_settings
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @access_levels = args[:access_levels] if args.key?(:access_levels)
+          @reauth_settings = args[:reauth_settings] if args.key?(:reauth_settings)
+        end
+      end
+      
       # Identification for an API Operation.
       class ApiOperation
         include Google::Apis::Core::Hashable
@@ -477,6 +528,26 @@ module Google
         end
       end
       
+      # Client scope represents the application, etc. subject to this binding's
+      # restrictions.
+      class ClientScope
+        include Google::Apis::Core::Hashable
+      
+        # An application that accesses Google Cloud APIs.
+        # Corresponds to the JSON property `restrictedClientApplication`
+        # @return [Google::Apis::AccesscontextmanagerV1::Application]
+        attr_accessor :restricted_client_application
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @restricted_client_application = args[:restricted_client_application] if args.key?(:restricted_client_application)
+        end
+      end
+      
       # A request to commit dry-run specs in all Service Perimeters belonging to an
       # Access Policy.
       class CommitServicePerimetersRequest
@@ -709,9 +780,10 @@ module Google
       
         # A list of identities that are allowed access through [EgressPolicy].
         # Identities can be an individual user, service account, Google group, or third-
-        # party identity. The `v1` identities that have the prefix `user`, `group`, `
-        # serviceAccount`, `principal`, and `principalSet` in https://cloud.google.com/
-        # iam/docs/principal-identifiers#v1 are supported.
+        # party identity. For third-party identity, only single identities are supported
+        # and other identity types are not supported. The `v1` identities that have the
+        # prefix `user`, `group`, `serviceAccount`, and `principal` in https://cloud.
+        # google.com/iam/docs/principal-identifiers#v1 are supported.
         # Corresponds to the JSON property `identities`
         # @return [Array<String>]
         attr_accessor :identities
@@ -979,6 +1051,13 @@ module Google
         # @return [String]
         attr_accessor :name
       
+        # Stores settings related to Google Cloud Session Length including session
+        # duration, the type of challenge (i.e. method) they should face when their
+        # session expires, and other related settings.
+        # Corresponds to the JSON property `reauthSettings`
+        # @return [Google::Apis::AccesscontextmanagerV1::ReauthSettings]
+        attr_accessor :reauth_settings
+      
         # Optional. A list of applications that are subject to this binding's
         # restrictions. If the list is empty, the binding restrictions will universally
         # apply to all applications.
@@ -986,6 +1065,13 @@ module Google
         # @return [Array<Google::Apis::AccesscontextmanagerV1::Application>]
         attr_accessor :restricted_client_applications
       
+        # Optional. A list of scoped access settings that set this binding's
+        # restrictions on a subset of applications. This field cannot be set if
+        # restricted_client_applications is set.
+        # Corresponds to the JSON property `scopedAccessSettings`
+        # @return [Array<Google::Apis::AccesscontextmanagerV1::ScopedAccessSettings>]
+        attr_accessor :scoped_access_settings
+      
         def initialize(**args)
            update!(**args)
         end
@@ -996,7 +1082,9 @@ module Google
           @dry_run_access_levels = args[:dry_run_access_levels] if args.key?(:dry_run_access_levels)
           @group_key = args[:group_key] if args.key?(:group_key)
           @name = args[:name] if args.key?(:name)
+          @reauth_settings = args[:reauth_settings] if args.key?(:reauth_settings)
           @restricted_client_applications = args[:restricted_client_applications] if args.key?(:restricted_client_applications)
+          @scoped_access_settings = args[:scoped_access_settings] if args.key?(:scoped_access_settings)
         end
       end
       
@@ -1069,9 +1157,10 @@ module Google
       
         # A list of identities that are allowed access through [IngressPolicy].
         # Identities can be an individual user, service account, Google group, or third-
-        # party identity. The `v1` identities that have the prefix `user`, `group`, `
-        # serviceAccount`, `principal`, and `principalSet` in https://cloud.google.com/
-        # iam/docs/principal-identifiers#v1 are supported.
+        # party identity. For third-party identity, only single identities are supported
+        # and other identity types are not supported. The `v1` identities that have the
+        # prefix `user`, `group`, `serviceAccount`, and `principal` in https://cloud.
+        # google.com/iam/docs/principal-identifiers#v1 are supported.
         # Corresponds to the JSON property `identities`
         # @return [Array<String>]
         attr_accessor :identities
@@ -1612,6 +1701,61 @@ module Google
         end
       end
       
