RubyGems - google-apis-identitytoolkit_v2 - Versions diffs - 0.11.0 → 0.13.0 - Mend

google-apis-identitytoolkit_v2 0.11.0 → 0.13.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +8 -0
data/lib/google/apis/identitytoolkit_v2/classes.rb +187 -531
data/lib/google/apis/identitytoolkit_v2/gem_version.rb +2 -2
data/lib/google/apis/identitytoolkit_v2/representations.rb +70 -269
data/lib/google/apis/identitytoolkit_v2/service.rb +30 -121
metadata +3 -3

data/lib/google/apis/identitytoolkit_v2/classes.rb CHANGED Viewed

@@ -308,6 +308,11 @@ module Google
         # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2NotificationConfig]
         attr_accessor :notification
+        # The configuration for the password policy on the project.
+        # Corresponds to the JSON property `passwordPolicyConfig`
+        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2PasswordPolicyConfig]
+        attr_accessor :password_policy_config
         # Configuration related to quotas.
         # Corresponds to the JSON property `quota`
         # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2QuotaConfig]
@@ -351,6 +356,7 @@ module Google
           @multi_tenant = args[:multi_tenant] if args.key?(:multi_tenant)
           @name = args[:name] if args.key?(:name)
           @notification = args[:notification] if args.key?(:notification)
+          @password_policy_config = args[:password_policy_config] if args.key?(:password_policy_config)
           @quota = args[:quota] if args.key?(:quota)
           @recaptcha_config = args[:recaptcha_config] if args.key?(:recaptcha_config)
           @sign_in = args[:sign_in] if args.key?(:sign_in)
@@ -359,6 +365,59 @@ module Google
         end
       end
+      # Custom strength options to enforce on user passwords.
+      class GoogleCloudIdentitytoolkitAdminV2CustomStrengthOptions
+        include Google::Apis::Core::Hashable
+        # The password must contain a lower case character.
+        # Corresponds to the JSON property `containsLowercaseCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_lowercase_character
+        alias_method :contains_lowercase_character?, :contains_lowercase_character
+        # The password must contain a non alpha numeric character.
+        # Corresponds to the JSON property `containsNonAlphanumericCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_non_alphanumeric_character
+        alias_method :contains_non_alphanumeric_character?, :contains_non_alphanumeric_character
+        # The password must contain a number.
+        # Corresponds to the JSON property `containsNumericCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_numeric_character
+        alias_method :contains_numeric_character?, :contains_numeric_character
+        # The password must contain an upper case character.
+        # Corresponds to the JSON property `containsUppercaseCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_uppercase_character
+        alias_method :contains_uppercase_character?, :contains_uppercase_character
+        # Maximum password length. No default max length
+        # Corresponds to the JSON property `maxPasswordLength`
+        # @return [Fixnum]
+        attr_accessor :max_password_length
+        # Minimum password length. Range from 6 to 30
+        # Corresponds to the JSON property `minPasswordLength`
+        # @return [Fixnum]
+        attr_accessor :min_password_length
+        def initialize(**args)
+           update!(**args)
+        end
+        # Update properties of this object
+        def update!(**args)
+          @contains_lowercase_character = args[:contains_lowercase_character] if args.key?(:contains_lowercase_character)
+          @contains_non_alphanumeric_character = args[:contains_non_alphanumeric_character] if args.key?(:contains_non_alphanumeric_character)
+          @contains_numeric_character = args[:contains_numeric_character] if args.key?(:contains_numeric_character)
+          @contains_uppercase_character = args[:contains_uppercase_character] if args.key?(:contains_uppercase_character)
+          @max_password_length = args[:max_password_length] if args.key?(:max_password_length)
+          @min_password_length = args[:min_password_length] if args.key?(:min_password_length)
+        end
+      end
       # Standard Identity Toolkit-trusted IDPs.
       class GoogleCloudIdentitytoolkitAdminV2DefaultSupportedIdp
         include Google::Apis::Core::Hashable
@@ -1174,6 +1233,69 @@ module Google
         end
       end
+      # The configuration for the password policy on the project.
+      class GoogleCloudIdentitytoolkitAdminV2PasswordPolicyConfig
+        include Google::Apis::Core::Hashable
+        # Users must have a password compliant with the password policy to sign-in.
