google-iam-v1beta 0.1.0

data/lib/google-iam-v1beta.rb

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+# This gem does not autoload during Bundler.require. To load this gem,
+# issue explicit require statements for the packages desired, e.g.:
+# require "google/iam/v1beta"

data/lib/google/iam/v1beta.rb

@@ -0,0 +1,33 @@
+# frozen_string_literal: true
+
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+require "google/iam/v1beta/workload_identity_pools"
+require "google/iam/v1beta/version"
+
+module Google
+  module Iam
+    ##
+    # To load this package, including all its services, and instantiate a client:
+    #
+    #     require "google/iam/v1beta"
+    #     client = ::Google::Iam::V1beta::WorkloadIdentityPools::Client.new
+    #
+    module V1beta
+    end
+  end
+end

data/lib/google/iam/v1beta/version.rb

@@ -0,0 +1,26 @@
+# frozen_string_literal: true
+
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Iam
+    module V1beta
+      VERSION = "0.1.0"
+    end
+  end
+end

data/lib/google/iam/v1beta/workload_identity_pool_pb.rb

@@ -0,0 +1,141 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: google/iam/v1beta/workload_identity_pool.proto
+
+require 'google/protobuf'
+
+require 'google/api/annotations_pb'
+require 'google/api/client_pb'
+require 'google/api/field_behavior_pb'
+require 'google/api/resource_pb'
+require 'google/longrunning/operations_pb'
+require 'google/protobuf/field_mask_pb'
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("google/iam/v1beta/workload_identity_pool.proto", :syntax => :proto3) do
+    add_message "google.iam.v1beta.WorkloadIdentityPool" do
+      optional :name, :string, 1
+      optional :display_name, :string, 2
+      optional :description, :string, 3
+      optional :state, :enum, 4, "google.iam.v1beta.WorkloadIdentityPool.State"
+      optional :disabled, :bool, 5
+    end
+    add_enum "google.iam.v1beta.WorkloadIdentityPool.State" do
+      value :STATE_UNSPECIFIED, 0
+      value :ACTIVE, 1
+      value :DELETED, 2
+    end
+    add_message "google.iam.v1beta.WorkloadIdentityPoolProvider" do
+      optional :name, :string, 1
+      optional :display_name, :string, 2
+      optional :description, :string, 3
+      optional :state, :enum, 4, "google.iam.v1beta.WorkloadIdentityPoolProvider.State"
+      optional :disabled, :bool, 5
+      map :attribute_mapping, :string, :string, 6
+      optional :attribute_condition, :string, 7
+      oneof :provider_config do
+        optional :aws, :message, 8, "google.iam.v1beta.WorkloadIdentityPoolProvider.Aws"
+        optional :oidc, :message, 9, "google.iam.v1beta.WorkloadIdentityPoolProvider.Oidc"
+      end
+    end
+    add_message "google.iam.v1beta.WorkloadIdentityPoolProvider.Aws" do
+      optional :account_id, :string, 1
+    end
+    add_message "google.iam.v1beta.WorkloadIdentityPoolProvider.Oidc" do
+      optional :issuer_uri, :string, 1
+      repeated :allowed_audiences, :string, 2
+    end
+    add_enum "google.iam.v1beta.WorkloadIdentityPoolProvider.State" do
+      value :STATE_UNSPECIFIED, 0
+      value :ACTIVE, 1
+      value :DELETED, 2
+    end
+    add_message "google.iam.v1beta.ListWorkloadIdentityPoolsRequest" do
+      optional :parent, :string, 1
+      optional :page_size, :int32, 2
+      optional :page_token, :string, 3
+      optional :show_deleted, :bool, 4
+    end
+    add_message "google.iam.v1beta.ListWorkloadIdentityPoolsResponse" do
+      repeated :workload_identity_pools, :message, 1, "google.iam.v1beta.WorkloadIdentityPool"
+      optional :next_page_token, :string, 2
+    end
+    add_message "google.iam.v1beta.GetWorkloadIdentityPoolRequest" do
+      optional :name, :string, 1
+    end
+    add_message "google.iam.v1beta.CreateWorkloadIdentityPoolRequest" do
+      optional :parent, :string, 1
+      optional :workload_identity_pool, :message, 2, "google.iam.v1beta.WorkloadIdentityPool"
+      optional :workload_identity_pool_id, :string, 3
+    end
+    add_message "google.iam.v1beta.UpdateWorkloadIdentityPoolRequest" do
+      optional :workload_identity_pool, :message, 1, "google.iam.v1beta.WorkloadIdentityPool"
+      optional :update_mask, :message, 2, "google.protobuf.FieldMask"
+    end
+    add_message "google.iam.v1beta.DeleteWorkloadIdentityPoolRequest" do
+      optional :name, :string, 1
+    end
+    add_message "google.iam.v1beta.UndeleteWorkloadIdentityPoolRequest" do
+      optional :name, :string, 1
+    end
+    add_message "google.iam.v1beta.ListWorkloadIdentityPoolProvidersRequest" do
+      optional :parent, :string, 1
+      optional :page_size, :int32, 2
+      optional :page_token, :string, 3
+      optional :show_deleted, :bool, 4
+    end
+    add_message "google.iam.v1beta.ListWorkloadIdentityPoolProvidersResponse" do
+      repeated :workload_identity_pool_providers, :message, 1, "google.iam.v1beta.WorkloadIdentityPoolProvider"
+      optional :next_page_token, :string, 2
+    end
+    add_message "google.iam.v1beta.GetWorkloadIdentityPoolProviderRequest" do
+      optional :name, :string, 1
+    end
+    add_message "google.iam.v1beta.CreateWorkloadIdentityPoolProviderRequest" do
+      optional :parent, :string, 1
+      optional :workload_identity_pool_provider, :message, 2, "google.iam.v1beta.WorkloadIdentityPoolProvider"
+      optional :workload_identity_pool_provider_id, :string, 3
+    end
+    add_message "google.iam.v1beta.UpdateWorkloadIdentityPoolProviderRequest" do
+      optional :workload_identity_pool_provider, :message, 1, "google.iam.v1beta.WorkloadIdentityPoolProvider"
+      optional :update_mask, :message, 2, "google.protobuf.FieldMask"
+    end
+    add_message "google.iam.v1beta.DeleteWorkloadIdentityPoolProviderRequest" do
+      optional :name, :string, 1
+    end
+    add_message "google.iam.v1beta.UndeleteWorkloadIdentityPoolProviderRequest" do
+      optional :name, :string, 1
+    end
+    add_message "google.iam.v1beta.WorkloadIdentityPoolOperationMetadata" do
+    end
+    add_message "google.iam.v1beta.WorkloadIdentityPoolProviderOperationMetadata" do
+    end
+  end
+end
+
+module Google
+  module Iam
+    module V1beta
+      WorkloadIdentityPool = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.WorkloadIdentityPool").msgclass
+      WorkloadIdentityPool::State = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.WorkloadIdentityPool.State").enummodule
+      WorkloadIdentityPoolProvider = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.WorkloadIdentityPoolProvider").msgclass
+      WorkloadIdentityPoolProvider::Aws = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.WorkloadIdentityPoolProvider.Aws").msgclass
+      WorkloadIdentityPoolProvider::Oidc = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.WorkloadIdentityPoolProvider.Oidc").msgclass
+      WorkloadIdentityPoolProvider::State = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.WorkloadIdentityPoolProvider.State").enummodule
+      ListWorkloadIdentityPoolsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.ListWorkloadIdentityPoolsRequest").msgclass
+      ListWorkloadIdentityPoolsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.ListWorkloadIdentityPoolsResponse").msgclass
+      GetWorkloadIdentityPoolRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.GetWorkloadIdentityPoolRequest").msgclass
+      CreateWorkloadIdentityPoolRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.CreateWorkloadIdentityPoolRequest").msgclass
+      UpdateWorkloadIdentityPoolRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.UpdateWorkloadIdentityPoolRequest").msgclass
+      DeleteWorkloadIdentityPoolRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.DeleteWorkloadIdentityPoolRequest").msgclass
+      UndeleteWorkloadIdentityPoolRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.UndeleteWorkloadIdentityPoolRequest").msgclass
+      ListWorkloadIdentityPoolProvidersRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.ListWorkloadIdentityPoolProvidersRequest").msgclass
+      ListWorkloadIdentityPoolProvidersResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.ListWorkloadIdentityPoolProvidersResponse").msgclass
+      GetWorkloadIdentityPoolProviderRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.GetWorkloadIdentityPoolProviderRequest").msgclass
+      CreateWorkloadIdentityPoolProviderRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.CreateWorkloadIdentityPoolProviderRequest").msgclass
+      UpdateWorkloadIdentityPoolProviderRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.UpdateWorkloadIdentityPoolProviderRequest").msgclass
+      DeleteWorkloadIdentityPoolProviderRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.DeleteWorkloadIdentityPoolProviderRequest").msgclass
+      UndeleteWorkloadIdentityPoolProviderRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.UndeleteWorkloadIdentityPoolProviderRequest").msgclass
+      WorkloadIdentityPoolOperationMetadata = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.WorkloadIdentityPoolOperationMetadata").msgclass
+      WorkloadIdentityPoolProviderOperationMetadata = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("google.iam.v1beta.WorkloadIdentityPoolProviderOperationMetadata").msgclass
+    end
+  end
+end

data/lib/google/iam/v1beta/workload_identity_pool_services_pb.rb

@@ -0,0 +1,103 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# Source: google/iam/v1beta/workload_identity_pool.proto for package 'google.iam.v1beta'
+# Original file comments:
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+require 'grpc'
+require 'google/iam/v1beta/workload_identity_pool_pb'
+
+module Google
+  module Iam
+    module V1beta
+      module WorkloadIdentityPools
+        # Manages WorkloadIdentityPools.
