google-apis-gkehub_v1beta 0.70.0 → 0.72.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 1954c5609b57b8279fbfc066a1f8ad478b520c9be4d9acc1635f47b57d159c92
4
- data.tar.gz: 795fabe69a3e800428f052495cce4777ed60ab47f8c243c9d41113585e6ad60a
3
+ metadata.gz: b78e2c620602bf42ceabc6d8f4f11a67b60744c3916f6dc05201ab4bc8e9fc81
4
+ data.tar.gz: 12a5ca0656502884de62ebe5cf6a13b3ae5e2690c789e77fbee572e554890c0c
5
5
  SHA512:
6
- metadata.gz: a280062447700f754268f2e50489eb5ea10737486213468284de26072e2fda808978aa641cd254416915eb233aab855639039c35952d34cb1ba3946ddbf2b93c
7
- data.tar.gz: 48823eed052960d86fac73f7e67532fde620738fc5125155ddf7aaa93b9b19701a3bf3f7f53c58fc0e28c97c6be1832868ddba91713116690e68915df28d6a52
6
+ metadata.gz: '0842e6bd14c7d60c2fbc7f8878eed803c8953836f36c4edd95b05b901c5c5311680574280dc6a7c00847410665cc7395eed92b1f2d8c0495de0fc82fb9721a3a'
7
+ data.tar.gz: 125f704bc885b3be8e979e784903d8ab9b3c2dd1bd9205d10fdf467e2424d8fbc4f3b2d5795b24b708d2c3b5d919ae867929395e2b3fe1043113e01f02064226
data/CHANGELOG.md CHANGED
@@ -1,5 +1,13 @@
1
1
  # Release history for google-apis-gkehub_v1beta
2
2
 
3
+ ### v0.72.0 (2024-03-24)
4
+
5
+ * Regenerated from discovery document revision 20240318
6
+
7
+ ### v0.71.0 (2024-03-10)
8
+
9
+ * Regenerated from discovery document revision 20240229
10
+
3
11
  ### v0.70.0 (2024-02-24)
4
12
 
5
13
  * Regenerated using generator version 0.14.0
@@ -2717,6 +2717,11 @@ module Google
2717
2717
  # @return [Google::Apis::GkehubV1beta::IdentityServiceGoogleConfig]
2718
2718
  attr_accessor :google_config
2719
2719
 
2720
+ # Configuration for the LDAP Auth flow.
2721
+ # Corresponds to the JSON property `ldapConfig`
2722
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceLdapConfig]
2723
+ attr_accessor :ldap_config
2724
+
2720
2725
  # Identifier for auth config.
2721
2726
  # Corresponds to the JSON property `name`
2722
2727
  # @return [String]
@@ -2732,6 +2737,11 @@ module Google
2732
2737
  # @return [String]
2733
2738
  attr_accessor :proxy
2734
2739
 
2740
+ # Configuration for the SAML Auth flow.
2741
+ # Corresponds to the JSON property `samlConfig`
2742
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceSamlConfig]
2743
+ attr_accessor :saml_config
2744
+
2735
2745
  def initialize(**args)
2736
2746
  update!(**args)
2737
2747
  end
@@ -2740,9 +2750,11 @@ module Google
2740
2750
  def update!(**args)
2741
2751
  @azuread_config = args[:azuread_config] if args.key?(:azuread_config)
2742
2752
  @google_config = args[:google_config] if args.key?(:google_config)
2753
+ @ldap_config = args[:ldap_config] if args.key?(:ldap_config)
2743
2754
  @name = args[:name] if args.key?(:name)
2744
2755
  @oidc_config = args[:oidc_config] if args.key?(:oidc_config)
2745
2756
  @proxy = args[:proxy] if args.key?(:proxy)
2757
+ @saml_config = args[:saml_config] if args.key?(:saml_config)
2746
2758
  end
2747
2759
  end
2748
2760
 
@@ -2768,6 +2780,11 @@ module Google
2768
2780
  # @return [String]
2769
2781
  attr_accessor :encrypted_client_secret
2770
2782
 
2783
+ # Optional. Format of the AzureAD groups that the client wants for auth.
2784
+ # Corresponds to the JSON property `groupFormat`
2785
+ # @return [String]
2786
+ attr_accessor :group_format
2787
+
2771
2788
  # The redirect URL that kubectl uses for authorization.
2772
2789
  # Corresponds to the JSON property `kubectlRedirectUri`
2773
2790
  # @return [String]
@@ -2779,6 +2796,11 @@ module Google
2779
2796
  # @return [String]
2780
2797
  attr_accessor :tenant
2781
2798
 
