google-apis-iam_v1 0.1.0 → 0.6.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +22 -0
- data/lib/google/apis/iam_v1.rb +1 -1
- data/lib/google/apis/iam_v1/classes.rb +293 -0
- data/lib/google/apis/iam_v1/gem_version.rb +3 -3
- data/lib/google/apis/iam_v1/representations.rb +121 -0
- data/lib/google/apis/iam_v1/service.rb +447 -13
- metadata +5 -5
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 685a6b1b409d3c34cec14623d2cf5b6407f53441f403ecdce9610130f43a2d9b
|
4
|
+
data.tar.gz: 7be2a3abb02a490f5f53024167277239b57d01c96bd094aaa6a7ec27d3db81b0
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: a6aa6c851a3ca2f4b5b9ae704efb10286cf7b27f68a9be19be0f6c290fb6b3ca6445d018a3edfb2b642f4e28086322346a82cd5612c86c1e38f5ee422ed7dc66
|
7
|
+
data.tar.gz: 7c714bb2d31fdaf5b37b4cd7930a53afeeadc0602ee80274a9c34076e03525f956534d8ec5c4bdeac1977288239fed51b9b4fb2d66797d87e0f909dac0de1baf
|
data/CHANGELOG.md
CHANGED
@@ -1,5 +1,27 @@
|
|
1
1
|
# Release history for google-apis-iam_v1
|
2
2
|
|
3
|
+
### v0.6.0 (2021-05-22)
|
4
|
+
|
5
|
+
* Regenerated from discovery document revision 20210519
|
6
|
+
|
7
|
+
### v0.5.0 (2021-03-31)
|
8
|
+
|
9
|
+
* Regenerated from discovery document revision 20210325
|
10
|
+
|
11
|
+
### v0.4.0 (2021-03-10)
|
12
|
+
|
13
|
+
* Regenerated from discovery document revision 20210226
|
14
|
+
* Regenerated using generator version 0.2.0
|
15
|
+
|
16
|
+
### v0.3.0 (2021-03-04)
|
17
|
+
|
18
|
+
* Unspecified changes
|
19
|
+
|
20
|
+
### v0.2.0 (2021-02-18)
|
21
|
+
|
22
|
+
* Regenerated from discovery document revision 20210211
|
23
|
+
* Regenerated using generator version 0.1.2
|
24
|
+
|
3
25
|
### v0.1.0 (2021-01-07)
|
4
26
|
|
5
27
|
* Regenerated using generator version 0.1.1
|
data/lib/google/apis/iam_v1.rb
CHANGED
@@ -31,7 +31,7 @@ module Google
|
|
31
31
|
# This is NOT the gem version.
|
32
32
|
VERSION = 'V1'
|
33
33
|
|
34
|
-
#
|
34
|
+
# See, edit, configure, and delete your Google Cloud Platform data
|
35
35
|
AUTH_CLOUD_PLATFORM = 'https://www.googleapis.com/auth/cloud-platform'
|
36
36
|
end
|
37
37
|
end
|
@@ -155,6 +155,25 @@ module Google
|
|
155
155
|
end
|
156
156
|
end
|
157
157
|
|
158
|
+
# Represents an Amazon Web Services identity provider.
|
159
|
+
class Aws
|
160
|
+
include Google::Apis::Core::Hashable
|
161
|
+
|
162
|
+
# Required. The AWS account ID.
|
163
|
+
# Corresponds to the JSON property `accountId`
|
164
|
+
# @return [String]
|
165
|
+
attr_accessor :account_id
|
166
|
+
|
167
|
+
def initialize(**args)
|
168
|
+
update!(**args)
|
169
|
+
end
|
170
|
+
|
171
|
+
# Update properties of this object
|
172
|
+
def update!(**args)
|
173
|
+
@account_id = args[:account_id] if args.key?(:account_id)
|
174
|
+
end
|
175
|
+
end
|
176
|
+
|
158
177
|
# Associates `members` with a `role`.
|
159
178
|
class Binding
|
160
179
|
include Google::Apis::Core::Hashable
|
@@ -656,6 +675,91 @@ module Google
|
|
656
675
|
end
|
657
676
|
end
|
658
677
|
|
678
|
+
# Response message for ListWorkloadIdentityPoolProviders.
|
679
|
+
class ListWorkloadIdentityPoolProvidersResponse
|
680
|
+
include Google::Apis::Core::Hashable
|
681
|
+
|
682
|
+
# A token, which can be sent as `page_token` to retrieve the next page. If this
|
683
|
+
# field is omitted, there are no subsequent pages.
|
684
|
+
# Corresponds to the JSON property `nextPageToken`
|
685
|
+
# @return [String]
|
686
|
+
attr_accessor :next_page_token
|
687
|
+
|
688
|
+
# A list of providers.
|
689
|
+
# Corresponds to the JSON property `workloadIdentityPoolProviders`
|
690
|
+
# @return [Array<Google::Apis::IamV1::WorkloadIdentityPoolProvider>]
|
691
|
+
attr_accessor :workload_identity_pool_providers
|
692
|
+
|
693
|
+
def initialize(**args)
|
694
|
+
update!(**args)
|
695
|
+
end
|
696
|
+
|
697
|
+
# Update properties of this object
|
698
|
+
def update!(**args)
|
699
|
+
@next_page_token = args[:next_page_token] if args.key?(:next_page_token)
|
700
|
+
@workload_identity_pool_providers = args[:workload_identity_pool_providers] if args.key?(:workload_identity_pool_providers)
|
701
|
+
end
|
702
|
+
end
|
703
|
+
|
704
|
+
# Response message for ListWorkloadIdentityPools.
|
705
|
+
class ListWorkloadIdentityPoolsResponse
|
706
|
+
include Google::Apis::Core::Hashable
|
707
|
+
|
708
|
+
# A token, which can be sent as `page_token` to retrieve the next page. If this
|
709
|
+
# field is omitted, there are no subsequent pages.
|
710
|
+
# Corresponds to the JSON property `nextPageToken`
|
711
|
+
# @return [String]
|
712
|
+
attr_accessor :next_page_token
|
713
|
+
|
714
|
+
# A list of pools.
|
715
|
+
# Corresponds to the JSON property `workloadIdentityPools`
|
716
|
+
# @return [Array<Google::Apis::IamV1::WorkloadIdentityPool>]
|
717
|
+
attr_accessor :workload_identity_pools
|
718
|
+
|
719
|
+
def initialize(**args)
|
720
|
+
update!(**args)
|
721
|
+
end
|
722
|
+
|
723
|
+
# Update properties of this object
|
724
|
+
def update!(**args)
|
725
|
+
@next_page_token = args[:next_page_token] if args.key?(:next_page_token)
|
726
|
+
@workload_identity_pools = args[:workload_identity_pools] if args.key?(:workload_identity_pools)