+        class Service
+
+          include GRPC::GenericService
+
+          self.marshal_class_method = :encode
+          self.unmarshal_class_method = :decode
+          self.service_name = 'google.iam.v1beta.WorkloadIdentityPools'
+
+          # Lists all non-deleted
+          # [WorkloadIdentityPool][google.iam.v1beta.WorkloadIdentityPool]s in a
+          # project. If `show_deleted` is set to `true`, then deleted pools are also
+          # listed.
+          rpc :ListWorkloadIdentityPools, ::Google::Iam::V1beta::ListWorkloadIdentityPoolsRequest, ::Google::Iam::V1beta::ListWorkloadIdentityPoolsResponse
+          # Gets an individual
+          # [WorkloadIdentityPool][google.iam.v1beta.WorkloadIdentityPool].
+          rpc :GetWorkloadIdentityPool, ::Google::Iam::V1beta::GetWorkloadIdentityPoolRequest, ::Google::Iam::V1beta::WorkloadIdentityPool
+          # Creates a new
+          # [WorkloadIdentityPool][google.iam.v1beta.WorkloadIdentityPool].
+          #
+          # You cannot reuse the name of a deleted pool until 30 days after deletion.
+          rpc :CreateWorkloadIdentityPool, ::Google::Iam::V1beta::CreateWorkloadIdentityPoolRequest, ::Google::Longrunning::Operation
+          # Updates an existing
+          # [WorkloadIdentityPool][google.iam.v1beta.WorkloadIdentityPool].
+          rpc :UpdateWorkloadIdentityPool, ::Google::Iam::V1beta::UpdateWorkloadIdentityPoolRequest, ::Google::Longrunning::Operation
+          # Deletes a
+          # [WorkloadIdentityPool][google.iam.v1beta.WorkloadIdentityPool].
+          #
+          # You cannot use a deleted pool to exchange external
+          # credentials for Google Cloud credentials. However, deletion does
+          # not revoke credentials that have already been issued.
+          # Credentials issued for a deleted pool do not grant access to resources.
+          # If the pool is undeleted, and the credentials are not expired, they
+          # grant access again.
+          # You can undelete a pool for 30 days. After 30 days, deletion is
+          # permanent.
+          # You cannot update deleted pools. However, you can view and list them.
+          rpc :DeleteWorkloadIdentityPool, ::Google::Iam::V1beta::DeleteWorkloadIdentityPoolRequest, ::Google::Longrunning::Operation
+          # Undeletes a [WorkloadIdentityPool][google.iam.v1beta.WorkloadIdentityPool],
+          # as long as it was deleted fewer than 30 days ago.
+          rpc :UndeleteWorkloadIdentityPool, ::Google::Iam::V1beta::UndeleteWorkloadIdentityPoolRequest, ::Google::Longrunning::Operation
+          # Lists all non-deleted
+          # [WorkloadIdentityPoolProvider][google.iam.v1beta.WorkloadIdentityPoolProvider]s
+          # in a [WorkloadIdentityPool][google.iam.v1beta.WorkloadIdentityPool].
+          # If `show_deleted` is set to `true`, then deleted providers are also listed.
+          rpc :ListWorkloadIdentityPoolProviders, ::Google::Iam::V1beta::ListWorkloadIdentityPoolProvidersRequest, ::Google::Iam::V1beta::ListWorkloadIdentityPoolProvidersResponse
+          # Gets an individual
+          # [WorkloadIdentityPoolProvider][google.iam.v1beta.WorkloadIdentityPoolProvider].
+          rpc :GetWorkloadIdentityPoolProvider, ::Google::Iam::V1beta::GetWorkloadIdentityPoolProviderRequest, ::Google::Iam::V1beta::WorkloadIdentityPoolProvider
+          # Creates a new
+          # [WorkloadIdentityPoolProvider][google.iam.v1beta.WorkloadIdentityProvider]
+          # in a [WorkloadIdentityPool][google.iam.v1beta.WorkloadIdentityPool].
+          #
+          # You cannot reuse the name of a deleted provider until 30 days after
+          # deletion.
+          rpc :CreateWorkloadIdentityPoolProvider, ::Google::Iam::V1beta::CreateWorkloadIdentityPoolProviderRequest, ::Google::Longrunning::Operation
+          # Updates an existing
+          # [WorkloadIdentityPoolProvider][google.iam.v1beta.WorkloadIdentityProvider].
+          rpc :UpdateWorkloadIdentityPoolProvider, ::Google::Iam::V1beta::UpdateWorkloadIdentityPoolProviderRequest, ::Google::Longrunning::Operation
+          # Deletes a
+          # [WorkloadIdentityPoolProvider][google.iam.v1beta.WorkloadIdentityProvider].
+          # Deleting a provider does not revoke credentials that have already been
+          # issued; they continue to grant access.
+          # You can undelete a provider for 30 days. After 30 days, deletion is
+          # permanent.
+          # You cannot update deleted providers. However, you can view and list them.
+          rpc :DeleteWorkloadIdentityPoolProvider, ::Google::Iam::V1beta::DeleteWorkloadIdentityPoolProviderRequest, ::Google::Longrunning::Operation
+          # Undeletes a
+          # [WorkloadIdentityPoolProvider][google.iam.v1beta.WorkloadIdentityProvider],
+          # as long as it was deleted fewer than 30 days ago.
+          rpc :UndeleteWorkloadIdentityPoolProvider, ::Google::Iam::V1beta::UndeleteWorkloadIdentityPoolProviderRequest, ::Google::Longrunning::Operation
+        end
+
+        Stub = Service.rpc_stub_class
+      end
+    end
+  end
+end

data/lib/google/iam/v1beta/workload_identity_pools.rb

@@ -0,0 +1,48 @@
+# frozen_string_literal: true
+
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+require "gapic/common"
+require "gapic/config"
+require "gapic/config/method"
+
+require "google/iam/v1beta/version"
+
+require "google/iam/v1beta/workload_identity_pools/credentials"
+require "google/iam/v1beta/workload_identity_pools/paths"
+require "google/iam/v1beta/workload_identity_pools/operations"
+require "google/iam/v1beta/workload_identity_pools/client"
+
+module Google
+  module Iam
+    module V1beta
+      ##
+      # Manages WorkloadIdentityPools.
+      #
+      # To load this service and instantiate a client:
+      #
+      #     require "google/iam/v1beta/workload_identity_pools"
+      #     client = ::Google::Iam::V1beta::WorkloadIdentityPools::Client.new
+      #
+      module WorkloadIdentityPools
+      end
+    end
+  end
+end
+
+helper_path = ::File.join __dir__, "workload_identity_pools", "helpers.rb"
+require "google/iam/v1beta/workload_identity_pools/helpers" if ::File.file? helper_path

data/lib/google/iam/v1beta/workload_identity_pools/client.rb

@@ -0,0 +1,1364 @@
+# frozen_string_literal: true
+
+# Copyright 2020 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+require "google/cloud/errors"
+require "google/iam/v1beta/workload_identity_pool_pb"
+
+module Google
+  module Iam
+    module V1beta
+      module WorkloadIdentityPools
+        ##
+        # Client for the WorkloadIdentityPools service.
+        #
+        # Manages WorkloadIdentityPools.
+        #
+        class Client
+          include Paths
+
+          # @private
+          attr_reader :workload_identity_pools_stub
+
+          ##
+          # Configure the WorkloadIdentityPools Client class.
+          #
+          # See {::Google::Iam::V1beta::WorkloadIdentityPools::Client::Configuration}
+          # for a description of the configuration fields.
+          #
+          # ## Example
+          #
+          # To modify the configuration for all WorkloadIdentityPools clients:
+          #
+          #     ::Google::Iam::V1beta::WorkloadIdentityPools::Client.configure do |config|
+          #       config.timeout = 10.0
+          #     end
+          #
+          # @yield [config] Configure the Client client.
+          # @yieldparam config [Client::Configuration]
+          #
+          # @return [Client::Configuration]
+          #
+          def self.configure
+            @configure ||= begin
+              namespace = ["Google", "Iam", "V1beta"]
+              parent_config = while namespace.any?
