google-apis-gkehub_v1beta 0.70.0 → 0.72.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 1954c5609b57b8279fbfc066a1f8ad478b520c9be4d9acc1635f47b57d159c92
4
- data.tar.gz: 795fabe69a3e800428f052495cce4777ed60ab47f8c243c9d41113585e6ad60a
3
+ metadata.gz: b78e2c620602bf42ceabc6d8f4f11a67b60744c3916f6dc05201ab4bc8e9fc81
4
+ data.tar.gz: 12a5ca0656502884de62ebe5cf6a13b3ae5e2690c789e77fbee572e554890c0c
5
5
  SHA512:
6
- metadata.gz: a280062447700f754268f2e50489eb5ea10737486213468284de26072e2fda808978aa641cd254416915eb233aab855639039c35952d34cb1ba3946ddbf2b93c
7
- data.tar.gz: 48823eed052960d86fac73f7e67532fde620738fc5125155ddf7aaa93b9b19701a3bf3f7f53c58fc0e28c97c6be1832868ddba91713116690e68915df28d6a52
6
+ metadata.gz: '0842e6bd14c7d60c2fbc7f8878eed803c8953836f36c4edd95b05b901c5c5311680574280dc6a7c00847410665cc7395eed92b1f2d8c0495de0fc82fb9721a3a'
7
+ data.tar.gz: 125f704bc885b3be8e979e784903d8ab9b3c2dd1bd9205d10fdf467e2424d8fbc4f3b2d5795b24b708d2c3b5d919ae867929395e2b3fe1043113e01f02064226
data/CHANGELOG.md CHANGED
@@ -1,5 +1,13 @@
1
1
  # Release history for google-apis-gkehub_v1beta
2
2
 
3
+ ### v0.72.0 (2024-03-24)
4
+
5
+ * Regenerated from discovery document revision 20240318
6
+
7
+ ### v0.71.0 (2024-03-10)
8
+
9
+ * Regenerated from discovery document revision 20240229
10
+
3
11
  ### v0.70.0 (2024-02-24)
4
12
 
5
13
  * Regenerated using generator version 0.14.0
@@ -2717,6 +2717,11 @@ module Google
2717
2717
  # @return [Google::Apis::GkehubV1beta::IdentityServiceGoogleConfig]
2718
2718
  attr_accessor :google_config
2719
2719
 
2720
+ # Configuration for the LDAP Auth flow.
2721
+ # Corresponds to the JSON property `ldapConfig`
2722
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceLdapConfig]
2723
+ attr_accessor :ldap_config
2724
+
2720
2725
  # Identifier for auth config.
2721
2726
  # Corresponds to the JSON property `name`
2722
2727
  # @return [String]
@@ -2732,6 +2737,11 @@ module Google
2732
2737
  # @return [String]
2733
2738
  attr_accessor :proxy
2734
2739
 
2740
+ # Configuration for the SAML Auth flow.
2741
+ # Corresponds to the JSON property `samlConfig`
2742
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceSamlConfig]
2743
+ attr_accessor :saml_config
2744
+
2735
2745
  def initialize(**args)
2736
2746
  update!(**args)
2737
2747
  end
@@ -2740,9 +2750,11 @@ module Google
2740
2750
  def update!(**args)
2741
2751
  @azuread_config = args[:azuread_config] if args.key?(:azuread_config)
2742
2752
  @google_config = args[:google_config] if args.key?(:google_config)
2753
+ @ldap_config = args[:ldap_config] if args.key?(:ldap_config)
2743
2754
  @name = args[:name] if args.key?(:name)
2744
2755
  @oidc_config = args[:oidc_config] if args.key?(:oidc_config)
2745
2756
  @proxy = args[:proxy] if args.key?(:proxy)
2757
+ @saml_config = args[:saml_config] if args.key?(:saml_config)
2746
2758
  end
2747
2759
  end
2748
2760
 
@@ -2768,6 +2780,11 @@ module Google
2768
2780
  # @return [String]
2769
2781
  attr_accessor :encrypted_client_secret
2770
2782
 
2783
+ # Optional. Format of the AzureAD groups that the client wants for auth.
2784
+ # Corresponds to the JSON property `groupFormat`
2785
+ # @return [String]
2786
+ attr_accessor :group_format
2787
+
2771
2788
  # The redirect URL that kubectl uses for authorization.
2772
2789
  # Corresponds to the JSON property `kubectlRedirectUri`
2773
2790
  # @return [String]
@@ -2779,6 +2796,11 @@ module Google
2779
2796
  # @return [String]
2780
2797
  attr_accessor :tenant
2781
2798
 
