strongdm 3.17.0 → 3.18.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: bcea442e418441187889bca117103ea9daced9202213d29d11feb42c15d63543
-  data.tar.gz: c6df2509fd9ae5a331718d567e74fcc6941bb2ab4bad0fb6d06d9427fbbe4ce7
+  metadata.gz: 8b966417999f917f548d43b50133607ab79cb603f20a2b23fb76c1342b1fbfd7
+  data.tar.gz: 284fb54a2e0afa33ed2138be0fc8a6e794b8b19fa1c3c12812baa51c50b8847c
 SHA512:
-  metadata.gz: 736a52ce3820c31d5deab9f154090678a18a4510f56085dd233fb86c66304dfd6d2301a1a7ffaaa91d7d428c665fea3157b8e6496ab81650aca5aab7afac8d49
-  data.tar.gz: 1bf65c2b79a0ce272af65e8acebe3ed2f7b5a99b2651fb0bb3291969b5e9e1084140ffad279126a0671c6e8ed0aa17b2c46eacd32dbe9d5b87fc17969882b4e6
+  metadata.gz: 5fe73fce198f106fffee8b15f563af6346fdaaf10cb3ed5a60faa04c720bac54f0e5a322f1c4eeee330cb309be6945bad7941e1205fbcda37738fb79f711b4d3
+  data.tar.gz: adbc374f191a40274c50b4b57dc8fa7f2f9804c33990ad39d3f6fd542898a219e1c7dcba5b14281e9e7de938e465cda898badf6aff39e34ad533edc7019695a3

data/.git/ORIG_HEAD

@@ -1 +1 @@
-a469b2d58875fd54ce9a67154bd8feaa73588449
+7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36

data/.git/logs/HEAD

@@ -1,3 +1,3 @@
-0000000000000000000000000000000000000000 a469b2d58875fd54ce9a67154bd8feaa73588449 root <root@6a504afbc509.(none)> 1687543591 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
-a469b2d58875fd54ce9a67154bd8feaa73588449 a469b2d58875fd54ce9a67154bd8feaa73588449 root <root@6a504afbc509.(none)> 1687543591 +0000	checkout: moving from master to master
-a469b2d58875fd54ce9a67154bd8feaa73588449 7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36 root <root@6a504afbc509.(none)> 1687543591 +0000	merge origin/development: Fast-forward
+0000000000000000000000000000000000000000 7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36 root <root@59bedabef593.(none)> 1688742042 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36 7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36 root <root@59bedabef593.(none)> 1688742042 +0000	checkout: moving from master to master
+7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36 0d2955c2c2f11a0bd128d6b6a45b5d0c741b9789 root <root@59bedabef593.(none)> 1688742042 +0000	merge origin/development: Fast-forward

data/.git/logs/refs/heads/master

@@ -1,2 +1,2 @@
-0000000000000000000000000000000000000000 a469b2d58875fd54ce9a67154bd8feaa73588449 root <root@6a504afbc509.(none)> 1687543591 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
-a469b2d58875fd54ce9a67154bd8feaa73588449 7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36 root <root@6a504afbc509.(none)> 1687543591 +0000	merge origin/development: Fast-forward
+0000000000000000000000000000000000000000 7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36 root <root@59bedabef593.(none)> 1688742042 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36 0d2955c2c2f11a0bd128d6b6a45b5d0c741b9789 root <root@59bedabef593.(none)> 1688742042 +0000	merge origin/development: Fast-forward

data/.git/logs/refs/remotes/origin/HEAD

@@ -1 +1 @@
-0000000000000000000000000000000000000000 a469b2d58875fd54ce9a67154bd8feaa73588449 root <root@6a504afbc509.(none)> 1687543591 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git
+0000000000000000000000000000000000000000 7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36 root <root@59bedabef593.(none)> 1688742042 +0000	clone: from github.com:strongdm/strongdm-sdk-ruby.git

