@alicloud/eiam20211201 2.17.0 → 2.17.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/client.d.ts +240 -240
- package/dist/client.js +261 -240
- package/dist/client.js.map +1 -1
- package/dist/models/AddApplicationAccountToUserRequest.d.ts +1 -1
- package/dist/models/AddApplicationAccountToUserResponseBody.d.ts +1 -1
- package/dist/models/AddUserToOrganizationalUnitsRequest.d.ts +1 -1
- package/dist/models/AddUsersToGroupRequest.d.ts +1 -1
- package/dist/models/AuthorizeApplicationToGroupsRequest.d.ts +2 -2
- package/dist/models/AuthorizeApplicationToUsersRequest.d.ts +2 -2
- package/dist/models/AuthorizeResourceServerScopesToClientRequest.d.ts +3 -3
- package/dist/models/AuthorizeResourceServerScopesToGroupRequest.d.ts +3 -3
- package/dist/models/AuthorizeResourceServerScopesToOrganizationalUnitRequest.d.ts +4 -4
- package/dist/models/AuthorizeResourceServerScopesToUserRequest.d.ts +4 -4
- package/dist/models/AuthorizeResourceServerToClientRequest.d.ts +2 -2
- package/dist/models/CheckApplicationProvisioningUserPrimaryOrganizationalUnitResponseBody.d.ts +1 -1
- package/dist/models/CreateApplicationClientSecretRequest.d.ts +1 -1
- package/dist/models/CreateApplicationClientSecretResponseBody.d.ts +3 -3
- package/dist/models/CreateApplicationFederatedCredentialRequest.d.ts +165 -3
- package/dist/models/CreateApplicationFederatedCredentialRequest.js +170 -1
- package/dist/models/CreateApplicationFederatedCredentialRequest.js.map +1 -1
- package/dist/models/CreateApplicationFederatedCredentialResponseBody.d.ts +1 -1
- package/dist/models/CreateApplicationRequest.d.ts +10 -16
- package/dist/models/CreateApplicationRequest.js.map +1 -1
- package/dist/models/CreateApplicationRoleRequest.d.ts +3 -3
- package/dist/models/CreateApplicationRoleResponseBody.d.ts +1 -1
- package/dist/models/CreateClientPublicKeyRequest.d.ts +2 -2
- package/dist/models/CreateClientPublicKeyResponseBody.d.ts +1 -1
- package/dist/models/CreateCloudAccountRequest.d.ts +9 -10
- package/dist/models/CreateCloudAccountRequest.js.map +1 -1
- package/dist/models/CreateCloudAccountResponseBody.d.ts +2 -2
- package/dist/models/CreateCredentialProviderRequest.d.ts +25 -34
- package/dist/models/CreateCredentialProviderRequest.js.map +1 -1
- package/dist/models/CreateCredentialProviderResponseBody.d.ts +1 -1
- package/dist/models/CreateCredentialRequest.d.ts +14 -19
- package/dist/models/CreateCredentialRequest.js.map +1 -1
- package/dist/models/CreateFederatedCredentialProviderRequest.d.ts +24 -24
- package/dist/models/CreateFederatedCredentialProviderResponseBody.d.ts +1 -1
- package/dist/models/CreateGroupRequest.d.ts +4 -4
- package/dist/models/CreateGroupResponseBody.d.ts +2 -2
- package/dist/models/CreateIdentityProviderRequest.d.ts +125 -132
- package/dist/models/CreateIdentityProviderRequest.js.map +1 -1
- package/dist/models/CreateIdentityProviderResponseBody.d.ts +2 -2
- package/dist/models/CreateOrganizationalUnitRequest.d.ts +5 -5
- package/dist/models/CreateOrganizationalUnitResponseBody.d.ts +2 -2
- package/dist/models/CreateUserRequest.d.ts +24 -29
- package/dist/models/CreateUserRequest.js.map +1 -1
- package/dist/models/CreateUserResponseBody.d.ts +1 -1
- package/dist/models/DeleteApplicationClientSecretRequest.d.ts +3 -3
- package/dist/models/DeleteApplicationClientSecretResponseBody.d.ts +1 -1
- package/dist/models/DeleteApplicationFederatedCredentialRequest.d.ts +1 -1
- package/dist/models/DeleteApplicationRequest.d.ts +2 -2
- package/dist/models/DeleteApplicationResponseBody.d.ts +1 -1
- package/dist/models/DeleteApplicationTokenRequest.d.ts +1 -1
- package/dist/models/DeleteCredentialProviderRequest.d.ts +2 -2
- package/dist/models/DeleteCredentialProviderResponseBody.d.ts +1 -1
- package/dist/models/DeleteGroupRequest.d.ts +2 -2
- package/dist/models/DeleteGroupResponseBody.d.ts +1 -1
- package/dist/models/DeleteIdentityProviderRequest.d.ts +2 -2
- package/dist/models/DeleteOrganizationalUnitChildrenRequest.d.ts +2 -2
- package/dist/models/DeleteOrganizationalUnitChildrenResponseBody.d.ts +1 -1
- package/dist/models/DeleteOrganizationalUnitRequest.d.ts +1 -1
- package/dist/models/DeleteResourceServerScopeRequest.d.ts +3 -3
- package/dist/models/DeleteResourceServerScopeResponseBody.d.ts +1 -1
- package/dist/models/DisableApplicationFederatedCredentialRequest.d.ts +1 -1
- package/dist/models/DisableApplicationRequest.d.ts +2 -2
- package/dist/models/DisableApplicationResponseBody.d.ts +1 -1
- package/dist/models/DisableApplicationTokenRequest.d.ts +1 -1
- package/dist/models/DisableClientPublicKeyRequest.d.ts +2 -2
- package/dist/models/DisableIdentityProviderUdPullRequest.d.ts +2 -2
- package/dist/models/DisableIdentityProviderUdPullResponseBody.d.ts +1 -1
- package/dist/models/DisableUserRequest.d.ts +1 -1
- package/dist/models/EnableClientPublicKeyRequest.d.ts +2 -2
- package/dist/models/EnableCredentialRequest.d.ts +1 -1
- package/dist/models/EnableIdentityProviderAuthnRequest.d.ts +1 -1
- package/dist/models/EnableIdentityProviderUdPullRequest.d.ts +2 -2
- package/dist/models/EnableIdentityProviderUdPullResponseBody.d.ts +1 -1
- package/dist/models/GenerateOauthTokenRequest.d.ts +1 -1
- package/dist/models/GenerateOauthTokenResponseBody.d.ts +3 -3
- package/dist/models/GetApplicationFederatedCredentialRequest.d.ts +1 -1
- package/dist/models/GetApplicationFederatedCredentialResponseBody.d.ts +150 -6
- package/dist/models/GetApplicationFederatedCredentialResponseBody.js +170 -1
- package/dist/models/GetApplicationFederatedCredentialResponseBody.js.map +1 -1
- package/dist/models/GetApplicationGrantScopeRequest.d.ts +2 -2
- package/dist/models/GetApplicationGrantScopeResponseBody.d.ts +3 -3
- package/dist/models/GetApplicationResponseBody.d.ts +34 -75
- package/dist/models/GetApplicationResponseBody.js.map +1 -1
- package/dist/models/GetApplicationRoleRequest.d.ts +3 -3
- package/dist/models/GetApplicationRoleResponseBody.d.ts +8 -8
- package/dist/models/GetApplicationTemplateRequest.d.ts +1 -1
- package/dist/models/GetApplicationTemplateResponseBody.d.ts +10 -10
- package/dist/models/GetAuthorizationServerRequest.d.ts +2 -2
- package/dist/models/GetAuthorizationServerResponseBody.d.ts +28 -11
- package/dist/models/GetAuthorizationServerResponseBody.js.map +1 -1
- package/dist/models/GetClientPublicKeyRequest.d.ts +1 -1
- package/dist/models/GetClientPublicKeyResponseBody.d.ts +5 -5
- package/dist/models/GetCloudAccountRequest.d.ts +1 -1
- package/dist/models/GetCloudAccountResponseBody.d.ts +23 -26
- package/dist/models/GetCloudAccountResponseBody.js +2 -0
- package/dist/models/GetCloudAccountResponseBody.js.map +1 -1
- package/dist/models/GetCloudAccountRoleRequest.d.ts +2 -2
- package/dist/models/GetCloudAccountRoleResponseBody.d.ts +27 -34
- package/dist/models/GetCloudAccountRoleResponseBody.js.map +1 -1
- package/dist/models/GetCredentialProviderRequest.d.ts +2 -2
- package/dist/models/GetCredentialProviderResponseBody.d.ts +34 -39
- package/dist/models/GetCredentialProviderResponseBody.js.map +1 -1
- package/dist/models/GetCredentialRequest.d.ts +2 -2
- package/dist/models/GetCredentialResponseBody.d.ts +25 -34
- package/dist/models/GetCredentialResponseBody.js.map +1 -1
- package/dist/models/GetGroupResponseBody.d.ts +9 -10
- package/dist/models/GetGroupResponseBody.js.map +1 -1
- package/dist/models/GetIdentityProviderResponseBody.d.ts +115 -115
- package/dist/models/GetIdentityProviderUdPullConfigurationRequest.d.ts +1 -1
