google-apis-iam_v1 0.49.0 → 0.51.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +8 -0
- data/lib/google/apis/iam_v1/classes.rb +87 -29
- data/lib/google/apis/iam_v1/gem_version.rb +2 -2
- data/lib/google/apis/iam_v1/representations.rb +30 -0
- metadata +3 -3
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 23aa52e3052103be92a0e9cbd333aacdc63b18cfa7a450d6805a13887a7fc18c
|
4
|
+
data.tar.gz: 2a99e49e4cd51413b5d0d8c105eea044205c8973bfc2636e1c236cabdfaf016e
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 3f4906f88431e61d5b2b36b048073c190c0dc4527fcdda7f26fd47b095823797d683570aabcb112af3d3a67e24fae651fbe9cb46c85f23662386e1423731b3bc
|
7
|
+
data.tar.gz: 8cad11bbef857ae02797d670ff4770531181fd4fc5b628989e6d5d09288b43591d1c33f537a1c96670af1fb633990169ea17e48bed288594ba27f47291e80500
|
data/CHANGELOG.md
CHANGED
@@ -1,5 +1,13 @@
|
|
1
1
|
# Release history for google-apis-iam_v1
|
2
2
|
|
3
|
+
### v0.51.0 (2023-12-10)
|
4
|
+
|
5
|
+
* Regenerated from discovery document revision 20231130
|
6
|
+
|
7
|
+
### v0.50.0 (2023-11-05)
|
8
|
+
|
9
|
+
* Regenerated from discovery document revision 20231026
|
10
|
+
|
3
11
|
### v0.49.0 (2023-09-24)
|
4
12
|
|
5
13
|
* Regenerated from discovery document revision 20230914
|
@@ -22,6 +22,35 @@ module Google
|
|
22
22
|
module Apis
|
23
23
|
module IamV1
|
24
24
|
|
25
|
+
# Access related restrictions on the workforce pool.
|
26
|
+
class AccessRestrictions
|
27
|
+
include Google::Apis::Core::Hashable
|
28
|
+
|
29
|
+
# Optional. Immutable. Services allowed for web sign-in with the workforce pool.
|
30
|
+
# If not set by default there are no restrictions.
|
31
|
+
# Corresponds to the JSON property `allowedServices`
|
32
|
+
# @return [Array<Google::Apis::IamV1::ServiceConfig>]
|
33
|
+
attr_accessor :allowed_services
|
34
|
+
|
35
|
+
# Optional. Disable programmatic sign-in by disabling token issue via the
|
36
|
+
# Security Token API endpoint. See [Security Token Service API] (https://cloud.
|
37
|
+
# google.com/iam/docs/reference/sts/rest).
|
38
|
+
# Corresponds to the JSON property `disableProgrammaticSignin`
|
39
|
+
# @return [Boolean]
|
40
|
+
attr_accessor :disable_programmatic_signin
|
41
|
+
alias_method :disable_programmatic_signin?, :disable_programmatic_signin
|
42
|
+
|
43
|
+
def initialize(**args)
|
44
|
+
update!(**args)
|
45
|
+
end
|
46
|
+
|
47
|
+
# Update properties of this object
|
48
|
+
def update!(**args)
|
49
|
+
@allowed_services = args[:allowed_services] if args.key?(:allowed_services)
|
50
|
+
@disable_programmatic_signin = args[:disable_programmatic_signin] if args.key?(:disable_programmatic_signin)
