google-apis-accesscontextmanager_v1 0.47.0 → 0.49.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 81e7ec5804dc968e70ea97d735e96a1fc8cd5c64ffbf7af970faa56fe2246f9f
4
- data.tar.gz: 4bc89eebf17545e75c7c66009e832ee181a845e85059c2123253bc58db82a8e2
3
+ metadata.gz: e3678bfd4fdcaf86db75d1aa2f7e48ec41602ed2a8bc9a2a1de189112befc01a
4
+ data.tar.gz: 4987ea7cde20b204b7fdca872fb4a14a0119902761c3e048aab8891b76c6f8bb
5
5
  SHA512:
6
- metadata.gz: 6984c7036aebd751ec8a5c13800871e0520f28c2f41b91b8b0845af3bab5f5c8ed504cb161975372c24299ea23eacdf0d6ea2a308eae8c71ff83eaea426f25f2
7
- data.tar.gz: a4324c18efb12c6aff7bb42c8706439434a699fff02e79165756ff9c543e77990199afe063eaa87b92a9ef5f23a0958c2a09c61cbc212d2236ffa5534e46cedf
6
+ metadata.gz: ed5792919719290e5980e38a268559e79b4534593e5d102a0a2a0a55322911aff0139c7008f66a94a60878c4e261db29f183fb3a4b7acc8ebdb0e9a3e1e4b87f
7
+ data.tar.gz: 5eb9aff67838a4f72f70fb60c776be49b2861a76014e150e118766bbf69e3a0cb90c15e4e68ed5f8e7537fe49b0c7c5d30a508327fa89d2ed43c5629e48a54e5
data/CHANGELOG.md CHANGED
@@ -1,5 +1,13 @@
1
1
  # Release history for google-apis-accesscontextmanager_v1
2
2
 
3
+ ### v0.49.0 (2024-09-29)
4
+
5
+ * Regenerated from discovery document revision 20240923
6
+
7
+ ### v0.48.0 (2024-09-15)
8
+
9
+ * Regenerated from discovery document revision 20240908
10
+
3
11
  ### v0.47.0 (2024-08-18)
4
12
 
5
13
  * Regenerated from discovery document revision 20240811
@@ -147,6 +147,57 @@ module Google
147
147
  end
148
148
  end
149
149
 
150
+ # Access scope represents the client scope, etc. to which the settings will be
151
+ # applied to.
152
+ class AccessScope
153
+ include Google::Apis::Core::Hashable
154
+
155
+ # Client scope represents the application, etc. subject to this binding's
156
+ # restrictions.
157
+ # Corresponds to the JSON property `clientScope`
158
+ # @return [Google::Apis::AccesscontextmanagerV1::ClientScope]
159
+ attr_accessor :client_scope
160
+
161
+ def initialize(**args)
162
+ update!(**args)
163
+ end
164
+
165
+ # Update properties of this object
166
+ def update!(**args)
167
+ @client_scope = args[:client_scope] if args.key?(:client_scope)
168
+ end
169
+ end
170
+
171
+ # Access settings represent the set of conditions that must be met for access to
172
+ # be granted. At least one of the fields must be set.
173
+ class AccessSettings
174
+ include Google::Apis::Core::Hashable
175
+
176
+ # Optional. Access level that a user must have to be granted access. Only one
177
+ # access level is supported, not multiple. This repeated field must have exactly
178
+ # one element. Example: "accessPolicies/9522/accessLevels/device_trusted"
179
+ # Corresponds to the JSON property `accessLevels`
180
+ # @return [Array<String>]
181
+ attr_accessor :access_levels
182
+
183
+ # Stores settings related to Google Cloud Session Length including session
184
+ # duration, the type of challenge (i.e. method) they should face when their
185
+ # session expires, and other related settings.
186
+ # Corresponds to the JSON property `reauthSettings`
187
+ # @return [Google::Apis::AccesscontextmanagerV1::ReauthSettings]
188
+ attr_accessor :reauth_settings
189
+
190
+ def initialize(**args)
191
+ update!(**args)
192
+ end
193
+
194
+ # Update properties of this object
195
+ def update!(**args)
196
+ @access_levels = args[:access_levels] if args.key?(:access_levels)
197
+ @reauth_settings = args[:reauth_settings] if args.key?(:reauth_settings)
198
+ end
199
+ end
200
+
150
201
  # Identification for an API Operation.
151
202
  class ApiOperation
152
203
  include Google::Apis::Core::Hashable
@@ -477,6 +528,26 @@ module Google
477
528
  end
478
529
  end
479
530
 