- package/dist/models/GetIdentityProviderUdPullConfigurationResponseBody.d.ts +31 -31
- package/dist/models/GetOrganizationalUnitRequest.d.ts +2 -2
- package/dist/models/GetOrganizationalUnitResponseBody.d.ts +20 -23
- package/dist/models/GetOrganizationalUnitResponseBody.js.map +1 -1
- package/dist/models/GetResourceServerScopeRequest.d.ts +1 -1
- package/dist/models/GetResourceServerScopeResponseBody.d.ts +5 -5
- package/dist/models/GetUserRequest.d.ts +2 -2
- package/dist/models/GetUserResponseBody.d.ts +39 -41
- package/dist/models/GetUserResponseBody.js.map +1 -1
- package/dist/models/ListApplicationAccountsRequest.d.ts +1 -1
- package/dist/models/ListApplicationAccountsResponseBody.d.ts +5 -5
- package/dist/models/ListApplicationFederatedCredentialsForProviderRequest.d.ts +4 -4
- package/dist/models/ListApplicationFederatedCredentialsForProviderResponseBody.d.ts +158 -9
- package/dist/models/ListApplicationFederatedCredentialsForProviderResponseBody.js +172 -1
- package/dist/models/ListApplicationFederatedCredentialsForProviderResponseBody.js.map +1 -1
- package/dist/models/ListApplicationFederatedCredentialsRequest.d.ts +4 -4
- package/dist/models/ListApplicationFederatedCredentialsResponseBody.d.ts +158 -9
- package/dist/models/ListApplicationFederatedCredentialsResponseBody.js +172 -1
- package/dist/models/ListApplicationFederatedCredentialsResponseBody.js.map +1 -1
- package/dist/models/ListApplicationSupportedProvisionProtocolTypesResponseBody.d.ts +4 -6
- package/dist/models/ListApplicationSupportedProvisionProtocolTypesResponseBody.js.map +1 -1
- package/dist/models/ListApplicationTokensRequest.d.ts +1 -1
- package/dist/models/ListApplicationTokensResponseBody.d.ts +7 -7
- package/dist/models/ListApplicationsForGroupRequest.d.ts +5 -5
- package/dist/models/ListApplicationsForGroupResponseBody.d.ts +10 -11
- package/dist/models/ListApplicationsForGroupResponseBody.js.map +1 -1
- package/dist/models/ListApplicationsForOrganizationalUnitRequest.d.ts +3 -3
- package/dist/models/ListApplicationsForOrganizationalUnitResponseBody.d.ts +4 -4
- package/dist/models/ListApplicationsRequest.d.ts +16 -19
- package/dist/models/ListApplicationsRequest.js +4 -0
- package/dist/models/ListApplicationsRequest.js.map +1 -1
- package/dist/models/ListApplicationsResponseBody.d.ts +33 -49
- package/dist/models/ListApplicationsResponseBody.js.map +1 -1
- package/dist/models/ListCloudAccountRolesRequest.d.ts +9 -13
- package/dist/models/ListCloudAccountRolesRequest.js.map +1 -1
- package/dist/models/ListCloudAccountRolesResponseBody.d.ts +27 -36
- package/dist/models/ListCloudAccountRolesResponseBody.js.map +1 -1
- package/dist/models/ListCloudAccountsRequest.d.ts +9 -11
- package/dist/models/ListCloudAccountsRequest.js.map +1 -1
- package/dist/models/ListCloudAccountsResponseBody.d.ts +24 -28
- package/dist/models/ListCloudAccountsResponseBody.js +2 -0
- package/dist/models/ListCloudAccountsResponseBody.js.map +1 -1
- package/dist/models/ListConditionalAccessPoliciesForApplicationRequest.d.ts +2 -2
- package/dist/models/ListConditionalAccessPoliciesForApplicationResponseBody.d.ts +33 -33
- package/dist/models/ListCredentialProvidersRequest.d.ts +11 -12
- package/dist/models/ListCredentialProvidersRequest.js.map +1 -1
- package/dist/models/ListCredentialProvidersResponseBody.d.ts +35 -40
- package/dist/models/ListCredentialProvidersResponseBody.js.map +1 -1
- package/dist/models/ListCredentialsRequest.d.ts +7 -10
- package/dist/models/ListCredentialsRequest.js.map +1 -1
- package/dist/models/ListCredentialsResponseBody.d.ts +29 -38
- package/dist/models/ListCredentialsResponseBody.js.map +1 -1
- package/dist/models/ListEventTypesRequest.d.ts +2 -2
- package/dist/models/ListEventTypesResponseBody.d.ts +4 -4
- package/dist/models/ListFederatedCredentialProvidersRequest.d.ts +5 -5
- package/dist/models/ListFederatedCredentialProvidersResponseBody.d.ts +33 -33
- package/dist/models/ListGroupsForUserRequest.d.ts +2 -2
- package/dist/models/ListGroupsForUserResponseBody.d.ts +17 -5
- package/dist/models/ListGroupsForUserResponseBody.js.map +1 -1
- package/dist/models/ListGroupsRequest.d.ts +7 -7
- package/dist/models/ListGroupsResponseBody.d.ts +13 -12
- package/dist/models/ListGroupsResponseBody.js.map +1 -1
- package/dist/models/ListIdentityProvidersRequest.d.ts +4 -4
- package/dist/models/ListIdentityProvidersResponseBody.d.ts +31 -31
- package/dist/models/ListInstancesRequest.d.ts +4 -1
- package/dist/models/ListInstancesRequest.js.map +1 -1
- package/dist/models/ListInstancesResponseBody.d.ts +33 -5
- package/dist/models/ListInstancesResponseBody.js.map +1 -1
- package/dist/models/ListOrganizationalUnitParentsRequest.d.ts +1 -1
- package/dist/models/ListOrganizationalUnitParentsResponseBody.d.ts +3 -3
- package/dist/models/ListResourceServerScopesRequest.d.ts +10 -10
- package/dist/models/ListResourceServerScopesResponseBody.d.ts +13 -13
- package/dist/models/ListResourceServersForUserRequest.d.ts +2 -2
- package/dist/models/ListResourceServersForUserResponseBody.d.ts +10 -8
- package/dist/models/ListResourceServersForUserResponseBody.js.map +1 -1
- package/dist/models/ListUsersRequest.d.ts +24 -31
- package/dist/models/ListUsersRequest.js.map +1 -1
- package/dist/models/ListUsersResponseBody.d.ts +32 -38
- package/dist/models/ListUsersResponseBody.js.map +1 -1
- package/dist/models/ObtainApplicationClientSecretResponseBody.d.ts +5 -7
- package/dist/models/ObtainApplicationClientSecretResponseBody.js.map +1 -1
- package/dist/models/ObtainApplicationTokenResponseBody.d.ts +4 -4
- package/dist/models/ObtainCredentialResponseBody.d.ts +23 -32
- package/dist/models/ObtainCredentialResponseBody.js.map +1 -1
- package/dist/models/ObtainDomainProxyTokenRequest.d.ts +2 -2
- package/dist/models/ObtainDomainProxyTokenResponseBody.d.ts +10 -11
- package/dist/models/ObtainDomainProxyTokenResponseBody.js.map +1 -1
- package/dist/models/RemoveApplicationAccountFromUserRequest.d.ts +4 -4
- package/dist/models/RemoveApplicationAccountFromUserResponseBody.d.ts +1 -1
- package/dist/models/RevokeApplicationFromGroupsRequest.d.ts +2 -2
- package/dist/models/RevokeApplicationFromUsersRequest.d.ts +2 -2
- package/dist/models/RevokeResourceServerFromClientRequest.d.ts +2 -2
- package/dist/models/RevokeResourceServerScopesFromClientRequest.d.ts +3 -3
- package/dist/models/RevokeResourceServerScopesFromGroupRequest.d.ts +2 -2
- package/dist/models/RevokeResourceServerScopesFromOrganizationalUnitRequest.d.ts +3 -3
- package/dist/models/RevokeResourceServerScopesFromUserRequest.d.ts +2 -2
- package/dist/models/SetApplicationProvisioningConfigRequest.d.ts +31 -48
- package/dist/models/SetApplicationProvisioningConfigRequest.js.map +1 -1
- package/dist/models/SetApplicationSsoConfigRequest.d.ts +48 -56
- package/dist/models/SetApplicationSsoConfigRequest.js.map +1 -1
- package/dist/models/SetDefaultDomainRequest.d.ts +1 -1
- package/dist/models/SetIdentityProviderAuthnConfigurationRequest.d.ts +18 -18
- package/dist/models/SetIdentityProviderUdPullConfigurationRequest.d.ts +21 -22
- package/dist/models/SetIdentityProviderUdPullConfigurationRequest.js.map +1 -1
- package/dist/models/UpdateApplicationAdvancedConfigRequest.d.ts +3 -3
- package/dist/models/UpdateApplicationClientSecretExpirationTimeRequest.d.ts +2 -2
- package/dist/models/UpdateApplicationFederatedCredentialRequest.d.ts +147 -1
