RubyGems - strongdm - Versions diffs - 16.20.0 → 16.21.0 - Mend

strongdm 16.20.0 → 16.21.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (23) hide show

checksums.yaml +4 -4
data/.git/ORIG_HEAD +1 -1
data/.git/index +0 -0
data/.git/logs/HEAD +3 -3
data/.git/logs/refs/heads/master +2 -2
data/.git/logs/refs/remotes/origin/HEAD +1 -1
data/.git/objects/pack/{pack-c59ede94a0347eb670c4e52785e0bfa2f5afdd7b.idx → pack-eae35ff69002e9df0e65979331fda13eb2e8a7ff.idx} +0 -0
data/.git/objects/pack/{pack-c59ede94a0347eb670c4e52785e0bfa2f5afdd7b.pack → pack-eae35ff69002e9df0e65979331fda13eb2e8a7ff.pack} +0 -0
data/.git/packed-refs +3 -2
data/.git/refs/heads/master +1 -1
data/lib/grpc/plumbing.rb +123 -0
data/lib/grpc/requestable_account_entitlements_pb.rb +49 -0
data/lib/grpc/requestable_account_entitlements_services_pb.rb +38 -0
data/lib/grpc/requestable_resource_entitlements_pb.rb +49 -0
data/lib/grpc/requestable_resource_entitlements_services_pb.rb +38 -0
data/lib/grpc/requestable_role_entitlements_pb.rb +49 -0
data/lib/grpc/requestable_role_entitlements_services_pb.rb +38 -0
data/lib/models/porcelain.rb +96 -0
data/lib/strongdm.rb +40 -1
data/lib/svc.rb +249 -0
data/lib/version +1 -1
data/lib/version.rb +1 -1
metadata +9 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 2e6b32d3fe139cbd9845f3f56447c368792c3f018170a0113d39386f4738a5cf
-  data.tar.gz: a78a471a817c8082a8cbd22e63852115ffa1ed837cd35b7e191c42a7e0adf7a8
+  metadata.gz: 42d8b053e5b3e73f2a3a3143802b782aceaf5fed10f502015d80d2bdfc4c63b9
+  data.tar.gz: 18d5278d545ce9cf6b9c74b5765b9f41bc542f4331b2e25240d8fa6c52552cd4
 SHA512:
-  metadata.gz: 479fb414147cfb1db9430031e7376853b441df11b34129e2a77ba37b2c98ec06cf2b347743bf50bd6a8f6a50c95347be8efb1134d8890a109e9b3bf577d25bdc
-  data.tar.gz: 10e70a183d09c3b09eeab828c84eb82cdf8de193acbd5f4a8c559383147b2e165ec34d953a7d9bdb203633bc96e26dcb208842aeaef856bd9db59c01bdc02a72
+  metadata.gz: c224fbfaa40c3ea0baa67379a818cb13f34877744d1b11d24fae4118f846e4e29b15d22d7315c73854d375b47fa06f4f0be653a40de43ebd5ed5b3cf41ff5897
+  data.tar.gz: 4976e9b9b0e7c66a65b7311c4da675299ae81334833ec41679f3fd15cc732ae834b02352fdf6000bb29a827cc5fa3cb9d3e9e8c47cfd681c311e9b8b194adcce

data/.git/ORIG_HEAD CHANGED Viewed

	@@ -1 +1 @@
1	- ~~faf9218bcf932aa16115ce5bdad98cf7e1c26e35~~
1	+ 74344928c432ecaaab2bf22852ce85c7e22147f8

data/.git/index CHANGED Viewed

Binary file

data/.git/logs/HEAD CHANGED Viewed

@@ -1,3 +1,3 @@
-0000000000000000000000000000000000000000 faf9218bcf932aa16115ce5bdad98cf7e1c26e35 root <root@27511d56aa41.(none)> 1773315083 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
-faf9218bcf932aa16115ce5bdad98cf7e1c26e35 faf9218bcf932aa16115ce5bdad98cf7e1c26e35 root <root@27511d56aa41.(none)> 1773315083 +0000	checkout: moving from master to master
-faf9218bcf932aa16115ce5bdad98cf7e1c26e35 74344928c432ecaaab2bf22852ce85c7e22147f8 root <root@27511d56aa41.(none)> 1773315083 +0000	merge origin/development: Fast-forward
+0000000000000000000000000000000000000000 74344928c432ecaaab2bf22852ce85c7e22147f8 root <root@ab31c3241341.(none)> 1773333207 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+74344928c432ecaaab2bf22852ce85c7e22147f8 74344928c432ecaaab2bf22852ce85c7e22147f8 root <root@ab31c3241341.(none)> 1773333207 +0000	checkout: moving from master to master
+74344928c432ecaaab2bf22852ce85c7e22147f8 c414fe2440a5b8fac52f3c46767d19187f470666 root <root@ab31c3241341.(none)> 1773333207 +0000	merge origin/development: Fast-forward