531
+ # Client scope represents the application, etc. subject to this binding's
532
+ # restrictions.
533
+ class ClientScope
534
+ include Google::Apis::Core::Hashable
535
+
536
+ # An application that accesses Google Cloud APIs.
537
+ # Corresponds to the JSON property `restrictedClientApplication`
538
+ # @return [Google::Apis::AccesscontextmanagerV1::Application]
539
+ attr_accessor :restricted_client_application
540
+
541
+ def initialize(**args)
542
+ update!(**args)
543
+ end
544
+
545
+ # Update properties of this object
546
+ def update!(**args)
547
+ @restricted_client_application = args[:restricted_client_application] if args.key?(:restricted_client_application)
548
+ end
549
+ end
550
+
480
551
  # A request to commit dry-run specs in all Service Perimeters belonging to an
481
552
  # Access Policy.
482
553
  class CommitServicePerimetersRequest
@@ -980,6 +1051,13 @@ module Google
980
1051
  # @return [String]
981
1052
  attr_accessor :name
982
1053
 
1054
+ # Stores settings related to Google Cloud Session Length including session
1055
+ # duration, the type of challenge (i.e. method) they should face when their
1056
+ # session expires, and other related settings.
1057
+ # Corresponds to the JSON property `reauthSettings`
1058
+ # @return [Google::Apis::AccesscontextmanagerV1::ReauthSettings]
1059
+ attr_accessor :reauth_settings
1060
+
983
1061
  # Optional. A list of applications that are subject to this binding's
984
1062
  # restrictions. If the list is empty, the binding restrictions will universally
985
1063
  # apply to all applications.
@@ -987,6 +1065,13 @@ module Google
987
1065
  # @return [Array<Google::Apis::AccesscontextmanagerV1::Application>]
988
1066
  attr_accessor :restricted_client_applications
989
1067
 
1068
+ # Optional. A list of scoped access settings that set this binding's
1069
+ # restrictions on a subset of applications. This field cannot be set if
1070
+ # restricted_client_applications is set.
1071
+ # Corresponds to the JSON property `scopedAccessSettings`
1072
+ # @return [Array<Google::Apis::AccesscontextmanagerV1::ScopedAccessSettings>]
1073
+ attr_accessor :scoped_access_settings
1074
+
990
1075
  def initialize(**args)
991
1076
  update!(**args)
992
1077
  end
@@ -997,7 +1082,9 @@ module Google
997
1082
  @dry_run_access_levels = args[:dry_run_access_levels] if args.key?(:dry_run_access_levels)
998
1083
  @group_key = args[:group_key] if args.key?(:group_key)
999
1084
  @name = args[:name] if args.key?(:name)
1085
+ @reauth_settings = args[:reauth_settings] if args.key?(:reauth_settings)
1000
1086
  @restricted_client_applications = args[:restricted_client_applications] if args.key?(:restricted_client_applications)
1087
+ @scoped_access_settings = args[:scoped_access_settings] if args.key?(:scoped_access_settings)
1001
1088
  end
1002
1089
  end
1003
1090
 