+      # Stores settings related to Google Cloud Session Length including session
+      # duration, the type of challenge (i.e. method) they should face when their
+      # session expires, and other related settings.
+      class ReauthSettings
+        include Google::Apis::Core::Hashable
+      
+        # Optional. How long a user is allowed to take between actions before a new
+        # access token must be issued. Presently only set for Cloud Apps.
+        # Corresponds to the JSON property `maxInactivity`
+        # @return [String]
+        attr_accessor :max_inactivity
+      
+        # Optional. Reauth method when users GCP session is up.
+        # Corresponds to the JSON property `reauthMethod`
+        # @return [String]
+        attr_accessor :reauth_method
+      
+        # Optional. The session length. Setting this field to zero is equal to disabling.
+        # Reauth. Also can set infinite session by flipping the enabled bit to false
+        # below. If use_oidc_max_age is true, for OIDC apps, the session length will be
+        # the minimum of this field and OIDC max_age param.
+        # Corresponds to the JSON property `sessionLength`
+        # @return [String]
+        attr_accessor :session_length
+      
+        # Optional. Big red button to turn off GCSL. When false, all fields set above
+        # will be disregarded and the session length is basically infinite.
+        # Corresponds to the JSON property `sessionLengthEnabled`
+        # @return [Boolean]
+        attr_accessor :session_length_enabled
+        alias_method :session_length_enabled?, :session_length_enabled
+      
+        # Optional. Only useful for OIDC apps. When false, the OIDC max_age param, if
+        # passed in the authentication request will be ignored. When true, the re-auth
+        # period will be the minimum of the session_length field and the max_age OIDC
+        # param.
+        # Corresponds to the JSON property `useOidcMaxAge`
+        # @return [Boolean]
+        attr_accessor :use_oidc_max_age
+        alias_method :use_oidc_max_age?, :use_oidc_max_age
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @max_inactivity = args[:max_inactivity] if args.key?(:max_inactivity)
+          @reauth_method = args[:reauth_method] if args.key?(:reauth_method)
+          @session_length = args[:session_length] if args.key?(:session_length)
+          @session_length_enabled = args[:session_length_enabled] if args.key?(:session_length_enabled)
+          @use_oidc_max_age = args[:use_oidc_max_age] if args.key?(:use_oidc_max_age)
+        end
+      end
+      
       # A request to replace all existing Access Levels in an Access Policy with the
       # Access Levels provided. This is done atomically.
       class ReplaceAccessLevelsRequest
@@ -1716,6 +1860,40 @@ module Google
         end
       end
       
+      # A relationship between access settings and its scope.
+      class ScopedAccessSettings
+        include Google::Apis::Core::Hashable
+      
+        # Access settings represent the set of conditions that must be met for access to
+        # be granted. At least one of the fields must be set.
+        # Corresponds to the JSON property `activeSettings`
+        # @return [Google::Apis::AccesscontextmanagerV1::AccessSettings]
+        attr_accessor :active_settings
+      
+        # Access settings represent the set of conditions that must be met for access to
+        # be granted. At least one of the fields must be set.
+        # Corresponds to the JSON property `dryRunSettings`
+        # @return [Google::Apis::AccesscontextmanagerV1::AccessSettings]
+        attr_accessor :dry_run_settings
+      
+        # Access scope represents the client scope, etc. to which the settings will be
+        # applied to.
+        # Corresponds to the JSON property `scope`
+        # @return [Google::Apis::AccesscontextmanagerV1::AccessScope]
+        attr_accessor :scope
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @active_settings = args[:active_settings] if args.key?(:active_settings)
+          @dry_run_settings = args[:dry_run_settings] if args.key?(:dry_run_settings)
+          @scope = args[:scope] if args.key?(:scope)
+        end
+      end
+      
       # `ServicePerimeter` describes a set of Google Cloud resources which can freely
       # import and export data amongst themselves, but not export outside of the `
       # ServicePerimeter`. If a request with a source within this `ServicePerimeter`

data/lib/google/apis/accesscontextmanager_v1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module AccesscontextmanagerV1
       # Version of the google-apis-accesscontextmanager_v1 gem
-      GEM_VERSION = "0.46.0"
+      GEM_VERSION = "0.48.0"
 
