strongdm 15.26.0 → 15.28.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b01e7ac0f7ac8eaf26d9cf9776dd6d9c8dc58982859bd73125abfc8843c2c355
-  data.tar.gz: 29f4c992cfc6cb26bb2b92c185f022077a35e2f16a8fa165a435a135f6992c5e
+  metadata.gz: 8f1147223e088e14c3dd89ba96393938a1711c229baa9c7a0186469bfd2953bf
+  data.tar.gz: ddd4c1052c4a212ad31b7694595ab1bc824b622f0d54587cd286b3087ce3a532
 SHA512:
-  metadata.gz: 12512fb829b254c94c505944499177e3bdca0cc6105e3fef4abf9121f4046017af9f21ebe5d908946ee30d11634358c633cc5d6e840094607ec4a6c4f82d90e4
-  data.tar.gz: 6399418b23c2be60ff74bb8e3e0098b5577f1683b994a42b6215236102f3d94c872b109be7af377c33c6d71534ab4b5873a43bcd1f76048860f0747815ba5cf8
+  metadata.gz: 4a782248d81c18bd016d1aba9f7534fa46f289ddab40e2a7516d723851ca112060d5810cad794efd6d67a3497a9f84af8807c4d16f0d313f7415d6589ef9071c
+  data.tar.gz: 787d75924565bf28110d6e22ba8c75c7a8027f373541182e5e3edd6b7bfacc18ceef1a9fdfb10776d90a2008c408bea157120c7b364a14ca8d1b8d509bc6b425

data/.git/ORIG_HEAD

@@ -1 +1 @@
-a4fd017725511cf32effc6426ca74b714644d37d
+25679d89a3cf0c95ce09a35f00dd9bb6425e0946

data/.git/logs/HEAD

@@ -1,3 +1,3 @@
-0000000000000000000000000000000000000000 a4fd017725511cf32effc6426ca74b714644d37d root <root@9d9bdd5e04cb.(none)> 1761154434 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
-a4fd017725511cf32effc6426ca74b714644d37d a4fd017725511cf32effc6426ca74b714644d37d root <root@9d9bdd5e04cb.(none)> 1761154434 +0000	checkout: moving from master to master
-a4fd017725511cf32effc6426ca74b714644d37d 9a13de3384bb6d3b929209e8c93515c9a146bfc0 root <root@9d9bdd5e04cb.(none)> 1761154434 +0000	merge origin/development: Fast-forward
+0000000000000000000000000000000000000000 25679d89a3cf0c95ce09a35f00dd9bb6425e0946 root <root@9c364c0f1ac7.(none)> 1762804882 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+25679d89a3cf0c95ce09a35f00dd9bb6425e0946 25679d89a3cf0c95ce09a35f00dd9bb6425e0946 root <root@9c364c0f1ac7.(none)> 1762804882 +0000	checkout: moving from master to master
+25679d89a3cf0c95ce09a35f00dd9bb6425e0946 a19a5670f1583260058d10160faeee46ef5c6346 root <root@9c364c0f1ac7.(none)> 1762804882 +0000	merge origin/development: Fast-forward

data/.git/logs/refs/heads/master

@@ -1,2 +1,2 @@
-0000000000000000000000000000000000000000 a4fd017725511cf32effc6426ca74b714644d37d root <root@9d9bdd5e04cb.(none)> 1761154434 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
-a4fd017725511cf32effc6426ca74b714644d37d 9a13de3384bb6d3b929209e8c93515c9a146bfc0 root <root@9d9bdd5e04cb.(none)> 1761154434 +0000	merge origin/development: Fast-forward
+0000000000000000000000000000000000000000 25679d89a3cf0c95ce09a35f00dd9bb6425e0946 root <root@9c364c0f1ac7.(none)> 1762804882 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+25679d89a3cf0c95ce09a35f00dd9bb6425e0946 a19a5670f1583260058d10160faeee46ef5c6346 root <root@9c364c0f1ac7.(none)> 1762804882 +0000	merge origin/development: Fast-forward