- package/dist/models/UpdateApplicationFederatedCredentialRequest.js +168 -1
- package/dist/models/UpdateApplicationFederatedCredentialRequest.js.map +1 -1
- package/dist/models/UpdateApplicationInfoRequest.d.ts +2 -2
- package/dist/models/UpdateApplicationInfoResponseBody.d.ts +1 -1
- package/dist/models/UpdateConditionalAccessPolicyDescriptionRequest.d.ts +2 -2
- package/dist/models/UpdateConditionalAccessPolicyRequest.d.ts +14 -14
- package/dist/models/UpdateCredentialDescriptionRequest.d.ts +3 -3
- package/dist/models/UpdateCredentialDescriptionResponseBody.d.ts +1 -1
- package/dist/models/UpdateCredentialProviderRequest.d.ts +23 -33
- package/dist/models/UpdateCredentialProviderRequest.js.map +1 -1
- package/dist/models/UpdateCredentialProviderResponseBody.d.ts +1 -1
- package/dist/models/UpdateFederatedCredentialProviderDescriptionRequest.d.ts +2 -2
- package/dist/models/UpdateFederatedCredentialProviderRequest.d.ts +12 -12
- package/dist/models/UpdateIdentityProviderRequest.d.ts +53 -89
- package/dist/models/UpdateIdentityProviderRequest.js.map +1 -1
- package/dist/models/UpdateIdentityProviderResponseBody.d.ts +1 -1
- package/dist/models/UpdateNetworkZoneRequest.d.ts +2 -2
- package/dist/models/UpdateUserRequest.d.ts +13 -16
- package/dist/models/UpdateUserRequest.js.map +1 -1
- package/dist/models/model.d.ts +30 -0
- package/dist/models/model.js +104 -44
- package/dist/models/model.js.map +1 -1
- package/package.json +1 -1
- package/src/client.ts +268 -240
- package/src/models/AddApplicationAccountToUserRequest.ts +1 -1
- package/src/models/AddApplicationAccountToUserResponseBody.ts +1 -1
- package/src/models/AddUserToOrganizationalUnitsRequest.ts +1 -1
- package/src/models/AddUsersToGroupRequest.ts +1 -1
- package/src/models/AuthorizeApplicationToGroupsRequest.ts +2 -2
- package/src/models/AuthorizeApplicationToUsersRequest.ts +2 -2
- package/src/models/AuthorizeResourceServerScopesToClientRequest.ts +3 -3
- package/src/models/AuthorizeResourceServerScopesToGroupRequest.ts +3 -3
- package/src/models/AuthorizeResourceServerScopesToOrganizationalUnitRequest.ts +4 -4
- package/src/models/AuthorizeResourceServerScopesToUserRequest.ts +4 -4
- package/src/models/AuthorizeResourceServerToClientRequest.ts +2 -2
- package/src/models/CheckApplicationProvisioningUserPrimaryOrganizationalUnitResponseBody.ts +1 -1
- package/src/models/CreateApplicationClientSecretRequest.ts +1 -1
- package/src/models/CreateApplicationClientSecretResponseBody.ts +3 -3
- package/src/models/CreateApplicationFederatedCredentialRequest.ts +280 -3
- package/src/models/CreateApplicationFederatedCredentialResponseBody.ts +1 -1
- package/src/models/CreateApplicationRequest.ts +10 -16
- package/src/models/CreateApplicationRoleRequest.ts +3 -3
- package/src/models/CreateApplicationRoleResponseBody.ts +1 -1
- package/src/models/CreateClientPublicKeyRequest.ts +2 -2
- package/src/models/CreateClientPublicKeyResponseBody.ts +1 -1
- package/src/models/CreateCloudAccountRequest.ts +9 -10
- package/src/models/CreateCloudAccountResponseBody.ts +2 -2
- package/src/models/CreateCredentialProviderRequest.ts +25 -34
- package/src/models/CreateCredentialProviderResponseBody.ts +1 -1
- package/src/models/CreateCredentialRequest.ts +14 -19
- package/src/models/CreateFederatedCredentialProviderRequest.ts +24 -24
- package/src/models/CreateFederatedCredentialProviderResponseBody.ts +1 -1
- package/src/models/CreateGroupRequest.ts +4 -4
- package/src/models/CreateGroupResponseBody.ts +2 -2
- package/src/models/CreateIdentityProviderRequest.ts +125 -132
- package/src/models/CreateIdentityProviderResponseBody.ts +2 -2
- package/src/models/CreateOrganizationalUnitRequest.ts +5 -5
- package/src/models/CreateOrganizationalUnitResponseBody.ts +2 -2
- package/src/models/CreateUserRequest.ts +24 -29
- package/src/models/CreateUserResponseBody.ts +1 -1
- package/src/models/DeleteApplicationClientSecretRequest.ts +3 -3
- package/src/models/DeleteApplicationClientSecretResponseBody.ts +1 -1
- package/src/models/DeleteApplicationFederatedCredentialRequest.ts +1 -1
- package/src/models/DeleteApplicationRequest.ts +2 -2
- package/src/models/DeleteApplicationResponseBody.ts +1 -1
- package/src/models/DeleteApplicationTokenRequest.ts +1 -1
- package/src/models/DeleteCredentialProviderRequest.ts +2 -2
- package/src/models/DeleteCredentialProviderResponseBody.ts +1 -1
- package/src/models/DeleteGroupRequest.ts +2 -2
- package/src/models/DeleteGroupResponseBody.ts +1 -1
- package/src/models/DeleteIdentityProviderRequest.ts +2 -2
- package/src/models/DeleteOrganizationalUnitChildrenRequest.ts +2 -2
- package/src/models/DeleteOrganizationalUnitChildrenResponseBody.ts +1 -1
- package/src/models/DeleteOrganizationalUnitRequest.ts +1 -1
- package/src/models/DeleteResourceServerScopeRequest.ts +3 -3
- package/src/models/DeleteResourceServerScopeResponseBody.ts +1 -1
- package/src/models/DisableApplicationFederatedCredentialRequest.ts +1 -1
- package/src/models/DisableApplicationRequest.ts +2 -2
- package/src/models/DisableApplicationResponseBody.ts +1 -1
- package/src/models/DisableApplicationTokenRequest.ts +1 -1
- package/src/models/DisableClientPublicKeyRequest.ts +2 -2
- package/src/models/DisableIdentityProviderUdPullRequest.ts +2 -2
- package/src/models/DisableIdentityProviderUdPullResponseBody.ts +1 -1
- package/src/models/DisableUserRequest.ts +1 -1
- package/src/models/EnableClientPublicKeyRequest.ts +2 -2
- package/src/models/EnableCredentialRequest.ts +1 -1
- package/src/models/EnableIdentityProviderAuthnRequest.ts +1 -1
- package/src/models/EnableIdentityProviderUdPullRequest.ts +2 -2
- package/src/models/EnableIdentityProviderUdPullResponseBody.ts +1 -1
- package/src/models/GenerateOauthTokenRequest.ts +1 -1
- package/src/models/GenerateOauthTokenResponseBody.ts +3 -3
- package/src/models/GetApplicationFederatedCredentialRequest.ts +1 -1
- package/src/models/GetApplicationFederatedCredentialResponseBody.ts +265 -6
- package/src/models/GetApplicationGrantScopeRequest.ts +2 -2
- package/src/models/GetApplicationGrantScopeResponseBody.ts +3 -3
- package/src/models/GetApplicationResponseBody.ts +34 -75
- package/src/models/GetApplicationRoleRequest.ts +3 -3
- package/src/models/GetApplicationRoleResponseBody.ts +8 -8
- package/src/models/GetApplicationTemplateRequest.ts +1 -1
- package/src/models/GetApplicationTemplateResponseBody.ts +10 -10
- package/src/models/GetAuthorizationServerRequest.ts +2 -2
- package/src/models/GetAuthorizationServerResponseBody.ts +28 -11
- package/src/models/GetClientPublicKeyRequest.ts +1 -1
- package/src/models/GetClientPublicKeyResponseBody.ts +5 -5
- package/src/models/GetCloudAccountRequest.ts +1 -1
- package/src/models/GetCloudAccountResponseBody.ts +25 -26
- package/src/models/GetCloudAccountRoleRequest.ts +2 -2
- package/src/models/GetCloudAccountRoleResponseBody.ts +27 -34
- package/src/models/GetCredentialProviderRequest.ts +2 -2
- package/src/models/GetCredentialProviderResponseBody.ts +34 -39
- package/src/models/GetCredentialRequest.ts +2 -2
- package/src/models/GetCredentialResponseBody.ts +25 -34
- package/src/models/GetGroupResponseBody.ts +9 -10
- package/src/models/GetIdentityProviderResponseBody.ts +115 -115
- package/src/models/GetIdentityProviderUdPullConfigurationRequest.ts +1 -1
- package/src/models/GetIdentityProviderUdPullConfigurationResponseBody.ts +31 -31
