RubyGems - google-apis-identitytoolkit_v2 - Versions diffs - 0.11.0 → 0.13.0 - Mend

google-apis-identitytoolkit_v2 0.11.0 → 0.13.0

Files changed (7) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +8 -0
data/lib/google/apis/identitytoolkit_v2/classes.rb +187 -531
data/lib/google/apis/identitytoolkit_v2/gem_version.rb +2 -2
data/lib/google/apis/identitytoolkit_v2/representations.rb +70 -269
data/lib/google/apis/identitytoolkit_v2/service.rb +30 -121
metadata +3 -3

data/lib/google/apis/identitytoolkit_v2/classes.rb CHANGED Viewed

@@ -308,6 +308,11 @@ module Google
         # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2NotificationConfig]
         attr_accessor :notification
+        # The configuration for the password policy on the project.
+        # Corresponds to the JSON property `passwordPolicyConfig`
+        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2PasswordPolicyConfig]
+        attr_accessor :password_policy_config
         # Configuration related to quotas.
         # Corresponds to the JSON property `quota`
         # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2QuotaConfig]
@@ -351,6 +356,7 @@ module Google
           @multi_tenant = args[:multi_tenant] if args.key?(:multi_tenant)
           @name = args[:name] if args.key?(:name)
           @notification = args[:notification] if args.key?(:notification)
+          @password_policy_config = args[:password_policy_config] if args.key?(:password_policy_config)
           @quota = args[:quota] if args.key?(:quota)
           @recaptcha_config = args[:recaptcha_config] if args.key?(:recaptcha_config)
           @sign_in = args[:sign_in] if args.key?(:sign_in)
@@ -359,6 +365,59 @@ module Google
         end
       end
+      # Custom strength options to enforce on user passwords.
+      class GoogleCloudIdentitytoolkitAdminV2CustomStrengthOptions
+        include Google::Apis::Core::Hashable
+        # The password must contain a lower case character.
+        # Corresponds to the JSON property `containsLowercaseCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_lowercase_character
+        alias_method :contains_lowercase_character?, :contains_lowercase_character
+        # The password must contain a non alpha numeric character.
+        # Corresponds to the JSON property `containsNonAlphanumericCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_non_alphanumeric_character
+        alias_method :contains_non_alphanumeric_character?, :contains_non_alphanumeric_character
+        # The password must contain a number.
+        # Corresponds to the JSON property `containsNumericCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_numeric_character
+        alias_method :contains_numeric_character?, :contains_numeric_character
+        # The password must contain an upper case character.
+        # Corresponds to the JSON property `containsUppercaseCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_uppercase_character
+        alias_method :contains_uppercase_character?, :contains_uppercase_character
+        # Maximum password length. No default max length
+        # Corresponds to the JSON property `maxPasswordLength`
+        # @return [Fixnum]
+        attr_accessor :max_password_length
+        # Minimum password length. Range from 6 to 30
+        # Corresponds to the JSON property `minPasswordLength`
+        # @return [Fixnum]
+        attr_accessor :min_password_length
+        def initialize(**args)
+           update!(**args)
+        end
+        # Update properties of this object
+        def update!(**args)
+          @contains_lowercase_character = args[:contains_lowercase_character] if args.key?(:contains_lowercase_character)
+          @contains_non_alphanumeric_character = args[:contains_non_alphanumeric_character] if args.key?(:contains_non_alphanumeric_character)
+          @contains_numeric_character = args[:contains_numeric_character] if args.key?(:contains_numeric_character)
+          @contains_uppercase_character = args[:contains_uppercase_character] if args.key?(:contains_uppercase_character)
+          @max_password_length = args[:max_password_length] if args.key?(:max_password_length)
+          @min_password_length = args[:min_password_length] if args.key?(:min_password_length)
+        end
+      end
       # Standard Identity Toolkit-trusted IDPs.
       class GoogleCloudIdentitytoolkitAdminV2DefaultSupportedIdp
         include Google::Apis::Core::Hashable
@@ -1174,6 +1233,69 @@ module Google
         end
       end
+      # The configuration for the password policy on the project.
+      class GoogleCloudIdentitytoolkitAdminV2PasswordPolicyConfig
+        include Google::Apis::Core::Hashable
+        # Users must have a password compliant with the password policy to sign-in.
