google-apis-accesscontextmanager_v1 0.47.0 → 0.49.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 81e7ec5804dc968e70ea97d735e96a1fc8cd5c64ffbf7af970faa56fe2246f9f
-  data.tar.gz: 4bc89eebf17545e75c7c66009e832ee181a845e85059c2123253bc58db82a8e2
+  metadata.gz: e3678bfd4fdcaf86db75d1aa2f7e48ec41602ed2a8bc9a2a1de189112befc01a
+  data.tar.gz: 4987ea7cde20b204b7fdca872fb4a14a0119902761c3e048aab8891b76c6f8bb
 SHA512:
-  metadata.gz: 6984c7036aebd751ec8a5c13800871e0520f28c2f41b91b8b0845af3bab5f5c8ed504cb161975372c24299ea23eacdf0d6ea2a308eae8c71ff83eaea426f25f2
-  data.tar.gz: a4324c18efb12c6aff7bb42c8706439434a699fff02e79165756ff9c543e77990199afe063eaa87b92a9ef5f23a0958c2a09c61cbc212d2236ffa5534e46cedf
+  metadata.gz: ed5792919719290e5980e38a268559e79b4534593e5d102a0a2a0a55322911aff0139c7008f66a94a60878c4e261db29f183fb3a4b7acc8ebdb0e9a3e1e4b87f
+  data.tar.gz: 5eb9aff67838a4f72f70fb60c776be49b2861a76014e150e118766bbf69e3a0cb90c15e4e68ed5f8e7537fe49b0c7c5d30a508327fa89d2ed43c5629e48a54e5

data/CHANGELOG.md

@@ -1,5 +1,13 @@
 # Release history for google-apis-accesscontextmanager_v1
 
+### v0.49.0 (2024-09-29)
+
+* Regenerated from discovery document revision 20240923
+
+### v0.48.0 (2024-09-15)
+
+* Regenerated from discovery document revision 20240908
+
 ### v0.47.0 (2024-08-18)
 
 * Regenerated from discovery document revision 20240811

data/lib/google/apis/accesscontextmanager_v1/classes.rb

@@ -147,6 +147,57 @@ module Google
         end
       end
       
+      # Access scope represents the client scope, etc. to which the settings will be
+      # applied to.
+      class AccessScope
+        include Google::Apis::Core::Hashable
+      
+        # Client scope represents the application, etc. subject to this binding's
+        # restrictions.
+        # Corresponds to the JSON property `clientScope`
+        # @return [Google::Apis::AccesscontextmanagerV1::ClientScope]
+        attr_accessor :client_scope
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @client_scope = args[:client_scope] if args.key?(:client_scope)
+        end
+      end
+      
+      # Access settings represent the set of conditions that must be met for access to
+      # be granted. At least one of the fields must be set.
+      class AccessSettings
+        include Google::Apis::Core::Hashable
+      
+        # Optional. Access level that a user must have to be granted access. Only one
+        # access level is supported, not multiple. This repeated field must have exactly
+        # one element. Example: "accessPolicies/9522/accessLevels/device_trusted"
+        # Corresponds to the JSON property `accessLevels`
+        # @return [Array<String>]
+        attr_accessor :access_levels
+      
+        # Stores settings related to Google Cloud Session Length including session
+        # duration, the type of challenge (i.e. method) they should face when their
+        # session expires, and other related settings.
+        # Corresponds to the JSON property `reauthSettings`
+        # @return [Google::Apis::AccesscontextmanagerV1::ReauthSettings]
+        attr_accessor :reauth_settings
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @access_levels = args[:access_levels] if args.key?(:access_levels)
+          @reauth_settings = args[:reauth_settings] if args.key?(:reauth_settings)
+        end
+      end
+      
       # Identification for an API Operation.
       class ApiOperation
         include Google::Apis::Core::Hashable
@@ -477,6 +528,26 @@ module Google
         end
       end
       
+      # Client scope represents the application, etc. subject to this binding's
+      # restrictions.
+      class ClientScope
+        include Google::Apis::Core::Hashable
+      
+        # An application that accesses Google Cloud APIs.
+        # Corresponds to the JSON property `restrictedClientApplication`
+        # @return [Google::Apis::AccesscontextmanagerV1::Application]
+        attr_accessor :restricted_client_application
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @restricted_client_application = args[:restricted_client_application] if args.key?(:restricted_client_application)
+        end
+      end
+      
       # A request to commit dry-run specs in all Service Perimeters belonging to an
       # Access Policy.
       class CommitServicePerimetersRequest
@@ -980,6 +1051,13 @@ module Google
         # @return [String]
         attr_accessor :name
       