- package/src/models/GetOrganizationalUnitRequest.ts +2 -2
- package/src/models/GetOrganizationalUnitResponseBody.ts +20 -23
- package/src/models/GetResourceServerScopeRequest.ts +1 -1
- package/src/models/GetResourceServerScopeResponseBody.ts +5 -5
- package/src/models/GetUserRequest.ts +2 -2
- package/src/models/GetUserResponseBody.ts +39 -41
- package/src/models/ListApplicationAccountsRequest.ts +1 -1
- package/src/models/ListApplicationAccountsResponseBody.ts +5 -5
- package/src/models/ListApplicationFederatedCredentialsForProviderRequest.ts +4 -4
- package/src/models/ListApplicationFederatedCredentialsForProviderResponseBody.ts +275 -9
- package/src/models/ListApplicationFederatedCredentialsRequest.ts +4 -4
- package/src/models/ListApplicationFederatedCredentialsResponseBody.ts +275 -9
- package/src/models/ListApplicationSupportedProvisionProtocolTypesResponseBody.ts +4 -6
- package/src/models/ListApplicationTokensRequest.ts +1 -1
- package/src/models/ListApplicationTokensResponseBody.ts +7 -7
- package/src/models/ListApplicationsForGroupRequest.ts +5 -5
- package/src/models/ListApplicationsForGroupResponseBody.ts +10 -11
- package/src/models/ListApplicationsForOrganizationalUnitRequest.ts +3 -3
- package/src/models/ListApplicationsForOrganizationalUnitResponseBody.ts +4 -4
- package/src/models/ListApplicationsRequest.ts +20 -19
- package/src/models/ListApplicationsResponseBody.ts +33 -49
- package/src/models/ListCloudAccountRolesRequest.ts +9 -13
- package/src/models/ListCloudAccountRolesResponseBody.ts +27 -36
- package/src/models/ListCloudAccountsRequest.ts +9 -11
- package/src/models/ListCloudAccountsResponseBody.ts +26 -28
- package/src/models/ListConditionalAccessPoliciesForApplicationRequest.ts +2 -2
- package/src/models/ListConditionalAccessPoliciesForApplicationResponseBody.ts +33 -33
- package/src/models/ListCredentialProvidersRequest.ts +11 -12
- package/src/models/ListCredentialProvidersResponseBody.ts +35 -40
- package/src/models/ListCredentialsRequest.ts +7 -10
- package/src/models/ListCredentialsResponseBody.ts +29 -38
- package/src/models/ListEventTypesRequest.ts +2 -2
- package/src/models/ListEventTypesResponseBody.ts +4 -4
- package/src/models/ListFederatedCredentialProvidersRequest.ts +5 -5
- package/src/models/ListFederatedCredentialProvidersResponseBody.ts +33 -33
- package/src/models/ListGroupsForUserRequest.ts +2 -2
- package/src/models/ListGroupsForUserResponseBody.ts +17 -5
- package/src/models/ListGroupsRequest.ts +7 -7
- package/src/models/ListGroupsResponseBody.ts +13 -12
- package/src/models/ListIdentityProvidersRequest.ts +4 -4
- package/src/models/ListIdentityProvidersResponseBody.ts +31 -31
- package/src/models/ListInstancesRequest.ts +4 -1
- package/src/models/ListInstancesResponseBody.ts +33 -5
- package/src/models/ListOrganizationalUnitParentsRequest.ts +1 -1
- package/src/models/ListOrganizationalUnitParentsResponseBody.ts +3 -3
- package/src/models/ListResourceServerScopesRequest.ts +10 -10
- package/src/models/ListResourceServerScopesResponseBody.ts +13 -13
- package/src/models/ListResourceServersForUserRequest.ts +2 -2
- package/src/models/ListResourceServersForUserResponseBody.ts +10 -8
- package/src/models/ListUsersRequest.ts +24 -31
- package/src/models/ListUsersResponseBody.ts +32 -38
- package/src/models/ObtainApplicationClientSecretResponseBody.ts +5 -7
- package/src/models/ObtainApplicationTokenResponseBody.ts +4 -4
- package/src/models/ObtainCredentialResponseBody.ts +23 -32
- package/src/models/ObtainDomainProxyTokenRequest.ts +2 -2
- package/src/models/ObtainDomainProxyTokenResponseBody.ts +10 -11
- package/src/models/RemoveApplicationAccountFromUserRequest.ts +4 -4
- package/src/models/RemoveApplicationAccountFromUserResponseBody.ts +1 -1
- package/src/models/RevokeApplicationFromGroupsRequest.ts +2 -2
- package/src/models/RevokeApplicationFromUsersRequest.ts +2 -2
- package/src/models/RevokeResourceServerFromClientRequest.ts +2 -2
- package/src/models/RevokeResourceServerScopesFromClientRequest.ts +3 -3
- package/src/models/RevokeResourceServerScopesFromGroupRequest.ts +2 -2
- package/src/models/RevokeResourceServerScopesFromOrganizationalUnitRequest.ts +3 -3
- package/src/models/RevokeResourceServerScopesFromUserRequest.ts +2 -2
- package/src/models/SetApplicationProvisioningConfigRequest.ts +31 -48
- package/src/models/SetApplicationSsoConfigRequest.ts +48 -56
- package/src/models/SetDefaultDomainRequest.ts +1 -1
- package/src/models/SetIdentityProviderAuthnConfigurationRequest.ts +18 -18
- package/src/models/SetIdentityProviderUdPullConfigurationRequest.ts +21 -22
- package/src/models/UpdateApplicationAdvancedConfigRequest.ts +3 -3
- package/src/models/UpdateApplicationClientSecretExpirationTimeRequest.ts +2 -2
- package/src/models/UpdateApplicationFederatedCredentialRequest.ts +260 -1
- package/src/models/UpdateApplicationInfoRequest.ts +2 -2
- package/src/models/UpdateApplicationInfoResponseBody.ts +1 -1
- package/src/models/UpdateConditionalAccessPolicyDescriptionRequest.ts +2 -2
- package/src/models/UpdateConditionalAccessPolicyRequest.ts +14 -14
- package/src/models/UpdateCredentialDescriptionRequest.ts +3 -3
- package/src/models/UpdateCredentialDescriptionResponseBody.ts +1 -1
- package/src/models/UpdateCredentialProviderRequest.ts +23 -33
- package/src/models/UpdateCredentialProviderResponseBody.ts +1 -1
- package/src/models/UpdateFederatedCredentialProviderDescriptionRequest.ts +2 -2
- package/src/models/UpdateFederatedCredentialProviderRequest.ts +12 -12
- package/src/models/UpdateIdentityProviderRequest.ts +53 -89
- package/src/models/UpdateIdentityProviderResponseBody.ts +1 -1
- package/src/models/UpdateNetworkZoneRequest.ts +2 -2
- package/src/models/UpdateUserRequest.ts +13 -16
- package/src/models/model.ts +30 -0
|
@@ -5,7 +5,7 @@ import * as $dara from '@darabonba/typescript';
|
|
|
5
5
|
export class SetApplicationSsoConfigRequestOidcSsoConfigCustomClaims extends $dara.Model {
|
|
6
6
|
/**
|
|
7
7
|
* @remarks
|
|
8
|
-
* The name of the claim.
|
|
8
|
+
* The name of the returned claim.
|
|
9
9
|
*
|
|
10
10
|
* @example
|
|
11
11
|
* "Role"
|
|
@@ -13,7 +13,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfigCustomClaims extends $da
|
|
|
13
13
|
claimName?: string;
|
|
14
14
|
/**
|
|
15
15
|
* @remarks
|
|
16
|
-
* The expression
|
|
16
|
+
* The value expression of the returned claim.
|
|
17
17
|
*
|
|
18
18
|
* @example
|
|
19
19
|
* user.dict.applicationRole
|
|
@@ -45,7 +45,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfigCustomClaims extends $da
|
|
|
45
45
|
export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
46
46
|
/**
|
|
47
47
|
* @remarks
|
|
48
|
-
* The validity period of the access token. Unit: seconds. Default value: 1200 (20 minutes).
|
|
48
|
+
* The validity period of the issued access token. Unit: seconds. Default value: 1200 (20 minutes).
|
|
49
49
|
*
|
|
50
50
|
* @example
|
|
51
51
|
* 1200
|
|
@@ -53,7 +53,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
53
53
|
accessTokenEffectiveTime?: number;
|
|
54
54
|
/**
|
|
55
55
|
* @remarks
|
|
56
|
-
* Specifies whether the application is allowed to act as a public client to request the IDaaS authorization server.
|
|
56
|
+
* Specifies whether the application is allowed to act as a public client to request the IDaaS EIAM authorization server. Only the authorization code mode and device mode support this feature. Default value: false.