+        # Corresponds to the JSON property `forceUpgradeOnSignin`
+        # @return [Boolean]
+        attr_accessor :force_upgrade_on_signin
+        alias_method :force_upgrade_on_signin?, :force_upgrade_on_signin
+        # Output only. The last time the password policy on the project was updated.
+        # Corresponds to the JSON property `lastUpdateTime`
+        # @return [String]
+        attr_accessor :last_update_time
+        # Which enforcement mode to use for the password policy.
+        # Corresponds to the JSON property `passwordPolicyEnforcementState`
+        # @return [String]
+        attr_accessor :password_policy_enforcement_state
+        # Must be of length 1. Contains the strength attributes for the password policy.
+        # Corresponds to the JSON property `passwordPolicyVersions`
+        # @return [Array<Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2PasswordPolicyVersion>]
+        attr_accessor :password_policy_versions
+        def initialize(**args)
+           update!(**args)
+        end
+        # Update properties of this object
+        def update!(**args)
+          @force_upgrade_on_signin = args[:force_upgrade_on_signin] if args.key?(:force_upgrade_on_signin)
+          @last_update_time = args[:last_update_time] if args.key?(:last_update_time)
+          @password_policy_enforcement_state = args[:password_policy_enforcement_state] if args.key?(:password_policy_enforcement_state)
+          @password_policy_versions = args[:password_policy_versions] if args.key?(:password_policy_versions)
+        end
+      end
+      # The strength attributes for the password policy on the project.
+      class GoogleCloudIdentitytoolkitAdminV2PasswordPolicyVersion
+        include Google::Apis::Core::Hashable
+        # Custom strength options to enforce on user passwords.
+        # Corresponds to the JSON property `customStrengthOptions`
+        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2CustomStrengthOptions]
+        attr_accessor :custom_strength_options
+        # Output only. schema version number for the password policy
+        # Corresponds to the JSON property `schemaVersion`
+        # @return [Fixnum]
+        attr_accessor :schema_version
+        def initialize(**args)
+           update!(**args)
+        end
+        # Update properties of this object
+        def update!(**args)
+          @custom_strength_options = args[:custom_strength_options] if args.key?(:custom_strength_options)
+          @schema_version = args[:schema_version] if args.key?(:schema_version)
+        end
+      end
       # Configuration related to restricting a user's ability to affect their account.
       class GoogleCloudIdentitytoolkitAdminV2Permissions
         include Google::Apis::Core::Hashable
@@ -1832,6 +1954,11 @@ module Google
         # @return [String]
         attr_accessor :name
+        # The configuration for the password policy on the project.
+        # Corresponds to the JSON property `passwordPolicyConfig`
+        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2PasswordPolicyConfig]
+        attr_accessor :password_policy_config
         # The reCAPTCHA Enterprise integration config.
         # Corresponds to the JSON property `recaptchaConfig`
         # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2RecaptchaConfig]
@@ -1870,6 +1997,7 @@ module Google
           @mfa_config = args[:mfa_config] if args.key?(:mfa_config)
           @monitoring = args[:monitoring] if args.key?(:monitoring)
           @name = args[:name] if args.key?(:name)
+          @password_policy_config = args[:password_policy_config] if args.key?(:password_policy_config)
           @recaptcha_config = args[:recaptcha_config] if args.key?(:recaptcha_config)
           @sms_region_config = args[:sms_region_config] if args.key?(:sms_region_config)
           @test_phone_numbers = args[:test_phone_numbers] if args.key?(:test_phone_numbers)
@@ -1921,131 +2049,14 @@ module Google
         end
       end
-      # Authentication response from a FIDO authenticator.
-      class GoogleCloudIdentitytoolkitV2AuthenticatorAssertionResponse
-        include Google::Apis::Core::Hashable
-        # The AuthenticatorData from the authenticator.
-        # Corresponds to the JSON property `authenticatorData`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :authenticator_data
-        # The CollectedClientData object from the authenticator.
-        # Corresponds to the JSON property `clientDataJson`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :client_data_json
-        # The signature from the authenticator.
-        # Corresponds to the JSON property `signature`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :signature
-        # The user handle.
