strongdm 1.0.32 → 2.0.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (251) hide show
  1. checksums.yaml +4 -4
  2. data/.git/ORIG_HEAD +1 -1
  3. data/.git/config +0 -3
  4. data/.git/index +0 -0
  5. data/.git/logs/HEAD +3 -4
  6. data/.git/logs/refs/heads/master +2 -2
  7. data/.git/logs/refs/remotes/origin/HEAD +1 -1
  8. data/.git/objects/pack/pack-799dc839a811c2fbe50b5281a9266fcc3a8f5154.idx +0 -0
  9. data/.git/objects/pack/{pack-760024d2d3e635c44bfe6b54af80a8b21674032d.pack → pack-799dc839a811c2fbe50b5281a9266fcc3a8f5154.pack} +0 -0
  10. data/.git/packed-refs +5 -2
  11. data/.git/refs/heads/master +1 -1
  12. data/.yardopts +9 -0
  13. data/README.md +18 -6
  14. data/lib/errors/errors.rb +1 -1
  15. data/lib/grpc/account_attachments_services_pb.rb +1 -1
  16. data/lib/grpc/accounts_services_pb.rb +2 -2
  17. data/lib/grpc/drivers_pb.rb +38 -0
  18. data/lib/grpc/nodes_services_pb.rb +1 -1
  19. data/lib/grpc/options_pb.rb +35 -40
  20. data/lib/grpc/plumbing.rb +1258 -965
  21. data/lib/grpc/resources_services_pb.rb +3 -1
  22. data/lib/grpc/role_attachments_services_pb.rb +10 -0
  23. data/lib/grpc/role_grants_services_pb.rb +10 -0
  24. data/lib/grpc/roles_services_pb.rb +4 -6
  25. data/lib/grpc/secret_store_types_pb.rb +25 -0
  26. data/lib/grpc/secret_stores_services_pb.rb +1 -1
  27. data/lib/models/porcelain.rb +1243 -2897
  28. data/lib/strongdm.rb +39 -15
  29. data/lib/svc.rb +162 -14
  30. data/lib/version +1 -1
  31. data/lib/version.rb +1 -1
  32. metadata +5 -222
  33. data/.git/FETCH_HEAD +0 -2
  34. data/.git/logs/refs/heads/development +0 -1
  35. data/.git/objects/pack/pack-760024d2d3e635c44bfe6b54af80a8b21674032d.idx +0 -0
  36. data/.git/refs/heads/development +0 -1
  37. data/doc/LICENSE.html +0 -187
  38. data/doc/Object.html +0 -114
  39. data/doc/README_md.html +0 -146
  40. data/doc/SDM/AKS.html +0 -352
  41. data/doc/SDM/AKSBasicAuth.html +0 -337
  42. data/doc/SDM/AKSServiceAccount.html +0 -322
  43. data/doc/SDM/AKSServiceAccountUserImpersonation.html +0 -322
  44. data/doc/SDM/AKSUserImpersonation.html +0 -352
  45. data/doc/SDM/AWS.html +0 -337
  46. data/doc/SDM/AWSStore.html +0 -232
  47. data/doc/SDM/AccountAttachment.html +0 -219
  48. data/doc/SDM/AccountAttachmentCreateResponse.html +0 -219
  49. data/doc/SDM/AccountAttachmentDeleteResponse.html +0 -204
  50. data/doc/SDM/AccountAttachmentGetResponse.html +0 -219
  51. data/doc/SDM/AccountAttachments.html +0 -354
  52. data/doc/SDM/AccountCreateResponse.html +0 -234
  53. data/doc/SDM/AccountDeleteResponse.html +0 -204
  54. data/doc/SDM/AccountGetResponse.html +0 -219
  55. data/doc/SDM/AccountGrant.html +0 -249
  56. data/doc/SDM/AccountGrantCreateResponse.html +0 -219
  57. data/doc/SDM/AccountGrantDeleteResponse.html +0 -204
  58. data/doc/SDM/AccountGrantGetResponse.html +0 -219
  59. data/doc/SDM/AccountGrants.html +0 -354
  60. data/doc/SDM/AccountUpdateResponse.html +0 -219
  61. data/doc/SDM/Accounts.html +0 -409
  62. data/doc/SDM/AlreadyExistsError.html +0 -140
  63. data/doc/SDM/AmazonEKS.html +0 -397
  64. data/doc/SDM/AmazonEKSUserImpersonation.html +0 -397
  65. data/doc/SDM/AmazonES.html +0 -367
  66. data/doc/SDM/AmazonMQAMQP091.html +0 -352
  67. data/doc/SDM/Athena.html +0 -367
  68. data/doc/SDM/AuroraMysql.html +0 -352
  69. data/doc/SDM/AuroraPostgres.html +0 -367
  70. data/doc/SDM/AuthenticationError.html +0 -140
  71. data/doc/SDM/Azure.html +0 -307
  72. data/doc/SDM/AzureCertificate.html +0 -307
  73. data/doc/SDM/AzurePostgres.html +0 -367
  74. data/doc/SDM/BadRequestError.html +0 -140
  75. data/doc/SDM/BigQuery.html +0 -337
  76. data/doc/SDM/Cassandra.html +0 -352
  77. data/doc/SDM/Citus.html +0 -367
  78. data/doc/SDM/Client.html +0 -443
  79. data/doc/SDM/Clustrix.html +0 -352
  80. data/doc/SDM/Cockroach.html +0 -367
  81. data/doc/SDM/ControlPanel.html +0 -248
  82. data/doc/SDM/ControlPanelGetSSHCAPublicKeyResponse.html +0 -219