2799
+ # Optional. Claim in the AzureAD ID Token that holds the user details.
2800
+ # Corresponds to the JSON property `userClaim`
2801
+ # @return [String]
2802
+ attr_accessor :user_claim
2803
+
2782
2804
  def initialize(**args)
2783
2805
  update!(**args)
2784
2806
  end
@@ -2788,8 +2810,10 @@ module Google
2788
2810
  @client_id = args[:client_id] if args.key?(:client_id)
2789
2811
  @client_secret = args[:client_secret] if args.key?(:client_secret)
2790
2812
  @encrypted_client_secret = args[:encrypted_client_secret] if args.key?(:encrypted_client_secret)
2813
+ @group_format = args[:group_format] if args.key?(:group_format)
2791
2814
  @kubectl_redirect_uri = args[:kubectl_redirect_uri] if args.key?(:kubectl_redirect_uri)
2792
2815
  @tenant = args[:tenant] if args.key?(:tenant)
2816
+ @user_claim = args[:user_claim] if args.key?(:user_claim)
2793
2817
  end
2794
2818
  end
2795
2819
 
@@ -2813,6 +2837,84 @@ module Google
2813
2837
  end
2814
2838
  end
2815
2839
 
2840
+ # Contains the properties for locating and authenticating groups in the
2841
+ # directory.
2842
+ class IdentityServiceGroupConfig
2843
+ include Google::Apis::Core::Hashable
2844
+
2845
+ # Required. The location of the subtree in the LDAP directory to search for
2846
+ # group entries.
2847
+ # Corresponds to the JSON property `baseDn`
2848
+ # @return [String]
2849
+ attr_accessor :base_dn
2850
+
2851
+ # Optional. Optional filter to be used when searching for groups a user belongs
2852
+ # to. This can be used to explicitly match only certain groups in order to
2853
+ # reduce the amount of groups returned for each user. This defaults to "(
2854
+ # objectClass=Group)".
2855
+ # Corresponds to the JSON property `filter`
2856
+ # @return [String]
2857
+ attr_accessor :filter
2858
+
2859
+ # Optional. The identifying name of each group a user belongs to. For example,
2860
+ # if this is set to "distinguishedName" then RBACs and other group expectations
2861
+ # should be written as full DNs. This defaults to "distinguishedName".
2862
+ # Corresponds to the JSON property `idAttribute`
2863
+ # @return [String]
2864
+ attr_accessor :id_attribute
2865
+
2866
+ def initialize(**args)
2867
+ update!(**args)
2868
+ end
2869
+
2870
+ # Update properties of this object
2871
+ def update!(**args)
2872
+ @base_dn = args[:base_dn] if args.key?(:base_dn)
2873
+ @filter = args[:filter] if args.key?(:filter)
2874
+ @id_attribute = args[:id_attribute] if args.key?(:id_attribute)
2875
+ end
2876
+ end
2877
+
2878
+ # Configuration for the LDAP Auth flow.
2879
+ class IdentityServiceLdapConfig
2880
+ include Google::Apis::Core::Hashable
2881
+
2882
+ # Contains the properties for locating and authenticating groups in the
2883
+ # directory.
2884
+ # Corresponds to the JSON property `group`
2885
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceGroupConfig]
2886
+ attr_accessor :group
2887
+
2888
+ # Server settings for the external LDAP server.
2889
+ # Corresponds to the JSON property `server`
2890
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceServerConfig]
2891
+ attr_accessor :server
2892
+
2893
+ # Contains the credentials of the service account which is authorized to perform
2894
+ # the LDAP search in the directory. The credentials can be supplied by the
2895
+ # combination of the DN and password or the client certificate.
2896
+ # Corresponds to the JSON property `serviceAccount`
2897
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceServiceAccountConfig]
2898
+ attr_accessor :service_account
2899
+
2900
+ # Defines where users exist in the LDAP directory.
2901
+ # Corresponds to the JSON property `user`
2902
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceUserConfig]
2903
+ attr_accessor :user
2904
+
2905
+ def initialize(**args)
2906
+ update!(**args)
2907
+ end
2908
+
2909
+ # Update properties of this object
2910
+ def update!(**args)
2911
+ @group = args[:group] if args.key?(:group)
2912
+ @server = args[:server] if args.key?(:server)
2913
+ @service_account = args[:service_account] if args.key?(:service_account)
2914
+ @user = args[:user] if args.key?(:user)
2915
+ end
2916
+ end
2917
+
2816
2918
  # **Anthos Identity Service**: Configuration for a single Membership.
2817
2919
  class IdentityServiceMembershipSpec
2818
2920
  include Google::Apis::Core::Hashable
@@ -2973,6 +3075,217 @@ module Google
2973
3075
  end
2974
3076
  end
2975
3077
 
