@flyteorg/flyteidl2 2.0.0 → 2.0.2

package/flyteidl2/auth/auth_service_pb.ts

@@ -0,0 +1,220 @@
+// @generated by protoc-gen-es v2.2.5 with parameter "target=ts,import_extension=.ts"
+// @generated from file flyteidl2/auth/auth_service.proto (package flyteidl2.auth, syntax proto3)
+/* eslint-disable */
+
+import type { GenFile, GenMessage, GenService } from "@bufbuild/protobuf/codegenv1";
+import { fileDesc, messageDesc, serviceDesc } from "@bufbuild/protobuf/codegenv1";
+import type { Message } from "@bufbuild/protobuf";
+
+/**
+ * Describes the file flyteidl2/auth/auth_service.proto.
+ */
+export const file_flyteidl2_auth_auth_service: GenFile = /*@__PURE__*/
+  fileDesc("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");
+
+/**
+ * @generated from message flyteidl2.auth.GetOAuth2MetadataRequest
+ */
+export type GetOAuth2MetadataRequest = Message<"flyteidl2.auth.GetOAuth2MetadataRequest"> & {
+};
+
+/**
+ * Describes the message flyteidl2.auth.GetOAuth2MetadataRequest.
+ * Use `create(GetOAuth2MetadataRequestSchema)` to create a new message.
+ */
+export const GetOAuth2MetadataRequestSchema: GenMessage<GetOAuth2MetadataRequest> = /*@__PURE__*/
+  messageDesc(file_flyteidl2_auth_auth_service, 0);
+
+/**
+ * OAuth2MetadataResponse defines an RFC-Compliant response for /.well-known/oauth-authorization-server metadata
+ * as defined in https://tools.ietf.org/html/rfc8414
+ *
+ * @generated from message flyteidl2.auth.GetOAuth2MetadataResponse
+ */
+export type GetOAuth2MetadataResponse = Message<"flyteidl2.auth.GetOAuth2MetadataResponse"> & {
+  /**
+   * Defines the issuer string in all JWT tokens this server issues. The issuer can be admin itself or an external
+   * issuer.
+   *
+   * @generated from field: string issuer = 1;
+   */
+  issuer: string;
+
+  /**
+   * URL of the authorization server's authorization endpoint [RFC6749]. This is REQUIRED unless no grant types are
+   * supported that use the authorization endpoint.
+   *
+   * @generated from field: string authorization_endpoint = 2;
+   */
+  authorizationEndpoint: string;
+
+  /**
+   * URL of the authorization server's token endpoint [RFC6749].
+   *
+   * @generated from field: string token_endpoint = 3;
+   */
+  tokenEndpoint: string;
+
+  /**
+   * Array containing a list of the OAuth 2.0 response_type values that this authorization server supports.
+   *
+   * @generated from field: repeated string response_types_supported = 4;
+   */
+  responseTypesSupported: string[];
+
+  /**
+   * JSON array containing a list of the OAuth 2.0 [RFC6749] scope values that this authorization server supports.
+   *
+   * @generated from field: repeated string scopes_supported = 5;
+   */
+  scopesSupported: string[];
+
+  /**
+   * JSON array containing a list of client authentication methods supported by this token endpoint.
+   *
+   * @generated from field: repeated string token_endpoint_auth_methods_supported = 6;
+   */
+  tokenEndpointAuthMethodsSupported: string[];
+
+  /**
+   * URL of the authorization server's JWK Set [JWK] document. The referenced document contains the signing key(s) the
+   * client uses to validate signatures from the authorization server.
+   *
+   * @generated from field: string jwks_uri = 7;
+   */
+  jwksUri: string;
+
+  /**
+   * JSON array containing a list of Proof Key for Code Exchange (PKCE) [RFC7636] code challenge methods supported by
+   * this authorization server.