+                                parent_name = namespace.join "::"
+                                parent_const = const_get parent_name
+                                break parent_const.configure if parent_const&.respond_to? :configure
+                                namespace.pop
+                              end
+              default_config = Client::Configuration.new parent_config
+
+              default_config.rpcs.list_workload_identity_pools.timeout = 60.0
+              default_config.rpcs.list_workload_identity_pools.retry_policy = {
+                initial_delay: 1.0,
+                max_delay:     10.0,
+                multiplier:    1.3,
+                retry_codes:   [14, 4]
+              }
+
+              default_config.rpcs.get_workload_identity_pool.timeout = 60.0
+              default_config.rpcs.get_workload_identity_pool.retry_policy = {
+                initial_delay: 1.0,
+                max_delay:     10.0,
+                multiplier:    1.3,
+                retry_codes:   [14, 4]
+              }
+
+              default_config.rpcs.create_workload_identity_pool.timeout = 60.0
+              default_config.rpcs.create_workload_identity_pool.retry_policy = {
+                initial_delay: 1.0,
+                max_delay:     10.0,
+                multiplier:    1.3,
+                retry_codes:   [14, 4]
+              }
+
+              default_config.rpcs.update_workload_identity_pool.timeout = 60.0
+              default_config.rpcs.update_workload_identity_pool.retry_policy = {
+                initial_delay: 1.0,
+                max_delay:     10.0,
+                multiplier:    1.3,
+                retry_codes:   [14, 4]
+              }
+
+              default_config.rpcs.delete_workload_identity_pool.timeout = 60.0
+              default_config.rpcs.delete_workload_identity_pool.retry_policy = {
+                initial_delay: 1.0,
+                max_delay:     10.0,
+                multiplier:    1.3,
+                retry_codes:   [14, 4]
+              }
+
+              default_config.rpcs.undelete_workload_identity_pool.timeout = 60.0
+              default_config.rpcs.undelete_workload_identity_pool.retry_policy = {
+                initial_delay: 1.0,
+                max_delay:     10.0,
+                multiplier:    1.3,
+                retry_codes:   [14, 4]
+              }
+
+              default_config.rpcs.list_workload_identity_pool_providers.timeout = 60.0
+              default_config.rpcs.list_workload_identity_pool_providers.retry_policy = {
+                initial_delay: 1.0,
+                max_delay:     10.0,
+                multiplier:    1.3,
+                retry_codes:   [14, 4]
+              }
+
+              default_config.rpcs.get_workload_identity_pool_provider.timeout = 60.0
+              default_config.rpcs.get_workload_identity_pool_provider.retry_policy = {
+                initial_delay: 1.0,
+                max_delay:     10.0,
+                multiplier:    1.3,
+                retry_codes:   [14, 4]
+              }
+
+              default_config.rpcs.create_workload_identity_pool_provider.timeout = 60.0
+              default_config.rpcs.create_workload_identity_pool_provider.retry_policy = {
+                initial_delay: 1.0,
+                max_delay:     10.0,
+                multiplier:    1.3,
+                retry_codes:   [14, 4]
+              }
+
+              default_config.rpcs.update_workload_identity_pool_provider.timeout = 60.0
+              default_config.rpcs.update_workload_identity_pool_provider.retry_policy = {
+                initial_delay: 1.0,
+                max_delay:     10.0,
+                multiplier:    1.3,
+                retry_codes:   [14, 4]
+              }
+
+              default_config.rpcs.delete_workload_identity_pool_provider.timeout = 60.0
+              default_config.rpcs.delete_workload_identity_pool_provider.retry_policy = {
+                initial_delay: 1.0,
+                max_delay:     10.0,
+                multiplier:    1.3,
+                retry_codes:   [14, 4]
+              }
+
+              default_config.rpcs.undelete_workload_identity_pool_provider.timeout = 60.0
+              default_config.rpcs.undelete_workload_identity_pool_provider.retry_policy = {
+                initial_delay: 1.0,
+                max_delay:     10.0,
+                multiplier:    1.3,
+                retry_codes:   [14, 4]
+              }
+
+              default_config
+            end
+            yield @configure if block_given?
+            @configure
+          end
+
+          ##
+          # Configure the WorkloadIdentityPools Client instance.
+          #
+          # The configuration is set to the derived mode, meaning that values can be changed,
+          # but structural changes (adding new fields, etc.) are not allowed. Structural changes
+          # should be made on {Client.configure}.
+          #
+          # See {::Google::Iam::V1beta::WorkloadIdentityPools::Client::Configuration}
+          # for a description of the configuration fields.
+          #
+          # @yield [config] Configure the Client client.
+          # @yieldparam config [Client::Configuration]
+          #
+          # @return [Client::Configuration]
+          #
+          def configure
+            yield @config if block_given?
+            @config
+          end
+
+          ##
+          # Create a new WorkloadIdentityPools client object.
+          #
+          # ## Examples
+          #
+          # To create a new WorkloadIdentityPools client with the default
+          # configuration:
+          #
+          #     client = ::Google::Iam::V1beta::WorkloadIdentityPools::Client.new
+          #
+          # To create a new WorkloadIdentityPools client with a custom
+          # configuration:
+          #
+          #     client = ::Google::Iam::V1beta::WorkloadIdentityPools::Client.new do |config|
+          #       config.timeout = 10.0
+          #     end
+          #
+          # @yield [config] Configure the WorkloadIdentityPools client.
+          # @yieldparam config [Client::Configuration]
+          #
+          def initialize
+            # These require statements are intentionally placed here to initialize
+            # the gRPC module only when it's required.
+            # See https://github.com/googleapis/toolkit/issues/446
+            require "gapic/grpc"
+            require "google/iam/v1beta/workload_identity_pool_services_pb"
+
+            # Create the configuration object
+            @config = Configuration.new Client.configure
+
+            # Yield the configuration if needed
+            yield @config if block_given?
+
+            # Create credentials
+            credentials = @config.credentials
+            credentials ||= Credentials.default scope: @config.scope
+            if credentials.is_a?(String) || credentials.is_a?(Hash)
+              credentials = Credentials.new credentials, scope: @config.scope
+            end
+            @quota_project_id = @config.quota_project
+            @quota_project_id ||= credentials.quota_project_id if credentials.respond_to? :quota_project_id
+
+            @operations_client = Operations.new do |config|
+              config.credentials = credentials
+              config.endpoint = @config.endpoint
+            end
+
+            @workload_identity_pools_stub = ::Gapic::ServiceStub.new(
+              ::Google::Iam::V1beta::WorkloadIdentityPools::Stub,
+              credentials:  credentials,
+              endpoint:     @config.endpoint,
+              channel_args: @config.channel_args,
+              interceptors: @config.interceptors
+            )
+          end
+
+          ##
+          # Get the associated client for long-running operations.
+          #
+          # @return [::Google::Iam::V1beta::WorkloadIdentityPools::Operations]
+          #
+          attr_reader :operations_client
+
+          # Service calls
+
+          ##
+          # Lists all non-deleted
+          # {::Google::Iam::V1beta::WorkloadIdentityPool WorkloadIdentityPool}s in a
+          # project. If `show_deleted` is set to `true`, then deleted pools are also
+          # listed.
+          #
+          # @overload list_workload_identity_pools(request, options = nil)
+          #   Pass arguments to `list_workload_identity_pools` via a request object, either of type
+          #   {::Google::Iam::V1beta::ListWorkloadIdentityPoolsRequest} or an equivalent Hash.
+          #
+          #   @param request [::Google::Iam::V1beta::ListWorkloadIdentityPoolsRequest, ::Hash]
+          #     A request object representing the call parameters. Required. To specify no
+          #     parameters, or to keep all the default parameter values, pass an empty Hash.
+          #   @param options [::Gapic::CallOptions, ::Hash]
+          #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+          #
+          # @overload list_workload_identity_pools(parent: nil, page_size: nil, page_token: nil, show_deleted: nil)
+          #   Pass arguments to `list_workload_identity_pools` via keyword arguments. Note that at
+          #   least one keyword argument is required. To specify no parameters, or to keep all
+          #   the default parameter values, pass an empty Hash as a request object (see above).
+          #
+          #   @param parent [::String]
+          #     Required. The parent resource to list pools for.
+          #   @param page_size [::Integer]
+          #     The maximum number of pools to return.
+          #     If unspecified, at most 50 pools are returned.
+          #     The maximum value is 1000; values above are 1000 truncated to 1000.
+          #   @param page_token [::String]
+          #     A page token, received from a previous `ListWorkloadIdentityPools`
+          #     call. Provide this to retrieve the subsequent page.
+          #   @param show_deleted [::Boolean]
+          #     Whether to return soft-deleted pools.
+          #
+          # @yield [response, operation] Access the result along with the RPC operation
+          # @yieldparam response [::Gapic::PagedEnumerable<::Google::Iam::V1beta::WorkloadIdentityPool>]
+          # @yieldparam operation [::GRPC::ActiveCall::Operation]
+          #
+          # @return [::Gapic::PagedEnumerable<::Google::Iam::V1beta::WorkloadIdentityPool>]
+          #
+          # @raise [::Google::Cloud::Error] if the RPC is aborted.
+          #
+          def list_workload_identity_pools request, options = nil
+            raise ::ArgumentError, "request must be provided" if request.nil?
+
+            request = ::Gapic::Protobuf.coerce request, to: ::Google::Iam::V1beta::ListWorkloadIdentityPoolsRequest
+
+            # Converts hash and nil to an options object
+            options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+            # Customize the options with defaults
+            metadata = @config.rpcs.list_workload_identity_pools.metadata.to_h
+
+            # Set x-goog-api-client and x-goog-user-project headers
+            metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+              lib_name: @config.lib_name, lib_version: @config.lib_version,
+              gapic_version: ::Google::Iam::V1beta::VERSION
+            metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+            header_params = {
+              "parent" => request.parent
+            }
+            request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
+            metadata[:"x-goog-request-params"] ||= request_params_header
+
+            options.apply_defaults timeout:      @config.rpcs.list_workload_identity_pools.timeout,
+                                   metadata:     metadata,
+                                   retry_policy: @config.rpcs.list_workload_identity_pools.retry_policy
+            options.apply_defaults metadata:     @config.metadata,
+                                   retry_policy: @config.retry_policy
+
+            @workload_identity_pools_stub.call_rpc :list_workload_identity_pools, request, options: options do |response, operation|
+              response = ::Gapic::PagedEnumerable.new @workload_identity_pools_stub, :list_workload_identity_pools, request, response, operation, options
+              yield response, operation if block_given?
+              return response
+            end
+          rescue ::GRPC::BadStatus => e
+            raise ::Google::Cloud::Error.from_error(e)
+          end
+
+          ##
+          # Gets an individual
+          # {::Google::Iam::V1beta::WorkloadIdentityPool WorkloadIdentityPool}.
+          #
+          # @overload get_workload_identity_pool(request, options = nil)
+          #   Pass arguments to `get_workload_identity_pool` via a request object, either of type
+          #   {::Google::Iam::V1beta::GetWorkloadIdentityPoolRequest} or an equivalent Hash.
+          #
+          #   @param request [::Google::Iam::V1beta::GetWorkloadIdentityPoolRequest, ::Hash]
+          #     A request object representing the call parameters. Required. To specify no
+          #     parameters, or to keep all the default parameter values, pass an empty Hash.