3078
+ # Configuration for the SAML Auth flow.
3079
+ class IdentityServiceSamlConfig
3080
+ include Google::Apis::Core::Hashable
3081
+
3082
+ # Optional. The mapping of additional user attributes like nickname, birthday
3083
+ # and address etc.. `key` is the name of this additional attribute. `value` is a
3084
+ # string presenting as CEL(common expression language, go/cel) used for getting
3085
+ # the value from the resources. Take nickname as an example, in this case, `key`
3086
+ # is "attribute.nickname" and `value` is "assertion.nickname".
3087
+ # Corresponds to the JSON property `attributeMapping`
3088
+ # @return [Hash<String,String>]
3089
+ attr_accessor :attribute_mapping
3090
+
3091
+ # Optional. Prefix to prepend to group name.
3092
+ # Corresponds to the JSON property `groupPrefix`
3093
+ # @return [String]
3094
+ attr_accessor :group_prefix
3095
+
3096
+ # Optional. The SAML attribute to read groups from. This value is expected to be
3097
+ # a string and will be passed along as-is (with the option of being prefixed by
3098
+ # the `group_prefix`).
3099
+ # Corresponds to the JSON property `groupsAttribute`
3100
+ # @return [String]
3101
+ attr_accessor :groups_attribute
3102
+
3103
+ # Required. The list of IdP certificates to validate the SAML response against.
3104
+ # Corresponds to the JSON property `identityProviderCertificates`
3105
+ # @return [Array<String>]
3106
+ attr_accessor :identity_provider_certificates
3107
+
3108
+ # Required. The entity ID of the SAML IdP.
3109
+ # Corresponds to the JSON property `identityProviderId`
3110
+ # @return [String]
3111
+ attr_accessor :identity_provider_id
3112
+
3113
+ # Required. The URI where the SAML IdP exposes the SSO service.
3114
+ # Corresponds to the JSON property `identityProviderSsoUri`
3115
+ # @return [String]
3116
+ attr_accessor :identity_provider_sso_uri
3117
+
3118
+ # Optional. The SAML attribute to read username from. If unspecified, the
3119
+ # username will be read from the NameID element of the assertion in SAML
3120
+ # response. This value is expected to be a string and will be passed along as-is
3121
+ # (with the option of being prefixed by the `user_prefix`).
3122
+ # Corresponds to the JSON property `userAttribute`
3123
+ # @return [String]
3124
+ attr_accessor :user_attribute
3125
+
3126
+ # Optional. Prefix to prepend to user name.
3127
+ # Corresponds to the JSON property `userPrefix`
3128
+ # @return [String]
3129
+ attr_accessor :user_prefix
3130
+
3131
+ def initialize(**args)
3132
+ update!(**args)
3133
+ end
3134
+
3135
+ # Update properties of this object
3136
+ def update!(**args)
3137
+ @attribute_mapping = args[:attribute_mapping] if args.key?(:attribute_mapping)
3138
+ @group_prefix = args[:group_prefix] if args.key?(:group_prefix)
3139
+ @groups_attribute = args[:groups_attribute] if args.key?(:groups_attribute)
3140
+ @identity_provider_certificates = args[:identity_provider_certificates] if args.key?(:identity_provider_certificates)
3141
+ @identity_provider_id = args[:identity_provider_id] if args.key?(:identity_provider_id)
3142
+ @identity_provider_sso_uri = args[:identity_provider_sso_uri] if args.key?(:identity_provider_sso_uri)
3143
+ @user_attribute = args[:user_attribute] if args.key?(:user_attribute)
3144
+ @user_prefix = args[:user_prefix] if args.key?(:user_prefix)
3145
+ end
3146
+ end
3147
+
3148
+ # Server settings for the external LDAP server.
3149
+ class IdentityServiceServerConfig
3150
+ include Google::Apis::Core::Hashable
3151
+
3152
+ # Optional. Contains a Base64 encoded, PEM formatted certificate authority
3153
+ # certificate for the LDAP server. This must be provided for the "ldaps" and "
3154
+ # startTLS" connections.
3155
+ # Corresponds to the JSON property `certificateAuthorityData`
3156
+ # NOTE: Values are automatically base64 encoded/decoded in the client library.
3157
+ # @return [String]
3158
+ attr_accessor :certificate_authority_data
3159
+
3160
+ # Optional. Defines the connection type to communicate with the LDAP server. If `
3161
+ # starttls` or `ldaps` is specified, the certificate_authority_data should not
3162
+ # be empty.
3163
+ # Corresponds to the JSON property `connectionType`
3164
+ # @return [String]
3165
+ attr_accessor :connection_type
3166
+
3167
+ # Required. Defines the hostname or IP of the LDAP server. Port is optional and
3168
+ # will default to 389, if unspecified. For example, "ldap.server.example" or "10.
3169
+ # 10.10.10:389".
3170
+ # Corresponds to the JSON property `host`
3171
+ # @return [String]
3172
+ attr_accessor :host
3173
+
3174
+ def initialize(**args)
3175
+ update!(**args)
3176
+ end
3177
+
3178
+ # Update properties of this object
3179
+ def update!(**args)
3180
+ @certificate_authority_data = args[:certificate_authority_data] if args.key?(:certificate_authority_data)
3181
+ @connection_type = args[:connection_type] if args.key?(:connection_type)
3182
+ @host = args[:host] if args.key?(:host)
3183
+ end
3184
+ end
3185
+
3186
+ # Contains the credentials of the service account which is authorized to perform
3187
+ # the LDAP search in the directory. The credentials can be supplied by the
3188
+ # combination of the DN and password or the client certificate.
3189
+ class IdentityServiceServiceAccountConfig
3190
+ include Google::Apis::Core::Hashable
3191
+
3192
+ # The structure holds the LDAP simple binding credential.
3193
+ # Corresponds to the JSON property `simpleBindCredentials`
3194
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceSimpleBindCredentials]
3195
+ attr_accessor :simple_bind_credentials
3196
+
3197
+ def initialize(**args)
3198
+ update!(**args)
3199
+ end
3200
+
3201
+ # Update properties of this object
3202
+ def update!(**args)
3203
+ @simple_bind_credentials = args[:simple_bind_credentials] if args.key?(:simple_bind_credentials)
3204
+ end
3205
+ end
3206
+
3207
+ # The structure holds the LDAP simple binding credential.
3208
+ class IdentityServiceSimpleBindCredentials
3209
+ include Google::Apis::Core::Hashable
3210
+
3211
+ # Required. The distinguished name(DN) of the service account object/user.
3212
+ # Corresponds to the JSON property `dn`
3213
+ # @return [String]
3214
+ attr_accessor :dn
3215
+
3216
+ # Output only. The encrypted password of the service account object/user.
3217
+ # Corresponds to the JSON property `encryptedPassword`
3218
+ # NOTE: Values are automatically base64 encoded/decoded in the client library.
3219
+ # @return [String]
3220
+ attr_accessor :encrypted_password
3221
+
3222
+ # Required. Input only. The password of the service account object/user.
3223
+ # Corresponds to the JSON property `password`
3224
+ # @return [String]
3225
+ attr_accessor :password
3226
+
3227
+ def initialize(**args)
3228
+ update!(**args)
3229
+ end
3230
+
3231
+ # Update properties of this object
3232
+ def update!(**args)
3233
+ @dn = args[:dn] if args.key?(:dn)
3234
+ @encrypted_password = args[:encrypted_password] if args.key?(:encrypted_password)
3235
+ @password = args[:password] if args.key?(:password)
3236
+ end
3237
+ end
3238
+
3239
+ # Defines where users exist in the LDAP directory.
3240
+ class IdentityServiceUserConfig
3241
+ include Google::Apis::Core::Hashable
3242
+
3243
+ # Required. The location of the subtree in the LDAP directory to search for user
3244
+ # entries.
3245
+ # Corresponds to the JSON property `baseDn`
3246
+ # @return [String]
3247
+ attr_accessor :base_dn
3248
+
3249
+ # Optional. Filter to apply when searching for the user. This can be used to
3250
+ # further restrict the user accounts which are allowed to login. This defaults
3251
+ # to "(objectClass=User)".
3252
+ # Corresponds to the JSON property `filter`
3253
+ # @return [String]
3254
+ attr_accessor :filter
3255
+
3256
+ # Optional. Determines which attribute to use as the user's identity after they
3257
+ # are authenticated. This is distinct from the loginAttribute field to allow
3258
+ # users to login with a username, but then have their actual identifier be an
3259
+ # email address or full Distinguished Name (DN). For example, setting
3260
+ # loginAttribute to "sAMAccountName" and identifierAttribute to "
3261
+ # userPrincipalName" would allow a user to login as "bsmith", but actual RBAC
3262
+ # policies for the user would be written as "bsmith@example.com". Using "
3263
+ # userPrincipalName" is recommended since this will be unique for each user.
3264
+ # This defaults to "userPrincipalName".
3265
+ # Corresponds to the JSON property `idAttribute`
3266
+ # @return [String]
3267
+ attr_accessor :id_attribute
3268
+
3269
+ # Optional. The name of the attribute which matches against the input username.
3270
+ # This is used to find the user in the LDAP database e.g. "(=)" and is combined
3271
+ # with the optional filter field. This defaults to "userPrincipalName".
3272
+ # Corresponds to the JSON property `loginAttribute`
3273
+ # @return [String]
3274
+ attr_accessor :login_attribute
3275
+
3276
+ def initialize(**args)
3277
+ update!(**args)
3278
+ end
3279
+
3280
+ # Update properties of this object
3281
+ def update!(**args)
3282
+ @base_dn = args[:base_dn] if args.key?(:base_dn)
3283
+ @filter = args[:filter] if args.key?(:filter)
3284
+ @id_attribute = args[:id_attribute] if args.key?(:id_attribute)
3285
+ @login_attribute = args[:login_attribute] if args.key?(:login_attribute)
3286
+ end
3287
+ end
3288
+
2976
3289
  # KubernetesMetadata provides informational metadata for Memberships
2977
3290
  # representing Kubernetes clusters.
2978
3291
  class KubernetesMetadata
@@ -3084,6 +3397,39 @@ module Google
3084
3397
  end
3085
3398
  end
3086
3399
 
