strongdm 8.1.0 → 8.4.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9126b0fed8d1f9d6bace10080c99994b18fea3dfb5d10728cb14f0ccbf2cac5b
-  data.tar.gz: 45523efb30a4a5615704eac6078c24187c8033739066669afac11c30c032f2ac
+  metadata.gz: 0db6a67f3dc8f6fb4d1f96d31ed4ec252dcafa3f242652ec98add77f1dc4fce0
+  data.tar.gz: eabcaa44c11f5fc550bc8b56d94792ffcba24db02ef05b3c74f8407e50d16b6e
 SHA512:
-  metadata.gz: 8b95773f4109c5e056bcfb92dd4b95ebc52eec97e178c8794622e2169e4bae765f420df3a763d5cf94bf37f1a1f443732abb1344cd4174f8d66d629cb47ed1d5
-  data.tar.gz: 66429d1d6759fb9f349b8fc110ae80ff297f43f3ae7bb98f6ac56de3f8fd338a6f0ecef79b81f4430e787c4974c433a0313e66510f70b9b67efa5f77ae58a2d1
+  metadata.gz: bea0d51be418fcf78661d02d78f3771e3b25a88047d6f01ed4c5835e5c996d7d4e0389e760c6dc9eb1490efcd770d89ab82c115199ce15debd012bddfa398c68
+  data.tar.gz: 311b96003c3e033690af8354471146298507390a889f6a3ee3767782c8060a62d71759b5304873a4e8d07f8881db06dd945f1325d64c360c17a675092019fdb9

data/.git/ORIG_HEAD

@@ -1 +1 @@
-7659a644ef149debee2515386136b7e2d5e917ea
+98b9ee54f8ca2dc8eecd977e22bf3d05ca667667

data/.git/logs/HEAD

@@ -1,3 +1,3 @@
-0000000000000000000000000000000000000000 7659a644ef149debee2515386136b7e2d5e917ea sdmrelease <support@strongdm.com> 1714059057 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
-7659a644ef149debee2515386136b7e2d5e917ea 7659a644ef149debee2515386136b7e2d5e917ea sdmrelease <support@strongdm.com> 1714059057 +0000	checkout: moving from master to master
-7659a644ef149debee2515386136b7e2d5e917ea 14ef2b24960a5e854b60586884494ed913221b5b sdmrelease <support@strongdm.com> 1714059057 +0000	merge origin/development: Fast-forward
+0000000000000000000000000000000000000000 98b9ee54f8ca2dc8eecd977e22bf3d05ca667667 root <root@8f370e732ffa.(none)> 1716241926 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+98b9ee54f8ca2dc8eecd977e22bf3d05ca667667 98b9ee54f8ca2dc8eecd977e22bf3d05ca667667 root <root@8f370e732ffa.(none)> 1716241926 +0000	checkout: moving from master to master
+98b9ee54f8ca2dc8eecd977e22bf3d05ca667667 6ca94f88b799db10fe2a0867b5b53718a0289d0a root <root@8f370e732ffa.(none)> 1716241926 +0000	merge origin/development: Fast-forward

data/.git/logs/refs/heads/master

@@ -1,2 +1,2 @@
-0000000000000000000000000000000000000000 7659a644ef149debee2515386136b7e2d5e917ea sdmrelease <support@strongdm.com> 1714059057 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
-7659a644ef149debee2515386136b7e2d5e917ea 14ef2b24960a5e854b60586884494ed913221b5b sdmrelease <support@strongdm.com> 1714059057 +0000	merge origin/development: Fast-forward
+0000000000000000000000000000000000000000 98b9ee54f8ca2dc8eecd977e22bf3d05ca667667 root <root@8f370e732ffa.(none)> 1716241926 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+98b9ee54f8ca2dc8eecd977e22bf3d05ca667667 6ca94f88b799db10fe2a0867b5b53718a0289d0a root <root@8f370e732ffa.(none)> 1716241926 +0000	merge origin/development: Fast-forward

