strongdm 2.6.4 → 3.2.1

data/lib/strongdm.rb

@@ -28,7 +28,7 @@ module SDM #:nodoc:
     DEFAULT_BASE_RETRY_DELAY = 0.0030 # 30 ms
     DEFAULT_MAX_RETRY_DELAY = 300 # 300 seconds
     API_VERSION = "2021-08-23"
-    USER_AGENT = "strongdm-sdk-ruby/2.6.4"
+    USER_AGENT = "strongdm-sdk-ruby/3.2.1"
     private_constant :DEFAULT_MAX_RETRIES, :DEFAULT_BASE_RETRY_DELAY, :DEFAULT_MAX_RETRY_DELAY, :API_VERSION, :USER_AGENT
 
     # Creates a new strongDM API client.
@@ -50,13 +50,12 @@ module SDM #:nodoc:
       @remote_identities = RemoteIdentities.new(host, insecure, self)
       @remote_identity_groups = RemoteIdentityGroups.new(host, insecure, self)
       @resources = Resources.new(host, insecure, self)
-      @role_attachments = RoleAttachments.new(host, insecure, self)
-      @role_grants = RoleGrants.new(host, insecure, self)
       @roles = Roles.new(host, insecure, self)
       @secret_stores = SecretStores.new(host, insecure, self)
       @_test_options = Hash.new
     end
 
+    # @private
     def get_metadata(method_name, req)
       return {
                'x-sdm-authentication': @api_access_key,
@@ -82,6 +81,7 @@ module SDM #:nodoc:
       return Base64.strict_encode64(OpenSSL::HMAC.digest(OpenSSL::Digest::SHA256.new, signing_key, request_hash))
     end
 
+    # @private
     def jitterSleep(iter)
       dur_max = @base_retry_delay * 2 ** iter
       if (dur_max > @max_retry_delay)
@@ -91,6 +91,7 @@ module SDM #:nodoc:
       sleep(dur)
     end
 
+    # @private
     def shouldRetry(iter, err)
       if (iter >= @max_retries - 1)
         return false
@@ -156,24 +157,6 @@ module SDM #:nodoc:
     #
     # See {Resources}.
     attr_reader :resources
-    # RoleAttachments represent relationships between composite roles and the roles
-    # that make up those composite roles. When a composite role is attached to another
-    # role, the permissions granted to members of the composite role are augmented to
-    # include the permissions granted to members of the attached role.
-    #
-    # Deprecated: use multi-role via AccountAttachments instead.
-    #
-    # See {RoleAttachments}.
-    attr_reader :role_attachments
-    # RoleGrants represent relationships between composite roles and the roles
-    # that make up those composite roles. When a composite role is attached to another
-    # role, the permissions granted to members of the composite role are augmented to
-    # include the permissions granted to members of the attached role.
-    #
-    # Deprecated: use Role access rules instead.
-    #
-    # See {RoleGrants}.
-    attr_reader :role_grants
     # A Role has a list of access rules which determine which Resources the members
     # of the Role have access to. An Account can be a member of multiple Roles via
     # AccountAttachments.
@@ -184,6 +167,7 @@ module SDM #:nodoc:
     #
     # See {SecretStores}.
     attr_reader :secret_stores
+    # @private
     attr_reader :_test_options
   end
 end

data/lib/svc.rb

@@ -1042,6 +1042,8 @@ module SDM #:nodoc:
   # {AuroraMysql}
   # {AuroraPostgres}
   # {AWS}
+  # {AWSConsole}
+  # {AWSConsoleStaticKeyPair}
   # {Azure}
   # {AzureCertificate}
   # {AzurePostgres}
@@ -1311,336 +1313,6 @@ module SDM #:nodoc:
     end
   end
 