3400
+ # List of Memberships bound to a Scope.
3401
+ class ListBoundMembershipsResponse
3402
+ include Google::Apis::Core::Hashable
3403
+
3404
+ # The list of Memberships bound to the given Scope.
3405
+ # Corresponds to the JSON property `memberships`
3406
+ # @return [Array<Google::Apis::GkehubV1beta::Membership>]
3407
+ attr_accessor :memberships
3408
+
3409
+ # A token to request the next page of resources from the `ListBoundMemberships`
3410
+ # method. The value of an empty string means that there are no more resources to
3411
+ # return.
3412
+ # Corresponds to the JSON property `nextPageToken`
3413
+ # @return [String]
3414
+ attr_accessor :next_page_token
3415
+
3416
+ # List of locations that could not be reached while fetching this list.
3417
+ # Corresponds to the JSON property `unreachable`
3418
+ # @return [Array<String>]
3419
+ attr_accessor :unreachable
3420
+
3421
+ def initialize(**args)
3422
+ update!(**args)
3423
+ end
3424
+
3425
+ # Update properties of this object
3426
+ def update!(**args)
3427
+ @memberships = args[:memberships] if args.key?(:memberships)
3428
+ @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
3429
+ @unreachable = args[:unreachable] if args.key?(:unreachable)
3430
+ end
3431
+ end
3432
+
3087
3433
  # Response message for the `GkeHub.ListFeatures` method.
3088
3434
  class ListFeaturesResponse
3089
3435
  include Google::Apis::Core::Hashable
@@ -3274,6 +3620,33 @@ module Google
3274
3620
  end
3275
3621
  end
3276
3622
 
