google-iam-v1beta 0.8.2 → 0.10.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 41abc13c2babd9bb190bce9a405515b5ad24f3f75c38599f5695fc0c867554aa
-  data.tar.gz: 2c91f1202fa931e7b4ff7da8534f0e2a994fdce22bae4214d194a426a9ad328f
+  metadata.gz: 455b0183c36b345078fd32aaa47fa3534f663bcc3863405b891c5e50b0f31739
+  data.tar.gz: 9b080a31934ebd5c3df69b1a25d72e948fe20366dc2be3efac5e994612b24a78
 SHA512:
-  metadata.gz: 7ddea03926abe793c7b0480d96a9b6d7ed07302b1bb061b3280fb459d8331db5ecc7e7db50e800bb7352b2710bce40c35ead295e8be99b3dbd3fe67a93b24be6
-  data.tar.gz: ad8d3bec9919c1e1aecb0e22f2528c74b6680fc8c90643275bf24ca3ed1f6a9474127d90791863e17350ad39d4f69ba408b96a63f8c8298a5458b1fe432ddb7c
+  metadata.gz: 93b4cd026d7bee115a7f743a41992bd2665c2d3d4c5c8b786eba129abaf442eae42a2bc0ecf8fd326b12dfe65023baab464e384367b9fd90ac3ed927523857ee
+  data.tar.gz: d849d4e31583df52d8e76514578f6c19e9106bb16384ad422bf13dfba7e5a4700b0271791df6a12818509d878a0c9ad70bc9cff6777b85389d10eb162bae0f87

data/README.md

@@ -43,40 +43,50 @@ for class and method documentation.
 See also the [Product Documentation](https://cloud.google.com/iam/docs/manage-workload-identity-pools-providers)
 for general usage information.
 
-## Enabling Logging
-
-To enable logging for this library, set the logger for the underlying [gRPC](https://github.com/grpc/grpc/tree/master/src/ruby) library.
-The logger that you set may be a Ruby stdlib [`Logger`](https://ruby-doc.org/current/stdlibs/logger/Logger.html) as shown below,
-or a [`Google::Cloud::Logging::Logger`](https://cloud.google.com/ruby/docs/reference/google-cloud-logging/latest)
-that will write logs to [Cloud Logging](https://cloud.google.com/logging/). See [grpc/logconfig.rb](https://github.com/grpc/grpc/blob/master/src/ruby/lib/grpc/logconfig.rb)
-and the gRPC [spec_helper.rb](https://github.com/grpc/grpc/blob/master/src/ruby/spec/spec_helper.rb) for additional information.
-
-Configuring a Ruby stdlib logger:
+## Debug Logging
+
+This library comes with opt-in Debug Logging that can help you troubleshoot
+your application's integration with the API. When logging is activated, key
+events such as requests and responses, along with data payloads and metadata
+such as headers and client configuration, are logged to the standard error
+stream.
+
+**WARNING:** Client Library Debug Logging includes your data payloads in
+plaintext, which could include sensitive data such as PII for yourself or your
+customers, private keys, or other security data that could be compromising if
+leaked. Always practice good data hygiene with your application logs, and follow
+the principle of least access. Google also recommends that Client Library Debug
+Logging be enabled only temporarily during active debugging, and not used
+permanently in production.
+
+To enable logging, set the environment variable `GOOGLE_SDK_RUBY_LOGGING_GEMS`
+to the value `all`. Alternatively, you can set the value to a comma-delimited
+list of client library gem names. This will select the default logging behavior,
+which writes logs to the standard error stream. On a local workstation, this may
+result in logs appearing on the console. When running on a Google Cloud hosting
+service such as [Google Cloud Run](https://cloud.google.com/run), this generally
+results in logs appearing alongside your application logs in the
+[Google Cloud Logging](https://cloud.google.com/logging/) service.
+
+You can customize logging by modifying the `logger` configuration when
+constructing a client object. For example:
 
 ```ruby
+require "google/iam/v1beta"
 require "logger"
 
-module MyLogger
-  LOGGER = Logger.new $stderr, level: Logger::WARN
-  def logger
-    LOGGER
-  end
-end
-
-# Define a gRPC module-level logger method before grpc/logconfig.rb loads.
-module GRPC
-  extend MyLogger
+client = ::Google::Iam::V1beta::WorkloadIdentityPools::Client.new do |config|
+  config.logger = Logger.new "my-app.log"
 end
 ```
 
-
 ## Google Cloud Samples
 
 To browse ready to use code samples check [Google Cloud Samples](https://cloud.google.com/docs/samples).
 