data/.git/logs/refs/heads/master CHANGED Viewed

@@ -1,2 +1,2 @@
-0000000000000000000000000000000000000000 faf9218bcf932aa16115ce5bdad98cf7e1c26e35 root <root@27511d56aa41.(none)> 1773315083 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
-faf9218bcf932aa16115ce5bdad98cf7e1c26e35 74344928c432ecaaab2bf22852ce85c7e22147f8 root <root@27511d56aa41.(none)> 1773315083 +0000	merge origin/development: Fast-forward
+0000000000000000000000000000000000000000 74344928c432ecaaab2bf22852ce85c7e22147f8 root <root@ab31c3241341.(none)> 1773333207 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+74344928c432ecaaab2bf22852ce85c7e22147f8 c414fe2440a5b8fac52f3c46767d19187f470666 root <root@ab31c3241341.(none)> 1773333207 +0000	merge origin/development: Fast-forward

data/.git/logs/refs/remotes/origin/HEAD CHANGED Viewed

	@@ -1 +1 @@
1	- 0000000000000000000000000000000000000000 ~~faf9218bcf932aa16115ce5bdad98cf7e1c26e35~~ root <root@~~27511d56aa41~~.(none)> ~~1773315083~~ +0000 clone: from github.com:strongdm/strongdm-sdk-ruby.git
1	+ 0000000000000000000000000000000000000000 74344928c432ecaaab2bf22852ce85c7e22147f8 root <root@ab31c3241341.(none)> 1773333207 +0000 clone: from github.com:strongdm/strongdm-sdk-ruby.git

data/.git/objects/pack/{pack-c59ede94a0347eb670c4e52785e0bfa2f5afdd7b.idx → pack-eae35ff69002e9df0e65979331fda13eb2e8a7ff.idx} RENAMED Viewed

Binary file

data/.git/objects/pack/{pack-c59ede94a0347eb670c4e52785e0bfa2f5afdd7b.pack → pack-eae35ff69002e9df0e65979331fda13eb2e8a7ff.pack} RENAMED Viewed

Binary file

data/.git/packed-refs CHANGED Viewed

@@ -1,6 +1,6 @@
 # pack-refs with: peeled fully-peeled sorted
-74344928c432ecaaab2bf22852ce85c7e22147f8 refs/remotes/origin/development
-faf9218bcf932aa16115ce5bdad98cf7e1c26e35 refs/remotes/origin/master
+c414fe2440a5b8fac52f3c46767d19187f470666 refs/remotes/origin/development
+74344928c432ecaaab2bf22852ce85c7e22147f8 refs/remotes/origin/master
 2e4fe8087177ddea9b3991ca499f758384839c89 refs/tags/untagged-84fd83a4484c785cce63
 04f604866214fab4d5663b5171a3e596331577bd refs/tags/v0.9.4
 6f9a7b75b345c65fb554884907b7060680c807b7 refs/tags/v0.9.5
@@ -146,6 +146,7 @@ c3b0eeef356ddf0cf408d1305fd766791121803f refs/tags/v15.46.0
 0c150dec9c7f8e236df4f8a65dc373193b73991f refs/tags/v16.14.0
 3a90d7e58d3311757817bb558d755e7ee36528f3 refs/tags/v16.16.0
 faf9218bcf932aa16115ce5bdad98cf7e1c26e35 refs/tags/v16.17.0
+74344928c432ecaaab2bf22852ce85c7e22147f8 refs/tags/v16.20.0
 3f2a99e1a4296cf5b4937d57b901051b9381c209 refs/tags/v16.3.0
 eb2c5388eb894fce71666148224e02d977c87baa refs/tags/v16.4.0
 6450bdc10119fb8a00123c4262d6f245a70ed06a refs/tags/v16.5.0

data/.git/refs/heads/master CHANGED Viewed

	@@ -1 +1 @@
1	- ~~74344928c432ecaaab2bf22852ce85c7e22147f8~~
1	+ c414fe2440a5b8fac52f3c46767d19187f470666