|
727
|
+
end
|
728
|
+
end
|
729
|
+
|
730
|
+
# Represents an OpenId Connect 1.0 identity provider.
|
731
|
+
class Oidc
|
732
|
+
include Google::Apis::Core::Hashable
|
733
|
+
|
734
|
+
# Acceptable values for the `aud` field (audience) in the OIDC token. Token
|
735
|
+
# exchange requests are rejected if the token audience does not match one of the
|
736
|
+
# configured values. Each audience may be at most 256 characters. A maximum of
|
737
|
+
# 10 audiences may be configured. If this list is empty, the OIDC token audience
|
738
|
+
# must be equal to the full canonical resource name of the
|
739
|
+
# WorkloadIdentityPoolProvider, with or without the HTTPS prefix. For example: ``
|
740
|
+
# ` //iam.googleapis.com/projects//locations//workloadIdentityPools//providers/
|
741
|
+
# https://iam.googleapis.com/projects//locations//workloadIdentityPools//
|
742
|
+
# providers/ ```
|
743
|
+
# Corresponds to the JSON property `allowedAudiences`
|
744
|
+
# @return [Array<String>]
|
745
|
+
attr_accessor :allowed_audiences
|
746
|
+
|
747
|
+
# Required. The OIDC issuer URL. Must be an HTTPS endpoint.
|
748
|
+
# Corresponds to the JSON property `issuerUri`
|
749
|
+
# @return [String]
|
750
|
+
attr_accessor :issuer_uri
|
751
|
+
|
752
|
+
def initialize(**args)
|
753
|
+
update!(**args)
|
754
|
+
end
|
755
|
+
|
756
|
+
# Update properties of this object
|
757
|
+
def update!(**args)
|
758
|
+
@allowed_audiences = args[:allowed_audiences] if args.key?(:allowed_audiences)
|
759
|
+
@issuer_uri = args[:issuer_uri] if args.key?(:issuer_uri)
|
760
|
+
end
|
761
|
+
end
|
762
|
+
|
659
763
|
# This resource represents a long-running operation that is the result of a
|
660
764
|
# network API call.
|
661
765
|
class Operation
|
@@ -1667,6 +1771,32 @@ module Google
|
|
1667
1771
|
end
|
1668
1772
|
end
|
1669
1773
|
|
1774
|
+
# Request message for UndeleteWorkloadIdentityPoolProvider.
|
1775
|
+
class UndeleteWorkloadIdentityPoolProviderRequest
|
1776
|
+
include Google::Apis::Core::Hashable
|
1777
|
+
|
1778
|
+
def initialize(**args)
|
1779
|
+
update!(**args)
|
1780
|
+
end
|
1781
|
+
|
1782
|
+
# Update properties of this object
|
1783
|
+
def update!(**args)
|
1784
|
+
end
|
1785
|
+
end
|
1786
|
+
|
1787
|
+
# Request message for UndeleteWorkloadIdentityPool.
|
1788
|
+
class UndeleteWorkloadIdentityPoolRequest
|
1789
|
+
include Google::Apis::Core::Hashable
|
1790
|
+
|
1791
|
+
def initialize(**args)
|
1792
|
+
update!(**args)
|
1793
|
+
end
|
1794
|
+
|
1795
|
+
# Update properties of this object
|
1796
|
+
def update!(**args)
|
1797
|
+
end
|
1798
|
+
end
|
1799
|
+
|
1670
1800
|
# The service account key upload request.
|
1671
1801
|
class UploadServiceAccountKeyRequest
|
1672
1802
|
include Google::Apis::Core::Hashable
|
@@ -1688,6 +1818,169 @@ module Google
|
|
1688
1818
|
@public_key_data = args[:public_key_data] if args.key?(:public_key_data)
|
1689
1819
|
end
|
1690
1820
|
end
|
1821
|
+
|
1822
|
+
# Represents a collection of external workload identities. You can define IAM
|
1823
|
+
# policies to grant these identities access to Google Cloud resources.
|
1824
|
+
class WorkloadIdentityPool
|
1825
|
+
include Google::Apis::Core::Hashable
|
1826
|
+
|
1827
|
+
# A description of the pool. Cannot exceed 256 characters.
|
1828
|
+
# Corresponds to the JSON property `description`
|
1829
|
+
# @return [String]
|
1830
|
+
attr_accessor :description
|
1831
|
+
|
1832
|
+
# Whether the pool is disabled. You cannot use a disabled pool to exchange
|
1833
|
+
# tokens, or use existing tokens to access resources. If the pool is re-enabled,
|
1834
|
+
# existing tokens grant access again.
|
1835
|
+
# Corresponds to the JSON property `disabled`
|
1836
|
+
# @return [Boolean]
|
1837
|
+
attr_accessor :disabled
|
1838
|
+
alias_method :disabled?, :disabled
|
1839
|
+
|
1840
|
+
# A display name for the pool. Cannot exceed 32 characters.
|
1841
|
+
# Corresponds to the JSON property `displayName`
|
1842
|
+
# @return [String]
|
1843
|
+
attr_accessor :display_name
|
1844
|
+
|
1845
|
+
# Output only. The resource name of the pool.
|
1846
|
+
# Corresponds to the JSON property `name`
|
1847
|
+
# @return [String]
|
1848
|
+
attr_accessor :name
|
1849
|
+
|
1850
|
+
# Output only. The state of the pool.
|
1851
|
+
# Corresponds to the JSON property `state`
|
1852
|
+
# @return [String]
|
1853
|
+
attr_accessor :state
|
1854
|
+
|
1855
|
+
def initialize(**args)
|
1856
|
+
update!(**args)
|
1857
|
+
end
|
1858
|
+
|
1859
|
+
# Update properties of this object
|
1860
|
+
def update!(**args)
|
1861
|
+
@description = args[:description] if args.key?(:description)
|
1862
|
+
@disabled = args[:disabled] if args.key?(:disabled)
|
1863
|
+
@display_name = args[:display_name] if args.key?(:display_name)
|
1864
|
+
@name = args[:name] if args.key?(:name)
|
1865
|
+
@state = args[:state] if args.key?(:state)