@@ -1614,6 +1701,61 @@ module Google
1614
1701
  end
1615
1702
  end
1616
1703
 
1704
+ # Stores settings related to Google Cloud Session Length including session
1705
+ # duration, the type of challenge (i.e. method) they should face when their
1706
+ # session expires, and other related settings.
1707
+ class ReauthSettings
1708
+ include Google::Apis::Core::Hashable
1709
+
1710
+ # Optional. How long a user is allowed to take between actions before a new
1711
+ # access token must be issued. Presently only set for Cloud Apps.
1712
+ # Corresponds to the JSON property `maxInactivity`
1713
+ # @return [String]
1714
+ attr_accessor :max_inactivity
1715
+
1716
+ # Optional. Reauth method when users GCP session is up.
1717
+ # Corresponds to the JSON property `reauthMethod`
1718
+ # @return [String]
1719
+ attr_accessor :reauth_method
1720
+
1721
+ # Optional. The session length. Setting this field to zero is equal to disabling.
1722
+ # Reauth. Also can set infinite session by flipping the enabled bit to false
1723
+ # below. If use_oidc_max_age is true, for OIDC apps, the session length will be
1724
+ # the minimum of this field and OIDC max_age param.
1725
+ # Corresponds to the JSON property `sessionLength`
1726
+ # @return [String]
1727
+ attr_accessor :session_length
1728
+
1729
+ # Optional. Big red button to turn off GCSL. When false, all fields set above
1730
+ # will be disregarded and the session length is basically infinite.
1731
+ # Corresponds to the JSON property `sessionLengthEnabled`
1732
+ # @return [Boolean]
1733
+ attr_accessor :session_length_enabled
1734
+ alias_method :session_length_enabled?, :session_length_enabled
1735
+
1736
+ # Optional. Only useful for OIDC apps. When false, the OIDC max_age param, if
1737
+ # passed in the authentication request will be ignored. When true, the re-auth
1738
+ # period will be the minimum of the session_length field and the max_age OIDC
1739
+ # param.
1740
+ # Corresponds to the JSON property `useOidcMaxAge`
1741
+ # @return [Boolean]
1742
+ attr_accessor :use_oidc_max_age
1743
+ alias_method :use_oidc_max_age?, :use_oidc_max_age
1744
+
1745
+ def initialize(**args)
1746
+ update!(**args)
1747
+ end
1748
+
1749
+ # Update properties of this object
1750
+ def update!(**args)
1751
+ @max_inactivity = args[:max_inactivity] if args.key?(:max_inactivity)
1752
+ @reauth_method = args[:reauth_method] if args.key?(:reauth_method)
1753
+ @session_length = args[:session_length] if args.key?(:session_length)
1754
+ @session_length_enabled = args[:session_length_enabled] if args.key?(:session_length_enabled)
1755
+ @use_oidc_max_age = args[:use_oidc_max_age] if args.key?(:use_oidc_max_age)
1756
+ end
1757
+ end
1758
+
1617
1759
  # A request to replace all existing Access Levels in an Access Policy with the
1618
1760
  # Access Levels provided. This is done atomically.
1619
1761
  class ReplaceAccessLevelsRequest
@@ -1718,6 +1860,40 @@ module Google
1718
1860
  end
1719
1861
  end
1720
1862
 
