strongdm 15.31.0 → 15.35.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e315ae4b0a68e27c1998c6a4e7558203c13978045c78cc165119c372f348da66
-  data.tar.gz: 8dfbd8e9c3c1f6d0b07fbc898cbb9440987645bb1f612385a9ac954f72a5e377
+  metadata.gz: 8da7d96ac4cde341f23d6685e4696a8d8c9cc3dee72fdcbec268559fd00ffc24
+  data.tar.gz: 3bd3d813c9997c2cc4098cb6c9f7f38dc81a3cb425b69facbe76b47a9183faf1
 SHA512:
-  metadata.gz: efe65740abfa2a298cb4c30bf289368571dc09528871fec485f3f3d31921da80bd8d310b2598b104b93e506a19688c49d332193ae8f4337d598aac54c2219bc4
-  data.tar.gz: e976dca21694769e95839ec4414f89c2f14d11ff052b4d6e3fcfa1ac44a32ce96a51855280ea909571346aa3d57859637a3649666b57c0c012f8448e141f19d9
+  metadata.gz: 9dca3036f95ea7acd0de5bc6434d6e2200bb0c8cb606808feea1da0fc94c8c28bc29f125008ff80be0bb28b14914f86d0375b25d6abe6cdd265e0f839463419c
+  data.tar.gz: ba18cbe6e657908cccf7aaa4b209e51adccfd9aed9759a6de3fcd4e98900f9e803df7ab81c654de43747c46f05ffe667f5d69bdb2674612e5ff0e83ba75c385a

data/.git/ORIG_HEAD

@@ -1 +1 @@
-dd0e56c1b216e4c5828c092bc1bdc5c763804def
+cd129de1d73e1ab24098a9be54f50fc78cfd31b7

data/.git/logs/HEAD

@@ -1,3 +1,3 @@
-0000000000000000000000000000000000000000 dd0e56c1b216e4c5828c092bc1bdc5c763804def root <root@54b70ede765e.(none)> 1763139914 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
-dd0e56c1b216e4c5828c092bc1bdc5c763804def dd0e56c1b216e4c5828c092bc1bdc5c763804def root <root@54b70ede765e.(none)> 1763139914 +0000	checkout: moving from master to master
-dd0e56c1b216e4c5828c092bc1bdc5c763804def 79414c54d0317c82e4ab6ac180d492664ced9c3c root <root@54b70ede765e.(none)> 1763139914 +0000	merge origin/development: Fast-forward
+0000000000000000000000000000000000000000 cd129de1d73e1ab24098a9be54f50fc78cfd31b7 root <root@35bf8a378161.(none)> 1764117326 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+cd129de1d73e1ab24098a9be54f50fc78cfd31b7 cd129de1d73e1ab24098a9be54f50fc78cfd31b7 root <root@35bf8a378161.(none)> 1764117326 +0000	checkout: moving from master to master
+cd129de1d73e1ab24098a9be54f50fc78cfd31b7 b35d0e5ff63bf46264f4b6310ce05e2238917cef root <root@35bf8a378161.(none)> 1764117326 +0000	merge origin/development: Fast-forward

data/.git/logs/refs/heads/master

@@ -1,2 +1,2 @@
-0000000000000000000000000000000000000000 dd0e56c1b216e4c5828c092bc1bdc5c763804def root <root@54b70ede765e.(none)> 1763139914 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
-dd0e56c1b216e4c5828c092bc1bdc5c763804def 79414c54d0317c82e4ab6ac180d492664ced9c3c root <root@54b70ede765e.(none)> 1763139914 +0000	merge origin/development: Fast-forward
+0000000000000000000000000000000000000000 cd129de1d73e1ab24098a9be54f50fc78cfd31b7 root <root@35bf8a378161.(none)> 1764117326 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+cd129de1d73e1ab24098a9be54f50fc78cfd31b7 b35d0e5ff63bf46264f4b6310ce05e2238917cef root <root@35bf8a378161.(none)> 1764117326 +0000	merge origin/development: Fast-forward

data/.git/logs/refs/remotes/origin/HEAD

@@ -1 +1 @@
-0000000000000000000000000000000000000000 dd0e56c1b216e4c5828c092bc1bdc5c763804def root <root@54b70ede765e.(none)> 1763139914 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+0000000000000000000000000000000000000000 cd129de1d73e1ab24098a9be54f50fc78cfd31b7 root <root@35bf8a378161.(none)> 1764117326 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git