data/.git/packed-refs

@@ -1,6 +1,6 @@
 # pack-refs with: peeled fully-peeled sorted 
-7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36 refs/remotes/origin/development
-a469b2d58875fd54ce9a67154bd8feaa73588449 refs/remotes/origin/master
+0d2955c2c2f11a0bd128d6b6a45b5d0c741b9789 refs/remotes/origin/development
+7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36 refs/remotes/origin/master
 2e4fe8087177ddea9b3991ca499f758384839c89 refs/tags/untagged-84fd83a4484c785cce63
 04f604866214fab4d5663b5171a3e596331577bd refs/tags/v0.9.4
 6f9a7b75b345c65fb554884907b7060680c807b7 refs/tags/v0.9.5
@@ -50,6 +50,7 @@ f880c51210aa33186d71d9b463ddbd587ef3e4fd refs/tags/v3.12.0
 6cd69f8e98657b0aa1c55786add9519085361ef2 refs/tags/v3.14.2
 6e8ee132772d2663157a4263aa15ddffeac7486f refs/tags/v3.15.0
 a469b2d58875fd54ce9a67154bd8feaa73588449 refs/tags/v3.16.0
+7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36 refs/tags/v3.17.0
 40d185ce8d4f4375411706886f6fbbaa5493bef6 refs/tags/v3.2.0
 dd6a8a74ad5675831f42e3a820208e96f7361f80 refs/tags/v3.2.1
 09ee1a3be370a7b5e21709a7857d0f189f23da8b refs/tags/v3.2.2

data/.git/refs/heads/master

@@ -1 +1 @@
-7e8c95f92b7ab35d93eec71a3e6b378bbe4e8d36
+0d2955c2c2f11a0bd128d6b6a45b5d0c741b9789

data/lib/constants.rb

@@ -255,6 +255,9 @@ module SDM
     WORKFLOW_DESCRIPTION_UPDATED = "workflow description updated"
     WORKFLOW_AUTO_GRANT_UPDATED = "workflow auto grant updated"
     WORKFLOW_REQUIRES_REASON_UPDATED = "workflow requires reason updated"
+    WORKFLOW_ACCESS_RULES_UPDATED = "workflow access rules updated"
+    WORKFLOW_ACCESS_RULES_DELETED = "workflow access rules deleted"
+    WORKFLOW_ACCESS_RULES_CREATED = "workflow access rules created"
     ORG_VNM_SUBNET_UPDATED = "organization VNM subnet updated"
     ORG_VNM_RESOURCES_ALLOCATED = "organization resources allocated within VNM subnet"
     DEPRECATED_ORG_ACTIVATE_DEVICE_APPROVAL = "activate device approval"
@@ -265,6 +268,9 @@ module SDM
     TOTP_ENROLLMENT_ADDED = "user enrolled a totp device"
     TOTP_ENROLLMENT_DELETED = "user reset their totp enrollment"
     SUSPENDED_USER_ENROLL_ATTEMPT_FROM_THE_UI = "attempt to enroll by a suspended user from the Admin UI"
+    RESOURCE_LOCKED = "user locked a resource"
+    RESOURCE_UNLOCKED = "user unlocked a resource"
+    RESOURCE_FORCE_UNLOCKED = "admin force-unlocked a resource"
   end
 
   # Permissions, all permissions that may be granted to an account.
@@ -423,4 +429,11 @@ module SDM
     K_8_S_APPLY = "k8s-apply"
     SSH_PORT_FORWARD = "ssh-portForward"
   end
+
+  # Providers responsible for device posture enforcement
+  module DevicePostureProvider
+    NONE = ""
+    SENTINEL_ONE = "sentinelone"
+    CROWD_STRIKE = "crowdstrike"
+  end
 end

data/lib/grpc/activities_pb.rb

@@ -48,6 +48,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       repeated :entities, :message, 5, "v1.ActivityEntity"
       optional :ip_address, :string, 6
       optional :actor, :message, 7, "v1.ActivityActor"
+      optional :user_agent, :string, 8
     end
     add_message "v1.ActivityEntity" do
       optional :id, :string, 1