data/.git/logs/refs/remotes/origin/HEAD

@@ -1 +1 @@
-0000000000000000000000000000000000000000 a4fd017725511cf32effc6426ca74b714644d37d root <root@9d9bdd5e04cb.(none)> 1761154434 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+0000000000000000000000000000000000000000 25679d89a3cf0c95ce09a35f00dd9bb6425e0946 root <root@9c364c0f1ac7.(none)> 1762804882 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git

data/.git/packed-refs

@@ -1,6 +1,6 @@
 # pack-refs with: peeled fully-peeled sorted 
-9a13de3384bb6d3b929209e8c93515c9a146bfc0 refs/remotes/origin/development
-a4fd017725511cf32effc6426ca74b714644d37d refs/remotes/origin/master
+a19a5670f1583260058d10160faeee46ef5c6346 refs/remotes/origin/development
+25679d89a3cf0c95ce09a35f00dd9bb6425e0946 refs/remotes/origin/master
 2e4fe8087177ddea9b3991ca499f758384839c89 refs/tags/untagged-84fd83a4484c785cce63
 04f604866214fab4d5663b5171a3e596331577bd refs/tags/v0.9.4
 6f9a7b75b345c65fb554884907b7060680c807b7 refs/tags/v0.9.5
@@ -116,6 +116,8 @@ ac9b86121b9542f28b614f897f7a61f34363410b refs/tags/v15.10.0
 dbc1e295841d51376c44f987d9eecf5c8427c478 refs/tags/v15.22.0
 1fb12400f09101921542776d3887b93103dd9c5f refs/tags/v15.23.0
 a4fd017725511cf32effc6426ca74b714644d37d refs/tags/v15.25.0
+9a13de3384bb6d3b929209e8c93515c9a146bfc0 refs/tags/v15.26.0
+25679d89a3cf0c95ce09a35f00dd9bb6425e0946 refs/tags/v15.27.0
 cf3b15b82cb0c4229609c07c870c6cb4fd38ef75 refs/tags/v15.4.0
 0be2c5e7f7a90c49077548cb3a9bce234219b9f0 refs/tags/v15.5.0
 4b9cd43c5dda3f369b82b6a56132a5470ff9ff53 refs/tags/v15.6.0

data/.git/refs/heads/master

@@ -1 +1 @@
-9a13de3384bb6d3b929209e8c93515c9a146bfc0
+a19a5670f1583260058d10160faeee46ef5c6346

data/lib/grpc/drivers_pb.rb

@@ -75,6 +75,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
         optional :dynamo_dbiam, :message, 501, "v1.DynamoDBIAM"
         optional :elastic, :message, 601, "v1.Elastic"
         optional :elasticache_redis, :message, 1601, "v1.ElasticacheRedis"
+        optional :elasticache_redis_iam, :message, 1603, "v1.ElasticacheRedisIAM"
         optional :entra_id, :message, 2803, "v1.EntraID"
         optional :gcp, :message, 2700, "v1.GCP"
         optional :gcp_console, :message, 3300, "v1.GCPConsole"
@@ -1047,6 +1048,25 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :tls_required, :bool, 5
       optional :username, :string, 6
     end
+    add_message "v1.ElasticacheRedisIAM" do
+      optional :id, :string, 32768
+      optional :name, :string, 32769
+      optional :healthy, :bool, 32770
+      optional :tags, :message, 32771, "v1.Tags"
+      optional :secret_store_id, :string, 32772
+      optional :egress_filter, :string, 32773
+      optional :bind_interface, :string, 32774
+      optional :proxy_cluster_id, :string, 32776
+      optional :subdomain, :string, 32775
+      optional :hostname, :string, 1
+      optional :port, :int32, 5
+      optional :port_override, :int32, 2
+      optional :region, :string, 9
+      optional :role_assumption_arn, :string, 10
+      optional :role_external_id, :string, 11
+      optional :tls_required, :bool, 6
+      optional :username, :string, 3
+    end
     add_message "v1.EntraID" do
       optional :id, :string, 32768
       optional :name, :string, 32769
@@ -1680,6 +1700,8 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :subdomain, :string, 32775
       optional :downgrade_nla_connections, :bool, 6
       optional :hostname, :string, 1
+      optional :identity_alias_healthcheck_username, :string, 12
+      optional :identity_set_id, :string, 11
       optional :lock_required, :bool, 10
       optional :password, :string, 3
       optional :port, :int32, 5
@@ -2177,6 +2199,7 @@ module V1
   DynamoDBIAM = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DynamoDBIAM").msgclass
   Elastic = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.Elastic").msgclass
   ElasticacheRedis = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.ElasticacheRedis").msgclass
+  ElasticacheRedisIAM = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.ElasticacheRedisIAM").msgclass
   EntraID = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.EntraID").msgclass
   GCP = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.GCP").msgclass
   GCPConsole = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.GCPConsole").msgclass

