google-cloud-managed_kafka-v1 1.2.0 → 1.4.0

data/proto_docs/google/cloud/managedkafka/v1/managed_kafka.rb

@@ -335,6 +335,193 @@ module Google
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
+
+        # Request for ListAcls.
+        # @!attribute [rw] parent
+        #   @return [::String]
+        #     Required. The parent cluster whose acls are to be listed.
+        #     Structured like
+        #     `projects/{project}/locations/{location}/clusters/{cluster}`.
+        # @!attribute [rw] page_size
+        #   @return [::Integer]
+        #     Optional. The maximum number of acls to return. The service may return
+        #     fewer than this value. If unset or zero, all acls for the parent is
+        #     returned.
+        # @!attribute [rw] page_token
+        #   @return [::String]
+        #     Optional. A page token, received from a previous `ListAcls` call.
+        #     Provide this to retrieve the subsequent page.
+        #
+        #     When paginating, all other parameters provided to `ListAcls` must match
+        #     the call that provided the page token.
+        class ListAclsRequest
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Response for ListAcls.
+        # @!attribute [rw] acls
+        #   @return [::Array<::Google::Cloud::ManagedKafka::V1::Acl>]
+        #     The list of acls in the requested parent. The order of the acls is
+        #     unspecified.
+        # @!attribute [rw] next_page_token
+        #   @return [::String]
+        #     A token that can be sent as `page_token` to retrieve the next page of
+        #     results. If this field is omitted, there are no more results.
+        class ListAclsResponse
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Request for GetAcl.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     Required. The name of the acl to return.
+        #     Structured like:
+        #     `projects/{project}/locations/{location}/clusters/{cluster}/acls/{acl_id}`.
+        #
+        #     The structure of `acl_id` defines the Resource Pattern (resource_type,
+        #     resource_name, pattern_type) of the acl. See `Acl.name` for
+        #     details.
+        class GetAclRequest
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Request for CreateAcl.
+        # @!attribute [rw] parent
+        #   @return [::String]
+        #     Required. The parent cluster in which to create the acl.
+        #     Structured like
+        #     `projects/{project}/locations/{location}/clusters/{cluster}`.
+        # @!attribute [rw] acl_id
+        #   @return [::String]
+        #     Required. The ID to use for the acl, which will become the final component
+        #     of the acl's name. The structure of `acl_id` defines the Resource Pattern
+        #     (resource_type, resource_name, pattern_type) of the acl. `acl_id` is
+        #     structured like one of the following:
+        #
+        #     For acls on the cluster:
+        #       `cluster`
+        #
+        #     For acls on a single resource within the cluster:
+        #       `topic/{resource_name}`
+        #       `consumerGroup/{resource_name}`
+        #       `transactionalId/{resource_name}`
+        #
+        #     For acls on all resources that match a prefix:
+        #       `topicPrefixed/{resource_name}`
+        #       `consumerGroupPrefixed/{resource_name}`
+        #       `transactionalIdPrefixed/{resource_name}`
+        #
+        #     For acls on all resources of a given type (i.e. the wildcard literal "*"):
+        #       `allTopics` (represents `topic/*`)
+        #       `allConsumerGroups` (represents `consumerGroup/*`)
+        #       `allTransactionalIds` (represents `transactionalId/*`)
+        # @!attribute [rw] acl
+        #   @return [::Google::Cloud::ManagedKafka::V1::Acl]
+        #     Required. Configuration of the acl to create. Its `name` field is ignored.
+        class CreateAclRequest
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Request for UpdateAcl.
+        # @!attribute [rw] acl
+        #   @return [::Google::Cloud::ManagedKafka::V1::Acl]
+        #     Required. The updated acl. Its `name` and `etag` fields must be populated.
+        #     `acl_entries` must not be empty in the updated acl; to remove all acl
+        #     entries for an acl, use DeleteAcl.
+        # @!attribute [rw] update_mask
+        #   @return [::Google::Protobuf::FieldMask]
+        #     Optional. Field mask is used to specify the fields to be overwritten in the
+        #     Acl resource by the update. The fields specified in the update_mask are
+        #     relative to the resource, not the full request. A field will be overwritten
+        #     if it is in the mask.
+        class UpdateAclRequest
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Request for DeleteAcl.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     Required. The name of the acl to delete.
+        #     Structured like:
+        #     `projects/{project}/locations/{location}/clusters/{cluster}/acls/{acl_id}`.
+        #
+        #     The structure of `acl_id` defines the Resource Pattern (resource_type,
+        #     resource_name, pattern_type) of the acl. See `Acl.name` for details.
+        class DeleteAclRequest
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Request for AddAclEntry.
+        # @!attribute [rw] acl
+        #   @return [::String]
+        #     Required. The name of the acl to add the acl entry to.
