google-cloud-security-public_ca-v1beta1 0.3.1 → 0.5.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 835827a0f1de6a2dd33e721d7d524d5948405e0faea13eb0e16d7b9bc7eabfac
4
- data.tar.gz: 97bd44b337631c9dd04f647f47e24f3288c2d9f42945c09212147e5166c8a69c
3
+ metadata.gz: e755fe522301550d8b93d9d59ed3c324e5da7e5cd090754d9c7e0354b8f8f07c
4
+ data.tar.gz: 5bd331c693b057b5e71f8cb6196caac39699b8c63515d1a3320ef4455c29a94f
5
5
  SHA512:
6
- metadata.gz: 4ca8ee65106f7bf7494c045c47934b716a9d15926b3e9c6b4911dbe07bcb14296562b97fe8a01cb654b26aa12632f6bd1345b1364fe0efa3aa87cd33bf09b6fa
7
- data.tar.gz: bf535825e3e4d63ebbee496550c6d66783e2d089c1847b3c6609b62a27678ca51a06db0434f8d20ed8e63d69321d7b35f5f059bb5343441679863690aa0f3ebd
6
+ metadata.gz: 579dbd06c9e245777ba9522d5921e34efa5e55e647723a68e7c53e7641d14e355cfb1fbcf122ddec63a79b418adda4db18fc869518f910e27d137dfb17baf6c0
7
+ data.tar.gz: 680ff75a1676e05bf09d23324b0f39994efcc400b8cd3a7c63286a8d1bc4392b069bddf40e43a77f6a2909bca1c8989a2ad8feb6e5990514946641781ced71d7
data/AUTHENTICATION.md CHANGED
@@ -1,149 +1,122 @@
1
1
  # Authentication
2
2
 
3
- In general, the google-cloud-security-public_ca-v1beta1 library uses
4
- [Service Account](https://cloud.google.com/iam/docs/creating-managing-service-accounts)
5
- credentials to connect to Google Cloud services. When running within
6
- [Google Cloud Platform environments](#google-cloud-platform-environments) the
7
- credentials will be discovered automatically. When running on other
8
- environments, the Service Account credentials can be specified by providing the
9
- path to the
10
- [JSON keyfile](https://cloud.google.com/iam/docs/managing-service-account-keys)
11
- for the account (or the JSON itself) in
12
- [environment variables](#environment-variables). Additionally, Cloud SDK
13
- credentials can also be discovered automatically, but this is only recommended
14
- during development.
3
+ The recommended way to authenticate to the google-cloud-security-public_ca-v1beta1 library is to use
4
+ [Application Default Credentials (ADC)](https://cloud.google.com/docs/authentication/application-default-credentials).
5
+ To review all of your authentication options, see [Credentials lookup](#credential-lookup).
15
6
 
16
7
  ## Quickstart
17
8
 
18
- 1. [Create a service account and credentials](#creating-a-service-account).
19
- 2. Set the [environment variable](#environment-variables).
9
+ The following example shows how to set up authentication for a local development
10
+ environment with your user credentials.
20
11
 
21
- ```sh
22
- export GOOGLE_CLOUD_CREDENTIALS=path/to/keyfile.json
23
- ```
24
-
25
- 3. Initialize the client.
12
+ **NOTE:** This method is _not_ recommended for running in production. User credentials
13
+ should be used only during development.
26
14
 
27
- ```ruby
28
- require "google/cloud/security/public_ca/v1beta1"
15
+ 1. [Download and install the Google Cloud CLI](https://cloud.google.com/sdk).
16
+ 2. Set up a local ADC file with your user credentials:
29
17
 
30
- client = ::Google::Cloud::Security::PublicCA::V1beta1::PublicCertificateAuthorityService::Client.new
18
+ ```sh
19
+ gcloud auth application-default login
31
20
  ```
32
21
 
33
- ## Credential Lookup
34
-
35
- The google-cloud-security-public_ca-v1beta1 library aims to make authentication
36
- as simple as possible, and provides several mechanisms to configure your system
37
- without requiring **Service Account Credentials** directly in code.