|
|
57
57
|
*
|
|
58
58
|
* @example
|
|
59
59
|
* true
|
|
@@ -61,7 +61,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
61
61
|
allowedPublicClient?: boolean;
|
|
62
62
|
/**
|
|
63
63
|
* @remarks
|
|
64
|
-
* The validity period of the
|
|
64
|
+
* The validity period of the issued code. Unit: seconds. Default value: 60 (1 minute).
|
|
65
65
|
*
|
|
66
66
|
* @example
|
|
67
67
|
* 60
|
|
@@ -69,12 +69,12 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
69
69
|
codeEffectiveTime?: number;
|
|
70
70
|
/**
|
|
71
71
|
* @remarks
|
|
72
|
-
* The custom
|
|
72
|
+
* The custom user information included in the ID token response.
|
|
73
73
|
*/
|
|
74
74
|
customClaims?: SetApplicationSsoConfigRequestOidcSsoConfigCustomClaims[];
|
|
75
75
|
/**
|
|
76
76
|
* @remarks
|
|
77
|
-
* The
|
|
77
|
+
* The OIDC standard parameter scope, which specifies the scope of user attributes that can be returned by the userinfo endpoint or the ID token.
|
|
78
78
|
*
|
|
79
79
|
* @example
|
|
80
80
|
* profile,email
|
|
@@ -82,7 +82,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
82
82
|
grantScopes?: string[];
|
|
83
83
|
/**
|
|
84
84
|
* @remarks
|
|
85
|
-
* The list of OIDC grant types
|
|
85
|
+
* The list of supported OIDC protocol grant types.
|
|
86
86
|
*
|
|
87
87
|
* @example
|
|
88
88
|
* authorization_code
|
|
@@ -90,7 +90,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
90
90
|
grantTypes?: string[];
|
|
91
91
|
/**
|
|
92
92
|
* @remarks
|
|
93
|
-
* The validity period of the ID token. Unit: seconds. Default value: 300 (5 minutes).
|
|
93
|
+
* The validity period of the issued ID token. Unit: seconds. Default value: 300 (5 minutes).
|
|
94
94
|
*
|
|
95
95
|
* @example
|
|
96
96
|
* 300
|
|
@@ -98,7 +98,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
98
98
|
idTokenEffectiveTime?: number;
|
|
99
99
|
/**
|
|
100
100
|
* @remarks
|
|
101
|
-
* The ID of the identity source for the
|
|
101
|
+
* The ID of the identity authentication source used for the password mode. This parameter takes effect only when the GrantTypes of the OIDC application includes the password mode.
|
|
102
102
|
*
|
|
103
103
|
* @example
|
|
104
104
|
* ia_password
|
|
@@ -106,7 +106,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
106
106
|
passwordAuthenticationSourceId?: string;
|
|
107
107
|
/**
|
|
108
108
|
* @remarks
|
|
109
|
-
* Specifies whether
|
|
109
|
+
* Specifies whether TOTP-based secondary authentication is required for the password mode. This parameter takes effect only when the GrantTypes of the OIDC application includes the password mode.
|
|
110
110
|
*
|
|
111
111
|
* @example
|
|
112
112
|
* true
|
|
@@ -114,7 +114,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
114
114
|
passwordTotpMfaRequired?: boolean;
|
|
115
115
|
/**
|
|
116
116
|
* @remarks
|
|
117
|
-
* The algorithm used to
|
|
117
|
+
* The algorithm used to calculate the Code Challenge in PKCE.
|
|
118
118
|
*
|
|
119
119
|
* @example
|
|
120
120
|
* S256
|
|
@@ -122,7 +122,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
122
122
|
pkceChallengeMethods?: string[];
|
|
123
123
|
/**
|
|
124
124
|
* @remarks
|
|
125
|
-
* Specifies whether
|
|
125
|
+
* Specifies whether the application SSO requires PKCE (RFC 7636).
|
|
126
126
|
*
|
|
127
127
|
* @example
|
|
128
128
|
* true
|
|
@@ -130,17 +130,17 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
130
130
|
pkceRequired?: boolean;
|
|
131
131
|
/**
|
|
132
132
|
* @remarks
|
|
133
|
-
* The list of
|
|
133
|
+
* The list of logout callback addresses supported by the application.
|
|
134
134
|
*/
|
|
135
135
|
postLogoutRedirectUris?: string[];
|
|
136
136
|
/**
|
|
137
137
|
* @remarks
|
|
138
|
-
* The list of
|
|
138
|
+
* The list of RedirectUris supported by the application.
|
|
139
139
|
*/
|
|
140
140
|
redirectUris?: string[];
|
|
141
141
|
/**
|
|
142
142
|
* @remarks
|
|
143
|
-
* The validity period of the refresh token. Unit: seconds. Default value: 86400 (1 day).
|
|
143
|
+
* The validity period of the issued refresh token. Unit: seconds. Default value: 86400 (1 day).
|
|
144
144
|
*
|
|
145
145
|
* @example
|
|
146
146
|
* 86400
|
|
@@ -148,7 +148,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
148
148
|
refreshTokenEffective?: number;
|
|
149
149
|
/**
|
|
150
150
|
* @remarks
|
|
151
|
-
* The response
|
|
151
|
+
* The response types supported by the application when OidcSsoConfig.GrantTypes includes the implicit mode.
|
|
152
152
|
*
|
|
153
153
|
* @example
|
|
154
154
|
* token id_token
|
|
@@ -156,7 +156,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
156
156
|
responseTypes?: string[];
|
|
157
157
|
/**
|
|
158
158
|
* @remarks
|
|
159
|
-
* The expression
|
|
159
|
+
* The custom expression for the sub value returned in the ID token.
|
|
160
160
|
*
|
|
161
161
|
* @example
|
|
162
162
|
* user.userid
|
|
@@ -237,7 +237,7 @@ export class SetApplicationSsoConfigRequestOidcSsoConfig extends $dara.Model {
|
|
|
237
237
|
export class SetApplicationSsoConfigRequestSamlSsoConfigAttributeStatements extends $dara.Model {
|
|
238
238
|
/**
|
|
239
239
|
* @remarks
|
|
240
|
-
* The
|
|
240
|
+
* The Name of the attribute in the SAML assertion.
|
|
241
241
|
*
|
|
242
242
|
* @example
|
|
243
243
|
* https://www.aliyun.com/SAML-Role/Attributes/RoleSessionName
|
|
@@ -245,7 +245,7 @@ export class SetApplicationSsoConfigRequestSamlSsoConfigAttributeStatements exte
|
|
|
245
245
|
attributeName?: string;
|
|
246
246
|
/**
|
|
247
247
|
* @remarks
|
|
248
|
-
* The expression
|
|
248
|
+
* The value expression of the attribute in the SAML assertion.
|
|
249
249
|
*
|
|
250
250
|
* @example
|
|
251
251
|
* user.username
|
|
@@ -285,7 +285,7 @@ export class SetApplicationSsoConfigRequestSamlSsoConfigOptionalRelayStates exte
|
|
|
285
285
|
displayName?: string;
|
|
286
286
|
/**
|
|
287
287
|
* @remarks
|
|
288
|
-
* The value
|
|
288
|
+
* The RelayState value.
|
|
289
289
|
*
|
|
290
290
|
* @example
|
|
291
291
|
* https://ram.console.aliyun.com/
|
|
@@ -317,11 +317,9 @@ export class SetApplicationSsoConfigRequestSamlSsoConfigOptionalRelayStates exte
|
|
|
317
317
|
export class SetApplicationSsoConfigRequestSamlSsoConfig extends $dara.Model {
|
|
318
318
|
/**
|
|
319
319
|
* @remarks
|
|
320
|
-
* Specifies whether the
|
|
321
|
-
*
|
|
322
|
-
* -
|
|
323
|
-
*
|
|
324
|
-
* - false: The assertion does not need to be signed.
|
|
320
|
+
* Specifies whether the Assertion needs to be signed. ResponseSigned and AssertionSigned cannot both be set to false.
|
|
321
|
+
* - true: The Assertion is signed.
|
|
322
|
+
* - false: The Assertion is not signed.
|
|
325
323
|
*
|
|
326
324
|
* @example
|
|
327
325
|
* true
|
|
@@ -329,12 +327,12 @@ export class SetApplicationSsoConfigRequestSamlSsoConfig extends $dara.Model {
|
|
|
329
327
|
assertionSigned?: boolean;
|
|
330
328
|
/**
|
|
331
329
|
* @remarks
|
|
332
|
-
* The
|
|
330
|
+
* The additional user attribute configurations included in the SAML assertion.
|
|
333
331
|
*/
|
|
334
332
|
attributeStatements?: SetApplicationSsoConfigRequestSamlSsoConfigAttributeStatements[];
|
|
335
333
|
/**
|
|
336
334
|
* @remarks
|
|
337
|
-
* The default value
|
|
335
|
+
* The default RelayState value. When the single sign-on (SSO) request is initiated by EIAM, the SAML Response provided by EIAM specifies the RelayState as this value.