+        # Stores settings related to Google Cloud Session Length including session
+        # duration, the type of challenge (i.e. method) they should face when their
+        # session expires, and other related settings.
+        # Corresponds to the JSON property `reauthSettings`
+        # @return [Google::Apis::AccesscontextmanagerV1::ReauthSettings]
+        attr_accessor :reauth_settings
+      
         # Optional. A list of applications that are subject to this binding's
         # restrictions. If the list is empty, the binding restrictions will universally
         # apply to all applications.
@@ -987,6 +1065,13 @@ module Google
         # @return [Array<Google::Apis::AccesscontextmanagerV1::Application>]
         attr_accessor :restricted_client_applications
       
+        # Optional. A list of scoped access settings that set this binding's
+        # restrictions on a subset of applications. This field cannot be set if
+        # restricted_client_applications is set.
+        # Corresponds to the JSON property `scopedAccessSettings`
+        # @return [Array<Google::Apis::AccesscontextmanagerV1::ScopedAccessSettings>]
+        attr_accessor :scoped_access_settings
+      
         def initialize(**args)
            update!(**args)
         end
@@ -997,7 +1082,9 @@ module Google
           @dry_run_access_levels = args[:dry_run_access_levels] if args.key?(:dry_run_access_levels)
           @group_key = args[:group_key] if args.key?(:group_key)
           @name = args[:name] if args.key?(:name)
+          @reauth_settings = args[:reauth_settings] if args.key?(:reauth_settings)
           @restricted_client_applications = args[:restricted_client_applications] if args.key?(:restricted_client_applications)
+          @scoped_access_settings = args[:scoped_access_settings] if args.key?(:scoped_access_settings)
         end
       end
       
@@ -1614,6 +1701,61 @@ module Google
         end
       end
       
+      # Stores settings related to Google Cloud Session Length including session
+      # duration, the type of challenge (i.e. method) they should face when their
+      # session expires, and other related settings.
+      class ReauthSettings
+        include Google::Apis::Core::Hashable
+      
+        # Optional. How long a user is allowed to take between actions before a new
+        # access token must be issued. Presently only set for Cloud Apps.
+        # Corresponds to the JSON property `maxInactivity`
+        # @return [String]
+        attr_accessor :max_inactivity
+      
+        # Optional. Reauth method when users GCP session is up.
+        # Corresponds to the JSON property `reauthMethod`
+        # @return [String]
+        attr_accessor :reauth_method
+      
+        # Optional. The session length. Setting this field to zero is equal to disabling.
+        # Reauth. Also can set infinite session by flipping the enabled bit to false
+        # below. If use_oidc_max_age is true, for OIDC apps, the session length will be
+        # the minimum of this field and OIDC max_age param.
+        # Corresponds to the JSON property `sessionLength`
+        # @return [String]
+        attr_accessor :session_length
+      
+        # Optional. Big red button to turn off GCSL. When false, all fields set above
+        # will be disregarded and the session length is basically infinite.
+        # Corresponds to the JSON property `sessionLengthEnabled`
+        # @return [Boolean]
+        attr_accessor :session_length_enabled
+        alias_method :session_length_enabled?, :session_length_enabled
+      
+        # Optional. Only useful for OIDC apps. When false, the OIDC max_age param, if
+        # passed in the authentication request will be ignored. When true, the re-auth
+        # period will be the minimum of the session_length field and the max_age OIDC
+        # param.
+        # Corresponds to the JSON property `useOidcMaxAge`
+        # @return [Boolean]
+        attr_accessor :use_oidc_max_age
+        alias_method :use_oidc_max_age?, :use_oidc_max_age
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @max_inactivity = args[:max_inactivity] if args.key?(:max_inactivity)
+          @reauth_method = args[:reauth_method] if args.key?(:reauth_method)
+          @session_length = args[:session_length] if args.key?(:session_length)
+          @session_length_enabled = args[:session_length_enabled] if args.key?(:session_length_enabled)
+          @use_oidc_max_age = args[:use_oidc_max_age] if args.key?(:use_oidc_max_age)
+        end
+      end
+      
       # A request to replace all existing Access Levels in an Access Policy with the
       # Access Levels provided. This is done atomically.
       class ReplaceAccessLevelsRequest
@@ -1718,6 +1860,40 @@ module Google
         end
       end
       