1863
+ # A relationship between access settings and its scope.
1864
+ class ScopedAccessSettings
1865
+ include Google::Apis::Core::Hashable
1866
+
1867
+ # Access settings represent the set of conditions that must be met for access to
1868
+ # be granted. At least one of the fields must be set.
1869
+ # Corresponds to the JSON property `activeSettings`
1870
+ # @return [Google::Apis::AccesscontextmanagerV1::AccessSettings]
1871
+ attr_accessor :active_settings
1872
+
1873
+ # Access settings represent the set of conditions that must be met for access to
1874
+ # be granted. At least one of the fields must be set.
1875
+ # Corresponds to the JSON property `dryRunSettings`
1876
+ # @return [Google::Apis::AccesscontextmanagerV1::AccessSettings]
1877
+ attr_accessor :dry_run_settings
1878
+
1879
+ # Access scope represents the client scope, etc. to which the settings will be
1880
+ # applied to.
1881
+ # Corresponds to the JSON property `scope`
1882
+ # @return [Google::Apis::AccesscontextmanagerV1::AccessScope]
1883
+ attr_accessor :scope
1884
+
1885
+ def initialize(**args)
1886
+ update!(**args)
1887
+ end
1888
+
1889
+ # Update properties of this object
1890
+ def update!(**args)
1891
+ @active_settings = args[:active_settings] if args.key?(:active_settings)
1892
+ @dry_run_settings = args[:dry_run_settings] if args.key?(:dry_run_settings)
1893
+ @scope = args[:scope] if args.key?(:scope)
1894
+ end
1895
+ end
1896
+
1721
1897
  # `ServicePerimeter` describes a set of Google Cloud resources which can freely
1722
1898
  # import and export data amongst themselves, but not export outside of the `
1723
1899
  # ServicePerimeter`. If a request with a source within this `ServicePerimeter`
@@ -16,13 +16,13 @@ module Google
16
16
  module Apis
17
17
  module AccesscontextmanagerV1
18
18
  # Version of the google-apis-accesscontextmanager_v1 gem
19
- GEM_VERSION = "0.47.0"
19
+ GEM_VERSION = "0.49.0"
20
20
 
21
21
  # Version of the code generator used to generate this client
22
22
  GENERATOR_VERSION = "0.15.1"
23
23
 
24
24
  # Revision of the discovery document this client was generated from
25
- REVISION = "20240811"
25
+ REVISION = "20240923"
26
26
  end
27
27
  end
28
28
  end
@@ -40,6 +40,18 @@ module Google
40
40
  include Google::Apis::Core::JsonObjectSupport
41
41
  end
42
42
 
43
+ class AccessScope
44
+ class Representation < Google::Apis::Core::JsonRepresentation; end
45
+
46
+ include Google::Apis::Core::JsonObjectSupport
47
+ end
48
+
49
+ class AccessSettings
50
+ class Representation < Google::Apis::Core::JsonRepresentation; end
51
+
52
+ include Google::Apis::Core::JsonObjectSupport
53
+ end
54
+
43
55
  class ApiOperation
44
56
  class Representation < Google::Apis::Core::JsonRepresentation; end
45
57
 
@@ -88,6 +100,12 @@ module Google
88
100
  include Google::Apis::Core::JsonObjectSupport
89
101
  end
90
102
 
103
+ class ClientScope
104
+ class Representation < Google::Apis::Core::JsonRepresentation; end
105
+
106
+ include Google::Apis::Core::JsonObjectSupport
107
+ end
108
+
91
109
  class CommitServicePerimetersRequest
92
110
  class Representation < Google::Apis::Core::JsonRepresentation; end
93
111
 
@@ -268,6 +286,12 @@ module Google
268
286
  include Google::Apis::Core::JsonObjectSupport
269
287
  end
270
288
 
289
+ class ReauthSettings
290
+ class Representation < Google::Apis::Core::JsonRepresentation; end
291
+
292
+ include Google::Apis::Core::JsonObjectSupport
293
+ end
294
+
271
295
  class ReplaceAccessLevelsRequest
272
296
  class Representation < Google::Apis::Core::JsonRepresentation; end
273
297
 
@@ -292,6 +316,12 @@ module Google
292
316
  include Google::Apis::Core::JsonObjectSupport
293
317
  end
294
318
 
319
+ class ScopedAccessSettings
320
+ class Representation < Google::Apis::Core::JsonRepresentation; end
321
+
322
+ include Google::Apis::Core::JsonObjectSupport
323
+ end
324
+
295
325
  class ServicePerimeter
296
326
  class Representation < Google::Apis::Core::JsonRepresentation; end
297
327
 