data/lib/grpc/drivers_pb.rb

@@ -44,8 +44,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
         optional :azure_certificate, :message, 2801, "v1.AzureCertificate"
         optional :azure_mysql, :message, 1107, "v1.AzureMysql"
         optional :azure_postgres, :message, 1307, "v1.AzurePostgres"
-        optional :azure_postgres_flexible, :message, 1308, "v1.AzurePostgresFlexible"
-        optional :azure_postgres_single, :message, 1309, "v1.AzurePostgresSingle"
+        optional :azure_postgres_managed_identity, :message, 1308, "v1.AzurePostgresManagedIdentity"
         optional :big_query, :message, 200, "v1.BigQuery"
         optional :cassandra, :message, 300, "v1.Cassandra"
         optional :citus, :message, 1305, "v1.Citus"
@@ -474,24 +473,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :port_override, :int32, 5
       optional :username, :string, 2
     end
-    add_message "v1.AzurePostgresFlexible" do
-      optional :id, :string, 32768
-      optional :name, :string, 32769
-      optional :healthy, :bool, 32770
-      optional :tags, :message, 32771, "v1.Tags"
-      optional :secret_store_id, :string, 32772
-      optional :egress_filter, :string, 32773
-      optional :bind_interface, :string, 32774
-      optional :subdomain, :string, 32775
-      optional :database, :string, 4
-      optional :hostname, :string, 1
-      optional :override_database, :bool, 7
-      optional :password, :string, 3
-      optional :port, :int32, 6
-      optional :port_override, :int32, 5
-      optional :username, :string, 2
-    end
-    add_message "v1.AzurePostgresSingle" do
+    add_message "v1.AzurePostgresManagedIdentity" do
       optional :id, :string, 32768
       optional :name, :string, 32769
       optional :healthy, :bool, 32770
@@ -506,6 +488,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :password, :string, 3
       optional :port, :int32, 6
       optional :port_override, :int32, 5
+      optional :use_azure_single_server_usernames, :bool, 10
       optional :username, :string, 2
     end
     add_message "v1.BigQuery" do
@@ -1204,6 +1187,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :subdomain, :string, 32775
       optional :downgrade_nla_connections, :bool, 6
       optional :hostname, :string, 1
+      optional :lock_required, :bool, 10
       optional :password, :string, 3
       optional :port, :int32, 5
       optional :port_override, :int32, 4
@@ -1517,8 +1501,7 @@ module V1
   AzureCertificate = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AzureCertificate").msgclass
   AzureMysql = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AzureMysql").msgclass
   AzurePostgres = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AzurePostgres").msgclass
-  AzurePostgresFlexible = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AzurePostgresFlexible").msgclass
-  AzurePostgresSingle = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AzurePostgresSingle").msgclass
+  AzurePostgresManagedIdentity = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.AzurePostgresManagedIdentity").msgclass
   BigQuery = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.BigQuery").msgclass
   Cassandra = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.Cassandra").msgclass
   Citus = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.Citus").msgclass

data/lib/grpc/nodes_pb.rb

@@ -85,6 +85,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :version, :string, 8
       optional :uuid, :string, 9
       optional :connects_to, :string, 10
+      repeated :maintenance_windows, :message, 11, "v1.NodeMaintenanceWindow"
     end
     add_message "v1.Gateway" do
       optional :id, :string, 1
@@ -99,6 +100,11 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :version, :string, 10
       optional :uuid, :string, 11
       optional :connects_to, :string, 12
+      repeated :maintenance_windows, :message, 13, "v1.NodeMaintenanceWindow"
+    end
+    add_message "v1.NodeMaintenanceWindow" do
+      optional :cron_schedule, :string, 1
+      optional :require_idleness, :bool, 2
     end
   end
 end
@@ -117,4 +123,5 @@ module V1
   Node = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.Node").msgclass
   Relay = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.Relay").msgclass
   Gateway = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.Gateway").msgclass
+  NodeMaintenanceWindow = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("v1.NodeMaintenanceWindow").msgclass
 end