|
51
|
+
end
|
52
|
+
end
|
53
|
+
|
25
54
|
# Audit log information specific to Cloud IAM admin APIs. This message is
|
26
55
|
# serialized as an `Any` type in the `ServiceData` message of an `AuditLog`
|
27
56
|
# message.
|
@@ -1980,6 +2009,25 @@ module Google
|
|
1980
2009
|
end
|
1981
2010
|
end
|
1982
2011
|
|
2012
|
+
# Configuration for a service.
|
2013
|
+
class ServiceConfig
|
2014
|
+
include Google::Apis::Core::Hashable
|
2015
|
+
|
2016
|
+
# Optional. Domain name of the service. Example: console.cloud.google
|
2017
|
+
# Corresponds to the JSON property `domain`
|
2018
|
+
# @return [String]
|
2019
|
+
attr_accessor :domain
|
2020
|
+
|
2021
|
+
def initialize(**args)
|
2022
|
+
update!(**args)
|
2023
|
+
end
|
2024
|
+
|
2025
|
+
# Update properties of this object
|
2026
|
+
def update!(**args)
|
2027
|
+
@domain = args[:domain] if args.key?(:domain)
|
2028
|
+
end
|
2029
|
+
end
|
2030
|
+
|
1983
2031
|
# Request message for `SetIamPolicy` method.
|
1984
2032
|
class SetIamPolicyRequest
|
1985
2033
|
include Google::Apis::Core::Hashable
|
@@ -2394,6 +2442,11 @@ module Google
|
|
2394
2442
|
class WorkforcePool
|
2395
2443
|
include Google::Apis::Core::Hashable
|
2396
2444
|
|
2445
|
+
# Access related restrictions on the workforce pool.
|
2446
|
+
# Corresponds to the JSON property `accessRestrictions`
|
2447
|
+
# @return [Google::Apis::IamV1::AccessRestrictions]
|
2448
|
+
attr_accessor :access_restrictions
|
2449
|
+
|
2397
2450
|
# A user-specified description of the pool. Cannot exceed 256 characters.
|
2398
2451
|
# Corresponds to the JSON property `description`
|
2399
2452
|
# @return [String]
|
@@ -2451,6 +2504,7 @@ module Google
|
|
2451
2504
|
|
2452
2505
|
# Update properties of this object
|
2453
2506
|
def update!(**args)
|
2507
|
+
@access_restrictions = args[:access_restrictions] if args.key?(:access_restrictions)
|
2454
2508
|
@description = args[:description] if args.key?(:description)
|
2455
2509
|
@disabled = args[:disabled] if args.key?(:disabled)
|
2456
2510
|
@display_name = args[:display_name] if args.key?(:display_name)