  83. data/doc/SDM/ControlPanelVerifyJWTResponse.html +0 -219
  84. data/doc/SDM/CreateResponseMetadata.html +0 -169
  85. data/doc/SDM/DB2LUW.html +0 -352
  86. data/doc/SDM/DB2i.html +0 -352
  87. data/doc/SDM/DeadlineExceededError.html +0 -140
  88. data/doc/SDM/DeleteResponseMetadata.html +0 -169
  89. data/doc/SDM/DocumentDBHost.html +0 -352
  90. data/doc/SDM/DocumentDBReplicaSet.html +0 -367
  91. data/doc/SDM/Druid.html +0 -337
  92. data/doc/SDM/DynamoDB.html +0 -367
  93. data/doc/SDM/Elastic.html +0 -352
  94. data/doc/SDM/ElasticacheRedis.html +0 -337
  95. data/doc/SDM/GCP.html +0 -292
  96. data/doc/SDM/Gateway.html +0 -279
  97. data/doc/SDM/GetResponseMetadata.html +0 -169
  98. data/doc/SDM/GoogleGKE.html +0 -322
  99. data/doc/SDM/GoogleGKEUserImpersonation.html +0 -322
  100. data/doc/SDM/Greenplum.html +0 -367
  101. data/doc/SDM/HTTPAuth.html +0 -352
  102. data/doc/SDM/HTTPBasicAuth.html +0 -367
  103. data/doc/SDM/HTTPNoAuth.html +0 -337
  104. data/doc/SDM/InternalError.html +0 -140
  105. data/doc/SDM/Kubernetes.html +0 -352
  106. data/doc/SDM/KubernetesBasicAuth.html +0 -337
  107. data/doc/SDM/KubernetesServiceAccount.html +0 -322
  108. data/doc/SDM/KubernetesServiceAccountUserImpersonation.html +0 -322
  109. data/doc/SDM/KubernetesUserImpersonation.html +0 -352
  110. data/doc/SDM/Maria.html +0 -352
  111. data/doc/SDM/Memcached.html +0 -307
  112. data/doc/SDM/Memsql.html +0 -352
  113. data/doc/SDM/MongoHost.html +0 -367
  114. data/doc/SDM/MongoLegacyHost.html +0 -382
  115. data/doc/SDM/MongoLegacyReplicaset.html +0 -397
  116. data/doc/SDM/MongoReplicaSet.html +0 -397
  117. data/doc/SDM/Mysql.html +0 -352
  118. data/doc/SDM/Neptune.html +0 -307
  119. data/doc/SDM/NeptuneIAM.html +0 -382
  120. data/doc/SDM/NodeCreateResponse.html +0 -234
  121. data/doc/SDM/NodeDeleteResponse.html +0 -204
  122. data/doc/SDM/NodeGetResponse.html +0 -219
  123. data/doc/SDM/NodeUpdateResponse.html +0 -219
  124. data/doc/SDM/Nodes.html +0 -409
  125. data/doc/SDM/NotFoundError.html +0 -140
  126. data/doc/SDM/Oracle.html +0 -367
  127. data/doc/SDM/PermissionError.html +0 -140
  128. data/doc/SDM/Plumbing.html +0 -15828
  129. data/doc/SDM/Postgres.html +0 -367
  130. data/doc/SDM/Presto.html +0 -367
  131. data/doc/SDM/RDP.html +0 -337
  132. data/doc/SDM/RPCError.html +0 -157
  133. data/doc/SDM/RabbitMQAMQP091.html +0 -352
  134. data/doc/SDM/RateLimitError.html +0 -157
  135. data/doc/SDM/RateLimitMetadata.html +0 -234
  136. data/doc/SDM/RawTCP.html +0 -307
  137. data/doc/SDM/Redis.html +0 -322
  138. data/doc/SDM/Redshift.html +0 -367
  139. data/doc/SDM/Relay.html +0 -249
  140. data/doc/SDM/ResourceCreateResponse.html +0 -219
  141. data/doc/SDM/ResourceDeleteResponse.html +0 -204
  142. data/doc/SDM/ResourceGetResponse.html +0 -219
  143. data/doc/SDM/ResourceUpdateResponse.html +0 -219
  144. data/doc/SDM/Resources.html +0 -456
  145. data/doc/SDM/Role.html +0 -249
  146. data/doc/SDM/RoleAttachment.html +0 -219
  147. data/doc/SDM/RoleAttachmentCreateResponse.html +0 -219
  148. data/doc/SDM/RoleAttachmentDeleteResponse.html +0 -204
  149. data/doc/SDM/RoleAttachmentGetResponse.html +0 -219
  150. data/doc/SDM/RoleAttachments.html +0 -354
  151. data/doc/SDM/RoleCreateResponse.html +0 -219
  152. data/doc/SDM/RoleDeleteResponse.html +0 -204
  153. data/doc/SDM/RoleGetResponse.html +0 -219
  154. data/doc/SDM/RoleGrant.html +0 -219
  155. data/doc/SDM/RoleGrantCreateResponse.html +0 -219
  156. data/doc/SDM/RoleGrantDeleteResponse.html +0 -204
  157. data/doc/SDM/RoleGrantGetResponse.html +0 -219
  158. data/doc/SDM/RoleGrants.html +0 -354
  159. data/doc/SDM/RoleUpdateResponse.html +0 -219
  160. data/doc/SDM/Roles.html +0 -403
  161. data/doc/SDM/SQLServer.html +0 -382
  162. data/doc/SDM/SSH.html +0 -352
  163. data/doc/SDM/SSHCert.html +0 -337
  164. data/doc/SDM/SSHCustomerKey.html +0 -352
  165. data/doc/SDM/SecretStoreCreateResponse.html +0 -219
