google-apis-networksecurity_v1 0.40.0 → 0.42.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: edbfb5c426fbca4613b789fda55829772c8896b402b9f642e5a109fbbdffe268
-  data.tar.gz: '061699d42676321974c889379c3dc3171dec49cdab1769b9e733d180738f2998'
+  metadata.gz: '030684738a11c653c6dbfefd383387196de0c56ab88b58487217afd4da882dc5'
+  data.tar.gz: d51d5842964ccf30b14c5d6c44d27bf062f34be15f6788245868693e015c66ca
 SHA512:
-  metadata.gz: 99d07c9470fe7da57befdcec0c43286abd6845ec078d29ea692b067c8d5fad3d842007a97c927f60d25ab274dc41102576d413d3c0c639a2de2cefe1340872cb
-  data.tar.gz: a63d98c37bace9079dc6446be1c05187e836a635a40e66db4064df8a7d9715a45723e0648c2f756afe80a80ac267f8deb71cdfb4748c6707972972cee4cb568c
+  metadata.gz: 50d039d18e697e77c7c89590cd1c8dfe5cdf6aa5dc0b90639611971934827fd9ca32fca7a88b3584f0c8484227b1ae5d11c03ae831446095ac012ef29aa4236d
+  data.tar.gz: 18c9e17d6c697f952773b87e078d6b0378fe7864f39b75b7a79c58cafb7e263818eb4316c6f5eeaaaf31be7b0d42847789511434b0e55d136a72ad6611ad61bf

data/CHANGELOG.md

@@ -1,5 +1,13 @@
 # Release history for google-apis-networksecurity_v1
 
+### v0.42.0 (2025-08-17)
+
+* Regenerated from discovery document revision 20250806
+
+### v0.41.0 (2025-07-27)
+
+* Regenerated from discovery document revision 20250714
+
 ### v0.40.0 (2025-06-15)
 
 * Regenerated from discovery document revision 20250604

data/lib/google/apis/networksecurity_v1/classes.rb

@@ -375,14 +375,30 @@ module Google
       class AuthzPolicyAuthzRuleFromRequestSource
         include Google::Apis::Core::Hashable
       
-        # Optional. A list of IPs or CIDRs to match against the source IP of a request.
-        # Limited to 5 ip_blocks.
+        # Optional. A list of IP addresses or IP address ranges to match against the
+        # source IP address of the request. Limited to 10 ip_blocks per Authorization
+        # Policy
         # Corresponds to the JSON property `ipBlocks`
         # @return [Array<Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRuleIpBlock>]
         attr_accessor :ip_blocks
       
+        # Optional. A list of identities derived from the client's certificate. This
+        # field will not match on a request unless frontend mutual TLS is enabled for
+        # the forwarding rule or Gateway and the client certificate has been
+        # successfully validated by mTLS. Each identity is a string whose value is
+        # matched against a list of URI SANs, DNS Name SANs, or the common name in the
+        # client's certificate. A match happens when any principal matches with the rule.
+        # Limited to 50 principals per Authorization Policy for Regional Internal
+        # Application Load Balancer, Regional External Application Load Balancer, Cross-
+        # region Internal Application Load Balancer, and Cloud Service Mesh. Limited to
+        # 25 principals per Authorization Policy for Global External Application Load
+        # Balancer.
+        # Corresponds to the JSON property `principals`
+        # @return [Array<Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRulePrincipal>]
+        attr_accessor :principals
+      
         # Optional. A list of resources to match against the resource of the source VM
-        # of a request. Limited to 5 resources.
+        # of a request. Limited to 10 resources per Authorization Policy.
         # Corresponds to the JSON property `resources`
         # @return [Array<Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRuleRequestResource>]
         attr_accessor :resources
@@ -394,6 +410,7 @@ module Google
         # Update properties of this object
         def update!(**args)
           @ip_blocks = args[:ip_blocks] if args.key?(:ip_blocks)
+          @principals = args[:principals] if args.key?(:principals)
           @resources = args[:resources] if args.key?(:resources)
         end
       end
@@ -448,6 +465,32 @@ module Google
         end
       end
       