+        # Corresponds to the JSON property `forceUpgradeOnSignin`
+        # @return [Boolean]
+        attr_accessor :force_upgrade_on_signin
+        alias_method :force_upgrade_on_signin?, :force_upgrade_on_signin
+        # Output only. The last time the password policy on the project was updated.
+        # Corresponds to the JSON property `lastUpdateTime`
+        # @return [String]
+        attr_accessor :last_update_time
+        # Which enforcement mode to use for the password policy.
+        # Corresponds to the JSON property `passwordPolicyEnforcementState`
+        # @return [String]
+        attr_accessor :password_policy_enforcement_state
+        # Must be of length 1. Contains the strength attributes for the password policy.
+        # Corresponds to the JSON property `passwordPolicyVersions`
+        # @return [Array<Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2PasswordPolicyVersion>]
+        attr_accessor :password_policy_versions
+        def initialize(**args)
+           update!(**args)
+        end
+        # Update properties of this object
+        def update!(**args)
+          @force_upgrade_on_signin = args[:force_upgrade_on_signin] if args.key?(:force_upgrade_on_signin)
+          @last_update_time = args[:last_update_time] if args.key?(:last_update_time)
+          @password_policy_enforcement_state = args[:password_policy_enforcement_state] if args.key?(:password_policy_enforcement_state)
+          @password_policy_versions = args[:password_policy_versions] if args.key?(:password_policy_versions)
+        end
+      end
+      # The strength attributes for the password policy on the project.
+      class GoogleCloudIdentitytoolkitAdminV2PasswordPolicyVersion
+        include Google::Apis::Core::Hashable
+        # Custom strength options to enforce on user passwords.
+        # Corresponds to the JSON property `customStrengthOptions`
+        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2CustomStrengthOptions]
+        attr_accessor :custom_strength_options
+        # Output only. schema version number for the password policy
+        # Corresponds to the JSON property `schemaVersion`
+        # @return [Fixnum]
+        attr_accessor :schema_version
+        def initialize(**args)
+           update!(**args)
+        end
+        # Update properties of this object
+        def update!(**args)
+          @custom_strength_options = args[:custom_strength_options] if args.key?(:custom_strength_options)
+          @schema_version = args[:schema_version] if args.key?(:schema_version)
+        end
+      end
       # Configuration related to restricting a user's ability to affect their account.
       class GoogleCloudIdentitytoolkitAdminV2Permissions
         include Google::Apis::Core::Hashable
@@ -1832,6 +1954,11 @@ module Google
         # @return [String]
         attr_accessor :name
+        # The configuration for the password policy on the project.
+        # Corresponds to the JSON property `passwordPolicyConfig`
+        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2PasswordPolicyConfig]
+        attr_accessor :password_policy_config
         # The reCAPTCHA Enterprise integration config.
         # Corresponds to the JSON property `recaptchaConfig`
         # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitAdminV2RecaptchaConfig]
@@ -1870,6 +1997,7 @@ module Google
           @mfa_config = args[:mfa_config] if args.key?(:mfa_config)
           @monitoring = args[:monitoring] if args.key?(:monitoring)
           @name = args[:name] if args.key?(:name)
+          @password_policy_config = args[:password_policy_config] if args.key?(:password_policy_config)
           @recaptcha_config = args[:recaptcha_config] if args.key?(:recaptcha_config)
           @sms_region_config = args[:sms_region_config] if args.key?(:sms_region_config)
           @test_phone_numbers = args[:test_phone_numbers] if args.key?(:test_phone_numbers)
@@ -1921,131 +2049,14 @@ module Google
         end
       end
-      # Authentication response from a FIDO authenticator.
-      class GoogleCloudIdentitytoolkitV2AuthenticatorAssertionResponse
-        include Google::Apis::Core::Hashable
-        # The AuthenticatorData from the authenticator.
-        # Corresponds to the JSON property `authenticatorData`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :authenticator_data
-        # The CollectedClientData object from the authenticator.
-        # Corresponds to the JSON property `clientDataJson`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :client_data_json
-        # The signature from the authenticator.
-        # Corresponds to the JSON property `signature`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :signature
-        # The user handle.