|
|
338
336
|
*
|
|
339
337
|
* @example
|
|
340
338
|
* https://home.console.aliyun.com
|
|
@@ -342,7 +340,7 @@ export class SetApplicationSsoConfigRequestSamlSsoConfig extends $dara.Model {
|
|
|
342
340
|
defaultRelayState?: string;
|
|
343
341
|
/**
|
|
344
342
|
* @remarks
|
|
345
|
-
* The
|
|
343
|
+
* The Entity ID that represents the IdP identity in the SAML protocol. URL format and URN format are supported.
|
|
346
344
|
*
|
|
347
345
|
* @example
|
|
348
346
|
* https://example.com/
|
|
@@ -350,15 +348,11 @@ export class SetApplicationSsoConfigRequestSamlSsoConfig extends $dara.Model {
|
|
|
350
348
|
idPEntityId?: string;
|
|
351
349
|
/**
|
|
352
350
|
* @remarks
|
|
353
|
-
* The format
|
|
354
|
-
*
|
|
355
|
-
* - urn:oasis:names:tc:SAML:1.1:nameid-format:
|
|
356
|
-
*
|
|
357
|
-
* - urn:oasis:names:tc:SAML:
|
|
358
|
-
*
|
|
359
|
-
* - urn:oasis:names:tc:SAML:2.0:nameid-format:persistent: The persistent NameID.
|
|
360
|
-
*
|
|
361
|
-
* - urn:oasis:names:tc:SAML:2.0:nameid-format:transient: The transient NameID.
|
|
351
|
+
* The NameID format defined by the SAML protocol standard. Valid values:
|
|
352
|
+
* - urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified: Unspecified. The application determines how to parse the NameID.
|
|
353
|
+
* - urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress: Email address format.
|
|
354
|
+
* - urn:oasis:names:tc:SAML:2.0:nameid-format:persistent: Persistent NameID.
|
|
355
|
+
* - urn:oasis:names:tc:SAML:2.0:nameid-format:transient: Transient NameID.
|
|
362
356
|
*
|
|
363
357
|
* @example
|
|
364
358
|
* urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
|
|
@@ -366,7 +360,7 @@ export class SetApplicationSsoConfigRequestSamlSsoConfig extends $dara.Model {
|
|
|
366
360
|
nameIdFormat?: string;
|
|
367
361
|
/**
|
|
368
362
|
* @remarks
|
|
369
|
-
* The expression used to generate the
|
|
363
|
+
* The expression used to generate the actual NameID value for the SAML protocol.
|
|
370
364
|
*
|
|
371
365
|
* @example
|
|
372
366
|
* user.email
|
|
@@ -379,11 +373,9 @@ export class SetApplicationSsoConfigRequestSamlSsoConfig extends $dara.Model {
|
|
|
379
373
|
optionalRelayStates?: SetApplicationSsoConfigRequestSamlSsoConfigOptionalRelayStates[];
|
|
380
374
|
/**
|
|
381
375
|
* @remarks
|
|
382
|
-
* Specifies whether the
|
|
383
|
-
*
|
|
384
|
-
* -
|
|
385
|
-
*
|
|
386
|
-
* - false: The response does not need to be signed.
|
|
376
|
+
* Specifies whether the Response needs to be signed. ResponseSigned and AssertionSigned cannot both be set to false.
|
|
377
|
+
* - true: The Response is signed.
|
|
378
|
+
* - false: The Response is not signed.
|
|
387
379
|
*
|
|
388
380
|
* @example
|
|
389
381
|
* true
|
|
@@ -391,7 +383,7 @@ export class SetApplicationSsoConfigRequestSamlSsoConfig extends $dara.Model {
|
|
|
391
383
|
responseSigned?: boolean;
|
|
392
384
|
/**
|
|
393
385
|
* @remarks
|
|
394
|
-
* The signature algorithm
|
|
386
|
+
* The SAML assertion signature algorithm.
|
|
395
387
|
*
|
|
396
388
|
* @example
|
|
397
389
|
* RSA-SHA256
|
|
@@ -399,7 +391,7 @@ export class SetApplicationSsoConfigRequestSamlSsoConfig extends $dara.Model {
|
|
|
399
391
|
signatureAlgorithm?: string;
|
|
400
392
|
/**
|
|
401
393
|
* @remarks
|
|
402
|
-
* The
|
|
394
|
+
* The SAML EntityId of the application (SP).
|
|
403
395
|
*
|
|
404
396
|
* @example
|
|
405
397
|
* urn:alibaba:cloudcomputing
|
|
@@ -407,7 +399,7 @@ export class SetApplicationSsoConfigRequestSamlSsoConfig extends $dara.Model {
|
|
|
407
399
|
spEntityId?: string;
|
|
408
400
|
/**
|
|
409
401
|
* @remarks
|
|
410
|
-
* The SAML assertion consumer service (ACS) URL of the application (
|
|
402
|
+
* The SAML assertion consumer service (ACS) URL of the application (SP).
|
|
411
403
|
*
|
|
412
404
|
* @example
|
|
413
405
|
* https://signin.aliyun.com/saml-role/sso
|
|
@@ -473,7 +465,7 @@ export class SetApplicationSsoConfigRequest extends $dara.Model {
|
|
|
473
465
|
applicationId?: string;
|
|
474
466
|
/**
|
|
475
467
|
* @remarks
|
|
476
|
-
*
|
|
468
|
+
* The client token that is used to ensure the idempotence of the request. You can use the client to generate the token, but you must make sure that the token is unique among different requests. The token can contain only ASCII characters and cannot exceed 64 characters in length. For more information, see How to ensure idempotence.
|
|
477
469
|
*
|
|
478
470
|
* @example
|
|
479
471
|
* client-examplexxx
|
|
@@ -481,11 +473,9 @@ export class SetApplicationSsoConfigRequest extends $dara.Model {
|
|
|
481
473
|
clientToken?: string;
|
|
482
474
|
/**
|
|
483
475
|
* @remarks
|
|
484
|
-
* The SSO
|
|
485
|
-
*
|
|
486
|
-
* -
|
|
487
|
-
*
|
|
488
|
-
* - idaas_or_app_init_sso: SSO can be initiated by the IDaaS console or the application. This is the default value for SAML applications. If you set this parameter to this value for an OIDC application, you must specify InitLoginUrl.
|
|
476
|
+
* The initialization single sign-on (SSO) method. Valid values:
|
|
477
|
+
* - only_app_init_sso: Only application-initiated SSO. This is the default value for OIDC protocol applications. When a SAML application specifies this method, InitLoginUrl must be specified.
|
|
478
|
+
* - idaas_or_app_init_sso: SSO initiated from the IDaaS portal or the application. This is the default value for SAML protocol applications. When an OIDC protocol application specifies this method, InitLoginUrl must be specified.
|
|
489
479
|
*
|
|
490
480
|
* @example
|
|
491
481
|
* only_app_init_sso
|
|
@@ -493,7 +483,9 @@ export class SetApplicationSsoConfigRequest extends $dara.Model {
|
|
|
493
483
|
initLoginType?: string;
|
|
494
484
|
/**
|
|
495
485
|
* @remarks
|
|
496
|
-
* The URL that
|
|
486
|
+
* The URL that triggers the initialization single sign-on (SSO).
|
|
487
|
+
* When an OIDC protocol application sets InitLoginType to idaas_or_app_init_sso, this parameter is required.
|
|
488
|
+
* When a SAML protocol application sets InitLoginType to only_app_init_sso, this parameter is required.
|
|
497
489
|
*
|
|
498
490
|
* @example
|
|
499
491
|
* http://127.0.0.1:8000/start_login?enterprise_code=ABCDEF
|
|
@@ -511,12 +503,12 @@ export class SetApplicationSsoConfigRequest extends $dara.Model {
|
|
|
511
503
|
instanceId?: string;
|
|
512
504
|
/**
|
|
513
505
|
* @remarks
|
|
514
|
-
* The SSO
|
|
506
|
+
* The SSO configuration parameters for an OIDC protocol-based application.
|
|
515
507
|
*/
|
|
516
508
|
oidcSsoConfig?: SetApplicationSsoConfigRequestOidcSsoConfig;
|
|
517
509
|
/**
|
|
518
510
|
* @remarks
|
|
519
|
-
* The SSO
|
|
511
|
+
* The SSO configuration parameters for a SAML protocol-based application.
|
|
520
512
|
*/
|
|
521
513
|
samlSsoConfig?: SetApplicationSsoConfigRequestSamlSsoConfig;
|
|
522
514
|
static names(): { [key: string]: string } {
|
|
@@ -5,7 +5,7 @@ import * as $dara from '@darabonba/typescript';
|
|
|
5
5
|
export class SetIdentityProviderAuthnConfigurationRequestAutoCreateUserConfig extends $dara.Model {
|
|
6
6
|
/**
|
|
7
7
|
* @remarks
|
|
8
|
-
*
|
|
8
|
+
* Indicates whether automatic account creation is enabled.