2799
+ # Optional. Claim in the AzureAD ID Token that holds the user details.
2800
+ # Corresponds to the JSON property `userClaim`
2801
+ # @return [String]
2802
+ attr_accessor :user_claim
2803
+
2782
2804
  def initialize(**args)
2783
2805
  update!(**args)
2784
2806
  end
@@ -2788,8 +2810,10 @@ module Google
2788
2810
  @client_id = args[:client_id] if args.key?(:client_id)
2789
2811
  @client_secret = args[:client_secret] if args.key?(:client_secret)
2790
2812
  @encrypted_client_secret = args[:encrypted_client_secret] if args.key?(:encrypted_client_secret)
2813
+ @group_format = args[:group_format] if args.key?(:group_format)
2791
2814
  @kubectl_redirect_uri = args[:kubectl_redirect_uri] if args.key?(:kubectl_redirect_uri)
2792
2815
  @tenant = args[:tenant] if args.key?(:tenant)
2816
+ @user_claim = args[:user_claim] if args.key?(:user_claim)
2793
2817
  end
2794
2818
  end
2795
2819
 
@@ -2813,6 +2837,84 @@ module Google
2813
2837
  end
2814
2838
  end
2815
2839
 
2840
+ # Contains the properties for locating and authenticating groups in the
2841
+ # directory.
2842
+ class IdentityServiceGroupConfig
2843
+ include Google::Apis::Core::Hashable
2844
+
2845
+ # Required. The location of the subtree in the LDAP directory to search for
2846
+ # group entries.
2847
+ # Corresponds to the JSON property `baseDn`
2848
+ # @return [String]
2849
+ attr_accessor :base_dn
2850
+
2851
+ # Optional. Optional filter to be used when searching for groups a user belongs
2852
+ # to. This can be used to explicitly match only certain groups in order to
2853
+ # reduce the amount of groups returned for each user. This defaults to "(
2854
+ # objectClass=Group)".
2855
+ # Corresponds to the JSON property `filter`
2856
+ # @return [String]
2857
+ attr_accessor :filter
2858
+
2859
+ # Optional. The identifying name of each group a user belongs to. For example,
2860
+ # if this is set to "distinguishedName" then RBACs and other group expectations
2861
+ # should be written as full DNs. This defaults to "distinguishedName".
2862
+ # Corresponds to the JSON property `idAttribute`
2863
+ # @return [String]
2864
+ attr_accessor :id_attribute
2865
+
2866
+ def initialize(**args)
2867
+ update!(**args)
2868
+ end
2869
+
2870
+ # Update properties of this object
2871
+ def update!(**args)
2872
+ @base_dn = args[:base_dn] if args.key?(:base_dn)
2873
+ @filter = args[:filter] if args.key?(:filter)
2874
+ @id_attribute = args[:id_attribute] if args.key?(:id_attribute)
2875
+ end
2876
+ end
2877
+
2878
+ # Configuration for the LDAP Auth flow.
2879
+ class IdentityServiceLdapConfig
2880
+ include Google::Apis::Core::Hashable
2881
+
2882
+ # Contains the properties for locating and authenticating groups in the
2883
+ # directory.
2884
+ # Corresponds to the JSON property `group`
2885
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceGroupConfig]
2886
+ attr_accessor :group
2887
+
2888
+ # Server settings for the external LDAP server.
2889
+ # Corresponds to the JSON property `server`
2890
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceServerConfig]
2891
+ attr_accessor :server
2892
+
2893
+ # Contains the credentials of the service account which is authorized to perform
2894
+ # the LDAP search in the directory. The credentials can be supplied by the
2895
+ # combination of the DN and password or the client certificate.
2896
+ # Corresponds to the JSON property `serviceAccount`
2897
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceServiceAccountConfig]
2898
+ attr_accessor :service_account
2899
+
2900
+ # Defines where users exist in the LDAP directory.
2901
+ # Corresponds to the JSON property `user`
2902
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceUserConfig]
2903
+ attr_accessor :user
2904
+
2905
+ def initialize(**args)
2906
+ update!(**args)
2907
+ end
2908
+
2909
+ # Update properties of this object
2910
+ def update!(**args)
2911
+ @group = args[:group] if args.key?(:group)
2912
+ @server = args[:server] if args.key?(:server)
2913
+ @service_account = args[:service_account] if args.key?(:service_account)
2914
+ @user = args[:user] if args.key?(:user)
2915
+ end
2916
+ end
2917
+
2816
2918
  # **Anthos Identity Service**: Configuration for a single Membership.
2817
2919
  class IdentityServiceMembershipSpec
2818
2920
  include Google::Apis::Core::Hashable
@@ -2973,6 +3075,217 @@ module Google
2973
3075
  end
2974
3076
  end
2975
3077
 
