strongdm 2.6.4 → 3.2.1

data/lib/grpc/secret_store_types_pb.rb

@@ -25,6 +25,9 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       oneof :secret_store do
         optional :aws, :message, 3, "v1.AWSStore"
         optional :azure, :message, 101, "v1.AzureStore"
+        optional :cyberark_conjur, :message, 301, "v1.CyberarkConjurStore"
+        optional :cyberark_pam_experimental, :message, 302, "v1.CyberarkPAMExperimentalStore"
+        optional :delinea, :message, 2900, "v1.DelineaStore"
         optional :gcp, :message, 201, "v1.GCPStore"
         optional :vault_app_role, :message, 4, "v1.VaultAppRoleStore"
         optional :vault_tls, :message, 1, "v1.VaultTLSStore"
@@ -43,6 +46,25 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :vault_uri, :string, 3
       optional :tags, :message, 32771, "v1.Tags"
     end
+    add_message "v1.CyberarkConjurStore" do
+      optional :id, :string, 1
+      optional :name, :string, 2
+      optional :appURL, :string, 3
+      optional :tags, :message, 32771, "v1.Tags"
+    end
+    add_message "v1.CyberarkPAMExperimentalStore" do
+      optional :id, :string, 1
+      optional :name, :string, 2
+      optional :appURL, :string, 3
+      optional :tags, :message, 32771, "v1.Tags"
+    end
+    add_message "v1.DelineaStore" do
+      optional :id, :string, 1
+      optional :name, :string, 2
+      optional :server_url, :string, 3
+      optional :tenant_name, :string, 4
+      optional :tags, :message, 32771, "v1.Tags"
+    end
     add_message "v1.GCPStore" do
       optional :id, :string, 1
       optional :name, :string, 2
@@ -80,6 +102,9 @@ module V1
   SecretStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.SecretStore").msgclass
   AWSStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AWSStore").msgclass
   AzureStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AzureStore").msgclass
+  CyberarkConjurStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.CyberarkConjurStore").msgclass
+  CyberarkPAMExperimentalStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.CyberarkPAMExperimentalStore").msgclass
+  DelineaStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DelineaStore").msgclass
   GCPStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.GCPStore").msgclass
   VaultAppRoleStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.VaultAppRoleStore").msgclass
   VaultTLSStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.VaultTLSStore").msgclass