38
-
39
- **Credentials** are discovered in the following order:
40
-
41
- 1. Specify credentials in method arguments
42
- 2. Specify credentials in configuration
43
- 3. Discover credentials path in environment variables
44
- 4. Discover credentials JSON in environment variables
45
- 5. Discover credentials file in the Cloud SDK's path
46
- 6. Discover GCP credentials
47
-
48
- ### Google Cloud Platform environments
22
+ 3. Write code as if already authenticated.
49
23
 
50
- When running on Google Cloud Platform (GCP), including Google Compute Engine
51
- (GCE), Google Kubernetes Engine (GKE), Google App Engine (GAE), Google Cloud
52
- Functions (GCF) and Cloud Run, **Credentials** are discovered automatically.
53
- Code should be written as if already authenticated.
24
+ For more information about setting up authentication for a local development environment, see
25
+ [Set up Application Default Credentials](https://cloud.google.com/docs/authentication/provide-credentials-adc#local-dev).
54
26
 
55
- ### Environment Variables
27
+ ## Credential Lookup
56
28
 
57
- The **Credentials JSON** can be placed in environment variables instead of
58
- declaring them directly in code. Each service has its own environment variable,
59
- allowing for different service accounts to be used for different services. (See
60
- the READMEs for the individual service gems for details.) The path to the
61
- **Credentials JSON** file can be stored in the environment variable, or the
62
- **Credentials JSON** itself can be stored for environments such as Docker
63
- containers where writing files is difficult or not encouraged.
29
+ The google-cloud-security-public_ca-v1beta1 library provides several mechanisms to configure your system.
30
+ Generally, using Application Default Credentials to facilitate automatic
31
+ credentials discovery is the easist method. But if you need to explicitly specify
32
+ credentials, there are several methods available to you.
64
33
 
65
- The environment variables that google-cloud-security-public_ca-v1beta1
66
- checks for credentials are configured on the service Credentials class (such as
67
- {::Google::Cloud::Security::PublicCA::V1beta1::PublicCertificateAuthorityService::Credentials}):
34
+ Credentials are accepted in the following ways, in the following order or precedence:
68
35
 
69
- * `GOOGLE_CLOUD_CREDENTIALS` - Path to JSON file, or JSON contents
70
- * `GOOGLE_CLOUD_KEYFILE` - Path to JSON file, or JSON contents
71
- * `GOOGLE_APPLICATION_CREDENTIALS` - Path to JSON file
36
+ 1. Credentials specified in method arguments
37
+ 2. Credentials specified in configuration
38
+ 3. Credentials pointed to or included in environment variables
39
+ 4. Credentials found in local ADC file
40
+ 5. Credentials returned by the metadata server for the attached service account (GCP)
72
41
 
73
- ```ruby
74
- require "google/cloud/security/public_ca/v1beta1"
75
-
76
- ENV["GOOGLE_CLOUD_CREDENTIALS"] = "path/to/keyfile.json"
42
+ ### Configuration
77
43
 
78
- client = ::Google::Cloud::Security::PublicCA::V1beta1::PublicCertificateAuthorityService::Client.new
79
- ```
44
+ You can configure a path to a JSON credentials file, either for an individual client object or
45
+ globally, for all client objects. The JSON file can contain credentials created for
46
+ [workload identity federation](https://cloud.google.com/iam/docs/workload-identity-federation),
47
+ [workforce identity federation](https://cloud.google.com/iam/docs/workforce-identity-federation), or a
48
+ [service account key](https://cloud.google.com/docs/authentication/provide-credentials-adc#local-key).
80
49
 
81
- ### Configuration
50
+ Note: Service account keys are a security risk if not managed correctly. You should
51
+ [choose a more secure alternative to service account keys](https://cloud.google.com/docs/authentication#auth-decision-tree)
52
+ whenever possible.