data/lib/grpc/plumbing.rb

@@ -1439,6 +1439,7 @@ module SDM
       porcelain.entities = convert_repeated_activity_entity_to_porcelain(plumbing.entities)
       porcelain.id = (plumbing.id)
       porcelain.ip_address = (plumbing.ip_address)
+      porcelain.user_agent = (plumbing.user_agent)
       porcelain.verb = (plumbing.verb)
       porcelain
     end
@@ -1454,6 +1455,7 @@ module SDM
       plumbing.entities += convert_repeated_activity_entity_to_plumbing(porcelain.entities)
       plumbing.id = (porcelain.id)
       plumbing.ip_address = (porcelain.ip_address)
+      plumbing.user_agent = (porcelain.user_agent)
       plumbing.verb = (porcelain.verb)
       plumbing
     end
@@ -2420,73 +2422,11 @@ module SDM
       end
       items
     end
-    def self.convert_azure_postgres_flexible_to_porcelain(plumbing)
+    def self.convert_azure_postgres_managed_identity_to_porcelain(plumbing)
       if plumbing == nil
         return nil
       end
-      porcelain = AzurePostgresFlexible.new()
-      porcelain.bind_interface = (plumbing.bind_interface)
-      porcelain.database = (plumbing.database)
-      porcelain.egress_filter = (plumbing.egress_filter)
-      porcelain.healthy = (plumbing.healthy)
-      porcelain.hostname = (plumbing.hostname)
-      porcelain.id = (plumbing.id)
-      porcelain.name = (plumbing.name)
-      porcelain.override_database = (plumbing.override_database)
-      porcelain.password = (plumbing.password)
-      porcelain.port = (plumbing.port)
-      porcelain.port_override = (plumbing.port_override)
-      porcelain.secret_store_id = (plumbing.secret_store_id)
-      porcelain.subdomain = (plumbing.subdomain)
-      porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
-      porcelain.username = (plumbing.username)
-      porcelain
-    end
-
-    def self.convert_azure_postgres_flexible_to_plumbing(porcelain)
-      if porcelain == nil
-        return nil
-      end
-      plumbing = V1::AzurePostgresFlexible.new()
-      plumbing.bind_interface = (porcelain.bind_interface)
-      plumbing.database = (porcelain.database)
-      plumbing.egress_filter = (porcelain.egress_filter)
-      plumbing.healthy = (porcelain.healthy)
-      plumbing.hostname = (porcelain.hostname)
-      plumbing.id = (porcelain.id)
-      plumbing.name = (porcelain.name)
-      plumbing.override_database = (porcelain.override_database)
-      plumbing.password = (porcelain.password)
-      plumbing.port = (porcelain.port)
-      plumbing.port_override = (porcelain.port_override)
-      plumbing.secret_store_id = (porcelain.secret_store_id)
-      plumbing.subdomain = (porcelain.subdomain)
-      plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
-      plumbing.username = (porcelain.username)
-      plumbing
-    end
-    def self.convert_repeated_azure_postgres_flexible_to_plumbing(porcelains)
-      items = Array.new
-      porcelains.each do |porcelain|
-        plumbing = convert_azure_postgres_flexible_to_plumbing(porcelain)
-        items.append(plumbing)
-      end
-      items
-    end
-
-    def self.convert_repeated_azure_postgres_flexible_to_porcelain(plumbings)
-      items = Array.new
-      plumbings.each do |plumbing|
-        porcelain = convert_azure_postgres_flexible_to_porcelain(plumbing)
-        items.append(porcelain)
-      end
-      items
-    end
-    def self.convert_azure_postgres_single_to_porcelain(plumbing)
-      if plumbing == nil
-        return nil
-      end
-      porcelain = AzurePostgresSingle.new()
+      porcelain = AzurePostgresManagedIdentity.new()
       porcelain.bind_interface = (plumbing.bind_interface)
       porcelain.database = (plumbing.database)
       porcelain.egress_filter = (plumbing.egress_filter)
@@ -2501,15 +2441,16 @@ module SDM
       porcelain.secret_store_id = (plumbing.secret_store_id)
       porcelain.subdomain = (plumbing.subdomain)
       porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
+      porcelain.use_azure_single_server_usernames = (plumbing.use_azure_single_server_usernames)
       porcelain.username = (plumbing.username)
       porcelain
     end
 
-    def self.convert_azure_postgres_single_to_plumbing(porcelain)
+    def self.convert_azure_postgres_managed_identity_to_plumbing(porcelain)
       if porcelain == nil
         return nil
       end
-      plumbing = V1::AzurePostgresSingle.new()
+      plumbing = V1::AzurePostgresManagedIdentity.new()
       plumbing.bind_interface = (porcelain.bind_interface)
       plumbing.database = (porcelain.database)
       plumbing.egress_filter = (porcelain.egress_filter)
@@ -2524,22 +2465,23 @@ module SDM
       plumbing.secret_store_id = (porcelain.secret_store_id)
       plumbing.subdomain = (porcelain.subdomain)
       plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
+      plumbing.use_azure_single_server_usernames = (porcelain.use_azure_single_server_usernames)
       plumbing.username = (porcelain.username)
       plumbing
     end
-    def self.convert_repeated_azure_postgres_single_to_plumbing(porcelains)
+    def self.convert_repeated_azure_postgres_managed_identity_to_plumbing(porcelains)
       items = Array.new
       porcelains.each do |porcelain|
-        plumbing = convert_azure_postgres_single_to_plumbing(porcelain)
+        plumbing = convert_azure_postgres_managed_identity_to_plumbing(porcelain)
         items.append(plumbing)
       end
       items
     end
 
-    def self.convert_repeated_azure_postgres_single_to_porcelain(plumbings)
+    def self.convert_repeated_azure_postgres_managed_identity_to_porcelain(plumbings)
       items = Array.new
       plumbings.each do |plumbing|
-        porcelain = convert_azure_postgres_single_to_porcelain(plumbing)
+        porcelain = convert_azure_postgres_managed_identity_to_porcelain(plumbing)
         items.append(porcelain)
       end
       items
@@ -3780,6 +3722,7 @@ module SDM
       porcelain.id = (plumbing.id)
       porcelain.listen_address = (plumbing.listen_address)
       porcelain.location = (plumbing.location)
+      porcelain.maintenance_windows = convert_repeated_node_maintenance_window_to_porcelain(plumbing.maintenance_windows)
       porcelain.name = (plumbing.name)
       porcelain.state = (plumbing.state)
       porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
@@ -3799,6 +3742,7 @@ module SDM
       plumbing.id = (porcelain.id)
       plumbing.listen_address = (porcelain.listen_address)
       plumbing.location = (porcelain.location)
+      plumbing.maintenance_windows += convert_repeated_node_maintenance_window_to_plumbing(porcelain.maintenance_windows)
       plumbing.name = (porcelain.name)
       plumbing.state = (porcelain.state)
       plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
@@ -5541,6 +5485,42 @@ module SDM
       end
       items
     end
+    def self.convert_node_maintenance_window_to_porcelain(plumbing)
+      if plumbing == nil
+        return nil
+      end
+      porcelain = NodeMaintenanceWindow.new()
+      porcelain.cron_schedule = (plumbing.cron_schedule)
+      porcelain.require_idleness = (plumbing.require_idleness)
+      porcelain
+    end
+
+    def self.convert_node_maintenance_window_to_plumbing(porcelain)
+      if porcelain == nil
+        return nil
+      end
+      plumbing = V1::NodeMaintenanceWindow.new()
+      plumbing.cron_schedule = (porcelain.cron_schedule)
+      plumbing.require_idleness = (porcelain.require_idleness)
+      plumbing
+    end
+    def self.convert_repeated_node_maintenance_window_to_plumbing(porcelains)
+      items = Array.new
+      porcelains.each do |porcelain|
+        plumbing = convert_node_maintenance_window_to_plumbing(porcelain)
+        items.append(plumbing)
+      end
+      items
+    end
+
+    def self.convert_repeated_node_maintenance_window_to_porcelain(plumbings)
+      items = Array.new
+      plumbings.each do |plumbing|
+        porcelain = convert_node_maintenance_window_to_porcelain(plumbing)
+        items.append(porcelain)
+      end
+      items
+    end
     def self.convert_node_update_response_to_porcelain(plumbing)
       if plumbing == nil
         return nil
@@ -6365,6 +6345,7 @@ module SDM
       porcelain.gateway_filter = (plumbing.gateway_filter)
       porcelain.id = (plumbing.id)
       porcelain.location = (plumbing.location)
+      porcelain.maintenance_windows = convert_repeated_node_maintenance_window_to_porcelain(plumbing.maintenance_windows)
       porcelain.name = (plumbing.name)
       porcelain.state = (plumbing.state)
       porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
@@ -6382,6 +6363,7 @@ module SDM
       plumbing.gateway_filter = (porcelain.gateway_filter)
       plumbing.id = (porcelain.id)
       plumbing.location = (porcelain.location)
+      plumbing.maintenance_windows += convert_repeated_node_maintenance_window_to_plumbing(porcelain.maintenance_windows)
       plumbing.name = (porcelain.name)
       plumbing.state = (porcelain.state)
       plumbing.tags = convert_tags_to_plumbing(porcelain.tags)
@@ -6889,11 +6871,8 @@ module SDM
       if porcelain.instance_of? AzurePostgres
         plumbing.azure_postgres = convert_azure_postgres_to_plumbing(porcelain)
       end
-      if porcelain.instance_of? AzurePostgresFlexible
-        plumbing.azure_postgres_flexible = convert_azure_postgres_flexible_to_plumbing(porcelain)
-      end
-      if porcelain.instance_of? AzurePostgresSingle
-        plumbing.azure_postgres_single = convert_azure_postgres_single_to_plumbing(porcelain)
+      if porcelain.instance_of? AzurePostgresManagedIdentity
+        plumbing.azure_postgres_managed_identity = convert_azure_postgres_managed_identity_to_plumbing(porcelain)
       end
       if porcelain.instance_of? BigQuery
         plumbing.big_query = convert_big_query_to_plumbing(porcelain)
@@ -7142,11 +7121,8 @@ module SDM
       if plumbing.azure_postgres != nil
         return convert_azure_postgres_to_porcelain(plumbing.azure_postgres)
       end
-      if plumbing.azure_postgres_flexible != nil
-        return convert_azure_postgres_flexible_to_porcelain(plumbing.azure_postgres_flexible)
-      end
-      if plumbing.azure_postgres_single != nil
-        return convert_azure_postgres_single_to_porcelain(plumbing.azure_postgres_single)
+      if plumbing.azure_postgres_managed_identity != nil
+        return convert_azure_postgres_managed_identity_to_porcelain(plumbing.azure_postgres_managed_identity)
       end
       if plumbing.big_query != nil
         return convert_big_query_to_porcelain(plumbing.big_query)