data/lib/grpc/plumbing.rb CHANGED Viewed

@@ -79,6 +79,9 @@ require_relative "./remote_identities_history_pb"
 require_relative "./remote_identity_groups_pb"
 require_relative "./remote_identity_groups_history_pb"
 require_relative "./replays_pb"
+require_relative "./requestable_account_entitlements_pb"
+require_relative "./requestable_resource_entitlements_pb"
+require_relative "./requestable_role_entitlements_pb"
 require_relative "./resources_pb"
 require_relative "./resources_history_pb"
 require_relative "./role_resources_pb"
@@ -16320,6 +16323,46 @@ module SDM
       end
       items
     end
+    def self.convert_requestable_account_entitlement_to_porcelain(plumbing)
+      if plumbing == nil
+        return nil
+      end
+      porcelain = RequestableAccountEntitlement.new()
+      porcelain.group_id = (plumbing.group_id)
+      porcelain.mapped_identities = convert_mapped_identities_to_porcelain(plumbing.mapped_identities)
+      porcelain.origin_id = (plumbing.origin_id)
+      porcelain.resource_id = (plumbing.resource_id)
+      porcelain
+    end
+    def self.convert_requestable_account_entitlement_to_plumbing(porcelain)
+      if porcelain == nil
+        return nil
+      end
+      plumbing = V1::RequestableAccountEntitlement.new()
+      plumbing.group_id = (porcelain.group_id)
+      plumbing.mapped_identities = convert_mapped_identities_to_plumbing(porcelain.mapped_identities)
+      plumbing.origin_id = (porcelain.origin_id)
+      plumbing.resource_id = (porcelain.resource_id)
+      plumbing
+    end
+    def self.convert_repeated_requestable_account_entitlement_to_plumbing(porcelains)
+      items = Array.new
+      porcelains.each do |porcelain|
+        plumbing = convert_requestable_account_entitlement_to_plumbing(porcelain)
+        items.append(plumbing)
+      end
+      items
+    end
+    def self.convert_repeated_requestable_account_entitlement_to_porcelain(plumbings)
+      items = Array.new
+      plumbings.each do |plumbing|
+        porcelain = convert_requestable_account_entitlement_to_porcelain(plumbing)
+        items.append(porcelain)
+      end
+      items
+    end
     def self.convert_requestable_resource_to_porcelain(plumbing)
       if plumbing == nil
         return nil
@@ -16366,6 +16409,86 @@ module SDM
       end
       items
     end
+    def self.convert_requestable_resource_entitlement_to_porcelain(plumbing)
+      if plumbing == nil
+        return nil
+      end
+      porcelain = RequestableResourceEntitlement.new()
+      porcelain.account_id = (plumbing.account_id)
+      porcelain.group_id = (plumbing.group_id)
+      porcelain.mapped_identities = convert_mapped_identities_to_porcelain(plumbing.mapped_identities)
+      porcelain.origin_id = (plumbing.origin_id)
+      porcelain
+    end
+    def self.convert_requestable_resource_entitlement_to_plumbing(porcelain)
+      if porcelain == nil
+        return nil
+      end
+      plumbing = V1::RequestableResourceEntitlement.new()
+      plumbing.account_id = (porcelain.account_id)
+      plumbing.group_id = (porcelain.group_id)
+      plumbing.mapped_identities = convert_mapped_identities_to_plumbing(porcelain.mapped_identities)
+      plumbing.origin_id = (porcelain.origin_id)
+      plumbing
+    end
+    def self.convert_repeated_requestable_resource_entitlement_to_plumbing(porcelains)
+      items = Array.new
+      porcelains.each do |porcelain|
+        plumbing = convert_requestable_resource_entitlement_to_plumbing(porcelain)
+        items.append(plumbing)
+      end
+      items
+    end
+    def self.convert_repeated_requestable_resource_entitlement_to_porcelain(plumbings)
+      items = Array.new
+      plumbings.each do |plumbing|
+        porcelain = convert_requestable_resource_entitlement_to_porcelain(plumbing)
+        items.append(porcelain)
+      end
+      items
+    end
+    def self.convert_requestable_role_entitlement_to_porcelain(plumbing)
+      if plumbing == nil
+        return nil
+      end
+      porcelain = RequestableRoleEntitlement.new()
+      porcelain.group_id = (plumbing.group_id)
+      porcelain.mapped_identities = convert_mapped_identities_to_porcelain(plumbing.mapped_identities)
+      porcelain.origin_id = (plumbing.origin_id)
+      porcelain.resource_id = (plumbing.resource_id)
+      porcelain
+    end
+    def self.convert_requestable_role_entitlement_to_plumbing(porcelain)
+      if porcelain == nil
+        return nil
+      end
+      plumbing = V1::RequestableRoleEntitlement.new()
+      plumbing.group_id = (porcelain.group_id)
+      plumbing.mapped_identities = convert_mapped_identities_to_plumbing(porcelain.mapped_identities)
+      plumbing.origin_id = (porcelain.origin_id)
+      plumbing.resource_id = (porcelain.resource_id)
+      plumbing
+    end
+    def self.convert_repeated_requestable_role_entitlement_to_plumbing(porcelains)
+      items = Array.new
+      porcelains.each do |porcelain|
+        plumbing = convert_requestable_role_entitlement_to_plumbing(porcelain)
+        items.append(plumbing)
+      end
+      items
+    end
+    def self.convert_repeated_requestable_role_entitlement_to_porcelain(plumbings)
+      items = Array.new
+      plumbings.each do |plumbing|
+        porcelain = convert_requestable_role_entitlement_to_porcelain(plumbing)
+        items.append(porcelain)
+      end
+      items
+    end
     def self.convert_resource_to_plumbing(porcelain)
       if porcelain == nil
         return nil

data/lib/grpc/requestable_account_entitlements_pb.rb ADDED Viewed

@@ -0,0 +1,49 @@
+# Copyright 2020 StrongDM Inc
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: requestable_account_entitlements.proto
+require "google/protobuf"
+require "options_pb"
+require "spec_pb"
+require "granted_account_entitlements_pb"
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("requestable_account_entitlements.proto", :syntax => :proto3) do
+    add_message "v1.RequestableAccountEntitlementListRequest" do
+      optional :meta, :message, 1, "v1.ListRequestMetadata"
+      optional :account_id, :string, 2
+      optional :filter, :string, 3
+    end
+    add_message "v1.RequestableAccountEntitlementListResponse" do
+      optional :meta, :message, 1, "v1.ListResponseMetadata"
+      repeated :requestable_account_entitlements, :message, 2, "v1.RequestableAccountEntitlement"
+      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
+    end
+    add_message "v1.RequestableAccountEntitlement" do
+      optional :resource_id, :string, 1
+      optional :origin_id, :string, 2
+      optional :mapped_identities, :message, 3, "v1.MappedIdentities"
+      optional :group_id, :string, 4
+    end
+  end
+end
+module V1
+  RequestableAccountEntitlementListRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RequestableAccountEntitlementListRequest").msgclass
+  RequestableAccountEntitlementListResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RequestableAccountEntitlementListResponse").msgclass
+  RequestableAccountEntitlement = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RequestableAccountEntitlement").msgclass
+end