3078
+ # Configuration for the SAML Auth flow.
3079
+ class IdentityServiceSamlConfig
3080
+ include Google::Apis::Core::Hashable
3081
+
3082
+ # Optional. The mapping of additional user attributes like nickname, birthday
3083
+ # and address etc.. `key` is the name of this additional attribute. `value` is a
3084
+ # string presenting as CEL(common expression language, go/cel) used for getting
3085
+ # the value from the resources. Take nickname as an example, in this case, `key`
3086
+ # is "attribute.nickname" and `value` is "assertion.nickname".
3087
+ # Corresponds to the JSON property `attributeMapping`
3088
+ # @return [Hash<String,String>]
3089
+ attr_accessor :attribute_mapping
3090
+
3091
+ # Optional. Prefix to prepend to group name.
3092
+ # Corresponds to the JSON property `groupPrefix`
3093
+ # @return [String]
3094
+ attr_accessor :group_prefix
3095
+
3096
+ # Optional. The SAML attribute to read groups from. This value is expected to be
3097
+ # a string and will be passed along as-is (with the option of being prefixed by
3098
+ # the `group_prefix`).
3099
+ # Corresponds to the JSON property `groupsAttribute`
3100
+ # @return [String]
3101
+ attr_accessor :groups_attribute
3102
+
3103
+ # Required. The list of IdP certificates to validate the SAML response against.
3104
+ # Corresponds to the JSON property `identityProviderCertificates`
3105
+ # @return [Array<String>]
3106
+ attr_accessor :identity_provider_certificates
3107
+
3108
+ # Required. The entity ID of the SAML IdP.
3109
+ # Corresponds to the JSON property `identityProviderId`
3110
+ # @return [String]
3111
+ attr_accessor :identity_provider_id
3112
+
3113
+ # Required. The URI where the SAML IdP exposes the SSO service.
3114
+ # Corresponds to the JSON property `identityProviderSsoUri`
3115
+ # @return [String]
3116
+ attr_accessor :identity_provider_sso_uri
3117
+
3118
+ # Optional. The SAML attribute to read username from. If unspecified, the
3119
+ # username will be read from the NameID element of the assertion in SAML
3120
+ # response. This value is expected to be a string and will be passed along as-is
3121
+ # (with the option of being prefixed by the `user_prefix`).
3122
+ # Corresponds to the JSON property `userAttribute`
3123
+ # @return [String]
3124
+ attr_accessor :user_attribute
3125
+
3126
+ # Optional. Prefix to prepend to user name.
3127
+ # Corresponds to the JSON property `userPrefix`
3128
+ # @return [String]
3129
+ attr_accessor :user_prefix
3130
+
3131
+ def initialize(**args)
3132
+ update!(**args)
3133
+ end
3134
+
3135
+ # Update properties of this object
3136
+ def update!(**args)
3137
+ @attribute_mapping = args[:attribute_mapping] if args.key?(:attribute_mapping)
3138
+ @group_prefix = args[:group_prefix] if args.key?(:group_prefix)
3139
+ @groups_attribute = args[:groups_attribute] if args.key?(:groups_attribute)
3140
+ @identity_provider_certificates = args[:identity_provider_certificates] if args.key?(:identity_provider_certificates)
3141
+ @identity_provider_id = args[:identity_provider_id] if args.key?(:identity_provider_id)
3142
+ @identity_provider_sso_uri = args[:identity_provider_sso_uri] if args.key?(:identity_provider_sso_uri)
3143
+ @user_attribute = args[:user_attribute] if args.key?(:user_attribute)
3144
+ @user_prefix = args[:user_prefix] if args.key?(:user_prefix)
3145
+ end
3146
+ end
3147
+
3148
+ # Server settings for the external LDAP server.
3149
+ class IdentityServiceServerConfig
3150
+ include Google::Apis::Core::Hashable
3151
+
3152
+ # Optional. Contains a Base64 encoded, PEM formatted certificate authority
3153
+ # certificate for the LDAP server. This must be provided for the "ldaps" and "
3154
+ # startTLS" connections.
3155
+ # Corresponds to the JSON property `certificateAuthorityData`
3156
+ # NOTE: Values are automatically base64 encoded/decoded in the client library.
3157
+ # @return [String]
3158
+ attr_accessor :certificate_authority_data
3159
+
3160
+ # Optional. Defines the connection type to communicate with the LDAP server. If `
3161
+ # starttls` or `ldaps` is specified, the certificate_authority_data should not
3162
+ # be empty.
3163
+ # Corresponds to the JSON property `connectionType`
3164
+ # @return [String]
3165
+ attr_accessor :connection_type
3166
+
3167
+ # Required. Defines the hostname or IP of the LDAP server. Port is optional and
3168
+ # will default to 389, if unspecified. For example, "ldap.server.example" or "10.
3169
+ # 10.10.10:389".
3170
+ # Corresponds to the JSON property `host`
3171
+ # @return [String]
3172
+ attr_accessor :host
3173
+
3174
+ def initialize(**args)
3175
+ update!(**args)
3176
+ end
3177
+
3178
+ # Update properties of this object
3179
+ def update!(**args)
3180
+ @certificate_authority_data = args[:certificate_authority_data] if args.key?(:certificate_authority_data)
3181
+ @connection_type = args[:connection_type] if args.key?(:connection_type)
3182
+ @host = args[:host] if args.key?(:host)
3183
+ end
3184
+ end
3185
+
3186
+ # Contains the credentials of the service account which is authorized to perform
3187
+ # the LDAP search in the directory. The credentials can be supplied by the
3188
+ # combination of the DN and password or the client certificate.
3189
+ class IdentityServiceServiceAccountConfig
3190
+ include Google::Apis::Core::Hashable
3191
+
3192
+ # The structure holds the LDAP simple binding credential.
3193
+ # Corresponds to the JSON property `simpleBindCredentials`
3194
+ # @return [Google::Apis::GkehubV1beta::IdentityServiceSimpleBindCredentials]
3195
+ attr_accessor :simple_bind_credentials
3196
+
3197
+ def initialize(**args)
3198
+ update!(**args)
3199
+ end
3200
+
3201
+ # Update properties of this object
3202
+ def update!(**args)
3203
+ @simple_bind_credentials = args[:simple_bind_credentials] if args.key?(:simple_bind_credentials)
3204
+ end
3205
+ end
3206
+
3207
+ # The structure holds the LDAP simple binding credential.
3208
+ class IdentityServiceSimpleBindCredentials
3209
+ include Google::Apis::Core::Hashable
3210
+
3211
+ # Required. The distinguished name(DN) of the service account object/user.
3212
+ # Corresponds to the JSON property `dn`
3213
+ # @return [String]
3214
+ attr_accessor :dn
3215
+
3216
+ # Output only. The encrypted password of the service account object/user.
3217
+ # Corresponds to the JSON property `encryptedPassword`
3218
+ # NOTE: Values are automatically base64 encoded/decoded in the client library.
3219
+ # @return [String]
3220
+ attr_accessor :encrypted_password
3221
+
3222
+ # Required. Input only. The password of the service account object/user.
3223
+ # Corresponds to the JSON property `password`
3224
+ # @return [String]
3225
+ attr_accessor :password
3226
+
3227
+ def initialize(**args)
3228
+ update!(**args)
3229
+ end
3230
+
3231
+ # Update properties of this object
3232
+ def update!(**args)
3233
+ @dn = args[:dn] if args.key?(:dn)
3234
+ @encrypted_password = args[:encrypted_password] if args.key?(:encrypted_password)
3235
+ @password = args[:password] if args.key?(:password)
3236
+ end
3237
+ end
3238
+
3239
+ # Defines where users exist in the LDAP directory.
3240
+ class IdentityServiceUserConfig
3241
+ include Google::Apis::Core::Hashable
3242
+
3243
+ # Required. The location of the subtree in the LDAP directory to search for user
3244
+ # entries.
3245
+ # Corresponds to the JSON property `baseDn`
3246
+ # @return [String]
3247
+ attr_accessor :base_dn
3248
+
3249
+ # Optional. Filter to apply when searching for the user. This can be used to
3250
+ # further restrict the user accounts which are allowed to login. This defaults
3251
+ # to "(objectClass=User)".
3252
+ # Corresponds to the JSON property `filter`
3253
+ # @return [String]
3254
+ attr_accessor :filter
3255
+
3256
+ # Optional. Determines which attribute to use as the user's identity after they
3257
+ # are authenticated. This is distinct from the loginAttribute field to allow
3258
+ # users to login with a username, but then have their actual identifier be an
3259
+ # email address or full Distinguished Name (DN). For example, setting
3260
+ # loginAttribute to "sAMAccountName" and identifierAttribute to "
3261
+ # userPrincipalName" would allow a user to login as "bsmith", but actual RBAC
3262
+ # policies for the user would be written as "bsmith@example.com". Using "
3263
+ # userPrincipalName" is recommended since this will be unique for each user.
3264
+ # This defaults to "userPrincipalName".
3265
+ # Corresponds to the JSON property `idAttribute`
3266
+ # @return [String]
3267
+ attr_accessor :id_attribute
3268
+
3269
+ # Optional. The name of the attribute which matches against the input username.
3270
+ # This is used to find the user in the LDAP database e.g. "(=)" and is combined
3271
+ # with the optional filter field. This defaults to "userPrincipalName".
3272
+ # Corresponds to the JSON property `loginAttribute`
3273
+ # @return [String]
3274
+ attr_accessor :login_attribute
3275
+
3276
+ def initialize(**args)
3277
+ update!(**args)
3278
+ end
3279
+
3280
+ # Update properties of this object
3281
+ def update!(**args)
3282
+ @base_dn = args[:base_dn] if args.key?(:base_dn)
3283
+ @filter = args[:filter] if args.key?(:filter)
3284
+ @id_attribute = args[:id_attribute] if args.key?(:id_attribute)
3285
+ @login_attribute = args[:login_attribute] if args.key?(:login_attribute)
3286
+ end
3287
+ end
3288
+
2976
3289
  # KubernetesMetadata provides informational metadata for Memberships
2977
3290
  # representing Kubernetes clusters.
2978
3291
  class KubernetesMetadata
@@ -3084,6 +3397,39 @@ module Google
3084
3397
  end
3085
3398
  end
3086
3399
 