82
53
 
83
- The path to the **Credentials JSON** file can be configured instead of storing
84
- it in an environment variable. Either on an individual client initialization:
54
+ To configure a credentials file for an individual client initialization:
85
55
 
86
56
  ```ruby
87
57
  require "google/cloud/security/public_ca/v1beta1"
88
58
 
89
59
  client = ::Google::Cloud::Security::PublicCA::V1beta1::PublicCertificateAuthorityService::Client.new do |config|
90
- config.credentials = "path/to/keyfile.json"
60
+ config.credentials = "path/to/credentialfile.json"
91
61
  end
92
62
  ```
93
63
 
94
- Or globally for all clients:
64
+ To configure a credentials file globally for all clients:
95
65
 
96
66
  ```ruby
97
67
  require "google/cloud/security/public_ca/v1beta1"
98
68
 
99
69
  ::Google::Cloud::Security::PublicCA::V1beta1::PublicCertificateAuthorityService::Client.configure do |config|
100
- config.credentials = "path/to/keyfile.json"
70
+ config.credentials = "path/to/credentialfile.json"
101
71
  end
102
72
 
103
73
  client = ::Google::Cloud::Security::PublicCA::V1beta1::PublicCertificateAuthorityService::Client.new
104
74
  ```
105
75
 
106
- ### Cloud SDK
76
+ ### Environment Variables
107
77
 
108
- This option allows for an easy way to authenticate during development. If
109
- credentials are not provided in code or in environment variables, then Cloud SDK
110
- credentials are discovered.
78
+ You can also use an environment variable to provide a JSON credentials file.
79
+ The environment variable can contain a path to the credentials file or, for
80
+ environments such as Docker containers where writing files is not encouraged,
81
+ you can include the credentials file itself.
111
82
 
112
- To configure your system for this, simply:
83
+ The JSON file can contain credentials created for
84
+ [workload identity federation](https://cloud.google.com/iam/docs/workload-identity-federation),
85
+ [workforce identity federation](https://cloud.google.com/iam/docs/workforce-identity-federation), or a
86
+ [service account key](https://cloud.google.com/docs/authentication/provide-credentials-adc#local-key).
113
87
 
114
- 1. [Download and install the Cloud SDK](https://cloud.google.com/sdk)
115
- 2. Authenticate using OAuth 2.0 `$ gcloud auth application-default login`
116
- 3. Write code as if already authenticated.
88
+ Note: Service account keys are a security risk if not managed correctly. You should
89
+ [choose a more secure alternative to service account keys](https://cloud.google.com/docs/authentication#auth-decision-tree)
90
+ whenever possible.
91
+
92
+ The environment variables that google-cloud-security-public_ca-v1beta1
93
+ checks for credentials are:
117
94
 
118
- **NOTE:** This is _not_ recommended for running in production. The Cloud SDK
119
- *should* only be used during development.
95
+ * `GOOGLE_CLOUD_CREDENTIALS` - Path to JSON file, or JSON contents
96
+ * `GOOGLE_APPLICATION_CREDENTIALS` - Path to JSON file
120
97
 
121
- ## Creating a Service Account
98
+ ```ruby
99
+ require "google/cloud/security/public_ca/v1beta1"
122
100
 
123
- Google Cloud requires **Service Account Credentials** to
124
- connect to the APIs. You will use the **JSON key file** to
125
- connect to most services with google-cloud-security-public_ca-v1beta1.
101
+ ENV["GOOGLE_APPLICATION_CREDENTIALS"] = "path/to/credentialfile.json"
126
102
 
127
- If you are not running this client within
128
- [Google Cloud Platform environments](#google-cloud-platform-environments), you
129
- need a Google Developers service account.
103
+ client = ::Google::Cloud::Security::PublicCA::V1beta1::PublicCertificateAuthorityService::Client.new
104
+ ```
130
105
 
131
- 1. Visit the [Google Cloud Console](https://console.cloud.google.com/project).
132
- 2. Create a new project or click on an existing project.
133
- 3. Activate the menu in the upper left and select **APIs & Services**. From
134
- here, you will enable the APIs that your application requires.
106
+ ### Local ADC file
135
107
 
136
- *Note: You may need to enable billing in order to use these services.*
108
+ You can set up a local ADC file with your user credentials for authentication during
109
+ development. If credentials are not provided in code or in environment variables,
110
+ then the local ADC credentials are discovered.
137
111
 
138
- 4. Select **Credentials** from the side navigation.
112
+ Follow the steps in [Quickstart](#quickstart) to set up a local ADC file.
139
113
 
140
- Find the "Create credentials" drop down near the top of the page, and select
141
- "Service account" to be guided through downloading a new JSON key file.