data/lib/grpc/requestable_account_entitlements_services_pb.rb ADDED Viewed

@@ -0,0 +1,38 @@
+# Copyright 2020 StrongDM Inc
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# Source: requestable_account_entitlements.proto for package 'v1'
+require "grpc"
+require "requestable_account_entitlements_pb"
+module V1
+  module RequestableAccountEntitlements
+    # RequestableAccountEntitlements enumerates the resources that an account is permitted to request access to.
+    # The RequestableAccountEntitlements service is read-only.
+    class Service
+      include ::GRPC::GenericService
+      self.marshal_class_method = :encode
+      self.unmarshal_class_method = :decode
+      self.service_name = "v1.RequestableAccountEntitlements"
+      # List gets a list of RequestableAccountEntitlement records matching a given set of criteria.
+      rpc :List, ::V1::RequestableAccountEntitlementListRequest, ::V1::RequestableAccountEntitlementListResponse
+    end
+    Stub = Service.rpc_stub_class
+  end
+end

data/lib/grpc/requestable_resource_entitlements_pb.rb ADDED Viewed

@@ -0,0 +1,49 @@
+# Copyright 2020 StrongDM Inc
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: requestable_resource_entitlements.proto
+require "google/protobuf"
+require "options_pb"
+require "spec_pb"
+require "granted_account_entitlements_pb"
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("requestable_resource_entitlements.proto", :syntax => :proto3) do
+    add_message "v1.RequestableResourceEntitlementListRequest" do
+      optional :meta, :message, 1, "v1.ListRequestMetadata"
+      optional :resource_id, :string, 2
+      optional :filter, :string, 3
+    end
+    add_message "v1.RequestableResourceEntitlementListResponse" do
+      optional :meta, :message, 1, "v1.ListResponseMetadata"
+      repeated :requestable_resource_entitlements, :message, 2, "v1.RequestableResourceEntitlement"
+      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
+    end
+    add_message "v1.RequestableResourceEntitlement" do
+      optional :account_id, :string, 1
+      optional :origin_id, :string, 2
+      optional :mapped_identities, :message, 3, "v1.MappedIdentities"
+      optional :group_id, :string, 4
+    end
+  end
+end
+module V1
+  RequestableResourceEntitlementListRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RequestableResourceEntitlementListRequest").msgclass
+  RequestableResourceEntitlementListResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RequestableResourceEntitlementListResponse").msgclass
+  RequestableResourceEntitlement = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RequestableResourceEntitlement").msgclass
+end

data/lib/grpc/requestable_resource_entitlements_services_pb.rb ADDED Viewed

@@ -0,0 +1,38 @@
+# Copyright 2020 StrongDM Inc
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# Source: requestable_resource_entitlements.proto for package 'v1'
+require "grpc"
+require "requestable_resource_entitlements_pb"
+module V1
+  module RequestableResourceEntitlements
+    # RequestableResourceEntitlements enumerates the accounts that are permitted to request access to a given resource.
+    # The RequestableResourceEntitlements service is read-only.
+    class Service
+      include ::GRPC::GenericService
+      self.marshal_class_method = :encode
+      self.unmarshal_class_method = :decode
+      self.service_name = "v1.RequestableResourceEntitlements"
+      # List gets a list of RequestableResourceEntitlement records matching a given set of criteria.
+      rpc :List, ::V1::RequestableResourceEntitlementListRequest, ::V1::RequestableResourceEntitlementListResponse
+    end
+    Stub = Service.rpc_stub_class
+  end
+end

data/lib/grpc/requestable_role_entitlements_pb.rb ADDED Viewed

@@ -0,0 +1,49 @@
+# Copyright 2020 StrongDM Inc
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: requestable_role_entitlements.proto
+require "google/protobuf"
+require "options_pb"
+require "spec_pb"
+require "granted_account_entitlements_pb"
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("requestable_role_entitlements.proto", :syntax => :proto3) do
+    add_message "v1.RequestableRoleEntitlementListRequest" do
+      optional :meta, :message, 1, "v1.ListRequestMetadata"
+      optional :role_id, :string, 2
+      optional :filter, :string, 3
+    end
+    add_message "v1.RequestableRoleEntitlementListResponse" do
+      optional :meta, :message, 1, "v1.ListResponseMetadata"
+      repeated :requestable_role_entitlements, :message, 2, "v1.RequestableRoleEntitlement"
+      optional :rate_limit, :message, 3, "v1.RateLimitMetadata"
+    end
+    add_message "v1.RequestableRoleEntitlement" do
+      optional :resource_id, :string, 1
+      optional :origin_id, :string, 2
+      optional :mapped_identities, :message, 3, "v1.MappedIdentities"
+      optional :group_id, :string, 4
+    end
+  end
+end
+module V1
+  RequestableRoleEntitlementListRequest = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RequestableRoleEntitlementListRequest").msgclass
+  RequestableRoleEntitlementListResponse = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RequestableRoleEntitlementListResponse").msgclass
+  RequestableRoleEntitlement = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.RequestableRoleEntitlement").msgclass
+end

data/lib/grpc/requestable_role_entitlements_services_pb.rb ADDED Viewed

@@ -0,0 +1,38 @@
+# Copyright 2020 StrongDM Inc
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# Source: requestable_role_entitlements.proto for package 'v1'
+require "grpc"
+require "requestable_role_entitlements_pb"
+module V1
+  module RequestableRoleEntitlements
+    # RequestableRoleEntitlements enumerates the resources that a role permits its members to request access to.
+    # The RequestableRoleEntitlements service is read-only.
+    class Service
+      include ::GRPC::GenericService
+      self.marshal_class_method = :encode
+      self.unmarshal_class_method = :decode
+      self.service_name = "v1.RequestableRoleEntitlements"
+      # List gets a list of RequestableRoleEntitlement records matching a given set of criteria.
+      rpc :List, ::V1::RequestableRoleEntitlementListRequest, ::V1::RequestableRoleEntitlementListResponse
+    end
+    Stub = Service.rpc_stub_class
+  end
+end

data/lib/models/porcelain.rb CHANGED Viewed

@@ -15468,6 +15468,38 @@ module SDM
     end
   end
+  # RequestableAccountEntitlement represents an individual resource that an Account is permitted to request access to.
+  class RequestableAccountEntitlement
+    # The unique identifier of the group associated with this entitlement, if any.
+    attr_accessor :group_id
+    # The mapped identity privileges for this entitlement, such as Kubernetes group memberships.
+    attr_accessor :mapped_identities
+    # The unique identifier of the origin of this entitlement (e.g., an Access Workflow ID).
+    attr_accessor :origin_id
+    # The unique identifier of the Resource to which access can be requested.
+    attr_accessor :resource_id
+    def initialize(
+      group_id: nil,
+      mapped_identities: nil,
+      origin_id: nil,
+      resource_id: nil
+    )
+      @group_id = group_id == nil ? "" : group_id
+      @mapped_identities = mapped_identities == nil ? nil : mapped_identities
+      @origin_id = origin_id == nil ? "" : origin_id
+      @resource_id = resource_id == nil ? "" : resource_id
+    end
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
   # RequestableResource is a resource that can be requested via an AccessRequestConfig
   class RequestableResource
     # The current state of the user's access to the resources
@@ -15512,6 +15544,70 @@ module SDM
     end
   end
+  # RequestableResourceEntitlement represents an individual account that is permitted to request access to a Resource.
+  class RequestableResourceEntitlement
+    # The unique identifier of the Account that can request access to this resource.
+    attr_accessor :account_id
+    # The unique identifier of the group associated with this entitlement, if any.
+    attr_accessor :group_id
+    # The mapped identity privileges for this entitlement, such as Kubernetes group memberships.
+    attr_accessor :mapped_identities
+    # The unique identifier of the origin of this entitlement (e.g., an Access Workflow ID).
+    attr_accessor :origin_id
+    def initialize(
+      account_id: nil,
+      group_id: nil,
+      mapped_identities: nil,
+      origin_id: nil
+    )
+      @account_id = account_id == nil ? "" : account_id
+      @group_id = group_id == nil ? "" : group_id
+      @mapped_identities = mapped_identities == nil ? nil : mapped_identities
+      @origin_id = origin_id == nil ? "" : origin_id
+    end
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+  # RequestableRoleEntitlement represents an individual resource that a Role permits its members to request access to.
+  class RequestableRoleEntitlement
+    # The unique identifier of the group associated with this entitlement, if any.
+    attr_accessor :group_id
+    # The mapped identity privileges for this entitlement, such as Kubernetes group memberships.
+    attr_accessor :mapped_identities
+    # The unique identifier of the origin of this entitlement (e.g., an Access Workflow ID).
+    attr_accessor :origin_id
+    # The unique identifier of the Resource to which access can be requested through this role.
+    attr_accessor :resource_id
+    def initialize(
+      group_id: nil,
+      mapped_identities: nil,
+      origin_id: nil,
+      resource_id: nil
+    )
+      @group_id = group_id == nil ? "" : group_id
+      @mapped_identities = mapped_identities == nil ? nil : mapped_identities
+      @origin_id = origin_id == nil ? "" : origin_id
+      @resource_id = resource_id == nil ? "" : resource_id
+    end
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
   # ResourceCreateResponse reports how the Resources were created in the system.
   class ResourceCreateResponse
     # Reserved for future use.