|
1866
|
+
end
|
1867
|
+
end
|
1868
|
+
|
1869
|
+
# A configuration for an external identity provider.
|
1870
|
+
class WorkloadIdentityPoolProvider
|
1871
|
+
include Google::Apis::Core::Hashable
|
1872
|
+
|
1873
|
+
# [A Common Expression Language](https://opensource.google/projects/cel)
|
1874
|
+
# expression, in plain text, to restrict what otherwise valid authentication
|
1875
|
+
# credentials issued by the provider should not be accepted. The expression must
|
1876
|
+
# output a boolean representing whether to allow the federation. The following
|
1877
|
+
# keywords may be referenced in the expressions: * `assertion`: JSON
|
1878
|
+
# representing the authentication credential issued by the provider. * `google`:
|
1879
|
+
# The Google attributes mapped from the assertion in the `attribute_mappings`. *
|
1880
|
+
# `attribute`: The custom attributes mapped from the assertion in the `
|
1881
|
+
# attribute_mappings`. The maximum length of the attribute condition expression
|
1882
|
+
# is 4096 characters. If unspecified, all valid authentication credential are
|
1883
|
+
# accepted. The following example shows how to only allow credentials with a
|
1884
|
+
# mapped `google.groups` value of `admins`: ``` "'admins' in google.groups" ```
|
1885
|
+
# Corresponds to the JSON property `attributeCondition`
|
1886
|
+
# @return [String]
|
1887
|
+
attr_accessor :attribute_condition
|
1888
|
+
|
1889
|
+
# Maps attributes from authentication credentials issued by an external identity
|
1890
|
+
# provider to Google Cloud attributes, such as `subject` and `segment`. Each key
|
1891
|
+
# must be a string specifying the Google Cloud IAM attribute to map to. The
|
1892
|
+
# following keys are supported: * `google.subject`: The principal IAM is
|
1893
|
+
# authenticating. You can reference this value in IAM bindings. This is also the
|
1894
|
+
# subject that appears in Cloud Logging logs. Cannot exceed 127 characters. * `
|
1895
|
+
# google.groups`: Groups the external identity belongs to. You can grant groups
|
1896
|
+
# access to resources using an IAM `principalSet` binding; access applies to all
|
1897
|
+
# members of the group. You can also provide custom attributes by specifying `
|
1898
|
+
# attribute.`custom_attribute``, where ``custom_attribute`` is the name of the
|
1899
|
+
# custom attribute to be mapped. You can define a maximum of 50 custom
|
1900
|
+
# attributes. The maximum length of a mapped attribute key is 100 characters,
|
1901
|
+
# and the key may only contain the characters [a-z0-9_]. You can reference these
|
1902
|
+
# attributes in IAM policies to define fine-grained access for a workload to
|
1903
|
+
# Google Cloud resources. For example: * `google.subject`: `principal://iam.
|
1904
|
+
# googleapis.com/projects/`project`/locations/`location`/workloadIdentityPools/`
|
1905
|
+
# pool`/subject/`value`` * `google.groups`: `principalSet://iam.googleapis.com/
|
1906
|
+
# projects/`project`/locations/`location`/workloadIdentityPools/`pool`/group/`
|
1907
|
+
# value`` * `attribute.`custom_attribute``: `principalSet://iam.googleapis.com/
|
1908
|
+
# projects/`project`/locations/`location`/workloadIdentityPools/`pool`/attribute.
|
1909
|
+
# `custom_attribute`/`value`` Each value must be a [Common Expression Language] (
|
1910
|
+
# https://opensource.google/projects/cel) function that maps an identity
|
1911
|
+
# provider credential to the normalized attribute specified by the corresponding
|
1912
|
+
# map key. You can use the `assertion` keyword in the expression to access a
|
1913
|
+
# JSON representation of the authentication credential issued by the provider.
|
1914
|
+
# The maximum length of an attribute mapping expression is 2048 characters. When
|
1915
|
+
# evaluated, the total size of all mapped attributes must not exceed 8KB. For
|
1916
|
+
# AWS providers, if no attribute mapping is defined, the following default
|
1917
|
+
# mapping applies: ``` ` "google.subject":"assertion.arn", "attribute.aws_role":
|
1918
|
+
# "assertion.arn.contains('assumed-role')" " ? assertion.arn.extract('`
|
1919
|
+
# account_arn`assumed-role/')" " + 'assumed-role/'" " + assertion.arn.extract('
|
1920
|
+
# assumed-role/`role_name`/')" " : assertion.arn", ` ``` If any custom attribute
|
1921
|
+
# mappings are defined, they must include a mapping to the `google.subject`
|
1922
|
+
# attribute. For OIDC providers, you must supply a custom mapping, which must
|
1923
|
+
# include the `google.subject` attribute. For example, the following maps the `
|
1924
|
+
# sub` claim of the incoming credential to the `subject` attribute on a Google
|
1925
|
+
# token: ``` `"google.subject": "assertion.sub"` ```
|
1926
|
+
# Corresponds to the JSON property `attributeMapping`
|
1927
|
+
# @return [Hash<String,String>]
|
1928
|
+
attr_accessor :attribute_mapping
|
1929
|
+
|
1930
|
+
# Represents an Amazon Web Services identity provider.
|
1931
|
+
# Corresponds to the JSON property `aws`
|
1932
|
+
# @return [Google::Apis::IamV1::Aws]
|
1933
|
+
attr_accessor :aws
|
1934
|
+
|
1935
|
+
# A description for the provider. Cannot exceed 256 characters.
|
1936
|
+
# Corresponds to the JSON property `description`
|
1937
|
+
# @return [String]
|
1938
|
+
attr_accessor :description
|
1939
|
+
|
1940
|
+
# Whether the provider is disabled. You cannot use a disabled provider to
|
1941
|
+
# exchange tokens. However, existing tokens still grant access.
|
1942
|
+
# Corresponds to the JSON property `disabled`
|
1943
|
+
# @return [Boolean]
|
1944
|
+
attr_accessor :disabled
|
1945
|
+
alias_method :disabled?, :disabled
|
1946
|
+
|
1947
|
+
# A display name for the provider. Cannot exceed 32 characters.
|
1948
|
+
# Corresponds to the JSON property `displayName`
|
1949
|
+
# @return [String]
|
1950
|
+
attr_accessor :display_name
|
1951
|
+
|
1952
|
+
# Output only. The resource name of the provider.
|
1953
|
+
# Corresponds to the JSON property `name`
|
1954
|
+
# @return [String]
|
1955
|
+
attr_accessor :name
|
1956
|
+
|
1957
|
+
# Represents an OpenId Connect 1.0 identity provider.
|
1958
|
+
# Corresponds to the JSON property `oidc`
|
1959
|
+
# @return [Google::Apis::IamV1::Oidc]
|
1960
|
+
attr_accessor :oidc
|
1961
|
+
|
1962
|
+
# Output only. The state of the provider.
|
1963
|
+
# Corresponds to the JSON property `state`
|
1964
|
+
# @return [String]
|
1965
|
+
attr_accessor :state
|
1966
|
+
|
1967
|
+
def initialize(**args)
|
1968
|
+
update!(**args)
|
1969
|
+
end
|
1970
|
+
|
1971
|
+
# Update properties of this object
|
1972
|
+
def update!(**args)
|
1973
|
+
@attribute_condition = args[:attribute_condition] if args.key?(:attribute_condition)
|
1974
|
+
@attribute_mapping = args[:attribute_mapping] if args.key?(:attribute_mapping)
|
1975
|
+
@aws = args[:aws] if args.key?(:aws)
|
1976
|
+
@description = args[:description] if args.key?(:description)
|
1977
|
+
@disabled = args[:disabled] if args.key?(:disabled)
|
1978
|
+
@display_name = args[:display_name] if args.key?(:display_name)
|
1979
|
+
@name = args[:name] if args.key?(:name)
|
1980
|
+
@oidc = args[:oidc] if args.key?(:oidc)
|
1981
|
+
@state = args[:state] if args.key?(:state)
|
1982
|
+
end
|
1983
|
+
end
|
1691
1984
|
end
|
1692
1985
|
end
|
1693
1986
|
end
|
@@ -16,13 +16,13 @@ module Google
|
|
16
16
|
module Apis
|
17
17
|
module IamV1
|
18
18
|
# Version of the google-apis-iam_v1 gem
|
19
|
-
GEM_VERSION = "0.
|
19
|
+
GEM_VERSION = "0.6.0"
|
20
20
|
|
21
21
|
# Version of the code generator used to generate this client
|
22
|
-
GENERATOR_VERSION = "0.
|
22
|
+
GENERATOR_VERSION = "0.2.0"
|
23
23
|
|
24
24
|
# Revision of the discovery document this client was generated from
|
25
|
-
REVISION = "
|
25
|
+
REVISION = "20210519"
|
26
26
|
end
|
27
27
|
end
|
28
28
|
end
|
@@ -52,6 +52,12 @@ module Google
|
|
52
52
|
include Google::Apis::Core::JsonObjectSupport
|
53
53
|
end
|
54
54
|
|
55
|
+
class Aws
|
56
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
57
|
+
|
58
|
+
include Google::Apis::Core::JsonObjectSupport
|
59
|
+
end
|
60
|
+
|
55
61
|
class Binding
|
56
62
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
57
63
|
|
@@ -142,6 +148,24 @@ module Google
|
|
142
148
|
include Google::Apis::Core::JsonObjectSupport
|
143
149
|
end
|
144
150
|
|
151
|
+
class ListWorkloadIdentityPoolProvidersResponse
|
152
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
153
|
+
|
154
|
+
include Google::Apis::Core::JsonObjectSupport
|
155
|
+
end
|
156
|
+
|
157
|
+
class ListWorkloadIdentityPoolsResponse
|
158
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
159
|
+
|
160
|
+
include Google::Apis::Core::JsonObjectSupport
|
161
|
+
end
|
162
|
+
|
163
|
+
class Oidc
|
164
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
165
|
+
|
166
|
+
include Google::Apis::Core::JsonObjectSupport
|
167
|
+
end
|
168
|
+
|
145
169
|
class Operation
|
146
170
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
147
171
|
|
@@ -298,12 +322,36 @@ module Google
|
|
298
322
|
include Google::Apis::Core::JsonObjectSupport
|
299
323
|
end
|
300
324
|
|
325
|
+
class UndeleteWorkloadIdentityPoolProviderRequest
|
326
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
327
|
+
|
328
|
+
include Google::Apis::Core::JsonObjectSupport
|
329
|
+
end
|
330
|
+
|
331
|
+
class UndeleteWorkloadIdentityPoolRequest
|
332
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
333
|
+
|
334
|
+
include Google::Apis::Core::JsonObjectSupport
|
335
|
+
end
|
336
|
+
|
301
337
|
class UploadServiceAccountKeyRequest
|
302
338
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
303
339
|
|
304
340
|
include Google::Apis::Core::JsonObjectSupport
|
305
341
|
end
|
306
342
|
|
343
|
+
class WorkloadIdentityPool
|
344
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
345
|
+
|
346
|
+
include Google::Apis::Core::JsonObjectSupport
|
347
|
+
end
|
348
|
+
|
349
|
+
class WorkloadIdentityPoolProvider
|
350
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
351
|
+
|
352
|
+
include Google::Apis::Core::JsonObjectSupport
|
353
|
+
end
|
354
|
+
|
307
355
|
class AdminAuditData
|
308
356
|
# @private
|
309
357
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -344,6 +392,13 @@ module Google
|
|
344
392
|
end
|
345
393
|
end
|
346
394
|
|
395
|
+
class Aws
|
396
|
+
# @private
|
397
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
398
|
+
property :account_id, as: 'accountId'
|
399
|
+
end
|
400
|
+
end
|
401
|
+
|
347
402
|
class Binding
|
348
403
|
# @private
|
349
404
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -474,6 +529,32 @@ module Google
|
|
474
529
|
end
|
475
530
|
end
|
476
531
|
|
532
|
+
class ListWorkloadIdentityPoolProvidersResponse
|
533
|
+
# @private
|
534
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
535
|
+
property :next_page_token, as: 'nextPageToken'
|
536
|
+
collection :workload_identity_pool_providers, as: 'workloadIdentityPoolProviders', class: Google::Apis::IamV1::WorkloadIdentityPoolProvider, decorator: Google::Apis::IamV1::WorkloadIdentityPoolProvider::Representation
|
537
|
+
|
538
|
+
end
|
539
|
+
end
|
540
|
+
|
541
|
+
class ListWorkloadIdentityPoolsResponse
|
542
|
+
# @private
|
543
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
544
|
+
property :next_page_token, as: 'nextPageToken'
|
545
|
+
collection :workload_identity_pools, as: 'workloadIdentityPools', class: Google::Apis::IamV1::WorkloadIdentityPool, decorator: Google::Apis::IamV1::WorkloadIdentityPool::Representation
|
546
|
+
|
547
|
+
end
|
548
|
+
end
|
549
|
+
|
550
|
+
class Oidc
|
551
|
+
# @private
|
552
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
553
|
+
collection :allowed_audiences, as: 'allowedAudiences'
|
554
|
+
property :issuer_uri, as: 'issuerUri'
|
555
|
+
end
|
556
|
+
end
|
557
|
+
|
477
558
|
class Operation
|
478
559
|
# @private
|
479
560
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -715,12 +796,52 @@ module Google
|
|
715
796
|
end
|
716
797
|
end
|
717
798
|
|
799
|
+
class UndeleteWorkloadIdentityPoolProviderRequest
|
800
|
+
# @private
|
801
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
802
|
+
end
|
803
|
+
end
|
804
|
+
|
805
|
+
class UndeleteWorkloadIdentityPoolRequest
|
806
|
+
# @private
|
807
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
808
|
+
end
|
809
|
+
end
|
810
|
+
|
718
811
|
class UploadServiceAccountKeyRequest
|
719
812
|
# @private
|
720
813
|
class Representation < Google::Apis::Core::JsonRepresentation
|
721
814
|
property :public_key_data, :base64 => true, as: 'publicKeyData'
|
722
815
|
end
|
723
816
|
end
|
817
|
+
|
818
|
+
class WorkloadIdentityPool
|
819
|
+
# @private
|
820
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
821
|
+
property :description, as: 'description'
|
822
|
+
property :disabled, as: 'disabled'
|
823
|
+
property :display_name, as: 'displayName'
|
824
|
+
property :name, as: 'name'
|
825
|
+
property :state, as: 'state'
|
826
|
+
end
|
827
|
+
end
|
828
|
+
|
829
|
+
class WorkloadIdentityPoolProvider
|
830
|
+
# @private
|
831
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
832
|
+
property :attribute_condition, as: 'attributeCondition'
|
833
|
+
hash :attribute_mapping, as: 'attributeMapping'
|
834
|
+
property :aws, as: 'aws', class: Google::Apis::IamV1::Aws, decorator: Google::Apis::IamV1::Aws::Representation
|
835
|
+
|
836
|
+
property :description, as: 'description'
|
837
|
+
property :disabled, as: 'disabled'
|
838
|
+
property :display_name, as: 'displayName'
|
839
|
+
property :name, as: 'name'
|
840
|
+
property :oidc, as: 'oidc', class: Google::Apis::IamV1::Oidc, decorator: Google::Apis::IamV1::Oidc::Representation
|
841
|
+
|
842
|
+
property :state, as: 'state'
|
843
|
+
end
|
844
|
+
end
|
724
845
|
end
|
725
846
|
end
|
726
847
|
end
|
@@ -454,6 +454,225 @@ module Google
|
|
454
454
|
execute_or_queue_command(command, &block)
