google-apis-sts_v1 0.4.0 → 0.5.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/lib/google/apis/sts_v1/classes.rb +35 -30
- data/lib/google/apis/sts_v1/gem_version.rb +3 -3
- metadata +4 -4
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 68e3664ef29c2718f67307622832d82bac19f7f0f5bffb0d31963d2c98878c51
|
4
|
+
data.tar.gz: 661e76ef139eb9e737ade24f8cdf929e3cb30d43eb386b966718058687e9a2fb
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: a1d2b40f06e60ef7f673c80ff1277badf45bc6141351dbb31bd1073d65296f8bdee4bd736f9cce579fc803adbe2d948c186fbdaf8a7bd73ee50558f7e2062b0a
|
7
|
+
data.tar.gz: 32942550c2114af9aa8467865098b4afa16af5a6c02462d0682e5bf7ad36b497f2f8d022f7811e469bfd2ae94d5681d77dc5a27d9942d9d28194fa889dc1490d
|
data/CHANGELOG.md
CHANGED
@@ -66,36 +66,41 @@ module Google
|
|
66
66
|
# subject_token_type` must be `urn:ietf:params:oauth:token-type:jwt`. The
|
67
67
|
# following headers are required: - `kid`: The identifier of the signing key
|
68
68
|
# securing the JWT. - `alg`: The cryptographic algorithm securing the JWT. Must
|
69
|
-
# be `RS256`. The following payload fields are required. For more
|
70
|
-
# see [RFC 7523, Section 3](https://tools.ietf.org/html/rfc7523#
|
71
|
-
# iss`: The issuer of the token. The issuer must provide a
|
72
|
-
# the URL `/.well-known/openid-configuration`, where `` is
|
73
|
-
# field. The document must be formatted according to section 4.
|
74
|
-
# 0 Discovery specification](https://openid.net/specs/openid-
|
75
|
-
# 1_0.html#ProviderConfigurationResponse). - `iat`: The issue
|
76
|
-
# since the Unix epoch. Must be in the past. - `exp`: The
|
77
|
-
# seconds, since the Unix epoch. Must be less than 48 hours
|
78
|
-
# expiration times are more secure. If possible, we
|
79
|
-
# expiration time less than 6 hours. - `sub`: The identity
|
80
|
-
# `aud`:
|
81
|
-
#
|
82
|
-
#
|
83
|
-
#
|
84
|
-
#
|
85
|
-
#
|
86
|
-
#
|
87
|
-
#
|
88
|
-
#
|
89
|
-
#
|
90
|
-
#
|
91
|
-
#
|
92
|
-
#
|
93
|
-
# AWS
|
94
|
-
#
|
95
|
-
#
|
96
|
-
#
|
97
|
-
# - `
|
98
|
-
#
|
69
|
+
# be `RS256` or `ES256`. The following payload fields are required. For more
|
70
|
+
# information, see [RFC 7523, Section 3](https://tools.ietf.org/html/rfc7523#
|
71
|
+
# section-3): - `iss`: The issuer of the token. The issuer must provide a
|
72
|
+
# discovery document at the URL `/.well-known/openid-configuration`, where `` is
|
73
|
+
# the value of this field. The document must be formatted according to section 4.
|
74
|
+
# 2 of the [OIDC 1.0 Discovery specification](https://openid.net/specs/openid-
|
75
|
+
# connect-discovery-1_0.html#ProviderConfigurationResponse). - `iat`: The issue
|
76
|
+
# time, in seconds, since the Unix epoch. Must be in the past. - `exp`: The
|
77
|
+
# expiration time, in seconds, since the Unix epoch. Must be less than 48 hours
|
78
|
+
# after `iat`. Shorter expiration times are more secure. If possible, we
|
79
|
+
# recommend setting an expiration time less than 6 hours. - `sub`: The identity
|
80
|
+
# asserted in the JWT. - `aud`: For workload identity pools, this must be a
|
81
|
+
# value specified in the allowed audiences for the workload identity pool
|
82
|
+
# provider, or one of the audiences allowed by default if no audiences were
|
83
|
+
# specified. See https://cloud.google.com/iam/docs/reference/rest/v1/projects.
|
84
|
+
# locations.workloadIdentityPools.providers#oidc Example header: ``` ` "alg": "
|
85
|
+
# RS256", "kid": "us-east-11" ` ``` Example payload: ``` ` "iss": "https://
|
86
|
+