       # Version of the code generator used to generate this client
-      GENERATOR_VERSION = "0.15.0"
+      GENERATOR_VERSION = "0.15.1"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20240623"
+      REVISION = "20240908"
     end
   end
 end

data/lib/google/apis/accesscontextmanager_v1/representations.rb

@@ -40,6 +40,18 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class AccessScope
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class AccessSettings
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class ApiOperation
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -88,6 +100,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class ClientScope
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class CommitServicePerimetersRequest
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -268,6 +286,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class ReauthSettings
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class ReplaceAccessLevelsRequest
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -292,6 +316,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class ScopedAccessSettings
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class ServicePerimeter
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -382,6 +412,23 @@ module Google
         end
       end
       
+      class AccessScope
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :client_scope, as: 'clientScope', class: Google::Apis::AccesscontextmanagerV1::ClientScope, decorator: Google::Apis::AccesscontextmanagerV1::ClientScope::Representation
+      
+        end
+      end
+      
+      class AccessSettings
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          collection :access_levels, as: 'accessLevels'
+          property :reauth_settings, as: 'reauthSettings', class: Google::Apis::AccesscontextmanagerV1::ReauthSettings, decorator: Google::Apis::AccesscontextmanagerV1::ReauthSettings::Representation
+      
+        end
+      end
+      
       class ApiOperation
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -452,6 +499,14 @@ module Google
         end
       end
       
+      class ClientScope
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :restricted_client_application, as: 'restrictedClientApplication', class: Google::Apis::AccesscontextmanagerV1::Application, decorator: Google::Apis::AccesscontextmanagerV1::Application::Representation
+      
+        end
+      end
+      
       class CommitServicePerimetersRequest
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -564,8 +619,12 @@ module Google
           collection :dry_run_access_levels, as: 'dryRunAccessLevels'
           property :group_key, as: 'groupKey'
           property :name, as: 'name'
+          property :reauth_settings, as: 'reauthSettings', class: Google::Apis::AccesscontextmanagerV1::ReauthSettings, decorator: Google::Apis::AccesscontextmanagerV1::ReauthSettings::Representation
+      
           collection :restricted_client_applications, as: 'restrictedClientApplications', class: Google::Apis::AccesscontextmanagerV1::Application, decorator: Google::Apis::AccesscontextmanagerV1::Application::Representation
       
+          collection :scoped_access_settings, as: 'scopedAccessSettings', class: Google::Apis::AccesscontextmanagerV1::ScopedAccessSettings, decorator: Google::Apis::AccesscontextmanagerV1::ScopedAccessSettings::Representation
+      
         end
       end
       
@@ -731,6 +790,17 @@ module Google
         end
       end
       
+      class ReauthSettings
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :max_inactivity, as: 'maxInactivity'
+          property :reauth_method, as: 'reauthMethod'
+          property :session_length, as: 'sessionLength'
+          property :session_length_enabled, as: 'sessionLengthEnabled'
+          property :use_oidc_max_age, as: 'useOidcMaxAge'
+        end
+      end
+      
       class ReplaceAccessLevelsRequest
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -765,6 +835,18 @@ module Google
         end
       end
       
+      class ScopedAccessSettings
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :active_settings, as: 'activeSettings', class: Google::Apis::AccesscontextmanagerV1::AccessSettings, decorator: Google::Apis::AccesscontextmanagerV1::AccessSettings::Representation
+      
+          property :dry_run_settings, as: 'dryRunSettings', class: Google::Apis::AccesscontextmanagerV1::AccessSettings, decorator: Google::Apis::AccesscontextmanagerV1::AccessSettings::Representation
+      
+          property :scope, as: 'scope', class: Google::Apis::AccesscontextmanagerV1::AccessScope, decorator: Google::Apis::AccesscontextmanagerV1::AccessScope::Representation
+      
+        end
+      end
+      
       class ServicePerimeter
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-accesscontextmanager_v1
 version: !ruby/object:Gem::Version
-  version: 0.46.0
+  version: 0.48.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2024-06-27 00:00:00.000000000 Z
+date: 2024-09-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accesscontextmanager_v1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-accesscontextmanager_v1/v0.46.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-accesscontextmanager_v1/v0.48.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accesscontextmanager_v1
 post_install_message: 
 rdoc_options: []