  166. data/doc/SDM/SecretStoreDeleteResponse.html +0 -204
  167. data/doc/SDM/SecretStoreGetResponse.html +0 -219
  168. data/doc/SDM/SecretStoreUpdateResponse.html +0 -219
  169. data/doc/SDM/SecretStores.html +0 -403
  170. data/doc/SDM/Service.html +0 -234
  171. data/doc/SDM/SingleStore.html +0 -352
  172. data/doc/SDM/Snowflake.html +0 -352
  173. data/doc/SDM/Sybase.html +0 -337
  174. data/doc/SDM/SybaseIQ.html +0 -337
  175. data/doc/SDM/Tag.html +0 -202
  176. data/doc/SDM/Teradata.html +0 -337
  177. data/doc/SDM/UpdateResponseMetadata.html +0 -169
  178. data/doc/SDM/User.html +0 -264
  179. data/doc/SDM/VaultTLSStore.html +0 -292
  180. data/doc/SDM/VaultTokenStore.html +0 -247
  181. data/doc/SDM.html +0 -122
  182. data/doc/V1/AccountAttachments/Service.html +0 -107
  183. data/doc/V1/AccountAttachments.html +0 -100
  184. data/doc/V1/AccountGrants/Service.html +0 -107
  185. data/doc/V1/AccountGrants.html +0 -100
  186. data/doc/V1/Accounts/Service.html +0 -112
  187. data/doc/V1/Accounts.html +0 -100
  188. data/doc/V1/ControlPanel/Service.html +0 -107
  189. data/doc/V1/ControlPanel.html +0 -100
  190. data/doc/V1/Nodes/Service.html +0 -112
  191. data/doc/V1/Nodes.html +0 -100
  192. data/doc/V1/Resources/Service.html +0 -105
  193. data/doc/V1/Resources.html +0 -100
  194. data/doc/V1/RoleAttachments/Service.html +0 -107
  195. data/doc/V1/RoleAttachments.html +0 -100
  196. data/doc/V1/RoleGrants/Service.html +0 -107
  197. data/doc/V1/RoleGrants.html +0 -100
  198. data/doc/V1/Roles/Service.html +0 -107
  199. data/doc/V1/Roles.html +0 -100
  200. data/doc/V1/SecretStores/Service.html +0 -107
  201. data/doc/V1/SecretStores.html +0 -100
  202. data/doc/V1/Tags.html +0 -100
  203. data/doc/V1.html +0 -502
  204. data/doc/created.rid +0 -37
  205. data/doc/css/fonts.css +0 -167
  206. data/doc/css/rdoc.css +0 -639
  207. data/doc/examples/Gemfile.html +0 -89
  208. data/doc/fonts/Lato-Light.ttf +0 -0
  209. data/doc/fonts/Lato-LightItalic.ttf +0 -0
  210. data/doc/fonts/Lato-Regular.ttf +0 -0
  211. data/doc/fonts/Lato-RegularItalic.ttf +0 -0
  212. data/doc/fonts/SourceCodePro-Bold.ttf +0 -0
  213. data/doc/fonts/SourceCodePro-Regular.ttf +0 -0
  214. data/doc/images/add.png +0 -0
  215. data/doc/images/arrow_up.png +0 -0
  216. data/doc/images/brick.png +0 -0
  217. data/doc/images/brick_link.png +0 -0
  218. data/doc/images/bug.png +0 -0
  219. data/doc/images/bullet_black.png +0 -0
  220. data/doc/images/bullet_toggle_minus.png +0 -0
  221. data/doc/images/bullet_toggle_plus.png +0 -0
  222. data/doc/images/date.png +0 -0
  223. data/doc/images/delete.png +0 -0
  224. data/doc/images/find.png +0 -0
  225. data/doc/images/loadingAnimation.gif +0 -0
  226. data/doc/images/macFFBgHack.png +0 -0
  227. data/doc/images/package.png +0 -0
  228. data/doc/images/page_green.png +0 -0
  229. data/doc/images/page_white_text.png +0 -0
  230. data/doc/images/page_white_width.png +0 -0
  231. data/doc/images/plugin.png +0 -0
  232. data/doc/images/ruby.png +0 -0
  233. data/doc/images/tag_blue.png +0 -0
  234. data/doc/images/tag_green.png +0 -0
  235. data/doc/images/transparent.png +0 -0
  236. data/doc/images/wrench.png +0 -0
  237. data/doc/images/wrench_orange.png +0 -0
  238. data/doc/images/zoom.png +0 -0
  239. data/doc/index.html +0 -255
  240. data/doc/js/darkfish.js +0 -84
  241. data/doc/js/navigation.js +0 -105
  242. data/doc/js/navigation.js.gz +0 -0
  243. data/doc/js/search.js +0 -110
  244. data/doc/js/search_index.js +0 -1
  245. data/doc/js/search_index.js.gz +0 -0
  246. data/doc/js/searcher.js +0 -229
  247. data/doc/js/searcher.js.gz +0 -0
  248. data/doc/lib/version.html +0 -92
  249. data/doc/table_of_contents.html +0 -4614
  250. data/examples/Gemfile +0 -3
  251. data/examples/listUsers.rb +0 -21
data/lib/strongdm.rb CHANGED
@@ -13,22 +13,23 @@
13
13
  # limitations under the License.
14
14
  #
15
15
 
