strongdm 1.0.14 → 1.0.19

data/lib/grpc/resources_pb.rb

@@ -20,6 +20,7 @@ require "google/protobuf"
 require "options_pb"
 require "spec_pb"
 require "drivers_pb"
+require "tags_pb"
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("resources.proto", :syntax => :proto3) do
     add_message "v1.ResourceCreateRequest" do
@@ -67,6 +68,15 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       repeated :resources, :message, 2, "v1.Resource"
       optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
     end
+    add_message "v1.EnumerateTagsRequest" do
+      optional :meta, :message, 1, "v1.ListRequestMetadata"
+      optional :filter, :string, 2
+    end
+    add_message "v1.EnumerateTagsResponse" do
+      optional :meta, :message, 1, "v1.ListResponseMetadata"
+      repeated :matches, :message, 2, "v1.Tag"
+      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
+    end
   end
 end
 
@@ -81,4 +91,6 @@ module V1
   ResourceDeleteResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.ResourceDeleteResponse").msgclass
   ResourceListRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.ResourceListRequest").msgclass
   ResourceListResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.ResourceListResponse").msgclass
+  EnumerateTagsRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.EnumerateTagsRequest").msgclass
+  EnumerateTagsResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.EnumerateTagsResponse").msgclass
 end

data/lib/grpc/resources_services_pb.rb

@@ -27,6 +27,8 @@ module V1
       self.unmarshal_class_method = :decode
       self.service_name = "v1.Resources"
 
+      # EnumerateTags gets a list of the filter matching tags.
+      rpc :EnumerateTags, EnumerateTagsRequest, EnumerateTagsResponse
       # Create registers a new Resource.
       rpc :Create, ResourceCreateRequest, ResourceCreateResponse
       # Get reads one Resource by ID.

data/lib/grpc/secret_store_types_pb.rb

@@ -0,0 +1,60 @@
+# Copyright 2020 StrongDM Inc
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: secret_store_types.proto
+
+require "google/protobuf"
+
+require "options_pb"
+require "tags_pb"
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("secret_store_types.proto", :syntax => :proto3) do
+    add_message "v1.SecretStore" do
+      oneof :secret_store do
+        optional :aws, :message, 3, "v1.AWSStore"
+        optional :vault_tls, :message, 1, "v1.VaultTLSStore"
+        optional :vault_token, :message, 2, "v1.VaultTokenStore"
+      end
+    end
+    add_message "v1.AWSStore" do
+      optional :id, :string, 1
+      optional :name, :string, 2
+      optional :region, :string, 3
+      optional :tags, :message, 4, "v1.Tags"
+    end
+    add_message "v1.VaultTLSStore" do
+      optional :id, :string, 1
+      optional :name, :string, 2
+      optional :server_address, :string, 3
+      optional :CA_cert_path, :string, 4
+      optional :client_cert_path, :string, 5
+      optional :client_key_path, :string, 6
+      optional :tags, :message, 7, "v1.Tags"
+    end
+    add_message "v1.VaultTokenStore" do
+      optional :id, :string, 1
+      optional :name, :string, 2
+      optional :server_address, :string, 3
+      optional :tags, :message, 4, "v1.Tags"
+    end
+  end
+end
+
+module V1
+  SecretStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.SecretStore").msgclass
+  AWSStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AWSStore").msgclass
+  VaultTLSStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.VaultTLSStore").msgclass
+  VaultTokenStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.VaultTokenStore").msgclass
+end

data/lib/grpc/secret_stores_pb.rb

@@ -19,7 +19,7 @@ require "google/protobuf"
 