 ## Supported Ruby Versions
 
-This library is supported on Ruby 2.7+.
+This library is supported on Ruby 3.0+.
 
 Google provides official support for Ruby versions that are actively supported
 by Ruby Core—that is, Ruby versions that are either in normal maintenance or

data/lib/google/iam/v1beta/version.rb

@@ -20,7 +20,7 @@
 module Google
   module Iam
     module V1beta
-      VERSION = "0.8.2"
+      VERSION = "0.10.0"
     end
   end
 end

data/lib/google/iam/v1beta/workload_identity_pools/client.rb

@@ -223,8 +223,19 @@ module Google
               universe_domain: @config.universe_domain,
               channel_args: @config.channel_args,
               interceptors: @config.interceptors,
-              channel_pool_config: @config.channel_pool
+              channel_pool_config: @config.channel_pool,
+              logger: @config.logger
             )
+
+            @workload_identity_pools_stub.stub_logger&.info do |entry|
+              entry.set_system_name
+              entry.set_service
+              entry.message = "Created client for #{entry.service}"
+              entry.set_credentials_fields credentials
+              entry.set "customEndpoint", @config.endpoint if @config.endpoint
+              entry.set "defaultTimeout", @config.timeout if @config.timeout
+              entry.set "quotaProject", @quota_project_id if @quota_project_id
+            end
           end
 
           ##
@@ -234,6 +245,15 @@ module Google
           #
           attr_reader :operations_client
 
+          ##
+          # The logger used for request/response debug logging.
+          #
+          # @return [Logger]
+          #
+          def logger
+            @workload_identity_pools_stub.logger
+          end
+
           # Service calls
 
           ##
@@ -333,7 +353,7 @@ module Google
             @workload_identity_pools_stub.call_rpc :list_workload_identity_pools, request, options: options do |response, operation|
               response = ::Gapic::PagedEnumerable.new @workload_identity_pools_stub, :list_workload_identity_pools, request, response, operation, options
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -420,7 +440,6 @@ module Google
 
             @workload_identity_pools_stub.call_rpc :get_workload_identity_pool, request, options: options do |response, operation|
               yield response, operation if block_given?
-              return response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -525,7 +544,7 @@ module Google
             @workload_identity_pools_stub.call_rpc :create_workload_identity_pool, request, options: options do |response, operation|
               response = ::Gapic::Operation.new response, @operations_client, options: options
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -622,7 +641,7 @@ module Google
             @workload_identity_pools_stub.call_rpc :update_workload_identity_pool, request, options: options do |response, operation|
               response = ::Gapic::Operation.new response, @operations_client, options: options
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -727,7 +746,7 @@ module Google
             @workload_identity_pools_stub.call_rpc :delete_workload_identity_pool, request, options: options do |response, operation|
               response = ::Gapic::Operation.new response, @operations_client, options: options
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -822,7 +841,7 @@ module Google
             @workload_identity_pools_stub.call_rpc :undelete_workload_identity_pool, request, options: options do |response, operation|
               response = ::Gapic::Operation.new response, @operations_client, options: options
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -926,7 +945,7 @@ module Google
             @workload_identity_pools_stub.call_rpc :list_workload_identity_pool_providers, request, options: options do |response, operation|
               response = ::Gapic::PagedEnumerable.new @workload_identity_pools_stub, :list_workload_identity_pool_providers, request, response, operation, options
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -1013,7 +1032,6 @@ module Google
 