data/lib/grpc/nodes_pb.rb

@@ -70,6 +70,18 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       repeated :nodes, :message, 2, "v1.Node"
       optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
     end
+    add_message "v1.NodeTCPProbeRequest" do
+      optional :meta, :message, 1, "v1.CreateRequestMetadata"
+      optional :node_id, :string, 2
+      optional :host, :string, 3
+      optional :port, :int32, 4
+    end
+    add_message "v1.NodeTCPProbeResponse" do
+      optional :meta, :message, 1, "v1.CreateResponseMetadata"
+      optional :succeeded, :bool, 2
+      optional :error, :string, 3
+      optional :rate_limit, :message, 4, "v1.RateLimitMetadata"
+    end
     add_message "v1.Node" do
       oneof :node do
         optional :relay, :message, 1, "v1.Relay"
@@ -139,6 +151,8 @@ module V1
   NodeDeleteResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.NodeDeleteResponse").msgclass
   NodeListRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.NodeListRequest").msgclass
   NodeListResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.NodeListResponse").msgclass
+  NodeTCPProbeRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.NodeTCPProbeRequest").msgclass
+  NodeTCPProbeResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.NodeTCPProbeResponse").msgclass
   Node = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.Node").msgclass
   Relay = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.Relay").msgclass
   Gateway = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.Gateway").msgclass

data/lib/grpc/nodes_services_pb.rb

@@ -20,9 +20,11 @@ require "nodes_pb"
 
 module V1
   module Nodes
-    # Nodes make up the strongDM network, and allow your users to connect securely to your resources. There are two types of nodes:
-    # - **Gateways** are the entry points into network. They listen for connection from the strongDM client, and provide access to databases and servers.
-    # - **Relays** are used to extend the strongDM network into segmented subnets. They provide access to databases and servers but do not listen for incoming connections.
+    # Nodes make up the StrongDM network, and allow your users to connect securely to your resources.
+    # There are three types of nodes:
+    # 1. **Relay:** creates connectivity to your datasources, while maintaining the egress-only nature of your firewall
+    # 2. **Gateway:** a relay that also listens for connections from StrongDM clients
+    # 3. **Proxy Cluster:** a cluster of workers that together mediate access from clients to resources
     class Service
       include ::GRPC::GenericService
 
@@ -40,6 +42,9 @@ module V1
       rpc :Delete, ::V1::NodeDeleteRequest, ::V1::NodeDeleteResponse
       # List gets a list of Nodes matching a given set of criteria.
       rpc :List, ::V1::NodeListRequest, ::V1::NodeListResponse
+      # TCPProbe instructs a Node to connect to an address via TCP and report the
+      # result.
+      rpc :TCPProbe, ::V1::NodeTCPProbeRequest, ::V1::NodeTCPProbeResponse
     end
 