-        # Corresponds to the JSON property `userHandle`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :user_handle
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @authenticator_data = args[:authenticator_data] if args.key?(:authenticator_data)
-          @client_data_json = args[:client_data_json] if args.key?(:client_data_json)
-          @signature = args[:signature] if args.key?(:signature)
-          @user_handle = args[:user_handle] if args.key?(:user_handle)
-        end
-      end
-      # Attestation response from a FIDO authenticator.
-      class GoogleCloudIdentitytoolkitV2AuthenticatorAttestationResponse
-        include Google::Apis::Core::Hashable
-        # The attestation object from the authenticator.
-        # Corresponds to the JSON property `attestationObject`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :attestation_object
-        # The CollectedClientData object from the authenticator.
-        # Corresponds to the JSON property `clientDataJson`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :client_data_json
-        # Authenticator transports that are supported by the authenticator.
-        # Corresponds to the JSON property `transports`
-        # @return [Array<String>]
-        attr_accessor :transports
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @attestation_object = args[:attestation_object] if args.key?(:attestation_object)
-          @client_data_json = args[:client_data_json] if args.key?(:client_data_json)
-          @transports = args[:transports] if args.key?(:transports)
-        end
-      end
-      # Authenticator response to authenticate the user with an existing FIDO key.
-      class GoogleCloudIdentitytoolkitV2AuthenticatorAuthenticationResponse
-        include Google::Apis::Core::Hashable
-        # Authentication response from a FIDO authenticator.
-        # Corresponds to the JSON property `authenticatorAssertionResponse`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2AuthenticatorAssertionResponse]
-        attr_accessor :authenticator_assertion_response
-        # Identifier for the authentication credential.
-        # Corresponds to the JSON property `credentialId`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :credential_id
-        # The type of public key.
-        # Corresponds to the JSON property `credentialType`
-        # @return [String]
-        attr_accessor :credential_type
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @authenticator_assertion_response = args[:authenticator_assertion_response] if args.key?(:authenticator_assertion_response)
-          @credential_id = args[:credential_id] if args.key?(:credential_id)
-          @credential_type = args[:credential_type] if args.key?(:credential_type)
-        end
-      end
-      # Authenticator response to register a new FIDO key.
-      class GoogleCloudIdentitytoolkitV2AuthenticatorRegistrationResponse
+      # The information required to auto-retrieve an SMS.
+      class GoogleCloudIdentitytoolkitV2AutoRetrievalInfo
         include Google::Apis::Core::Hashable
-        # Attestation response from a FIDO authenticator.
-        # Corresponds to the JSON property `authenticatorAttestationResponse`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2AuthenticatorAttestationResponse]
-        attr_accessor :authenticator_attestation_response
-        # Identifier for the registered credential.
-        # Corresponds to the JSON property `credentialId`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :credential_id
-        # The type of credential.
-        # Corresponds to the JSON property `credentialType`
+        # The Android app's signature hash for Google Play Service's SMS Retriever API.
+        # Corresponds to the JSON property `appSignatureHash`
         # @return [String]
-        attr_accessor :credential_type
+        attr_accessor :app_signature_hash
         def initialize(**args)
            update!(**args)
@@ -2053,52 +2064,47 @@ module Google
         # Update properties of this object
         def update!(**args)
-          @authenticator_attestation_response = args[:authenticator_attestation_response] if args.key?(:authenticator_attestation_response)
-          @credential_id = args[:credential_id] if args.key?(:credential_id)
-          @credential_type = args[:credential_type] if args.key?(:credential_type)
+          @app_signature_hash = args[:app_signature_hash] if args.key?(:app_signature_hash)
         end
       end
-      # Criteria for the authenticator to create a registered FIDO key.
-      class GoogleCloudIdentitytoolkitV2AuthenticatorSelectionCriteria
+      # Custom strength options to enforce on user passwords.
+      class GoogleCloudIdentitytoolkitV2CustomStrengthOptions
         include Google::Apis::Core::Hashable
-        # The preferred authenticator attachment modality.
-        # Corresponds to the JSON property `authenticatorAttachment`
-        # @return [String]
-        attr_accessor :authenticator_attachment
-        # Whether resident key is required.
-        # Corresponds to the JSON property `requireResidentKey`
+        # The password must contain a lower case character.