data/.git/logs/refs/remotes/origin/HEAD

@@ -1 +1 @@
-0000000000000000000000000000000000000000 7659a644ef149debee2515386136b7e2d5e917ea sdmrelease <support@strongdm.com> 1714059057 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+0000000000000000000000000000000000000000 98b9ee54f8ca2dc8eecd977e22bf3d05ca667667 root <root@8f370e732ffa.(none)> 1716241926 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git

data/.git/packed-refs

@@ -1,6 +1,6 @@
 # pack-refs with: peeled fully-peeled sorted 
-14ef2b24960a5e854b60586884494ed913221b5b refs/remotes/origin/development
-7659a644ef149debee2515386136b7e2d5e917ea refs/remotes/origin/master
+6ca94f88b799db10fe2a0867b5b53718a0289d0a refs/remotes/origin/development
+98b9ee54f8ca2dc8eecd977e22bf3d05ca667667 refs/remotes/origin/master
 2e4fe8087177ddea9b3991ca499f758384839c89 refs/tags/untagged-84fd83a4484c785cce63
 04f604866214fab4d5663b5171a3e596331577bd refs/tags/v0.9.4
 6f9a7b75b345c65fb554884907b7060680c807b7 refs/tags/v0.9.5
@@ -105,3 +105,5 @@ d8a1092c15d3618de31ada43875014d96bd21e36 refs/tags/v6.9.0
 c69cd1f08e014470bbe2e4dbc4ad494d4bf78d6c refs/tags/v7.0.0
 f34575bc142eabf113dbbc5b40b3a16e0c026355 refs/tags/v7.1.0
 7659a644ef149debee2515386136b7e2d5e917ea refs/tags/v8.0.0
+14ef2b24960a5e854b60586884494ed913221b5b refs/tags/v8.1.0
+98b9ee54f8ca2dc8eecd977e22bf3d05ca667667 refs/tags/v8.3.0

data/.git/refs/heads/master

@@ -1 +1 @@
-14ef2b24960a5e854b60586884494ed913221b5b
+6ca94f88b799db10fe2a0867b5b53718a0289d0a

data/lib/constants.rb

@@ -93,6 +93,7 @@ module SDM
     NONE = ""
     DUO = "duo"
     TOTP = "totp"
+    OKTA = "okta"
   end
 