114
+ ### Google Cloud Platform environments
142
115
 
143
- If you want to re-use an existing service account, you can easily generate a
144
- new key file. Just select the account you wish to re-use, click the pencil
145
- tool on the right side to edit the service account, select the **Keys** tab,
146
- and then select **Add Key**.
116
+ When running on Google Cloud Platform (GCP), including Google Compute Engine
117
+ (GCE), Google Kubernetes Engine (GKE), Google App Engine (GAE), Google Cloud
118
+ Functions (GCF) and Cloud Run, credentials are retrieved from the attached
119
+ service account automatically. Code should be written as if already authenticated.
147
120
 
148
- The key file you download will be used by this library to authenticate API
149
- requests and should be stored in a secure location.
121
+ For more information, see
122
+ [Set up ADC for Google Cloud services](https://cloud.google.com/docs/authentication/provide-credentials-adc#attached-sa).
@@ -33,6 +33,9 @@ module Google
33
33
  # the public certificate authority service.
34
34
  #
35
35
  class Client
36
+ # @private
37
+ DEFAULT_ENDPOINT_TEMPLATE = "publicca.$UNIVERSE_DOMAIN$"
38
+
36
39
  include Paths
37
40
 
38
41
  # @private
@@ -98,6 +101,15 @@ module Google
98
101
  @config
99
102
  end
100
103
 
104
+ ##
105
+ # The effective universe domain
106
+ #
107
+ # @return [String]
108
+ #
109
+ def universe_domain
110
+ @public_certificate_authority_service_stub.universe_domain
111
+ end
112
+
101
113
  ##
102
114
  # Create a new PublicCertificateAuthorityService client object.
103
115
  #
@@ -131,8 +143,9 @@ module Google
131
143
  credentials = @config.credentials
132
144
  # Use self-signed JWT if the endpoint is unchanged from default,
133
145
  # but only if the default endpoint does not have a region prefix.
134
- enable_self_signed_jwt = @config.endpoint == Configuration::DEFAULT_ENDPOINT &&
135
- !@config.endpoint.split(".").first.include?("-")
146
+ enable_self_signed_jwt = @config.endpoint.nil? ||
147
+ (@config.endpoint == Configuration::DEFAULT_ENDPOINT &&
148
+ !@config.endpoint.split(".").first.include?("-"))
136
149
  credentials ||= Credentials.default scope: @config.scope,
137
150
  enable_self_signed_jwt: enable_self_signed_jwt
138
151
  if credentials.is_a?(::String) || credentials.is_a?(::Hash)
@@ -143,10 +156,13 @@ module Google
143
156
 
144
157
  @public_certificate_authority_service_stub = ::Gapic::ServiceStub.new(
145
158
  ::Google::Cloud::Security::PublicCA::V1beta1::PublicCertificateAuthorityService::Stub,
146
- credentials: credentials,
147
- endpoint: @config.endpoint,
159
+ credentials: credentials,
160
+ endpoint: @config.endpoint,
161
+ endpoint_template: DEFAULT_ENDPOINT_TEMPLATE,
162
+ universe_domain: @config.universe_domain,
148
163
  channel_args: @config.channel_args,
149
- interceptors: @config.interceptors
164
+ interceptors: @config.interceptors,
165
+ channel_pool_config: @config.channel_pool
150
166
  )
151
167
  end
152
168
 
@@ -274,9 +290,9 @@ module Google
274
290
  # end
275
291
  #
276
292
  # @!attribute [rw] endpoint
277
- # The hostname or hostname:port of the service endpoint.
278
- # Defaults to `"publicca.googleapis.com"`.
279
- # @return [::String]
293
+ # A custom service endpoint, as a hostname or hostname:port. The default is
294
+ # nil, indicating to use the default endpoint in the current universe domain.
295
+ # @return [::String,nil]
280
296
  # @!attribute [rw] credentials
281
297
  # Credentials to send with calls. You may provide any of the following types:
282
298
  # * (`String`) The path to a service account key file in JSON format
@@ -322,13 +338,20 @@ module Google
322
338
  # @!attribute [rw] quota_project
323
339
  # A separate project against which to charge quota.
324
340
  # @return [::String]
341
+ # @!attribute [rw] universe_domain
342
+ # The universe domain within which to make requests. This determines the
343
+ # default endpoint URL. The default value of nil uses the environment
344
+ # universe (usually the default "googleapis.com" universe).