+        # Corresponds to the JSON property `containsLowercaseCharacter`
         # @return [Boolean]
-        attr_accessor :require_resident_key
-        alias_method :require_resident_key?, :require_resident_key
+        attr_accessor :contains_lowercase_character
+        alias_method :contains_lowercase_character?, :contains_lowercase_character
-        # The Relying Party's user verification requirements.
-        # Corresponds to the JSON property `userVerification`
-        # @return [String]
-        attr_accessor :user_verification
+        # The password must contain a non alpha numeric character.
+        # Corresponds to the JSON property `containsNonAlphanumericCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_non_alphanumeric_character
+        alias_method :contains_non_alphanumeric_character?, :contains_non_alphanumeric_character
-        def initialize(**args)
-           update!(**args)
-        end
+        # The password must contain a number.
+        # Corresponds to the JSON property `containsNumericCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_numeric_character
+        alias_method :contains_numeric_character?, :contains_numeric_character
-        # Update properties of this object
-        def update!(**args)
-          @authenticator_attachment = args[:authenticator_attachment] if args.key?(:authenticator_attachment)
-          @require_resident_key = args[:require_resident_key] if args.key?(:require_resident_key)
-          @user_verification = args[:user_verification] if args.key?(:user_verification)
-        end
-      end
+        # The password must contain an upper case character.
+        # Corresponds to the JSON property `containsUppercaseCharacter`
+        # @return [Boolean]
+        attr_accessor :contains_uppercase_character
+        alias_method :contains_uppercase_character?, :contains_uppercase_character
-      # The information required to auto-retrieve an SMS.
-      class GoogleCloudIdentitytoolkitV2AutoRetrievalInfo
-        include Google::Apis::Core::Hashable
+        # Maximum password length. No default max length
+        # Corresponds to the JSON property `maxPasswordLength`
+        # @return [Fixnum]
+        attr_accessor :max_password_length
-        # The Android app's signature hash for Google Play Service's SMS Retriever API.
-        # Corresponds to the JSON property `appSignatureHash`
-        # @return [String]
-        attr_accessor :app_signature_hash
+        # Minimum password length. Range from 6 to 30
+        # Corresponds to the JSON property `minPasswordLength`
+        # @return [Fixnum]
+        attr_accessor :min_password_length
         def initialize(**args)
            update!(**args)
@@ -2106,7 +2112,12 @@ module Google
         # Update properties of this object
         def update!(**args)
-          @app_signature_hash = args[:app_signature_hash] if args.key?(:app_signature_hash)
+          @contains_lowercase_character = args[:contains_lowercase_character] if args.key?(:contains_lowercase_character)
+          @contains_non_alphanumeric_character = args[:contains_non_alphanumeric_character] if args.key?(:contains_non_alphanumeric_character)
+          @contains_numeric_character = args[:contains_numeric_character] if args.key?(:contains_numeric_character)
+          @contains_uppercase_character = args[:contains_uppercase_character] if args.key?(:contains_uppercase_character)
+          @max_password_length = args[:max_password_length] if args.key?(:max_password_length)
+          @min_password_length = args[:min_password_length] if args.key?(:min_password_length)
         end
       end
@@ -2373,122 +2384,6 @@ module Google
         end
       end
-      # FinalizePasskeyEnrollment request. Registers passkey as a first factor for the
-      # user.
-      class GoogleCloudIdentitytoolkitV2FinalizePasskeyEnrollmentRequest
-        include Google::Apis::Core::Hashable
-        # Authenticator response to register a new FIDO key.
-        # Corresponds to the JSON property `authenticatorRegistrationResponse`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2AuthenticatorRegistrationResponse]
-        attr_accessor :authenticator_registration_response
-        # Required. The GCIP ID token of the signed-in user
-        # Corresponds to the JSON property `idToken`
-        # @return [String]
-        attr_accessor :id_token
-        # Optional. The ID of the Identity Platform tenant the user is signing in to. If
-        # not set, the user will sign in to the default Identity Platform project.
-        # Corresponds to the JSON property `tenantId`
-        # @return [String]
-        attr_accessor :tenant_id
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @authenticator_registration_response = args[:authenticator_registration_response] if args.key?(:authenticator_registration_response)
-          @id_token = args[:id_token] if args.key?(:id_token)
-          @tenant_id = args[:tenant_id] if args.key?(:tenant_id)
-        end
-      end
-      # FinalizePasskeyEnrollment response.