   # Activity Entities, all entity types that can be part of an activity.

data/lib/grpc/plumbing.rb

@@ -5416,6 +5416,62 @@ module SDM
       end
       items
     end
+    def self.convert_keyfactor_ssh_store_to_porcelain(plumbing)
+      if plumbing == nil
+        return nil
+      end
+      porcelain = KeyfactorSSHStore.new()
+      porcelain.ca_file_path = (plumbing.ca_file_path)
+      porcelain.certificate_file_path = (plumbing.certificate_file_path)
+      porcelain.default_certificate_authority_name = (plumbing.default_certificate_authority_name)
+      porcelain.default_certificate_profile_name = (plumbing.default_certificate_profile_name)
+      porcelain.default_end_entity_profile_name = (plumbing.default_end_entity_profile_name)
+      porcelain.enrollment_code_env_var = (plumbing.enrollment_code_env_var)
+      porcelain.enrollment_username_env_var = (plumbing.enrollment_username_env_var)
+      porcelain.id = (plumbing.id)
+      porcelain.key_file_path = (plumbing.key_file_path)
+      porcelain.name = (plumbing.name)
+      porcelain.server_address = (plumbing.server_address)
+      porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
+      porcelain
+    end
+
+    def self.convert_keyfactor_ssh_store_to_plumbing(porcelain)
+      if porcelain == nil
+        return nil
+      end
+      plumbing = V1::KeyfactorSSHStore.new()
+      plumbing.ca_file_path = (porcelain.ca_file_path)
+      plumbing.certificate_file_path = (porcelain.certificate_file_path)
+      plumbing.default_certificate_authority_name = (porcelain.default_certificate_authority_name)
+      plumbing.default_certificate_profile_name = (porcelain.default_certificate_profile_name)
+      plumbing.default_end_entity_profile_name = (porcelain.default_end_entity_profile_name)
+      plumbing.enrollment_code_env_var = (porcelain.enrollment_code_env_var)
+      plumbing.enrollment_username_env_var = (porcelain.enrollment_username_env_var)
+      plumbing.id = (porcelain.id)
+      plumbing.key_file_path = (porcelain.key_file_path)
+      plumbing.name = (porcelain.name)
+      plumbing.server_address = (porcelain.server_address)
+      plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
+      plumbing
+    end
+    def self.convert_repeated_keyfactor_ssh_store_to_plumbing(porcelains)
+      items = Array.new
+      porcelains.each do |porcelain|
+        plumbing = convert_keyfactor_ssh_store_to_plumbing(porcelain)
+        items.append(plumbing)
+      end
+      items
+    end
+
+    def self.convert_repeated_keyfactor_ssh_store_to_porcelain(plumbings)
+      items = Array.new
+      plumbings.each do |plumbing|
+        porcelain = convert_keyfactor_ssh_store_to_porcelain(plumbing)
+        items.append(porcelain)
+      end
+      items
+    end
     def self.convert_keyfactor_x_509_store_to_porcelain(plumbing)
       if plumbing == nil
         return nil
@@ -5430,7 +5486,6 @@ module SDM
       porcelain.enrollment_username_env_var = (plumbing.enrollment_username_env_var)
       porcelain.id = (plumbing.id)
       porcelain.key_file_path = (plumbing.key_file_path)
-      porcelain.key_password_env_var = (plumbing.key_password_env_var)
       porcelain.name = (plumbing.name)
       porcelain.server_address = (plumbing.server_address)
       porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
@@ -5451,7 +5506,6 @@ module SDM
       plumbing.enrollment_username_env_var = (porcelain.enrollment_username_env_var)
       plumbing.id = (porcelain.id)
       plumbing.key_file_path = (porcelain.key_file_path)
-      plumbing.key_password_env_var = (porcelain.key_password_env_var)
       plumbing.name = (porcelain.name)
       plumbing.server_address = (porcelain.server_address)
       plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
@@ -10431,6 +10485,9 @@ module SDM
       if porcelain.instance_of? GCPCertX509Store
         plumbing.gcp_cert_x_509 = convert_gcp_cert_x_509_store_to_plumbing(porcelain)
       end
+      if porcelain.instance_of? KeyfactorSSHStore
+        plumbing.keyfactor_ssh = convert_keyfactor_ssh_store_to_plumbing(porcelain)
+      end
       if porcelain.instance_of? KeyfactorX509Store
         plumbing.keyfactor_x_509 = convert_keyfactor_x_509_store_to_plumbing(porcelain)
       end
@@ -10443,6 +10500,12 @@ module SDM
       if porcelain.instance_of? VaultAppRoleCertX509Store
         plumbing.vault_app_role_cert_x_509 = convert_vault_app_role_cert_x_509_store_to_plumbing(porcelain)
       end