data/lib/models/porcelain.rb

@@ -1241,6 +1241,9 @@ module SDM
     attr_accessor :id
     # The IP from which this action was taken.
     attr_accessor :ip_address
+    # The User Agent present when this request was executed. Generally a client type and version
+    # like strongdm-cli/55.66.77
+    attr_accessor :user_agent
     # The kind of activity which has taken place.
     attr_accessor :verb
 
@@ -1251,6 +1254,7 @@ module SDM
       entities: nil,
       id: nil,
       ip_address: nil,
+      user_agent: nil,
       verb: nil
     )
       @actor = actor == nil ? nil : actor
@@ -1259,6 +1263,7 @@ module SDM
       @entities = entities == nil ? [] : entities
       @id = id == nil ? "" : id
       @ip_address = ip_address == nil ? "" : ip_address
+      @user_agent = user_agent == nil ? "" : user_agent
       @verb = verb == nil ? "" : verb
     end
 
@@ -2380,84 +2385,8 @@ module SDM
     end
   end
 
-  # AzurePostgresFlexible is currently unstable, and its API may change, or it may be removed, without a major version bump.
-  class AzurePostgresFlexible
-    # The bind interface is the IP address to which the port override of a resource is bound (for example, 127.0.0.1). It is automatically generated if not provided.
-    attr_accessor :bind_interface
-    # The initial database to connect to. This setting does not by itself prevent switching to another database after connecting.
-    attr_accessor :database
-    # A filter applied to the routing logic to pin datasource to nodes.
-    attr_accessor :egress_filter
-    # True if the datasource is reachable and the credentials are valid.
-    attr_accessor :healthy
-    # The host to dial to initiate a connection from the egress node to this resource.
-    attr_accessor :hostname
-    # Unique identifier of the Resource.
-    attr_accessor :id
-    # Unique human-readable name of the Resource.
-    attr_accessor :name
-    # If set, the database configured cannot be changed by users. This setting is not recommended for most use cases, as some clients will insist their database has changed when it has not, leading to user confusion.
-    attr_accessor :override_database
-    # The password to authenticate with.
-    attr_accessor :password
-    # The port to dial to initiate a connection from the egress node to this resource.
-    attr_accessor :port
-    # The local port used by clients to connect to this resource.
-    attr_accessor :port_override
-    # ID of the secret store containing credentials for this resource, if any.
-    attr_accessor :secret_store_id
-    # Subdomain is the local DNS address.  (e.g. app-prod1 turns into app-prod1.your-org-name.sdm.network)
-    attr_accessor :subdomain
-    # Tags is a map of key, value pairs.
-    attr_accessor :tags
-    # The username to authenticate with.
-    attr_accessor :username
-
-    def initialize(
-      bind_interface: nil,
-      database: nil,
-      egress_filter: nil,
-      healthy: nil,
-      hostname: nil,
-      id: nil,
-      name: nil,
-      override_database: nil,
-      password: nil,
-      port: nil,
-      port_override: nil,
-      secret_store_id: nil,
-      subdomain: nil,
-      tags: nil,
-      username: nil
-    )
-      @bind_interface = bind_interface == nil ? "" : bind_interface
-      @database = database == nil ? "" : database
-      @egress_filter = egress_filter == nil ? "" : egress_filter
-      @healthy = healthy == nil ? false : healthy
-      @hostname = hostname == nil ? "" : hostname
-      @id = id == nil ? "" : id
-      @name = name == nil ? "" : name
-      @override_database = override_database == nil ? false : override_database
-      @password = password == nil ? "" : password
-      @port = port == nil ? 0 : port
-      @port_override = port_override == nil ? 0 : port_override
-      @secret_store_id = secret_store_id == nil ? "" : secret_store_id
-      @subdomain = subdomain == nil ? "" : subdomain
-      @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
-      @username = username == nil ? "" : username
-    end
-
-    def to_json(options = {})
-      hash = {}
-      self.instance_variables.each do |var|
-        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
-      end
-      hash.to_json
-    end
-  end
-
-  # AzurePostgresSingle is currently unstable, and its API may change, or it may be removed, without a major version bump.
-  class AzurePostgresSingle
+  # AzurePostgresManagedIdentity is currently unstable, and its API may change, or it may be removed, without a major version bump.
+  class AzurePostgresManagedIdentity
     # The bind interface is the IP address to which the port override of a resource is bound (for example, 127.0.0.1). It is automatically generated if not provided.
     attr_accessor :bind_interface
     # The initial database to connect to. This setting does not by itself prevent switching to another database after connecting.
@@ -2486,6 +2415,8 @@ module SDM
     attr_accessor :subdomain
     # Tags is a map of key, value pairs.
     attr_accessor :tags
+    # If true, appends the hostname to the username when hitting a database.azure.com address
+    attr_accessor :use_azure_single_server_usernames
     # The username to authenticate with.
     attr_accessor :username
 