+        #     Structured like:
+        #     `projects/{project}/locations/{location}/clusters/{cluster}/acls/{acl_id}`.
+        #
+        #     The structure of `acl_id` defines the Resource Pattern (resource_type,
+        #     resource_name, pattern_type) of the acl. See `Acl.name` for
+        #     details.
+        # @!attribute [rw] acl_entry
+        #   @return [::Google::Cloud::ManagedKafka::V1::AclEntry]
+        #     Required. The acl entry to add.
+        class AddAclEntryRequest
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Response for AddAclEntry.
+        # @!attribute [rw] acl
+        #   @return [::Google::Cloud::ManagedKafka::V1::Acl]
+        #     The updated acl.
+        # @!attribute [rw] acl_created
+        #   @return [::Boolean]
+        #     Whether the acl was created as a result of adding the acl entry.
+        class AddAclEntryResponse
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Request for RemoveAclEntry.
+        # @!attribute [rw] acl
+        #   @return [::String]
+        #     Required. The name of the acl to remove the acl entry from.
+        #     Structured like:
+        #     `projects/{project}/locations/{location}/clusters/{cluster}/acls/{acl_id}`.
+        #
+        #     The structure of `acl_id` defines the Resource Pattern (resource_type,
+        #     resource_name, pattern_type) of the acl. See `Acl.name` for
+        #     details.
+        # @!attribute [rw] acl_entry
+        #   @return [::Google::Cloud::ManagedKafka::V1::AclEntry]
+        #     Required. The acl entry to remove.
+        class RemoveAclEntryRequest
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Response for RemoveAclEntry.
+        # @!attribute [rw] acl
+        #   @return [::Google::Cloud::ManagedKafka::V1::Acl]
+        #     The updated acl. Returned if the removed acl entry was not the last entry
+        #     in the acl.
+        #
+        #     Note: The following fields are mutually exclusive: `acl`, `acl_deleted`. If a field in that set is populated, all other fields in the set will automatically be cleared.
+        # @!attribute [rw] acl_deleted
+        #   @return [::Boolean]
+        #     Returned with value true if the removed acl entry was the last entry in
+        #     the acl, resulting in acl deletion.
+        #
+        #     Note: The following fields are mutually exclusive: `acl_deleted`, `acl`. If a field in that set is populated, all other fields in the set will automatically be cleared.
+        class RemoveAclEntryResponse
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
       end
     end
   end

data/proto_docs/google/cloud/managedkafka/v1/resources.rb

@@ -54,6 +54,9 @@ module Google
         # @!attribute [r] satisfies_pzs
         #   @return [::Boolean]
         #     Output only. Reserved for future use.
+        # @!attribute [rw] tls_config
+        #   @return [::Google::Cloud::ManagedKafka::V1::TlsConfig]
+        #     Optional. TLS configuration for the Kafka cluster.
         class Cluster
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -163,6 +166,50 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
+        # The TLS configuration for the Kafka cluster.
+        # @!attribute [rw] trust_config
+        #   @return [::Google::Cloud::ManagedKafka::V1::TrustConfig]
+        #     Optional. The configuration of the broker truststore. If specified, clients
+        #     can use mTLS for authentication.
+        # @!attribute [rw] ssl_principal_mapping_rules
+        #   @return [::String]
+        #     Optional. A list of rules for mapping from SSL principal names to
+        #     short names. These are applied in order by Kafka.
+        #     Refer to the Apache Kafka documentation for `ssl.principal.mapping.rules`
+        #     for the precise formatting details and syntax.
+        #     Example: "RULE:^CN=(.*?),OU=ServiceUsers.*$/$1@example.com/,DEFAULT"
+        #
+        #     This is a static Kafka broker configuration. Setting or modifying this
+        #     field will trigger a rolling restart of the Kafka brokers to apply
+        #     the change. An empty string means no rules are applied (Kafka default).
+        class TlsConfig
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Sources of CA certificates to install in the broker's truststore.
+        # @!attribute [rw] cas_configs
+        #   @return [::Array<::Google::Cloud::ManagedKafka::V1::TrustConfig::CertificateAuthorityServiceConfig>]
+        #     Optional. Configuration for the Google Certificate Authority Service.
+        #     Maximum 10.
+        class TrustConfig
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # A configuration for the Google Certificate Authority Service.
+          # @!attribute [rw] ca_pool
+          #   @return [::String]
+          #     Required. The name of the CA pool to pull CA certificates from.
+          #     Structured like:
+          #     projects/\\{project}/locations/\\{location}/caPools/\\{ca_pool}.
+          #     The CA pool does not need to be in the same project or location as the
+          #     Kafka cluster.