-  # RoleAttachments represent relationships between composite roles and the roles
-  # that make up those composite roles. When a composite role is attached to another
-  # role, the permissions granted to members of the composite role are augmented to
-  # include the permissions granted to members of the attached role.
-  #
-  # Deprecated: use multi-role via AccountAttachments instead.
-  #
-  # See {RoleAttachment}.
-  class RoleAttachments
-    extend Gem::Deprecate
-
-    def initialize(host, insecure, parent)
-      begin
-        if insecure
-          @stub = V1::RoleAttachments::Stub.new(host, :this_channel_is_insecure)
-        else
-          cred = GRPC::Core::ChannelCredentials.new()
-          @stub = V1::RoleAttachments::Stub.new(host, cred)
-        end
-      rescue => exception
-        raise Plumbing::convert_error_to_porcelain(exception)
-      end
-      @parent = parent
-    end
-
-    # Create registers a new RoleAttachment.
-    #
-    # Deprecated: use multi-role via AccountAttachments instead.
-    def create(
-      role_attachment,
-      deadline: nil
-    )
-      req = V1::RoleAttachmentCreateRequest.new()
-
-      req.role_attachment = Plumbing::convert_role_attachment_to_plumbing(role_attachment)
-      tries = 0
-      plumbing_response = nil
-      loop do
-        begin
-          plumbing_response = @stub.create(req, metadata: @parent.get_metadata("RoleAttachments.Create", req), deadline: deadline)
-        rescue => exception
-          if (@parent.shouldRetry(tries, exception))
-            tries + +@parent.jitterSleep(tries)
-            next
-          end
-          raise Plumbing::convert_error_to_porcelain(exception)
-        end
-        break
-      end
-
-      resp = RoleAttachmentCreateResponse.new()
-      resp.meta = Plumbing::convert_create_response_metadata_to_porcelain(plumbing_response.meta)
-      resp.rate_limit = Plumbing::convert_rate_limit_metadata_to_porcelain(plumbing_response.rate_limit)
-      resp.role_attachment = Plumbing::convert_role_attachment_to_porcelain(plumbing_response.role_attachment)
-      resp
-    end
-
-    deprecate :create, :none, 2022, 6
-    # Get reads one RoleAttachment by ID.
-    #
-    # Deprecated: use multi-role via AccountAttachments instead.
-    def get(
-      id,
-      deadline: nil
-    )
-      req = V1::RoleAttachmentGetRequest.new()
-
-      req.id = (id)
-      tries = 0
-      plumbing_response = nil
-      loop do
-        begin
-          plumbing_response = @stub.get(req, metadata: @parent.get_metadata("RoleAttachments.Get", req), deadline: deadline)
-        rescue => exception
-          if (@parent.shouldRetry(tries, exception))
-            tries + +@parent.jitterSleep(tries)
-            next
-          end
-          raise Plumbing::convert_error_to_porcelain(exception)
-        end
-        break
-      end
-
-      resp = RoleAttachmentGetResponse.new()
-      resp.meta = Plumbing::convert_get_response_metadata_to_porcelain(plumbing_response.meta)
-      resp.rate_limit = Plumbing::convert_rate_limit_metadata_to_porcelain(plumbing_response.rate_limit)
-      resp.role_attachment = Plumbing::convert_role_attachment_to_porcelain(plumbing_response.role_attachment)
-      resp
-    end
-
-    deprecate :get, :none, 2022, 6
-    # Delete removes a RoleAttachment by ID.
-    #
-    # Deprecated: use multi-role via AccountAttachments instead.
-    def delete(
-      id,
-      deadline: nil
-    )
-      req = V1::RoleAttachmentDeleteRequest.new()
-
-      req.id = (id)
-      tries = 0
-      plumbing_response = nil
-      loop do
-        begin
-          plumbing_response = @stub.delete(req, metadata: @parent.get_metadata("RoleAttachments.Delete", req), deadline: deadline)
-        rescue => exception
-          if (@parent.shouldRetry(tries, exception))
-            tries + +@parent.jitterSleep(tries)
-            next
-          end
-          raise Plumbing::convert_error_to_porcelain(exception)
-        end
-        break
-      end
-
-      resp = RoleAttachmentDeleteResponse.new()
-      resp.meta = Plumbing::convert_delete_response_metadata_to_porcelain(plumbing_response.meta)
-      resp.rate_limit = Plumbing::convert_rate_limit_metadata_to_porcelain(plumbing_response.rate_limit)
-      resp
-    end
-
-    deprecate :delete, :none, 2022, 6
-    # List gets a list of RoleAttachments matching a given set of criteria.
-    #
-    # Deprecated: use multi-role via AccountAttachments instead.
-    def list(
-      filter,
-      *args,
-      deadline: nil
-    )
-      req = V1::RoleAttachmentListRequest.new()
-      req.meta = V1::ListRequestMetadata.new()
-      page_size_option = @parent._test_options["PageSize"]
-      if page_size_option.is_a? Integer
-        req.meta.limit = page_size_option
-      end
-
-      req.filter = Plumbing::quote_filter_args(filter, *args)
-      resp = Enumerator::Generator.new { |g|
-        tries = 0
-        loop do
-          begin
-            plumbing_response = @stub.list(req, metadata: @parent.get_metadata("RoleAttachments.List", req), deadline: deadline)
-          rescue => exception
-            if (@parent.shouldRetry(tries, exception))
-              tries + +@parent.jitterSleep(tries)
-              next
-            end
-            raise Plumbing::convert_error_to_porcelain(exception)
-          end
-          tries = 0
-          plumbing_response.role_attachments.each do |plumbing_item|
-            g.yield Plumbing::convert_role_attachment_to_porcelain(plumbing_item)
-          end
-          break if plumbing_response.meta.next_cursor == ""
-          req.meta.cursor = plumbing_response.meta.next_cursor
-        end
-      }
-      resp
-    end
-
-    deprecate :list, :none, 2022, 6
-  end
-
-  # RoleGrants represent relationships between composite roles and the roles