@@ -2504,6 +2435,7 @@ module SDM
       secret_store_id: nil,
       subdomain: nil,
       tags: nil,
+      use_azure_single_server_usernames: nil,
       username: nil
     )
       @bind_interface = bind_interface == nil ? "" : bind_interface
@@ -2520,6 +2452,7 @@ module SDM
       @secret_store_id = secret_store_id == nil ? "" : secret_store_id
       @subdomain = subdomain == nil ? "" : subdomain
       @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
+      @use_azure_single_server_usernames = use_azure_single_server_usernames == nil ? false : use_azure_single_server_usernames
       @username = username == nil ? "" : username
     end
 
@@ -3828,6 +3761,19 @@ module SDM
     # Location is a read only network location uploaded by the gateway process
     # when it comes online.
     attr_accessor :location
+    # Maintenance Windows define when this node is allowed to restart. If a node
+    # is requested to restart, it will check each window to determine if any of
+    # them permit it to restart, and if any do, it will. This check is repeated
+    # per window until the restart is successfully completed.
+    #
+    # If not set here, may be set on the command line or via an environment variable
+    # on the process itself; any server setting will take precedence over local
+    # settings. This setting is ineffective for nodes below version 38.44.0.
+    #
+    # If this setting is not applied via this remote configuration or via local
+    # configuration, the default setting is used: always allow restarts if serving
+    # no connections, and allow a restart even if serving connections between 7-8 UTC, any day.
+    attr_accessor :maintenance_windows
     # Unique human-readable name of the Gateway. Node names must include only letters, numbers, and hyphens (no spaces, underscores, or other special characters). Generated if not provided on create.
     attr_accessor :name
     # The current state of the gateway. One of: "new", "verifying_restart",
@@ -3847,6 +3793,7 @@ module SDM
       id: nil,
       listen_address: nil,
       location: nil,
+      maintenance_windows: nil,
       name: nil,
       state: nil,
       tags: nil,
@@ -3859,6 +3806,7 @@ module SDM
       @id = id == nil ? "" : id
       @listen_address = listen_address == nil ? "" : listen_address
       @location = location == nil ? "" : location
+      @maintenance_windows = maintenance_windows == nil ? [] : maintenance_windows
       @name = name == nil ? "" : name
       @state = state == nil ? "" : state
       @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags
@@ -5816,6 +5764,38 @@ module SDM
     end
   end
 