@@ -382,6 +412,23 @@ module Google
382
412
  end
383
413
  end
384
414
 
415
+ class AccessScope
416
+ # @private
417
+ class Representation < Google::Apis::Core::JsonRepresentation
418
+ property :client_scope, as: 'clientScope', class: Google::Apis::AccesscontextmanagerV1::ClientScope, decorator: Google::Apis::AccesscontextmanagerV1::ClientScope::Representation
419
+
420
+ end
421
+ end
422
+
423
+ class AccessSettings
424
+ # @private
425
+ class Representation < Google::Apis::Core::JsonRepresentation
426
+ collection :access_levels, as: 'accessLevels'
427
+ property :reauth_settings, as: 'reauthSettings', class: Google::Apis::AccesscontextmanagerV1::ReauthSettings, decorator: Google::Apis::AccesscontextmanagerV1::ReauthSettings::Representation
428
+
429
+ end
430
+ end
431
+
385
432
  class ApiOperation
386
433
  # @private
387
434
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -452,6 +499,14 @@ module Google
452
499
  end
453
500
  end
454
501
 
502
+ class ClientScope
503
+ # @private
504
+ class Representation < Google::Apis::Core::JsonRepresentation
505
+ property :restricted_client_application, as: 'restrictedClientApplication', class: Google::Apis::AccesscontextmanagerV1::Application, decorator: Google::Apis::AccesscontextmanagerV1::Application::Representation
506
+
507
+ end
508
+ end
509
+
455
510
  class CommitServicePerimetersRequest
456
511
  # @private
457
512
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -564,8 +619,12 @@ module Google
564
619
  collection :dry_run_access_levels, as: 'dryRunAccessLevels'
565
620
  property :group_key, as: 'groupKey'
566
621
  property :name, as: 'name'
622
+ property :reauth_settings, as: 'reauthSettings', class: Google::Apis::AccesscontextmanagerV1::ReauthSettings, decorator: Google::Apis::AccesscontextmanagerV1::ReauthSettings::Representation
623
+
567
624
  collection :restricted_client_applications, as: 'restrictedClientApplications', class: Google::Apis::AccesscontextmanagerV1::Application, decorator: Google::Apis::AccesscontextmanagerV1::Application::Representation
568
625
 
626
+ collection :scoped_access_settings, as: 'scopedAccessSettings', class: Google::Apis::AccesscontextmanagerV1::ScopedAccessSettings, decorator: Google::Apis::AccesscontextmanagerV1::ScopedAccessSettings::Representation
627
+
569
628
  end
570
629
  end
571
630
 
@@ -731,6 +790,17 @@ module Google
731
790
  end
732
791
  end
733
792
 
793
+ class ReauthSettings
794
+ # @private
795
+ class Representation < Google::Apis::Core::JsonRepresentation
796
+ property :max_inactivity, as: 'maxInactivity'
797
+ property :reauth_method, as: 'reauthMethod'
798
+ property :session_length, as: 'sessionLength'
799
+ property :session_length_enabled, as: 'sessionLengthEnabled'
800
+ property :use_oidc_max_age, as: 'useOidcMaxAge'
801
+ end
802
+ end
803
+
734
804
  class ReplaceAccessLevelsRequest
735
805
  # @private
736
806
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -765,6 +835,18 @@ module Google
765
835
  end
766
836
  end
767
837
 