|
@@ -2473,12 +2527,13 @@ module Google
|
|
2473
2527
|
# keywords may be referenced in the expressions: * `assertion`: JSON
|
2474
2528
|
# representing the authentication credential issued by the provider. * `google`:
|
2475
2529
|
# The Google attributes mapped from the assertion in the `attribute_mappings`. `
|
2476
|
-
# google.profile_photo` and `google.
|
2477
|
-
# attribute`: The custom attributes mapped from the assertion
|
2478
|
-
# attribute_mappings`. The maximum length of the attribute condition
|
2479
|
-
# is 4096 characters. If unspecified, all valid authentication
|
2480
|
-
# be accepted. The following example shows how to only allow
|
2481
|
-
# mapped `google.groups` value of `admins`: ``` "'admins' in
|
2530
|
+
# google.profile_photo`, `google.display_name` and `google.posix_username` are
|
2531
|
+
# not supported. * `attribute`: The custom attributes mapped from the assertion
|
2532
|
+
# in the `attribute_mappings`. The maximum length of the attribute condition
|
2533
|
+
# expression is 4096 characters. If unspecified, all valid authentication
|
2534
|
+
# credentials will be accepted. The following example shows how to only allow
|
2535
|
+
# credentials with a mapped `google.groups` value of `admins`: ``` "'admins' in
|
2536
|
+
# google.groups" ```
|
2482
2537
|
# Corresponds to the JSON property `attributeCondition`
|
2483
2538
|
# @return [String]
|
2484
2539
|
attr_accessor :attribute_condition
|
@@ -2498,29 +2553,32 @@ module Google
|
|
2498
2553
|
# bindings. * `google.profile_photo`: The URL that specifies the authenticated
|
2499
2554
|
# user's thumbnail photo. This is an optional field. When set, the image will be
|
2500
2555
|
# visible as the user's profile picture. If not set, a generic user icon will be
|
2501
|
-
# displayed instead. This attribute cannot be referenced in IAM bindings.
|
2502
|
-
#
|
2503
|
-
#
|
2504
|
-
#
|
2505
|
-
#
|
2506
|
-
#
|
2507
|
-
#
|
2508
|
-
#
|
2509
|
-
#
|
2510
|
-
#
|
2511
|
-
#
|
2512
|
-
# global/workforcePools/`pool`/
|
2513
|
-
#
|
2514
|
-
#
|
2515
|
-
#
|
2516
|
-
#
|
2517
|
-
#
|
2518
|
-
#
|
2519
|
-
#
|
2520
|
-
#
|
2521
|
-
#
|
2522
|
-
#
|
2523
|
-
#
|
2556
|
+
# displayed instead. This attribute cannot be referenced in IAM bindings. * `
|
2557
|
+
# google.posix_username`: The linux username used by OS login. This is an
|
2558
|
+
# optional field and the mapped posix username cannot exceed 32 characters, The
|
2559
|
+
# key must match the regex "^a-zA-Z0-9._`0,31`$". This attribute cannot be
|
2560
|
+
# referenced in IAM bindings. You can also provide custom attributes by
|
2561
|
+
# specifying `attribute.`custom_attribute``, where `custom_attribute` is the
|
2562
|
+
# name of the custom attribute to be mapped. You can define a maximum of 50
|
2563
|
+
# custom attributes. The maximum length of a mapped attribute key is 100
|
2564
|
+
# characters, and the key may only contain the characters [a-z0-9_]. You can
|
2565
|
+
# reference these attributes in IAM policies to define fine-grained access for a
|
2566
|
+
# workforce pool to Google Cloud resources. For example: * `google.subject`: `
|
2567
|
+
# principal://iam.googleapis.com/locations/global/workforcePools/`pool`/subject/`
|
2568
|
+
# value`` * `google.groups`: `principalSet://iam.googleapis.com/locations/global/
|
2569
|
+
# workforcePools/`pool`/group/`value`` * `attribute.`custom_attribute``: `
|
2570
|
+
# principalSet://iam.googleapis.com/locations/global/workforcePools/`pool`/
|
2571
|
+
# attribute.`custom_attribute`/`value`` Each value must be a [Common Expression
|
2572
|
+
# Language] (https://opensource.google/projects/cel) function that maps an
|
2573
|
+
# identity provider credential to the normalized attribute specified by the
|
2574
|
+
# corresponding map key. You can use the `assertion` keyword in the expression
|
2575
|
+
# to access a JSON representation of the authentication credential issued by the
|
2576
|
+
# provider. The maximum length of an attribute mapping expression is 2048
|
2577
|
+
# characters. When evaluated, the total size of all mapped attributes must not
|
2578
|
+
# exceed 4KB. For OIDC providers, you must supply a custom mapping that includes
|
2579
|
+
# the `google.subject` attribute. For example, the following maps the `sub`
|
2580
|
+
# claim of the incoming credential to the `subject` attribute on a Google token:
|
2581
|
+
# ``` `"google.subject": "assertion.sub"` ```
|
2524
2582
|
# Corresponds to the JSON property `attributeMapping`
|
2525
2583
|
# @return [Hash<String,String>]
|
2526
2584
|
attr_accessor :attribute_mapping
|
@@ -16,13 +16,13 @@ module Google
|
|
16
16
|
module Apis
|
17
17
|
module IamV1
|
18
18
|
# Version of the google-apis-iam_v1 gem
|
19
|
-
GEM_VERSION = "0.
