strongdm 1.0.17 → 1.0.23

data/lib/svc.rb

@@ -529,6 +529,36 @@ module SDM
       resp.rate_limit = Plumbing::convert_rate_limit_metadata_to_porcelain(plumbing_response.rate_limit)
       resp
     end
+
+    # VerifyJWT reports whether the given JWT token (x-sdm-token) is valid.
+    def verify_jwt(
+      token,
+      deadline: nil
+    )
+      req = V1::ControlPanelVerifyJWTRequest.new()
+
+      req.token = (token)
+      tries = 0
+      plumbing_response = nil
+      loop do
+        begin
+          plumbing_response = @stub.verify_jwt(req, metadata: @parent.get_metadata("ControlPanel.VerifyJWT", req), deadline: deadline)
+        rescue => exception
+          if (@parent.shouldRetry(tries, exception))
+            tries + +@parent.jitterSleep(tries)
+            next
+          end
+          raise Plumbing::convert_error_to_porcelain(exception)
+        end
+        break
+      end
+
+      resp = ControlPanelVerifyJWTResponse.new()
+      resp.meta = Plumbing::convert_get_response_metadata_to_porcelain(plumbing_response.meta)
+      resp.valid = (plumbing_response.valid)
+      resp.rate_limit = Plumbing::convert_rate_limit_metadata_to_porcelain(plumbing_response.rate_limit)
+      resp
+    end
   end
 
   # Nodes make up the strongDM network, and allow your users to connect securely to your resources. There are two types of nodes:

data/lib/version

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "1.0.17"
+  VERSION = "1.0.23"
 end

data/lib/version.rb

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "1.0.17"
+  VERSION = "1.0.23"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: strongdm
 version: !ruby/object:Gem::Version
-  version: 1.0.17
+  version: 1.0.23
 platform: ruby
 authors:
 - strongDM Team
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-01-22 00:00:00.000000000 Z
+date: 2021-06-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: grpc
@@ -88,6 +88,8 @@ files:
 - doc/SDM/AKS.html
 - doc/SDM/AKSBasicAuth.html
 - doc/SDM/AKSServiceAccount.html
+- doc/SDM/AKSServiceAccountUserImpersonation.html
+- doc/SDM/AKSUserImpersonation.html
 - doc/SDM/AWS.html
 - doc/SDM/AWSStore.html
 - doc/SDM/AccessRuleCreateResponse.html
@@ -111,7 +113,10 @@ files:
 - doc/SDM/Accounts.html
 - doc/SDM/AlreadyExistsError.html
 - doc/SDM/AmazonEKS.html
+- doc/SDM/AmazonEKSUserImpersonation.html
 - doc/SDM/AmazonES.html
+- doc/SDM/AmazonMQAMQP091.html
+- doc/SDM/AmazonMQRabbitMQAMQP091.html
 - doc/SDM/Athena.html
 - doc/SDM/AuroraMysql.html
 - doc/SDM/AuroraPostgres.html
@@ -125,6 +130,7 @@ files:
 - doc/SDM/Cockroach.html
 - doc/SDM/ControlPanel.html
 - doc/SDM/ControlPanelGetSSHCAPublicKeyResponse.html
+- doc/SDM/ControlPanelVerifyJWTResponse.html
 - doc/SDM/CreateResponseMetadata.html
 - doc/SDM/DB2LUW.html
 - doc/SDM/DB2i.html
@@ -137,6 +143,7 @@ files:
 - doc/SDM/Gateway.html
 - doc/SDM/GetResponseMetadata.html
 - doc/SDM/GoogleGKE.html
+- doc/SDM/GoogleGKEUserImpersonation.html
 - doc/SDM/Greenplum.html
 - doc/SDM/HTTPAuth.html
 - doc/SDM/HTTPBasicAuth.html
@@ -145,6 +152,8 @@ files:
 - doc/SDM/Kubernetes.html
 - doc/SDM/KubernetesBasicAuth.html
 - doc/SDM/KubernetesServiceAccount.html
+- doc/SDM/KubernetesServiceAccountUserImpersonation.html
+- doc/SDM/KubernetesUserImpersonation.html
 - doc/SDM/Maria.html
 - doc/SDM/Memcached.html
 - doc/SDM/Memsql.html
@@ -166,6 +175,7 @@ files:
 - doc/SDM/Presto.html
 - doc/SDM/RDP.html
 - doc/SDM/RPCError.html
+- doc/SDM/RabbitMQAMQP091.html
 - doc/SDM/RateLimitError.html
 - doc/SDM/RateLimitMetadata.html
 - doc/SDM/Redis.html
@@ -195,6 +205,7 @@ files:
 - doc/SDM/SQLServer.html
 - doc/SDM/SSH.html
 - doc/SDM/SSHCert.html
+- doc/SDM/SSHCustomerKey.html
 - doc/SDM/SecretStore.html
 - doc/SDM/SecretStoreCreateResponse.html
 - doc/SDM/SecretStoreDeleteResponse.html
@@ -230,6 +241,7 @@ files:
 - doc/V1/DemoProvisioningRequests/Service.html
 - doc/V1/Nodes.html
 - doc/V1/Nodes/Service.html
+- doc/V1/Permissions/Service.html
 - doc/V1/Resources.html
 - doc/V1/Resources/Service.html
 - doc/V1/RoleAttachments.html
@@ -306,8 +318,6 @@ files:
 - lib/grpc/accounts_services_pb.rb
 - lib/grpc/control_panel_pb.rb
 - lib/grpc/control_panel_services_pb.rb
-- lib/grpc/demo_provisioning_requests_pb.rb
-- lib/grpc/demo_provisioning_requests_services_pb.rb
 - lib/grpc/drivers_pb.rb
 - lib/grpc/nodes_pb.rb
 - lib/grpc/nodes_services_pb.rb
@@ -351,7 +361,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: 1.3.6
 requirements: []
-rubygems_version: 3.0.3
+rubygems_version: 3.0.3.1
 signing_key: 
 specification_version: 4
 summary: strongDM SDK for the Ruby programming language.