+      if porcelain.instance_of? VaultAWSEC2Store
+        plumbing.vault_awsec_2 = convert_vault_awsec_2_store_to_plumbing(porcelain)
+      end
+      if porcelain.instance_of? VaultAWSIAMStore
+        plumbing.vault_awsiam = convert_vault_awsiam_store_to_plumbing(porcelain)
+      end
       if porcelain.instance_of? VaultTLSStore
         plumbing.vault_tls = convert_vault_tls_store_to_plumbing(porcelain)
       end
@@ -10498,6 +10561,9 @@ module SDM
       if plumbing.gcp_cert_x_509 != nil
         return convert_gcp_cert_x_509_store_to_porcelain(plumbing.gcp_cert_x_509)
       end
+      if plumbing.keyfactor_ssh != nil
+        return convert_keyfactor_ssh_store_to_porcelain(plumbing.keyfactor_ssh)
+      end
       if plumbing.keyfactor_x_509 != nil
         return convert_keyfactor_x_509_store_to_porcelain(plumbing.keyfactor_x_509)
       end
@@ -10510,6 +10576,12 @@ module SDM
       if plumbing.vault_app_role_cert_x_509 != nil
         return convert_vault_app_role_cert_x_509_store_to_porcelain(plumbing.vault_app_role_cert_x_509)
       end
+      if plumbing.vault_awsec_2 != nil
+        return convert_vault_awsec_2_store_to_porcelain(plumbing.vault_awsec_2)
+      end
+      if plumbing.vault_awsiam != nil
+        return convert_vault_awsiam_store_to_porcelain(plumbing.vault_awsiam)
+      end
       if plumbing.vault_tls != nil
         return convert_vault_tls_store_to_porcelain(plumbing.vault_tls)
       end
@@ -11473,6 +11545,90 @@ module SDM
       end
       items
     end
+    def self.convert_vault_awsec_2_store_to_porcelain(plumbing)
+      if plumbing == nil
+        return nil
+      end
+      porcelain = VaultAWSEC2Store.new()
+      porcelain.id = (plumbing.id)
+      porcelain.name = (plumbing.name)
+      porcelain.namespace = (plumbing.namespace)
+      porcelain.server_address = (plumbing.server_address)
+      porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
+      porcelain
+    end
+
+    def self.convert_vault_awsec_2_store_to_plumbing(porcelain)
+      if porcelain == nil
+        return nil
+      end
+      plumbing = V1::VaultAWSEC2Store.new()
+      plumbing.id = (porcelain.id)
+      plumbing.name = (porcelain.name)
+      plumbing.namespace = (porcelain.namespace)
+      plumbing.server_address = (porcelain.server_address)
+      plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
+      plumbing
+    end
+    def self.convert_repeated_vault_awsec_2_store_to_plumbing(porcelains)
+      items = Array.new
+      porcelains.each do |porcelain|
+        plumbing = convert_vault_awsec_2_store_to_plumbing(porcelain)
+        items.append(plumbing)
+      end
+      items
+    end
+
+    def self.convert_repeated_vault_awsec_2_store_to_porcelain(plumbings)
+      items = Array.new
+      plumbings.each do |plumbing|
+        porcelain = convert_vault_awsec_2_store_to_porcelain(plumbing)
+        items.append(porcelain)
+      end
+      items
+    end
+    def self.convert_vault_awsiam_store_to_porcelain(plumbing)
+      if plumbing == nil
+        return nil
+      end
+      porcelain = VaultAWSIAMStore.new()
+      porcelain.id = (plumbing.id)
+      porcelain.name = (plumbing.name)
+      porcelain.namespace = (plumbing.namespace)
+      porcelain.server_address = (plumbing.server_address)
+      porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
+      porcelain
+    end
+
+    def self.convert_vault_awsiam_store_to_plumbing(porcelain)
+      if porcelain == nil
+        return nil
+      end
+      plumbing = V1::VaultAWSIAMStore.new()
+      plumbing.id = (porcelain.id)
+      plumbing.name = (porcelain.name)
+      plumbing.namespace = (porcelain.namespace)
+      plumbing.server_address = (porcelain.server_address)
+      plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
+      plumbing
+    end
+    def self.convert_repeated_vault_awsiam_store_to_plumbing(porcelains)
+      items = Array.new
+      porcelains.each do |porcelain|
+        plumbing = convert_vault_awsiam_store_to_plumbing(porcelain)
+        items.append(plumbing)
+      end
+      items
+    end
+
+    def self.convert_repeated_vault_awsiam_store_to_porcelain(plumbings)
+      items = Array.new
+      plumbings.each do |plumbing|
+        porcelain = convert_vault_awsiam_store_to_porcelain(plumbing)
+        items.append(porcelain)
+      end
+      items
+    end
     def self.convert_vault_app_role_cert_ssh_store_to_porcelain(plumbing)
       if plumbing == nil
         return nil