+  class NodeMaintenanceWindow
+    # Cron job syntax for when this maintenance window is active. On this schedule, associated
+    # nodes will restart if requested, provided other checks allow the restart to proceed. Times
+    # are represented in UTC.
+    # e.g. * 7 * * 0,6 to check for a restart at every minute from 7:00 to 8:00 UTC on Sunday and
+    # Saturday. Not all possible inputs are supported: the month and day of month selections
+    # must be '*'.
+    attr_accessor :cron_schedule
+    # Require Idleness defines whether this window can sever live connections. If true,
+    # this window will not allow a node to be restarted unless it is serving no connections.
+    # If false, given a restart of the node has been requested (for an update, usually), the
+    # node will restart as soon as it enters an allowed day / hour combination. At least one
+    # maintenance window, out of all configured windows for a node, must have this as false.
+    attr_accessor :require_idleness
+
+    def initialize(
+      cron_schedule: nil,
+      require_idleness: nil
+    )
+      @cron_schedule = cron_schedule == nil ? "" : cron_schedule
+      @require_idleness = require_idleness == nil ? false : require_idleness
+    end
+
+    def to_json(options = {})
+      hash = {}
+      self.instance_variables.each do |var|
+        hash[var.id2name.delete_prefix("@")] = self.instance_variable_get var
+      end
+      hash.to_json
+    end
+  end
+
   # NodeUpdateResponse returns the fields of a Node after it has been updated by
   # a NodeUpdateRequest.
   class NodeUpdateResponse
@@ -6801,6 +6781,19 @@ module SDM
     # Location is a read only network location uploaded by the gateway process
     # when it comes online.
     attr_accessor :location
+    # Maintenance Windows define when this node is allowed to restart. If a node
+    # is requested to restart, it will check each window to determine if any of
+    # them permit it to restart, and if any do, it will. This check is repeated
+    # per window until the restart is successfully completed.
+    #
+    # If not set here, may be set on the command line or via an environment variable
+    # on the process itself; any server setting will take precedence over local
+    # settings. This setting is ineffective for nodes below version 38.44.0.
+    #
+    # If this setting is not applied via this remote configuration or via local
+    # configuration, the default setting is used: always allow restarts if serving
+    # no connections, and allow a restart even if serving connections between 7-8 UTC, any day.
+    attr_accessor :maintenance_windows
     # Unique human-readable name of the Relay. Node names must include only letters, numbers, and hyphens (no spaces, underscores, or other special characters). Generated if not provided on create.
     attr_accessor :name
     # The current state of the relay. One of: "new", "verifying_restart",
@@ -6819,6 +6812,7 @@ module SDM
       gateway_filter: nil,
       id: nil,
       location: nil,
+      maintenance_windows: nil,
       name: nil,
       state: nil,
       tags: nil,
@@ -6829,6 +6823,7 @@ module SDM
       @gateway_filter = gateway_filter == nil ? "" : gateway_filter
       @id = id == nil ? "" : id
       @location = location == nil ? "" : location
+      @maintenance_windows = maintenance_windows == nil ? [] : maintenance_windows
       @name = name == nil ? "" : name
       @state = state == nil ? "" : state
       @tags = tags == nil ? SDM::_porcelain_zero_value_tags() : tags

data/lib/strongdm.rb

@@ -29,7 +29,7 @@ module SDM #:nodoc:
     DEFAULT_BASE_RETRY_DELAY = 0.0030 # 30 ms
     DEFAULT_MAX_RETRY_DELAY = 300 # 300 seconds
     API_VERSION = "2021-08-23"
-    USER_AGENT = "strongdm-sdk-ruby/3.17.0"
+    USER_AGENT = "strongdm-sdk-ruby/3.18.0"
     private_constant :DEFAULT_MAX_RETRIES, :DEFAULT_BASE_RETRY_DELAY, :DEFAULT_MAX_RETRY_DELAY, :API_VERSION, :USER_AGENT
 
     # Creates a new strongDM API client.

data/lib/svc.rb

@@ -2076,8 +2076,7 @@ module SDM #:nodoc:
   # {AzureCertificate}
   # {AzureMysql}
   # {AzurePostgres}
-  # {AzurePostgresFlexible}
-  # {AzurePostgresSingle}
+  # {AzurePostgresManagedIdentity}
   # {BigQuery}
   # {Cassandra}
   # {Citus}

data/lib/version

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "3.17.0"
+  VERSION = "3.18.0"
 end

data/lib/version.rb

@@ -13,5 +13,5 @@
 # limitations under the License.
 #
 module SDM
-  VERSION = "3.17.0"
+  VERSION = "3.18.0"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: strongdm
 version: !ruby/object:Gem::Version
-  version: 3.17.0
+  version: 3.18.0
 platform: ruby
 authors:
 - strongDM Team
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-06-23 00:00:00.000000000 Z
+date: 2023-07-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: grpc
@@ -81,8 +81,8 @@ files:
 - "./.git/logs/HEAD"
 - "./.git/logs/refs/heads/master"
 - "./.git/logs/refs/remotes/origin/HEAD"
-- "./.git/objects/pack/pack-b80c1f83bad67d2b8f6fb7851c83c3e84eba1c78.idx"
-- "./.git/objects/pack/pack-b80c1f83bad67d2b8f6fb7851c83c3e84eba1c78.pack"
+- "./.git/objects/pack/pack-f4db79d8b517a6bbe6b8e46ce03146184bf6e554.idx"
+- "./.git/objects/pack/pack-f4db79d8b517a6bbe6b8e46ce03146184bf6e554.pack"
 - "./.git/packed-refs"
 - "./.git/refs/heads/master"
 - "./.git/refs/remotes/origin/HEAD"