3400
+ # List of Memberships bound to a Scope.
3401
+ class ListBoundMembershipsResponse
3402
+ include Google::Apis::Core::Hashable
3403
+
3404
+ # The list of Memberships bound to the given Scope.
3405
+ # Corresponds to the JSON property `memberships`
3406
+ # @return [Array<Google::Apis::GkehubV1beta::Membership>]
3407
+ attr_accessor :memberships
3408
+
3409
+ # A token to request the next page of resources from the `ListBoundMemberships`
3410
+ # method. The value of an empty string means that there are no more resources to
3411
+ # return.
3412
+ # Corresponds to the JSON property `nextPageToken`
3413
+ # @return [String]
3414
+ attr_accessor :next_page_token
3415
+
3416
+ # List of locations that could not be reached while fetching this list.
3417
+ # Corresponds to the JSON property `unreachable`
3418
+ # @return [Array<String>]
3419
+ attr_accessor :unreachable
3420
+
3421
+ def initialize(**args)
3422
+ update!(**args)
3423
+ end
3424
+
3425
+ # Update properties of this object
3426
+ def update!(**args)
3427
+ @memberships = args[:memberships] if args.key?(:memberships)
3428
+ @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
3429
+ @unreachable = args[:unreachable] if args.key?(:unreachable)
3430
+ end
3431
+ end
3432
+
3087
3433
  # Response message for the `GkeHub.ListFeatures` method.
3088
3434
  class ListFeaturesResponse
3089
3435
  include Google::Apis::Core::Hashable
@@ -3274,6 +3620,33 @@ module Google
3274
3620
  end
3275
3621
  end
3276
3622
 