+      # A relationship between access settings and its scope.
+      class ScopedAccessSettings
+        include Google::Apis::Core::Hashable
+      
+        # Access settings represent the set of conditions that must be met for access to
+        # be granted. At least one of the fields must be set.
+        # Corresponds to the JSON property `activeSettings`
+        # @return [Google::Apis::AccesscontextmanagerV1::AccessSettings]
+        attr_accessor :active_settings
+      
+        # Access settings represent the set of conditions that must be met for access to
+        # be granted. At least one of the fields must be set.
+        # Corresponds to the JSON property `dryRunSettings`
+        # @return [Google::Apis::AccesscontextmanagerV1::AccessSettings]
+        attr_accessor :dry_run_settings
+      
+        # Access scope represents the client scope, etc. to which the settings will be
+        # applied to.
+        # Corresponds to the JSON property `scope`
+        # @return [Google::Apis::AccesscontextmanagerV1::AccessScope]
+        attr_accessor :scope
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @active_settings = args[:active_settings] if args.key?(:active_settings)
+          @dry_run_settings = args[:dry_run_settings] if args.key?(:dry_run_settings)
+          @scope = args[:scope] if args.key?(:scope)
+        end
+      end
+      
       # `ServicePerimeter` describes a set of Google Cloud resources which can freely
       # import and export data amongst themselves, but not export outside of the `
       # ServicePerimeter`. If a request with a source within this `ServicePerimeter`

data/lib/google/apis/accesscontextmanager_v1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module AccesscontextmanagerV1
       # Version of the google-apis-accesscontextmanager_v1 gem
-      GEM_VERSION = "0.47.0"
+      GEM_VERSION = "0.49.0"
 
       # Version of the code generator used to generate this client
       GENERATOR_VERSION = "0.15.1"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20240811"
+      REVISION = "20240923"
     end
   end
 end

data/lib/google/apis/accesscontextmanager_v1/representations.rb

@@ -40,6 +40,18 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class AccessScope
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
+      class AccessSettings
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class ApiOperation
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -88,6 +100,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class ClientScope
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class CommitServicePerimetersRequest
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -268,6 +286,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class ReauthSettings
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class ReplaceAccessLevelsRequest
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -292,6 +316,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class ScopedAccessSettings
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class ServicePerimeter
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -382,6 +412,23 @@ module Google
         end
       end
       
+      class AccessScope
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :client_scope, as: 'clientScope', class: Google::Apis::AccesscontextmanagerV1::ClientScope, decorator: Google::Apis::AccesscontextmanagerV1::ClientScope::Representation
+      
+        end
+      end
+      
+      class AccessSettings
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          collection :access_levels, as: 'accessLevels'
+          property :reauth_settings, as: 'reauthSettings', class: Google::Apis::AccesscontextmanagerV1::ReauthSettings, decorator: Google::Apis::AccesscontextmanagerV1::ReauthSettings::Representation
+      
+        end
+      end
+      
       class ApiOperation
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -452,6 +499,14 @@ module Google
         end
       end
       
+      class ClientScope
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :restricted_client_application, as: 'restrictedClientApplication', class: Google::Apis::AccesscontextmanagerV1::Application, decorator: Google::Apis::AccesscontextmanagerV1::Application::Representation
+      
+        end
+      end
+      
       class CommitServicePerimetersRequest
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -564,8 +619,12 @@ module Google
           collection :dry_run_access_levels, as: 'dryRunAccessLevels'
           property :group_key, as: 'groupKey'
           property :name, as: 'name'
+          property :reauth_settings, as: 'reauthSettings', class: Google::Apis::AccesscontextmanagerV1::ReauthSettings, decorator: Google::Apis::AccesscontextmanagerV1::ReauthSettings::Representation
+      
           collection :restricted_client_applications, as: 'restrictedClientApplications', class: Google::Apis::AccesscontextmanagerV1::Application, decorator: Google::Apis::AccesscontextmanagerV1::Application::Representation
       