|
455
455
|
end
|
456
456
|
|
457
|
+
# Creates a new WorkloadIdentityPool. You cannot reuse the name of a deleted
|
458
|
+
# pool until 30 days after deletion.
|
459
|
+
# @param [String] parent
|
460
|
+
# Required. The parent resource to create the pool in. The only supported
|
461
|
+
# location is `global`.
|
462
|
+
# @param [Google::Apis::IamV1::WorkloadIdentityPool] workload_identity_pool_object
|
463
|
+
# @param [String] workload_identity_pool_id
|
464
|
+
# Required. The ID to use for the pool, which becomes the final component of the
|
465
|
+
# resource name. This value should be 4-32 characters, and may contain the
|
466
|
+
# characters [a-z0-9-]. The prefix `gcp-` is reserved for use by Google, and may
|
467
|
+
# not be specified.
|
468
|
+
# @param [String] fields
|
469
|
+
# Selector specifying which fields to include in a partial response.
|
470
|
+
# @param [String] quota_user
|
471
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
472
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
473
|
+
# @param [Google::Apis::RequestOptions] options
|
474
|
+
# Request-specific options
|
475
|
+
#
|
476
|
+
# @yield [result, err] Result & error if block supplied
|
477
|
+
# @yieldparam result [Google::Apis::IamV1::Operation] parsed result object
|
478
|
+
# @yieldparam err [StandardError] error object if request failed
|
479
|
+
#
|
480
|
+
# @return [Google::Apis::IamV1::Operation]
|
481
|
+
#
|
482
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
483
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
484
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
485
|
+
def create_project_location_workload_identity_pool(parent, workload_identity_pool_object = nil, workload_identity_pool_id: nil, fields: nil, quota_user: nil, options: nil, &block)
|
486
|
+
command = make_simple_command(:post, 'v1/{+parent}/workloadIdentityPools', options)
|
487
|
+
command.request_representation = Google::Apis::IamV1::WorkloadIdentityPool::Representation
|
488
|
+
command.request_object = workload_identity_pool_object
|
489
|
+
command.response_representation = Google::Apis::IamV1::Operation::Representation
|
490
|
+
command.response_class = Google::Apis::IamV1::Operation
|
491
|
+
command.params['parent'] = parent unless parent.nil?
|
492
|
+
command.query['workloadIdentityPoolId'] = workload_identity_pool_id unless workload_identity_pool_id.nil?
|
493
|
+
command.query['fields'] = fields unless fields.nil?
|
494
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
495
|
+
execute_or_queue_command(command, &block)
|
496
|
+
end
|
497
|
+
|
498
|
+
# Deletes a WorkloadIdentityPool. You cannot use a deleted pool to exchange
|
499
|
+
# external credentials for Google Cloud credentials. However, deletion does not
|
500
|
+
# revoke credentials that have already been issued. Credentials issued for a
|
501
|
+
# deleted pool do not grant access to resources. If the pool is undeleted, and
|
502
|
+
# the credentials are not expired, they grant access again. You can undelete a
|
503
|
+
# pool for 30 days. After 30 days, deletion is permanent. You cannot update
|
504
|
+
# deleted pools. However, you can view and list them.
|
505
|
+
# @param [String] name
|
506
|
+
# Required. The name of the pool to delete.
|
507
|
+
# @param [String] fields
|
508
|
+
# Selector specifying which fields to include in a partial response.
|
509
|
+
# @param [String] quota_user
|
510
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
511
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
512
|
+
# @param [Google::Apis::RequestOptions] options
|
513
|
+
# Request-specific options
|
514
|
+
#
|
515
|
+
# @yield [result, err] Result & error if block supplied
|
516
|
+
# @yieldparam result [Google::Apis::IamV1::Operation] parsed result object
|
517
|
+
# @yieldparam err [StandardError] error object if request failed
|
518
|
+
#
|
519
|
+
# @return [Google::Apis::IamV1::Operation]
|
520
|
+
#
|
521
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
522
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
523
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
524
|
+
def delete_project_location_workload_identity_pool(name, fields: nil, quota_user: nil, options: nil, &block)
|
525
|
+
command = make_simple_command(:delete, 'v1/{+name}', options)
|
526
|
+
command.response_representation = Google::Apis::IamV1::Operation::Representation
|
527
|
+
command.response_class = Google::Apis::IamV1::Operation
|
528
|
+
command.params['name'] = name unless name.nil?
|
529
|
+
command.query['fields'] = fields unless fields.nil?
|
530
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
531
|
+
execute_or_queue_command(command, &block)
|
532
|
+
end
|
533
|
+
|
534
|
+
# Gets an individual WorkloadIdentityPool.
|
535
|
+
# @param [String] name
|
536
|
+
# Required. The name of the pool to retrieve.
|
537
|
+
# @param [String] fields
|
538
|
+
# Selector specifying which fields to include in a partial response.
|
539
|
+
# @param [String] quota_user
|
540
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
541
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
542
|
+
# @param [Google::Apis::RequestOptions] options
|
543
|
+
# Request-specific options
|
544
|
+
#
|
545
|
+
# @yield [result, err] Result & error if block supplied
|
546
|
+
# @yieldparam result [Google::Apis::IamV1::WorkloadIdentityPool] parsed result object
|
547
|
+
# @yieldparam err [StandardError] error object if request failed
|
548
|
+
#
|
549
|
+
# @return [Google::Apis::IamV1::WorkloadIdentityPool]
|
550
|
+
#
|
551
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
552
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
553
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
554
|
+
def get_project_location_workload_identity_pool(name, fields: nil, quota_user: nil, options: nil, &block)
|
555
|
+
command = make_simple_command(:get, 'v1/{+name}', options)
|
556
|
+
command.response_representation = Google::Apis::IamV1::WorkloadIdentityPool::Representation
|
557
|
+
command.response_class = Google::Apis::IamV1::WorkloadIdentityPool
|
558
|
+
command.params['name'] = name unless name.nil?
|
559
|
+
command.query['fields'] = fields unless fields.nil?
|
560
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
561
|
+
execute_or_queue_command(command, &block)
|
562
|
+
end
|
563
|
+
|
564
|
+
# Lists all non-deleted WorkloadIdentityPools in a project. If `show_deleted` is
|
565
|
+
# set to `true`, then deleted pools are also listed.
|
566
|
+
# @param [String] parent
|
567
|
+
# Required. The parent resource to list pools for.
|
568
|
+
# @param [Fixnum] page_size
|
569
|
+
# The maximum number of pools to return. If unspecified, at most 50 pools are
|
570
|
+
# returned. The maximum value is 1000; values above are 1000 truncated to 1000.
|
571
|
+
# @param [String] page_token
|
572
|
+
# A page token, received from a previous `ListWorkloadIdentityPools` call.
|
573
|
+
# Provide this to retrieve the subsequent page.
|
574
|
+
# @param [Boolean] show_deleted
|
575
|
+
# Whether to return soft-deleted pools.
|
576
|
+
# @param [String] fields
|
577
|
+
# Selector specifying which fields to include in a partial response.
|
578
|
+
# @param [String] quota_user
|
579
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
580
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
581
|
+
# @param [Google::Apis::RequestOptions] options
|
582
|
+
# Request-specific options
|
583
|
+
#
|
584
|
+
# @yield [result, err] Result & error if block supplied
|
585
|
+
# @yieldparam result [Google::Apis::IamV1::ListWorkloadIdentityPoolsResponse] parsed result object
|
586
|
+
# @yieldparam err [StandardError] error object if request failed
|
587
|
+
#
|
588
|
+
# @return [Google::Apis::IamV1::ListWorkloadIdentityPoolsResponse]
|
589
|
+
#
|
590
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
591
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
592
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
593
|
+
def list_project_location_workload_identity_pools(parent, page_size: nil, page_token: nil, show_deleted: nil, fields: nil, quota_user: nil, options: nil, &block)
|
594
|
+
command = make_simple_command(:get, 'v1/{+parent}/workloadIdentityPools', options)
|
595
|
+
command.response_representation = Google::Apis::IamV1::ListWorkloadIdentityPoolsResponse::Representation
|
596
|
+
command.response_class = Google::Apis::IamV1::ListWorkloadIdentityPoolsResponse
|
597
|
+
command.params['parent'] = parent unless parent.nil?