 require "options_pb"
 require "spec_pb"
-require "tags_pb"
+require "secret_store_types_pb"
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("secret_stores.proto", :syntax => :proto3) do
     add_message "v1.SecretStoreCreateRequest" do
@@ -67,34 +67,6 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       repeated :secret_stores, :message, 2, "v1.SecretStore"
       optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
     end
-    add_message "v1.SecretStore" do
-      oneof :secret_store do
-        optional :vault_tls, :message, 1, "v1.VaultTLSStore"
-        optional :vault_token, :message, 2, "v1.VaultTokenStore"
-        optional :aws, :message, 3, "v1.AWSStore"
-      end
-    end
-    add_message "v1.VaultTokenStore" do
-      optional :id, :string, 1
-      optional :name, :string, 2
-      optional :server_address, :string, 3
-      optional :tags, :message, 4, "v1.Tags"
-    end
-    add_message "v1.VaultTLSStore" do
-      optional :id, :string, 1
-      optional :name, :string, 2
-      optional :server_address, :string, 3
-      optional :CA_cert_path, :string, 4
-      optional :client_cert_path, :string, 5
-      optional :client_key_path, :string, 6
-      optional :tags, :message, 7, "v1.Tags"
-    end
-    add_message "v1.AWSStore" do
-      optional :id, :string, 1
-      optional :name, :string, 2
-      optional :region, :string, 3
-      optional :tags, :message, 4, "v1.Tags"
-    end
   end
 end
 
@@ -109,8 +81,4 @@ module V1
   SecretStoreDeleteResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.SecretStoreDeleteResponse").msgclass
   SecretStoreListRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.SecretStoreListRequest").msgclass
   SecretStoreListResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.SecretStoreListResponse").msgclass
-  SecretStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.SecretStore").msgclass
-  VaultTokenStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.VaultTokenStore").msgclass
-  VaultTLSStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.VaultTLSStore").msgclass
-  AWSStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AWSStore").msgclass
 end

data/lib/grpc/spec_pb.rb

@@ -58,6 +58,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :cursor, :string, 1
       optional :page, :int32, 2
       optional :limit, :int32, 3
+      optional :order_by, :string, 4
     end
     add_message "v1.ListResponseMetadata" do
       optional :next_cursor, :string, 1
@@ -69,6 +70,10 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :reset_at, :message, 3, "google.protobuf.Timestamp"
       optional :bucket, :string, 4
     end
+    add_message "v1.GenericRequestMetadata" do
+    end
+    add_message "v1.GenericResponseMetadata" do
+    end
   end
 end
 
@@ -91,4 +96,6 @@ module V1
   ListRequestMetadata = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.ListRequestMetadata").msgclass
   ListResponseMetadata = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.ListResponseMetadata").msgclass
   RateLimitMetadata = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RateLimitMetadata").msgclass
+  GenericRequestMetadata = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.GenericRequestMetadata").msgclass
+  GenericResponseMetadata = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.GenericResponseMetadata").msgclass
 end

data/lib/grpc/tags_pb.rb

@@ -27,10 +27,15 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :name, :string, 1
       optional :value, :string, 2
     end
+    add_message "v1.Tag" do
+      optional :name, :string, 1
+      optional :value, :string, 2
+    end
   end
 end
 
 module V1
   Tags = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.Tags").msgclass
   Tags::Pair = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.Tags.Pair").msgclass
+  Tag = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.Tag").msgclass
 end

data/lib/models/porcelain.rb

@@ -115,6 +115,32 @@ module SDM
     end
   end
 
+  class Tag
+    attr_accessor :name
+
+    attr_accessor :value
+
+    def initialize(
+      name: nil,
+      value: nil
+    )
+      if name != nil
+        @name = name
+      end
+      if value != nil
+        @value = value
+      end
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   # AccountAttachmentCreateResponse reports how the AccountAttachments were created in the system.
   class AccountAttachmentCreateResponse
     # Reserved for future use.
@@ -657,6 +683,40 @@ module SDM
     end
   end
 