3623
+ # List of permitted Scopes.
3624
+ class ListPermittedScopesResponse
3625
+ include Google::Apis::Core::Hashable
3626
+
3627
+ # A token to request the next page of resources from the `ListPermittedScopes`
3628
+ # method. The value of an empty string means that there are no more resources to
3629
+ # return.
3630
+ # Corresponds to the JSON property `nextPageToken`
3631
+ # @return [String]
3632
+ attr_accessor :next_page_token
3633
+
3634
+ # The list of permitted Scopes
3635
+ # Corresponds to the JSON property `scopes`
3636
+ # @return [Array<Google::Apis::GkehubV1beta::Scope>]
3637
+ attr_accessor :scopes
3638
+
3639
+ def initialize(**args)
3640
+ update!(**args)
3641
+ end
3642
+
3643
+ # Update properties of this object
3644
+ def update!(**args)
3645
+ @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
3646
+ @scopes = args[:scopes] if args.key?(:scopes)
3647
+ end
3648
+ end
3649
+
3277
3650
  # List of fleet namespaces.
3278
3651
  class ListScopeNamespacesResponse
3279
3652
  include Google::Apis::Core::Hashable
@@ -16,13 +16,13 @@ module Google
16
16
  module Apis
17
17
  module GkehubV1beta
18
18
  # Version of the google-apis-gkehub_v1beta gem
19
- GEM_VERSION = "0.70.0"
19
+ GEM_VERSION = "0.72.0"
20
20
 
21
21
  # Version of the code generator used to generate this client
22
22
  GENERATOR_VERSION = "0.14.0"
23
23
 
24
24
  # Revision of the discovery document this client was generated from
25
- REVISION = "20240209"
25
+ REVISION = "20240318"
26
26
  end
27
27
  end
28
28
  end
@@ -514,6 +514,18 @@ module Google
514
514
  include Google::Apis::Core::JsonObjectSupport
515
515
  end
516
516
 
517
+ class IdentityServiceGroupConfig
518
+ class Representation < Google::Apis::Core::JsonRepresentation; end
519
+
520
+ include Google::Apis::Core::JsonObjectSupport
521
+ end
522
+
523
+ class IdentityServiceLdapConfig
524
+ class Representation < Google::Apis::Core::JsonRepresentation; end
525
+
526
+ include Google::Apis::Core::JsonObjectSupport
527
+ end
528
+
517
529
  class IdentityServiceMembershipSpec
518
530
  class Representation < Google::Apis::Core::JsonRepresentation; end
519
531
 
@@ -532,6 +544,36 @@ module Google
532
544
  include Google::Apis::Core::JsonObjectSupport
533
545
  end
534
546
 
547
+ class IdentityServiceSamlConfig
548
+ class Representation < Google::Apis::Core::JsonRepresentation; end
549
+
550
+ include Google::Apis::Core::JsonObjectSupport
551
+ end
552
+
553
+ class IdentityServiceServerConfig
554
+ class Representation < Google::Apis::Core::JsonRepresentation; end
555
+
556
+ include Google::Apis::Core::JsonObjectSupport
557
+ end
558
+
559
+ class IdentityServiceServiceAccountConfig
560
+ class Representation < Google::Apis::Core::JsonRepresentation; end
561
+
562
+ include Google::Apis::Core::JsonObjectSupport
563
+ end
564
+
565
+ class IdentityServiceSimpleBindCredentials
566
+ class Representation < Google::Apis::Core::JsonRepresentation; end
567
+
568
+ include Google::Apis::Core::JsonObjectSupport
569
+ end
570
+
571
+ class IdentityServiceUserConfig
572
+ class Representation < Google::Apis::Core::JsonRepresentation; end
573
+
574
+ include Google::Apis::Core::JsonObjectSupport
575
+ end
576
+
535
577
  class KubernetesMetadata
536
578
  class Representation < Google::Apis::Core::JsonRepresentation; end
537
579
 