data/lib/models/porcelain.rb

@@ -429,6 +429,169 @@ module SDM
     end
   end
 
+  # AWSConsole is currently unstable, and its API may change, or it may be removed, without a major version bump.
+  class AWSConsole
+    # Bind interface
+    attr_accessor :bind_interface
+    # A filter applied to the routing logic to pin datasource to nodes.
+    attr_accessor :egress_filter
+
+    attr_accessor :enable_env_variables
+    # True if the datasource is reachable and the credentials are valid.
+    attr_accessor :healthy
+    # Unique identifier of the Resource.
+    attr_accessor :id
+    # Unique human-readable name of the Resource.
+    attr_accessor :name
+
+    attr_accessor :port_override
+
+    attr_accessor :region
+
+    attr_accessor :remote_identity_group_id
+
+    attr_accessor :remote_identity_healthcheck_username
+
+    attr_accessor :role_arn
+
+    attr_accessor :role_external_id
+    # ID of the secret store containing credentials for this resource, if any.
+    attr_accessor :secret_store_id
+
+    attr_accessor :session_expiry
+
+    attr_accessor :subdomain
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+
+    def initialize(
+      bind_interface: nil,
+      egress_filter: nil,
+      enable_env_variables: nil,
+      healthy: nil,
+      id: nil,
+      name: nil,
+      port_override: nil,
+      region: nil,
+      remote_identity_group_id: nil,
+      remote_identity_healthcheck_username: nil,
+      role_arn: nil,
+      role_external_id: nil,
+      secret_store_id: nil,
+      session_expiry: nil,
+      subdomain: nil,
+      tags: nil
+    )
+      @bind_interface = bind_interface == nil ? "" : bind_interface
+      @egress_filter = egress_filter == nil ? "" : egress_filter
+      @enable_env_variables = enable_env_variables == nil ? false : enable_env_variables
+      @healthy = healthy == nil ? false : healthy
+      @id = id == nil ? "" : id
+      @name = name == nil ? "" : name
+      @port_override = port_override == nil ? 0 : port_override
+      @region = region == nil ? "" : region
+      @remote_identity_group_id = remote_identity_group_id == nil ? "" : remote_identity_group_id
+      @remote_identity_healthcheck_username = remote_identity_healthcheck_username == nil ? "" : remote_identity_healthcheck_username
+      @role_arn = role_arn == nil ? "" : role_arn
+      @role_external_id = role_external_id == nil ? "" : role_external_id
+      @secret_store_id = secret_store_id == nil ? "" : secret_store_id
+      @session_expiry = session_expiry == nil ? 0 : session_expiry
+      @subdomain = subdomain == nil ? "" : subdomain
+      @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
+  # AWSConsoleStaticKeyPair is currently unstable, and its API may change, or it may be removed, without a major version bump.
+  class AWSConsoleStaticKeyPair
+    attr_accessor :access_key
+    # Bind interface
+    attr_accessor :bind_interface
+    # A filter applied to the routing logic to pin datasource to nodes.
+    attr_accessor :egress_filter
+    # True if the datasource is reachable and the credentials are valid.
+    attr_accessor :healthy
+    # Unique identifier of the Resource.
+    attr_accessor :id
+    # Unique human-readable name of the Resource.
+    attr_accessor :name
+
+    attr_accessor :port_override
+
+    attr_accessor :region
+
+    attr_accessor :remote_identity_group_id
+
+    attr_accessor :remote_identity_healthcheck_username
+
+    attr_accessor :role_arn
+
+    attr_accessor :role_external_id
+
+    attr_accessor :secret_access_key
+    # ID of the secret store containing credentials for this resource, if any.
+    attr_accessor :secret_store_id
+
+    attr_accessor :session_expiry
+
+    attr_accessor :subdomain
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+
+    def initialize(
+      access_key: nil,
+      bind_interface: nil,
+      egress_filter: nil,
+      healthy: nil,
+      id: nil,
+      name: nil,
+      port_override: nil,
+      region: nil,
+      remote_identity_group_id: nil,
+      remote_identity_healthcheck_username: nil,
+      role_arn: nil,
+      role_external_id: nil,
+      secret_access_key: nil,
+      secret_store_id: nil,
+      session_expiry: nil,
+      subdomain: nil,
+      tags: nil
+    )
+      @access_key = access_key == nil ? "" : access_key
+      @bind_interface = bind_interface == nil ? "" : bind_interface
+      @egress_filter = egress_filter == nil ? "" : egress_filter
+      @healthy = healthy == nil ? false : healthy
+      @id = id == nil ? "" : id
+      @name = name == nil ? "" : name
+      @port_override = port_override == nil ? 0 : port_override
+      @region = region == nil ? "" : region
+      @remote_identity_group_id = remote_identity_group_id == nil ? "" : remote_identity_group_id
+      @remote_identity_healthcheck_username = remote_identity_healthcheck_username == nil ? "" : remote_identity_healthcheck_username
+      @role_arn = role_arn == nil ? "" : role_arn
+      @role_external_id = role_external_id == nil ? "" : role_external_id
+      @secret_access_key = secret_access_key == nil ? "" : secret_access_key
+      @secret_store_id = secret_store_id == nil ? "" : secret_store_id
+      @session_expiry = session_expiry == nil ? 0 : session_expiry
+      @subdomain = subdomain == nil ? "" : subdomain
+      @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   class AWSStore
     # Unique identifier of the SecretStore.
     attr_accessor :id
@@ -655,17 +818,15 @@ module SDM
 
   # AccountGrants connect a resource directly to an account, giving the account the permission to connect to that resource.
   class AccountGrant
-    # The account id of this AccountGrant.
+    # The account ID of this AccountGrant.
     attr_accessor :account_id
     # Unique identifier of the AccountGrant.
     attr_accessor :id
-    # The resource id of this AccountGrant.
+    # The resource ID of this AccountGrant.
     attr_accessor :resource_id
-    # The timestamp when the resource will be granted. Optional. Both start_at
-    # and end_at must be defined together, or not defined at all.
+    # The timestamp when the resource will be granted. When creating an AccountGrant, if this field is not specified, it will default to the current time.
     attr_accessor :start_from
-    # The timestamp when the resource grant will expire. Optional. Both
-    # start_at and end_at must be defined together, or not defined at all.
+    # The timestamp when the resource grant will expire.
     attr_accessor :valid_until
 
     def initialize(
@@ -1930,6 +2091,68 @@ module SDM
     end
   end
 
+  # CyberarkConjurStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
+  class CyberarkConjurStore
+    attr_accessor :appurl
+    # Unique identifier of the SecretStore.
+    attr_accessor :id
+    # Unique human-readable name of the SecretStore.
+    attr_accessor :name
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+
+    def initialize(
+      appurl: nil,
+      id: nil,
+      name: nil,
+      tags: nil
+    )
+      @appurl = appurl == nil ? "" : appurl
+      @id = id == nil ? "" : id
+      @name = name == nil ? "" : name
+      @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
+  # CyberarkPAMExperimentalStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
+  class CyberarkPAMExperimentalStore
+    attr_accessor :appurl
+    # Unique identifier of the SecretStore.
+    attr_accessor :id
+    # Unique human-readable name of the SecretStore.
+    attr_accessor :name
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+
+    def initialize(
+      appurl: nil,
+      id: nil,
+      name: nil,
+      tags: nil
+    )
+      @appurl = appurl == nil ? "" : appurl
+      @id = id == nil ? "" : id
+      @name = name == nil ? "" : name
+      @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   class DB2I
     # Bind interface
     attr_accessor :bind_interface
@@ -2078,6 +2301,42 @@ module SDM
     end
   end
 
+  # DelineaStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
+  class DelineaStore
+    # Unique identifier of the SecretStore.
+    attr_accessor :id
+    # Unique human-readable name of the SecretStore.
+    attr_accessor :name
+
+    attr_accessor :server_url
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+
+    attr_accessor :tenant_name
+
+    def initialize(
+      id: nil,
+      name: nil,
+      server_url: nil,
+      tags: nil,
+      tenant_name: nil
+    )
+      @id = id == nil ? "" : id
+      @name = name == nil ? "" : name
+      @server_url = server_url == nil ? "" : server_url
+      @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
+      @tenant_name = tenant_name == nil ? "" : tenant_name
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   class DocumentDBHost
     attr_accessor :auth_database
     # Bind interface
@@ -3368,6 +3627,7 @@ module SDM
     end
   end
 
+  # MTLSMysql is currently unstable, and its API may change, or it may be removed, without a major version bump.
   class MTLSMysql
     # Bind interface
     attr_accessor :bind_interface
@@ -3727,6 +3987,7 @@ module SDM
     end
   end
 
+  # MongoHost is currently unstable, and its API may change, or it may be removed, without a major version bump.
   class MongoHost
     attr_accessor :auth_database
     # Bind interface
@@ -3949,6 +4210,7 @@ module SDM
     end
   end
 
+  # MongoReplicaSet is currently unstable, and its API may change, or it may be removed, without a major version bump.
   class MongoReplicaSet
     attr_accessor :auth_database
     # Bind interface
@@ -4027,6 +4289,7 @@ module SDM
     end
   end
 
+  # MongoShardedCluster is currently unstable, and its API may change, or it may be removed, without a major version bump.
   class MongoShardedCluster
     attr_accessor :auth_database
     # Bind interface
@@ -4403,6 +4666,7 @@ module SDM
     end
   end
 
+  # Oracle is currently unstable, and its API may change, or it may be removed, without a major version bump.
   class Oracle
     # Bind interface
     attr_accessor :bind_interface
@@ -5318,11 +5582,6 @@ module SDM
   class Role
     # AccessRules is a list of access rules defining the resources this Role has access to.
     attr_accessor :access_rules
-    # Composite is true if the Role is a composite role.
-    #
-    # Deprecated: composite roles are deprecated, use multi-role via
-    # AccountAttachments instead.
-    attr_accessor :composite
     # Unique identifier of the Role.
     attr_accessor :id
     # Unique human-readable name of the Role.
@@ -5332,13 +5591,11 @@ module SDM
 
     def initialize(
       access_rules: nil,
-      composite: nil,
       id: nil,
       name: nil,
       tags: nil
     )
       @access_rules = access_rules == nil ? SDM::_porcelain_zero_value_access_rules() : access_rules
-      @composite = composite == nil ? false : composite
       @id = id == nil ? "" : id
       @name = name == nil ? "" : name
       @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
@@ -5353,122 +5610,6 @@ module SDM
     end
   end
 
-  # A RoleAttachment assigns a role to a composite role.
-  #
-  # Deprecated: use multi-role via AccountAttachments instead.
-  class RoleAttachment
-    # The id of the attached role of this RoleAttachment.
-    attr_accessor :attached_role_id
-    # The id of the composite role of this RoleAttachment.
-    attr_accessor :composite_role_id
-    # Unique identifier of the RoleAttachment.
-    attr_accessor :id
-
-    def initialize(
-      attached_role_id: nil,
-      composite_role_id: nil,
-      id: nil
-    )
-      @attached_role_id = attached_role_id == nil ? "" : attached_role_id
-      @composite_role_id = composite_role_id == nil ? "" : composite_role_id
-      @id = id == nil ? "" : id
-    end
-
-    def to_json(options = {})
-      hash = {}
-      self.instance_variables.each do |var|
-        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
-      end
-      hash.to_json
-    end
-  end
-
-  # RoleAttachmentCreateResponse reports how the RoleAttachments were created in the system.
-  #
-  # Deprecated: use multi-role via AccountAttachments instead.
-  class RoleAttachmentCreateResponse
-    # Reserved for future use.
-    attr_accessor :meta
-    # Rate limit information.
-    attr_accessor :rate_limit
-    # The created RoleAttachment.
-    attr_accessor :role_attachment
-
-    def initialize(
-      meta: nil,
-      rate_limit: nil,
-      role_attachment: nil
-    )
-      @meta = meta == nil ? nil : meta
-      @rate_limit = rate_limit == nil ? nil : rate_limit
-      @role_attachment = role_attachment == nil ? nil : role_attachment
-    end
-
-    def to_json(options = {})
-      hash = {}
-      self.instance_variables.each do |var|
-        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
-      end
-      hash.to_json
-    end
-  end
-
-  # RoleAttachmentDeleteResponse returns information about a RoleAttachment that was deleted.
-  #
-  # Deprecated: use multi-role via AccountAttachments instead.
-  class RoleAttachmentDeleteResponse
-    # Reserved for future use.
-    attr_accessor :meta
-    # Rate limit information.
-    attr_accessor :rate_limit
-
-    def initialize(
-      meta: nil,
-      rate_limit: nil
-    )
-      @meta = meta == nil ? nil : meta
-      @rate_limit = rate_limit == nil ? nil : rate_limit
-    end
-
-    def to_json(options = {})
-      hash = {}
-      self.instance_variables.each do |var|
-        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
-      end
-      hash.to_json
-    end
-  end
-
-  # RoleAttachmentGetResponse returns a requested RoleAttachment.
-  #
-  # Deprecated: use multi-role via AccountAttachments instead.
-  class RoleAttachmentGetResponse
-    # Reserved for future use.
-    attr_accessor :meta
-    # Rate limit information.
-    attr_accessor :rate_limit
-    # The requested RoleAttachment.
-    attr_accessor :role_attachment
-
-    def initialize(
-      meta: nil,
-      rate_limit: nil,
-      role_attachment: nil
-    )
-      @meta = meta == nil ? nil : meta
-      @rate_limit = rate_limit == nil ? nil : rate_limit
-      @role_attachment = role_attachment == nil ? nil : role_attachment
-    end
-
-    def to_json(options = {})
-      hash = {}
-      self.instance_variables.each do |var|
-        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
-      end
-      hash.to_json
-    end
-  end
-
   # RoleCreateResponse reports how the Roles were created in the system. It can
   # communicate partial successes or failures.
   class RoleCreateResponse
@@ -5550,122 +5691,6 @@ module SDM
     end
   end
 