-        # Corresponds to the JSON property `userHandle`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :user_handle
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @authenticator_data = args[:authenticator_data] if args.key?(:authenticator_data)
-          @client_data_json = args[:client_data_json] if args.key?(:client_data_json)
-          @signature = args[:signature] if args.key?(:signature)
-          @user_handle = args[:user_handle] if args.key?(:user_handle)
-        end
-      end
-      # Attestation response from a FIDO authenticator.
-      class GoogleCloudIdentitytoolkitV2AuthenticatorAttestationResponse
-        include Google::Apis::Core::Hashable
-        # The attestation object from the authenticator.
-        # Corresponds to the JSON property `attestationObject`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :attestation_object
-        # The CollectedClientData object from the authenticator.
-        # Corresponds to the JSON property `clientDataJson`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :client_data_json
-        # Authenticator transports that are supported by the authenticator.
-        # Corresponds to the JSON property `transports`
-        # @return [Array<String>]
-        attr_accessor :transports
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @attestation_object = args[:attestation_object] if args.key?(:attestation_object)
-          @client_data_json = args[:client_data_json] if args.key?(:client_data_json)
-          @transports = args[:transports] if args.key?(:transports)
-        end
-      end
-      # Authenticator response to authenticate the user with an existing FIDO key.
-      class GoogleCloudIdentitytoolkitV2AuthenticatorAuthenticationResponse
-        include Google::Apis::Core::Hashable
-        # Authentication response from a FIDO authenticator.
-        # Corresponds to the JSON property `authenticatorAssertionResponse`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2AuthenticatorAssertionResponse]
-        attr_accessor :authenticator_assertion_response
-        # Identifier for the authentication credential.
-        # Corresponds to the JSON property `credentialId`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :credential_id
-        # The type of public key.
-        # Corresponds to the JSON property `credentialType`
-        # @return [String]
-        attr_accessor :credential_type
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @authenticator_assertion_response = args[:authenticator_assertion_response] if args.key?(:authenticator_assertion_response)
-          @credential_id = args[:credential_id] if args.key?(:credential_id)
-          @credential_type = args[:credential_type] if args.key?(:credential_type)
-        end
-      end
-      # Authenticator response to register a new FIDO key.
-      class GoogleCloudIdentitytoolkitV2AuthenticatorRegistrationResponse
+      # The information required to auto-retrieve an SMS.
+      class GoogleCloudIdentitytoolkitV2AutoRetrievalInfo
         include Google::Apis::Core::Hashable
-        # Attestation response from a FIDO authenticator.
-        # Corresponds to the JSON property `authenticatorAttestationResponse`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2AuthenticatorAttestationResponse]
-        attr_accessor :authenticator_attestation_response
-        # Identifier for the registered credential.
-        # Corresponds to the JSON property `credentialId`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :credential_id
-        # The type of credential.
-        # Corresponds to the JSON property `credentialType`
+        # The Android app's signature hash for Google Play Service's SMS Retriever API.
+        # Corresponds to the JSON property `appSignatureHash`
         # @return [String]
-        attr_accessor :credential_type
+        attr_accessor :app_signature_hash
         def initialize(**args)
            update!(**args)
@@ -2053,52 +2064,47 @@ module Google
         # Update properties of this object
         def update!(**args)
-          @authenticator_attestation_response = args[:authenticator_attestation_response] if args.key?(:authenticator_attestation_response)
-          @credential_id = args[:credential_id] if args.key?(:credential_id)
-          @credential_type = args[:credential_type] if args.key?(:credential_type)
+          @app_signature_hash = args[:app_signature_hash] if args.key?(:app_signature_hash)
         end
       end
-      # Criteria for the authenticator to create a registered FIDO key.
-      class GoogleCloudIdentitytoolkitV2AuthenticatorSelectionCriteria
+      # Custom strength options to enforce on user passwords.
+      class GoogleCloudIdentitytoolkitV2CustomStrengthOptions
         include Google::Apis::Core::Hashable
-        # The preferred authenticator attachment modality.
-        # Corresponds to the JSON property `authenticatorAttachment`
-        # @return [String]
-        attr_accessor :authenticator_attachment
-        # Whether resident key is required.