+          class CertificateAuthorityServiceConfig
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+        end
+
         # A Kafka topic in a given cluster.
         # @!attribute [rw] name
         #   @return [::String]
@@ -496,6 +543,95 @@ module Google
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
+
+        # Represents the set of ACLs for a given Kafka Resource Pattern, which consists
+        # of resource_type, resource_name and pattern_type.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     Identifier. The name for the acl. Represents a single Resource Pattern.
+        #     Structured like:
+        #     projects/\\{project}/locations/\\{location}/clusters/\\{cluster}/acls/\\{acl_id}
+        #
+        #     The structure of `acl_id` defines the Resource Pattern (resource_type,
+        #     resource_name, pattern_type) of the acl. `acl_id` is structured like one of
+        #     the following:
+        #
+        #     For acls on the cluster:
+        #       `cluster`
+        #
+        #     For acls on a single resource within the cluster:
+        #       `topic/{resource_name}`
+        #       `consumerGroup/{resource_name}`
+        #       `transactionalId/{resource_name}`
+        #
+        #     For acls on all resources that match a prefix:
+        #       `topicPrefixed/{resource_name}`
+        #       `consumerGroupPrefixed/{resource_name}`
+        #       `transactionalIdPrefixed/{resource_name}`
+        #
+        #     For acls on all resources of a given type (i.e. the wildcard literal "*"):
+        #       `allTopics` (represents `topic/*`)
+        #       `allConsumerGroups` (represents `consumerGroup/*`)
+        #       `allTransactionalIds` (represents `transactionalId/*`)
+        # @!attribute [rw] acl_entries
+        #   @return [::Array<::Google::Cloud::ManagedKafka::V1::AclEntry>]
+        #     Required. The ACL entries that apply to the resource pattern. The maximum
+        #     number of allowed entries 100.
+        # @!attribute [rw] etag
+        #   @return [::String]
+        #     Optional. `etag` is used for concurrency control. An `etag` is returned in
+        #     the response to `GetAcl` and `CreateAcl`. Callers are required to put that
+        #     etag in the request to `UpdateAcl` to ensure that their change will be
+        #     applied to the same version of the acl that exists in the Kafka Cluster.
+        #
+        #     A terminal 'T' character in the etag indicates that the AclEntries were
+        #     truncated; more entries for the Acl exist on the Kafka Cluster, but can't
+        #     be returned in the Acl due to repeated field limits.
+        # @!attribute [r] resource_type
+        #   @return [::String]
+        #     Output only. The ACL resource type derived from the name. One of: CLUSTER,
+        #     TOPIC, GROUP, TRANSACTIONAL_ID.
+        # @!attribute [r] resource_name
+        #   @return [::String]
+        #     Output only. The ACL resource name derived from the name. For cluster
+        #     resource_type, this is always "kafka-cluster". Can be the wildcard literal
+        #     "*".
+        # @!attribute [r] pattern_type
+        #   @return [::String]
+        #     Output only. The ACL pattern type derived from the name. One of: LITERAL,
+        #     PREFIXED.
+        class Acl
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # Represents the access granted for a given Resource Pattern in an ACL.
+        # @!attribute [rw] principal
+        #   @return [::String]
+        #     Required. The principal. Specified as Google Cloud account, with the Kafka
+        #     StandardAuthorizer prefix "User:". For example:
+        #     "User:test-kafka-client@test-project.iam.gserviceaccount.com".
+        #     Can be the wildcard "User:*" to refer to all users.
+        # @!attribute [rw] permission_type
+        #   @return [::String]
+        #     Required. The permission type. Accepted values are (case insensitive):
+        #     ALLOW, DENY.
+        # @!attribute [rw] operation
+        #   @return [::String]
+        #     Required. The operation type. Allowed values are (case insensitive): ALL,
+        #     READ, WRITE, CREATE, DELETE, ALTER, DESCRIBE, CLUSTER_ACTION,
+        #     DESCRIBE_CONFIGS, ALTER_CONFIGS, and IDEMPOTENT_WRITE. See
+        #     https://kafka.apache.org/documentation/#operations_resources_and_protocols
+        #     for valid combinations of resource_type and operation for different Kafka
+        #     API requests.
+        # @!attribute [rw] host
+        #   @return [::String]
+        #     Required. The host. Must be set to "*" for Managed Service for Apache
+        #     Kafka.
+        class AclEntry
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
       end
     end
   end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: google-cloud-managed_kafka-v1
 version: !ruby/object:Gem::Version
-  version: 1.2.0
+  version: 1.4.0
 platform: ruby
 authors:
 - Google LLC
@@ -126,7 +126,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.6.8
+rubygems_version: 3.6.9
 specification_version: 4
 summary: Manage Apache Kafka clusters and resources.
 test_files: []