16
- # This file was generated by protogen. DO NOT EDIT.
16
+ # @internal This file was generated by protogen. DO NOT EDIT.
17
17
 
18
18
  require_relative "./svc"
19
19
  require "base64"
20
20
  require "openssl"
21
21
 
22
- DEFAULT_MAX_RETRIES = 3
23
- DEFAULT_BASE_RETRY_DELAY = 0.0030 # 30 ms
24
- DEFAULT_MAX_RETRY_DELAY = 300 # 300 seconds
25
- API_VERSION = "2021-08-23"
26
- USER_AGENT = "strongdm-sdk-ruby/1.0.32"
27
-
28
- module SDM
22
+ module SDM #:nodoc:
29
23
 
30
24
  # Client bundles all the services together and initializes them.
31
25
  class Client
26
+ DEFAULT_MAX_RETRIES = 3
27
+ DEFAULT_BASE_RETRY_DELAY = 0.0030 # 30 ms
28
+ DEFAULT_MAX_RETRY_DELAY = 300 # 300 seconds
29
+ API_VERSION = "2021-08-23"
30
+ USER_AGENT = "strongdm-sdk-ruby/2.0.0"
31
+ private_constant :DEFAULT_MAX_RETRIES, :DEFAULT_BASE_RETRY_DELAY, :DEFAULT_MAX_RETRY_DELAY, :API_VERSION, :USER_AGENT
32
+
32
33
  # Creates a new strongDM API client.
33
34
  def initialize(api_access_key, api_secret_key, host: "api.strongdm.com:443", insecure: false)
34
35
  raise TypeError, "client access key must be a string" unless api_access_key.kind_of?(String)
@@ -102,39 +103,62 @@ module SDM
102
103
 