-        # Corresponds to the JSON property `requireResidentKey`
+        # The password must contain a lower case character.
+        # Corresponds to the JSON property `containsLowercaseCharacter`
         # @return [Boolean]
-        attr_accessor :require_resident_key
-        alias_method :require_resident_key?, :require_resident_key
+        attr_accessor :contains_lowercase_character
+        alias_method :contains_lowercase_character?, :contains_lowercase_character
-        # The Relying Party's user verification requirements.
-        # Corresponds to the JSON property `userVerification`
-        # @return [String]
-        attr_accessor :user_verification
+        # The password must contain a non alpha numeric character.
+        # Corresponds to the JSON property `containsNonAlphanumericCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_non_alphanumeric_character
+        alias_method :contains_non_alphanumeric_character?, :contains_non_alphanumeric_character
-        def initialize(**args)
-           update!(**args)
-        end
+        # The password must contain a number.
+        # Corresponds to the JSON property `containsNumericCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_numeric_character
+        alias_method :contains_numeric_character?, :contains_numeric_character
-        # Update properties of this object
-        def update!(**args)
-          @authenticator_attachment = args[:authenticator_attachment] if args.key?(:authenticator_attachment)
-          @require_resident_key = args[:require_resident_key] if args.key?(:require_resident_key)
-          @user_verification = args[:user_verification] if args.key?(:user_verification)
-        end
-      end
+        # The password must contain an upper case character.
+        # Corresponds to the JSON property `containsUppercaseCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_uppercase_character
+        alias_method :contains_uppercase_character?, :contains_uppercase_character
-      # The information required to auto-retrieve an SMS.
-      class GoogleCloudIdentitytoolkitV2AutoRetrievalInfo
-        include Google::Apis::Core::Hashable
+        # Maximum password length. No default max length
+        # Corresponds to the JSON property `maxPasswordLength`
+        # @return [Fixnum]
+        attr_accessor :max_password_length
-        # The Android app's signature hash for Google Play Service's SMS Retriever API.
-        # Corresponds to the JSON property `appSignatureHash`
-        # @return [String]
-        attr_accessor :app_signature_hash
+        # Minimum password length. Range from 6 to 30
+        # Corresponds to the JSON property `minPasswordLength`
+        # @return [Fixnum]
+        attr_accessor :min_password_length
         def initialize(**args)
            update!(**args)
@@ -2106,7 +2112,12 @@ module Google
         # Update properties of this object
         def update!(**args)
-          @app_signature_hash = args[:app_signature_hash] if args.key?(:app_signature_hash)
+          @contains_lowercase_character = args[:contains_lowercase_character] if args.key?(:contains_lowercase_character)
+          @contains_non_alphanumeric_character = args[:contains_non_alphanumeric_character] if args.key?(:contains_non_alphanumeric_character)
+          @contains_numeric_character = args[:contains_numeric_character] if args.key?(:contains_numeric_character)
+          @contains_uppercase_character = args[:contains_uppercase_character] if args.key?(:contains_uppercase_character)
+          @max_password_length = args[:max_password_length] if args.key?(:max_password_length)
+          @min_password_length = args[:min_password_length] if args.key?(:min_password_length)
         end
       end
@@ -2373,122 +2384,6 @@ module Google
         end
       end
-      # FinalizePasskeyEnrollment request. Registers passkey as a first factor for the
-      # user.
-      class GoogleCloudIdentitytoolkitV2FinalizePasskeyEnrollmentRequest
-        include Google::Apis::Core::Hashable
-        # Authenticator response to register a new FIDO key.
-        # Corresponds to the JSON property `authenticatorRegistrationResponse`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2AuthenticatorRegistrationResponse]
-        attr_accessor :authenticator_registration_response
-        # Required. The GCIP ID token of the signed-in user
-        # Corresponds to the JSON property `idToken`
-        # @return [String]
-        attr_accessor :id_token
-        # Optional. The ID of the Identity Platform tenant the user is signing in to. If
-        # not set, the user will sign in to the default Identity Platform project.