+   *
+   * @generated from field: repeated string code_challenge_methods_supported = 8;
+   */
+  codeChallengeMethodsSupported: string[];
+
+  /**
+   * JSON array containing a list of the OAuth 2.0 grant type values that this authorization server supports.
+   *
+   * @generated from field: repeated string grant_types_supported = 9;
+   */
+  grantTypesSupported: string[];
+
+  /**
+   * URL of the authorization server's device authorization endpoint, as defined in Section 3.1 of [RFC8628]
+   *
+   * @generated from field: string device_authorization_endpoint = 10;
+   */
+  deviceAuthorizationEndpoint: string;
+};
+
+/**
+ * Describes the message flyteidl2.auth.GetOAuth2MetadataResponse.
+ * Use `create(GetOAuth2MetadataResponseSchema)` to create a new message.
+ */
+export const GetOAuth2MetadataResponseSchema: GenMessage<GetOAuth2MetadataResponse> = /*@__PURE__*/
+  messageDesc(file_flyteidl2_auth_auth_service, 1);
+
+/**
+ * @generated from message flyteidl2.auth.GetPublicClientConfigRequest
+ */
+export type GetPublicClientConfigRequest = Message<"flyteidl2.auth.GetPublicClientConfigRequest"> & {
+};
+
+/**
+ * Describes the message flyteidl2.auth.GetPublicClientConfigRequest.
+ * Use `create(GetPublicClientConfigRequestSchema)` to create a new message.
+ */
+export const GetPublicClientConfigRequestSchema: GenMessage<GetPublicClientConfigRequest> = /*@__PURE__*/
+  messageDesc(file_flyteidl2_auth_auth_service, 2);
+
+/**
+ * FlyteClientResponse encapsulates public information that flyte clients (CLIs... etc.) can use to authenticate users.
+ *
+ * @generated from message flyteidl2.auth.GetPublicClientConfigResponse
+ */
+export type GetPublicClientConfigResponse = Message<"flyteidl2.auth.GetPublicClientConfigResponse"> & {
+  /**
+   * client_id to use when initiating OAuth2 authorization requests.
+   *
+   * @generated from field: string client_id = 1;
+   */
+  clientId: string;
+
+  /**
+   * redirect uri to use when initiating OAuth2 authorization requests.
+   *
+   * @generated from field: string redirect_uri = 2;
+   */
+  redirectUri: string;
+
+  /**
+   * scopes to request when initiating OAuth2 authorization requests.
+   *
+   * @generated from field: repeated string scopes = 3;
+   */
+  scopes: string[];
+
+  /**
+   * Authorization Header to use when passing Access Tokens to the server. If not provided, the client should use the
+   * default http `Authorization` header.
+   *
+   * @generated from field: string authorization_metadata_key = 4;
+   */
+  authorizationMetadataKey: string;
+
+  /**
+   * ServiceHttpEndpoint points to the http endpoint for the backend. If empty, clients can assume the endpoint used
+   * to configure the gRPC connection can be used for the http one respecting the insecure flag to choose between
+   * SSL or no SSL connections.
+   *
+   * @generated from field: string service_http_endpoint = 5;
+   */
+  serviceHttpEndpoint: string;
+
+  /**
+   * audience to use when initiating OAuth2 authorization requests.
+   *
+   * @generated from field: string audience = 6;
+   */
+  audience: string;
+};
+
+/**
+ * Describes the message flyteidl2.auth.GetPublicClientConfigResponse.
+ * Use `create(GetPublicClientConfigResponseSchema)` to create a new message.
+ */
+export const GetPublicClientConfigResponseSchema: GenMessage<GetPublicClientConfigResponse> = /*@__PURE__*/
+  messageDesc(file_flyteidl2_auth_auth_service, 3);
+
+/**
+ * The following defines an RPC service that is also served over HTTP via grpc-gateway.