+          #   @param options [::Gapic::CallOptions, ::Hash]
+          #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+          #
+          # @overload get_workload_identity_pool(name: nil)
+          #   Pass arguments to `get_workload_identity_pool` via keyword arguments. Note that at
+          #   least one keyword argument is required. To specify no parameters, or to keep all
+          #   the default parameter values, pass an empty Hash as a request object (see above).
+          #
+          #   @param name [::String]
+          #     Required. The name of the pool to retrieve.
+          #
+          # @yield [response, operation] Access the result along with the RPC operation
+          # @yieldparam response [::Google::Iam::V1beta::WorkloadIdentityPool]
+          # @yieldparam operation [::GRPC::ActiveCall::Operation]
+          #
+          # @return [::Google::Iam::V1beta::WorkloadIdentityPool]
+          #
+          # @raise [::Google::Cloud::Error] if the RPC is aborted.
+          #
+          def get_workload_identity_pool request, options = nil
+            raise ::ArgumentError, "request must be provided" if request.nil?
+
+            request = ::Gapic::Protobuf.coerce request, to: ::Google::Iam::V1beta::GetWorkloadIdentityPoolRequest
+
+            # Converts hash and nil to an options object
+            options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+            # Customize the options with defaults
+            metadata = @config.rpcs.get_workload_identity_pool.metadata.to_h
+
+            # Set x-goog-api-client and x-goog-user-project headers
+            metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+              lib_name: @config.lib_name, lib_version: @config.lib_version,
+              gapic_version: ::Google::Iam::V1beta::VERSION
+            metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+            header_params = {
+              "name" => request.name
+            }
+            request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
+            metadata[:"x-goog-request-params"] ||= request_params_header
+
+            options.apply_defaults timeout:      @config.rpcs.get_workload_identity_pool.timeout,
+                                   metadata:     metadata,
+                                   retry_policy: @config.rpcs.get_workload_identity_pool.retry_policy
+            options.apply_defaults metadata:     @config.metadata,
+                                   retry_policy: @config.retry_policy
+
+            @workload_identity_pools_stub.call_rpc :get_workload_identity_pool, request, options: options do |response, operation|
+              yield response, operation if block_given?
+              return response
+            end
+          rescue ::GRPC::BadStatus => e
+            raise ::Google::Cloud::Error.from_error(e)
+          end
+
+          ##
+          # Creates a new
+          # {::Google::Iam::V1beta::WorkloadIdentityPool WorkloadIdentityPool}.
+          #
+          # You cannot reuse the name of a deleted pool until 30 days after deletion.
+          #
+          # @overload create_workload_identity_pool(request, options = nil)
+          #   Pass arguments to `create_workload_identity_pool` via a request object, either of type
+          #   {::Google::Iam::V1beta::CreateWorkloadIdentityPoolRequest} or an equivalent Hash.
+          #
+          #   @param request [::Google::Iam::V1beta::CreateWorkloadIdentityPoolRequest, ::Hash]
+          #     A request object representing the call parameters. Required. To specify no
+          #     parameters, or to keep all the default parameter values, pass an empty Hash.
+          #   @param options [::Gapic::CallOptions, ::Hash]
+          #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+          #
+          # @overload create_workload_identity_pool(parent: nil, workload_identity_pool: nil, workload_identity_pool_id: nil)
+          #   Pass arguments to `create_workload_identity_pool` via keyword arguments. Note that at
+          #   least one keyword argument is required. To specify no parameters, or to keep all
+          #   the default parameter values, pass an empty Hash as a request object (see above).
+          #
+          #   @param parent [::String]
+          #     Required. The parent resource to create the pool in. The only supported
+          #     location is `global`.
+          #   @param workload_identity_pool [::Google::Iam::V1beta::WorkloadIdentityPool, ::Hash]
+          #     Required. The pool to create.
+          #   @param workload_identity_pool_id [::String]
+          #     Required. The ID to use for the pool, which becomes the
+          #     final component of the resource name. This value should be 4-32 characters,
+          #     and may contain the characters [a-z0-9-]. The prefix `gcp-` is
+          #     reserved for use by Google, and may not be specified.
+          #
+          # @yield [response, operation] Access the result along with the RPC operation
+          # @yieldparam response [::Gapic::Operation]
+          # @yieldparam operation [::GRPC::ActiveCall::Operation]
+          #
+          # @return [::Gapic::Operation]
+          #
+          # @raise [::Google::Cloud::Error] if the RPC is aborted.
+          #
+          def create_workload_identity_pool request, options = nil
+            raise ::ArgumentError, "request must be provided" if request.nil?
+
+            request = ::Gapic::Protobuf.coerce request, to: ::Google::Iam::V1beta::CreateWorkloadIdentityPoolRequest
+
+            # Converts hash and nil to an options object
+            options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+            # Customize the options with defaults
+            metadata = @config.rpcs.create_workload_identity_pool.metadata.to_h
+
+            # Set x-goog-api-client and x-goog-user-project headers
+            metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+              lib_name: @config.lib_name, lib_version: @config.lib_version,
+              gapic_version: ::Google::Iam::V1beta::VERSION
+            metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+            header_params = {
+              "parent" => request.parent
+            }
+            request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
+            metadata[:"x-goog-request-params"] ||= request_params_header
+
+            options.apply_defaults timeout:      @config.rpcs.create_workload_identity_pool.timeout,
+                                   metadata:     metadata,
+                                   retry_policy: @config.rpcs.create_workload_identity_pool.retry_policy
+            options.apply_defaults metadata:     @config.metadata,
+                                   retry_policy: @config.retry_policy
+
+            @workload_identity_pools_stub.call_rpc :create_workload_identity_pool, request, options: options do |response, operation|
+              response = ::Gapic::Operation.new response, @operations_client, options: options
+              yield response, operation if block_given?
+              return response
+            end
+          rescue ::GRPC::BadStatus => e
+            raise ::Google::Cloud::Error.from_error(e)
+          end
+
+          ##
+          # Updates an existing
+          # {::Google::Iam::V1beta::WorkloadIdentityPool WorkloadIdentityPool}.
+          #
+          # @overload update_workload_identity_pool(request, options = nil)
+          #   Pass arguments to `update_workload_identity_pool` via a request object, either of type
+          #   {::Google::Iam::V1beta::UpdateWorkloadIdentityPoolRequest} or an equivalent Hash.
+          #
+          #   @param request [::Google::Iam::V1beta::UpdateWorkloadIdentityPoolRequest, ::Hash]
+          #     A request object representing the call parameters. Required. To specify no
+          #     parameters, or to keep all the default parameter values, pass an empty Hash.
+          #   @param options [::Gapic::CallOptions, ::Hash]
+          #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+          #
+          # @overload update_workload_identity_pool(workload_identity_pool: nil, update_mask: nil)
+          #   Pass arguments to `update_workload_identity_pool` via keyword arguments. Note that at
+          #   least one keyword argument is required. To specify no parameters, or to keep all
+          #   the default parameter values, pass an empty Hash as a request object (see above).
+          #
+          #   @param workload_identity_pool [::Google::Iam::V1beta::WorkloadIdentityPool, ::Hash]
+          #     Required. The pool to update. The `name` field is used to identify the pool.
+          #   @param update_mask [::Google::Protobuf::FieldMask, ::Hash]
+          #     Required. The list of fields update.
+          #
+          # @yield [response, operation] Access the result along with the RPC operation
+          # @yieldparam response [::Gapic::Operation]
+          # @yieldparam operation [::GRPC::ActiveCall::Operation]
+          #
+          # @return [::Gapic::Operation]
+          #
+          # @raise [::Google::Cloud::Error] if the RPC is aborted.
+          #
+          def update_workload_identity_pool request, options = nil
+            raise ::ArgumentError, "request must be provided" if request.nil?
+
+            request = ::Gapic::Protobuf.coerce request, to: ::Google::Iam::V1beta::UpdateWorkloadIdentityPoolRequest
+
+            # Converts hash and nil to an options object
+            options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+            # Customize the options with defaults
+            metadata = @config.rpcs.update_workload_identity_pool.metadata.to_h
+
+            # Set x-goog-api-client and x-goog-user-project headers
+            metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+              lib_name: @config.lib_name, lib_version: @config.lib_version,
+              gapic_version: ::Google::Iam::V1beta::VERSION
+            metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+            header_params = {
+              "workload_identity_pool.name" => request.workload_identity_pool.name
+            }
+            request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
+            metadata[:"x-goog-request-params"] ||= request_params_header
+
+            options.apply_defaults timeout:      @config.rpcs.update_workload_identity_pool.timeout,
+                                   metadata:     metadata,
+                                   retry_policy: @config.rpcs.update_workload_identity_pool.retry_policy
+            options.apply_defaults metadata:     @config.metadata,
+                                   retry_policy: @config.retry_policy
+
+            @workload_identity_pools_stub.call_rpc :update_workload_identity_pool, request, options: options do |response, operation|
+              response = ::Gapic::Operation.new response, @operations_client, options: options
+              yield response, operation if block_given?
+              return response
+            end
+          rescue ::GRPC::BadStatus => e
+            raise ::Google::Cloud::Error.from_error(e)
+          end
+
+          ##
+          # Deletes a
+          # {::Google::Iam::V1beta::WorkloadIdentityPool WorkloadIdentityPool}.
+          #
+          # You cannot use a deleted pool to exchange external
+          # credentials for Google Cloud credentials. However, deletion does
+          # not revoke credentials that have already been issued.
+          # Credentials issued for a deleted pool do not grant access to resources.
+          # If the pool is undeleted, and the credentials are not expired, they
+          # grant access again.
+          # You can undelete a pool for 30 days. After 30 days, deletion is
+          # permanent.
+          # You cannot update deleted pools. However, you can view and list them.
+          #
+          # @overload delete_workload_identity_pool(request, options = nil)
+          #   Pass arguments to `delete_workload_identity_pool` via a request object, either of type
+          #   {::Google::Iam::V1beta::DeleteWorkloadIdentityPoolRequest} or an equivalent Hash.