3623
+ # List of permitted Scopes.
3624
+ class ListPermittedScopesResponse
3625
+ include Google::Apis::Core::Hashable
3626
+
3627
+ # A token to request the next page of resources from the `ListPermittedScopes`
3628
+ # method. The value of an empty string means that there are no more resources to
3629
+ # return.
3630
+ # Corresponds to the JSON property `nextPageToken`
3631
+ # @return [String]
3632
+ attr_accessor :next_page_token
3633
+
3634
+ # The list of permitted Scopes
3635
+ # Corresponds to the JSON property `scopes`
3636
+ # @return [Array<Google::Apis::GkehubV1beta::Scope>]
3637
+ attr_accessor :scopes
3638
+
3639
+ def initialize(**args)
3640
+ update!(**args)
3641
+ end
3642
+
3643
+ # Update properties of this object
3644
+ def update!(**args)
3645
+ @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
3646
+ @scopes = args[:scopes] if args.key?(:scopes)
3647
+ end
3648
+ end
3649
+
3277
3650
  # List of fleet namespaces.
3278
3651
  class ListScopeNamespacesResponse
3279
3652
  include Google::Apis::Core::Hashable
@@ -16,13 +16,13 @@ module Google
16
16
  module Apis
17
17
  module GkehubV1beta
18
18
  # Version of the google-apis-gkehub_v1beta gem
19
- GEM_VERSION = "0.70.0"
19
+ GEM_VERSION = "0.72.0"
20
20
 
21
21
  # Version of the code generator used to generate this client
22
22
  GENERATOR_VERSION = "0.14.0"
23
23
 
24
24
  # Revision of the discovery document this client was generated from
25
- REVISION = "20240209"
25
+ REVISION = "20240318"
26
26
  end
27
27
  end
28
28
  end
@@ -514,6 +514,18 @@ module Google
514
514
  include Google::Apis::Core::JsonObjectSupport
515
515
  end
516
516
 
517
+ class IdentityServiceGroupConfig
518
+ class Representation < Google::Apis::Core::JsonRepresentation; end
519
+
520
+ include Google::Apis::Core::JsonObjectSupport
521
+ end
522
+
523
+ class IdentityServiceLdapConfig
524
+ class Representation < Google::Apis::Core::JsonRepresentation; end
525
+
526
+ include Google::Apis::Core::JsonObjectSupport
527
+ end
528
+
517
529
  class IdentityServiceMembershipSpec
518
530
  class Representation < Google::Apis::Core::JsonRepresentation; end
519
531
 
@@ -532,6 +544,36 @@ module Google
532
544
  include Google::Apis::Core::JsonObjectSupport
533
545
  end
534
546
 