+  # ControlPanelVerifyJWTResponse reports whether x-sdm-token is valid.
+  class ControlPanelVerifyJWTResponse
+    # Reserved for future use.
+    attr_accessor :meta
+    # Reports if the given token is valid.
+    attr_accessor :valid
+    # Rate limit information.
+    attr_accessor :rate_limit
+
+    def initialize(
+      meta: nil,
+      valid: nil,
+      rate_limit: nil
+    )
+      if meta != nil
+        @meta = meta
+      end
+      if valid != nil
+        @valid = valid
+      end
+      if rate_limit != nil
+        @rate_limit = rate_limit
+      end
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   class Athena
     # Unique identifier of the Resource.
     attr_accessor :id
@@ -679,6 +739,10 @@ module SDM
 
     attr_accessor :region
 
+    attr_accessor :role_arn
+
+    attr_accessor :role_external_id
+
     def initialize(
       id: nil,
       name: nil,
@@ -689,7 +753,9 @@ module SDM
       secret_access_key: nil,
       output: nil,
       port_override: nil,
-      region: nil
+      region: nil,
+      role_arn: nil,
+      role_external_id: nil
     )
       if id != nil
         @id = id
@@ -721,6 +787,87 @@ module SDM
       if region != nil
         @region = region
       end
+      if role_arn != nil
+        @role_arn = role_arn
+      end
+      if role_external_id != nil
+        @role_external_id = role_external_id
+      end
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
+  class AWS
+    # Unique identifier of the Resource.
+    attr_accessor :id
+    # Unique human-readable name of the Resource.
+    attr_accessor :name
+    # True if the datasource is reachable and the credentials are valid.
+    attr_accessor :healthy
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+    # ID of the secret store containing credentials for this resource, if any.
+    attr_accessor :secret_store_id
+
+    attr_accessor :access_key
+
+    attr_accessor :secret_access_key
+
+    attr_accessor :healthcheck_region
+
+    attr_accessor :role_arn
+
+    attr_accessor :role_external_id
+
+    def initialize(
+      id: nil,
+      name: nil,
+      healthy: nil,
+      tags: nil,
+      secret_store_id: nil,
+      access_key: nil,
+      secret_access_key: nil,
+      healthcheck_region: nil,
+      role_arn: nil,
+      role_external_id: nil
+    )
+      if id != nil
+        @id = id
+      end
+      if name != nil
+        @name = name
+      end
+      if healthy != nil
+        @healthy = healthy
+      end
+      if tags != nil
+        @tags = tags
+      end
+      if secret_store_id != nil
+        @secret_store_id = secret_store_id
+      end
+      if access_key != nil
+        @access_key = access_key
+      end
+      if secret_access_key != nil
+        @secret_access_key = secret_access_key
+      end
+      if healthcheck_region != nil
+        @healthcheck_region = healthcheck_region
+      end
+      if role_arn != nil
+        @role_arn = role_arn
+      end
+      if role_external_id != nil
+        @role_external_id = role_external_id
+      end
     end
 
     def to_json(options = {})
@@ -1147,6 +1294,10 @@ module SDM
 
     attr_accessor :port_override
 
+    attr_accessor :role_arn
+
+    attr_accessor :role_external_id
+
     def initialize(
       id: nil,
       name: nil,
@@ -1157,7 +1308,9 @@ module SDM
       secret_access_key: nil,
       region: nil,
       endpoint: nil,
-      port_override: nil
+      port_override: nil,
+      role_arn: nil,
+      role_external_id: nil
     )
       if id != nil
         @id = id
@@ -1189,6 +1342,12 @@ module SDM
       if port_override != nil
         @port_override = port_override
       end
+      if role_arn != nil
+        @role_arn = role_arn
+      end
+      if role_external_id != nil
+        @role_external_id = role_external_id
+      end
     end
 
     def to_json(options = {})
@@ -1222,6 +1381,10 @@ module SDM
 
     attr_accessor :port_override
 
+    attr_accessor :role_arn
+
+    attr_accessor :role_external_id
+
     def initialize(
       id: nil,
       name: nil,
@@ -1232,7 +1395,9 @@ module SDM
       secret_access_key: nil,
       endpoint: nil,
       access_key: nil,
-      port_override: nil
+      port_override: nil,
+      role_arn: nil,
+      role_external_id: nil
     )
       if id != nil
         @id = id
@@ -1264,6 +1429,12 @@ module SDM
       if port_override != nil
         @port_override = port_override
       end
+      if role_arn != nil
+        @role_arn = role_arn
+      end
+      if role_external_id != nil
+        @role_external_id = role_external_id
+      end
     end
 