|
19
|
+
GEM_VERSION = "0.51.0"
|
20
20
|
|
21
21
|
# Version of the code generator used to generate this client
|
22
22
|
GENERATOR_VERSION = "0.12.0"
|
23
23
|
|
24
24
|
# Revision of the discovery document this client was generated from
|
25
|
-
REVISION = "
|
25
|
+
REVISION = "20231130"
|
26
26
|
end
|
27
27
|
end
|
28
28
|
end
|
@@ -22,6 +22,12 @@ module Google
|
|
22
22
|
module Apis
|
23
23
|
module IamV1
|
24
24
|
|
25
|
+
class AccessRestrictions
|
26
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
27
|
+
|
28
|
+
include Google::Apis::Core::JsonObjectSupport
|
29
|
+
end
|
30
|
+
|
25
31
|
class AdminAuditData
|
26
32
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
27
33
|
|
@@ -352,6 +358,12 @@ module Google
|
|
352
358
|
include Google::Apis::Core::JsonObjectSupport
|
353
359
|
end
|
354
360
|
|
361
|
+
class ServiceConfig
|
362
|
+
class Representation < Google::Apis::Core::JsonRepresentation; end
|
363
|
+
|
364
|
+
include Google::Apis::Core::JsonObjectSupport
|
365
|
+
end
|
366
|
+
|
355
367
|
class SetIamPolicyRequest
|
356
368
|
class Representation < Google::Apis::Core::JsonRepresentation; end
|
357
369
|
|
@@ -508,6 +520,15 @@ module Google
|
|
508
520
|
include Google::Apis::Core::JsonObjectSupport
|
509
521
|
end
|
510
522
|
|
523
|
+
class AccessRestrictions
|
524
|
+
# @private
|
525
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
526
|
+
collection :allowed_services, as: 'allowedServices', class: Google::Apis::IamV1::ServiceConfig, decorator: Google::Apis::IamV1::ServiceConfig::Representation
|
527
|
+
|
528
|
+
property :disable_programmatic_signin, as: 'disableProgrammaticSignin'
|
529
|
+
end
|
530
|
+
end
|
531
|
+
|
511
532
|
class AdminAuditData
|
512
533
|
# @private
|
513
534
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -1010,6 +1031,13 @@ module Google
|
|
1010
1031
|
end
|
1011
1032
|
end
|
1012
1033
|
|
1034
|
+
class ServiceConfig
|
1035
|
+
# @private
|
1036
|
+
class Representation < Google::Apis::Core::JsonRepresentation
|
1037
|
+
property :domain, as: 'domain'
|
1038
|
+
end
|
1039
|
+
end
|
1040
|
+
|
1013
1041
|
class SetIamPolicyRequest
|
1014
1042
|
# @private
|
1015
1043
|
class Representation < Google::Apis::Core::JsonRepresentation
|
@@ -1145,6 +1173,8 @@ module Google
|
|
1145
1173
|
class WorkforcePool
|
1146
1174
|
# @private
|
1147
1175
|
class Representation < Google::Apis::Core::JsonRepresentation
|
1176
|
+
property :access_restrictions, as: 'accessRestrictions', class: Google::Apis::IamV1::AccessRestrictions, decorator: Google::Apis::IamV1::AccessRestrictions::Representation
|
1177
|
+
|
1148
1178
|
property :description, as: 'description'
|
1149
1179
|
property :disabled, as: 'disabled'
|
1150
1180
|
property :display_name, as: 'displayName'
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-apis-iam_v1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.51.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2023-
|
11
|
+
date: 2023-12-10 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: google-apis-core
|
@@ -59,7 +59,7 @@ licenses:
|
|
59
59
|
metadata:
|
60
60
|
bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
|
61
61
|
changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-iam_v1/CHANGELOG.md
|
62
|
-
documentation_uri: https://googleapis.dev/ruby/google-apis-iam_v1/v0.
|
62
|
+
documentation_uri: https://googleapis.dev/ruby/google-apis-iam_v1/v0.51.0
|
63
63
|
source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-iam_v1
|
64
64
|
post_install_message:
|
65
65
|
rdoc_options: []
|