-      class GoogleCloudIdentitytoolkitV2FinalizePasskeyEnrollmentResponse
-        include Google::Apis::Core::Hashable
-        # ID token for the authenticated user.
-        # Corresponds to the JSON property `idToken`
-        # @return [String]
-        attr_accessor :id_token
-        # Refresh token for the authenticated user.
-        # Corresponds to the JSON property `refreshToken`
-        # @return [String]
-        attr_accessor :refresh_token
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @id_token = args[:id_token] if args.key?(:id_token)
-          @refresh_token = args[:refresh_token] if args.key?(:refresh_token)
-        end
-      end
-      # Request to finalize a passkey sign-in.
-      class GoogleCloudIdentitytoolkitV2FinalizePasskeySignInRequest
-        include Google::Apis::Core::Hashable
-        # Authenticator response to authenticate the user with an existing FIDO key.
-        # Corresponds to the JSON property `authenticatorAuthenticationResponse`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2AuthenticatorAuthenticationResponse]
-        attr_accessor :authenticator_authentication_response
-        # Optional. The session ID that was passed into StartPasskeySignIn, if any.
-        # Corresponds to the JSON property `sessionId`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :session_id
-        # Optional. The ID of the Identity Platform tenant the user is signing in to. If
-        # not set, the user will sign in to the default Identity Platform project.
-        # Corresponds to the JSON property `tenantId`
-        # @return [String]
-        attr_accessor :tenant_id
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @authenticator_authentication_response = args[:authenticator_authentication_response] if args.key?(:authenticator_authentication_response)
-          @session_id = args[:session_id] if args.key?(:session_id)
-          @tenant_id = args[:tenant_id] if args.key?(:tenant_id)
-        end
-      end
-      # Response for FinalizePasskeySignIn.
-      class GoogleCloudIdentitytoolkitV2FinalizePasskeySignInResponse
-        include Google::Apis::Core::Hashable
-        # ID token for the authenticated user.
-        # Corresponds to the JSON property `idToken`
-        # @return [String]
-        attr_accessor :id_token
-        # Refresh token for the authenticated user.
-        # Corresponds to the JSON property `refreshToken`
-        # @return [String]
-        attr_accessor :refresh_token
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @id_token = args[:id_token] if args.key?(:id_token)
-          @refresh_token = args[:refresh_token] if args.key?(:refresh_token)
-        end
-      end
       # TOTP verification info for FinalizeMfaSignInRequest.
       class GoogleCloudIdentitytoolkitV2MfaTotpSignInRequestInfo
         include Google::Apis::Core::Hashable
@@ -2508,101 +2403,24 @@ module Google
         end
       end
-      # Parameters for creating a FIDO key.
-      class GoogleCloudIdentitytoolkitV2PublicKeyCredentialCreationOptions
-        include Google::Apis::Core::Hashable
-        # Criteria for the authenticator to create a registered FIDO key.
-        # Corresponds to the JSON property `authenticatorSelection`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2AuthenticatorSelectionCriteria]
-        attr_accessor :authenticator_selection
-        # The FIDO challenge.
-        # Corresponds to the JSON property `challenge`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :challenge
-        # Credentials already mapped to this user.
-        # Corresponds to the JSON property `excludeCredentials`
-        # @return [Array<Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2PublicKeyCredentialDescriptor>]
-        attr_accessor :exclude_credentials
-        # Lists the supported key types and signature algorithms.
-        # Corresponds to the JSON property `pubKeyCredParams`
-        # @return [Array<Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2PublicKeyCredentialParameters>]
-        attr_accessor :pub_key_cred_params
-        # The entity object for the Relying Party.
-        # Corresponds to the JSON property `rp`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2RpEntity]
-        attr_accessor :rp
-        # The entity object for the user.
-        # Corresponds to the JSON property `user`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2UserEntity]
-        attr_accessor :user
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @authenticator_selection = args[:authenticator_selection] if args.key?(:authenticator_selection)
-          @challenge = args[:challenge] if args.key?(:challenge)
-          @exclude_credentials = args[:exclude_credentials] if args.key?(:exclude_credentials)
-          @pub_key_cred_params = args[:pub_key_cred_params] if args.key?(:pub_key_cred_params)
-          @rp = args[:rp] if args.key?(:rp)
-          @user = args[:user] if args.key?(:user)
-        end
-      end
-      # Descriptor for a public key credential.