838
+ class ScopedAccessSettings
839
+ # @private
840
+ class Representation < Google::Apis::Core::JsonRepresentation
841
+ property :active_settings, as: 'activeSettings', class: Google::Apis::AccesscontextmanagerV1::AccessSettings, decorator: Google::Apis::AccesscontextmanagerV1::AccessSettings::Representation
842
+
843
+ property :dry_run_settings, as: 'dryRunSettings', class: Google::Apis::AccesscontextmanagerV1::AccessSettings, decorator: Google::Apis::AccesscontextmanagerV1::AccessSettings::Representation
844
+
845
+ property :scope, as: 'scope', class: Google::Apis::AccesscontextmanagerV1::AccessScope, decorator: Google::Apis::AccesscontextmanagerV1::AccessScope::Representation
846
+
847
+ end
848
+ end
849
+
768
850
  class ServicePerimeter
769
851
  # @private
770
852
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1394,11 +1394,17 @@ module Google
1394
1394
  # not be specified by the client during creation. Example: "organizations/256/
1395
1395
  # gcpUserAccessBindings/b3-BhcX_Ud5N"
1396
1396
  # @param [Google::Apis::AccesscontextmanagerV1::GcpUserAccessBinding] gcp_user_access_binding_object
1397
+ # @param [Boolean] append_scoped_access_settings
1398
+ # Optional. This field will be used to control whether or not scoped access
1399
+ # settings are appended to the existing list of scoped access settings. If true,
1400
+ # the scoped access settings in the request will be appended to the existing
1401
+ # list of scoped access settings. If false, the scoped access settings in the
1402
+ # request replace the existing list of scoped access settings.
1397
1403
  # @param [String] update_mask
1398
1404
  # Required. Only the fields specified in this mask are updated. Because name and
1399
1405
  # group_key cannot be changed, update_mask is required and may only contain the
1400
- # following fields: `access_levels`, `dry_run_access_levels`. update_mask `
1401
- # paths: "access_levels" `
1406
+ # following fields: `access_levels`, `dry_run_access_levels`, `reauth_settings`,
1407
+ # `scoped_access_settings`. update_mask ` paths: "access_levels" `
1402
1408
  # @param [String] fields
1403
1409
  # Selector specifying which fields to include in a partial response.
1404
1410
  # @param [String] quota_user
@@ -1416,13 +1422,14 @@ module Google
1416
1422
  # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
1417
1423
  # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
1418
1424
  # @raise [Google::Apis::AuthorizationError] Authorization is required
1419
- def patch_organization_gcp_user_access_binding(name, gcp_user_access_binding_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block)
1425
+ def patch_organization_gcp_user_access_binding(name, gcp_user_access_binding_object = nil, append_scoped_access_settings: nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block)
1420
1426
  command = make_simple_command(:patch, 'v1/{+name}', options)
1421
1427
  command.request_representation = Google::Apis::AccesscontextmanagerV1::GcpUserAccessBinding::Representation
1422
1428
  command.request_object = gcp_user_access_binding_object
1423
1429
  command.response_representation = Google::Apis::AccesscontextmanagerV1::Operation::Representation
1424
1430
  command.response_class = Google::Apis::AccesscontextmanagerV1::Operation
1425
1431
  command.params['name'] = name unless name.nil?
1432
+ command.query['appendScopedAccessSettings'] = append_scoped_access_settings unless append_scoped_access_settings.nil?
1426
1433
  command.query['updateMask'] = update_mask unless update_mask.nil?
1427
1434
  command.query['fields'] = fields unless fields.nil?
1428
1435
  command.query['quotaUser'] = quota_user unless quota_user.nil?
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: google-apis-accesscontextmanager_v1
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.47.0
4
+ version: 0.49.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Google LLC
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-08-18 00:00:00.000000000 Z
11
+ date: 2024-09-29 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
58
58
  metadata:
59
59
  bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
60
60
  changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accesscontextmanager_v1/CHANGELOG.md
61
- documentation_uri: https://googleapis.dev/ruby/google-apis-accesscontextmanager_v1/v0.47.0
61
+ documentation_uri: https://googleapis.dev/ruby/google-apis-accesscontextmanager_v1/v0.49.0
62
62
  source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-accesscontextmanager_v1
63
63
  post_install_message:
64
64
  rdoc_options: []