547
+ class IdentityServiceSamlConfig
548
+ class Representation < Google::Apis::Core::JsonRepresentation; end
549
+
550
+ include Google::Apis::Core::JsonObjectSupport
551
+ end
552
+
553
+ class IdentityServiceServerConfig
554
+ class Representation < Google::Apis::Core::JsonRepresentation; end
555
+
556
+ include Google::Apis::Core::JsonObjectSupport
557
+ end
558
+
559
+ class IdentityServiceServiceAccountConfig
560
+ class Representation < Google::Apis::Core::JsonRepresentation; end
561
+
562
+ include Google::Apis::Core::JsonObjectSupport
563
+ end
564
+
565
+ class IdentityServiceSimpleBindCredentials
566
+ class Representation < Google::Apis::Core::JsonRepresentation; end
567
+
568
+ include Google::Apis::Core::JsonObjectSupport
569
+ end
570
+
571
+ class IdentityServiceUserConfig
572
+ class Representation < Google::Apis::Core::JsonRepresentation; end
573
+
574
+ include Google::Apis::Core::JsonObjectSupport
575
+ end
576
+
535
577
  class KubernetesMetadata
536
578
  class Representation < Google::Apis::Core::JsonRepresentation; end
537
579
 
@@ -544,6 +586,12 @@ module Google
544
586
  include Google::Apis::Core::JsonObjectSupport
545
587
  end
546
588
 
589
+ class ListBoundMembershipsResponse
590
+ class Representation < Google::Apis::Core::JsonRepresentation; end
591
+
592
+ include Google::Apis::Core::JsonObjectSupport
593
+ end
594
+
547
595
  class ListFeaturesResponse
548
596
  class Representation < Google::Apis::Core::JsonRepresentation; end
549
597
 
@@ -586,6 +634,12 @@ module Google
586
634
  include Google::Apis::Core::JsonObjectSupport
587
635
  end
588
636
 
637
+ class ListPermittedScopesResponse
638
+ class Representation < Google::Apis::Core::JsonRepresentation; end
639
+
640
+ include Google::Apis::Core::JsonObjectSupport
641
+ end
642
+
589
643
  class ListScopeNamespacesResponse
590
644
  class Representation < Google::Apis::Core::JsonRepresentation; end
591
645
 
@@ -1720,10 +1774,14 @@ module Google
1720
1774
 
1721
1775
  property :google_config, as: 'googleConfig', class: Google::Apis::GkehubV1beta::IdentityServiceGoogleConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceGoogleConfig::Representation
1722
1776
 
1777
+ property :ldap_config, as: 'ldapConfig', class: Google::Apis::GkehubV1beta::IdentityServiceLdapConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceLdapConfig::Representation
1778
+
1723
1779
  property :name, as: 'name'
1724
1780
  property :oidc_config, as: 'oidcConfig', class: Google::Apis::GkehubV1beta::IdentityServiceOidcConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceOidcConfig::Representation
1725
1781
 
1726
1782
  property :proxy, as: 'proxy'
1783
+ property :saml_config, as: 'samlConfig', class: Google::Apis::GkehubV1beta::IdentityServiceSamlConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceSamlConfig::Representation
1784
+
1727
1785
  end
1728
1786
  end
1729
1787
 
@@ -1733,8 +1791,10 @@ module Google
1733
1791
  property :client_id, as: 'clientId'
1734
1792
  property :client_secret, as: 'clientSecret'
1735
1793
  property :encrypted_client_secret, :base64 => true, as: 'encryptedClientSecret'
1794
+ property :group_format, as: 'groupFormat'
1736
1795
  property :kubectl_redirect_uri, as: 'kubectlRedirectUri'
1737
1796
  property :tenant, as: 'tenant'
1797
+ property :user_claim, as: 'userClaim'
1738
1798
  end
1739
1799
  end
1740
1800
 
@@ -1745,6 +1805,29 @@ module Google
1745
1805
  end
1746
1806
  end
1747
1807
 
1808
+ class IdentityServiceGroupConfig
1809
+ # @private
1810
+ class Representation < Google::Apis::Core::JsonRepresentation
1811
+ property :base_dn, as: 'baseDn'
1812
+ property :filter, as: 'filter'
1813
+ property :id_attribute, as: 'idAttribute'
1814
+ end
1815
+ end
1816
+
1817
+ class IdentityServiceLdapConfig
1818
+ # @private
1819
+ class Representation < Google::Apis::Core::JsonRepresentation
1820
+ property :group, as: 'group', class: Google::Apis::GkehubV1beta::IdentityServiceGroupConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceGroupConfig::Representation
1821
+
1822
+ property :server, as: 'server', class: Google::Apis::GkehubV1beta::IdentityServiceServerConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceServerConfig::Representation
1823
+
1824
+ property :service_account, as: 'serviceAccount', class: Google::Apis::GkehubV1beta::IdentityServiceServiceAccountConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceServiceAccountConfig::Representation
1825
+
1826
+ property :user, as: 'user', class: Google::Apis::GkehubV1beta::IdentityServiceUserConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceUserConfig::Representation
1827
+
1828
+ end
1829
+ end
1830
+
1748
1831
  class IdentityServiceMembershipSpec
1749
1832
  # @private
1750
1833
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1784,6 +1867,56 @@ module Google
1784
1867
  end
1785
1868
  end
1786
1869
 