     Stub = Service.rpc_stub_class

data/lib/grpc/options_pb.rb

@@ -36,6 +36,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :url, :string, 1941301
       optional :deprecation_date, :string, 1941302
       repeated :targets, :string, 1941401
+      optional :custom, :message, 1941305, "v1.CustomOptions"
     end
     add_message "v1.MessageOptions" do
       optional :porcelain, :bool, 1941301

data/lib/grpc/plumbing.rb

@@ -6430,6 +6430,72 @@ module SDM
       end
       items
     end
+    def self.convert_elasticache_redis_iam_to_porcelain(plumbing)
+      if plumbing == nil
+        return nil
+      end
+      porcelain = ElasticacheRedisIAM.new()
+      porcelain.bind_interface = (plumbing.bind_interface)
+      porcelain.egress_filter = (plumbing.egress_filter)
+      porcelain.healthy = (plumbing.healthy)
+      porcelain.hostname = (plumbing.hostname)
+      porcelain.id = (plumbing.id)
+      porcelain.name = (plumbing.name)
+      porcelain.port = (plumbing.port)
+      porcelain.port_override = (plumbing.port_override)
+      porcelain.proxy_cluster_id = (plumbing.proxy_cluster_id)
+      porcelain.region = (plumbing.region)
+      porcelain.role_assumption_arn = (plumbing.role_assumption_arn)
+      porcelain.role_external_id = (plumbing.role_external_id)
+      porcelain.secret_store_id = (plumbing.secret_store_id)
+      porcelain.subdomain = (plumbing.subdomain)
+      porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
+      porcelain.tls_required = (plumbing.tls_required)
+      porcelain.username = (plumbing.username)
+      porcelain
+    end
+
+    def self.convert_elasticache_redis_iam_to_plumbing(porcelain)
+      if porcelain == nil
+        return nil
+      end
+      plumbing = V1::ElasticacheRedisIAM.new()
+      plumbing.bind_interface = (porcelain.bind_interface)
+      plumbing.egress_filter = (porcelain.egress_filter)
+      plumbing.healthy = (porcelain.healthy)
+      plumbing.hostname = (porcelain.hostname)
+      plumbing.id = (porcelain.id)
+      plumbing.name = (porcelain.name)
+      plumbing.port = (porcelain.port)
+      plumbing.port_override = (porcelain.port_override)
+      plumbing.proxy_cluster_id = (porcelain.proxy_cluster_id)
+      plumbing.region = (porcelain.region)
+      plumbing.role_assumption_arn = (porcelain.role_assumption_arn)
+      plumbing.role_external_id = (porcelain.role_external_id)
+      plumbing.secret_store_id = (porcelain.secret_store_id)
+      plumbing.subdomain = (porcelain.subdomain)
+      plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
+      plumbing.tls_required = (porcelain.tls_required)
+      plumbing.username = (porcelain.username)
+      plumbing
+    end
+    def self.convert_repeated_elasticache_redis_iam_to_plumbing(porcelains)
+      items = Array.new
+      porcelains.each do |porcelain|
+        plumbing = convert_elasticache_redis_iam_to_plumbing(porcelain)
+        items.append(plumbing)
+      end
+      items
+    end
+
+    def self.convert_repeated_elasticache_redis_iam_to_porcelain(plumbings)
+      items = Array.new
+      plumbings.each do |plumbing|
+        porcelain = convert_elasticache_redis_iam_to_porcelain(plumbing)
+        items.append(porcelain)
+      end
+      items
+    end
     def self.convert_entra_id_to_porcelain(plumbing)
       if plumbing == nil
         return nil
@@ -11519,6 +11585,46 @@ module SDM
       end
       items
     end