103
104
  # API authentication token (read-only).
104
105
  attr_reader :api_access_key
105
- # AccountAttachments assign an account to a role or composite role.
106
+ # AccountAttachments assign an account to a role.
107
+ #
108
+ # See {AccountAttachments}.
106
109
  attr_reader :account_attachments
107
110
  # AccountGrants assign a resource directly to an account, giving the account the permission to connect to that resource.
111
+ #
112
+ # See {AccountGrants}.
108
113
  attr_reader :account_grants
109
114
  # Accounts are users that have access to strongDM. There are two types of accounts:
110
115
  # 1. **Users:** humans who are authenticated through username and password or SSO.
111
116
  # 2. **Service Accounts:** machines that are authenticated using a service token.
117
+ #
118
+ # See {Accounts}.
112
119
  attr_reader :accounts
113
120
  # ControlPanel contains all administrative controls.
121
+ #
122
+ # See {ControlPanel}.
114
123
  attr_reader :control_panel
115
124
  # Nodes make up the strongDM network, and allow your users to connect securely to your resources. There are two types of nodes:
116
125
  # - **Gateways** are the entry points into network. They listen for connection from the strongDM client, and provide access to databases and servers.
117
126
  # - **Relays** are used to extend the strongDM network into segmented subnets. They provide access to databases and servers but do not listen for incoming connections.
127
+ #
128
+ # See {Nodes}.
118
129
  attr_reader :nodes
119
-
130
+ # Resources are databases, servers, clusters, websites, or clouds that strongDM
131
+ # delegates access to.
132
+ #
133
+ # See {Resources}.
120
134
  attr_reader :resources
121
135
  # RoleAttachments represent relationships between composite roles and the roles
122
136
  # that make up those composite roles. When a composite role is attached to another
123
137
  # role, the permissions granted to members of the composite role are augmented to
124
138
  # include the permissions granted to members of the attached role.
139
+ #
140
+ # Deprecated: use multi-role via AccountAttachments instead.
141
+ #
142
+ # See {RoleAttachments}.
125
143
  attr_reader :role_attachments
126
144
  # RoleGrants represent relationships between composite roles and the roles
127
145
  # that make up those composite roles. When a composite role is attached to another
128
146
  # role, the permissions granted to members of the composite role are augmented to
129
147
  # include the permissions granted to members of the attached role.
148
+ #
149
+ # Deprecated: use Role access rules instead.
150
+ #
151
+ # See {RoleGrants}.
130
152
  attr_reader :role_grants
131
- # Roles are tools for controlling user access to resources. Each Role holds a
132
- # list of resources which they grant access to. Composite roles are a special
133
- # type of Role which have no resource associations of their own, but instead
134
- # grant access to the combined resources associated with a set of child roles.
135
- # Each user can be a member of one Role or composite role.
153
+ # A Role has a list of access rules which determine which Resources the members
154
+ # of the Role have access to. An Account can be a member of multiple Roles via
155
+ # AccountAttachments.
156
+ #
157
+ # See {Roles}.
136
158
  attr_reader :roles
137
159
  # SecretStores are servers where resource secrets (passwords, keys) are stored.
160
+ #
161
+ # See {SecretStores}.
138
162
  attr_reader :secret_stores
139
163
  attr_reader :_test_options
140
164
  end
data/lib/svc.rb CHANGED
@@ -13,7 +13,7 @@
13
13
  # limitations under the License.
14
14
  #
15
15
 
16
- # This file was generated by protogen. DO NOT EDIT.
16
+ # @internal This file was generated by protogen. DO NOT EDIT.
17
17
 
18
18
  this_dir = File.expand_path(File.dirname(__FILE__))
19
19
  lib_dir = File.join(this_dir, "grpc")
@@ -23,9 +23,13 @@ require "enumerator"
23
23
  Dir[File.join(__dir__, "grpc", "*.rb")].each { |file| require file }
24
24
  Dir[File.join(__dir__, "models", "*.rb")].each { |file| require file }
25
25
 
26
- module SDM
27
- # AccountAttachments assign an account to a role or composite role.
26
+ module SDM #:nodoc:
27
+ # AccountAttachments assign an account to a role.
28
+ #
29
+ # See {AccountAttachment}.
28
30
  class AccountAttachments
31
+ extend Gem::Deprecate
32
+
29
33
  def initialize(host, insecure, parent)
30
34
  begin
31
35
  if insecure
@@ -168,7 +172,11 @@ module SDM
168
172
  end
169
173
 