-      class GoogleCloudIdentitytoolkitV2PublicKeyCredentialDescriptor
+      # Configuration for password policy.
+      class GoogleCloudIdentitytoolkitV2PasswordPolicy
         include Google::Apis::Core::Hashable
-        # The identifier for the credential.
-        # Corresponds to the JSON property `credentialId`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :credential_id
-        # The type of public key.
-        # Corresponds to the JSON property `credentialType`
-        # @return [String]
-        attr_accessor :credential_type
-        # Authenticator transports that are supported by the authenticator.
-        # Corresponds to the JSON property `transports`
+        # Output only. Allowed characters which satisfy the non_alphanumeric requirement.
+        # Corresponds to the JSON property `allowedNonAlphanumericCharacters`
         # @return [Array<String>]
-        attr_accessor :transports
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @credential_id = args[:credential_id] if args.key?(:credential_id)
-          @credential_type = args[:credential_type] if args.key?(:credential_type)
-          @transports = args[:transports] if args.key?(:transports)
-        end
-      end
+        attr_accessor :allowed_non_alphanumeric_characters
-      # Parameters to create a public credential.
-      class GoogleCloudIdentitytoolkitV2PublicKeyCredentialParameters
-        include Google::Apis::Core::Hashable
+        # Custom strength options to enforce on user passwords.
+        # Corresponds to the JSON property `customStrengthOptions`
+        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2CustomStrengthOptions]
+        attr_accessor :custom_strength_options
-        # The COSE registry number of the cryptographic signature algorithm.
-        # Corresponds to the JSON property `alg`
+        # Output only. schema version number for the password policy
+        # Corresponds to the JSON property `schemaVersion`
         # @return [Fixnum]
-        attr_accessor :alg
-        # The type of public key to be created.
-        # Corresponds to the JSON property `credentialType`
-        # @return [String]
-        attr_accessor :credential_type
+        attr_accessor :schema_version
         def initialize(**args)
            update!(**args)
@@ -2610,40 +2428,9 @@ module Google
         # Update properties of this object
         def update!(**args)
-          @alg = args[:alg] if args.key?(:alg)
-          @credential_type = args[:credential_type] if args.key?(:credential_type)
-        end
-      end
-      # Parameters for signing a challenge with a FIDO key.
-      class GoogleCloudIdentitytoolkitV2PublicKeyCredentialRequestOptions
-        include Google::Apis::Core::Hashable
-        # The FIDO challenge.
-        # Corresponds to the JSON property `challenge`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :challenge
-        # The relying party identifier.
-        # Corresponds to the JSON property `rpId`
-        # @return [String]
-        attr_accessor :rp_id
-        # The requirements regarding user verification.
-        # Corresponds to the JSON property `userVerification`
-        # @return [String]
-        attr_accessor :user_verification
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @challenge = args[:challenge] if args.key?(:challenge)
-          @rp_id = args[:rp_id] if args.key?(:rp_id)
-          @user_verification = args[:user_verification] if args.key?(:user_verification)
+          @allowed_non_alphanumeric_characters = args[:allowed_non_alphanumeric_characters] if args.key?(:allowed_non_alphanumeric_characters)
+          @custom_strength_options = args[:custom_strength_options] if args.key?(:custom_strength_options)
+          @schema_version = args[:schema_version] if args.key?(:schema_version)
         end
       end
@@ -2658,7 +2445,8 @@ module Google
         attr_accessor :recaptcha_enforcement_state
         # The reCAPTCHA Enterprise key resource name, e.g. "projects/`project`/keys/`key`
-        # ".
+        # ". This will only be returned when the reCAPTCHA enforcement state is AUDIT or
+        # ENFORCE on at least one of the reCAPTCHA providers.
         # Corresponds to the JSON property `recaptchaKey`
         # @return [String]
         attr_accessor :recaptcha_key
@@ -2719,7 +2507,7 @@ module Google
         # The redirect URI provided in the initial authorization request made by the
         # client to the IDP. The URI must use the HTTPS protocol, include a domain name,
-        # and can’t contain an IP address or localhost. Required if token_type is CODE.