+    def self.convert_node_tcp_probe_response_to_porcelain(plumbing)
+      if plumbing == nil
+        return nil
+      end
+      porcelain = NodeTCPProbeResponse.new()
+      porcelain.error = (plumbing.error)
+      porcelain.meta = convert_create_response_metadata_to_porcelain(plumbing.meta)
+      porcelain.rate_limit = convert_rate_limit_metadata_to_porcelain(plumbing.rate_limit)
+      porcelain.succeeded = (plumbing.succeeded)
+      porcelain
+    end
+
+    def self.convert_node_tcp_probe_response_to_plumbing(porcelain)
+      if porcelain == nil
+        return nil
+      end
+      plumbing = V1::NodeTCPProbeResponse.new()
+      plumbing.error = (porcelain.error)
+      plumbing.meta = convert_create_response_metadata_to_plumbing(porcelain.meta)
+      plumbing.rate_limit = convert_rate_limit_metadata_to_plumbing(porcelain.rate_limit)
+      plumbing.succeeded = (porcelain.succeeded)
+      plumbing
+    end
+    def self.convert_repeated_node_tcp_probe_response_to_plumbing(porcelains)
+      items = Array.new
+      porcelains.each do |porcelain|
+        plumbing = convert_node_tcp_probe_response_to_plumbing(porcelain)
+        items.append(plumbing)
+      end
+      items
+    end
+
+    def self.convert_repeated_node_tcp_probe_response_to_porcelain(plumbings)
+      items = Array.new
+      plumbings.each do |plumbing|
+        porcelain = convert_node_tcp_probe_response_to_porcelain(plumbing)
+        items.append(porcelain)
+      end
+      items
+    end
     def self.convert_node_update_response_to_porcelain(plumbing)
       if plumbing == nil
         return nil
@@ -13226,6 +13332,8 @@ module SDM
       porcelain.healthy = (plumbing.healthy)
       porcelain.hostname = (plumbing.hostname)
       porcelain.id = (plumbing.id)
+      porcelain.identity_alias_healthcheck_username = (plumbing.identity_alias_healthcheck_username)
+      porcelain.identity_set_id = (plumbing.identity_set_id)
       porcelain.lock_required = (plumbing.lock_required)
       porcelain.name = (plumbing.name)
       porcelain.password = (plumbing.password)
@@ -13250,6 +13358,8 @@ module SDM
       plumbing.healthy = (porcelain.healthy)
       plumbing.hostname = (porcelain.hostname)
       plumbing.id = (porcelain.id)
+      plumbing.identity_alias_healthcheck_username = (porcelain.identity_alias_healthcheck_username)
+      plumbing.identity_set_id = (porcelain.identity_set_id)
       plumbing.lock_required = (porcelain.lock_required)
       plumbing.name = (porcelain.name)
       plumbing.password = (porcelain.password)
@@ -14563,6 +14673,9 @@ module SDM
       if porcelain.instance_of? ElasticacheRedis
         plumbing.elasticache_redis = convert_elasticache_redis_to_plumbing(porcelain)
       end
+      if porcelain.instance_of? ElasticacheRedisIAM
+        plumbing.elasticache_redis_iam = convert_elasticache_redis_iam_to_plumbing(porcelain)
+      end
       if porcelain.instance_of? EntraID
         plumbing.entra_id = convert_entra_id_to_plumbing(porcelain)
       end
@@ -14900,6 +15013,9 @@ module SDM
       if plumbing.elasticache_redis != nil
         return convert_elasticache_redis_to_porcelain(plumbing.elasticache_redis)
       end
+      if plumbing.elasticache_redis_iam != nil
+        return convert_elasticache_redis_iam_to_porcelain(plumbing.elasticache_redis_iam)
+      end
       if plumbing.entra_id != nil
         return convert_entra_id_to_porcelain(plumbing.entra_id)
       end