345
+ # @return [::String,nil]
325
346
  #
326
347
  class Configuration
327
348
  extend ::Gapic::Config
328
349
 
350
+ # @private
351
+ # The endpoint specific to the default "googleapis.com" universe. Deprecated.
329
352
  DEFAULT_ENDPOINT = "publicca.googleapis.com"
330
353
 
331
- config_attr :endpoint, DEFAULT_ENDPOINT, ::String
354
+ config_attr :endpoint, nil, ::String, nil
332
355
  config_attr :credentials, nil do |value|
333
356
  allowed = [::String, ::Hash, ::Proc, ::Symbol, ::Google::Auth::Credentials, ::Signet::OAuth2::Client, nil]
334
357
  allowed += [::GRPC::Core::Channel, ::GRPC::Core::ChannelCredentials] if defined? ::GRPC
@@ -343,6 +366,7 @@ module Google
343
366
  config_attr :metadata, nil, ::Hash, nil
344
367
  config_attr :retry_policy, nil, ::Hash, ::Proc, nil
345
368
  config_attr :quota_project, nil, ::String, nil
369
+ config_attr :universe_domain, nil, ::String, nil
346
370
 
347
371
  # @private
348
372
  def initialize parent_config = nil
@@ -363,6 +387,14 @@ module Google
363
387
  end
364
388
  end
365
389
 
390
+ ##
391
+ # Configuration for the channel pool
392
+ # @return [::Gapic::ServiceStub::ChannelPool::Configuration]
393
+ #
394
+ def channel_pool
395
+ @channel_pool ||= ::Gapic::ServiceStub::ChannelPool::Configuration.new
396
+ end
397
+
366
398
  ##
367
399
  # Configuration RPC class for the PublicCertificateAuthorityService API.
368
400
  #
@@ -35,6 +35,9 @@ module Google
35
35
  # the public certificate authority service.
36
36
  #
37
37
  class Client
38
+ # @private
39
+ DEFAULT_ENDPOINT_TEMPLATE = "publicca.$UNIVERSE_DOMAIN$"
40
+
38
41
  include Paths
39
42
 
40
43
  # @private
@@ -100,6 +103,15 @@ module Google
100
103
  @config
101
104
  end
102
105
 
106
+ ##
107
+ # The effective universe domain
108
+ #
109
+ # @return [String]
110
+ #
111
+ def universe_domain
112
+ @public_certificate_authority_service_stub.universe_domain
113
+ end
114
+
103
115
  ##
104
116
  # Create a new PublicCertificateAuthorityService REST client object.
105
117
  #
@@ -127,8 +139,9 @@ module Google
127
139
  credentials = @config.credentials
128
140
  # Use self-signed JWT if the endpoint is unchanged from default,
129
141
  # but only if the default endpoint does not have a region prefix.
130
- enable_self_signed_jwt = @config.endpoint == Configuration::DEFAULT_ENDPOINT &&
131
- !@config.endpoint.split(".").first.include?("-")
142
+ enable_self_signed_jwt = @config.endpoint.nil? ||
143
+ (@config.endpoint == Configuration::DEFAULT_ENDPOINT &&
144
+ !@config.endpoint.split(".").first.include?("-"))
132
145
  credentials ||= Credentials.default scope: @config.scope,
133
146
  enable_self_signed_jwt: enable_self_signed_jwt
134
147
  if credentials.is_a?(::String) || credentials.is_a?(::Hash)
@@ -138,7 +151,12 @@ module Google
138
151
  @quota_project_id = @config.quota_project
139
152
  @quota_project_id ||= credentials.quota_project_id if credentials.respond_to? :quota_project_id
140
153
 
141
- @public_certificate_authority_service_stub = ::Google::Cloud::Security::PublicCA::V1beta1::PublicCertificateAuthorityService::Rest::ServiceStub.new endpoint: @config.endpoint, credentials: credentials
154
+ @public_certificate_authority_service_stub = ::Google::Cloud::Security::PublicCA::V1beta1::PublicCertificateAuthorityService::Rest::ServiceStub.new(
155
+ endpoint: @config.endpoint,
156
+ endpoint_template: DEFAULT_ENDPOINT_TEMPLATE,
157
+ universe_domain: @config.universe_domain,
158
+ credentials: credentials
159
+ )
142
160
  end
143
161
 
144
162
  # Service calls
@@ -177,6 +195,22 @@ module Google
177
195
  # @return [::Google::Cloud::Security::PublicCA::V1beta1::ExternalAccountKey]
178
196
  #
179
197
  # @raise [::Google::Cloud::Error] if the REST call is aborted.
198
+ #
199
+ # @example Basic example
200
+ # require "google/cloud/security/public_ca/v1beta1"
201
+ #
202
+ # # Create a client object. The client can be reused for multiple calls.