-  # that make up those composite roles. When a composite role is attached to another
-  # role, the permissions granted to members of the composite role are augmented to
-  # include the permissions granted to members of the attached role.
-  #
-  # Deprecated: use Role access rules instead.
-  #
-  # See {RoleGrant}.
-  class RoleGrants
-    extend Gem::Deprecate
-
-    def initialize(host, insecure, parent)
-      begin
-        if insecure
-          @stub = V1::RoleGrants::Stub.new(host, :this_channel_is_insecure)
-        else
-          cred = GRPC::Core::ChannelCredentials.new()
-          @stub = V1::RoleGrants::Stub.new(host, cred)
-        end
-      rescue => exception
-        raise Plumbing::convert_error_to_porcelain(exception)
-      end
-      @parent = parent
-    end
-
-    # Create registers a new RoleGrant.
-    #
-    # Deprecated: use Role access rules instead.
-    def create(
-      role_grant,
-      deadline: nil
-    )
-      req = V1::RoleGrantCreateRequest.new()
-
-      req.role_grant = Plumbing::convert_role_grant_to_plumbing(role_grant)
-      tries = 0
-      plumbing_response = nil
-      loop do
-        begin
-          plumbing_response = @stub.create(req, metadata: @parent.get_metadata("RoleGrants.Create", req), deadline: deadline)
-        rescue => exception
-          if (@parent.shouldRetry(tries, exception))
-            tries + +@parent.jitterSleep(tries)
-            next
-          end
-          raise Plumbing::convert_error_to_porcelain(exception)
-        end
-        break
-      end
-
-      resp = RoleGrantCreateResponse.new()
-      resp.meta = Plumbing::convert_create_response_metadata_to_porcelain(plumbing_response.meta)
-      resp.rate_limit = Plumbing::convert_rate_limit_metadata_to_porcelain(plumbing_response.rate_limit)
-      resp.role_grant = Plumbing::convert_role_grant_to_porcelain(plumbing_response.role_grant)
-      resp
-    end
-
-    deprecate :create, :none, 2022, 6
-    # Get reads one RoleGrant by ID.
-    #
-    # Deprecated: use Role access rules instead.
-    def get(
-      id,
-      deadline: nil
-    )
-      req = V1::RoleGrantGetRequest.new()
-
-      req.id = (id)
-      tries = 0
-      plumbing_response = nil
-      loop do
-        begin
-          plumbing_response = @stub.get(req, metadata: @parent.get_metadata("RoleGrants.Get", req), deadline: deadline)
-        rescue => exception
-          if (@parent.shouldRetry(tries, exception))
-            tries + +@parent.jitterSleep(tries)
-            next
-          end
-          raise Plumbing::convert_error_to_porcelain(exception)
-        end
-        break
-      end
-
-      resp = RoleGrantGetResponse.new()
-      resp.meta = Plumbing::convert_get_response_metadata_to_porcelain(plumbing_response.meta)
-      resp.rate_limit = Plumbing::convert_rate_limit_metadata_to_porcelain(plumbing_response.rate_limit)
-      resp.role_grant = Plumbing::convert_role_grant_to_porcelain(plumbing_response.role_grant)
-      resp
-    end
-
-    deprecate :get, :none, 2022, 6
-    # Delete removes a RoleGrant by ID.
-    #
-    # Deprecated: use Role access rules instead.
-    def delete(
-      id,
-      deadline: nil
-    )
-      req = V1::RoleGrantDeleteRequest.new()
-
-      req.id = (id)
-      tries = 0
-      plumbing_response = nil
-      loop do
-        begin
-          plumbing_response = @stub.delete(req, metadata: @parent.get_metadata("RoleGrants.Delete", req), deadline: deadline)
-        rescue => exception
-          if (@parent.shouldRetry(tries, exception))
-            tries + +@parent.jitterSleep(tries)
-            next
-          end
-          raise Plumbing::convert_error_to_porcelain(exception)
-        end
-        break
-      end
-
-      resp = RoleGrantDeleteResponse.new()
-      resp.meta = Plumbing::convert_delete_response_metadata_to_porcelain(plumbing_response.meta)
-      resp.rate_limit = Plumbing::convert_rate_limit_metadata_to_porcelain(plumbing_response.rate_limit)
-      resp
-    end
-
-    deprecate :delete, :none, 2022, 6
-    # List gets a list of RoleGrants matching a given set of criteria.
-    #
-    # Deprecated: use Role access rules instead.
-    def list(
-      filter,
-      *args,
-      deadline: nil
-    )
-      req = V1::RoleGrantListRequest.new()
-      req.meta = V1::ListRequestMetadata.new()
-      page_size_option = @parent._test_options["PageSize"]
-      if page_size_option.is_a? Integer
-        req.meta.limit = page_size_option
-      end
-
-      req.filter = Plumbing::quote_filter_args(filter, *args)
-      resp = Enumerator::Generator.new { |g|
-        tries = 0
-        loop do
-          begin
-            plumbing_response = @stub.list(req, metadata: @parent.get_metadata("RoleGrants.List", req), deadline: deadline)
-          rescue => exception
-            if (@parent.shouldRetry(tries, exception))
-              tries + +@parent.jitterSleep(tries)
-              next
-            end
-            raise Plumbing::convert_error_to_porcelain(exception)
-          end
-          tries = 0
-          plumbing_response.role_grants.each do |plumbing_item|
-            g.yield Plumbing::convert_role_grant_to_porcelain(plumbing_item)
-          end
-          break if plumbing_response.meta.next_cursor == ""
-          req.meta.cursor = plumbing_response.meta.next_cursor
-        end
-      }
-      resp
-    end
-
-    deprecate :list, :none, 2022, 6
-  end
-
   # A Role has a list of access rules which determine which Resources the members
   # of the Role have access to. An Account can be a member of multiple Roles via
   # AccountAttachments.
@@ -1825,6 +1497,9 @@ module SDM #:nodoc:
   # See:
   # {AWSStore}
   # {AzureStore}
+  # {CyberarkConjurStore}
+  # {CyberarkPAMExperimentalStore}
+  # {DelineaStore}
   # {GCPStore}
   # {VaultAppRoleStore}
   # {VaultTLSStore}