@@ -544,6 +586,12 @@ module Google
544
586
  include Google::Apis::Core::JsonObjectSupport
545
587
  end
546
588
 
589
+ class ListBoundMembershipsResponse
590
+ class Representation < Google::Apis::Core::JsonRepresentation; end
591
+
592
+ include Google::Apis::Core::JsonObjectSupport
593
+ end
594
+
547
595
  class ListFeaturesResponse
548
596
  class Representation < Google::Apis::Core::JsonRepresentation; end
549
597
 
@@ -586,6 +634,12 @@ module Google
586
634
  include Google::Apis::Core::JsonObjectSupport
587
635
  end
588
636
 
637
+ class ListPermittedScopesResponse
638
+ class Representation < Google::Apis::Core::JsonRepresentation; end
639
+
640
+ include Google::Apis::Core::JsonObjectSupport
641
+ end
642
+
589
643
  class ListScopeNamespacesResponse
590
644
  class Representation < Google::Apis::Core::JsonRepresentation; end
591
645
 
@@ -1720,10 +1774,14 @@ module Google
1720
1774
 
1721
1775
  property :google_config, as: 'googleConfig', class: Google::Apis::GkehubV1beta::IdentityServiceGoogleConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceGoogleConfig::Representation
1722
1776
 
1777
+ property :ldap_config, as: 'ldapConfig', class: Google::Apis::GkehubV1beta::IdentityServiceLdapConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceLdapConfig::Representation
1778
+
1723
1779
  property :name, as: 'name'
1724
1780
  property :oidc_config, as: 'oidcConfig', class: Google::Apis::GkehubV1beta::IdentityServiceOidcConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceOidcConfig::Representation
1725
1781
 
1726
1782
  property :proxy, as: 'proxy'
1783
+ property :saml_config, as: 'samlConfig', class: Google::Apis::GkehubV1beta::IdentityServiceSamlConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceSamlConfig::Representation
1784
+
1727
1785
  end
1728
1786
  end
1729
1787
 
@@ -1733,8 +1791,10 @@ module Google
1733
1791
  property :client_id, as: 'clientId'
1734
1792
  property :client_secret, as: 'clientSecret'
1735
1793
  property :encrypted_client_secret, :base64 => true, as: 'encryptedClientSecret'
1794
+ property :group_format, as: 'groupFormat'
1736
1795
  property :kubectl_redirect_uri, as: 'kubectlRedirectUri'
1737
1796
  property :tenant, as: 'tenant'
1797
+ property :user_claim, as: 'userClaim'
1738
1798
  end
1739
1799
  end
1740
1800
 
@@ -1745,6 +1805,29 @@ module Google
1745
1805
  end
1746
1806
  end
1747
1807
 
1808
+ class IdentityServiceGroupConfig
1809
+ # @private
1810
+ class Representation < Google::Apis::Core::JsonRepresentation
1811
+ property :base_dn, as: 'baseDn'
1812
+ property :filter, as: 'filter'
1813
+ property :id_attribute, as: 'idAttribute'
1814
+ end
1815
+ end
1816
+
1817
+ class IdentityServiceLdapConfig
1818
+ # @private
1819
+ class Representation < Google::Apis::Core::JsonRepresentation
1820
+ property :group, as: 'group', class: Google::Apis::GkehubV1beta::IdentityServiceGroupConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceGroupConfig::Representation
1821
+
1822
+ property :server, as: 'server', class: Google::Apis::GkehubV1beta::IdentityServiceServerConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceServerConfig::Representation
1823
+
1824
+ property :service_account, as: 'serviceAccount', class: Google::Apis::GkehubV1beta::IdentityServiceServiceAccountConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceServiceAccountConfig::Representation
1825
+
1826
+ property :user, as: 'user', class: Google::Apis::GkehubV1beta::IdentityServiceUserConfig, decorator: Google::Apis::GkehubV1beta::IdentityServiceUserConfig::Representation
1827
+
1828
+ end
1829
+ end
1830
+
1748
1831
  class IdentityServiceMembershipSpec
1749
1832
  # @private
1750
1833
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1784,6 +1867,56 @@ module Google
1784
1867
  end
1785
1868
  end
1786
1869
 