data/lib/grpc/demo_provisioning_requests_pb.rb

@@ -1,93 +0,0 @@
-# Copyright 2020 StrongDM Inc
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-#
-# Generated by the protocol buffer compiler.  DO NOT EDIT!
-# source: demo_provisioning_requests.proto
-
-require "google/protobuf"
-
-require "options_pb"
-require "spec_pb"
-Google::Protobuf::DescriptorPool.generated_pool.build do
-  add_file("demo_provisioning_requests.proto", :syntax => :proto3) do
-    add_message "v1.DemoProvisioningRequestCreateRequest" do
-      optional :meta, :message, 1, "v1.CreateRequestMetadata"
-      optional :demo_provisioning_request, :message, 2, "v1.DemoProvisioningRequest"
-    end
-    add_message "v1.DemoProvisioningRequestCreateResponse" do
-      optional :meta, :message, 1, "v1.CreateResponseMetadata"
-      optional :demo_provisioning_request, :message, 2, "v1.DemoProvisioningRequest"
-      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
-    end
-    add_message "v1.DemoProvisioningRequestDeleteRequest" do
-      optional :meta, :message, 1, "v1.DeleteRequestMetadata"
-      optional :id, :string, 2
-    end
-    add_message "v1.DemoProvisioningRequestDeleteResponse" do
-      optional :meta, :message, 1, "v1.DeleteResponseMetadata"
-      optional :rate_limit, :message, 2, "v1.RateLimitMetadata"
-    end
-    add_message "v1.DemoProvisioningRequestUpdateRequest" do
-      optional :meta, :message, 1, "v1.UpdateRequestMetadata"
-      optional :id, :string, 2
-      optional :demo_provisioning_request, :message, 3, "v1.DemoProvisioningRequest"
-    end
-    add_message "v1.DemoProvisioningRequestUpdateResponse" do
-      optional :meta, :message, 1, "v1.UpdateResponseMetadata"
-      optional :demo_provisioning_request, :message, 2, "v1.DemoProvisioningRequest"
-      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
-    end
-    add_message "v1.DemoProvisioningRequestListForOrganizationRequest" do
-      optional :meta, :message, 1, "v1.ListRequestMetadata"
-      optional :filter, :string, 2
-    end
-    add_message "v1.DemoProvisioningRequestListForOrganizationResponse" do
-      optional :meta, :message, 1, "v1.ListResponseMetadata"
-      repeated :demo_provisioning_requests, :message, 2, "v1.DemoProvisioningRequest"
-      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
-    end
-    add_message "v1.DemoProvisioningRequestListAllRequest" do
-      optional :meta, :message, 1, "v1.ListRequestMetadata"
-      optional :filter, :string, 2
-    end
-    add_message "v1.DemoProvisioningRequestListAllResponse" do
-      optional :meta, :message, 1, "v1.ListResponseMetadata"
-      repeated :demo_provisioning_requests, :message, 2, "v1.DemoProvisioningRequest"
-      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
-    end
-    add_message "v1.DemoProvisioningRequest" do
-      optional :id, :string, 1
-      optional :request_type, :string, 2
-      optional :creator_id, :string, 3
-      optional :created_resource_id, :string, 4
-      optional :created_node_id, :string, 5
-      optional :access_key, :string, 6
-      optional :secret_key, :string, 7
-    end
-  end
-end
-
-module V1
-  DemoProvisioningRequestCreateRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DemoProvisioningRequestCreateRequest").msgclass
-  DemoProvisioningRequestCreateResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DemoProvisioningRequestCreateResponse").msgclass
-  DemoProvisioningRequestDeleteRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DemoProvisioningRequestDeleteRequest").msgclass
-  DemoProvisioningRequestDeleteResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DemoProvisioningRequestDeleteResponse").msgclass
-  DemoProvisioningRequestUpdateRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DemoProvisioningRequestUpdateRequest").msgclass
-  DemoProvisioningRequestUpdateResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DemoProvisioningRequestUpdateResponse").msgclass
-  DemoProvisioningRequestListForOrganizationRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DemoProvisioningRequestListForOrganizationRequest").msgclass
-  DemoProvisioningRequestListForOrganizationResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DemoProvisioningRequestListForOrganizationResponse").msgclass
-  DemoProvisioningRequestListAllRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DemoProvisioningRequestListAllRequest").msgclass
-  DemoProvisioningRequestListAllResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DemoProvisioningRequestListAllResponse").msgclass
-  DemoProvisioningRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DemoProvisioningRequest").msgclass
-end