data/lib/version

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "2.6.4"
+  VERSION = "3.2.1"
 end

data/lib/version.rb

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "2.6.4"
+  VERSION = "3.2.1"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: strongdm
 version: !ruby/object:Gem::Version
-  version: 2.6.4
+  version: 3.2.1
 platform: ruby
 authors:
 - strongDM Team
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-07-08 00:00:00.000000000 Z
+date: 2022-08-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: grpc
@@ -79,8 +79,8 @@ files:
 - "./.git/logs/HEAD"
 - "./.git/logs/refs/heads/master"
 - "./.git/logs/refs/remotes/origin/HEAD"
-- "./.git/objects/pack/pack-9605cb63890b5fed001c49e509929945ac427bf0.idx"
-- "./.git/objects/pack/pack-9605cb63890b5fed001c49e509929945ac427bf0.pack"
+- "./.git/objects/pack/pack-cff8d23303f23ddc9aaecebd2f8583a0433ef442.idx"
+- "./.git/objects/pack/pack-cff8d23303f23ddc9aaecebd2f8583a0433ef442.pack"
 - "./.git/packed-refs"
 - "./.git/refs/heads/master"
 - "./.git/refs/remotes/origin/HEAD"
@@ -107,10 +107,6 @@ files:
 - "./lib/grpc/remote_identity_groups_services_pb.rb"
 - "./lib/grpc/resources_pb.rb"
 - "./lib/grpc/resources_services_pb.rb"
-- "./lib/grpc/role_attachments_pb.rb"
-- "./lib/grpc/role_attachments_services_pb.rb"
-- "./lib/grpc/role_grants_pb.rb"
-- "./lib/grpc/role_grants_services_pb.rb"
 - "./lib/grpc/roles_pb.rb"
 - "./lib/grpc/roles_services_pb.rb"
 - "./lib/grpc/secret_store_types_pb.rb"