203
+ # client = Google::Cloud::Security::PublicCA::V1beta1::PublicCertificateAuthorityService::Rest::Client.new
204
+ #
205
+ # # Create a request. To set request fields, pass in keyword arguments.
206
+ # request = Google::Cloud::Security::PublicCA::V1beta1::CreateExternalAccountKeyRequest.new
207
+ #
208
+ # # Call the create_external_account_key method.
209
+ # result = client.create_external_account_key request
210
+ #
211
+ # # The returned object is of type Google::Cloud::Security::PublicCA::V1beta1::ExternalAccountKey.
212
+ # p result
213
+ #
180
214
  def create_external_account_key request, options = nil
181
215
  raise ::ArgumentError, "request must be provided" if request.nil?
182
216
 
@@ -242,9 +276,9 @@ module Google
242
276
  # end
243
277
  #
244
278
  # @!attribute [rw] endpoint
245
- # The hostname or hostname:port of the service endpoint.
246
- # Defaults to `"publicca.googleapis.com"`.
247
- # @return [::String]
279
+ # A custom service endpoint, as a hostname or hostname:port. The default is
280
+ # nil, indicating to use the default endpoint in the current universe domain.
281
+ # @return [::String,nil]
248
282
  # @!attribute [rw] credentials
249
283
  # Credentials to send with calls. You may provide any of the following types:
250
284
  # * (`String`) The path to a service account key file in JSON format
@@ -281,13 +315,20 @@ module Google
281
315
  # @!attribute [rw] quota_project
282
316
  # A separate project against which to charge quota.
283
317
  # @return [::String]
318
+ # @!attribute [rw] universe_domain
319
+ # The universe domain within which to make requests. This determines the
320
+ # default endpoint URL. The default value of nil uses the environment
321
+ # universe (usually the default "googleapis.com" universe).
322
+ # @return [::String,nil]
284
323
  #
285
324
  class Configuration
286
325
  extend ::Gapic::Config
287
326
 
327
+ # @private
328
+ # The endpoint specific to the default "googleapis.com" universe. Deprecated.
288
329
  DEFAULT_ENDPOINT = "publicca.googleapis.com"
289
330
 
290
- config_attr :endpoint, DEFAULT_ENDPOINT, ::String
331
+ config_attr :endpoint, nil, ::String, nil
291
332
  config_attr :credentials, nil do |value|
292
333
  allowed = [::String, ::Hash, ::Proc, ::Symbol, ::Google::Auth::Credentials, ::Signet::OAuth2::Client, nil]
293
334
  allowed.any? { |klass| klass === value }
@@ -299,6 +340,7 @@ module Google
299
340
  config_attr :metadata, nil, ::Hash, nil
300
341
  config_attr :retry_policy, nil, ::Hash, ::Proc, nil
301
342
  config_attr :quota_project, nil, ::String, nil
343
+ config_attr :universe_domain, nil, ::String, nil
302
344
 
303
345
  # @private
304
346
  def initialize parent_config = nil
@@ -31,16 +31,28 @@ module Google
31
31
  # including transcoding, making the REST call, and deserialing the response.
32
32
  #
33
33
  class ServiceStub
34
- def initialize endpoint:, credentials:
34
+ def initialize endpoint:, endpoint_template:, universe_domain:, credentials:
35
35
  # These require statements are intentionally placed here to initialize
36
36
  # the REST modules only when it's required.
37
37
  require "gapic/rest"
38
38
 
39
- @client_stub = ::Gapic::Rest::ClientStub.new endpoint: endpoint, credentials: credentials,
39
+ @client_stub = ::Gapic::Rest::ClientStub.new endpoint: endpoint,
40
+ endpoint_template: endpoint_template,
41
+ universe_domain: universe_domain,
42
+ credentials: credentials,
40
43
  numeric_enums: true,
41
44
  raise_faraday_errors: false
42
45
  end
43
46
 
47
+ ##
48
+ # The effective universe domain
49
+ #
50
+ # @return [String]
51
+ #
52
+ def universe_domain
53
+ @client_stub.universe_domain
54
+ end
55
+
44
56
  ##
45
57
  # Baseline implementation for the create_external_account_key REST call
46
58
  #
@@ -22,7 +22,7 @@ module Google
22
22
  module Security
23
23
  module PublicCA
24
24
  module V1beta1
25
- VERSION = "0.3.1"
25
+ VERSION = "0.5.0"
26
26
  end
27
27
  end
28
28
  end
@@ -21,6 +21,7 @@ module Google
21
21
  module Api
22
22
  # Required information for every language.
23
23
  # @!attribute [rw] reference_docs_uri
24
+ # @deprecated This field is deprecated and may be removed in the next major version update.
24
25
  # @return [::String]
25
26
  # Link to automatically generated reference documentation. Example:
26
27
  # https://cloud.google.com/nodejs/docs/reference/asset/latest
@@ -304,6 +305,19 @@ module Google
304
305
  # seconds: 360 # 6 minutes
305
306
  # total_poll_timeout:
306
307
  # seconds: 54000 # 90 minutes
308
+ # @!attribute [rw] auto_populated_fields
309
+ # @return [::Array<::String>]
310
+ # List of top-level fields of the request message, that should be
311
+ # automatically populated by the client libraries based on their
312
+ # (google.api.field_info).format. Currently supported format: UUID4.
313
+ #
314
+ # Example of a YAML configuration:
315
+ #
316
+ # publishing:
317
+ # method_settings:
318
+ # - selector: google.example.v1.ExampleService.CreateExample
319
+ # auto_populated_fields:
320
+ # - request_id
307
321
  class MethodSettings
308
322
  include ::Google::Protobuf::MessageExts
309
323
  extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -66,6 +66,20 @@ module Google
66
66
  # a non-empty value will be returned. The user will not be aware of what
67
67
  # non-empty value to expect.
68
68
  NON_EMPTY_DEFAULT = 7
69
+
70
+ # Denotes that the field in a resource (a message annotated with
71
+ # google.api.resource) is used in the resource name to uniquely identify the
72
+ # resource. For AIP-compliant APIs, this should only be applied to the
73
+ # `name` field on the resource.
74
+ #
75
+ # This behavior should not be applied to references to other resources within
76
+ # the message.
77
+ #
78
+ # The identifier field of resources often have different field behavior
79
+ # depending on the request it is embedded in (e.g. for Create methods name
80
+ # is optional and unused, while for Update methods it is required). Instead
81
+ # of method-specific annotations, only `IDENTIFIER` is required.
82
+ IDENTIFIER = 8
69
83
  end
70
84
  end
71
85
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: google-cloud-security-public_ca-v1beta1
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.3.1
4
+ version: 0.5.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Google LLC
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-06-06 00:00:00.000000000 Z
11
+ date: 2024-01-11 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: gapic-common
@@ -16,7 +16,7 @@ dependencies:
16
16
  requirements:
17
17
  - - ">="
18
18
  - !ruby/object:Gem::Version
19
- version: 0.19.1
19
+ version: 0.21.1
20
20
  - - "<"
21
21
  - !ruby/object:Gem::Version
22
22
  version: 2.a
@@ -26,7 +26,7 @@ dependencies:
26
26
  requirements:
27
27
  - - ">="
28
28
  - !ruby/object:Gem::Version
29
- version: 0.19.1
29
+ version: 0.21.1
30
30
  - - "<"
31
31
  - !ruby/object:Gem::Version
32
32
  version: 2.a
@@ -215,7 +215,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
215
215
  - !ruby/object:Gem::Version
216
216
  version: '0'
217
217
  requirements: []
218
- rubygems_version: 3.4.2
218
+ rubygems_version: 3.5.3
219
219
  signing_key:
220
220
  specification_version: 4
221
221
  summary: The Public Certificate Authority API may be used to create and manage ACME