-        # Corresponds to the JSON property `tenantId`
-        # @return [String]
-        attr_accessor :tenant_id
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @authenticator_registration_response = args[:authenticator_registration_response] if args.key?(:authenticator_registration_response)
-          @id_token = args[:id_token] if args.key?(:id_token)
-          @tenant_id = args[:tenant_id] if args.key?(:tenant_id)
-        end
-      end
-      # FinalizePasskeyEnrollment response.
-      class GoogleCloudIdentitytoolkitV2FinalizePasskeyEnrollmentResponse
-        include Google::Apis::Core::Hashable
-        # ID token for the authenticated user.
-        # Corresponds to the JSON property `idToken`
-        # @return [String]
-        attr_accessor :id_token
-        # Refresh token for the authenticated user.
-        # Corresponds to the JSON property `refreshToken`
-        # @return [String]
-        attr_accessor :refresh_token
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @id_token = args[:id_token] if args.key?(:id_token)
-          @refresh_token = args[:refresh_token] if args.key?(:refresh_token)
-        end
-      end
-      # Request to finalize a passkey sign-in.
-      class GoogleCloudIdentitytoolkitV2FinalizePasskeySignInRequest
-        include Google::Apis::Core::Hashable
-        # Authenticator response to authenticate the user with an existing FIDO key.
-        # Corresponds to the JSON property `authenticatorAuthenticationResponse`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2AuthenticatorAuthenticationResponse]
-        attr_accessor :authenticator_authentication_response
-        # Optional. The session ID that was passed into StartPasskeySignIn, if any.
-        # Corresponds to the JSON property `sessionId`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :session_id
-        # Optional. The ID of the Identity Platform tenant the user is signing in to. If
-        # not set, the user will sign in to the default Identity Platform project.
-        # Corresponds to the JSON property `tenantId`
-        # @return [String]
-        attr_accessor :tenant_id
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @authenticator_authentication_response = args[:authenticator_authentication_response] if args.key?(:authenticator_authentication_response)
-          @session_id = args[:session_id] if args.key?(:session_id)
-          @tenant_id = args[:tenant_id] if args.key?(:tenant_id)
-        end
-      end
-      # Response for FinalizePasskeySignIn.
-      class GoogleCloudIdentitytoolkitV2FinalizePasskeySignInResponse
-        include Google::Apis::Core::Hashable
-        # ID token for the authenticated user.
-        # Corresponds to the JSON property `idToken`
-        # @return [String]
-        attr_accessor :id_token
-        # Refresh token for the authenticated user.
-        # Corresponds to the JSON property `refreshToken`
-        # @return [String]
-        attr_accessor :refresh_token
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @id_token = args[:id_token] if args.key?(:id_token)
-          @refresh_token = args[:refresh_token] if args.key?(:refresh_token)
-        end
-      end
       # TOTP verification info for FinalizeMfaSignInRequest.
       class GoogleCloudIdentitytoolkitV2MfaTotpSignInRequestInfo
         include Google::Apis::Core::Hashable
@@ -2508,101 +2403,24 @@ module Google
         end
       end
-      # Parameters for creating a FIDO key.
-      class GoogleCloudIdentitytoolkitV2PublicKeyCredentialCreationOptions
-        include Google::Apis::Core::Hashable
-        # Criteria for the authenticator to create a registered FIDO key.
-        # Corresponds to the JSON property `authenticatorSelection`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2AuthenticatorSelectionCriteria]
-        attr_accessor :authenticator_selection
-        # The FIDO challenge.
-        # Corresponds to the JSON property `challenge`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :challenge
-        # Credentials already mapped to this user.
-        # Corresponds to the JSON property `excludeCredentials`
-        # @return [Array<Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2PublicKeyCredentialDescriptor>]
-        attr_accessor :exclude_credentials
-        # Lists the supported key types and signature algorithms.
-        # Corresponds to the JSON property `pubKeyCredParams`
-        # @return [Array<Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2PublicKeyCredentialParameters>]
-        attr_accessor :pub_key_cred_params
-        # The entity object for the Relying Party.
-        # Corresponds to the JSON property `rp`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2RpEntity]
-        attr_accessor :rp
-        # The entity object for the user.