data/lib/grpc/role_attachments_pb.rb

@@ -1,77 +0,0 @@
-# Copyright 2020 StrongDM Inc
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-#
-# Generated by the protocol buffer compiler.  DO NOT EDIT!
-# source: role_attachments.proto
-
-require "google/protobuf"
-
-require "options_pb"
-require "spec_pb"
-Google::Protobuf::DescriptorPool.generated_pool.build do
-  add_file("role_attachments.proto", :syntax => :proto3) do
-    add_message "v1.RoleAttachmentCreateRequest" do
-      optional :meta, :message, 1, "v1.CreateRequestMetadata"
-      optional :role_attachment, :message, 2, "v1.RoleAttachment"
-    end
-    add_message "v1.RoleAttachmentCreateResponse" do
-      optional :meta, :message, 1, "v1.CreateResponseMetadata"
-      optional :role_attachment, :message, 2, "v1.RoleAttachment"
-      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
-    end
-    add_message "v1.RoleAttachmentGetRequest" do
-      optional :meta, :message, 1, "v1.GetRequestMetadata"
-      optional :id, :string, 2
-    end
-    add_message "v1.RoleAttachmentGetResponse" do
-      optional :meta, :message, 1, "v1.GetResponseMetadata"
-      optional :role_attachment, :message, 2, "v1.RoleAttachment"
-      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
-    end
-    add_message "v1.RoleAttachmentDeleteRequest" do
-      optional :meta, :message, 1, "v1.DeleteRequestMetadata"
-      optional :id, :string, 2
-    end
-    add_message "v1.RoleAttachmentDeleteResponse" do
-      optional :meta, :message, 1, "v1.DeleteResponseMetadata"
-      optional :rate_limit, :message, 2, "v1.RateLimitMetadata"
-    end
-    add_message "v1.RoleAttachmentListRequest" do
-      optional :meta, :message, 1, "v1.ListRequestMetadata"
-      optional :filter, :string, 2
-    end
-    add_message "v1.RoleAttachmentListResponse" do
-      optional :meta, :message, 1, "v1.ListResponseMetadata"
-      repeated :role_attachments, :message, 2, "v1.RoleAttachment"
-      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
-    end
-    add_message "v1.RoleAttachment" do
-      optional :id, :string, 1
-      optional :composite_role_id, :string, 2
-      optional :attached_role_id, :string, 3
-    end
-  end
-end
-
-module V1
-  RoleAttachmentCreateRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleAttachmentCreateRequest").msgclass
-  RoleAttachmentCreateResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleAttachmentCreateResponse").msgclass
-  RoleAttachmentGetRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleAttachmentGetRequest").msgclass
-  RoleAttachmentGetResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleAttachmentGetResponse").msgclass
-  RoleAttachmentDeleteRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleAttachmentDeleteRequest").msgclass
-  RoleAttachmentDeleteResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleAttachmentDeleteResponse").msgclass
-  RoleAttachmentListRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleAttachmentListRequest").msgclass
-  RoleAttachmentListResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleAttachmentListResponse").msgclass
-  RoleAttachment = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleAttachment").msgclass
-end