# accounts.google.com", "iat": 1517963104, "exp": 1517966704, "aud": "//iam.
|
87
|
+
# googleapis.com/projects/1234567890123/locations/global/workloadIdentityPools/
|
88
|
+
# my-pool/providers/my-provider", "sub": "113475438248934895348", "my_claims": `
|
89
|
+
# "additional_claim": "value" ` ` ``` If `subject_token` is for AWS, it must be
|
90
|
+
# a serialized `GetCallerIdentity` token. This token contains the same
|
91
|
+
# information as a request to the AWS [`GetCallerIdentity()`](https://docs.aws.
|
92
|
+
# amazon.com/STS/latest/APIReference/API_GetCallerIdentity) method, as well as
|
93
|
+
# the AWS [signature](https://docs.aws.amazon.com/general/latest/gr/
|
94
|
+
# signing_aws_api_requests.html) for the request information. Use Signature
|
95
|
+
# Version 4. Format the request as URL-encoded JSON, and set the `
|
96
|
+
# subject_token_type` parameter to `urn:ietf:params:aws:token-type:aws4_request`.
|
97
|
+
# The following parameters are required: - `url`: The URL of the AWS STS
|
98
|
+
# endpoint for `GetCallerIdentity()`, such as `https://sts.amazonaws.com?Action=
|
99
|
+
# GetCallerIdentity&Version=2011-06-15`. Regional endpoints are also supported. -
|
100
|
+
# `method`: The HTTP request method: `POST`. - `headers`: The HTTP request
|
101
|
+
# headers, which must include: - `Authorization`: The request signature. - `x-
|
102
|
+
# amz-date`: The time you will send the request, formatted as an [ISO8601 Basic](
|
103
|
+
# https://docs.aws.amazon.com/general/latest/gr/sigv4_elements.html#
|
99
104
|
# sigv4_elements_date) string. This value is typically set to the current time
|
100
105
|
# and is used to help prevent replay attacks. - `host`: The hostname of the `url`
|
101
106
|
# field; for example, `sts.amazonaws.com`. - `x-goog-cloud-target-resource`:
|
@@ -16,13 +16,13 @@ module Google
|
|
16
16
|
module Apis
|
17
17
|
module StsV1
|
18
18
|
# Version of the google-apis-sts_v1 gem
|
19
|
-
GEM_VERSION = "0.
|
19
|
+
GEM_VERSION = "0.5.0"
|
20
20
|
|
21
21
|
# Version of the code generator used to generate this client
|
22
|
-
GENERATOR_VERSION = "0.
|
22
|
+
GENERATOR_VERSION = "0.2.0"
|
23
23
|
|
24
24
|
# Revision of the discovery document this client was generated from
|
25
|
-
REVISION = "
|
25
|
+
REVISION = "20210508"
|
26
26
|
end
|
27
27
|
end
|
28
28
|
end
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-apis-sts_v1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.5.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2021-
|
11
|
+
date: 2021-05-18 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: google-apis-core
|
@@ -52,7 +52,7 @@ licenses:
|
|
52
52
|
metadata:
|
53
53
|
bug_tracker_uri: https://github.com/googleapis/google-api-ruby-client/issues
|
54
54
|
changelog_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-sts_v1/CHANGELOG.md
|
55
|
-
documentation_uri: https://googleapis.dev/ruby/google-apis-sts_v1/v0.
|
55
|
+
documentation_uri: https://googleapis.dev/ruby/google-apis-sts_v1/v0.5.0
|
56
56
|
source_code_uri: https://github.com/googleapis/google-api-ruby-client/tree/master/generated/google-apis-sts_v1
|
57
57
|
post_install_message:
|
58
58
|
rdoc_options: []
|
@@ -69,7 +69,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
69
69
|
- !ruby/object:Gem::Version
|
70
70
|
version: '0'
|
71
71
|
requirements: []
|
72
|
-
rubygems_version: 3.2.
|
72
|
+
rubygems_version: 3.2.17
|
73
73
|
signing_key:
|
74
74
|
specification_version: 4
|
75
75
|
summary: Simple REST client for Security Token Service API V1
|