data/lib/grpc/secret_store_types_pb.rb

@@ -34,7 +34,10 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
         optional :delinea, :message, 2900, "v1.DelineaStore"
         optional :gcp, :message, 201, "v1.GCPStore"
         optional :gcp_cert_x_509, :message, 202, "v1.GCPCertX509Store"
+        optional :keyfactor_ssh, :message, 210, "v1.KeyfactorSSHStore"
         optional :keyfactor_x_509, :message, 200, "v1.KeyfactorX509Store"
+        optional :vault_awsec_2, :message, 97, "v1.VaultAWSEC2Store"
+        optional :vault_awsiam, :message, 96, "v1.VaultAWSIAMStore"
         optional :vault_app_role, :message, 4, "v1.VaultAppRoleStore"
         optional :vault_app_role_cert_ssh, :message, 94, "v1.VaultAppRoleCertSSHStore"
         optional :vault_app_role_cert_x_509, :message, 95, "v1.VaultAppRoleCertX509Store"
@@ -115,6 +118,20 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :projectID, :string, 3
       optional :tags, :message, 32771, "v1.Tags"
     end
+    add_message "v1.KeyfactorSSHStore" do
+      optional :id, :string, 1
+      optional :name, :string, 2
+      optional :ca_file_path, :string, 6
+      optional :certificate_file_path, :string, 4
+      optional :default_certificate_authority_name, :string, 10
+      optional :default_certificate_profile_name, :string, 8
+      optional :default_end_entity_profile_name, :string, 9
+      optional :enrollment_code_env_var, :string, 12
+      optional :enrollment_username_env_var, :string, 11
+      optional :key_file_path, :string, 5
+      optional :server_address, :string, 3
+      optional :tags, :message, 32771, "v1.Tags"
+    end
     add_message "v1.KeyfactorX509Store" do
       optional :id, :string, 1
       optional :name, :string, 2
@@ -126,10 +143,23 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :enrollment_code_env_var, :string, 12
       optional :enrollment_username_env_var, :string, 11
       optional :key_file_path, :string, 5
-      optional :key_password_env_var, :string, 7
       optional :server_address, :string, 3
       optional :tags, :message, 32771, "v1.Tags"
     end
+    add_message "v1.VaultAWSEC2Store" do
+      optional :id, :string, 1
+      optional :name, :string, 2
+      optional :namespace, :string, 5
+      optional :server_address, :string, 3
+      optional :tags, :message, 8, "v1.Tags"
+    end
+    add_message "v1.VaultAWSIAMStore" do
+      optional :id, :string, 1
+      optional :name, :string, 2
+      optional :namespace, :string, 5
+      optional :server_address, :string, 3
+      optional :tags, :message, 8, "v1.Tags"
+    end
     add_message "v1.VaultAppRoleStore" do
       optional :id, :string, 1
       optional :name, :string, 2
@@ -235,7 +265,10 @@ module V1
   DelineaStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.DelineaStore").msgclass
   GCPStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.GCPStore").msgclass
   GCPCertX509Store = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.GCPCertX509Store").msgclass
+  KeyfactorSSHStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.KeyfactorSSHStore").msgclass
   KeyfactorX509Store = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.KeyfactorX509Store").msgclass
+  VaultAWSEC2Store = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.VaultAWSEC2Store").msgclass
+  VaultAWSIAMStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.VaultAWSIAMStore").msgclass
   VaultAppRoleStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.VaultAppRoleStore").msgclass
   VaultAppRoleCertSSHStore = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.VaultAppRoleCertSSHStore").msgclass
   VaultAppRoleCertX509Store = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.VaultAppRoleCertX509Store").msgclass