     def to_json(options = {})
@@ -1850,6 +2021,8 @@ module SDM
 
     attr_accessor :role_arn
 
+    attr_accessor :role_external_id
+
     attr_accessor :healthcheck_namespace
 
     def initialize(
@@ -1865,6 +2038,7 @@ module SDM
       region: nil,
       cluster_name: nil,
       role_arn: nil,
+      role_external_id: nil,
       healthcheck_namespace: nil
     )
       if id != nil
@@ -1903,6 +2077,9 @@ module SDM
       if role_arn != nil
         @role_arn = role_arn
       end
+      if role_external_id != nil
+        @role_external_id = role_external_id
+      end
       if healthcheck_namespace != nil
         @healthcheck_namespace = healthcheck_namespace
       end
@@ -4302,6 +4479,87 @@ module SDM
     end
   end
 
+  class SSHCustomerKey
+    # Unique identifier of the Resource.
+    attr_accessor :id
+    # Unique human-readable name of the Resource.
+    attr_accessor :name
+    # True if the datasource is reachable and the credentials are valid.
+    attr_accessor :healthy
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+    # ID of the secret store containing credentials for this resource, if any.
+    attr_accessor :secret_store_id
+
+    attr_accessor :hostname
+
+    attr_accessor :username
+
+    attr_accessor :port
+
+    attr_accessor :private_key
+
+    attr_accessor :port_forwarding
+
+    attr_accessor :allow_deprecated_key_exchanges
+
+    def initialize(
+      id: nil,
+      name: nil,
+      healthy: nil,
+      tags: nil,
+      secret_store_id: nil,
+      hostname: nil,
+      username: nil,
+      port: nil,
+      private_key: nil,
+      port_forwarding: nil,
+      allow_deprecated_key_exchanges: nil
+    )
+      if id != nil
+        @id = id
+      end
+      if name != nil
+        @name = name
+      end
+      if healthy != nil
+        @healthy = healthy
+      end
+      if tags != nil
+        @tags = tags
+      end
+      if secret_store_id != nil
+        @secret_store_id = secret_store_id
+      end
+      if hostname != nil
+        @hostname = hostname
+      end
+      if username != nil
+        @username = username
+      end
+      if port != nil
+        @port = port
+      end
+      if private_key != nil
+        @private_key = private_key
+      end
+      if port_forwarding != nil
+        @port_forwarding = port_forwarding
+      end
+      if allow_deprecated_key_exchanges != nil
+        @allow_deprecated_key_exchanges = allow_deprecated_key_exchanges
+      end
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   class Sybase
     # Unique identifier of the Resource.
     attr_accessor :id
@@ -5324,6 +5582,141 @@ module SDM
     end
   end
 