data/lib/models/porcelain.rb

@@ -6352,6 +6352,90 @@ module SDM
     end
   end
 
+  # ElasticacheRedisIAM is currently unstable, and its API may change, or it may be removed, without a major version bump.
+  class ElasticacheRedisIAM
+    # The bind interface is the IP address to which the port override of a resource is bound (for example, 127.0.0.1). It is automatically generated if not provided and may also be set to one of the ResourceIPAllocationMode constants to select between VNM, loopback, or default allocation.
+    attr_accessor :bind_interface
+    # A filter applied to the routing logic to pin datasource to nodes.
+    attr_accessor :egress_filter
+    # True if the datasource is reachable and the credentials are valid.
+    attr_accessor :healthy
+    # The host to dial to initiate a connection from the egress node to this resource.
+    attr_accessor :hostname
+    # Unique identifier of the Resource.
+    attr_accessor :id
+    # Unique human-readable name of the Resource.
+    attr_accessor :name
+    # The port to dial to initiate a connection from the egress node to this resource.
+    attr_accessor :port
+    # The local port used by clients to connect to this resource. It is automatically generated if not provided on create and may be re-generated on update by specifying a value of -1.
+    attr_accessor :port_override
+    # ID of the proxy cluster for this resource, if any.
+    attr_accessor :proxy_cluster_id
+    # AWS region is needed in addition to hostname to generate the IAM signature
+    attr_accessor :region
+    # If provided, the gateway/relay will try to assume this role instead of the underlying compute's role.
+    attr_accessor :role_assumption_arn
+    # The external ID to associate with assume role requests. Does nothing if a role ARN is not provided.
+    attr_accessor :role_external_id
+    # ID of the secret store containing credentials for this resource, if any.
+    attr_accessor :secret_store_id
+    # DNS subdomain through which this resource may be accessed on clients.  (e.g. "app-prod1" allows the resource to be accessed at "app-prod1.your-org-name.sdm-proxy-domain"). Only applicable to HTTP-based resources or resources using virtual networking mode.
+    attr_accessor :subdomain
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+    # If set, TLS must be used to connect to this resource.
+    attr_accessor :tls_required
+    # The username to authenticate with.
+    attr_accessor :username
+
+    def initialize(
+      bind_interface: nil,
+      egress_filter: nil,
+      healthy: nil,
+      hostname: nil,
+      id: nil,
+      name: nil,
+      port: nil,
+      port_override: nil,
+      proxy_cluster_id: nil,
+      region: nil,
+      role_assumption_arn: nil,
+      role_external_id: nil,
+      secret_store_id: nil,
+      subdomain: nil,
+      tags: nil,
+      tls_required: nil,
+      username: nil
+    )
+      @bind_interface = bind_interface == nil ? "" : bind_interface
+      @egress_filter = egress_filter == nil ? "" : egress_filter
+      @healthy = healthy == nil ? false : healthy
+      @hostname = hostname == nil ? "" : hostname
+      @id = id == nil ? "" : id
+      @name = name == nil ? "" : name
+      @port = port == nil ? 0 : port
+      @port_override = port_override == nil ? 0 : port_override
+      @proxy_cluster_id = proxy_cluster_id == nil ? "" : proxy_cluster_id
+      @region = region == nil ? "" : region
+      @role_assumption_arn = role_assumption_arn == nil ? "" : role_assumption_arn
+      @role_external_id = role_external_id == nil ? "" : role_external_id
+      @secret_store_id = secret_store_id == nil ? "" : secret_store_id
+      @subdomain = subdomain == nil ? "" : subdomain
+      @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
+      @tls_required = tls_required == nil ? false : tls_required
+      @username = username == nil ? "" : username
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   class EntraID
     # The bind interface is the IP address to which the port override of a resource is bound (for example, 127.0.0.1). It is automatically generated if not provided and may also be set to one of the ResourceIPAllocationMode constants to select between VNM, loopback, or default allocation.
     attr_accessor :bind_interface
@@ -11091,6 +11175,38 @@ module SDM
     end
   end
 