+          collection :scoped_access_settings, as: 'scopedAccessSettings', class: Google::Apis::AccesscontextmanagerV1::ScopedAccessSettings, decorator: Google::Apis::AccesscontextmanagerV1::ScopedAccessSettings::Representation
+      
         end
       end
       
@@ -731,6 +790,17 @@ module Google
         end
       end
       
+      class ReauthSettings
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :max_inactivity, as: 'maxInactivity'
+          property :reauth_method, as: 'reauthMethod'
+          property :session_length, as: 'sessionLength'
+          property :session_length_enabled, as: 'sessionLengthEnabled'
+          property :use_oidc_max_age, as: 'useOidcMaxAge'
+        end
+      end
+      
       class ReplaceAccessLevelsRequest
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation
@@ -765,6 +835,18 @@ module Google
         end
       end
       
+      class ScopedAccessSettings
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :active_settings, as: 'activeSettings', class: Google::Apis::AccesscontextmanagerV1::AccessSettings, decorator: Google::Apis::AccesscontextmanagerV1::AccessSettings::Representation
+      
+          property :dry_run_settings, as: 'dryRunSettings', class: Google::Apis::AccesscontextmanagerV1::AccessSettings, decorator: Google::Apis::AccesscontextmanagerV1::AccessSettings::Representation
+      
+          property :scope, as: 'scope', class: Google::Apis::AccesscontextmanagerV1::AccessScope, decorator: Google::Apis::AccesscontextmanagerV1::AccessScope::Representation
+      
+        end
+      end
+      
       class ServicePerimeter
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation

data/lib/google/apis/accesscontextmanager_v1/service.rb

@@ -1394,11 +1394,17 @@ module Google
         #   not be specified by the client during creation. Example: "organizations/256/
         #   gcpUserAccessBindings/b3-BhcX_Ud5N"
         # @param [Google::Apis::AccesscontextmanagerV1::GcpUserAccessBinding] gcp_user_access_binding_object
+        # @param [Boolean] append_scoped_access_settings
+        #   Optional. This field will be used to control whether or not scoped access
+        #   settings are appended to the existing list of scoped access settings. If true,
+        #   the scoped access settings in the request will be appended to the existing
+        #   list of scoped access settings. If false, the scoped access settings in the
+        #   request replace the existing list of scoped access settings.
         # @param [String] update_mask
         #   Required. Only the fields specified in this mask are updated. Because name and
         #   group_key cannot be changed, update_mask is required and may only contain the
-        #   following fields: `access_levels`, `dry_run_access_levels`. update_mask `
-        #   paths: "access_levels" `
+        #   following fields: `access_levels`, `dry_run_access_levels`, `reauth_settings`,
+        #   `scoped_access_settings`. update_mask ` paths: "access_levels" `
         # @param [String] fields
         #   Selector specifying which fields to include in a partial response.
         # @param [String] quota_user
@@ -1416,13 +1422,14 @@ module Google
         # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
         # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
         # @raise [Google::Apis::AuthorizationError] Authorization is required
-        def patch_organization_gcp_user_access_binding(name, gcp_user_access_binding_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block)
+        def patch_organization_gcp_user_access_binding(name, gcp_user_access_binding_object = nil, append_scoped_access_settings: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block)
           command = make_simple_command(:patch, 'v1/{+name}', options)
           command.request_representation = Google::Apis::AccesscontextmanagerV1::GcpUserAccessBinding::Representation
           command.request_object = gcp_user_access_binding_object
           command.response_representation = Google::Apis::AccesscontextmanagerV1::Operation::Representation
           command.response_class = Google::Apis::AccesscontextmanagerV1::Operation
           command.params['name'] = name unless name.nil?
+          command.query['appendScopedAccessSettings'] = append_scoped_access_settings unless append_scoped_access_settings.nil?
           command.query['updateMask'] = update_mask unless update_mask.nil?
           command.query['fields'] = fields unless fields.nil?
           command.query['quotaUser'] = quota_user unless quota_user.nil?

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-accesscontextmanager_v1
 version: !ruby/object:Gem::Version
-  version: 0.47.0
+  version: 0.49.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2024-08-18 00:00:00.000000000 Z
+date: 2024-09-29 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accesscontextmanager_v1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-accesscontextmanager_v1/v0.47.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-accesscontextmanager_v1/v0.49.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accesscontextmanager_v1
 post_install_message: 
 rdoc_options: []