|
|
9
9
|
*
|
|
10
10
|
* @example
|
|
11
11
|
* disabled
|
|
@@ -13,7 +13,7 @@ export class SetIdentityProviderAuthnConfigurationRequestAutoCreateUserConfig ex
|
|
|
13
13
|
autoCreateUserStatus?: string;
|
|
14
14
|
/**
|
|
15
15
|
* @remarks
|
|
16
|
-
*
|
|
16
|
+
* The organizational unit IDs.
|
|
17
17
|
*/
|
|
18
18
|
targetOrganizationalUnitIds?: string[];
|
|
19
19
|
static names(): { [key: string]: string } {
|
|
@@ -45,7 +45,7 @@ export class SetIdentityProviderAuthnConfigurationRequestAutoCreateUserConfig ex
|
|
|
45
45
|
export class SetIdentityProviderAuthnConfigurationRequestAutoUpdateUserConfig extends $dara.Model {
|
|
46
46
|
/**
|
|
47
47
|
* @remarks
|
|
48
|
-
*
|
|
48
|
+
* Indicates whether automatic account update is enabled.
|
|
49
49
|
*
|
|
50
50
|
* @example
|
|
51
51
|
* disabled
|
|
@@ -75,7 +75,7 @@ export class SetIdentityProviderAuthnConfigurationRequestAutoUpdateUserConfig ex
|
|
|
75
75
|
export class SetIdentityProviderAuthnConfigurationRequestBindingConfigAutoMatchUserProfileExpressions extends $dara.Model {
|
|
76
76
|
/**
|
|
77
77
|
* @remarks
|
|
78
|
-
*
|
|
78
|
+
* The type of the expression.
|
|
79
79
|
*
|
|
80
80
|
* This parameter is required.
|
|
81
81
|
*
|
|
@@ -85,7 +85,7 @@ export class SetIdentityProviderAuthnConfigurationRequestBindingConfigAutoMatchU
|
|
|
85
85
|
expressionMappingType?: string;
|
|
86
86
|
/**
|
|
87
87
|
* @remarks
|
|
88
|
-
*
|
|
88
|
+
* The value expression of the mapping attribute.
|
|
89
89
|
*
|
|
90
90
|
* This parameter is required.
|
|
91
91
|
*
|
|
@@ -95,7 +95,7 @@ export class SetIdentityProviderAuthnConfigurationRequestBindingConfigAutoMatchU
|
|
|
95
95
|
sourceValueExpression?: string;
|
|
96
96
|
/**
|
|
97
97
|
* @remarks
|
|
98
|
-
*
|
|
98
|
+
* The name of the mapping target attribute.
|
|
99
99
|
*
|
|
100
100
|
* This parameter is required.
|
|
101
101
|
*
|
|
@@ -105,7 +105,7 @@ export class SetIdentityProviderAuthnConfigurationRequestBindingConfigAutoMatchU
|
|
|
105
105
|
targetField?: string;
|
|
106
106
|
/**
|
|
107
107
|
* @remarks
|
|
108
|
-
*
|
|
108
|
+
* The description of the mapping target attribute.
|
|
109
109
|
*
|
|
110
110
|
* @example
|
|
111
111
|
* username
|
|
@@ -146,7 +146,7 @@ export class SetIdentityProviderAuthnConfigurationRequestBindingConfig extends $
|
|
|
146
146
|
autoMatchUserProfileExpressions?: SetIdentityProviderAuthnConfigurationRequestBindingConfigAutoMatchUserProfileExpressions[];
|
|
147
147
|
/**
|
|
148
148
|
* @remarks
|
|
149
|
-
*
|
|
149
|
+
* Indicates whether automatic account matching is enabled.
|
|
150
150
|
*
|
|
151
151
|
* @example
|
|
152
152
|
* disabled
|
|
@@ -154,7 +154,7 @@ export class SetIdentityProviderAuthnConfigurationRequestBindingConfig extends $
|
|
|
154
154
|
autoMatchUserStatus?: string;
|
|
155
155
|
/**
|
|
156
156
|
* @remarks
|
|
157
|
-
*
|
|
157
|
+
* Indicates whether the manual account binding feature is enabled.
|
|
158
158
|
*
|
|
159
159
|
* @example
|
|
160
160
|
* enabled
|
|
@@ -191,7 +191,7 @@ export class SetIdentityProviderAuthnConfigurationRequestBindingConfig extends $
|
|
|
191
191
|
export class SetIdentityProviderAuthnConfigurationRequestLdapAuthnConfig extends $dara.Model {
|
|
192
192
|
/**
|
|
193
193
|
* @remarks
|
|
194
|
-
*
|
|
194
|
+
* Indicates whether automatic password update is supported.
|
|
195
195
|
*
|
|
196
196
|
* @example
|
|
197
197
|
* enabled
|
|
@@ -199,7 +199,7 @@ export class SetIdentityProviderAuthnConfigurationRequestLdapAuthnConfig extends
|
|
|
199
199
|
autoUpdatePasswordStatus?: string;
|
|
200
200
|
/**
|
|
201
201
|
* @remarks
|
|
202
|
-
*
|
|
202
|
+
* The user login identifier.
|
|
203
203
|
*
|
|
204
204
|
* @example
|
|
205
205
|
* email
|
|
@@ -207,7 +207,7 @@ export class SetIdentityProviderAuthnConfigurationRequestLdapAuthnConfig extends
|
|
|
207
207
|
userLoginIdentifier?: string;
|
|
208
208
|
/**
|
|
209
209
|
* @remarks
|
|
210
|
-
*
|
|
210
|
+
* The user ObjectClass.
|
|
211
211
|
*
|
|
212
212
|
* @example
|
|
213
213
|
* posixAccount
|
|
@@ -241,22 +241,22 @@ export class SetIdentityProviderAuthnConfigurationRequestLdapAuthnConfig extends
|
|
|
241
241
|
export class SetIdentityProviderAuthnConfigurationRequest extends $dara.Model {
|
|
242
242
|
/**
|
|
243
243
|
* @remarks
|
|
244
|
-
* Automatic
|
|
244
|
+
* Automatic account creation rule configuration.
|
|
245
245
|
*/
|
|
246
246
|
autoCreateUserConfig?: SetIdentityProviderAuthnConfigurationRequestAutoCreateUserConfig;
|
|
247
247
|
/**
|
|
248
248
|
* @remarks
|
|
249
|
-
* Automatic
|
|
249
|
+
* Automatic account update configuration.
|
|
250
250
|
*/
|
|
251
251
|
autoUpdateUserConfig?: SetIdentityProviderAuthnConfigurationRequestAutoUpdateUserConfig;
|
|
252
252
|
/**
|
|
253
253
|
* @remarks
|
|
254
|
-
* Account
|
|
254
|
+
* Account binding rule configuration.
|
|
255
255
|
*/
|
|
256
256
|
bindingConfig?: SetIdentityProviderAuthnConfigurationRequestBindingConfig;
|
|
257
257
|
/**
|
|
258
258
|
* @remarks
|
|
259
|
-
* Identity
|
|
259
|
+
* Identity provider ID.
|
|
260
260
|
*
|
|
261
261
|
* This parameter is required.
|
|
262
262
|
*
|
|
@@ -266,7 +266,7 @@ export class SetIdentityProviderAuthnConfigurationRequest extends $dara.Model {
|
|
|
266
266
|
identityProviderId?: string;
|
|
267
267
|
/**
|
|
268
268
|
* @remarks
|
|
269
|
-
* Instance ID
|
|
269
|
+
* Instance ID.
|
|
270
270
|
*
|
|
271
271
|
* This parameter is required.
|
|
272
272
|
*
|
|
@@ -276,7 +276,7 @@ export class SetIdentityProviderAuthnConfigurationRequest extends $dara.Model {
|
|
|
276
276
|
instanceId?: string;
|
|
277
277
|
/**
|
|
278
278
|
* @remarks
|
|
279
|
-
* AD/LDAP
|
|
279
|
+
* AD/LDAP authentication configuration.
|
|
280
280
|
*/
|
|
281
281
|
ldapAuthnConfig?: SetIdentityProviderAuthnConfigurationRequestLdapAuthnConfig;
|
|
282
282
|
static names(): { [key: string]: string } {
|
|
@@ -13,7 +13,7 @@ export class SetIdentityProviderUdPullConfigurationRequestLdapUdPullConfig exten
|
|
|
13
13
|
groupMemberAttributeName?: string;
|
|
14
14
|
/**
|
|
15
15
|
* @remarks
|
|
16
|
-
* The group
|
|
16
|
+
* The group ObjectClass.
|
|
17
17
|
*
|
|
18
18
|
* @example
|
|
19
19
|
* group
|
|
@@ -21,7 +21,7 @@ export class SetIdentityProviderUdPullConfigurationRequestLdapUdPullConfig exten
|
|
|
21
21
|
groupObjectClass?: string;
|
|
22
22
|
/**
|
|
23
23
|
* @remarks
|
|
24
|
-
* The custom
|
|
24
|
+
* The custom filter for groups.