1870
+ class IdentityServiceSamlConfig
1871
+ # @private
1872
+ class Representation < Google::Apis::Core::JsonRepresentation
1873
+ hash :attribute_mapping, as: 'attributeMapping'
1874
+ property :group_prefix, as: 'groupPrefix'
1875
+ property :groups_attribute, as: 'groupsAttribute'
1876
+ collection :identity_provider_certificates, as: 'identityProviderCertificates'
1877
+ property :identity_provider_id, as: 'identityProviderId'
1878
+ property :identity_provider_sso_uri, as: 'identityProviderSsoUri'
1879
+ property :user_attribute, as: 'userAttribute'
1880
+ property :user_prefix, as: 'userPrefix'
1881
+ end
1882
+ end
1883
+
1884
+ class IdentityServiceServerConfig
1885
+ # @private
1886
+ class Representation < Google::Apis::Core::JsonRepresentation
1887
+ property :certificate_authority_data, :base64 => true, as: 'certificateAuthorityData'
1888
+ property :connection_type, as: 'connectionType'
1889
+ property :host, as: 'host'
1890
+ end
1891
+ end
1892
+
1893
+ class IdentityServiceServiceAccountConfig
1894
+ # @private
1895
+ class Representation < Google::Apis::Core::JsonRepresentation
1896
+ property :simple_bind_credentials, as: 'simpleBindCredentials', class: Google::Apis::GkehubV1beta::IdentityServiceSimpleBindCredentials, decorator: Google::Apis::GkehubV1beta::IdentityServiceSimpleBindCredentials::Representation
1897
+
1898
+ end
1899
+ end
1900
+
1901
+ class IdentityServiceSimpleBindCredentials
1902
+ # @private
1903
+ class Representation < Google::Apis::Core::JsonRepresentation
1904
+ property :dn, as: 'dn'
1905
+ property :encrypted_password, :base64 => true, as: 'encryptedPassword'
1906
+ property :password, as: 'password'
1907
+ end
1908
+ end
1909
+
1910
+ class IdentityServiceUserConfig
1911
+ # @private
1912
+ class Representation < Google::Apis::Core::JsonRepresentation
1913
+ property :base_dn, as: 'baseDn'
1914
+ property :filter, as: 'filter'
1915
+ property :id_attribute, as: 'idAttribute'
1916
+ property :login_attribute, as: 'loginAttribute'
1917
+ end
1918
+ end
1919
+
1787
1920
  class KubernetesMetadata
1788
1921
  # @private
1789
1922
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1809,6 +1942,16 @@ module Google
1809
1942
  end
1810
1943
  end
1811
1944
 
1945
+ class ListBoundMembershipsResponse
1946
+ # @private
1947
+ class Representation < Google::Apis::Core::JsonRepresentation
1948
+ collection :memberships, as: 'memberships', class: Google::Apis::GkehubV1beta::Membership, decorator: Google::Apis::GkehubV1beta::Membership::Representation
1949
+
1950
+ property :next_page_token, as: 'nextPageToken'
1951
+ collection :unreachable, as: 'unreachable'
1952
+ end
1953
+ end
1954
+
1812
1955
  class ListFeaturesResponse
1813
1956
  # @private
1814
1957
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1873,6 +2016,15 @@ module Google
1873
2016
  end
1874
2017
  end
1875
2018
 
2019
+ class ListPermittedScopesResponse
2020
+ # @private
2021
+ class Representation < Google::Apis::Core::JsonRepresentation
2022
+ property :next_page_token, as: 'nextPageToken'
2023
+ collection :scopes, as: 'scopes', class: Google::Apis::GkehubV1beta::Scope, decorator: Google::Apis::GkehubV1beta::Scope::Representation
2024
+
2025
+ end
2026
+ end
2027
+
1876
2028
  class ListScopeNamespacesResponse
1877
2029
  # @private
1878
2030
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1847,6 +1847,96 @@ module Google
1847
1847
  execute_or_queue_command(command, &block)
1848
1848
  end
1849
1849
 