data/lib/grpc/demo_provisioning_requests_services_pb.rb

@@ -1,49 +0,0 @@
-# Copyright 2020 StrongDM Inc
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-#
-# Generated by the protocol buffer compiler.  DO NOT EDIT!
-# Source: demo_provisioning_requests.proto for package 'v1'
-
-require "grpc"
-require "demo_provisioning_requests_pb"
-
-module V1
-  module DemoProvisioningRequests
-    # DemoProvisioningRequests coordinate provisioning of demo resources.
-    class Service
-      include GRPC::GenericService
-
-      self.marshal_class_method = :encode
-      self.unmarshal_class_method = :decode
-      self.service_name = "v1.DemoProvisioningRequests"
-
-      # Create
-      rpc :Create, ::V1::DemoProvisioningRequestCreateRequest, ::V1::DemoProvisioningRequestCreateResponse
-      # ListForOrganization gets a list of DemoProvisioningRequests in your organization
-      # matching a given set of criteria. This operation can be done by account
-      # administrators.
-      rpc :ListForOrganization, ::V1::DemoProvisioningRequestListForOrganizationRequest, ::V1::DemoProvisioningRequestListForOrganizationResponse
-      # Delete deletes a DemoProvisioningRequest.
-      rpc :Delete, ::V1::DemoProvisioningRequestDeleteRequest, ::V1::DemoProvisioningRequestDeleteResponse
-      # ListAll gets a list of DemoProvisioningRequests across all orgs matching a given
-      # set of criteria. This operation can only be done by operators and the
-      # trial provisioner.
-      rpc :ListAll, ::V1::DemoProvisioningRequestListAllRequest, ::V1::DemoProvisioningRequestListAllResponse
-      # Update updates a DemoProvisioningRequest.
-      rpc :Update, ::V1::DemoProvisioningRequestUpdateRequest, ::V1::DemoProvisioningRequestUpdateResponse
-    end
-
-    Stub = Service.rpc_stub_class
-  end
-end