             @workload_identity_pools_stub.call_rpc :get_workload_identity_pool_provider, request, options: options do |response, operation|
               yield response, operation if block_given?
-              return response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -1119,7 +1137,7 @@ module Google
             @workload_identity_pools_stub.call_rpc :create_workload_identity_pool_provider, request, options: options do |response, operation|
               response = ::Gapic::Operation.new response, @operations_client, options: options
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -1216,7 +1234,7 @@ module Google
             @workload_identity_pools_stub.call_rpc :update_workload_identity_pool_provider, request, options: options do |response, operation|
               response = ::Gapic::Operation.new response, @operations_client, options: options
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -1316,7 +1334,7 @@ module Google
             @workload_identity_pools_stub.call_rpc :delete_workload_identity_pool_provider, request, options: options do |response, operation|
               response = ::Gapic::Operation.new response, @operations_client, options: options
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -1412,7 +1430,7 @@ module Google
             @workload_identity_pools_stub.call_rpc :undelete_workload_identity_pool_provider, request, options: options do |response, operation|
               response = ::Gapic::Operation.new response, @operations_client, options: options
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -1462,6 +1480,13 @@ module Google
           #    *  (`GRPC::Core::Channel`) a gRPC channel with included credentials
           #    *  (`GRPC::Core::ChannelCredentials`) a gRPC credentails object
           #    *  (`nil`) indicating no credentials
+          #
+          #   Warning: If you accept a credential configuration (JSON file or Hash) from an
+          #   external source for authentication to Google Cloud, you must validate it before
+          #   providing it to a Google API client library. Providing an unvalidated credential
+          #   configuration to Google APIs can compromise the security of your systems and data.
+          #   For more information, refer to [Validate credential configurations from external
+          #   sources](https://cloud.google.com/docs/authentication/external/externally-sourced-credentials).
           #   @return [::Object]
           # @!attribute [rw] scope
           #   The OAuth scopes
@@ -1501,6 +1526,11 @@ module Google
           #   default endpoint URL. The default value of nil uses the environment
           #   universe (usually the default "googleapis.com" universe).
           #   @return [::String,nil]
+          # @!attribute [rw] logger
+          #   A custom logger to use for request/response debug logging, or the value
+          #   `:default` (the default) to construct a default logger, or `nil` to
+          #   explicitly disable logging.
+          #   @return [::Logger,:default,nil]
           #
           class Configuration
             extend ::Gapic::Config
@@ -1525,6 +1555,7 @@ module Google
             config_attr :retry_policy,  nil, ::Hash, ::Proc, nil
             config_attr :quota_project, nil, ::String, nil
             config_attr :universe_domain, nil, ::String, nil
+            config_attr :logger, :default, ::Logger, nil, :default
 
             # @private
             def initialize parent_config = nil

data/lib/google/iam/v1beta/workload_identity_pools/operations.rb

@@ -212,7 +212,7 @@ module Google
               wrap_lro_operation = ->(op_response) { ::Gapic::Operation.new op_response, @operations_client }
               response = ::Gapic::PagedEnumerable.new @operations_stub, :list_operations, request, response, operation, options, format_resource: wrap_lro_operation
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -308,7 +308,7 @@ module Google
             @operations_stub.call_rpc :get_operation, request, options: options do |response, operation|
               response = ::Gapic::Operation.new response, @operations_client, options: options
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -397,7 +397,6 @@ module Google
 
             @operations_stub.call_rpc :delete_operation, request, options: options do |response, operation|
               yield response, operation if block_given?
-              return response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -493,7 +492,6 @@ module Google
 
             @operations_stub.call_rpc :cancel_operation, request, options: options do |response, operation|
               yield response, operation if block_given?
-              return response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -591,7 +589,7 @@ module Google
             @operations_stub.call_rpc :wait_operation, request, options: options do |response, operation|
               response = ::Gapic::Operation.new response, @operations_client, options: options
               yield response, operation if block_given?
-              return response
+              throw :response, response
             end
           rescue ::GRPC::BadStatus => e
             raise ::Google::Cloud::Error.from_error(e)
@@ -641,6 +639,13 @@ module Google
           #    *  (`GRPC::Core::Channel`) a gRPC channel with included credentials
           #    *  (`GRPC::Core::ChannelCredentials`) a gRPC credentails object
           #    *  (`nil`) indicating no credentials
+          #
+          #   Warning: If you accept a credential configuration (JSON file or Hash) from an
+          #   external source for authentication to Google Cloud, you must validate it before
+          #   providing it to a Google API client library. Providing an unvalidated credential
+          #   configuration to Google APIs can compromise the security of your systems and data.
+          #   For more information, refer to [Validate credential configurations from external
+          #   sources](https://cloud.google.com/docs/authentication/external/externally-sourced-credentials).
           #   @return [::Object]
           # @!attribute [rw] scope
           #   The OAuth scopes
@@ -680,6 +685,11 @@ module Google
           #   default endpoint URL. The default value of nil uses the environment
           #   universe (usually the default "googleapis.com" universe).
           #   @return [::String,nil]
+          # @!attribute [rw] logger
+          #   A custom logger to use for request/response debug logging, or the value
+          #   `:default` (the default) to construct a default logger, or `nil` to
+          #   explicitly disable logging.
+          #   @return [::Logger,:default,nil]
           #
           class Configuration
             extend ::Gapic::Config
@@ -704,6 +714,7 @@ module Google
             config_attr :retry_policy,  nil, ::Hash, ::Proc, nil
             config_attr :quota_project, nil, ::String, nil
             config_attr :universe_domain, nil, ::String, nil
+            config_attr :logger, :default, ::Logger, nil, :default
 