data/lib/models/porcelain.rb

@@ -5253,6 +5253,75 @@ module SDM
     end
   end
 
+  class KeyfactorSSHStore
+    # Path to the root CA that signed the certificate passed to the client for HTTPS connection.
+    # This is not required if the CA is trusted by the host operating system. This should be a PEM
+    # formatted certificate, and doesn't necessarily have to be the CA that signed CertificateFile.
+    attr_accessor :ca_file_path
+    # Path to client certificate in PEM format. This certificate must contain a client certificate that
+    # is recognized by the EJBCA instance represented by Hostname. This PEM file may also contain the private
+    # key associated with the certificate, but KeyFile can also be set to configure the private key.
+    attr_accessor :certificate_file_path
+    # Name of EJBCA certificate authority that will enroll CSR.
+    attr_accessor :default_certificate_authority_name
+    # Certificate profile name that EJBCA will enroll the CSR with.
+    attr_accessor :default_certificate_profile_name
+    # End entity profile that EJBCA will enroll the CSR with.
+    attr_accessor :default_end_entity_profile_name
+    # code used by EJBCA during enrollment. May be left blank if no code is required.
+    attr_accessor :enrollment_code_env_var
+    # username that used by the EJBCA during enrollment. This can be left out.
+    # If so, the username must be auto-generated on the Keyfactor side.
+    attr_accessor :enrollment_username_env_var
+    # Unique identifier of the SecretStore.
+    attr_accessor :id
+    # Path to private key in PEM format. This file should contain the private key associated with the
+    # client certificate configured in CertificateFile.
+    attr_accessor :key_file_path
+    # Unique human-readable name of the SecretStore.
+    attr_accessor :name
+    # the host of the Key Factor CA
+    attr_accessor :server_address
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+
+    def initialize(
+      ca_file_path: nil,
+      certificate_file_path: nil,
+      default_certificate_authority_name: nil,
+      default_certificate_profile_name: nil,
+      default_end_entity_profile_name: nil,
+      enrollment_code_env_var: nil,
+      enrollment_username_env_var: nil,
+      id: nil,
+      key_file_path: nil,
+      name: nil,
+      server_address: nil,
+      tags: nil
+    )
+      @ca_file_path = ca_file_path == nil ? "" : ca_file_path
+      @certificate_file_path = certificate_file_path == nil ? "" : certificate_file_path
+      @default_certificate_authority_name = default_certificate_authority_name == nil ? "" : default_certificate_authority_name
+      @default_certificate_profile_name = default_certificate_profile_name == nil ? "" : default_certificate_profile_name
+      @default_end_entity_profile_name = default_end_entity_profile_name == nil ? "" : default_end_entity_profile_name
+      @enrollment_code_env_var = enrollment_code_env_var == nil ? "" : enrollment_code_env_var
+      @enrollment_username_env_var = enrollment_username_env_var == nil ? "" : enrollment_username_env_var
+      @id = id == nil ? "" : id
+      @key_file_path = key_file_path == nil ? "" : key_file_path
+      @name = name == nil ? "" : name
+      @server_address = server_address == nil ? "" : server_address
+      @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   class KeyfactorX509Store
     # Path to the root CA that signed the certificate passed to the client for HTTPS connection.
     # This is not required if the CA is trusted by the host operating system. This should be a PEM
@@ -5278,8 +5347,6 @@ module SDM
     # Path to private key in PEM format. This file should contain the private key associated with the
     # client certificate configured in CertificateFile.
     attr_accessor :key_file_path
-    # optional environment variable housing the password that is used to decrypt the key file.
-    attr_accessor :key_password_env_var
     # Unique human-readable name of the SecretStore.
     attr_accessor :name
     # the host of the Key Factor CA
@@ -5297,7 +5364,6 @@ module SDM
       enrollment_username_env_var: nil,
       id: nil,
       key_file_path: nil,
-      key_password_env_var: nil,
       name: nil,
       server_address: nil,
       tags: nil
@@ -5311,7 +5377,6 @@ module SDM
       @enrollment_username_env_var = enrollment_username_env_var == nil ? "" : enrollment_username_env_var
       @id = id == nil ? "" : id
       @key_file_path = key_file_path == nil ? "" : key_file_path
-      @key_password_env_var = key_password_env_var == nil ? "" : key_password_env_var
       @name = name == nil ? "" : name
       @server_address = server_address == nil ? "" : server_address
       @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
@@ -10682,6 +10747,78 @@ module SDM
     end
   end
 