+  # NodeTCPProbeResponse reports the result of a TCP probe.
+  class NodeTCPProbeResponse
+    # The connection error reported by the node, or the empty string if the probe succeeded.
+    attr_accessor :error
+    # Reserved for future use.
+    attr_accessor :meta
+    # Rate limit information.
+    attr_accessor :rate_limit
+    # True if the node was able to connect to the target address.
+    attr_accessor :succeeded
+
+    def initialize(
+      error: nil,
+      meta: nil,
+      rate_limit: nil,
+      succeeded: nil
+    )
+      @error = error == nil ? "" : error
+      @meta = meta == nil ? nil : meta
+      @rate_limit = rate_limit == nil ? nil : rate_limit
+      @succeeded = succeeded == nil ? false : succeeded
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   # NodeUpdateResponse returns the fields of a Node after it has been updated by
   # a NodeUpdateRequest.
   class NodeUpdateResponse
@@ -12718,6 +12834,10 @@ module SDM
     attr_accessor :hostname
     # Unique identifier of the Resource.
     attr_accessor :id
+    # The username to use for healthchecks, when clients otherwise connect with their own identity alias username.
+    attr_accessor :identity_alias_healthcheck_username
+    # if provided use identity_set to map username to secret store path
+    attr_accessor :identity_set_id
     # When set, require a resource lock to access the resource to ensure it can only be used by one user at a time.
     attr_accessor :lock_required
     # Unique human-readable name of the Resource.
@@ -12746,6 +12866,8 @@ module SDM
       healthy: nil,
       hostname: nil,
       id: nil,
+      identity_alias_healthcheck_username: nil,
+      identity_set_id: nil,
       lock_required: nil,
       name: nil,
       password: nil,
@@ -12763,6 +12885,8 @@ module SDM
       @healthy = healthy == nil ? false : healthy
       @hostname = hostname == nil ? "" : hostname
       @id = id == nil ? "" : id
+      @identity_alias_healthcheck_username = identity_alias_healthcheck_username == nil ? "" : identity_alias_healthcheck_username
+      @identity_set_id = identity_set_id == nil ? "" : identity_set_id
       @lock_required = lock_required == nil ? false : lock_required
       @name = name == nil ? "" : name
       @password = password == nil ? "" : password

data/lib/strongdm.rb

@@ -30,7 +30,7 @@ module SDM #:nodoc:
     DEFAULT_RETRY_FACTOR = 1.6
     DEFAULT_RETRY_JITTER = 0.2
     API_VERSION = "2025-04-14"
-    USER_AGENT = "strongdm-sdk-ruby/15.26.0"
+    USER_AGENT = "strongdm-sdk-ruby/15.28.0"
     private_constant :DEFAULT_BASE_RETRY_DELAY, :DEFAULT_MAX_RETRY_DELAY, :DEFAULT_RETRY_FACTOR, :DEFAULT_RETRY_JITTER, :API_VERSION, :USER_AGENT
 
     # Creates a new strongDM API client.
@@ -380,9 +380,11 @@ module SDM #:nodoc:
     #
     # See {ManagedSecrets}.
     attr_reader :managed_secrets
-    # Nodes make up the strongDM network, and allow your users to connect securely to your resources. There are two types of nodes:
-    # - **Gateways** are the entry points into network. They listen for connection from the strongDM client, and provide access to databases and servers.
-    # - **Relays** are used to extend the strongDM network into segmented subnets. They provide access to databases and servers but do not listen for incoming connections.
+    # Nodes make up the StrongDM network, and allow your users to connect securely to your resources.
+    # There are three types of nodes:
+    # 1. **Relay:** creates connectivity to your datasources, while maintaining the egress-only nature of your firewall
+    # 2. **Gateway:** a relay that also listens for connections from StrongDM clients
+    # 3. **Proxy Cluster:** a cluster of workers that together mediate access from clients to resources
     #
     # See {Nodes}.
     attr_reader :nodes
@@ -694,9 +696,11 @@ module SDM #:nodoc:
     #
     # See {SnapshotIdentitySets}.
     attr_reader :identity_sets
-    # Nodes make up the strongDM network, and allow your users to connect securely to your resources. There are two types of nodes:
-    # - **Gateways** are the entry points into network. They listen for connection from the strongDM client, and provide access to databases and servers.
-    # - **Relays** are used to extend the strongDM network into segmented subnets. They provide access to databases and servers but do not listen for incoming connections.
+    # Nodes make up the StrongDM network, and allow your users to connect securely to your resources.
+    # There are three types of nodes:
+    # 1. **Relay:** creates connectivity to your datasources, while maintaining the egress-only nature of your firewall
+    # 2. **Gateway:** a relay that also listens for connections from StrongDM clients
+    # 3. **Proxy Cluster:** a cluster of workers that together mediate access from clients to resources
     #
     # See {SnapshotNodes}.
     attr_reader :nodes