|
598
|
+
command.query['pageSize'] = page_size unless page_size.nil?
|
599
|
+
command.query['pageToken'] = page_token unless page_token.nil?
|
600
|
+
command.query['showDeleted'] = show_deleted unless show_deleted.nil?
|
601
|
+
command.query['fields'] = fields unless fields.nil?
|
602
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
603
|
+
execute_or_queue_command(command, &block)
|
604
|
+
end
|
605
|
+
|
606
|
+
# Updates an existing WorkloadIdentityPool.
|
607
|
+
# @param [String] name
|
608
|
+
# Output only. The resource name of the pool.
|
609
|
+
# @param [Google::Apis::IamV1::WorkloadIdentityPool] workload_identity_pool_object
|
610
|
+
# @param [String] update_mask
|
611
|
+
# Required. The list of fields update.
|
612
|
+
# @param [String] fields
|
613
|
+
# Selector specifying which fields to include in a partial response.
|
614
|
+
# @param [String] quota_user
|
615
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
616
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
617
|
+
# @param [Google::Apis::RequestOptions] options
|
618
|
+
# Request-specific options
|
619
|
+
#
|
620
|
+
# @yield [result, err] Result & error if block supplied
|
621
|
+
# @yieldparam result [Google::Apis::IamV1::Operation] parsed result object
|
622
|
+
# @yieldparam err [StandardError] error object if request failed
|
623
|
+
#
|
624
|
+
# @return [Google::Apis::IamV1::Operation]
|
625
|
+
#
|
626
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
627
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
628
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
629
|
+
def patch_project_location_workload_identity_pool(name, workload_identity_pool_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block)
|
630
|
+
command = make_simple_command(:patch, 'v1/{+name}', options)
|
631
|
+
command.request_representation = Google::Apis::IamV1::WorkloadIdentityPool::Representation
|
632
|
+
command.request_object = workload_identity_pool_object
|
633
|
+
command.response_representation = Google::Apis::IamV1::Operation::Representation
|
634
|
+
command.response_class = Google::Apis::IamV1::Operation
|
635
|
+
command.params['name'] = name unless name.nil?
|
636
|
+
command.query['updateMask'] = update_mask unless update_mask.nil?
|
637
|
+
command.query['fields'] = fields unless fields.nil?
|
638
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
639
|
+
execute_or_queue_command(command, &block)
|
640
|
+
end
|
641
|
+
|
642
|
+
# Undeletes a WorkloadIdentityPool, as long as it was deleted fewer than 30 days
|
643
|
+
# ago.
|
644
|
+
# @param [String] name
|
645
|
+
# Required. The name of the pool to undelete.
|
646
|
+
# @param [Google::Apis::IamV1::UndeleteWorkloadIdentityPoolRequest] undelete_workload_identity_pool_request_object
|
647
|
+
# @param [String] fields
|
648
|
+
# Selector specifying which fields to include in a partial response.
|
649
|
+
# @param [String] quota_user
|
650
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
651
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
652
|
+
# @param [Google::Apis::RequestOptions] options
|
653
|
+
# Request-specific options
|
654
|
+
#
|
655
|
+
# @yield [result, err] Result & error if block supplied
|
656
|
+
# @yieldparam result [Google::Apis::IamV1::Operation] parsed result object
|
657
|
+
# @yieldparam err [StandardError] error object if request failed
|
658
|
+
#
|
659
|
+
# @return [Google::Apis::IamV1::Operation]
|
660
|
+
#
|
661
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
662
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
663
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
664
|
+
def undelete_workload_identity_pool(name, undelete_workload_identity_pool_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
|
665
|
+
command = make_simple_command(:post, 'v1/{+name}:undelete', options)
|
666
|
+
command.request_representation = Google::Apis::IamV1::UndeleteWorkloadIdentityPoolRequest::Representation
|
667
|
+
command.request_object = undelete_workload_identity_pool_request_object
|
668
|
+
command.response_representation = Google::Apis::IamV1::Operation::Representation
|
669
|
+
command.response_class = Google::Apis::IamV1::Operation
|
670
|
+
command.params['name'] = name unless name.nil?
|
671
|
+
command.query['fields'] = fields unless fields.nil?
|
672
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
673
|
+
execute_or_queue_command(command, &block)
|
674
|
+
end
|
675
|
+
|
457
676
|
# Gets the latest state of a long-running operation. Clients can use this method
|
458
677
|
# to poll the operation result at intervals as recommended by the API service.
|
459
678
|
# @param [String] name
|
@@ -485,6 +704,222 @@ module Google
|
|
485
704
|
execute_or_queue_command(command, &block)
|
486
705
|
end
|
487
706
|
|
707
|
+
# Creates a new WorkloadIdentityPoolProvider in a WorkloadIdentityPool. You
|
708
|
+
# cannot reuse the name of a deleted provider until 30 days after deletion.
|
709
|
+
# @param [String] parent
|
710
|
+
# Required. The pool to create this provider in.
|
711
|
+
# @param [Google::Apis::IamV1::WorkloadIdentityPoolProvider] workload_identity_pool_provider_object
|
712
|
+
# @param [String] workload_identity_pool_provider_id
|
713
|
+
# Required. The ID for the provider, which becomes the final component of the
|
714
|
+
# resource name. This value must be 4-32 characters, and may contain the
|
715
|
+
# characters [a-z0-9-]. The prefix `gcp-` is reserved for use by Google, and may
|
716
|
+
# not be specified.
|
717
|
+
# @param [String] fields
|
718
|
+
# Selector specifying which fields to include in a partial response.
|
719
|
+
# @param [String] quota_user
|
720
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
721
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
722
|
+
# @param [Google::Apis::RequestOptions] options
|
723
|
+
# Request-specific options
|
724
|
+
#
|
725
|
+
# @yield [result, err] Result & error if block supplied
|
726
|
+
# @yieldparam result [Google::Apis::IamV1::Operation] parsed result object
|
727
|
+
# @yieldparam err [StandardError] error object if request failed
|
728
|
+
#
|
729
|
+
# @return [Google::Apis::IamV1::Operation]
|
730
|
+
#
|
731
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
732
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
733
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
734
|
+
def create_project_location_workload_identity_pool_provider(parent, workload_identity_pool_provider_object = nil, workload_identity_pool_provider_id: nil, fields: nil, quota_user: nil, options: nil, &block)
|
735
|
+
command = make_simple_command(:post, 'v1/{+parent}/providers', options)
|
736
|
+
command.request_representation = Google::Apis::IamV1::WorkloadIdentityPoolProvider::Representation
|
737
|
+
command.request_object = workload_identity_pool_provider_object
|
738
|
+
command.response_representation = Google::Apis::IamV1::Operation::Representation
|
739
|
+
command.response_class = Google::Apis::IamV1::Operation
|
740
|
+
command.params['parent'] = parent unless parent.nil?
|
741
|
+
command.query['workloadIdentityPoolProviderId'] = workload_identity_pool_provider_id unless workload_identity_pool_provider_id.nil?
|
742
|
+
command.query['fields'] = fields unless fields.nil?