data/lib/grpc/role_attachments_services_pb.rb

@@ -1,56 +0,0 @@
-# Copyright 2020 StrongDM Inc
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-#
-# Generated by the protocol buffer compiler.  DO NOT EDIT!
-# Source: role_attachments.proto for package 'v1'
-
-require "grpc"
-require "role_attachments_pb"
-
-module V1
-  module RoleAttachments
-    # RoleAttachments represent relationships between composite roles and the roles
-    # that make up those composite roles. When a composite role is attached to another
-    # role, the permissions granted to members of the composite role are augmented to
-    # include the permissions granted to members of the attached role.
-    #
-    # Deprecated: use multi-role via AccountAttachments instead.
-    class Service
-      include GRPC::GenericService
-
-      self.marshal_class_method = :encode
-      self.unmarshal_class_method = :decode
-      self.service_name = "v1.RoleAttachments"
-
-      # Create registers a new RoleAttachment.
-      #
-      # Deprecated: use multi-role via AccountAttachments instead.
-      rpc :Create, V1::RoleAttachmentCreateRequest, V1::RoleAttachmentCreateResponse
-      # Get reads one RoleAttachment by ID.
-      #
-      # Deprecated: use multi-role via AccountAttachments instead.
-      rpc :Get, V1::RoleAttachmentGetRequest, V1::RoleAttachmentGetResponse
-      # Delete removes a RoleAttachment by ID.
-      #
-      # Deprecated: use multi-role via AccountAttachments instead.
-      rpc :Delete, V1::RoleAttachmentDeleteRequest, V1::RoleAttachmentDeleteResponse
-      # List gets a list of RoleAttachments matching a given set of criteria.
-      #
-      # Deprecated: use multi-role via AccountAttachments instead.
-      rpc :List, V1::RoleAttachmentListRequest, V1::RoleAttachmentListResponse
-    end
-
-    Stub = Service.rpc_stub_class
-  end
-end

data/lib/grpc/role_grants_pb.rb

@@ -1,77 +0,0 @@
-# Copyright 2020 StrongDM Inc
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-#
-# Generated by the protocol buffer compiler.  DO NOT EDIT!
-# source: role_grants.proto
-
-require "google/protobuf"
-
-require "options_pb"
-require "spec_pb"
-Google::Protobuf::DescriptorPool.generated_pool.build do
-  add_file("role_grants.proto", :syntax => :proto3) do
-    add_message "v1.RoleGrantCreateRequest" do
-      optional :meta, :message, 1, "v1.CreateRequestMetadata"
-      optional :role_grant, :message, 2, "v1.RoleGrant"
-    end
-    add_message "v1.RoleGrantCreateResponse" do
-      optional :meta, :message, 1, "v1.CreateResponseMetadata"
-      optional :role_grant, :message, 2, "v1.RoleGrant"
-      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
-    end
-    add_message "v1.RoleGrantGetRequest" do
-      optional :meta, :message, 1, "v1.GetRequestMetadata"
-      optional :id, :string, 2
-    end
-    add_message "v1.RoleGrantGetResponse" do
-      optional :meta, :message, 1, "v1.GetResponseMetadata"
-      optional :role_grant, :message, 2, "v1.RoleGrant"
-      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
-    end
-    add_message "v1.RoleGrantDeleteRequest" do
-      optional :meta, :message, 1, "v1.DeleteRequestMetadata"
-      optional :id, :string, 2
-    end
-    add_message "v1.RoleGrantDeleteResponse" do
-      optional :meta, :message, 1, "v1.DeleteResponseMetadata"
-      optional :rate_limit, :message, 2, "v1.RateLimitMetadata"
-    end
-    add_message "v1.RoleGrantListRequest" do
-      optional :meta, :message, 1, "v1.ListRequestMetadata"
-      optional :filter, :string, 2
-    end
-    add_message "v1.RoleGrantListResponse" do
-      optional :meta, :message, 1, "v1.ListResponseMetadata"
-      repeated :role_grants, :message, 2, "v1.RoleGrant"
-      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
-    end
-    add_message "v1.RoleGrant" do
-      optional :id, :string, 1
-      optional :resource_id, :string, 2
-      optional :role_id, :string, 3
-    end
-  end
-end
-
-module V1
-  RoleGrantCreateRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleGrantCreateRequest").msgclass
-  RoleGrantCreateResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleGrantCreateResponse").msgclass
-  RoleGrantGetRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleGrantGetRequest").msgclass
-  RoleGrantGetResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleGrantGetResponse").msgclass
-  RoleGrantDeleteRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleGrantDeleteRequest").msgclass
-  RoleGrantDeleteResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleGrantDeleteResponse").msgclass
-  RoleGrantListRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleGrantListRequest").msgclass
-  RoleGrantListResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleGrantListResponse").msgclass
-  RoleGrant = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RoleGrant").msgclass
-end