|
|
25
25
|
*
|
|
26
26
|
* @example
|
|
27
27
|
* (|(cn=test)(group=test@test.com))
|
|
@@ -29,7 +29,7 @@ export class SetIdentityProviderUdPullConfigurationRequestLdapUdPullConfig exten
|
|
|
29
29
|
groupObjectClassCustomFilter?: string;
|
|
30
30
|
/**
|
|
31
31
|
* @remarks
|
|
32
|
-
* The organizational unit
|
|
32
|
+
* The organizational unit ObjectClass.
|
|
33
33
|
*
|
|
34
34
|
* @example
|
|
35
35
|
* organizationUnit,top
|
|
@@ -37,7 +37,7 @@ export class SetIdentityProviderUdPullConfigurationRequestLdapUdPullConfig exten
|
|
|
37
37
|
organizationUnitObjectClass?: string;
|
|
38
38
|
/**
|
|
39
39
|
* @remarks
|
|
40
|
-
* The user
|
|
40
|
+
* The user ObjectClass.
|
|
41
41
|
*
|
|
42
42
|
* @example
|
|
43
43
|
* userPrincipalName, mail
|
|
@@ -45,7 +45,7 @@ export class SetIdentityProviderUdPullConfigurationRequestLdapUdPullConfig exten
|
|
|
45
45
|
userObjectClass?: string;
|
|
46
46
|
/**
|
|
47
47
|
* @remarks
|
|
48
|
-
* The custom
|
|
48
|
+
* The custom filter for users.
|
|
49
49
|
*
|
|
50
50
|
* @example
|
|
51
51
|
* (|(cn=test)(mail=test@test.com))
|
|
@@ -93,12 +93,12 @@ export class SetIdentityProviderUdPullConfigurationRequestPeriodicSyncConfig ext
|
|
|
93
93
|
periodicSyncCron?: string;
|
|
94
94
|
/**
|
|
95
95
|
* @remarks
|
|
96
|
-
* The time points
|
|
96
|
+
* The execution time points. This parameter is required when periodicSyncType is set to time. For example, [3, 5] indicates that the task runs once between 3:00 and 4:00 and once between 5:00 and 6:00.
|
|
97
97
|
*/
|
|
98
98
|
periodicSyncTimes?: number[];
|
|
99
99
|
/**
|
|
100
100
|
* @remarks
|
|
101
|
-
* The type.
|
|
101
|
+
* The type of periodic synchronization.
|
|
102
102
|
*
|
|
103
103
|
* @example
|
|
104
104
|
* cron
|
|
@@ -135,7 +135,7 @@ export class SetIdentityProviderUdPullConfigurationRequestPeriodicSyncConfig ext
|
|
|
135
135
|
export class SetIdentityProviderUdPullConfigurationRequestPullProtectedRule extends $dara.Model {
|
|
136
136
|
/**
|
|
137
137
|
* @remarks
|
|
138
|
-
* The threshold for the number of groups
|
|
138
|
+
* The threshold for the number of deleted groups. If the number of deleted groups exceeds this value, the synchronization task is terminated.
|
|
139
139
|
*
|
|
140
140
|
* @example
|
|
141
141
|
* 10
|
|
@@ -143,7 +143,7 @@ export class SetIdentityProviderUdPullConfigurationRequestPullProtectedRule exte
|
|
|
143
143
|
groupDeletedThreshold?: number;
|
|
144
144
|
/**
|
|
145
145
|
* @remarks
|
|
146
|
-
* The threshold for the number of organizational units
|
|
146
|
+
* The threshold for the number of deleted organizational units. If the number of deleted organizational units exceeds this value, the synchronization task is terminated.
|
|
147
147
|
*
|
|
148
148
|
* @example
|
|
149
149
|
* 10
|
|
@@ -151,7 +151,7 @@ export class SetIdentityProviderUdPullConfigurationRequestPullProtectedRule exte
|
|
|
151
151
|
organizationalUnitDeletedThreshold?: number;
|
|
152
152
|
/**
|
|
153
153
|
* @remarks
|
|
154
|
-
* The threshold for the number of
|
|
154
|
+
* The threshold for the number of deleted accounts. If the number of deleted users exceeds this value, the synchronization task is terminated.
|
|
155
155
|
*
|
|
156
156
|
* @example
|
|
157
157
|
* 30
|
|
@@ -226,10 +226,9 @@ export class SetIdentityProviderUdPullConfigurationRequest extends $dara.Model {
|
|
|
226
226
|
/**
|
|
227
227
|
* @remarks
|
|
228
228
|
* The group synchronization status. Valid values:
|
|
229
|
+
* - disabled: Disabled.
|
|
229
230
|
*
|
|
230
|
-
* -
|
|
231
|
-
*
|
|
232
|
-
* - enabled: The feature is enabled.
|
|
231
|
+
* - enabled: Enabled.
|
|
233
232
|
*
|
|
234
233
|
* @example
|
|
235
234
|
* disabled
|
|
@@ -247,11 +246,11 @@ export class SetIdentityProviderUdPullConfigurationRequest extends $dara.Model {
|
|
|
247
246
|
identityProviderId?: string;
|
|
248
247
|
/**
|
|
249
248
|
* @remarks
|
|
250
|
-
*
|
|
249
|
+
* Specifies whether to process incremental callback data from the IdP. Valid values:
|
|
251
250
|
*
|
|
252
|
-
* - disabled:
|
|
251
|
+
* - disabled: Disabled.
|
|
253
252
|
*
|
|
254
|
-
* - enabled:
|
|
253
|
+
* - enabled: Enabled.
|
|
255
254
|
*
|
|
256
255
|
* This parameter is required.
|
|
257
256
|
*
|
|
@@ -271,21 +270,21 @@ export class SetIdentityProviderUdPullConfigurationRequest extends $dara.Model {
|
|
|
271
270
|
instanceId?: string;
|
|
272
271
|
/**
|
|
273
272
|
* @remarks
|
|
274
|
-
* The
|
|
273
|
+
* The LDAP synchronization configuration.
|
|
275
274
|
*/
|
|
276
275
|
ldapUdPullConfig?: SetIdentityProviderUdPullConfigurationRequestLdapUdPullConfig;
|
|
277
276
|
/**
|
|
278
277
|
* @remarks
|
|
279
|
-
* The
|
|
278
|
+
* The periodic synchronization configuration.
|
|
280
279
|
*/
|
|
281
280
|
periodicSyncConfig?: SetIdentityProviderUdPullConfigurationRequestPeriodicSyncConfig;
|
|
282
281
|
/**
|
|
283
282
|
* @remarks
|
|
284
|
-
*
|
|
283
|
+
* Specifies whether to periodically verify data differences between IDaaS and the identity provider. Valid values:
|
|
285
284
|
*
|
|
286
|
-
* - disabled:
|
|
285
|
+
* - disabled: Disabled.
|
|
287
286
|
*
|
|
288
|
-
* - enabled:
|
|
287
|
+
* - enabled: Enabled.
|
|
289
288
|
*
|
|
290
289
|
* @example
|
|
291
290
|
* disabled
|
|
@@ -298,7 +297,7 @@ export class SetIdentityProviderUdPullConfigurationRequest extends $dara.Model {
|
|
|
298
297
|
pullProtectedRule?: SetIdentityProviderUdPullConfigurationRequestPullProtectedRule;
|
|
299
298
|
/**
|
|
300
299
|
* @remarks
|
|
301
|
-
* The inbound synchronization configuration.
|
|
300
|
+
* The inbound synchronization scope configuration.
|
|
302
301
|
*/
|
|
303
302
|
udSyncScopeConfig?: SetIdentityProviderUdPullConfigurationRequestUdSyncScopeConfig;
|
|
304
303
|
static names(): { [key: string]: string } {
|
|
@@ -5,12 +5,12 @@ import * as $dara from '@darabonba/typescript';
|
|
|
5
5
|
export class UpdateApplicationAdvancedConfigRequestScimServerAdvancedConfig extends $dara.Model {
|
|
6
6
|
/**
|
|
7
7
|
* @remarks
|
|
8
|
-
*
|
|
8
|
+
* The list of supported user custom field IDs.
|
|
9
9
|
*/
|
|
10
10
|
supportedUserCustomFieldIds?: string[];
|
|
11
11
|
/**
|
|
12
12
|
* @remarks
|
|
13
|
-
* The namespace of
|
|
13
|
+
* The namespace of user extended fields.
|
|
14
14
|
*
|
|
15
15
|
* @example
|
|
16
16
|
* urn:ietf:params:scim:schemas:extension:customfield:2.0:User
|
|
@@ -65,7 +65,7 @@ export class UpdateApplicationAdvancedConfigRequest extends $dara.Model {
|
|
|
65
65
|
instanceId?: string;
|
|
66
66
|
/**
|
|
67
67
|
* @remarks
|
|
68
|
-
* The advanced configuration
|
|
68
|
+
* The SCIM server advanced configuration.
|
|
69
69
|
*/
|
|
70
70
|
scimServerAdvancedConfig?: UpdateApplicationAdvancedConfigRequestScimServerAdvancedConfig;
|
|
71
71
|
static names(): { [key: string]: string } {
|