+      # Describes the properties of a principal to be matched against.
+      class AuthzPolicyAuthzRulePrincipal
+        include Google::Apis::Core::Hashable
+      
+        # Determines how a string value should be matched.
+        # Corresponds to the JSON property `principal`
+        # @return [Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRuleStringMatch]
+        attr_accessor :principal
+      
+        # Optional. An enum to decide what principal value the principal rule will match
+        # against. If not specified, the PrincipalSelector is CLIENT_CERT_URI_SAN.
+        # Corresponds to the JSON property `principalSelector`
+        # @return [String]
+        attr_accessor :principal_selector
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @principal = args[:principal] if args.key?(:principal)
+          @principal_selector = args[:principal_selector] if args.key?(:principal_selector)
+        end
+      end
+      
       # Describes the properties of a client VM resource accessing the internal
       # application load balancers.
       class AuthzPolicyAuthzRuleRequestResource
@@ -483,7 +526,7 @@ module Google
         # Required. A list of resource tag value permanent IDs to match against the
         # resource manager tags value associated with the source VM of a request. The
         # match follows AND semantics which means all the ids must match. Limited to 5
-        # matches.
+        # ids in the Tag value id set.
         # Corresponds to the JSON property `ids`
         # @return [Array<Fixnum>]
         attr_accessor :ids
@@ -594,23 +637,26 @@ module Google
       
         # Optional. A list of HTTP Hosts to match against. The match can be one of exact,
         # prefix, suffix, or contains (substring match). Matches are always case
-        # sensitive unless the ignoreCase is set. Limited to 5 matches.
+        # sensitive unless the ignoreCase is set. Limited to 10 hosts per Authorization
+        # Policy.
         # Corresponds to the JSON property `hosts`
         # @return [Array<Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRuleStringMatch>]
         attr_accessor :hosts
       
         # Optional. A list of HTTP methods to match against. Each entry must be a valid
         # HTTP method name (GET, PUT, POST, HEAD, PATCH, DELETE, OPTIONS). It only
-        # allows exact match and is always case sensitive.
+        # allows exact match and is always case sensitive. Limited to 10 methods per
+        # Authorization Policy.
         # Corresponds to the JSON property `methods`
         # @return [Array<String>]
         attr_accessor :methods_prop
       
         # Optional. A list of paths to match against. The match can be one of exact,
         # prefix, suffix, or contains (substring match). Matches are always case
-        # sensitive unless the ignoreCase is set. Limited to 5 matches. Note that this
-        # path match includes the query parameters. For gRPC services, this should be a
-        # fully-qualified name of the form /package.service/method.
+        # sensitive unless the ignoreCase is set. Limited to 10 paths per Authorization
+        # Policy. Note that this path match includes the query parameters. For gRPC
+        # services, this should be a fully-qualified name of the form /package.service/
+        # method.
         # Corresponds to the JSON property `paths`
         # @return [Array<Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRuleStringMatch>]
         attr_accessor :paths
@@ -635,7 +681,8 @@ module Google
         # Required. A list of headers to match against in http header. The match can be
         # one of exact, prefix, suffix, or contains (substring match). The match follows
         # AND semantics which means all the headers must match. Matches are always case
-        # sensitive unless the ignoreCase is set. Limited to 5 matches.
+        # sensitive unless the ignoreCase is set. Limited to 10 headers per
+        # Authorization Policy.
         # Corresponds to the JSON property `headers`
         # @return [Array<Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRuleHeaderMatch>]
         attr_accessor :headers
@@ -757,7 +804,7 @@ module Google
       # certificates trusted by the TrustConfig. * `clientCertificate` is a client
       # certificate that the load balancer uses to express its identity to the backend,
       # if the connection to the backend uses mTLS. You can attach the
-      # BackendAuthenticationConfig to the load balancer’s BackendService directly
+      # BackendAuthenticationConfig to the load balancer's BackendService directly
       # determining how that BackendService negotiates TLS.
       class BackendAuthenticationConfig
         include Google::Apis::Core::Hashable
@@ -901,7 +948,7 @@ module Google
         attr_accessor :labels
       
         # Required. Name of the ClientTlsPolicy resource. It matches the pattern `
-        # projects/*/locations/`location`/clientTlsPolicies/`client_tls_policy``
+        # projects/`project`/locations/`location`/clientTlsPolicies/`client_tls_policy``
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name
@@ -1130,7 +1177,7 @@ module Google
         end
       end
       
-      # Message describing Endpoint object
+      # Message describing Endpoint object.
       class FirewallEndpoint
         include Google::Apis::Core::Hashable
       
@@ -1154,7 +1201,7 @@ module Google
         # @return [String]
         attr_accessor :billing_project_id
       