1870
+ class IdentityServiceSamlConfig
1871
+ # @private
1872
+ class Representation < Google::Apis::Core::JsonRepresentation
1873
+ hash :attribute_mapping, as: 'attributeMapping'
1874
+ property :group_prefix, as: 'groupPrefix'
1875
+ property :groups_attribute, as: 'groupsAttribute'
1876
+ collection :identity_provider_certificates, as: 'identityProviderCertificates'
1877
+ property :identity_provider_id, as: 'identityProviderId'
1878
+ property :identity_provider_sso_uri, as: 'identityProviderSsoUri'
1879
+ property :user_attribute, as: 'userAttribute'
1880
+ property :user_prefix, as: 'userPrefix'
1881
+ end
1882
+ end
1883
+
1884
+ class IdentityServiceServerConfig
1885
+ # @private
1886
+ class Representation < Google::Apis::Core::JsonRepresentation
1887
+ property :certificate_authority_data, :base64 => true, as: 'certificateAuthorityData'
1888
+ property :connection_type, as: 'connectionType'
1889
+ property :host, as: 'host'
1890
+ end
1891
+ end
1892
+
1893
+ class IdentityServiceServiceAccountConfig
1894
+ # @private
1895
+ class Representation < Google::Apis::Core::JsonRepresentation
1896
+ property :simple_bind_credentials, as: 'simpleBindCredentials', class: Google::Apis::GkehubV1beta::IdentityServiceSimpleBindCredentials, decorator: Google::Apis::GkehubV1beta::IdentityServiceSimpleBindCredentials::Representation
1897
+
1898
+ end
1899
+ end
1900
+
1901
+ class IdentityServiceSimpleBindCredentials
1902
+ # @private
1903
+ class Representation < Google::Apis::Core::JsonRepresentation
1904
+ property :dn, as: 'dn'
1905
+ property :encrypted_password, :base64 => true, as: 'encryptedPassword'
1906
+ property :password, as: 'password'
1907
+ end
1908
+ end
1909
+
1910
+ class IdentityServiceUserConfig
1911
+ # @private
1912
+ class Representation < Google::Apis::Core::JsonRepresentation
1913
+ property :base_dn, as: 'baseDn'
1914
+ property :filter, as: 'filter'
1915
+ property :id_attribute, as: 'idAttribute'
1916
+ property :login_attribute, as: 'loginAttribute'
1917
+ end
1918
+ end
1919
+
1787
1920
  class KubernetesMetadata
1788
1921
  # @private
1789
1922
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1809,6 +1942,16 @@ module Google
1809
1942
  end
1810
1943
  end
1811
1944
 
1945
+ class ListBoundMembershipsResponse
1946
+ # @private
1947
+ class Representation < Google::Apis::Core::JsonRepresentation
1948
+ collection :memberships, as: 'memberships', class: Google::Apis::GkehubV1beta::Membership, decorator: Google::Apis::GkehubV1beta::Membership::Representation
1949
+
1950
+ property :next_page_token, as: 'nextPageToken'
1951
+ collection :unreachable, as: 'unreachable'
1952
+ end
1953
+ end
1954
+
1812
1955
  class ListFeaturesResponse
1813
1956
  # @private
1814
1957
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1873,6 +2016,15 @@ module Google
1873
2016
  end
1874
2017
  end
1875
2018
 
2019
+ class ListPermittedScopesResponse
2020
+ # @private
2021
+ class Representation < Google::Apis::Core::JsonRepresentation
2022
+ property :next_page_token, as: 'nextPageToken'
2023
+ collection :scopes, as: 'scopes', class: Google::Apis::GkehubV1beta::Scope, decorator: Google::Apis::GkehubV1beta::Scope::Representation
2024
+
2025
+ end
2026
+ end
2027
+
1876
2028
  class ListScopeNamespacesResponse
1877
2029
  # @private
1878
2030
  class Representation < Google::Apis::Core::JsonRepresentation
@@ -1847,6 +1847,96 @@ module Google
1847
1847
  execute_or_queue_command(command, &block)
1848
1848
  end
1849
1849
 