data/.git/packed-refs

@@ -1,6 +1,6 @@
 # pack-refs with: peeled fully-peeled sorted 
-79414c54d0317c82e4ab6ac180d492664ced9c3c refs/remotes/origin/development
-dd0e56c1b216e4c5828c092bc1bdc5c763804def refs/remotes/origin/master
+b35d0e5ff63bf46264f4b6310ce05e2238917cef refs/remotes/origin/development
+cd129de1d73e1ab24098a9be54f50fc78cfd31b7 refs/remotes/origin/master
 2e4fe8087177ddea9b3991ca499f758384839c89 refs/tags/untagged-84fd83a4484c785cce63
 04f604866214fab4d5663b5171a3e596331577bd refs/tags/v0.9.4
 6f9a7b75b345c65fb554884907b7060680c807b7 refs/tags/v0.9.5
@@ -120,6 +120,8 @@ a4fd017725511cf32effc6426ca74b714644d37d refs/tags/v15.25.0
 25679d89a3cf0c95ce09a35f00dd9bb6425e0946 refs/tags/v15.27.0
 a19a5670f1583260058d10160faeee46ef5c6346 refs/tags/v15.28.0
 dd0e56c1b216e4c5828c092bc1bdc5c763804def refs/tags/v15.29.0
+79414c54d0317c82e4ab6ac180d492664ced9c3c refs/tags/v15.31.0
+cd129de1d73e1ab24098a9be54f50fc78cfd31b7 refs/tags/v15.33.0
 cf3b15b82cb0c4229609c07c870c6cb4fd38ef75 refs/tags/v15.4.0
 0be2c5e7f7a90c49077548cb3a9bce234219b9f0 refs/tags/v15.5.0
 4b9cd43c5dda3f369b82b6a56132a5470ff9ff53 refs/tags/v15.6.0

data/.git/refs/heads/master

@@ -1 +1 @@
-79414c54d0317c82e4ab6ac180d492664ced9c3c
+b35d0e5ff63bf46264f4b6310ce05e2238917cef

data/lib/grpc/drivers_pb.rb

@@ -1725,6 +1725,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :lock_required, :bool, 11
       optional :port, :int32, 4
       optional :port_override, :int32, 3
+      optional :server_fqdn, :string, 7
       optional :sid, :string, 12
       optional :username, :string, 2
     end

data/lib/grpc/plumbing.rb

@@ -13474,6 +13474,7 @@ module SDM
       porcelain.port_override = (plumbing.port_override)
       porcelain.proxy_cluster_id = (plumbing.proxy_cluster_id)
       porcelain.secret_store_id = (plumbing.secret_store_id)
+      porcelain.server_fqdn = (plumbing.server_fqdn)
       porcelain.sid = (plumbing.sid)
       porcelain.subdomain = (plumbing.subdomain)
       porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
@@ -13500,6 +13501,7 @@ module SDM
       plumbing.port_override = (porcelain.port_override)
       plumbing.proxy_cluster_id = (porcelain.proxy_cluster_id)
       plumbing.secret_store_id = (porcelain.secret_store_id)
+      plumbing.server_fqdn = (porcelain.server_fqdn)
       plumbing.sid = (porcelain.sid)
       plumbing.subdomain = (porcelain.subdomain)
       plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
@@ -16343,6 +16345,9 @@ module SDM
       if porcelain.instance_of? PostgresEngine
         plumbing.postgres = convert_postgres_engine_to_plumbing(porcelain)
       end
+      if porcelain.instance_of? SqlserverEngine
+        plumbing.sqlserver = convert_sqlserver_engine_to_plumbing(porcelain)
+      end
       plumbing
     end
 
@@ -16362,6 +16367,9 @@ module SDM
       if plumbing.postgres != nil
         return convert_postgres_engine_to_porcelain(plumbing.postgres)
       end
+      if plumbing.sqlserver != nil
+        return convert_sqlserver_engine_to_porcelain(plumbing.sqlserver)
+      end
       raise UnknownError.new("unknown polymorphic type, please upgrade your SDK")
     end
     def self.convert_repeated_secret_engine_to_plumbing(porcelains)
@@ -17616,6 +17624,72 @@ module SDM
       end
       items
     end
+    def self.convert_sqlserver_engine_to_porcelain(plumbing)
+      if plumbing == nil
+        return nil
+      end
+      porcelain = SqlserverEngine.new()
+      porcelain.after_read_ttl = convert_duration_to_porcelain(plumbing.after_read_ttl)
+      porcelain.database = (plumbing.database)
+      porcelain.hostname = (plumbing.hostname)
+      porcelain.id = (plumbing.id)
+      porcelain.key_rotation_interval_days = (plumbing.key_rotation_interval_days)
+      porcelain.name = (plumbing.name)
+      porcelain.password = (plumbing.password)
+      porcelain.policy = convert_secret_engine_policy_to_porcelain(plumbing.policy)
+      porcelain.port = (plumbing.port)
+      porcelain.public_key = (plumbing.public_key)
+      porcelain.secret_store_id = (plumbing.secret_store_id)
+      porcelain.secret_store_root_path = (plumbing.secret_store_root_path)
+      porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
+      porcelain.tls = (plumbing.tls)
+      porcelain.tls_skip_verify = (plumbing.tls_skip_verify)
+      porcelain.ttl = convert_duration_to_porcelain(plumbing.ttl)
+      porcelain.username = (plumbing.username)
+      porcelain
+    end
+
+    def self.convert_sqlserver_engine_to_plumbing(porcelain)
+      if porcelain == nil
+        return nil
+      end
+      plumbing = V1::SqlserverEngine.new()
+      plumbing.after_read_ttl = convert_duration_to_plumbing(porcelain.after_read_ttl)
+      plumbing.database = (porcelain.database)
+      plumbing.hostname = (porcelain.hostname)
+      plumbing.id = (porcelain.id)
+      plumbing.key_rotation_interval_days = (porcelain.key_rotation_interval_days)
+      plumbing.name = (porcelain.name)
+      plumbing.password = (porcelain.password)
+      plumbing.policy = convert_secret_engine_policy_to_plumbing(porcelain.policy)
+      plumbing.port = (porcelain.port)
+      plumbing.public_key = (porcelain.public_key)
+      plumbing.secret_store_id = (porcelain.secret_store_id)
+      plumbing.secret_store_root_path = (porcelain.secret_store_root_path)
+      plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
+      plumbing.tls = (porcelain.tls)
+      plumbing.tls_skip_verify = (porcelain.tls_skip_verify)
+      plumbing.ttl = convert_duration_to_plumbing(porcelain.ttl)
+      plumbing.username = (porcelain.username)
+      plumbing
+    end
+    def self.convert_repeated_sqlserver_engine_to_plumbing(porcelains)
+      items = Array.new
+      porcelains.each do |porcelain|
+        plumbing = convert_sqlserver_engine_to_plumbing(porcelain)
+        items.append(plumbing)
+      end
+      items
+    end
+
+    def self.convert_repeated_sqlserver_engine_to_porcelain(plumbings)
+      items = Array.new
+      plumbings.each do |plumbing|
+        porcelain = convert_sqlserver_engine_to_porcelain(plumbing)
+        items.append(porcelain)
+      end
+      items
+    end
     def self.convert_strong_vault_store_to_porcelain(plumbing)
       if plumbing == nil
         return nil

data/lib/grpc/secret_engine_types_pb.rb

@@ -30,6 +30,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
         optional :key_value, :message, 331, "v1.KeyValueEngine"
         optional :mysql, :message, 334, "v1.MysqlEngine"
         optional :postgres, :message, 333, "v1.PostgresEngine"
+        optional :sqlserver, :message, 335, "v1.SqlserverEngine"
       end
     end
     add_message "v1.ActiveDirectoryEngine" do
@@ -106,6 +107,26 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :public_key, :bytes, 8
       optional :key_rotation_interval_days, :int32, 9
     end
+    add_message "v1.SqlserverEngine" do
+      optional :after_read_ttl, :message, 105, "google.protobuf.Duration"
+      optional :database, :string, 108
+      optional :hostname, :string, 101
+      optional :password, :string, 103
+      optional :policy, :message, 107, "v1.SecretEnginePolicy"
+      optional :port, :uint32, 104
+      optional :tls, :bool, 109
+      optional :tls_skip_verify, :bool, 1010
+      optional :ttl, :message, 106, "google.protobuf.Duration"
+      optional :username, :string, 102
+      optional :id, :string, 1
+      optional :name, :string, 2
+      optional :type, :string, 3
+      optional :secret_store_id, :string, 5
+      optional :secret_store_root_path, :string, 6
+      optional :tags, :message, 7, "v1.Tags"
+      optional :public_key, :bytes, 8
+      optional :key_rotation_interval_days, :int32, 9
+    end
   end
 end
 
@@ -115,4 +136,5 @@ module V1
   KeyValueEngine = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.KeyValueEngine").msgclass
   MysqlEngine = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.MysqlEngine").msgclass
   PostgresEngine = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.PostgresEngine").msgclass
+  SqlserverEngine = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.SqlserverEngine").msgclass
 end

data/lib/models/porcelain.rb

@@ -10877,7 +10877,6 @@ module SDM
     end
   end
 
-  # MysqlEngine is currently unstable, and its API may change, or it may be removed, without a major version bump.
   class MysqlEngine
     # The default time-to-live duration of the password after it's read. Once the ttl has passed, a password will be rotated.
     attr_accessor :after_read_ttl
@@ -12349,7 +12348,6 @@ module SDM
     end
   end
 
-  # PostgresEngine is currently unstable, and its API may change, or it may be removed, without a major version bump.
   class PostgresEngine
     # The default time-to-live duration of the password after it's read. Once the ttl has passed, a password will be rotated.
     attr_accessor :after_read_ttl
@@ -12995,7 +12993,7 @@ module SDM
   class RDPCert
     # The bind interface is the IP address to which the port override of a resource is bound (for example, 127.0.0.1). It is automatically generated if not provided and may also be set to one of the ResourceIPAllocationMode constants to select between VNM, loopback, or default allocation.
     attr_accessor :bind_interface
-    # Comma-separated list of Active Directory Domain Controller hostnames for LDAPS SID resolution. Utilized for strong certificate mapping in full enforcement mode when the identity alias does not specify a SID.
+    # Comma-separated list of Active Directory Domain Controller hostnames. Required in on-premises AD environments for Kerberos Network Level Authentication (NLA), and for LDAPS SID resolution for strong certificate mapping in full enforcement mode when the identity alias does not specify a SID. Unused for Entra ID.
     attr_accessor :dc_hostnames
     # A filter applied to the routing logic to pin datasource to nodes.
     attr_accessor :egress_filter
@@ -13005,7 +13003,7 @@ module SDM
     attr_accessor :hostname
     # Unique identifier of the Resource.
     attr_accessor :id
-    # The username to use for healthchecks, when clients otherwise connect with their own identity alias username.
+    # Username of the AD service account for health checks, and LDAPS SID resolution if necessary. Required for on-premises AD environments, unused for Entra ID.
     attr_accessor :identity_alias_healthcheck_username
     # The ID of the identity set to use for identity connections.
     attr_accessor :identity_set_id
@@ -13021,7 +13019,9 @@ module SDM
     attr_accessor :proxy_cluster_id
     # ID of the secret store containing credentials for this resource, if any.
     attr_accessor :secret_store_id
-    # Windows Security Identifier (SID) of the configured Username, required for strong certificate mapping in full enforcement mode.
+    # Fully-qualified DNS name of the target Windows server, including the AD domain. Must match the Service Principal Name (SPN) of the server in AD. Required in on-premises AD environments for Kerberos Network Level Authentication (NLA), unused for Entra ID.
+    attr_accessor :server_fqdn
+    # Windows Security Identifier (SID) of the configured Username, or AD service account if using LDAPS SID resolution. Required in on-premises AD environments for strong certificate mapping in full enforcement mode, unused for Entra ID.
     attr_accessor :sid
     # DNS subdomain through which this resource may be accessed on clients.  (e.g. "app-prod1" allows the resource to be accessed at "app-prod1.your-org-name.sdm-proxy-domain"). Only applicable to HTTP-based resources or resources using virtual networking mode.
     attr_accessor :subdomain
@@ -13045,6 +13045,7 @@ module SDM
       port_override: nil,
       proxy_cluster_id: nil,
       secret_store_id: nil,
+      server_fqdn: nil,
       sid: nil,
       subdomain: nil,
       tags: nil,
@@ -13064,6 +13065,7 @@ module SDM
       @port_override = port_override == nil ? 0 : port_override
       @proxy_cluster_id = proxy_cluster_id == nil ? "" : proxy_cluster_id
       @secret_store_id = secret_store_id == nil ? "" : secret_store_id
+      @server_fqdn = server_fqdn == nil ? "" : server_fqdn
       @sid = sid == nil ? "" : sid
       @subdomain = subdomain == nil ? "" : subdomain
       @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
@@ -16034,7 +16036,89 @@ module SDM
     end
   end
 
-  # StrongVaultStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
+  class SqlserverEngine
+    # The default time-to-live duration of the password after it's read. Once the ttl has passed, a password will be rotated.
+    attr_accessor :after_read_ttl
+    # Database is the database to verify credential against.
+    attr_accessor :database
+    # Hostname is the hostname or IP address of the SQL Server.
+    attr_accessor :hostname
+    # Unique identifier of the Secret Engine.
+    attr_accessor :id
+    # An interval of public/private key rotation for secret engine in days
+    attr_accessor :key_rotation_interval_days
+    # Unique human-readable name of the Secret Engine.
+    attr_accessor :name
+    # Password is the password to connect to the SQL Server server.
+    attr_accessor :password
+    # Policy for password creation
+    attr_accessor :policy
+    # Port is the port number of the SQL Server server.
+    attr_accessor :port
+    # Public key linked with a secret engine
+    attr_accessor :public_key
+    # Backing secret store identifier
+    attr_accessor :secret_store_id
+    # Backing Secret Store root path where managed secrets are going to be stored
+    attr_accessor :secret_store_root_path
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+    # TLS enables TLS/SSL when connecting to the SQL Server server.
+    attr_accessor :tls
+    # TLS disable certificate verification
+    attr_accessor :tls_skip_verify
+    # The default password time-to-live duration. Once the ttl has passed, a password will be rotated the next time it's requested.
+    attr_accessor :ttl
+    # Username is the username to connect to the SQL Server.
+    attr_accessor :username
+
+    def initialize(
+      after_read_ttl: nil,
+      database: nil,
+      hostname: nil,
+      id: nil,
+      key_rotation_interval_days: nil,
+      name: nil,
+      password: nil,
+      policy: nil,
+      port: nil,
+      public_key: nil,
+      secret_store_id: nil,
+      secret_store_root_path: nil,
+      tags: nil,
+      tls: nil,
+      tls_skip_verify: nil,
+      ttl: nil,
+      username: nil
+    )
+      @after_read_ttl = after_read_ttl == nil ? nil : after_read_ttl
+      @database = database == nil ? "" : database
+      @hostname = hostname == nil ? "" : hostname
+      @id = id == nil ? "" : id
+      @key_rotation_interval_days = key_rotation_interval_days == nil ? 0 : key_rotation_interval_days
+      @name = name == nil ? "" : name
+      @password = password == nil ? "" : password
+      @policy = policy == nil ? nil : policy
+      @port = port == nil ? 0 : port
+      @public_key = public_key == nil ? "" : public_key
+      @secret_store_id = secret_store_id == nil ? "" : secret_store_id
+      @secret_store_root_path = secret_store_root_path == nil ? "" : secret_store_root_path
+      @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
+      @tls = tls == nil ? false : tls
+      @tls_skip_verify = tls_skip_verify == nil ? false : tls_skip_verify
+      @ttl = ttl == nil ? nil : ttl
+      @username = username == nil ? "" : username
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   class StrongVaultStore
     # Unique identifier of the SecretStore.
     attr_accessor :id

data/lib/strongdm.rb

@@ -30,7 +30,7 @@ module SDM #:nodoc:
     DEFAULT_RETRY_FACTOR = 1.6
     DEFAULT_RETRY_JITTER = 0.2
     API_VERSION = "2025-04-14"
-    USER_AGENT = "strongdm-sdk-ruby/15.31.0"
+    USER_AGENT = "strongdm-sdk-ruby/15.35.0"
     private_constant :DEFAULT_BASE_RETRY_DELAY, :DEFAULT_MAX_RETRY_DELAY, :DEFAULT_RETRY_FACTOR, :DEFAULT_RETRY_JITTER, :API_VERSION, :USER_AGENT
 
     # Creates a new strongDM API client.

data/lib/svc.rb

@@ -6911,6 +6911,7 @@ module SDM #:nodoc:
   # {KeyValueEngine}
   # {MysqlEngine}
   # {PostgresEngine}
+  # {SqlserverEngine}
   class SecretEngines
     extend Gem::Deprecate
 

data/lib/version

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "15.31.0"
+  VERSION = "15.35.0"
 end

data/lib/version.rb

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "15.31.0"
+  VERSION = "15.35.0"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: strongdm
 version: !ruby/object:Gem::Version
-  version: 15.31.0
+  version: 15.35.0
 platform: ruby
 authors:
 - strongDM Team
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2025-11-14 00:00:00.000000000 Z
+date: 2025-11-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: grpc
@@ -81,8 +81,8 @@ files:
 - "./.git/logs/HEAD"
 - "./.git/logs/refs/heads/master"
 - "./.git/logs/refs/remotes/origin/HEAD"
-- "./.git/objects/pack/pack-46fa55c591044569a8751951056aa6c0ad02c32a.idx"
-- "./.git/objects/pack/pack-46fa55c591044569a8751951056aa6c0ad02c32a.pack"
+- "./.git/objects/pack/pack-911715a143f0754c8fa4d6fbac32bf31812209f2.idx"
+- "./.git/objects/pack/pack-911715a143f0754c8fa4d6fbac32bf31812209f2.pack"
 - "./.git/packed-refs"
 - "./.git/refs/heads/master"
 - "./.git/refs/remotes/origin/HEAD"