-  # A RoleGrant connects a resource to a role, granting members of the role access to that resource.
-  #
-  # Deprecated: use Role access rules instead.
-  class RoleGrant
-    # Unique identifier of the RoleGrant.
-    attr_accessor :id
-    # The id of the resource of this RoleGrant.
-    attr_accessor :resource_id
-    # The id of the attached role of this RoleGrant.
-    attr_accessor :role_id
-
-    def initialize(
-      id: nil,
-      resource_id: nil,
-      role_id: nil
-    )
-      @id = id == nil ? "" : id
-      @resource_id = resource_id == nil ? "" : resource_id
-      @role_id = role_id == nil ? "" : role_id
-    end
-
-    def to_json(options = {})
-      hash = {}
-      self.instance_variables.each do |var|
-        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
-      end
-      hash.to_json
-    end
-  end
-
-  # RoleGrantCreateResponse reports how the RoleGrants were created in the system.
-  #
-  # Deprecated: use Role access rules instead.
-  class RoleGrantCreateResponse
-    # Reserved for future use.
-    attr_accessor :meta
-    # Rate limit information.
-    attr_accessor :rate_limit
-    # The created RoleGrant.
-    attr_accessor :role_grant
-
-    def initialize(
-      meta: nil,
-      rate_limit: nil,
-      role_grant: nil
-    )
-      @meta = meta == nil ? nil : meta
-      @rate_limit = rate_limit == nil ? nil : rate_limit
-      @role_grant = role_grant == nil ? nil : role_grant
-    end
-
-    def to_json(options = {})
-      hash = {}
-      self.instance_variables.each do |var|
-        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
-      end
-      hash.to_json
-    end
-  end
-
-  # RoleGrantDeleteResponse returns information about a RoleGrant that was deleted.
-  #
-  # Deprecated: use Role access rules instead.
-  class RoleGrantDeleteResponse
-    # Reserved for future use.
-    attr_accessor :meta
-    # Rate limit information.
-    attr_accessor :rate_limit
-
-    def initialize(
-      meta: nil,
-      rate_limit: nil
-    )
-      @meta = meta == nil ? nil : meta
-      @rate_limit = rate_limit == nil ? nil : rate_limit
-    end
-
-    def to_json(options = {})
-      hash = {}
-      self.instance_variables.each do |var|
-        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
-      end
-      hash.to_json
-    end
-  end
-
-  # RoleGrantGetResponse returns a requested RoleGrant.
-  #
-  # Deprecated: use Role access rules instead.
-  class RoleGrantGetResponse
-    # Reserved for future use.
-    attr_accessor :meta
-    # Rate limit information.
-    attr_accessor :rate_limit
-    # The requested RoleGrant.
-    attr_accessor :role_grant
-
-    def initialize(
-      meta: nil,
-      rate_limit: nil,
-      role_grant: nil
-    )
-      @meta = meta == nil ? nil : meta
-      @rate_limit = rate_limit == nil ? nil : rate_limit
-      @role_grant = role_grant == nil ? nil : role_grant
-    end
-
-    def to_json(options = {})
-      hash = {}
-      self.instance_variables.each do |var|
-        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
-      end
-      hash.to_json
-    end
-  end
-
   # RoleUpdateResponse returns the fields of a Role after it has been updated by
   # a RoleUpdateRequest.
   class RoleUpdateResponse
@@ -6650,9 +6675,11 @@ module SDM
     end
   end
 
+  # @private
   def self._porcelain_zero_value_tags()
     {}
   end
+  # @private
   def self._porcelain_zero_value_access_rules()
     []
   end