1850
+ # Lists Memberships bound to a Scope. The response includes relevant Memberships
1851
+ # from all regions.
1852
+ # @param [String] scope_name
1853
+ # Required. Name of the Scope, in the format `projects/*/locations/global/scopes/
1854
+ # *`, to which the Memberships are bound.
1855
+ # @param [String] filter
1856
+ # Optional. Lists Memberships that match the filter expression, following the
1857
+ # syntax outlined in https://google.aip.dev/160. Currently, filtering can be
1858
+ # done only based on Memberships's `name`, `labels`, `create_time`, `update_time`
1859
+ # , and `unique_id`.
1860
+ # @param [Fixnum] page_size
1861
+ # Optional. When requesting a 'page' of resources, `page_size` specifies number
1862
+ # of resources to return. If unspecified or set to 0, all resources will be
1863
+ # returned. Pagination is currently not supported; therefore, setting this field
1864
+ # does not have any impact for now.
1865
+ # @param [String] page_token
1866
+ # Optional. Token returned by previous call to `ListBoundMemberships` which
1867
+ # specifies the position in the list from where to continue listing the
1868
+ # resources.
1869
+ # @param [String] fields
1870
+ # Selector specifying which fields to include in a partial response.
1871
+ # @param [String] quota_user
1872
+ # Available to use for quota purposes for server-side applications. Can be any
1873
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
1874
+ # @param [Google::Apis::RequestOptions] options
1875
+ # Request-specific options
1876
+ #
1877
+ # @yield [result, err] Result & error if block supplied
1878
+ # @yieldparam result [Google::Apis::GkehubV1beta::ListBoundMembershipsResponse] parsed result object
1879
+ # @yieldparam err [StandardError] error object if request failed
1880
+ #
1881
+ # @return [Google::Apis::GkehubV1beta::ListBoundMembershipsResponse]
1882
+ #
1883
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
1884
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
1885
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
1886
+ def list_project_location_scope_memberships(scope_name, filter: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
1887
+ command = make_simple_command(:get, 'v1beta/{+scopeName}:listMemberships', options)
1888
+ command.response_representation = Google::Apis::GkehubV1beta::ListBoundMembershipsResponse::Representation
1889
+ command.response_class = Google::Apis::GkehubV1beta::ListBoundMembershipsResponse
1890
+ command.params['scopeName'] = scope_name unless scope_name.nil?
1891
+ command.query['filter'] = filter unless filter.nil?
1892
+ command.query['pageSize'] = page_size unless page_size.nil?
1893
+ command.query['pageToken'] = page_token unless page_token.nil?
1894
+ command.query['fields'] = fields unless fields.nil?
1895
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
1896
+ execute_or_queue_command(command, &block)
1897
+ end
1898
+
1899
+ # Lists permitted Scopes.
1900
+ # @param [String] parent
1901
+ # Required. The parent (project and location) where the Scope will be listed.
1902
+ # Specified in the format `projects/*/locations/*`.
1903
+ # @param [Fixnum] page_size
1904
+ # Optional. When requesting a 'page' of resources, `page_size` specifies number
1905
+ # of resources to return. If unspecified or set to 0, all resources will be
1906
+ # returned.
1907
+ # @param [String] page_token
1908
+ # Optional. Token returned by previous call to `ListPermittedScopes` which
1909
+ # specifies the position in the list from where to continue listing the
1910
+ # resources.
1911
+ # @param [String] fields
1912
+ # Selector specifying which fields to include in a partial response.
1913
+ # @param [String] quota_user
1914
+ # Available to use for quota purposes for server-side applications. Can be any
1915
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
1916
+ # @param [Google::Apis::RequestOptions] options
1917
+ # Request-specific options
1918
+ #
1919
+ # @yield [result, err] Result & error if block supplied
1920
+ # @yieldparam result [Google::Apis::GkehubV1beta::ListPermittedScopesResponse] parsed result object
1921
+ # @yieldparam err [StandardError] error object if request failed
1922
+ #
1923
+ # @return [Google::Apis::GkehubV1beta::ListPermittedScopesResponse]
1924
+ #
1925
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
1926
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
1927
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
1928
+ def list_project_location_scope_permitted(parent, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
1929
+ command = make_simple_command(:get, 'v1beta/{+parent}/scopes:listPermitted', options)
1930
+ command.response_representation = Google::Apis::GkehubV1beta::ListPermittedScopesResponse::Representation
1931
+ command.response_class = Google::Apis::GkehubV1beta::ListPermittedScopesResponse
1932
+ command.params['parent'] = parent unless parent.nil?
1933
+ command.query['pageSize'] = page_size unless page_size.nil?
1934
+ command.query['pageToken'] = page_token unless page_token.nil?
1935
+ command.query['fields'] = fields unless fields.nil?
1936
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
1937
+ execute_or_queue_command(command, &block)
1938
+ end
1939
+
1850
1940
  # Updates a scopes.
1851
1941
  # @param [String] name
1852
1942
  # The resource name for the scope `projects/`project`/locations/`location`/
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: google-apis-gkehub_v1beta
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.70.0
4
+ version: 0.72.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Google LLC
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-02-25 00:00:00.000000000 Z
11
+ date: 2024-03-24 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
58
58
  metadata:
59
59
  bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
60
60
  changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-gkehub_v1beta/CHANGELOG.md
61
- documentation_uri: https://googleapis.dev/ruby/google-apis-gkehub_v1beta/v0.70.0
61
+ documentation_uri: https://googleapis.dev/ruby/google-apis-gkehub_v1beta/v0.72.0
62
62
  source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-gkehub_v1beta
63
63
  post_install_message:
64
64
  rdoc_options: []