-        # Corresponds to the JSON property `user`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2UserEntity]
-        attr_accessor :user
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @authenticator_selection = args[:authenticator_selection] if args.key?(:authenticator_selection)
-          @challenge = args[:challenge] if args.key?(:challenge)
-          @exclude_credentials = args[:exclude_credentials] if args.key?(:exclude_credentials)
-          @pub_key_cred_params = args[:pub_key_cred_params] if args.key?(:pub_key_cred_params)
-          @rp = args[:rp] if args.key?(:rp)
-          @user = args[:user] if args.key?(:user)
-        end
-      end
-      # Descriptor for a public key credential.
-      class GoogleCloudIdentitytoolkitV2PublicKeyCredentialDescriptor
+      # Configuration for password policy.
+      class GoogleCloudIdentitytoolkitV2PasswordPolicy
         include Google::Apis::Core::Hashable
-        # The identifier for the credential.
-        # Corresponds to the JSON property `credentialId`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :credential_id
-        # The type of public key.
-        # Corresponds to the JSON property `credentialType`
-        # @return [String]
-        attr_accessor :credential_type
-        # Authenticator transports that are supported by the authenticator.
-        # Corresponds to the JSON property `transports`
+        # Output only. Allowed characters which satisfy the non_alphanumeric requirement.
+        # Corresponds to the JSON property `allowedNonAlphanumericCharacters`
         # @return [Array<String>]
-        attr_accessor :transports
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @credential_id = args[:credential_id] if args.key?(:credential_id)
-          @credential_type = args[:credential_type] if args.key?(:credential_type)
-          @transports = args[:transports] if args.key?(:transports)
-        end
-      end
+        attr_accessor :allowed_non_alphanumeric_characters
-      # Parameters to create a public credential.
-      class GoogleCloudIdentitytoolkitV2PublicKeyCredentialParameters
-        include Google::Apis::Core::Hashable
+        # Custom strength options to enforce on user passwords.
+        # Corresponds to the JSON property `customStrengthOptions`
+        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2CustomStrengthOptions]
+        attr_accessor :custom_strength_options
-        # The COSE registry number of the cryptographic signature algorithm.
-        # Corresponds to the JSON property `alg`
+        # Output only. schema version number for the password policy
+        # Corresponds to the JSON property `schemaVersion`
         # @return [Fixnum]
-        attr_accessor :alg
-        # The type of public key to be created.
-        # Corresponds to the JSON property `credentialType`
-        # @return [String]
-        attr_accessor :credential_type
+        attr_accessor :schema_version
         def initialize(**args)
            update!(**args)
@@ -2610,40 +2428,9 @@ module Google
         # Update properties of this object
         def update!(**args)
-          @alg = args[:alg] if args.key?(:alg)
-          @credential_type = args[:credential_type] if args.key?(:credential_type)
-        end
-      end
-      # Parameters for signing a challenge with a FIDO key.
-      class GoogleCloudIdentitytoolkitV2PublicKeyCredentialRequestOptions
-        include Google::Apis::Core::Hashable
-        # The FIDO challenge.
-        # Corresponds to the JSON property `challenge`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :challenge
-        # The relying party identifier.
-        # Corresponds to the JSON property `rpId`
-        # @return [String]
-        attr_accessor :rp_id
-        # The requirements regarding user verification.
-        # Corresponds to the JSON property `userVerification`
-        # @return [String]
-        attr_accessor :user_verification
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @challenge = args[:challenge] if args.key?(:challenge)
-          @rp_id = args[:rp_id] if args.key?(:rp_id)
-          @user_verification = args[:user_verification] if args.key?(:user_verification)
+          @allowed_non_alphanumeric_characters = args[:allowed_non_alphanumeric_characters] if args.key?(:allowed_non_alphanumeric_characters)
+          @custom_strength_options = args[:custom_strength_options] if args.key?(:custom_strength_options)
+          @schema_version = args[:schema_version] if args.key?(:schema_version)
         end
       end
@@ -2658,7 +2445,8 @@ module Google
         attr_accessor :recaptcha_enforcement_state
         # The reCAPTCHA Enterprise key resource name, e.g. "projects/`project`/keys/`key`
-        # ".
+        # ". This will only be returned when the reCAPTCHA enforcement state is AUDIT or
+        # ENFORCE on at least one of the reCAPTCHA providers.