|
743
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
744
|
+
execute_or_queue_command(command, &block)
|
745
|
+
end
|
746
|
+
|
747
|
+
# Deletes a WorkloadIdentityPoolProvider. Deleting a provider does not revoke
|
748
|
+
# credentials that have already been issued; they continue to grant access. You
|
749
|
+
# can undelete a provider for 30 days. After 30 days, deletion is permanent. You
|
750
|
+
# cannot update deleted providers. However, you can view and list them.
|
751
|
+
# @param [String] name
|
752
|
+
# Required. The name of the provider to delete.
|
753
|
+
# @param [String] fields
|
754
|
+
# Selector specifying which fields to include in a partial response.
|
755
|
+
# @param [String] quota_user
|
756
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
757
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
758
|
+
# @param [Google::Apis::RequestOptions] options
|
759
|
+
# Request-specific options
|
760
|
+
#
|
761
|
+
# @yield [result, err] Result & error if block supplied
|
762
|
+
# @yieldparam result [Google::Apis::IamV1::Operation] parsed result object
|
763
|
+
# @yieldparam err [StandardError] error object if request failed
|
764
|
+
#
|
765
|
+
# @return [Google::Apis::IamV1::Operation]
|
766
|
+
#
|
767
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
768
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
769
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
770
|
+
def delete_project_location_workload_identity_pool_provider(name, fields: nil, quota_user: nil, options: nil, &block)
|
771
|
+
command = make_simple_command(:delete, 'v1/{+name}', options)
|
772
|
+
command.response_representation = Google::Apis::IamV1::Operation::Representation
|
773
|
+
command.response_class = Google::Apis::IamV1::Operation
|
774
|
+
command.params['name'] = name unless name.nil?
|
775
|
+
command.query['fields'] = fields unless fields.nil?
|
776
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
777
|
+
execute_or_queue_command(command, &block)
|
778
|
+
end
|
779
|
+
|
780
|
+
# Gets an individual WorkloadIdentityPoolProvider.
|
781
|
+
# @param [String] name
|
782
|
+
# Required. The name of the provider to retrieve.
|
783
|
+
# @param [String] fields
|
784
|
+
# Selector specifying which fields to include in a partial response.
|
785
|
+
# @param [String] quota_user
|
786
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
787
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
788
|
+
# @param [Google::Apis::RequestOptions] options
|
789
|
+
# Request-specific options
|
790
|
+
#
|
791
|
+
# @yield [result, err] Result & error if block supplied
|
792
|
+
# @yieldparam result [Google::Apis::IamV1::WorkloadIdentityPoolProvider] parsed result object
|
793
|
+
# @yieldparam err [StandardError] error object if request failed
|
794
|
+
#
|
795
|
+
# @return [Google::Apis::IamV1::WorkloadIdentityPoolProvider]
|
796
|
+
#
|
797
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
798
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
799
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
800
|
+
def get_project_location_workload_identity_pool_provider(name, fields: nil, quota_user: nil, options: nil, &block)
|
801
|
+
command = make_simple_command(:get, 'v1/{+name}', options)
|
802
|
+
command.response_representation = Google::Apis::IamV1::WorkloadIdentityPoolProvider::Representation
|
803
|
+
command.response_class = Google::Apis::IamV1::WorkloadIdentityPoolProvider
|
804
|
+
command.params['name'] = name unless name.nil?
|
805
|
+
command.query['fields'] = fields unless fields.nil?
|
806
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
807
|
+
execute_or_queue_command(command, &block)
|
808
|
+
end
|
809
|
+
|
810
|
+
# Lists all non-deleted WorkloadIdentityPoolProviders in a WorkloadIdentityPool.
|
811
|
+
# If `show_deleted` is set to `true`, then deleted providers are also listed.
|
812
|
+
# @param [String] parent
|
813
|
+
# Required. The pool to list providers for.
|
814
|
+
# @param [Fixnum] page_size
|
815
|
+
# The maximum number of providers to return. If unspecified, at most 50
|
816
|
+
# providers are returned. The maximum value is 100; values above 100 are
|
817
|
+
# truncated to 100.
|
818
|
+
# @param [String] page_token
|
819
|
+
# A page token, received from a previous `ListWorkloadIdentityPoolProviders`
|
820
|
+
# call. Provide this to retrieve the subsequent page.
|
821
|
+
# @param [Boolean] show_deleted
|
822
|
+
# Whether to return soft-deleted providers.
|
823
|
+
# @param [String] fields
|
824
|
+
# Selector specifying which fields to include in a partial response.
|
825
|
+
# @param [String] quota_user
|
826
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
827
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
828
|
+
# @param [Google::Apis::RequestOptions] options
|
829
|
+
# Request-specific options
|
830
|
+
#
|
831
|
+
# @yield [result, err] Result & error if block supplied
|
832
|
+
# @yieldparam result [Google::Apis::IamV1::ListWorkloadIdentityPoolProvidersResponse] parsed result object
|
833
|
+
# @yieldparam err [StandardError] error object if request failed
|
834
|
+
#
|
835
|
+
# @return [Google::Apis::IamV1::ListWorkloadIdentityPoolProvidersResponse]
|
836
|
+
#
|
837
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
838
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
839
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
840
|
+
def list_project_location_workload_identity_pool_providers(parent, page_size: nil, page_token: nil, show_deleted: nil, fields: nil, quota_user: nil, options: nil, &block)
|
841
|
+
command = make_simple_command(:get, 'v1/{+parent}/providers', options)
|
842
|
+
command.response_representation = Google::Apis::IamV1::ListWorkloadIdentityPoolProvidersResponse::Representation
|
843
|
+
command.response_class = Google::Apis::IamV1::ListWorkloadIdentityPoolProvidersResponse
|
844
|
+
command.params['parent'] = parent unless parent.nil?
|
845
|
+
command.query['pageSize'] = page_size unless page_size.nil?
|
846
|
+
command.query['pageToken'] = page_token unless page_token.nil?
|
847
|
+
command.query['showDeleted'] = show_deleted unless show_deleted.nil?
|
848
|
+
command.query['fields'] = fields unless fields.nil?
|
849
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
850
|
+
execute_or_queue_command(command, &block)
|
851
|
+
end
|
852
|
+
|
853
|
+
# Updates an existing WorkloadIdentityPoolProvider.
|
854
|
+
# @param [String] name
|
855
|
+
# Output only. The resource name of the provider.
|
856
|
+
# @param [Google::Apis::IamV1::WorkloadIdentityPoolProvider] workload_identity_pool_provider_object
|
857
|
+
# @param [String] update_mask
|
858
|
+
# Required. The list of fields to update.
|
859
|
+
# @param [String] fields
|
860
|
+
# Selector specifying which fields to include in a partial response.
|
861
|
+
# @param [String] quota_user
|
862
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
863
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
864
|
+
# @param [Google::Apis::RequestOptions] options
|
865
|
+
# Request-specific options
|
866
|
+
#
|
867
|
+
# @yield [result, err] Result & error if block supplied
|
868
|
+
# @yieldparam result [Google::Apis::IamV1::Operation] parsed result object
|
869
|
+
# @yieldparam err [StandardError] error object if request failed
|
870
|
+
#
|
871
|
+
# @return [Google::Apis::IamV1::Operation]
|
872
|
+
#
|
873
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
874
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
875
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
876
|
+
def patch_project_location_workload_identity_pool_provider(name, workload_identity_pool_provider_object = nil, update_mask: nil, fields: nil, quota_user: nil, options: nil, &block)
|
877
|
+
command = make_simple_command(:patch, 'v1/{+name}', options)
|
878
|
+
command.request_representation = Google::Apis::IamV1::WorkloadIdentityPoolProvider::Representation
|
879
|
+
command.request_object = workload_identity_pool_provider_object
|
880
|
+
command.response_representation = Google::Apis::IamV1::Operation::Representation
|
881
|
+
command.response_class = Google::Apis::IamV1::Operation
|
882
|
+
command.params['name'] = name unless name.nil?