1850
+ # Lists Memberships bound to a Scope. The response includes relevant Memberships
1851
+ # from all regions.
1852
+ # @param [String] scope_name
1853
+ # Required. Name of the Scope, in the format `projects/*/locations/global/scopes/
1854
+ # *`, to which the Memberships are bound.
1855
+ # @param [String] filter
1856
+ # Optional. Lists Memberships that match the filter expression, following the
1857
+ # syntax outlined in https://google.aip.dev/160. Currently, filtering can be
1858
+ # done only based on Memberships's `name`, `labels`, `create_time`, `update_time`
1859
+ # , and `unique_id`.
1860
+ # @param [Fixnum] page_size
1861
+ # Optional. When requesting a 'page' of resources, `page_size` specifies number
1862
+ # of resources to return. If unspecified or set to 0, all resources will be
1863
+ # returned. Pagination is currently not supported; therefore, setting this field
1864
+ # does not have any impact for now.
1865
+ # @param [String] page_token
1866
+ # Optional. Token returned by previous call to `ListBoundMemberships` which
1867
+ # specifies the position in the list from where to continue listing the
1868
+ # resources.
1869
+ # @param [String] fields
1870
+ # Selector specifying which fields to include in a partial response.
1871
+ # @param [String] quota_user
1872
+ # Available to use for quota purposes for server-side applications. Can be any
1873
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
1874
+ # @param [Google::Apis::RequestOptions] options
1875
+ # Request-specific options
1876
+ #
1877
+ # @yield [result, err] Result & error if block supplied
1878
+ # @yieldparam result [Google::Apis::GkehubV1beta::ListBoundMembershipsResponse] parsed result object
1879
+ # @yieldparam err [StandardError] error object if request failed
1880
+ #
1881
+ # @return [Google::Apis::GkehubV1beta::ListBoundMembershipsResponse]
1882
+ #
1883
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
1884
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
1885
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
1886
+ def list_project_location_scope_memberships(scope_name, filter: nil, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
1887
+ command = make_simple_command(:get, 'v1beta/{+scopeName}:listMemberships', options)
1888
+ command.response_representation = Google::Apis::GkehubV1beta::ListBoundMembershipsResponse::Representation
1889
+ command.response_class = Google::Apis::GkehubV1beta::ListBoundMembershipsResponse
1890
+ command.params['scopeName'] = scope_name unless scope_name.nil?
1891
+ command.query['filter'] = filter unless filter.nil?
1892
+ command.query['pageSize'] = page_size unless page_size.nil?
1893
+ command.query['pageToken'] = page_token unless page_token.nil?
1894
+ command.query['fields'] = fields unless fields.nil?
1895
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
1896
+ execute_or_queue_command(command, &block)
1897
+ end
1898
+
1899
+ # Lists permitted Scopes.
1900
+ # @param [String] parent
1901
+ # Required. The parent (project and location) where the Scope will be listed.
1902
+ # Specified in the format `projects/*/locations/*`.
1903
+ # @param [Fixnum] page_size
1904
+ # Optional. When requesting a 'page' of resources, `page_size` specifies number
1905
+ # of resources to return. If unspecified or set to 0, all resources will be
1906
+ # returned.
1907
+ # @param [String] page_token
1908
+ # Optional. Token returned by previous call to `ListPermittedScopes` which
1909
+ # specifies the position in the list from where to continue listing the
1910
+ # resources.
1911
+ # @param [String] fields
1912
+ # Selector specifying which fields to include in a partial response.
1913
+ # @param [String] quota_user
1914
+ # Available to use for quota purposes for server-side applications. Can be any
1915
+ # arbitrary string assigned to a user, but should not exceed 40 characters.
1916
+ # @param [Google::Apis::RequestOptions] options
1917
+ # Request-specific options
1918
+ #
1919
+ # @yield [result, err] Result & error if block supplied
1920
+ # @yieldparam result [Google::Apis::GkehubV1beta::ListPermittedScopesResponse] parsed result object
1921
+ # @yieldparam err [StandardError] error object if request failed
1922
+ #
1923
+ # @return [Google::Apis::GkehubV1beta::ListPermittedScopesResponse]
1924
+ #
1925
+ # @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
1926
+ # @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
1927
+ # @raise [Google::Apis::AuthorizationError] Authorization is required
1928
+ def list_project_location_scope_permitted(parent, page_size: nil, page_token: nil, fields: nil, quota_user: nil, options: nil, &block)
1929
+ command = make_simple_command(:get, 'v1beta/{+parent}/scopes:listPermitted', options)
1930
+ command.response_representation = Google::Apis::GkehubV1beta::ListPermittedScopesResponse::Representation
1931
+ command.response_class = Google::Apis::GkehubV1beta::ListPermittedScopesResponse
1932
+ command.params['parent'] = parent unless parent.nil?
1933
+ command.query['pageSize'] = page_size unless page_size.nil?
1934
+ command.query['pageToken'] = page_token unless page_token.nil?
1935
+ command.query['fields'] = fields unless fields.nil?
1936
+ command.query['quotaUser'] = quota_user unless quota_user.nil?
1937
+ execute_or_queue_command(command, &block)
1938
+ end
1939
+
1850
1940
  # Updates a scopes.
1851
1941
  # @param [String] name
1852
1942
  # The resource name for the scope `projects/`project`/locations/`location`/
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: google-apis-gkehub_v1beta
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.70.0
4
+ version: 0.72.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Google LLC
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-02-25 00:00:00.000000000 Z
11
+ date: 2024-03-24 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: google-apis-core
@@ -58,7 +58,7 @@ licenses:
58
58
  metadata:
59
59
  bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
60
60
  changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-gkehub_v1beta/CHANGELOG.md
61
- documentation_uri: https://googleapis.dev/ruby/google-apis-gkehub_v1beta/v0.70.0
61
+ documentation_uri: https://googleapis.dev/ruby/google-apis-gkehub_v1beta/v0.72.0
62
62
  source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-gkehub_v1beta
63
63
  post_install_message:
64
64
  rdoc_options: []