+  # VaultAWSEC2Store is currently unstable, and its API may change, or it may be removed, without a major version bump.
+  class VaultAWSEC2Store
+    # Unique identifier of the SecretStore.
+    attr_accessor :id
+    # Unique human-readable name of the SecretStore.
+    attr_accessor :name
+    # The namespace to make requests within
+    attr_accessor :namespace
+    # The URL of the Vault to target
+    attr_accessor :server_address
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+
+    def initialize(
+      id: nil,
+      name: nil,
+      namespace: nil,
+      server_address: nil,
+      tags: nil
+    )
+      @id = id == nil ? "" : id
+      @name = name == nil ? "" : name
+      @namespace = namespace == nil ? "" : namespace
+      @server_address = server_address == nil ? "" : server_address
+      @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
+  # VaultAWSIAMStore is currently unstable, and its API may change, or it may be removed, without a major version bump.
+  class VaultAWSIAMStore
+    # Unique identifier of the SecretStore.
+    attr_accessor :id
+    # Unique human-readable name of the SecretStore.
+    attr_accessor :name
+    # The namespace to make requests within
+    attr_accessor :namespace
+    # The URL of the Vault to target
+    attr_accessor :server_address
+    # Tags is a map of key, value pairs.
+    attr_accessor :tags
+
+    def initialize(
+      id: nil,
+      name: nil,
+      namespace: nil,
+      server_address: nil,
+      tags: nil
+    )
+      @id = id == nil ? "" : id
+      @name = name == nil ? "" : name
+      @namespace = namespace == nil ? "" : namespace
+      @server_address = server_address == nil ? "" : server_address
+      @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   class VaultAppRoleCertSSHStore
     # Unique identifier of the SecretStore.
     attr_accessor :id

data/lib/strongdm.rb

@@ -29,7 +29,7 @@ module SDM #:nodoc:
     DEFAULT_BASE_RETRY_DELAY = 0.0030 # 30 ms
     DEFAULT_MAX_RETRY_DELAY = 300 # 300 seconds
     API_VERSION = "2024-03-28"
-    USER_AGENT = "strongdm-sdk-ruby/8.1.0"
+    USER_AGENT = "strongdm-sdk-ruby/8.4.0"
     private_constant :DEFAULT_MAX_RETRIES, :DEFAULT_BASE_RETRY_DELAY, :DEFAULT_MAX_RETRY_DELAY, :API_VERSION, :USER_AGENT
 
     # Creates a new strongDM API client.

data/lib/svc.rb

@@ -4508,10 +4508,13 @@ module SDM #:nodoc:
   # {DelineaStore}
   # {GCPStore}
   # {GCPCertX509Store}
+  # {KeyfactorSSHStore}
   # {KeyfactorX509Store}
   # {VaultAppRoleStore}
   # {VaultAppRoleCertSSHStore}
   # {VaultAppRoleCertX509Store}
+  # {VaultAWSEC2Store}
+  # {VaultAWSIAMStore}
   # {VaultTLSStore}
   # {VaultTLSCertSSHStore}
   # {VaultTLSCertX509Store}

data/lib/version

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "8.1.0"
+  VERSION = "8.4.0"
 end

data/lib/version.rb

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "8.1.0"
+  VERSION = "8.4.0"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: strongdm
 version: !ruby/object:Gem::Version
-  version: 8.1.0
+  version: 8.4.0
 platform: ruby
 authors:
 - strongDM Team
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2024-04-25 00:00:00.000000000 Z
+date: 2024-05-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: grpc
@@ -81,8 +81,8 @@ files:
 - "./.git/logs/HEAD"
 - "./.git/logs/refs/heads/master"
 - "./.git/logs/refs/remotes/origin/HEAD"
-- "./.git/objects/pack/pack-63b03bbfbc64adbf239ae7962c94b13e00085e38.idx"
-- "./.git/objects/pack/pack-63b03bbfbc64adbf239ae7962c94b13e00085e38.pack"
+- "./.git/objects/pack/pack-4ee1251da9ac4f762232f7c2302709c4007ce5db.idx"
+- "./.git/objects/pack/pack-4ee1251da9ac4f762232f7c2302709c4007ce5db.pack"
 - "./.git/packed-refs"
 - "./.git/refs/heads/master"
 - "./.git/refs/remotes/origin/HEAD"