+          #
+          #   @param request [::Google::Iam::V1beta::DeleteWorkloadIdentityPoolRequest, ::Hash]
+          #     A request object representing the call parameters. Required. To specify no
+          #     parameters, or to keep all the default parameter values, pass an empty Hash.
+          #   @param options [::Gapic::CallOptions, ::Hash]
+          #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+          #
+          # @overload delete_workload_identity_pool(name: nil)
+          #   Pass arguments to `delete_workload_identity_pool` via keyword arguments. Note that at
+          #   least one keyword argument is required. To specify no parameters, or to keep all
+          #   the default parameter values, pass an empty Hash as a request object (see above).
+          #
+          #   @param name [::String]
+          #     Required. The name of the pool to delete.
+          #
+          # @yield [response, operation] Access the result along with the RPC operation
+          # @yieldparam response [::Gapic::Operation]
+          # @yieldparam operation [::GRPC::ActiveCall::Operation]
+          #
+          # @return [::Gapic::Operation]
+          #
+          # @raise [::Google::Cloud::Error] if the RPC is aborted.
+          #
+          def delete_workload_identity_pool request, options = nil
+            raise ::ArgumentError, "request must be provided" if request.nil?
+
+            request = ::Gapic::Protobuf.coerce request, to: ::Google::Iam::V1beta::DeleteWorkloadIdentityPoolRequest
+
+            # Converts hash and nil to an options object
+            options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+            # Customize the options with defaults
+            metadata = @config.rpcs.delete_workload_identity_pool.metadata.to_h
+
+            # Set x-goog-api-client and x-goog-user-project headers
+            metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+              lib_name: @config.lib_name, lib_version: @config.lib_version,
+              gapic_version: ::Google::Iam::V1beta::VERSION
+            metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+            header_params = {
+              "name" => request.name
+            }
+            request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
+            metadata[:"x-goog-request-params"] ||= request_params_header
+
+            options.apply_defaults timeout:      @config.rpcs.delete_workload_identity_pool.timeout,
+                                   metadata:     metadata,
+                                   retry_policy: @config.rpcs.delete_workload_identity_pool.retry_policy
+            options.apply_defaults metadata:     @config.metadata,
+                                   retry_policy: @config.retry_policy
+
+            @workload_identity_pools_stub.call_rpc :delete_workload_identity_pool, request, options: options do |response, operation|
+              response = ::Gapic::Operation.new response, @operations_client, options: options
+              yield response, operation if block_given?
+              return response
+            end
+          rescue ::GRPC::BadStatus => e
+            raise ::Google::Cloud::Error.from_error(e)
+          end
+
+          ##
+          # Undeletes a {::Google::Iam::V1beta::WorkloadIdentityPool WorkloadIdentityPool},
+          # as long as it was deleted fewer than 30 days ago.
+          #
+          # @overload undelete_workload_identity_pool(request, options = nil)
+          #   Pass arguments to `undelete_workload_identity_pool` via a request object, either of type
+          #   {::Google::Iam::V1beta::UndeleteWorkloadIdentityPoolRequest} or an equivalent Hash.
+          #
+          #   @param request [::Google::Iam::V1beta::UndeleteWorkloadIdentityPoolRequest, ::Hash]
+          #     A request object representing the call parameters. Required. To specify no
+          #     parameters, or to keep all the default parameter values, pass an empty Hash.
+          #   @param options [::Gapic::CallOptions, ::Hash]
+          #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+          #
+          # @overload undelete_workload_identity_pool(name: nil)
+          #   Pass arguments to `undelete_workload_identity_pool` via keyword arguments. Note that at
+          #   least one keyword argument is required. To specify no parameters, or to keep all
+          #   the default parameter values, pass an empty Hash as a request object (see above).
+          #
+          #   @param name [::String]
+          #     Required. The name of the pool to undelete.
+          #
+          # @yield [response, operation] Access the result along with the RPC operation
+          # @yieldparam response [::Gapic::Operation]
+          # @yieldparam operation [::GRPC::ActiveCall::Operation]
+          #
+          # @return [::Gapic::Operation]
+          #
+          # @raise [::Google::Cloud::Error] if the RPC is aborted.
+          #
+          def undelete_workload_identity_pool request, options = nil
+            raise ::ArgumentError, "request must be provided" if request.nil?
+
+            request = ::Gapic::Protobuf.coerce request, to: ::Google::Iam::V1beta::UndeleteWorkloadIdentityPoolRequest
+
+            # Converts hash and nil to an options object
+            options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+            # Customize the options with defaults
+            metadata = @config.rpcs.undelete_workload_identity_pool.metadata.to_h
+
+            # Set x-goog-api-client and x-goog-user-project headers
+            metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+              lib_name: @config.lib_name, lib_version: @config.lib_version,
+              gapic_version: ::Google::Iam::V1beta::VERSION
+            metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+            header_params = {
+              "name" => request.name
+            }
+            request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
+            metadata[:"x-goog-request-params"] ||= request_params_header
+
+            options.apply_defaults timeout:      @config.rpcs.undelete_workload_identity_pool.timeout,
+                                   metadata:     metadata,
+                                   retry_policy: @config.rpcs.undelete_workload_identity_pool.retry_policy
+            options.apply_defaults metadata:     @config.metadata,
+                                   retry_policy: @config.retry_policy
+
+            @workload_identity_pools_stub.call_rpc :undelete_workload_identity_pool, request, options: options do |response, operation|
+              response = ::Gapic::Operation.new response, @operations_client, options: options
+              yield response, operation if block_given?
+              return response
+            end
+          rescue ::GRPC::BadStatus => e
+            raise ::Google::Cloud::Error.from_error(e)
+          end
+
+          ##
+          # Lists all non-deleted
+          # {::Google::Iam::V1beta::WorkloadIdentityPoolProvider WorkloadIdentityPoolProvider}s
+          # in a {::Google::Iam::V1beta::WorkloadIdentityPool WorkloadIdentityPool}.
+          # If `show_deleted` is set to `true`, then deleted providers are also listed.
+          #
+          # @overload list_workload_identity_pool_providers(request, options = nil)
+          #   Pass arguments to `list_workload_identity_pool_providers` via a request object, either of type
+          #   {::Google::Iam::V1beta::ListWorkloadIdentityPoolProvidersRequest} or an equivalent Hash.
+          #
+          #   @param request [::Google::Iam::V1beta::ListWorkloadIdentityPoolProvidersRequest, ::Hash]
+          #     A request object representing the call parameters. Required. To specify no
+          #     parameters, or to keep all the default parameter values, pass an empty Hash.
+          #   @param options [::Gapic::CallOptions, ::Hash]
+          #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+          #
+          # @overload list_workload_identity_pool_providers(parent: nil, page_size: nil, page_token: nil, show_deleted: nil)
+          #   Pass arguments to `list_workload_identity_pool_providers` via keyword arguments. Note that at
+          #   least one keyword argument is required. To specify no parameters, or to keep all
+          #   the default parameter values, pass an empty Hash as a request object (see above).
+          #
+          #   @param parent [::String]
+          #     Required. The pool to list providers for.
+          #   @param page_size [::Integer]
+          #     The maximum number of providers to return.
+          #     If unspecified, at most 50 providers are returned.
+          #     The maximum value is 100; values above 100 are truncated to 100.
+          #   @param page_token [::String]
+          #     A page token, received from a previous
+          #     `ListWorkloadIdentityPoolProviders` call. Provide this to retrieve the
+          #     subsequent page.
+          #   @param show_deleted [::Boolean]
+          #     Whether to return soft-deleted providers.
+          #
+          # @yield [response, operation] Access the result along with the RPC operation
+          # @yieldparam response [::Gapic::PagedEnumerable<::Google::Iam::V1beta::WorkloadIdentityPoolProvider>]
+          # @yieldparam operation [::GRPC::ActiveCall::Operation]
+          #
+          # @return [::Gapic::PagedEnumerable<::Google::Iam::V1beta::WorkloadIdentityPoolProvider>]
+          #
+          # @raise [::Google::Cloud::Error] if the RPC is aborted.
+          #
+          def list_workload_identity_pool_providers request, options = nil
+            raise ::ArgumentError, "request must be provided" if request.nil?
+
+            request = ::Gapic::Protobuf.coerce request, to: ::Google::Iam::V1beta::ListWorkloadIdentityPoolProvidersRequest
+
+            # Converts hash and nil to an options object
+            options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+            # Customize the options with defaults
+            metadata = @config.rpcs.list_workload_identity_pool_providers.metadata.to_h
+
+            # Set x-goog-api-client and x-goog-user-project headers
+            metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+              lib_name: @config.lib_name, lib_version: @config.lib_version,
+              gapic_version: ::Google::Iam::V1beta::VERSION
+            metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+            header_params = {
+              "parent" => request.parent
+            }
+            request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
+            metadata[:"x-goog-request-params"] ||= request_params_header
+
+            options.apply_defaults timeout:      @config.rpcs.list_workload_identity_pool_providers.timeout,
+                                   metadata:     metadata,
+                                   retry_policy: @config.rpcs.list_workload_identity_pool_providers.retry_policy
+            options.apply_defaults metadata:     @config.metadata,
+                                   retry_policy: @config.retry_policy
+
+            @workload_identity_pools_stub.call_rpc :list_workload_identity_pool_providers, request, options: options do |response, operation|
+              response = ::Gapic::PagedEnumerable.new @workload_identity_pools_stub, :list_workload_identity_pool_providers, request, response, operation, options
+              yield response, operation if block_given?
+              return response
+            end
+          rescue ::GRPC::BadStatus => e
+            raise ::Google::Cloud::Error.from_error(e)
+          end
+
+          ##
+          # Gets an individual
+          # {::Google::Iam::V1beta::WorkloadIdentityPoolProvider WorkloadIdentityPoolProvider}.