             # @private
             def initialize parent_config = nil

data/proto_docs/google/iam/v1beta/workload_identity_pool.rb

@@ -194,9 +194,13 @@ module Google
       # @!attribute [rw] aws
       #   @return [::Google::Iam::V1beta::WorkloadIdentityPoolProvider::Aws]
       #     An Amazon Web Services identity provider.
+      #
+      #     Note: The following fields are mutually exclusive: `aws`, `oidc`. If a field in that set is populated, all other fields in the set will automatically be cleared.
       # @!attribute [rw] oidc
       #   @return [::Google::Iam::V1beta::WorkloadIdentityPoolProvider::Oidc]
       #     An OpenId Connect 1.0 identity provider.
+      #
+      #     Note: The following fields are mutually exclusive: `oidc`, `aws`. If a field in that set is populated, all other fields in the set will automatically be cleared.
       class WorkloadIdentityPoolProvider
         include ::Google::Protobuf::MessageExts
         extend ::Google::Protobuf::MessageExts::ClassMethods

data/proto_docs/google/longrunning/operations.rb

@@ -40,6 +40,8 @@ module Google
     # @!attribute [rw] error
     #   @return [::Google::Rpc::Status]
     #     The error result of the operation in case of failure or cancellation.
+    #
+    #     Note: The following fields are mutually exclusive: `error`, `response`. If a field in that set is populated, all other fields in the set will automatically be cleared.
     # @!attribute [rw] response
     #   @return [::Google::Protobuf::Any]
     #     The normal, successful response of the operation.  If the original
@@ -50,6 +52,8 @@ module Google
     #     is the original method name.  For example, if the original method name
     #     is `TakeSnapshot()`, the inferred response type is
     #     `TakeSnapshotResponse`.
+    #
+    #     Note: The following fields are mutually exclusive: `response`, `error`. If a field in that set is populated, all other fields in the set will automatically be cleared.
     class Operation
       include ::Google::Protobuf::MessageExts
       extend ::Google::Protobuf::MessageExts::ClassMethods

metadata

@@ -1,14 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: google-iam-v1beta
 version: !ruby/object:Gem::Version
-  version: 0.8.2
+  version: 0.10.0
 platform: ruby
 authors:
 - Google LLC
-autorequire: 
 bindir: bin
 cert_chain: []
-date: 2024-12-05 00:00:00.000000000 Z
+date: 2025-01-29 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: gapic-common
@@ -16,7 +15,7 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.21.1
+        version: 0.25.0
     - - "<"
       - !ruby/object:Gem::Version
         version: 2.a
@@ -26,7 +25,7 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.21.1
+        version: 0.25.0
     - - "<"
       - !ruby/object:Gem::Version
         version: 2.a
@@ -82,7 +81,6 @@ homepage: https://github.com/googleapis/google-cloud-ruby
 licenses:
 - Apache-2.0
 metadata: {}
-post_install_message: 
 rdoc_options: []
 require_paths:
 - lib
@@ -90,15 +88,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '2.7'
+      version: '3.0'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.5.23
-signing_key: 
+rubygems_version: 3.6.2
 specification_version: 4
 summary: 'Manages identity and access control for Google Cloud Platform resources,
   including the creation of service accounts, which you can use to authenticate to