data/lib/svc.rb

@@ -4061,9 +4061,11 @@ module SDM #:nodoc:
     end
   end
 
-  # Nodes make up the strongDM network, and allow your users to connect securely to your resources. There are two types of nodes:
-  # - **Gateways** are the entry points into network. They listen for connection from the strongDM client, and provide access to databases and servers.
-  # - **Relays** are used to extend the strongDM network into segmented subnets. They provide access to databases and servers but do not listen for incoming connections.
+  # Nodes make up the StrongDM network, and allow your users to connect securely to your resources.
+  # There are three types of nodes:
+  # 1. **Relay:** creates connectivity to your datasources, while maintaining the egress-only nature of your firewall
+  # 2. **Gateway:** a relay that also listens for connections from StrongDM clients
+  # 3. **Proxy Cluster:** a cluster of workers that together mediate access from clients to resources
   #
   # See:
   # {Gateway}
@@ -4243,6 +4245,42 @@ module SDM #:nodoc:
       }
       resp
     end
+
+    # TCPProbe instructs a Node to connect to an address via TCP and report the
+    # result.
+    def tcp_probe(
+      node_id,
+      host,
+      port,
+      deadline: nil
+    )
+      req = V1::NodeTCPProbeRequest.new()
+
+      req.node_id = (node_id)
+      req.host = (host)
+      req.port = (port)
+      tries = 0
+      plumbing_response = nil
+      loop do
+        begin
+          plumbing_response = @stub.tcp_probe(req, metadata: @parent.get_metadata("Nodes.TCPProbe", req), deadline: deadline)
+        rescue => exception
+          if (@parent.shouldRetry(tries, exception, deadline))
+            tries + +sleep(@parent.exponentialBackoff(tries, deadline))
+            next
+          end
+          raise Plumbing::convert_error_to_porcelain(exception)
+        end
+        break
+      end
+
+      resp = NodeTCPProbeResponse.new()
+      resp.error = (plumbing_response.error)
+      resp.meta = Plumbing::convert_create_response_metadata_to_porcelain(plumbing_response.meta)
+      resp.rate_limit = Plumbing::convert_rate_limit_metadata_to_porcelain(plumbing_response.rate_limit)
+      resp.succeeded = (plumbing_response.succeeded)
+      resp
+    end
   end
 
   # SnapshotNodes exposes the read only methods of the Nodes
@@ -6045,6 +6083,7 @@ module SDM #:nodoc:
   # {DynamoDBIAM}
   # {Elastic}
   # {ElasticacheRedis}
+  # {ElasticacheRedisIAM}
   # {EntraID}
   # {GCP}
   # {GCPConsole}

data/lib/version

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "15.26.0"
+  VERSION = "15.28.0"
 end

data/lib/version.rb

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "15.26.0"
+  VERSION = "15.28.0"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: strongdm
 version: !ruby/object:Gem::Version
-  version: 15.26.0
+  version: 15.28.0
 platform: ruby
 authors:
 - strongDM Team
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2025-10-22 00:00:00.000000000 Z
+date: 2025-11-10 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: grpc
@@ -81,8 +81,8 @@ files:
 - "./.git/logs/HEAD"
 - "./.git/logs/refs/heads/master"
 - "./.git/logs/refs/remotes/origin/HEAD"
-- "./.git/objects/pack/pack-c7c08cb7bc1b28fe985a95fcfab51cb58c8e3705.idx"
-- "./.git/objects/pack/pack-c7c08cb7bc1b28fe985a95fcfab51cb58c8e3705.pack"
+- "./.git/objects/pack/pack-57422f9648cd00a4b26afeacb8a0ba4bd5eb4b5b.idx"
+- "./.git/objects/pack/pack-57422f9648cd00a4b26afeacb8a0ba4bd5eb4b5b.pack"
 - "./.git/packed-refs"
 - "./.git/refs/heads/master"
 - "./.git/refs/remotes/origin/HEAD"