|
883
|
+
command.query['updateMask'] = update_mask unless update_mask.nil?
|
884
|
+
command.query['fields'] = fields unless fields.nil?
|
885
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
886
|
+
execute_or_queue_command(command, &block)
|
887
|
+
end
|
888
|
+
|
889
|
+
# Undeletes a WorkloadIdentityPoolProvider, as long as it was deleted fewer than
|
890
|
+
# 30 days ago.
|
891
|
+
# @param [String] name
|
892
|
+
# Required. The name of the provider to undelete.
|
893
|
+
# @param [Google::Apis::IamV1::UndeleteWorkloadIdentityPoolProviderRequest] undelete_workload_identity_pool_provider_request_object
|
894
|
+
# @param [String] fields
|
895
|
+
# Selector specifying which fields to include in a partial response.
|
896
|
+
# @param [String] quota_user
|
897
|
+
# Available to use for quota purposes for server-side applications. Can be any
|
898
|
+
# arbitrary string assigned to a user, but should not exceed 40 characters.
|
899
|
+
# @param [Google::Apis::RequestOptions] options
|
900
|
+
# Request-specific options
|
901
|
+
#
|
902
|
+
# @yield [result, err] Result & error if block supplied
|
903
|
+
# @yieldparam result [Google::Apis::IamV1::Operation] parsed result object
|
904
|
+
# @yieldparam err [StandardError] error object if request failed
|
905
|
+
#
|
906
|
+
# @return [Google::Apis::IamV1::Operation]
|
907
|
+
#
|
908
|
+
# @raise [Google::Apis::ServerError] An error occurred on the server and the request can be retried
|
909
|
+
# @raise [Google::Apis::ClientError] The request is invalid and should not be retried without modification
|
910
|
+
# @raise [Google::Apis::AuthorizationError] Authorization is required
|
911
|
+
def undelete_workload_identity_pool_provider(name, undelete_workload_identity_pool_provider_request_object = nil, fields: nil, quota_user: nil, options: nil, &block)
|
912
|
+
command = make_simple_command(:post, 'v1/{+name}:undelete', options)
|
913
|
+
command.request_representation = Google::Apis::IamV1::UndeleteWorkloadIdentityPoolProviderRequest::Representation
|
914
|
+
command.request_object = undelete_workload_identity_pool_provider_request_object
|
915
|
+
command.response_representation = Google::Apis::IamV1::Operation::Representation
|
916
|
+
command.response_class = Google::Apis::IamV1::Operation
|
917
|
+
command.params['name'] = name unless name.nil?
|
918
|
+
command.query['fields'] = fields unless fields.nil?
|
919
|
+
command.query['quotaUser'] = quota_user unless quota_user.nil?
|
920
|
+
execute_or_queue_command(command, &block)
|
921
|
+
end
|
922
|
+
|
488
923
|
# Gets the latest state of a long-running operation. Clients can use this method
|
489
924
|
# to poll the operation result at intervals as recommended by the API service.
|
490
925
|
# @param [String] name
|
@@ -1192,13 +1627,12 @@ module Google
|
|
1192
1627
|
execute_or_queue_command(command, &block)
|
1193
1628
|
end
|
1194
1629
|
|
1195
|
-
# **Note:** This method is deprecated
|
1196
|
-
#
|
1197
|
-
#
|
1198
|
-
#
|
1199
|
-
#
|
1200
|
-
#
|
1201
|
-
# ServiceAccount.
|
1630
|
+
# **Note:** This method is deprecated. Use the [`signBlob`](https://cloud.google.
|
1631
|
+
# com/iam/help/rest-credentials/v1/projects.serviceAccounts/signBlob) method in
|
1632
|
+
# the IAM Service Account Credentials API instead. If you currently use this
|
1633
|
+
# method, see the [migration guide](https://cloud.google.com/iam/help/
|
1634
|
+
# credentials/migrate-api) for instructions. Signs a blob using the system-
|
1635
|
+
# managed private key for a ServiceAccount.
|
1202
1636
|
# @param [String] name
|
1203
1637
|
# Required. Deprecated. [Migrate to Service Account Credentials API](https://
|
1204
1638
|
# cloud.google.com/iam/help/credentials/migrate-api). The resource name of the
|
@@ -1236,12 +1670,12 @@ module Google
|
|
1236
1670
|
execute_or_queue_command(command, &block)
|
1237
1671
|
end
|
1238
1672
|
|
1239
|
-
# **Note:** This method is deprecated
|
1240
|
-
#
|
1241
|
-
#
|
1242
|
-
#
|
1243
|
-
#
|
1244
|
-
#
|
1673
|
+
# **Note:** This method is deprecated. Use the [`signJwt`](https://cloud.google.
|
1674
|
+
# com/iam/help/rest-credentials/v1/projects.serviceAccounts/signJwt) method in
|
1675
|
+
# the IAM Service Account Credentials API instead. If you currently use this
|
1676
|
+
# method, see the [migration guide](https://cloud.google.com/iam/help/
|
1677
|
+
# credentials/migrate-api) for instructions. Signs a JSON Web Token (JWT) using
|
1678
|
+
# the system-managed private key for a ServiceAccount.
|
1245
1679
|
# @param [String] name
|
1246
1680
|
# Required. Deprecated. [Migrate to Service Account Credentials API](https://
|
1247
1681
|
# cloud.google.com/iam/help/credentials/migrate-api). The resource name of the
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-apis-iam_v1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.6.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2021-
|
11
|
+
date: 2021-05-24 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: google-apis-core
|
@@ -53,7 +53,7 @@ licenses:
|
|
53
53
|
metadata:
|
54
54
|
bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
|
55
55
|
changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-iam_v1/CHANGELOG.md
|
56
|
-
documentation_uri: https://googleapis.dev/ruby/google-apis-iam_v1/v0.
|
56
|
+
documentation_uri: https://googleapis.dev/ruby/google-apis-iam_v1/v0.6.0
|
57
57
|
source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-iam_v1
|
58
58
|
post_install_message:
|
59
59
|
rdoc_options: []
|
@@ -63,14 +63,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
63
63
|
requirements:
|
64
64
|
- - ">="
|
65
65
|
- !ruby/object:Gem::Version
|
66
|
-
version: '2.
|
66
|
+
version: '2.5'
|
67
67
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
68
68
|
requirements:
|
69
69
|
- - ">="
|
70
70
|
- !ruby/object:Gem::Version
|
71
71
|
version: '0'
|
72
72
|
requirements: []
|
73
|
-
rubygems_version: 3.
|
73
|
+
rubygems_version: 3.2.17
|
74
74
|
signing_key:
|
75
75
|
specification_version: 4
|
76
76
|
summary: Simple REST client for Identity and Access Management (IAM) API V1
|