170
174
  # AccountGrants assign a resource directly to an account, giving the account the permission to connect to that resource.
175
+ #
176
+ # See {AccountGrant}.
171
177
  class AccountGrants
178
+ extend Gem::Deprecate
179
+
172
180
  def initialize(host, insecure, parent)
173
181
  begin
174
182
  if insecure
@@ -313,7 +321,13 @@ module SDM
313
321
  # Accounts are users that have access to strongDM. There are two types of accounts:
314
322
  # 1. **Users:** humans who are authenticated through username and password or SSO.
315
323
  # 2. **Service Accounts:** machines that are authenticated using a service token.
324
+ #
325
+ # See:
326
+ # {Service}
327
+ # {User}
316
328
  class Accounts
329
+ extend Gem::Deprecate
330
+
317
331
  def initialize(host, insecure, parent)
318
332
  begin
319
333
  if insecure
@@ -389,7 +403,7 @@ module SDM
389
403
  resp
390
404
  end
391
405
 
392
- # Update patches a Account by ID.
406
+ # Update replaces all the fields of an Account by ID.
393
407
  def update(
394
408
  account,
395
409
  deadline: nil
@@ -419,7 +433,7 @@ module SDM
419
433
  resp
420
434
  end
421
435
 
422
- # Delete removes a Account by ID.
436
+ # Delete removes an Account by ID.
423
437
  def delete(
424
438
  id,
425
439
  deadline: nil
@@ -488,6 +502,8 @@ module SDM
488
502
 
489
503
  # ControlPanel contains all administrative controls.
490
504
  class ControlPanel
505
+ extend Gem::Deprecate
506
+
491
507
  def initialize(host, insecure, parent)
492
508
  begin
493
509
  if insecure
@@ -564,7 +580,13 @@ module SDM
564
580
  # Nodes make up the strongDM network, and allow your users to connect securely to your resources. There are two types of nodes:
565
581
  # - **Gateways** are the entry points into network. They listen for connection from the strongDM client, and provide access to databases and servers.
566
582
  # - **Relays** are used to extend the strongDM network into segmented subnets. They provide access to databases and servers but do not listen for incoming connections.
583
+ #
584
+ # See:
585
+ # {Gateway}
586
+ # {Relay}
567
587
  class Nodes
588
+ extend Gem::Deprecate
589
+
568
590
  def initialize(host, insecure, parent)
569
591
  begin
570
592
  if insecure
@@ -640,7 +662,7 @@ module SDM
640
662
  resp
641
663
  end
642
664
 
643
- # Update patches a Node by ID.
665
+ # Update replaces all the fields of a Node by ID.
644
666
  def update(
645
667
  node,
646
668
  deadline: nil
@@ -737,7 +759,83 @@ module SDM
737
759
  end
738
760
  end
739
761
 
762
+ # Resources are databases, servers, clusters, websites, or clouds that strongDM
763
+ # delegates access to.
764
+ #
765
+ # See:
766
+ # {AKS}
767
+ # {AKSBasicAuth}
768
+ # {AKSServiceAccount}
769
+ # {AKSServiceAccountUserImpersonation}
770
+ # {AKSUserImpersonation}
771
+ # {AmazonEKS}
772
+ # {AmazonEKSUserImpersonation}
773
+ # {AmazonES}
774
+ # {AmazonMQAMQP091}
775
+ # {Athena}
776
+ # {AuroraMysql}
777
+ # {AuroraPostgres}
778
+ # {AWS}
779
+ # {Azure}
780
+ # {AzureCertificate}
781
+ # {AzurePostgres}
782
+ # {BigQuery}
783
+ # {Cassandra}
784
+ # {Citus}
785
+ # {Clustrix}
786
+ # {Cockroach}
787
+ # {DB2I}
788
+ # {DB2LUW}
789
+ # {DocumentDBHost}
790
+ # {DocumentDBReplicaSet}
791
+ # {Druid}
792
+ # {DynamoDB}
793
+ # {Elastic}
794
+ # {ElasticacheRedis}
795
+ # {GCP}
796
+ # {GoogleGKE}
797
+ # {GoogleGKEUserImpersonation}
798
+ # {Greenplum}
799
+ # {HTTPAuth}
800
+ # {HTTPBasicAuth}
801
+ # {HTTPNoAuth}
802
+ # {Kubernetes}
803
+ # {KubernetesBasicAuth}
804
+ # {KubernetesServiceAccount}
805
+ # {KubernetesServiceAccountUserImpersonation}
806
+ # {KubernetesUserImpersonation}
807
+ # {Maria}
808
+ # {Memcached}
809
+ # {Memsql}
810
+ # {MongoHost}
811
+ # {MongoLegacyHost}
812
+ # {MongoLegacyReplicaset}
813
+ # {MongoReplicaSet}
814
+ # {MongoShardedCluster}
815
+ # {MTLSPostgres}
816
+ # {Mysql}
817
+ # {Neptune}
818
+ # {NeptuneIAM}
819
+ # {Oracle}
820
+ # {Postgres}
821
+ # {Presto}
822
+ # {RabbitMQAMQP091}
823
+ # {RawTCP}
824
+ # {RDP}
825
+ # {Redis}
826
+ # {Redshift}
827
+ # {SingleStore}
828
+ # {Snowflake}
829
+ # {SQLServer}
830
+ # {SSH}
831
+ # {SSHCert}
832
+ # {SSHCustomerKey}
833
+ # {Sybase}
834
+ # {SybaseIQ}
835
+ # {Teradata}
740
836
  class Resources
837
+ extend Gem::Deprecate
838
+
741
839
  def initialize(host, insecure, parent)
742
840
  begin
743
841
  if insecure
@@ -849,7 +947,7 @@ module SDM
849
947
  resp
850
948
  end
851
949
 