+  class AWSStore
+    # Unique identifier of the SecretStore.
+    attr_accessor :id
+    # Unique human-readable name of the SecretStore.
+    attr_accessor :name
+
+    attr_accessor :region
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+
+    def initialize(
+      id: nil,
+      name: nil,
+      region: nil,
+      tags: nil
+    )
+      if id != nil
+        @id = id
+      end
+      if name != nil
+        @name = name
+      end
+      if region != nil
+        @region = region
+      end
+      if tags != nil
+        @tags = tags
+      end
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
+  class VaultTLSStore
+    # Unique identifier of the SecretStore.
+    attr_accessor :id
+    # Unique human-readable name of the SecretStore.
+    attr_accessor :name
+
+    attr_accessor :server_address
+
+    attr_accessor :ca_cert_path
+
+    attr_accessor :client_cert_path
+
+    attr_accessor :client_key_path
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+
+    def initialize(
+      id: nil,
+      name: nil,
+      server_address: nil,
+      ca_cert_path: nil,
+      client_cert_path: nil,
+      client_key_path: nil,
+      tags: nil
+    )
+      if id != nil
+        @id = id
+      end
+      if name != nil
+        @name = name
+      end
+      if server_address != nil
+        @server_address = server_address
+      end
+      if ca_cert_path != nil
+        @ca_cert_path = ca_cert_path
+      end
+      if client_cert_path != nil
+        @client_cert_path = client_cert_path
+      end
+      if client_key_path != nil
+        @client_key_path = client_key_path
+      end
+      if tags != nil
+        @tags = tags
+      end
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
+  class VaultTokenStore
+    # Unique identifier of the SecretStore.
+    attr_accessor :id
+    # Unique human-readable name of the SecretStore.
+    attr_accessor :name
+
+    attr_accessor :server_address
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+
+    def initialize(
+      id: nil,
+      name: nil,
+      server_address: nil,
+      tags: nil
+    )
+      if id != nil
+        @id = id
+      end
+      if name != nil
+        @name = name
+      end
+      if server_address != nil
+        @server_address = server_address
+      end
+      if tags != nil
+        @tags = tags
+      end
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   # SecretStoreCreateResponse reports how the SecretStores were created in the system.
   class SecretStoreCreateResponse
     # Reserved for future use.
@@ -5454,139 +5847,4 @@ module SDM
       hash.to_json
     end
   end
-
-  class VaultTokenStore
-    # Unique identifier of the SecretStore.
-    attr_accessor :id
-    # Unique human-readable name of the SecretStore.
-    attr_accessor :name
-
-    attr_accessor :server_address
-    # Tags is a map of key, value pairs.
-    attr_accessor :tags
-
-    def initialize(
-      id: nil,
-      name: nil,
-      server_address: nil,
-      tags: nil
-    )
-      if id != nil
-        @id = id
-      end
-      if name != nil
-        @name = name
-      end
-      if server_address != nil
-        @server_address = server_address
-      end
-      if tags != nil
-        @tags = tags
-      end
-    end
-
-    def to_json(options = {})
-      hash = {}
-      self.instance_variables.each do |var|
-        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
-      end
-      hash.to_json
-    end
-  end
-
-  class VaultTLSStore
-    # Unique identifier of the SecretStore.
-    attr_accessor :id
-    # Unique human-readable name of the SecretStore.
-    attr_accessor :name
-
-    attr_accessor :server_address
-
-    attr_accessor :ca_cert_path
-
-    attr_accessor :client_cert_path
-
-    attr_accessor :client_key_path
-    # Tags is a map of key, value pairs.
-    attr_accessor :tags
-
-    def initialize(
-      id: nil,
-      name: nil,
-      server_address: nil,
-      ca_cert_path: nil,
-      client_cert_path: nil,
-      client_key_path: nil,
-      tags: nil
-    )
-      if id != nil
-        @id = id
-      end
-      if name != nil
-        @name = name
-      end
-      if server_address != nil
-        @server_address = server_address
-      end
-      if ca_cert_path != nil
-        @ca_cert_path = ca_cert_path
-      end
-      if client_cert_path != nil
-        @client_cert_path = client_cert_path
-      end
-      if client_key_path != nil
-        @client_key_path = client_key_path
-      end
-      if tags != nil
-        @tags = tags
-      end
-    end
-
-    def to_json(options = {})
-      hash = {}
-      self.instance_variables.each do |var|
-        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
-      end
-      hash.to_json
-    end
-  end
-
-  class AWSStore
-    # Unique identifier of the SecretStore.
-    attr_accessor :id
-    # Unique human-readable name of the SecretStore.
-    attr_accessor :name
-
-    attr_accessor :region
-    # Tags is a map of key, value pairs.
-    attr_accessor :tags
-
-    def initialize(
-      id: nil,
-      name: nil,
-      region: nil,
-      tags: nil
-    )
-      if id != nil
-        @id = id
-      end
-      if name != nil
-        @name = name
-      end
-      if region != nil
-        @region = region
-      end
-      if tags != nil
-        @tags = tags
-      end
-    end
-
-    def to_json(options = {})
-      hash = {}
-      self.instance_variables.each do |var|
-        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
-      end
-      hash.to_json
-    end
-  end
 end