+        # and can't contain an IP address or localhost. Required if token_type is CODE.
         # Corresponds to the JSON property `redirectUri`
         # @return [String]
         attr_accessor :redirect_uri
@@ -2770,25 +2558,6 @@ module Google
         end
       end
-      # The entity object for the Relying Party.
-      class GoogleCloudIdentitytoolkitV2RpEntity
-        include Google::Apis::Core::Hashable
-        # The RP ID of the FIDO Relying Party.
-        # Corresponds to the JSON property `id`
-        # @return [String]
-        attr_accessor :id
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @id = args[:id] if args.key?(:id)
-        end
-      end
       # Sends MFA enrollment verification SMS for a user.
       class GoogleCloudIdentitytoolkitV2StartMfaEnrollmentRequest
         include Google::Apis::Core::Hashable
@@ -3055,119 +2824,6 @@ module Google
         end
       end
-      # Starts passkey enrollment for passkey as a first factor by returning the FIDO
-      # challenge.
-      class GoogleCloudIdentitytoolkitV2StartPasskeyEnrollmentRequest
-        include Google::Apis::Core::Hashable
-        # Required. The GCIP ID token of the signed-in user
-        # Corresponds to the JSON property `idToken`
-        # @return [String]
-        attr_accessor :id_token
-        # Optional. The ID of the Identity Platform tenant the user is signing in to. If
-        # not set, the user will sign in to the default Identity Platform project.
-        # Corresponds to the JSON property `tenantId`
-        # @return [String]
-        attr_accessor :tenant_id
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @id_token = args[:id_token] if args.key?(:id_token)
-          @tenant_id = args[:tenant_id] if args.key?(:tenant_id)
-        end
-      end
-      # StartPasskeyEnrollment response.
-      class GoogleCloudIdentitytoolkitV2StartPasskeyEnrollmentResponse
-        include Google::Apis::Core::Hashable
-        # Parameters for creating a FIDO key.
-        # Corresponds to the JSON property `credentialCreationOptions`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2PublicKeyCredentialCreationOptions]
-        attr_accessor :credential_creation_options
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @credential_creation_options = args[:credential_creation_options] if args.key?(:credential_creation_options)
-        end
-      end
-      # Starts passkey sign-in by returning the FIDO challenge.
-      class GoogleCloudIdentitytoolkitV2StartPasskeySignInRequest
-        include Google::Apis::Core::Hashable
-        # Optional. The developer can bind their own concept of a user session to this
-        # flow.
-        # Corresponds to the JSON property `sessionId`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :session_id
-        # Optional. The ID of the Identity Platform tenant the user is signing in to. If
-        # not set, the user will sign in to the default Identity Platform project.
-        # Corresponds to the JSON property `tenantId`
-        # @return [String]
-        attr_accessor :tenant_id
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @session_id = args[:session_id] if args.key?(:session_id)
-          @tenant_id = args[:tenant_id] if args.key?(:tenant_id)
-        end
-      end
-      # Response for StartPasskeySignIn.
-      class GoogleCloudIdentitytoolkitV2StartPasskeySignInResponse
-        include Google::Apis::Core::Hashable
-        # Parameters for signing a challenge with a FIDO key.
-        # Corresponds to the JSON property `credentialRequestOptions`
-        # @return [Google::Apis::IdentitytoolkitV2::GoogleCloudIdentitytoolkitV2PublicKeyCredentialRequestOptions]
-        attr_accessor :credential_request_options
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @credential_request_options = args[:credential_request_options] if args.key?(:credential_request_options)
-        end
-      end
-      # The entity object for the user.
-      class GoogleCloudIdentitytoolkitV2UserEntity
-        include Google::Apis::Core::Hashable
-        # The user ID.
-        # Corresponds to the JSON property `id`
-        # NOTE: Values are automatically base64 encoded/decoded in the client library.
-        # @return [String]
-        attr_accessor :id
-        def initialize(**args)
-           update!(**args)
-        end
-        # Update properties of this object
-        def update!(**args)
-          @id = args[:id] if args.key?(:id)
-        end
-      end
       # Withdraws MFA.
       class GoogleCloudIdentitytoolkitV2WithdrawMfaRequest
         include Google::Apis::Core::Hashable