+ * Standard response codes for both are defined here: https://github.com/grpc-ecosystem/grpc-gateway/blob/master/runtime/errors.go
+ * RPCs defined in this service must be anonymously accessible.
+ *
+ * @generated from service flyteidl2.auth.AuthMetadataService
+ */
+export const AuthMetadataService: GenService<{
+  /**
+   * Anonymously accessible. Retrieves local or external oauth authorization server metadata.
+   *
+   * @generated from rpc flyteidl2.auth.AuthMetadataService.GetOAuth2Metadata
+   */
+  getOAuth2Metadata: {
+    methodKind: "unary";
+    input: typeof GetOAuth2MetadataRequestSchema;
+    output: typeof GetOAuth2MetadataResponseSchema;
+  },
+  /**
+   * Anonymously accessible. Retrieves the client information clients should use when initiating OAuth2 authorization
+   * requests.
+   *
+   * @generated from rpc flyteidl2.auth.AuthMetadataService.GetPublicClientConfig
+   */
+  getPublicClientConfig: {
+    methodKind: "unary";
+    input: typeof GetPublicClientConfigRequestSchema;
+    output: typeof GetPublicClientConfigResponseSchema;
+  },
+}> = /*@__PURE__*/
+  serviceDesc(file_flyteidl2_auth_auth_service, 0);
+

package/flyteidl2/auth/identity_pb.ts

@@ -0,0 +1,118 @@
+// @generated by protoc-gen-es v2.2.5 with parameter "target=ts,import_extension=.ts"
+// @generated from file flyteidl2/auth/identity.proto (package flyteidl2.auth, syntax proto3)
+/* eslint-disable */
+
+import type { GenFile, GenMessage, GenService } from "@bufbuild/protobuf/codegenv1";
+import { fileDesc, messageDesc, serviceDesc } from "@bufbuild/protobuf/codegenv1";
+import { file_google_protobuf_struct } from "@bufbuild/protobuf/wkt";
+import type { JsonObject, Message } from "@bufbuild/protobuf";
+
+/**
+ * Describes the file flyteidl2/auth/identity.proto.
+ */
+export const file_flyteidl2_auth_identity: GenFile = /*@__PURE__*/
+  fileDesc("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", [file_google_protobuf_struct]);
+
+/**
+ * @generated from message flyteidl2.auth.UserInfoRequest
+ */
+export type UserInfoRequest = Message<"flyteidl2.auth.UserInfoRequest"> & {
+};
+
+/**
+ * Describes the message flyteidl2.auth.UserInfoRequest.
+ * Use `create(UserInfoRequestSchema)` to create a new message.
+ */
+export const UserInfoRequestSchema: GenMessage<UserInfoRequest> = /*@__PURE__*/
+  messageDesc(file_flyteidl2_auth_identity, 0);
+
+/**
+ * See the OpenID Connect spec at https://openid.net/specs/openid-connect-core-1_0.html#UserInfoResponse for more information.
+ *
+ * @generated from message flyteidl2.auth.UserInfoResponse
+ */
+export type UserInfoResponse = Message<"flyteidl2.auth.UserInfoResponse"> & {
+  /**
+   * Locally unique and never reassigned identifier within the Issuer for the End-User, which is intended to be consumed
+   * by the Client.
+   *
+   * @generated from field: string subject = 1;
+   */
+  subject: string;
+
+  /**
+   * Full name
+   *
+   * @generated from field: string name = 2;
+   */
+  name: string;
+
+  /**
+   * Shorthand name by which the End-User wishes to be referred to
+   *
+   * @generated from field: string preferred_username = 3;
+   */
+  preferredUsername: string;
+
+  /**
+   * Given name(s) or first name(s)
+   *
+   * @generated from field: string given_name = 4;
+   */
+  givenName: string;
+
+  /**
+   * Surname(s) or last name(s)
+   *
+   * @generated from field: string family_name = 5;
+   */
+  familyName: string;
+
+  /**
+   * Preferred e-mail address
+   *
+   * @generated from field: string email = 6;
+   */
+  email: string;
+
+  /**
+   * Profile picture URL
+   *
+   * @generated from field: string picture = 7;
+   */
+  picture: string;
+
+  /**
+   * Additional claims
+   *
+   * @generated from field: google.protobuf.Struct additional_claims = 8;
+   */
+  additionalClaims?: JsonObject;
+};
+
+/**
+ * Describes the message flyteidl2.auth.UserInfoResponse.