data/lib/strongdm.rb CHANGED Viewed

@@ -31,7 +31,7 @@ module SDM #:nodoc:
     DEFAULT_RETRY_FACTOR = 1.6
     DEFAULT_RETRY_JITTER = 0.2
     API_VERSION = "2025-04-14"
-    USER_AGENT = "strongdm-sdk-ruby/16.20.0"
+    USER_AGENT = "strongdm-sdk-ruby/16.21.0"
     private_constant :DEFAULT_BASE_RETRY_DELAY, :DEFAULT_MAX_RETRY_DELAY, :DEFAULT_RETRY_FACTOR, :DEFAULT_RETRY_JITTER, :API_VERSION, :USER_AGENT
     # Creates a new strongDM API client.
@@ -115,6 +115,9 @@ module SDM #:nodoc:
       @remote_identity_groups = RemoteIdentityGroups.new(@channel, self)
       @remote_identity_groups_history = RemoteIdentityGroupsHistory.new(@channel, self)
       @replays = Replays.new(@channel, self)
+      @requestable_account_entitlements = RequestableAccountEntitlements.new(@channel, self)
+      @requestable_resource_entitlements = RequestableResourceEntitlements.new(@channel, self)
+      @requestable_role_entitlements = RequestableRoleEntitlements.new(@channel, self)
       @resources = Resources.new(@channel, self)
       @resources_history = ResourcesHistory.new(@channel, self)
       @role_resources = RoleResources.new(@channel, self)
@@ -486,6 +489,21 @@ module SDM #:nodoc:
     #
     # See {Replays}.
     attr_reader :replays
+    # RequestableAccountEntitlements enumerates the resources that an account is permitted to request access to.
+    # The RequestableAccountEntitlements service is read-only.
+    #
+    # See {RequestableAccountEntitlements}.
+    attr_reader :requestable_account_entitlements
+    # RequestableResourceEntitlements enumerates the accounts that are permitted to request access to a given resource.
+    # The RequestableResourceEntitlements service is read-only.
+    #
+    # See {RequestableResourceEntitlements}.
+    attr_reader :requestable_resource_entitlements
+    # RequestableRoleEntitlements enumerates the resources that a role permits its members to request access to.
+    # The RequestableRoleEntitlements service is read-only.
+    #
+    # See {RequestableRoleEntitlements}.
+    attr_reader :requestable_role_entitlements
     # Resources are databases, servers, clusters, websites, or clouds that strongDM
     # delegates access to.
     #
@@ -612,6 +630,9 @@ module SDM #:nodoc:
       @remote_identity_groups = RemoteIdentityGroups.new(@channel, self)
       @remote_identity_groups_history = RemoteIdentityGroupsHistory.new(@channel, self)
       @replays = Replays.new(@channel, self)
+      @requestable_account_entitlements = RequestableAccountEntitlements.new(@channel, self)
+      @requestable_resource_entitlements = RequestableResourceEntitlements.new(@channel, self)
+      @requestable_role_entitlements = RequestableRoleEntitlements.new(@channel, self)
       @resources = Resources.new(@channel, self)
       @resources_history = ResourcesHistory.new(@channel, self)
       @role_resources = RoleResources.new(@channel, self)
@@ -657,6 +678,9 @@ module SDM #:nodoc:
       @proxy_cluster_keys = SnapshotProxyClusterKeys.new(client.proxy_cluster_keys)
       @remote_identities = SnapshotRemoteIdentities.new(client.remote_identities)
       @remote_identity_groups = SnapshotRemoteIdentityGroups.new(client.remote_identity_groups)
+      @requestable_account_entitlements = SnapshotRequestableAccountEntitlements.new(client.requestable_account_entitlements)
+      @requestable_resource_entitlements = SnapshotRequestableResourceEntitlements.new(client.requestable_resource_entitlements)
+      @requestable_role_entitlements = SnapshotRequestableRoleEntitlements.new(client.requestable_role_entitlements)
       @resources = SnapshotResources.new(client.resources)
       @role_resources = SnapshotRoleResources.new(client.role_resources)
       @secret_stores = SnapshotSecretStores.new(client.secret_stores)
@@ -783,6 +807,21 @@ module SDM #:nodoc:
     #
     # See {SnapshotRemoteIdentityGroups}.
     attr_reader :remote_identity_groups
+    # RequestableAccountEntitlements enumerates the resources that an account is permitted to request access to.
+    # The RequestableAccountEntitlements service is read-only.
+    #
+    # See {SnapshotRequestableAccountEntitlements}.
+    attr_reader :requestable_account_entitlements
+    # RequestableResourceEntitlements enumerates the accounts that are permitted to request access to a given resource.
+    # The RequestableResourceEntitlements service is read-only.
+    #
+    # See {SnapshotRequestableResourceEntitlements}.
+    attr_reader :requestable_resource_entitlements
+    # RequestableRoleEntitlements enumerates the resources that a role permits its members to request access to.
+    # The RequestableRoleEntitlements service is read-only.
+    #
+    # See {SnapshotRequestableRoleEntitlements}.
+    attr_reader :requestable_role_entitlements
     # Resources are databases, servers, clusters, websites, or clouds that strongDM
     # delegates access to.
     #