+          #
+          # @overload get_workload_identity_pool_provider(request, options = nil)
+          #   Pass arguments to `get_workload_identity_pool_provider` via a request object, either of type
+          #   {::Google::Iam::V1beta::GetWorkloadIdentityPoolProviderRequest} or an equivalent Hash.
+          #
+          #   @param request [::Google::Iam::V1beta::GetWorkloadIdentityPoolProviderRequest, ::Hash]
+          #     A request object representing the call parameters. Required. To specify no
+          #     parameters, or to keep all the default parameter values, pass an empty Hash.
+          #   @param options [::Gapic::CallOptions, ::Hash]
+          #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+          #
+          # @overload get_workload_identity_pool_provider(name: nil)
+          #   Pass arguments to `get_workload_identity_pool_provider` via keyword arguments. Note that at
+          #   least one keyword argument is required. To specify no parameters, or to keep all
+          #   the default parameter values, pass an empty Hash as a request object (see above).
+          #
+          #   @param name [::String]
+          #     Required. The name of the provider to retrieve.
+          #
+          # @yield [response, operation] Access the result along with the RPC operation
+          # @yieldparam response [::Google::Iam::V1beta::WorkloadIdentityPoolProvider]
+          # @yieldparam operation [::GRPC::ActiveCall::Operation]
+          #
+          # @return [::Google::Iam::V1beta::WorkloadIdentityPoolProvider]
+          #
+          # @raise [::Google::Cloud::Error] if the RPC is aborted.
+          #
+          def get_workload_identity_pool_provider request, options = nil
+            raise ::ArgumentError, "request must be provided" if request.nil?
+
+            request = ::Gapic::Protobuf.coerce request, to: ::Google::Iam::V1beta::GetWorkloadIdentityPoolProviderRequest
+
+            # Converts hash and nil to an options object
+            options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+            # Customize the options with defaults
+            metadata = @config.rpcs.get_workload_identity_pool_provider.metadata.to_h
+
+            # Set x-goog-api-client and x-goog-user-project headers
+            metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+              lib_name: @config.lib_name, lib_version: @config.lib_version,
+              gapic_version: ::Google::Iam::V1beta::VERSION
+            metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+            header_params = {
+              "name" => request.name
+            }
+            request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
+            metadata[:"x-goog-request-params"] ||= request_params_header
+
+            options.apply_defaults timeout:      @config.rpcs.get_workload_identity_pool_provider.timeout,
+                                   metadata:     metadata,
+                                   retry_policy: @config.rpcs.get_workload_identity_pool_provider.retry_policy
+            options.apply_defaults metadata:     @config.metadata,
+                                   retry_policy: @config.retry_policy
+
+            @workload_identity_pools_stub.call_rpc :get_workload_identity_pool_provider, request, options: options do |response, operation|
+              yield response, operation if block_given?
+              return response
+            end
+          rescue ::GRPC::BadStatus => e
+            raise ::Google::Cloud::Error.from_error(e)
+          end
+
+          ##
+          # Creates a new
+          # [WorkloadIdentityPoolProvider][google.iam.v1beta.WorkloadIdentityProvider]
+          # in a {::Google::Iam::V1beta::WorkloadIdentityPool WorkloadIdentityPool}.
+          #
+          # You cannot reuse the name of a deleted provider until 30 days after
+          # deletion.
+          #
+          # @overload create_workload_identity_pool_provider(request, options = nil)
+          #   Pass arguments to `create_workload_identity_pool_provider` via a request object, either of type
+          #   {::Google::Iam::V1beta::CreateWorkloadIdentityPoolProviderRequest} or an equivalent Hash.
+          #
+          #   @param request [::Google::Iam::V1beta::CreateWorkloadIdentityPoolProviderRequest, ::Hash]
+          #     A request object representing the call parameters. Required. To specify no
+          #     parameters, or to keep all the default parameter values, pass an empty Hash.
+          #   @param options [::Gapic::CallOptions, ::Hash]
+          #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+          #
+          # @overload create_workload_identity_pool_provider(parent: nil, workload_identity_pool_provider: nil, workload_identity_pool_provider_id: nil)
+          #   Pass arguments to `create_workload_identity_pool_provider` via keyword arguments. Note that at
+          #   least one keyword argument is required. To specify no parameters, or to keep all
+          #   the default parameter values, pass an empty Hash as a request object (see above).
+          #
+          #   @param parent [::String]
+          #     Required. The pool to create this provider in.
+          #   @param workload_identity_pool_provider [::Google::Iam::V1beta::WorkloadIdentityPoolProvider, ::Hash]
+          #     Required. The provider to create.
+          #   @param workload_identity_pool_provider_id [::String]
+          #     Required. The ID for the provider, which becomes the
+          #     final component of the resource name. This value must be 4-32 characters,
+          #     and may contain the characters [a-z0-9-]. The prefix `gcp-` is
+          #     reserved for use by Google, and may not be specified.
+          #
+          # @yield [response, operation] Access the result along with the RPC operation
+          # @yieldparam response [::Gapic::Operation]
+          # @yieldparam operation [::GRPC::ActiveCall::Operation]
+          #
+          # @return [::Gapic::Operation]
+          #
+          # @raise [::Google::Cloud::Error] if the RPC is aborted.
+          #
+          def create_workload_identity_pool_provider request, options = nil
+            raise ::ArgumentError, "request must be provided" if request.nil?
+
+            request = ::Gapic::Protobuf.coerce request, to: ::Google::Iam::V1beta::CreateWorkloadIdentityPoolProviderRequest
+
+            # Converts hash and nil to an options object
+            options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+            # Customize the options with defaults
+            metadata = @config.rpcs.create_workload_identity_pool_provider.metadata.to_h
+
+            # Set x-goog-api-client and x-goog-user-project headers
+            metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+              lib_name: @config.lib_name, lib_version: @config.lib_version,
+              gapic_version: ::Google::Iam::V1beta::VERSION
+            metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+            header_params = {
+              "parent" => request.parent
+            }
+            request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
+            metadata[:"x-goog-request-params"] ||= request_params_header
+
+            options.apply_defaults timeout:      @config.rpcs.create_workload_identity_pool_provider.timeout,
+                                   metadata:     metadata,
+                                   retry_policy: @config.rpcs.create_workload_identity_pool_provider.retry_policy
+            options.apply_defaults metadata:     @config.metadata,
+                                   retry_policy: @config.retry_policy
+
+            @workload_identity_pools_stub.call_rpc :create_workload_identity_pool_provider, request, options: options do |response, operation|
+              response = ::Gapic::Operation.new response, @operations_client, options: options
+              yield response, operation if block_given?
+              return response
+            end
+          rescue ::GRPC::BadStatus => e
+            raise ::Google::Cloud::Error.from_error(e)
+          end
+
+          ##
+          # Updates an existing
+          # [WorkloadIdentityPoolProvider][google.iam.v1beta.WorkloadIdentityProvider].
+          #
+          # @overload update_workload_identity_pool_provider(request, options = nil)
+          #   Pass arguments to `update_workload_identity_pool_provider` via a request object, either of type
+          #   {::Google::Iam::V1beta::UpdateWorkloadIdentityPoolProviderRequest} or an equivalent Hash.
+          #
+          #   @param request [::Google::Iam::V1beta::UpdateWorkloadIdentityPoolProviderRequest, ::Hash]
+          #     A request object representing the call parameters. Required. To specify no
+          #     parameters, or to keep all the default parameter values, pass an empty Hash.
+          #   @param options [::Gapic::CallOptions, ::Hash]
+          #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+          #
+          # @overload update_workload_identity_pool_provider(workload_identity_pool_provider: nil, update_mask: nil)
+          #   Pass arguments to `update_workload_identity_pool_provider` via keyword arguments. Note that at
+          #   least one keyword argument is required. To specify no parameters, or to keep all
+          #   the default parameter values, pass an empty Hash as a request object (see above).
+          #
+          #   @param workload_identity_pool_provider [::Google::Iam::V1beta::WorkloadIdentityPoolProvider, ::Hash]
+          #     Required. The provider to update.
+          #   @param update_mask [::Google::Protobuf::FieldMask, ::Hash]
+          #     Required. The list of fields to update.
+          #
+          # @yield [response, operation] Access the result along with the RPC operation
+          # @yieldparam response [::Gapic::Operation]
+          # @yieldparam operation [::GRPC::ActiveCall::Operation]
+          #
+          # @return [::Gapic::Operation]
+          #
+          # @raise [::Google::Cloud::Error] if the RPC is aborted.
+          #
+          def update_workload_identity_pool_provider request, options = nil
+            raise ::ArgumentError, "request must be provided" if request.nil?
+
+            request = ::Gapic::Protobuf.coerce request, to: ::Google::Iam::V1beta::UpdateWorkloadIdentityPoolProviderRequest
+
+            # Converts hash and nil to an options object
+            options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+            # Customize the options with defaults
+            metadata = @config.rpcs.update_workload_identity_pool_provider.metadata.to_h
+
+            # Set x-goog-api-client and x-goog-user-project headers
+            metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+              lib_name: @config.lib_name, lib_version: @config.lib_version,
+              gapic_version: ::Google::Iam::V1beta::VERSION
+            metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+            header_params = {
+              "workload_identity_pool_provider.name" => request.workload_identity_pool_provider.name
+            }
+            request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
+            metadata[:"x-goog-request-params"] ||= request_params_header
+
+            options.apply_defaults timeout:      @config.rpcs.update_workload_identity_pool_provider.timeout,
+                                   metadata:     metadata,
+                                   retry_policy: @config.rpcs.update_workload_identity_pool_provider.retry_policy
+            options.apply_defaults metadata:     @config.metadata,
+                                   retry_policy: @config.retry_policy
+
+            @workload_identity_pools_stub.call_rpc :update_workload_identity_pool_provider, request, options: options do |response, operation|
+              response = ::Gapic::Operation.new response, @operations_client, options: options
+              yield response, operation if block_given?