852
- # Update patches a Resource by ID.
950
+ # Update replaces all the fields of a Resource by ID.
853
951
  def update(
854
952
  resource,
855
953
  deadline: nil
@@ -950,7 +1048,13 @@ module SDM
950
1048
  # that make up those composite roles. When a composite role is attached to another
951
1049
  # role, the permissions granted to members of the composite role are augmented to
952
1050
  # include the permissions granted to members of the attached role.
1051
+ #
1052
+ # Deprecated: use multi-role via AccountAttachments instead.
1053
+ #
1054
+ # See {RoleAttachment}.
953
1055
  class RoleAttachments
1056
+ extend Gem::Deprecate
1057
+
954
1058
  def initialize(host, insecure, parent)
955
1059
  begin
956
1060
  if insecure
@@ -966,6 +1070,8 @@ module SDM
966
1070
  end
967
1071
 
968
1072
  # Create registers a new RoleAttachment.
1073
+ #
1074
+ # Deprecated: use multi-role via AccountAttachments instead.
969
1075
  def create(
970
1076
  role_attachment,
971
1077
  deadline: nil
@@ -995,7 +1101,10 @@ module SDM
995
1101
  resp
996
1102
  end
997
1103
 
1104
+ deprecate :create, :none, 2022, 6
998
1105
  # Get reads one RoleAttachment by ID.
1106
+ #
1107
+ # Deprecated: use multi-role via AccountAttachments instead.
999
1108
  def get(
1000
1109
  id,
1001
1110
  deadline: nil
@@ -1025,7 +1134,10 @@ module SDM
1025
1134
  resp
1026
1135
  end
1027
1136
 
1137
+ deprecate :get, :none, 2022, 6
1028
1138
  # Delete removes a RoleAttachment by ID.
1139
+ #
1140
+ # Deprecated: use multi-role via AccountAttachments instead.
1029
1141
  def delete(
1030
1142
  id,
1031
1143
  deadline: nil
@@ -1054,7 +1166,10 @@ module SDM
1054
1166
  resp
1055
1167
  end
1056
1168
 
1169
+ deprecate :delete, :none, 2022, 6
1057
1170
  # List gets a list of RoleAttachments matching a given set of criteria.
1171
+ #
1172
+ # Deprecated: use multi-role via AccountAttachments instead.
1058
1173
  def list(
1059
1174
  filter,
1060
1175
  *args,
@@ -1090,13 +1205,21 @@ module SDM
1090
1205
  }
1091
1206
  resp
1092
1207
  end
1208
+
1209
+ deprecate :list, :none, 2022, 6
1093
1210
  end
1094
1211
 
1095
1212
  # RoleGrants represent relationships between composite roles and the roles
1096
1213
  # that make up those composite roles. When a composite role is attached to another
1097
1214
  # role, the permissions granted to members of the composite role are augmented to
1098
1215
  # include the permissions granted to members of the attached role.
1216
+ #
1217
+ # Deprecated: use Role access rules instead.
1218
+ #
1219
+ # See {RoleGrant}.
1099
1220
  class RoleGrants
1221
+ extend Gem::Deprecate
1222
+
1100
1223
  def initialize(host, insecure, parent)
1101
1224
  begin
1102
1225
  if insecure
@@ -1112,6 +1235,8 @@ module SDM
1112
1235
  end
1113
1236
 