data/lib/svc.rb CHANGED Viewed

@@ -6966,6 +6966,255 @@ module SDM #:nodoc:
     end
   end
+  # RequestableAccountEntitlements enumerates the resources that an account is permitted to request access to.
+  # The RequestableAccountEntitlements service is read-only.
+  #
+  # See {RequestableAccountEntitlement}.
+  class RequestableAccountEntitlements
+    extend Gem::Deprecate
+    def initialize(channel, parent)
+      begin
+        @stub = V1::RequestableAccountEntitlements::Stub.new(nil, nil, channel_override: channel)
+      rescue => exception
+        raise Plumbing::convert_error_to_porcelain(exception)
+      end
+      @parent = parent
+    end
+    # List gets a list of RequestableAccountEntitlement records matching a given set of criteria.
+    def list(
+      account_id,
+      filter,
+      *args,
+      deadline: nil
+    )
+      req = V1::RequestableAccountEntitlementListRequest.new()
+      req.meta = V1::ListRequestMetadata.new()
+      if not @parent.page_limit.nil?
+        req.meta.limit = @parent.page_limit
+      end
+      if not @parent.snapshot_time.nil?
+        req.meta.snapshot_at = @parent.snapshot_time
+      end
+      req.account_id = (account_id)
+      req.filter = Plumbing::quote_filter_args(filter, *args)
+      resp = Enumerator::Generator.new { |g|
+        tries = 0
+        loop do
+          begin
+            plumbing_response = @stub.list(req, metadata: @parent.get_metadata("RequestableAccountEntitlements.List", req), deadline: deadline)
+          rescue => exception
+            if (@parent.shouldRetry(tries, exception, deadline))
+              tries + +sleep(@parent.exponentialBackoff(tries, deadline))
+              next
+            end
+            raise Plumbing::convert_error_to_porcelain(exception)
+          end
+          tries = 0
+          plumbing_response.requestable_account_entitlements.each do |plumbing_item|
+            g.yield Plumbing::convert_requestable_account_entitlement_to_porcelain(plumbing_item)
+          end
+          break if plumbing_response.meta.next_cursor == ""
+          req.meta.cursor = plumbing_response.meta.next_cursor
+        end
+      }
+      resp
+    end
+  end
+  # SnapshotRequestableAccountEntitlements exposes the read only methods of the RequestableAccountEntitlements
+  # service for historical queries.
+  class SnapshotRequestableAccountEntitlements
+    extend Gem::Deprecate
+    def initialize(requestable_account_entitlements)
+      @requestable_account_entitlements = requestable_account_entitlements
+    end
+    # List gets a list of RequestableAccountEntitlement records matching a given set of criteria.
+    def list(
+      account_id,
+      filter,
+      *args,
+      deadline: nil
+    )
+      return @requestable_account_entitlements.list(
+               account_id,
+               filter,
+                            *args,
+                            deadline: deadline,
+             )
+    end
+  end
+  # RequestableResourceEntitlements enumerates the accounts that are permitted to request access to a given resource.
+  # The RequestableResourceEntitlements service is read-only.
+  #
+  # See {RequestableResourceEntitlement}.
+  class RequestableResourceEntitlements
+    extend Gem::Deprecate
+    def initialize(channel, parent)
+      begin
+        @stub = V1::RequestableResourceEntitlements::Stub.new(nil, nil, channel_override: channel)
+      rescue => exception
+        raise Plumbing::convert_error_to_porcelain(exception)
+      end
+      @parent = parent
+    end
+    # List gets a list of RequestableResourceEntitlement records matching a given set of criteria.
+    def list(
+      resource_id,
+      filter,
+      *args,
+      deadline: nil
+    )
+      req = V1::RequestableResourceEntitlementListRequest.new()
+      req.meta = V1::ListRequestMetadata.new()
+      if not @parent.page_limit.nil?
+        req.meta.limit = @parent.page_limit
+      end
+      if not @parent.snapshot_time.nil?
+        req.meta.snapshot_at = @parent.snapshot_time
+      end
+      req.resource_id = (resource_id)
+      req.filter = Plumbing::quote_filter_args(filter, *args)
+      resp = Enumerator::Generator.new { |g|
+        tries = 0
+        loop do
+          begin
+            plumbing_response = @stub.list(req, metadata: @parent.get_metadata("RequestableResourceEntitlements.List", req), deadline: deadline)
+          rescue => exception
+            if (@parent.shouldRetry(tries, exception, deadline))
+              tries + +sleep(@parent.exponentialBackoff(tries, deadline))
+              next
+            end
+            raise Plumbing::convert_error_to_porcelain(exception)
+          end
+          tries = 0
+          plumbing_response.requestable_resource_entitlements.each do |plumbing_item|
+            g.yield Plumbing::convert_requestable_resource_entitlement_to_porcelain(plumbing_item)
+          end
+          break if plumbing_response.meta.next_cursor == ""
+          req.meta.cursor = plumbing_response.meta.next_cursor
+        end
+      }
+      resp
+    end
+  end
+  # SnapshotRequestableResourceEntitlements exposes the read only methods of the RequestableResourceEntitlements
+  # service for historical queries.
+  class SnapshotRequestableResourceEntitlements
+    extend Gem::Deprecate
+    def initialize(requestable_resource_entitlements)
+      @requestable_resource_entitlements = requestable_resource_entitlements
+    end
+    # List gets a list of RequestableResourceEntitlement records matching a given set of criteria.
+    def list(
+      resource_id,
+      filter,
+      *args,
+      deadline: nil
+    )
+      return @requestable_resource_entitlements.list(
+               resource_id,
+               filter,
+                            *args,
+                            deadline: deadline,
+             )
+    end
+  end
+  # RequestableRoleEntitlements enumerates the resources that a role permits its members to request access to.
+  # The RequestableRoleEntitlements service is read-only.
+  #
+  # See {RequestableRoleEntitlement}.
+  class RequestableRoleEntitlements
+    extend Gem::Deprecate
+    def initialize(channel, parent)
+      begin
+        @stub = V1::RequestableRoleEntitlements::Stub.new(nil, nil, channel_override: channel)
+      rescue => exception
+        raise Plumbing::convert_error_to_porcelain(exception)
+      end
+      @parent = parent
+    end
+    # List gets a list of RequestableRoleEntitlement records matching a given set of criteria.
+    def list(
+      role_id,
+      filter,
+      *args,
+      deadline: nil
+    )
+      req = V1::RequestableRoleEntitlementListRequest.new()
+      req.meta = V1::ListRequestMetadata.new()
+      if not @parent.page_limit.nil?
+        req.meta.limit = @parent.page_limit
+      end
+      if not @parent.snapshot_time.nil?
+        req.meta.snapshot_at = @parent.snapshot_time
+      end
+      req.role_id = (role_id)
+      req.filter = Plumbing::quote_filter_args(filter, *args)
+      resp = Enumerator::Generator.new { |g|
+        tries = 0
+        loop do
+          begin
+            plumbing_response = @stub.list(req, metadata: @parent.get_metadata("RequestableRoleEntitlements.List", req), deadline: deadline)
+          rescue => exception
+            if (@parent.shouldRetry(tries, exception, deadline))
+              tries + +sleep(@parent.exponentialBackoff(tries, deadline))
+              next
+            end
+            raise Plumbing::convert_error_to_porcelain(exception)
+          end
+          tries = 0
+          plumbing_response.requestable_role_entitlements.each do |plumbing_item|
+            g.yield Plumbing::convert_requestable_role_entitlement_to_porcelain(plumbing_item)
+          end
+          break if plumbing_response.meta.next_cursor == ""
+          req.meta.cursor = plumbing_response.meta.next_cursor
+        end
+      }
+      resp
+    end
+  end
+  # SnapshotRequestableRoleEntitlements exposes the read only methods of the RequestableRoleEntitlements
+  # service for historical queries.
+  class SnapshotRequestableRoleEntitlements
+    extend Gem::Deprecate
+    def initialize(requestable_role_entitlements)
+      @requestable_role_entitlements = requestable_role_entitlements
+    end
+    # List gets a list of RequestableRoleEntitlement records matching a given set of criteria.
+    def list(
+      role_id,
+      filter,
+      *args,
+      deadline: nil
+    )
+      return @requestable_role_entitlements.list(
+               role_id,
+               filter,
+                            *args,
+                            deadline: deadline,
+             )
+    end
+  end
   # Resources are databases, servers, clusters, websites, or clouds that strongDM
   # delegates access to.
   #