         # Corresponds to the JSON property `recaptchaKey`
         # @return [String]
         attr_accessor :recaptcha_key
@@ -2719,7 +2507,7 @@ module Google
         # The redirect URI provided in the initial authorization request made by the
         # client to the IDP. The URI must use the HTTPS protocol, include a domain name,
-        # and can’t contain an IP address or localhost. Required if token_type is CODE.
+        # and can't contain an IP address or localhost. Required if token_type is CODE.
         # Corresponds to the JSON property `redirectUri`
         # @return [String]
         attr_accessor :redirect_uri
@@ -2770,25 +2558,6 @@ module Google
         end
       end
-      # The entity object for the Relying Party.
-      class GoogleCloudIdentitytoolkitV2RpEntity
-        include Google::Apis::Core::Hashable
-        # The RP ID of the FIDO Relying Party.
-        # Corresponds to the JSON property `id`
-        # @return [String]
-        attr_accessor :id
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @id = args[:id] if args.key?(:id)
-        end
-      end
       # Sends MFA enrollment verification SMS for a user.
       class GoogleCloudIdentitytoolkitV2StartMfaEnrollmentRequest
         include Google::Apis::Core::Hashable
@@ -3055,119 +2824,6 @@ module Google
         end
       end
-      # Starts passkey enrollment for passkey as a first factor by returning the FIDO
-      # challenge.
-      class GoogleCloudIdentitytoolkitV2StartPasskeyEnrollmentRequest
-        include Google::Apis::Core::Hashable
-        # Required. The GCIP ID token of the signed-in user
-        # Corresponds to the JSON property `idToken`
-        # @return [String]
-        attr_accessor :id_token
-        # Optional. The ID of the Identity Platform tenant the user is signing in to. If
-        # not set, the user will sign in to the default Identity Platform project.
-        # Corresponds to the JSON property `tenantId`
-        # @return [String]
-        attr_accessor :tenant_id
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @id_token = args[:id_token] if args.key?(:id_token)
-          @tenant_id = args[:tenant_id] if args.key?(:tenant_id)
-        end
-      end
-      # StartPasskeyEnrollment response.
-      class GoogleCloudIdentitytoolkitV2StartPasskeyEnrollmentResponse
-        include Google::Apis::Core::Hashable
-        # Parameters for creating a FIDO key.
-        # Corresponds to the JSON property `credentialCreationOptions`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2PublicKeyCredentialCreationOptions]
-        attr_accessor :credential_creation_options
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @credential_creation_options = args[:credential_creation_options] if args.key?(:credential_creation_options)
-        end
-      end
-      # Starts passkey sign-in by returning the FIDO challenge.
-      class GoogleCloudIdentitytoolkitV2StartPasskeySignInRequest
-        include Google::Apis::Core::Hashable
-        # Optional. The developer can bind their own concept of a user session to this
-        # flow.
-        # Corresponds to the JSON property `sessionId`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :session_id
-        # Optional. The ID of the Identity Platform tenant the user is signing in to. If
-        # not set, the user will sign in to the default Identity Platform project.
-        # Corresponds to the JSON property `tenantId`
-        # @return [String]
-        attr_accessor :tenant_id
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @session_id = args[:session_id] if args.key?(:session_id)
-          @tenant_id = args[:tenant_id] if args.key?(:tenant_id)
-        end
-      end
-      # Response for StartPasskeySignIn.
-      class GoogleCloudIdentitytoolkitV2StartPasskeySignInResponse
-        include Google::Apis::Core::Hashable
-        # Parameters for signing a challenge with a FIDO key.
-        # Corresponds to the JSON property `credentialRequestOptions`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2PublicKeyCredentialRequestOptions]
-        attr_accessor :credential_request_options
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @credential_request_options = args[:credential_request_options] if args.key?(:credential_request_options)
-        end
-      end
-      # The entity object for the user.
-      class GoogleCloudIdentitytoolkitV2UserEntity
-        include Google::Apis::Core::Hashable
-        # The user ID.
-        # Corresponds to the JSON property `id`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :id
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @id = args[:id] if args.key?(:id)
-        end
-      end
       # Withdraws MFA.
       class GoogleCloudIdentitytoolkitV2WithdrawMfaRequest
         include Google::Apis::Core::Hashable