+              return response
+            end
+          rescue ::GRPC::BadStatus => e
+            raise ::Google::Cloud::Error.from_error(e)
+          end
+
+          ##
+          # Deletes a
+          # [WorkloadIdentityPoolProvider][google.iam.v1beta.WorkloadIdentityProvider].
+          # Deleting a provider does not revoke credentials that have already been
+          # issued; they continue to grant access.
+          # You can undelete a provider for 30 days. After 30 days, deletion is
+          # permanent.
+          # You cannot update deleted providers. However, you can view and list them.
+          #
+          # @overload delete_workload_identity_pool_provider(request, options = nil)
+          #   Pass arguments to `delete_workload_identity_pool_provider` via a request object, either of type
+          #   {::Google::Iam::V1beta::DeleteWorkloadIdentityPoolProviderRequest} or an equivalent Hash.
+          #
+          #   @param request [::Google::Iam::V1beta::DeleteWorkloadIdentityPoolProviderRequest, ::Hash]
+          #     A request object representing the call parameters. Required. To specify no
+          #     parameters, or to keep all the default parameter values, pass an empty Hash.
+          #   @param options [::Gapic::CallOptions, ::Hash]
+          #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+          #
+          # @overload delete_workload_identity_pool_provider(name: nil)
+          #   Pass arguments to `delete_workload_identity_pool_provider` via keyword arguments. Note that at
+          #   least one keyword argument is required. To specify no parameters, or to keep all
+          #   the default parameter values, pass an empty Hash as a request object (see above).
+          #
+          #   @param name [::String]
+          #     Required. The name of the provider to delete.
+          #
+          # @yield [response, operation] Access the result along with the RPC operation
+          # @yieldparam response [::Gapic::Operation]
+          # @yieldparam operation [::GRPC::ActiveCall::Operation]
+          #
+          # @return [::Gapic::Operation]
+          #
+          # @raise [::Google::Cloud::Error] if the RPC is aborted.
+          #
+          def delete_workload_identity_pool_provider request, options = nil
+            raise ::ArgumentError, "request must be provided" if request.nil?
+
+            request = ::Gapic::Protobuf.coerce request, to: ::Google::Iam::V1beta::DeleteWorkloadIdentityPoolProviderRequest
+
+            # Converts hash and nil to an options object
+            options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+            # Customize the options with defaults
+            metadata = @config.rpcs.delete_workload_identity_pool_provider.metadata.to_h
+
+            # Set x-goog-api-client and x-goog-user-project headers
+            metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+              lib_name: @config.lib_name, lib_version: @config.lib_version,
+              gapic_version: ::Google::Iam::V1beta::VERSION
+            metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+            header_params = {
+              "name" => request.name
+            }
+            request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
+            metadata[:"x-goog-request-params"] ||= request_params_header
+
+            options.apply_defaults timeout:      @config.rpcs.delete_workload_identity_pool_provider.timeout,
+                                   metadata:     metadata,
+                                   retry_policy: @config.rpcs.delete_workload_identity_pool_provider.retry_policy
+            options.apply_defaults metadata:     @config.metadata,
+                                   retry_policy: @config.retry_policy
+
+            @workload_identity_pools_stub.call_rpc :delete_workload_identity_pool_provider, request, options: options do |response, operation|
+              response = ::Gapic::Operation.new response, @operations_client, options: options
+              yield response, operation if block_given?
+              return response
+            end
+          rescue ::GRPC::BadStatus => e
+            raise ::Google::Cloud::Error.from_error(e)
+          end
+
+          ##
+          # Undeletes a
+          # [WorkloadIdentityPoolProvider][google.iam.v1beta.WorkloadIdentityProvider],
+          # as long as it was deleted fewer than 30 days ago.
+          #
+          # @overload undelete_workload_identity_pool_provider(request, options = nil)
+          #   Pass arguments to `undelete_workload_identity_pool_provider` via a request object, either of type
+          #   {::Google::Iam::V1beta::UndeleteWorkloadIdentityPoolProviderRequest} or an equivalent Hash.
+          #
+          #   @param request [::Google::Iam::V1beta::UndeleteWorkloadIdentityPoolProviderRequest, ::Hash]
+          #     A request object representing the call parameters. Required. To specify no
+          #     parameters, or to keep all the default parameter values, pass an empty Hash.
+          #   @param options [::Gapic::CallOptions, ::Hash]
+          #     Overrides the default settings for this call, e.g, timeout, retries, etc. Optional.
+          #
+          # @overload undelete_workload_identity_pool_provider(name: nil)
+          #   Pass arguments to `undelete_workload_identity_pool_provider` via keyword arguments. Note that at
+          #   least one keyword argument is required. To specify no parameters, or to keep all
+          #   the default parameter values, pass an empty Hash as a request object (see above).
+          #
+          #   @param name [::String]
+          #     Required. The name of the provider to undelete.
+          #
+          # @yield [response, operation] Access the result along with the RPC operation
+          # @yieldparam response [::Gapic::Operation]
+          # @yieldparam operation [::GRPC::ActiveCall::Operation]
+          #
+          # @return [::Gapic::Operation]
+          #
+          # @raise [::Google::Cloud::Error] if the RPC is aborted.
+          #
+          def undelete_workload_identity_pool_provider request, options = nil
+            raise ::ArgumentError, "request must be provided" if request.nil?
+
+            request = ::Gapic::Protobuf.coerce request, to: ::Google::Iam::V1beta::UndeleteWorkloadIdentityPoolProviderRequest
+
+            # Converts hash and nil to an options object
+            options = ::Gapic::CallOptions.new(**options.to_h) if options.respond_to? :to_h
+
+            # Customize the options with defaults
+            metadata = @config.rpcs.undelete_workload_identity_pool_provider.metadata.to_h
+
+            # Set x-goog-api-client and x-goog-user-project headers
+            metadata[:"x-goog-api-client"] ||= ::Gapic::Headers.x_goog_api_client \
+              lib_name: @config.lib_name, lib_version: @config.lib_version,
+              gapic_version: ::Google::Iam::V1beta::VERSION
+            metadata[:"x-goog-user-project"] = @quota_project_id if @quota_project_id
+
+            header_params = {
+              "name" => request.name
+            }
+            request_params_header = header_params.map { |k, v| "#{k}=#{v}" }.join("&")
+            metadata[:"x-goog-request-params"] ||= request_params_header
+
+            options.apply_defaults timeout:      @config.rpcs.undelete_workload_identity_pool_provider.timeout,
+                                   metadata:     metadata,
+                                   retry_policy: @config.rpcs.undelete_workload_identity_pool_provider.retry_policy
+            options.apply_defaults metadata:     @config.metadata,
+                                   retry_policy: @config.retry_policy
+
+            @workload_identity_pools_stub.call_rpc :undelete_workload_identity_pool_provider, request, options: options do |response, operation|
+              response = ::Gapic::Operation.new response, @operations_client, options: options
+              yield response, operation if block_given?
+              return response
+            end
+          rescue ::GRPC::BadStatus => e
+            raise ::Google::Cloud::Error.from_error(e)
+          end
+
+          ##
+          # Configuration class for the WorkloadIdentityPools API.
+          #
+          # This class represents the configuration for WorkloadIdentityPools,
+          # providing control over timeouts, retry behavior, logging, transport
+          # parameters, and other low-level controls. Certain parameters can also be
+          # applied individually to specific RPCs. See
+          # {::Google::Iam::V1beta::WorkloadIdentityPools::Client::Configuration::Rpcs}
+          # for a list of RPCs that can be configured independently.
+          #
+          # Configuration can be applied globally to all clients, or to a single client
+          # on construction.
+          #
+          # # Examples
+          #
+          # To modify the global config, setting the timeout for list_workload_identity_pools
+          # to 20 seconds, and all remaining timeouts to 10 seconds:
+          #
+          #     ::Google::Iam::V1beta::WorkloadIdentityPools::Client.configure do |config|
+          #       config.timeout = 10.0
+          #       config.rpcs.list_workload_identity_pools.timeout = 20.0
+          #     end
+          #
+          # To apply the above configuration only to a new client:
+          #
+          #     client = ::Google::Iam::V1beta::WorkloadIdentityPools::Client.new do |config|
+          #       config.timeout = 10.0
+          #       config.rpcs.list_workload_identity_pools.timeout = 20.0
+          #     end
+          #
+          # @!attribute [rw] endpoint
+          #   The hostname or hostname:port of the service endpoint.
+          #   Defaults to `"iam.googleapis.com"`.
+          #   @return [::String]
+          # @!attribute [rw] credentials
+          #   Credentials to send with calls. You may provide any of the following types:
+          #    *  (`String`) The path to a service account key file in JSON format
+          #    *  (`Hash`) A service account key as a Hash
+          #    *  (`Google::Auth::Credentials`) A googleauth credentials object
+          #       (see the [googleauth docs](https://googleapis.dev/ruby/googleauth/latest/index.html))
+          #    *  (`Signet::OAuth2::Client`) A signet oauth2 client object
+          #       (see the [signet docs](https://googleapis.dev/ruby/signet/latest/Signet/OAuth2/Client.html))
+          #    *  (`GRPC::Core::Channel`) a gRPC channel with included credentials
+          #    *  (`GRPC::Core::ChannelCredentials`) a gRPC credentails object
+          #    *  (`nil`) indicating no credentials
+          #   @return [::Object]
+          # @!attribute [rw] scope
+          #   The OAuth scopes
+          #   @return [::Array<::String>]
+          # @!attribute [rw] lib_name
+          #   The library name as recorded in instrumentation and logging
+          #   @return [::String]
+          # @!attribute [rw] lib_version
+          #   The library version as recorded in instrumentation and logging
+          #   @return [::String]
+          # @!attribute [rw] channel_args
+          #   Extra parameters passed to the gRPC channel. Note: this is ignored if a
+          #   `GRPC::Core::Channel` object is provided as the credential.