data/lib/version CHANGED Viewed

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "16.20.0"
+  VERSION = "16.21.0"
 end

data/lib/version.rb CHANGED Viewed

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "16.20.0"
+  VERSION = "16.21.0"
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: strongdm
 version: !ruby/object:Gem::Version
-  version: 16.20.0
+  version: 16.21.0
 platform: ruby
 authors:
 - strongDM Team
@@ -81,8 +81,8 @@ files:
 - "./.git/logs/HEAD"
 - "./.git/logs/refs/heads/master"
 - "./.git/logs/refs/remotes/origin/HEAD"
-- "./.git/objects/pack/pack-c59ede94a0347eb670c4e52785e0bfa2f5afdd7b.idx"
-- "./.git/objects/pack/pack-c59ede94a0347eb670c4e52785e0bfa2f5afdd7b.pack"
+- "./.git/objects/pack/pack-eae35ff69002e9df0e65979331fda13eb2e8a7ff.idx"
+- "./.git/objects/pack/pack-eae35ff69002e9df0e65979331fda13eb2e8a7ff.pack"
 - "./.git/packed-refs"
 - "./.git/refs/heads/master"
 - "./.git/refs/remotes/origin/HEAD"
@@ -203,6 +203,12 @@ files:
 - "./lib/grpc/remote_identity_groups_services_pb.rb"
 - "./lib/grpc/replays_pb.rb"
 - "./lib/grpc/replays_services_pb.rb"
+- "./lib/grpc/requestable_account_entitlements_pb.rb"
+- "./lib/grpc/requestable_account_entitlements_services_pb.rb"
+- "./lib/grpc/requestable_resource_entitlements_pb.rb"
+- "./lib/grpc/requestable_resource_entitlements_services_pb.rb"
+- "./lib/grpc/requestable_role_entitlements_pb.rb"
+- "./lib/grpc/requestable_role_entitlements_services_pb.rb"
 - "./lib/grpc/resources_history_pb.rb"
 - "./lib/grpc/resources_history_services_pb.rb"
 - "./lib/grpc/resources_pb.rb"