-        # Output only. Create time stamp
+        # Output only. Create time stamp.
         # Corresponds to the JSON property `createTime`
         # @return [String]
         attr_accessor :create_time
@@ -1169,7 +1216,7 @@ module Google
         # @return [Hash<String,String>]
         attr_accessor :labels
       
-        # Immutable. Identifier. name of resource
+        # Immutable. Identifier. Name of resource.
         # Corresponds to the JSON property `name`
         # @return [String]
         attr_accessor :name

data/lib/google/apis/networksecurity_v1/gem_version.rb

@@ -16,13 +16,13 @@ module Google
   module Apis
     module NetworksecurityV1
       # Version of the google-apis-networksecurity_v1 gem
-      GEM_VERSION = "0.40.0"
+      GEM_VERSION = "0.42.0"
 
       # Version of the code generator used to generate this client
       GENERATOR_VERSION = "0.18.0"
 
       # Revision of the discovery document this client was generated from
-      REVISION = "20250604"
+      REVISION = "20250806"
     end
   end
 end

data/lib/google/apis/networksecurity_v1/representations.rb

@@ -82,6 +82,12 @@ module Google
         include Google::Apis::Core::JsonObjectSupport
       end
       
+      class AuthzPolicyAuthzRulePrincipal
+        class Representation < Google::Apis::Core::JsonRepresentation; end
+      
+        include Google::Apis::Core::JsonObjectSupport
+      end
+      
       class AuthzPolicyAuthzRuleRequestResource
         class Representation < Google::Apis::Core::JsonRepresentation; end
       
@@ -760,6 +766,8 @@ module Google
         class Representation < Google::Apis::Core::JsonRepresentation
           collection :ip_blocks, as: 'ipBlocks', class: Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRuleIpBlock, decorator: Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRuleIpBlock::Representation
       
+          collection :principals, as: 'principals', class: Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRulePrincipal, decorator: Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRulePrincipal::Representation
+      
           collection :resources, as: 'resources', class: Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRuleRequestResource, decorator: Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRuleRequestResource::Representation
       
         end
@@ -782,6 +790,15 @@ module Google
         end
       end
       
+      class AuthzPolicyAuthzRulePrincipal
+        # @private
+        class Representation < Google::Apis::Core::JsonRepresentation
+          property :principal, as: 'principal', class: Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRuleStringMatch, decorator: Google::Apis::NetworksecurityV1::AuthzPolicyAuthzRuleStringMatch::Representation
+      
+          property :principal_selector, as: 'principalSelector'
+        end
+      end
+      
       class AuthzPolicyAuthzRuleRequestResource
         # @private
         class Representation < Google::Apis::Core::JsonRepresentation

data/lib/google/apis/networksecurity_v1/service.rb

@@ -581,7 +581,7 @@ module Google
         
         # Update a single Endpoint.
         # @param [String] name
-        #   Immutable. Identifier. name of resource
+        #   Immutable. Identifier. Name of resource.
         # @param [Google::Apis::NetworksecurityV1::FirewallEndpoint] firewall_endpoint_object
         # @param [String] request_id
         #   Optional. An optional request ID to identify requests. Specify a unique
@@ -2735,7 +2735,7 @@ module Google
         # Updates the parameters of a single ClientTlsPolicy.
         # @param [String] name
         #   Required. Name of the ClientTlsPolicy resource. It matches the pattern `
-        #   projects/*/locations/`location`/clientTlsPolicies/`client_tls_policy``
+        #   projects/`project`/locations/`location`/clientTlsPolicies/`client_tls_policy``
         # @param [Google::Apis::NetworksecurityV1::ClientTlsPolicy] client_tls_policy_object
         # @param [String] update_mask
         #   Optional. Field mask is used to specify the fields to be overwritten in the

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: google-apis-networksecurity_v1
 version: !ruby/object:Gem::Version
-  version: 0.40.0
+  version: 0.42.0
 platform: ruby
 authors:
 - Google LLC
@@ -57,7 +57,7 @@ licenses:
 metadata:
   bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
   changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-networksecurity_v1/CHANGELOG.md
-  documentation_uri: https://googleapis.dev/ruby/google-apis-networksecurity_v1/v0.40.0
+  documentation_uri: https://googleapis.dev/ruby/google-apis-networksecurity_v1/v0.42.0
   source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/main/generated/google-apis-networksecurity_v1
 rdoc_options: []
 require_paths: