strongdm 16.22.0 → 17.0.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/.git/ORIG_HEAD +1 -1
- data/.git/index +0 -0
- data/.git/logs/HEAD +3 -3
- data/.git/logs/refs/heads/master +2 -2
- data/.git/logs/refs/remotes/origin/HEAD +1 -1
- data/.git/objects/pack/{pack-b4df90912917e3986cae2de93d3ca557ab8009dc.idx → pack-2b3a98dd411fb2f220e84b6a7db232844fd9733f.idx} +0 -0
- data/.git/objects/pack/{pack-b4df90912917e3986cae2de93d3ca557ab8009dc.pack → pack-2b3a98dd411fb2f220e84b6a7db232844fd9733f.pack} +0 -0
- data/.git/packed-refs +4 -2
- data/.git/refs/heads/master +1 -1
- data/lib/constants.rb +8 -0
- data/lib/grpc/authorization_policies_pb.rb +45 -45
- data/lib/grpc/drivers_pb.rb +4 -0
- data/lib/grpc/managed_secrets_pb.rb +1 -0
- data/lib/grpc/plumbing.rb +10 -0
- data/lib/models/porcelain.rb +23 -3
- data/lib/strongdm.rb +1 -1
- data/lib/version +1 -1
- data/lib/version.rb +1 -1
- metadata +4 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 1772f0266b5e5048b02174a11ff504d9a92461c86f754c926bcb7d1f05eb102d
|
|
4
|
+
data.tar.gz: 8a6888ea06961b5b01665ef11f3e03579af8c01481d8026e88ff078d7ea3334f
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 66a0c3060d36905296b7c24266f2e83c9850d35d4a2d7b1e2ed29254140ceeae9ed1c7608b9b6bf696ce86f42f5919b897ed9d40abd0c8bce9432530acdfa085
|
|
7
|
+
data.tar.gz: bf71cc50ef7938d41a00a23b08f44e90c1e6dd2e4863751fcb2cdfcfb888434dec7cbf6eed250bea80c2540c9c8de151a8c4da28c32c7792465e125d8cb93298
|
data/.git/ORIG_HEAD
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
|
|
1
|
+
ac72c45893602af2c60a5b76196cf853552c2470
|
data/.git/index
CHANGED
|
Binary file
|
data/.git/logs/HEAD
CHANGED
|
@@ -1,3 +1,3 @@
|
|
|
1
|
-
0000000000000000000000000000000000000000
|
|
2
|
-
|
|
3
|
-
|
|
1
|
+
0000000000000000000000000000000000000000 ac72c45893602af2c60a5b76196cf853552c2470 root <root@8efc6f76ae9e.(none)> 1776424041 +0000 clone: from github.com:strongdm/strongdm-sdk-ruby.git
|
|
2
|
+
ac72c45893602af2c60a5b76196cf853552c2470 ac72c45893602af2c60a5b76196cf853552c2470 root <root@8efc6f76ae9e.(none)> 1776424041 +0000 checkout: moving from master to master
|
|
3
|
+
ac72c45893602af2c60a5b76196cf853552c2470 5f7f719a5c803d95cebb885aebb5dc5161e14c00 root <root@8efc6f76ae9e.(none)> 1776424041 +0000 merge origin/development: Fast-forward
|
data/.git/logs/refs/heads/master
CHANGED
|
@@ -1,2 +1,2 @@
|
|
|
1
|
-
0000000000000000000000000000000000000000
|
|
2
|
-
|
|
1
|
+
0000000000000000000000000000000000000000 ac72c45893602af2c60a5b76196cf853552c2470 root <root@8efc6f76ae9e.(none)> 1776424041 +0000 clone: from github.com:strongdm/strongdm-sdk-ruby.git
|
|
2
|
+
ac72c45893602af2c60a5b76196cf853552c2470 5f7f719a5c803d95cebb885aebb5dc5161e14c00 root <root@8efc6f76ae9e.(none)> 1776424041 +0000 merge origin/development: Fast-forward
|
|
@@ -1 +1 @@
|
|
|
1
|
-
0000000000000000000000000000000000000000
|
|
1
|
+
0000000000000000000000000000000000000000 ac72c45893602af2c60a5b76196cf853552c2470 root <root@8efc6f76ae9e.(none)> 1776424041 +0000 clone: from github.com:strongdm/strongdm-sdk-ruby.git
|
|
Binary file
|
|
Binary file
|
data/.git/packed-refs
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
# pack-refs with: peeled fully-peeled sorted
|
|
2
|
-
|
|
3
|
-
|
|
2
|
+
5f7f719a5c803d95cebb885aebb5dc5161e14c00 refs/remotes/origin/development
|
|
3
|
+
ac72c45893602af2c60a5b76196cf853552c2470 refs/remotes/origin/master
|
|
4
4
|
2e4fe8087177ddea9b3991ca499f758384839c89 refs/tags/untagged-84fd83a4484c785cce63
|
|
5
5
|
04f604866214fab4d5663b5171a3e596331577bd refs/tags/v0.9.4
|
|
6
6
|
6f9a7b75b345c65fb554884907b7060680c807b7 refs/tags/v0.9.5
|
|
@@ -148,6 +148,8 @@ c3b0eeef356ddf0cf408d1305fd766791121803f refs/tags/v15.46.0
|
|
|
148
148
|
faf9218bcf932aa16115ce5bdad98cf7e1c26e35 refs/tags/v16.17.0
|
|
149
149
|
74344928c432ecaaab2bf22852ce85c7e22147f8 refs/tags/v16.20.0
|
|
150
150
|
c414fe2440a5b8fac52f3c46767d19187f470666 refs/tags/v16.21.0
|
|
151
|
+
2456c1a3fc46dbb812b191edc270f83c00e2d94b refs/tags/v16.22.0
|
|
152
|
+
ac72c45893602af2c60a5b76196cf853552c2470 refs/tags/v16.23.0
|
|
151
153
|
3f2a99e1a4296cf5b4937d57b901051b9381c209 refs/tags/v16.3.0
|
|
152
154
|
eb2c5388eb894fce71666148224e02d977c87baa refs/tags/v16.4.0
|
|
153
155
|
6450bdc10119fb8a00123c4262d6f245a70ed06a refs/tags/v16.5.0
|
data/.git/refs/heads/master
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
|
|
1
|
+
5f7f719a5c803d95cebb885aebb5dc5161e14c00
|
data/lib/constants.rb
CHANGED
|
@@ -335,6 +335,11 @@ module SDM
|
|
|
335
335
|
RESOURCE_UNLOCKED = "user unlocked a resource"
|
|
336
336
|
RESOURCE_FORCE_UNLOCKED = "admin force-unlocked a resource"
|
|
337
337
|
RESOURCE_LOCK_REJECTED = "user lock rejected for a resource"
|
|
338
|
+
MANAGED_SECRET_LOCKED = "user locked a secret"
|
|
339
|
+
MANAGED_SECRET_UNLOCKED = "user unlocked a secret"
|
|
340
|
+
MANAGED_SECRET_FORCE_UNLOCKED = "admin force-unlocked a secret"
|
|
341
|
+
MANAGED_SECRET_LOCK_EXTENDED = "user extended a secret lock"
|
|
342
|
+
MANAGED_SECRET_LOCK_REJECTED = "user lock rejected for a secret"
|
|
338
343
|
CONCURRENT_AUTHENTICATION_REVOKED_PER_ORG_SETTING = "concurrent authentications revoked per organization settings"
|
|
339
344
|
PEERING_GROUP_TOGGLED = "peering group toggled"
|
|
340
345
|
PEERING_GROUP_CREATED = "peering group created"
|
|
@@ -400,7 +405,10 @@ module SDM
|
|
|
400
405
|
MANAGED_SECRET_DELETE = "managedsecret:delete"
|
|
401
406
|
MANAGED_SECRET_LIST = "managedsecret:list"
|
|
402
407
|
MANAGED_SECRET_READ = "managedsecret:read"
|
|
408
|
+
MANAGED_SECRET_RETRIEVE = "managedsecret:retrieve"
|
|
409
|
+
MANAGED_SECRET_ROTATE = "managedsecret:rotate"
|
|
403
410
|
MANAGED_SECRET_UPDATE = "managedsecret:update"
|
|
411
|
+
MANAGED_SECRET_VALIDATE = "managedsecret:validate"
|
|
404
412
|
ORG_AUDIT_ACCESS_REQUESTS = "audit:accessrequests"
|
|
405
413
|
ORG_AUDIT_ACCOUNT_GRANTS = "audit:accountgrants"
|
|
406
414
|
ORG_AUDIT_ACTIVITIES = "audit:activities"
|
|
@@ -74,63 +74,63 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
74
74
|
optional :id, :string, 1
|
|
75
75
|
optional :name, :string, 2
|
|
76
76
|
optional :description, :string, 3
|
|
77
|
-
repeated :
|
|
77
|
+
repeated :rules, :message, 4, "v1.AuthorizationPolicyRule"
|
|
78
78
|
optional :state, :enum, 5, "v1.AuthorizationPolicyState"
|
|
79
79
|
end
|
|
80
|
-
add_message "v1.
|
|
80
|
+
add_message "v1.AuthorizationPolicyRule" do
|
|
81
81
|
oneof :kind do
|
|
82
|
-
optional :principal_all, :message, 1, "v1.
|
|
83
|
-
optional :principal_by_ids, :message, 2, "v1.
|
|
84
|
-
optional :resources_all, :message, 3, "v1.
|
|
85
|
-
optional :resource_by_ids, :message, 4, "v1.
|
|
86
|
-
optional :resource_by_type_and_tags, :message, 5, "v1.
|
|
87
|
-
optional :resource_by_type_tags_and_kubernetes_groups, :message, 6, "v1.
|
|
88
|
-
optional :resource_by_okta_with_groups, :message, 7, "v1.
|
|
89
|
-
optional :resource_by_entra_with_groups, :message, 8, "v1.
|
|
90
|
-
optional :condition_mfa, :message, 9, "v1.
|
|
91
|
-
optional :condition_device_trust, :message, 10, "v1.
|
|
92
|
-
optional :condition_location, :message, 11, "v1.
|
|
93
|
-
optional :condition_ip, :message, 12, "v1.
|
|
94
|
-
optional :condition_time, :message, 13, "v1.
|
|
95
|
-
optional :condition_approval_flow, :message, 14, "v1.
|
|
82
|
+
optional :principal_all, :message, 1, "v1.AuthorizationPolicyRulePrincipalAll"
|
|
83
|
+
optional :principal_by_ids, :message, 2, "v1.AuthorizationPolicyRulePrincipalByIds"
|
|
84
|
+
optional :resources_all, :message, 3, "v1.AuthorizationPolicyRuleResourcesAll"
|
|
85
|
+
optional :resource_by_ids, :message, 4, "v1.AuthorizationPolicyRuleResourceByIds"
|
|
86
|
+
optional :resource_by_type_and_tags, :message, 5, "v1.AuthorizationPolicyRuleResourceByTypeAndTags"
|
|
87
|
+
optional :resource_by_type_tags_and_kubernetes_groups, :message, 6, "v1.AuthorizationPolicyRuleResourceByTypeTagsAndKubernetesGroups"
|
|
88
|
+
optional :resource_by_okta_with_groups, :message, 7, "v1.AuthorizationPolicyRuleResourceByOktaWithGroups"
|
|
89
|
+
optional :resource_by_entra_with_groups, :message, 8, "v1.AuthorizationPolicyRuleResourceByEntraWithGroups"
|
|
90
|
+
optional :condition_mfa, :message, 9, "v1.AuthorizationPolicyRuleConditionMFA"
|
|
91
|
+
optional :condition_device_trust, :message, 10, "v1.AuthorizationPolicyRuleConditionDeviceTrust"
|
|
92
|
+
optional :condition_location, :message, 11, "v1.AuthorizationPolicyRuleConditionLocation"
|
|
93
|
+
optional :condition_ip, :message, 12, "v1.AuthorizationPolicyRuleConditionIP"
|
|
94
|
+
optional :condition_time, :message, 13, "v1.AuthorizationPolicyRuleConditionTime"
|
|
95
|
+
optional :condition_approval_flow, :message, 14, "v1.AuthorizationPolicyRuleConditionApprovalFlow"
|
|
96
96
|
end
|
|
97
97
|
end
|
|
98
|
-
add_message "v1.
|
|
98
|
+
add_message "v1.AuthorizationPolicyRulePrincipalAll" do
|
|
99
99
|
end
|
|
100
|
-
add_message "v1.
|
|
100
|
+
add_message "v1.AuthorizationPolicyRulePrincipalByIds" do
|
|
101
101
|
repeated :ids, :string, 1
|
|
102
102
|
end
|
|
103
|
-
add_message "v1.
|
|
103
|
+
add_message "v1.AuthorizationPolicyRuleResourcesAll" do
|
|
104
104
|
end
|
|
105
|
-
add_message "v1.
|
|
105
|
+
add_message "v1.AuthorizationPolicyRuleResourceByIds" do
|
|
106
106
|
repeated :ids, :string, 1
|
|
107
107
|
end
|
|
108
|
-
add_message "v1.
|
|
108
|
+
add_message "v1.AuthorizationPolicyRuleResourceByTypeAndTags" do
|
|
109
109
|
optional :type, :enum, 1, "v1.ResourceType"
|
|
110
110
|
repeated :tags, :message, 2, "v1.Tag"
|
|
111
111
|
end
|
|
112
|
-
add_message "v1.
|
|
112
|
+
add_message "v1.AuthorizationPolicyRuleResourceByTypeTagsAndKubernetesGroups" do
|
|
113
113
|
optional :type, :enum, 1, "v1.ResourceType"
|
|
114
114
|
repeated :tags, :message, 2, "v1.Tag"
|
|
115
115
|
repeated :kubernetes_groups, :string, 3
|
|
116
116
|
end
|
|
117
|
-
add_message "v1.
|
|
117
|
+
add_message "v1.AuthorizationPolicyRuleResourceByOktaWithGroups" do
|
|
118
118
|
optional :resource_id, :string, 1
|
|
119
119
|
repeated :groups, :string, 2
|
|
120
120
|
end
|
|
121
|
-
add_message "v1.
|
|
121
|
+
add_message "v1.AuthorizationPolicyRuleResourceByEntraWithGroups" do
|
|
122
122
|
optional :resource_id, :string, 1
|
|
123
123
|
repeated :groups, :string, 2
|
|
124
124
|
end
|
|
125
|
-
add_message "v1.
|
|
125
|
+
add_message "v1.AuthorizationPolicyRuleConditionMFA" do
|
|
126
126
|
optional :reason, :string, 1
|
|
127
127
|
optional :cache_timeout_seconds, :int32, 2
|
|
128
128
|
end
|
|
129
|
-
add_message "v1.
|
|
129
|
+
add_message "v1.AuthorizationPolicyRuleConditionDeviceTrust" do
|
|
130
130
|
optional :operator, :enum, 1, "v1.AuthorizationPolicyDeviceTrustOperator"
|
|
131
131
|
optional :level, :enum, 2, "v1.AuthorizationPolicyDeviceTrustLevel"
|
|
132
132
|
end
|
|
133
|
-
add_message "v1.
|
|
133
|
+
add_message "v1.AuthorizationPolicyRuleConditionLocation" do
|
|
134
134
|
repeated :rules, :message, 1, "v1.AuthorizationPolicyLocationRule"
|
|
135
135
|
end
|
|
136
136
|
add_message "v1.AuthorizationPolicyLocationRule" do
|
|
@@ -152,7 +152,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
152
152
|
optional :operator, :enum, 1, "v1.LocationOperator"
|
|
153
153
|
repeated :subdivisions, :string, 2
|
|
154
154
|
end
|
|
155
|
-
add_message "v1.
|
|
155
|
+
add_message "v1.AuthorizationPolicyRuleConditionIP" do
|
|
156
156
|
repeated :rules, :message, 1, "v1.AuthorizationPolicyIPRule"
|
|
157
157
|
end
|
|
158
158
|
add_message "v1.AuthorizationPolicyIPRule" do
|
|
@@ -160,7 +160,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
160
160
|
optional :network, :enum, 2, "v1.AuthorizationPolicyIPNetwork"
|
|
161
161
|
optional :cidr, :string, 3
|
|
162
162
|
end
|
|
163
|
-
add_message "v1.
|
|
163
|
+
add_message "v1.AuthorizationPolicyRuleConditionTime" do
|
|
164
164
|
repeated :rules, :message, 1, "v1.AuthorizationPolicyTimeRule"
|
|
165
165
|
end
|
|
166
166
|
add_message "v1.AuthorizationPolicyTimeRule" do
|
|
@@ -202,7 +202,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
202
202
|
add_message "v1.AuthorizationPolicyTimeRuleDaysOfMonth" do
|
|
203
203
|
repeated :days, :int32, 1
|
|
204
204
|
end
|
|
205
|
-
add_message "v1.
|
|
205
|
+
add_message "v1.AuthorizationPolicyRuleConditionApprovalFlow" do
|
|
206
206
|
optional :approval_flow_id, :string, 1
|
|
207
207
|
end
|
|
208
208
|
add_enum "v1.AuthorizationPolicyState" do
|
|
@@ -269,25 +269,25 @@ module V1
|
|
|
269
269
|
AuthorizationPolicyListRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyListRequest").msgclass
|
|
270
270
|
AuthorizationPolicyListResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyListResponse").msgclass
|
|
271
271
|
AuthorizationPolicy = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicy").msgclass
|
|
272
|
-
|
|
273
|
-
|
|
274
|
-
|
|
275
|
-
|
|
276
|
-
|
|
277
|
-
|
|
278
|
-
|
|
279
|
-
|
|
280
|
-
|
|
281
|
-
|
|
282
|
-
|
|
283
|
-
|
|
272
|
+
AuthorizationPolicyRule = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRule").msgclass
|
|
273
|
+
AuthorizationPolicyRulePrincipalAll = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRulePrincipalAll").msgclass
|
|
274
|
+
AuthorizationPolicyRulePrincipalByIds = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRulePrincipalByIds").msgclass
|
|
275
|
+
AuthorizationPolicyRuleResourcesAll = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRuleResourcesAll").msgclass
|
|
276
|
+
AuthorizationPolicyRuleResourceByIds = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRuleResourceByIds").msgclass
|
|
277
|
+
AuthorizationPolicyRuleResourceByTypeAndTags = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRuleResourceByTypeAndTags").msgclass
|
|
278
|
+
AuthorizationPolicyRuleResourceByTypeTagsAndKubernetesGroups = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRuleResourceByTypeTagsAndKubernetesGroups").msgclass
|
|
279
|
+
AuthorizationPolicyRuleResourceByOktaWithGroups = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRuleResourceByOktaWithGroups").msgclass
|
|
280
|
+
AuthorizationPolicyRuleResourceByEntraWithGroups = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRuleResourceByEntraWithGroups").msgclass
|
|
281
|
+
AuthorizationPolicyRuleConditionMFA = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRuleConditionMFA").msgclass
|
|
282
|
+
AuthorizationPolicyRuleConditionDeviceTrust = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRuleConditionDeviceTrust").msgclass
|
|
283
|
+
AuthorizationPolicyRuleConditionLocation = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRuleConditionLocation").msgclass
|
|
284
284
|
AuthorizationPolicyLocationRule = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyLocationRule").msgclass
|
|
285
285
|
AuthorizationPolicyContinentRule = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyContinentRule").msgclass
|
|
286
286
|
AuthorizationPolicyCountryRule = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyCountryRule").msgclass
|
|
287
287
|
AuthorizationPolicySubdivisionRule = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicySubdivisionRule").msgclass
|
|
288
|
-
|
|
288
|
+
AuthorizationPolicyRuleConditionIP = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRuleConditionIP").msgclass
|
|
289
289
|
AuthorizationPolicyIPRule = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyIPRule").msgclass
|
|
290
|
-
|
|
290
|
+
AuthorizationPolicyRuleConditionTime = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRuleConditionTime").msgclass
|
|
291
291
|
AuthorizationPolicyTimeRule = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyTimeRule").msgclass
|
|
292
292
|
AuthorizationPolicyTimeRuleDayOfWeek = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyTimeRuleDayOfWeek").msgclass
|
|
293
293
|
LegacyAuthorizationPolicyTimeRuleTimeOfDay = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.LegacyAuthorizationPolicyTimeRuleTimeOfDay").msgclass
|
|
@@ -295,7 +295,7 @@ module V1
|
|
|
295
295
|
AuthorizationPolicyTimeRuleTimeOfDay = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyTimeRuleTimeOfDay").msgclass
|
|
296
296
|
AuthorizationPolicyTimeRuleMonth = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyTimeRuleMonth").msgclass
|
|
297
297
|
AuthorizationPolicyTimeRuleDaysOfMonth = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyTimeRuleDaysOfMonth").msgclass
|
|
298
|
-
|
|
298
|
+
AuthorizationPolicyRuleConditionApprovalFlow = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyRuleConditionApprovalFlow").msgclass
|
|
299
299
|
AuthorizationPolicyState = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyState").enummodule
|
|
300
300
|
AuthorizationPolicyDeviceTrustOperator = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyDeviceTrustOperator").enummodule
|
|
301
301
|
AuthorizationPolicyDeviceTrustLevel = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AuthorizationPolicyDeviceTrustLevel").enummodule
|
data/lib/grpc/drivers_pb.rb
CHANGED
|
@@ -1419,6 +1419,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
1419
1419
|
optional :subdomain, :string, 32775
|
|
1420
1420
|
optional :hostname, :string, 1
|
|
1421
1421
|
optional :port_override, :int32, 4
|
|
1422
|
+
optional :url, :string, 9
|
|
1422
1423
|
end
|
|
1423
1424
|
add_message "v1.MCPGatewayOAuth" do
|
|
1424
1425
|
optional :id, :string, 32768
|
|
@@ -1436,6 +1437,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
1436
1437
|
optional :oauth_token_endpoint, :string, 9
|
|
1437
1438
|
optional :password, :string, 2
|
|
1438
1439
|
optional :port_override, :int32, 4
|
|
1440
|
+
optional :url, :string, 12
|
|
1439
1441
|
optional :username, :string, 6
|
|
1440
1442
|
end
|
|
1441
1443
|
add_message "v1.MCPGatewayOAuthDCR" do
|
|
@@ -1454,6 +1456,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
1454
1456
|
optional :oauth_scopes, :string, 12
|
|
1455
1457
|
optional :oauth_token_endpoint, :string, 9
|
|
1456
1458
|
optional :port_override, :int32, 4
|
|
1459
|
+
optional :url, :string, 13
|
|
1457
1460
|
end
|
|
1458
1461
|
add_message "v1.MCPGatewayPAT" do
|
|
1459
1462
|
optional :id, :string, 32768
|
|
@@ -1468,6 +1471,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
1468
1471
|
optional :hostname, :string, 1
|
|
1469
1472
|
optional :password, :string, 2
|
|
1470
1473
|
optional :port_override, :int32, 4
|
|
1474
|
+
optional :url, :string, 9
|
|
1471
1475
|
end
|
|
1472
1476
|
add_message "v1.MTLSMysql" do
|
|
1473
1477
|
optional :id, :string, 32768
|
|
@@ -126,6 +126,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
|
|
|
126
126
|
optional :last_rotated_at, :message, 8, "google.protobuf.Timestamp"
|
|
127
127
|
optional :expires_at, :message, 9, "google.protobuf.Timestamp"
|
|
128
128
|
optional :config, :string, 10
|
|
129
|
+
optional :lock_required, :bool, 11
|
|
129
130
|
end
|
|
130
131
|
add_message "v1.ManagedSecretPolicy" do
|
|
131
132
|
optional :rotation_policy, :message, 1, "v1.ManagedSecretRotationPolicy"
|
data/lib/grpc/plumbing.rb
CHANGED
|
@@ -11124,6 +11124,7 @@ module SDM
|
|
|
11124
11124
|
porcelain.secret_store_id = (plumbing.secret_store_id)
|
|
11125
11125
|
porcelain.subdomain = (plumbing.subdomain)
|
|
11126
11126
|
porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
|
|
11127
|
+
porcelain.url = (plumbing.url)
|
|
11127
11128
|
porcelain
|
|
11128
11129
|
end
|
|
11129
11130
|
|
|
@@ -11143,6 +11144,7 @@ module SDM
|
|
|
11143
11144
|
plumbing.secret_store_id = (porcelain.secret_store_id)
|
|
11144
11145
|
plumbing.subdomain = (porcelain.subdomain)
|
|
11145
11146
|
plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
|
|
11147
|
+
plumbing.url = (porcelain.url)
|
|
11146
11148
|
plumbing
|
|
11147
11149
|
end
|
|
11148
11150
|
def self.convert_repeated_mcp_gateway_no_auth_to_plumbing(porcelains)
|
|
@@ -11182,6 +11184,7 @@ module SDM
|
|
|
11182
11184
|
porcelain.secret_store_id = (plumbing.secret_store_id)
|
|
11183
11185
|
porcelain.subdomain = (plumbing.subdomain)
|
|
11184
11186
|
porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
|
|
11187
|
+
porcelain.url = (plumbing.url)
|
|
11185
11188
|
porcelain.username = (plumbing.username)
|
|
11186
11189
|
porcelain
|
|
11187
11190
|
end
|
|
@@ -11206,6 +11209,7 @@ module SDM
|
|
|
11206
11209
|
plumbing.secret_store_id = (porcelain.secret_store_id)
|
|
11207
11210
|
plumbing.subdomain = (porcelain.subdomain)
|
|
11208
11211
|
plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
|
|
11212
|
+
plumbing.url = (porcelain.url)
|
|
11209
11213
|
plumbing.username = (porcelain.username)
|
|
11210
11214
|
plumbing
|
|
11211
11215
|
end
|
|
@@ -11246,6 +11250,7 @@ module SDM
|
|
|
11246
11250
|
porcelain.secret_store_id = (plumbing.secret_store_id)
|
|
11247
11251
|
porcelain.subdomain = (plumbing.subdomain)
|
|
11248
11252
|
porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
|
|
11253
|
+
porcelain.url = (plumbing.url)
|
|
11249
11254
|
porcelain
|
|
11250
11255
|
end
|
|
11251
11256
|
|
|
@@ -11269,6 +11274,7 @@ module SDM
|
|
|
11269
11274
|
plumbing.secret_store_id = (porcelain.secret_store_id)
|
|
11270
11275
|
plumbing.subdomain = (porcelain.subdomain)
|
|
11271
11276
|
plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
|
|
11277
|
+
plumbing.url = (porcelain.url)
|
|
11272
11278
|
plumbing
|
|
11273
11279
|
end
|
|
11274
11280
|
def self.convert_repeated_mcp_gateway_o_auth_dcr_to_plumbing(porcelains)
|
|
@@ -11305,6 +11311,7 @@ module SDM
|
|
|
11305
11311
|
porcelain.secret_store_id = (plumbing.secret_store_id)
|
|
11306
11312
|
porcelain.subdomain = (plumbing.subdomain)
|
|
11307
11313
|
porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
|
|
11314
|
+
porcelain.url = (plumbing.url)
|
|
11308
11315
|
porcelain
|
|
11309
11316
|
end
|
|
11310
11317
|
|
|
@@ -11325,6 +11332,7 @@ module SDM
|
|
|
11325
11332
|
plumbing.secret_store_id = (porcelain.secret_store_id)
|
|
11326
11333
|
plumbing.subdomain = (porcelain.subdomain)
|
|
11327
11334
|
plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
|
|
11335
|
+
plumbing.url = (porcelain.url)
|
|
11328
11336
|
plumbing
|
|
11329
11337
|
end
|
|
11330
11338
|
def self.convert_repeated_mcp_gateway_pat_to_plumbing(porcelains)
|
|
@@ -11499,6 +11507,7 @@ module SDM
|
|
|
11499
11507
|
porcelain.expires_at = convert_timestamp_to_porcelain(plumbing.expires_at)
|
|
11500
11508
|
porcelain.id = (plumbing.id)
|
|
11501
11509
|
porcelain.last_rotated_at = convert_timestamp_to_porcelain(plumbing.last_rotated_at)
|
|
11510
|
+
porcelain.lock_required = (plumbing.lock_required)
|
|
11502
11511
|
porcelain.name = (plumbing.name)
|
|
11503
11512
|
porcelain.policy = convert_managed_secret_policy_to_porcelain(plumbing.policy)
|
|
11504
11513
|
porcelain.secret_engine_id = (plumbing.secret_engine_id)
|
|
@@ -11517,6 +11526,7 @@ module SDM
|
|
|
11517
11526
|
plumbing.expires_at = convert_timestamp_to_plumbing(porcelain.expires_at)
|
|
11518
11527
|
plumbing.id = (porcelain.id)
|
|
11519
11528
|
plumbing.last_rotated_at = convert_timestamp_to_plumbing(porcelain.last_rotated_at)
|
|
11529
|
+
plumbing.lock_required = (porcelain.lock_required)
|
|
11520
11530
|
plumbing.name = (porcelain.name)
|
|
11521
11531
|
plumbing.policy = convert_managed_secret_policy_to_plumbing(porcelain.policy)
|
|
11522
11532
|
plumbing.secret_engine_id = (porcelain.secret_engine_id)
|
data/lib/models/porcelain.rb
CHANGED
|
@@ -10374,6 +10374,8 @@ module SDM
|
|
|
10374
10374
|
attr_accessor :subdomain
|
|
10375
10375
|
# Tags is a map of key, value pairs.
|
|
10376
10376
|
attr_accessor :tags
|
|
10377
|
+
# The URL to dial to initiate a connection from the egress node to this resource.
|
|
10378
|
+
attr_accessor :url
|
|
10377
10379
|
|
|
10378
10380
|
def initialize(
|
|
10379
10381
|
bind_interface: nil,
|
|
@@ -10386,7 +10388,8 @@ module SDM
|
|
|
10386
10388
|
proxy_cluster_id: nil,
|
|
10387
10389
|
secret_store_id: nil,
|
|
10388
10390
|
subdomain: nil,
|
|
10389
|
-
tags: nil
|
|
10391
|
+
tags: nil,
|
|
10392
|
+
url: nil
|
|
10390
10393
|
)
|
|
10391
10394
|
@bind_interface = bind_interface == nil ? "" : bind_interface
|
|
10392
10395
|
@egress_filter = egress_filter == nil ? "" : egress_filter
|
|
@@ -10399,6 +10402,7 @@ module SDM
|
|
|
10399
10402
|
@secret_store_id = secret_store_id == nil ? "" : secret_store_id
|
|
10400
10403
|
@subdomain = subdomain == nil ? "" : subdomain
|
|
10401
10404
|
@tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
|
|
10405
|
+
@url = url == nil ? "" : url
|
|
10402
10406
|
end
|
|
10403
10407
|
|
|
10404
10408
|
def to_json(options = {})
|
|
@@ -10441,6 +10445,8 @@ module SDM
|
|
|
10441
10445
|
attr_accessor :subdomain
|
|
10442
10446
|
# Tags is a map of key, value pairs.
|
|
10443
10447
|
attr_accessor :tags
|
|
10448
|
+
# The URL to dial to initiate a connection from the egress node to this resource.
|
|
10449
|
+
attr_accessor :url
|
|
10444
10450
|
# OAuth App Client ID
|
|
10445
10451
|
attr_accessor :username
|
|
10446
10452
|
|
|
@@ -10460,6 +10466,7 @@ module SDM
|
|
|
10460
10466
|
secret_store_id: nil,
|
|
10461
10467
|
subdomain: nil,
|
|
10462
10468
|
tags: nil,
|
|
10469
|
+
url: nil,
|
|
10463
10470
|
username: nil
|
|
10464
10471
|
)
|
|
10465
10472
|
@bind_interface = bind_interface == nil ? "" : bind_interface
|
|
@@ -10477,6 +10484,7 @@ module SDM
|
|
|
10477
10484
|
@secret_store_id = secret_store_id == nil ? "" : secret_store_id
|
|
10478
10485
|
@subdomain = subdomain == nil ? "" : subdomain
|
|
10479
10486
|
@tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
|
|
10487
|
+
@url = url == nil ? "" : url
|
|
10480
10488
|
@username = username == nil ? "" : username
|
|
10481
10489
|
end
|
|
10482
10490
|
|
|
@@ -10521,6 +10529,8 @@ module SDM
|
|
|
10521
10529
|
attr_accessor :subdomain
|
|
10522
10530
|
# Tags is a map of key, value pairs.
|
|
10523
10531
|
attr_accessor :tags
|
|
10532
|
+
# The URL to dial to initiate a connection from the egress node to this resource.
|
|
10533
|
+
attr_accessor :url
|
|
10524
10534
|
|
|
10525
10535
|
def initialize(
|
|
10526
10536
|
bind_interface: nil,
|
|
@@ -10537,7 +10547,8 @@ module SDM
|
|
|
10537
10547
|
proxy_cluster_id: nil,
|
|
10538
10548
|
secret_store_id: nil,
|
|
10539
10549
|
subdomain: nil,
|
|
10540
|
-
tags: nil
|
|
10550
|
+
tags: nil,
|
|
10551
|
+
url: nil
|
|
10541
10552
|
)
|
|
10542
10553
|
@bind_interface = bind_interface == nil ? "" : bind_interface
|
|
10543
10554
|
@egress_filter = egress_filter == nil ? "" : egress_filter
|
|
@@ -10554,6 +10565,7 @@ module SDM
|
|
|
10554
10565
|
@secret_store_id = secret_store_id == nil ? "" : secret_store_id
|
|
10555
10566
|
@subdomain = subdomain == nil ? "" : subdomain
|
|
10556
10567
|
@tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
|
|
10568
|
+
@url = url == nil ? "" : url
|
|
10557
10569
|
end
|
|
10558
10570
|
|
|
10559
10571
|
def to_json(options = {})
|
|
@@ -10590,6 +10602,8 @@ module SDM
|
|
|
10590
10602
|
attr_accessor :subdomain
|
|
10591
10603
|
# Tags is a map of key, value pairs.
|
|
10592
10604
|
attr_accessor :tags
|
|
10605
|
+
# The URL to dial to initiate a connection from the egress node to this resource.
|
|
10606
|
+
attr_accessor :url
|
|
10593
10607
|
|
|
10594
10608
|
def initialize(
|
|
10595
10609
|
bind_interface: nil,
|
|
@@ -10603,7 +10617,8 @@ module SDM
|
|
|
10603
10617
|
proxy_cluster_id: nil,
|
|
10604
10618
|
secret_store_id: nil,
|
|
10605
10619
|
subdomain: nil,
|
|
10606
|
-
tags: nil
|
|
10620
|
+
tags: nil,
|
|
10621
|
+
url: nil
|
|
10607
10622
|
)
|
|
10608
10623
|
@bind_interface = bind_interface == nil ? "" : bind_interface
|
|
10609
10624
|
@egress_filter = egress_filter == nil ? "" : egress_filter
|
|
@@ -10617,6 +10632,7 @@ module SDM
|
|
|
10617
10632
|
@secret_store_id = secret_store_id == nil ? "" : secret_store_id
|
|
10618
10633
|
@subdomain = subdomain == nil ? "" : subdomain
|
|
10619
10634
|
@tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
|
|
10635
|
+
@url = url == nil ? "" : url
|
|
10620
10636
|
end
|
|
10621
10637
|
|
|
10622
10638
|
def to_json(options = {})
|
|
@@ -10832,6 +10848,8 @@ module SDM
|
|
|
10832
10848
|
attr_accessor :id
|
|
10833
10849
|
# Timestamp of when secret was last rotated
|
|
10834
10850
|
attr_accessor :last_rotated_at
|
|
10851
|
+
# Whether the secret requires a lock to access
|
|
10852
|
+
attr_accessor :lock_required
|
|
10835
10853
|
# Unique human-readable name of the Managed Secret.
|
|
10836
10854
|
attr_accessor :name
|
|
10837
10855
|
# Password and rotation policy for the secret
|
|
@@ -10850,6 +10868,7 @@ module SDM
|
|
|
10850
10868
|
expires_at: nil,
|
|
10851
10869
|
id: nil,
|
|
10852
10870
|
last_rotated_at: nil,
|
|
10871
|
+
lock_required: nil,
|
|
10853
10872
|
name: nil,
|
|
10854
10873
|
policy: nil,
|
|
10855
10874
|
secret_engine_id: nil,
|
|
@@ -10861,6 +10880,7 @@ module SDM
|
|
|
10861
10880
|
@expires_at = expires_at == nil ? nil : expires_at
|
|
10862
10881
|
@id = id == nil ? "" : id
|
|
10863
10882
|
@last_rotated_at = last_rotated_at == nil ? nil : last_rotated_at
|
|
10883
|
+
@lock_required = lock_required == nil ? false : lock_required
|
|
10864
10884
|
@name = name == nil ? "" : name
|
|
10865
10885
|
@policy = policy == nil ? nil : policy
|
|
10866
10886
|
@secret_engine_id = secret_engine_id == nil ? "" : secret_engine_id
|
data/lib/strongdm.rb
CHANGED
|
@@ -31,7 +31,7 @@ module SDM #:nodoc:
|
|
|
31
31
|
DEFAULT_RETRY_FACTOR = 1.6
|
|
32
32
|
DEFAULT_RETRY_JITTER = 0.2
|
|
33
33
|
API_VERSION = "2025-04-14"
|
|
34
|
-
USER_AGENT = "strongdm-sdk-ruby/
|
|
34
|
+
USER_AGENT = "strongdm-sdk-ruby/17.0.0"
|
|
35
35
|
private_constant :DEFAULT_BASE_RETRY_DELAY, :DEFAULT_MAX_RETRY_DELAY, :DEFAULT_RETRY_FACTOR, :DEFAULT_RETRY_JITTER, :API_VERSION, :USER_AGENT
|
|
36
36
|
|
|
37
37
|
# Creates a new strongDM API client.
|
data/lib/version
CHANGED
data/lib/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: strongdm
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version:
|
|
4
|
+
version: 17.0.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- strongDM Team
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2026-
|
|
11
|
+
date: 2026-04-17 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: grpc
|
|
@@ -81,8 +81,8 @@ files:
|
|
|
81
81
|
- "./.git/logs/HEAD"
|
|
82
82
|
- "./.git/logs/refs/heads/master"
|
|
83
83
|
- "./.git/logs/refs/remotes/origin/HEAD"
|
|
84
|
-
- "./.git/objects/pack/pack-
|
|
85
|
-
- "./.git/objects/pack/pack-
|
|
84
|
+
- "./.git/objects/pack/pack-2b3a98dd411fb2f220e84b6a7db232844fd9733f.idx"
|
|
85
|
+
- "./.git/objects/pack/pack-2b3a98dd411fb2f220e84b6a7db232844fd9733f.pack"
|
|
86
86
|
- "./.git/packed-refs"
|
|
87
87
|
- "./.git/refs/heads/master"
|
|
88
88
|
- "./.git/refs/remotes/origin/HEAD"
|