+          #   @return [::Hash]
+          # @!attribute [rw] interceptors
+          #   An array of interceptors that are run before calls are executed.
+          #   @return [::Array<::GRPC::ClientInterceptor>]
+          # @!attribute [rw] timeout
+          #   The call timeout in seconds.
+          #   @return [::Numeric]
+          # @!attribute [rw] metadata
+          #   Additional gRPC headers to be sent with the call.
+          #   @return [::Hash{::Symbol=>::String}]
+          # @!attribute [rw] retry_policy
+          #   The retry policy. The value is a hash with the following keys:
+          #    *  `:initial_delay` (*type:* `Numeric`) - The initial delay in seconds.
+          #    *  `:max_delay` (*type:* `Numeric`) - The max delay in seconds.
+          #    *  `:multiplier` (*type:* `Numeric`) - The incremental backoff multiplier.
+          #    *  `:retry_codes` (*type:* `Array<String>`) - The error codes that should
+          #       trigger a retry.
+          #   @return [::Hash]
+          # @!attribute [rw] quota_project
+          #   A separate project against which to charge quota.
+          #   @return [::String]
+          #
+          class Configuration
+            extend ::Gapic::Config
+
+            config_attr :endpoint,      "iam.googleapis.com", ::String
+            config_attr :credentials,   nil do |value|
+              allowed = [::String, ::Hash, ::Proc, ::Symbol, ::Google::Auth::Credentials, ::Signet::OAuth2::Client, nil]
+              allowed += [::GRPC::Core::Channel, ::GRPC::Core::ChannelCredentials] if defined? ::GRPC
+              allowed.any? { |klass| klass === value }
+            end
+            config_attr :scope,         nil, ::String, ::Array, nil
+            config_attr :lib_name,      nil, ::String, nil
+            config_attr :lib_version,   nil, ::String, nil
+            config_attr(:channel_args,  { "grpc.service_config_disable_resolution"=>1 }, ::Hash, nil)
+            config_attr :interceptors,  nil, ::Array, nil
+            config_attr :timeout,       nil, ::Numeric, nil
+            config_attr :metadata,      nil, ::Hash, nil
+            config_attr :retry_policy,  nil, ::Hash, ::Proc, nil
+            config_attr :quota_project, nil, ::String, nil
+
+            # @private
+            def initialize parent_config = nil
+              @parent_config = parent_config unless parent_config.nil?
+
+              yield self if block_given?
+            end
+
+            ##
+            # Configurations for individual RPCs
+            # @return [Rpcs]
+            #
+            def rpcs
+              @rpcs ||= begin
+                parent_rpcs = nil
+                parent_rpcs = @parent_config.rpcs if defined?(@parent_config) && @parent_config&.respond_to?(:rpcs)
+                Rpcs.new parent_rpcs
+              end
+            end
+
+            ##
+            # Configuration RPC class for the WorkloadIdentityPools API.
+            #
+            # Includes fields providing the configuration for each RPC in this service.
+            # Each configuration object is of type `Gapic::Config::Method` and includes
+            # the following configuration fields:
+            #
+            #  *  `timeout` (*type:* `Numeric`) - The call timeout in milliseconds
+            #  *  `metadata` (*type:* `Hash{Symbol=>String}`) - Additional gRPC headers
+            #  *  `retry_policy (*type:* `Hash`) - The retry policy. The policy fields
+            #     include the following keys:
+            #      *  `:initial_delay` (*type:* `Numeric`) - The initial delay in seconds.
+            #      *  `:max_delay` (*type:* `Numeric`) - The max delay in seconds.
+            #      *  `:multiplier` (*type:* `Numeric`) - The incremental backoff multiplier.
+            #      *  `:retry_codes` (*type:* `Array<String>`) - The error codes that should
+            #         trigger a retry.
+            #
+            class Rpcs
+              ##
+              # RPC-specific configuration for `list_workload_identity_pools`
+              # @return [::Gapic::Config::Method]
+              #
+              attr_reader :list_workload_identity_pools
+              ##
+              # RPC-specific configuration for `get_workload_identity_pool`
+              # @return [::Gapic::Config::Method]
+              #
+              attr_reader :get_workload_identity_pool
+              ##
+              # RPC-specific configuration for `create_workload_identity_pool`
+              # @return [::Gapic::Config::Method]
+              #
+              attr_reader :create_workload_identity_pool
+              ##
+              # RPC-specific configuration for `update_workload_identity_pool`
+              # @return [::Gapic::Config::Method]
+              #
+              attr_reader :update_workload_identity_pool
+              ##
+              # RPC-specific configuration for `delete_workload_identity_pool`
+              # @return [::Gapic::Config::Method]
+              #
+              attr_reader :delete_workload_identity_pool
+              ##
+              # RPC-specific configuration for `undelete_workload_identity_pool`
+              # @return [::Gapic::Config::Method]
+              #
+              attr_reader :undelete_workload_identity_pool
+              ##
+              # RPC-specific configuration for `list_workload_identity_pool_providers`
+              # @return [::Gapic::Config::Method]
+              #
+              attr_reader :list_workload_identity_pool_providers
+              ##
+              # RPC-specific configuration for `get_workload_identity_pool_provider`
+              # @return [::Gapic::Config::Method]
+              #
+              attr_reader :get_workload_identity_pool_provider
+              ##
+              # RPC-specific configuration for `create_workload_identity_pool_provider`
+              # @return [::Gapic::Config::Method]
+              #
+              attr_reader :create_workload_identity_pool_provider
+              ##
+              # RPC-specific configuration for `update_workload_identity_pool_provider`
+              # @return [::Gapic::Config::Method]
+              #
+              attr_reader :update_workload_identity_pool_provider
+              ##
+              # RPC-specific configuration for `delete_workload_identity_pool_provider`
+              # @return [::Gapic::Config::Method]
+              #
+              attr_reader :delete_workload_identity_pool_provider
+              ##
+              # RPC-specific configuration for `undelete_workload_identity_pool_provider`
+              # @return [::Gapic::Config::Method]
+              #
+              attr_reader :undelete_workload_identity_pool_provider
+
+              # @private
+              def initialize parent_rpcs = nil
+                list_workload_identity_pools_config = parent_rpcs&.list_workload_identity_pools if parent_rpcs&.respond_to? :list_workload_identity_pools
+                @list_workload_identity_pools = ::Gapic::Config::Method.new list_workload_identity_pools_config
+                get_workload_identity_pool_config = parent_rpcs&.get_workload_identity_pool if parent_rpcs&.respond_to? :get_workload_identity_pool
+                @get_workload_identity_pool = ::Gapic::Config::Method.new get_workload_identity_pool_config
+                create_workload_identity_pool_config = parent_rpcs&.create_workload_identity_pool if parent_rpcs&.respond_to? :create_workload_identity_pool
+                @create_workload_identity_pool = ::Gapic::Config::Method.new create_workload_identity_pool_config
+                update_workload_identity_pool_config = parent_rpcs&.update_workload_identity_pool if parent_rpcs&.respond_to? :update_workload_identity_pool
+                @update_workload_identity_pool = ::Gapic::Config::Method.new update_workload_identity_pool_config
+                delete_workload_identity_pool_config = parent_rpcs&.delete_workload_identity_pool if parent_rpcs&.respond_to? :delete_workload_identity_pool
+                @delete_workload_identity_pool = ::Gapic::Config::Method.new delete_workload_identity_pool_config
+                undelete_workload_identity_pool_config = parent_rpcs&.undelete_workload_identity_pool if parent_rpcs&.respond_to? :undelete_workload_identity_pool
+                @undelete_workload_identity_pool = ::Gapic::Config::Method.new undelete_workload_identity_pool_config
+                list_workload_identity_pool_providers_config = parent_rpcs&.list_workload_identity_pool_providers if parent_rpcs&.respond_to? :list_workload_identity_pool_providers
+                @list_workload_identity_pool_providers = ::Gapic::Config::Method.new list_workload_identity_pool_providers_config
+                get_workload_identity_pool_provider_config = parent_rpcs&.get_workload_identity_pool_provider if parent_rpcs&.respond_to? :get_workload_identity_pool_provider
+                @get_workload_identity_pool_provider = ::Gapic::Config::Method.new get_workload_identity_pool_provider_config
+                create_workload_identity_pool_provider_config = parent_rpcs&.create_workload_identity_pool_provider if parent_rpcs&.respond_to? :create_workload_identity_pool_provider
+                @create_workload_identity_pool_provider = ::Gapic::Config::Method.new create_workload_identity_pool_provider_config
+                update_workload_identity_pool_provider_config = parent_rpcs&.update_workload_identity_pool_provider if parent_rpcs&.respond_to? :update_workload_identity_pool_provider
+                @update_workload_identity_pool_provider = ::Gapic::Config::Method.new update_workload_identity_pool_provider_config
+                delete_workload_identity_pool_provider_config = parent_rpcs&.delete_workload_identity_pool_provider if parent_rpcs&.respond_to? :delete_workload_identity_pool_provider
+                @delete_workload_identity_pool_provider = ::Gapic::Config::Method.new delete_workload_identity_pool_provider_config
+                undelete_workload_identity_pool_provider_config = parent_rpcs&.undelete_workload_identity_pool_provider if parent_rpcs&.respond_to? :undelete_workload_identity_pool_provider
+                @undelete_workload_identity_pool_provider = ::Gapic::Config::Method.new undelete_workload_identity_pool_provider_config
+
+                yield self if block_given?
+              end
+            end
+          end
+        end
+      end
+    end
+  end
+end