1114
1237
  # Create registers a new RoleGrant.
1238
+ #
1239
+ # Deprecated: use Role access rules instead.
1115
1240
  def create(
1116
1241
  role_grant,
1117
1242
  deadline: nil
@@ -1141,7 +1266,10 @@ module SDM
1141
1266
  resp
1142
1267
  end
1143
1268
 
1269
+ deprecate :create, :none, 2022, 6
1144
1270
  # Get reads one RoleGrant by ID.
1271
+ #
1272
+ # Deprecated: use Role access rules instead.
1145
1273
  def get(
1146
1274
  id,
1147
1275
  deadline: nil
@@ -1171,7 +1299,10 @@ module SDM
1171
1299
  resp
1172
1300
  end
1173
1301
 
1302
+ deprecate :get, :none, 2022, 6
1174
1303
  # Delete removes a RoleGrant by ID.
1304
+ #
1305
+ # Deprecated: use Role access rules instead.
1175
1306
  def delete(
1176
1307
  id,
1177
1308
  deadline: nil
@@ -1200,7 +1331,10 @@ module SDM
1200
1331
  resp
1201
1332
  end
1202
1333
 
1334
+ deprecate :delete, :none, 2022, 6
1203
1335
  # List gets a list of RoleGrants matching a given set of criteria.
1336
+ #
1337
+ # Deprecated: use Role access rules instead.
1204
1338
  def list(
1205
1339
  filter,
1206
1340
  *args,
@@ -1236,14 +1370,18 @@ module SDM
1236
1370
  }
1237
1371
  resp
1238
1372
  end
1373
+
1374
+ deprecate :list, :none, 2022, 6
1239
1375
  end
1240
1376
 
1241
- # Roles are tools for controlling user access to resources. Each Role holds a
1242
- # list of resources which they grant access to. Composite roles are a special
1243
- # type of Role which have no resource associations of their own, but instead
1244
- # grant access to the combined resources associated with a set of child roles.
1245
- # Each user can be a member of one Role or composite role.
1377
+ # A Role has a list of access rules which determine which Resources the members
1378
+ # of the Role have access to. An Account can be a member of multiple Roles via
1379
+ # AccountAttachments.
1380
+ #
1381
+ # See {Role}.
1246
1382
  class Roles
1383
+ extend Gem::Deprecate
1384
+
1247
1385
  def initialize(host, insecure, parent)
1248
1386
  begin
1249
1387
  if insecure
@@ -1318,7 +1456,7 @@ module SDM
1318
1456
  resp
1319
1457
  end
1320
1458
 
1321
- # Update patches a Role by ID.
1459
+ # Update replaces all the fields of a Role by ID.
1322
1460
  def update(
1323
1461
  role,
1324
1462
  deadline: nil
@@ -1416,7 +1554,17 @@ module SDM
1416
1554
  end
1417
1555
 
1418
1556
  # SecretStores are servers where resource secrets (passwords, keys) are stored.
1557
+ #
1558
+ # See:
1559
+ # {AWSStore}
1560
+ # {AzureStore}
1561
+ # {GCPStore}
1562
+ # {VaultAppRoleStore}
1563
+ # {VaultTLSStore}
1564
+ # {VaultTokenStore}
1419
1565
  class SecretStores
1566
+ extend Gem::Deprecate
1567
+
1420
1568
  def initialize(host, insecure, parent)
1421
1569
  begin
1422
1570
  if insecure
@@ -1490,7 +1638,7 @@ module SDM
1490
1638
  resp
1491
1639
  end
1492
1640
 
1493
- # Update patches a SecretStore by ID.
1641
+ # Update replaces all the fields of a SecretStore by ID.
1494
1642
  def update(
1495
1643
  secret_store,
1496
1644
  deadline: nil
data/lib/version CHANGED
@@ -13,5 +13,5 @@
13
13
  # limitations under the License.
14
14
  #
15
15
  module SDM
16
- VERSION = "1.0.32"
16
+ VERSION = "2.0.0"
17
17
  end
data/lib/version.rb CHANGED
@@ -13,5 +13,5 @@
13
13
  # limitations under the License.
14
14
  #
15
15
  module SDM
16
- VERSION = "1.0.32"
16
+ VERSION = "2.0.0"
17
17
  end