+ * Use `create(UserInfoResponseSchema)` to create a new message.
+ */
+export const UserInfoResponseSchema: GenMessage<UserInfoResponse> = /*@__PURE__*/
+  messageDesc(file_flyteidl2_auth_identity, 1);
+
+/**
+ * IdentityService defines an RPC Service that interacts with user/app identities.
+ *
+ * @generated from service flyteidl2.auth.IdentityService
+ */
+export const IdentityService: GenService<{
+  /**
+   * Retrieves user information about the currently logged in user.
+   *
+   * @generated from rpc flyteidl2.auth.IdentityService.UserInfo
+   */
+  userInfo: {
+    methodKind: "unary";
+    input: typeof UserInfoRequestSchema;
+    output: typeof UserInfoResponseSchema;
+  },
+}> = /*@__PURE__*/
+  serviceDesc(file_flyteidl2_auth_identity, 0);
+

package/flyteidl2/core/interface_pb.ts

@@ -16,7 +16,7 @@ import type { Message } from "@bufbuild/protobuf";
  * Describes the file flyteidl2/core/interface.proto.
  */
 export const file_flyteidl2_core_interface: GenFile = /*@__PURE__*/
-  fileDesc("Ch5mbHl0ZWlkbDIvY29yZS9pbnRlcmZhY2UucHJvdG8SDmZseXRlaWRsMi5jb3JlIrYBCghWYXJpYWJsZRIpCgR0eXBlGAEgASgLMhsuZmx5dGVpZGwyLmNvcmUuTGl0ZXJhbFR5cGUSEwoLZGVzY3JpcHRpb24YAiABKAkSNwoTYXJ0aWZhY3RfcGFydGlhbF9pZBgDIAEoCzIaLmZseXRlaWRsMi5jb3JlLkFydGlmYWN0SUQSMQoMYXJ0aWZhY3RfdGFnGAQgASgLMhsuZmx5dGVpZGwyLmNvcmUuQXJ0aWZhY3RUYWcimAEKC1ZhcmlhYmxlTWFwEj0KCXZhcmlhYmxlcxgBIAMoCzIqLmZseXRlaWRsMi5jb3JlLlZhcmlhYmxlTWFwLlZhcmlhYmxlc0VudHJ5GkoKDlZhcmlhYmxlc0VudHJ5EgsKA2tleRgBIAEoCRInCgV2YWx1ZRgCIAEoCzIYLmZseXRlaWRsMi5jb3JlLlZhcmlhYmxlOgI4ASJrCg5UeXBlZEludGVyZmFjZRIrCgZpbnB1dHMYASABKAsyGy5mbHl0ZWlkbDIuY29yZS5WYXJpYWJsZU1hcBIsCgdvdXRwdXRzGAIgASgLMhsuZmx5dGVpZGwyLmNvcmUuVmFyaWFibGVNYXAi6gEKCVBhcmFtZXRlchIlCgN2YXIYASABKAsyGC5mbHl0ZWlkbDIuY29yZS5WYXJpYWJsZRIqCgdkZWZhdWx0GAIgASgLMhcuZmx5dGVpZGwyLmNvcmUuTGl0ZXJhbEgAEhIKCHJlcXVpcmVkGAMgASgISAASNwoOYXJ0aWZhY3RfcXVlcnkYBCABKAsyHS5mbHl0ZWlkbDIuY29yZS5BcnRpZmFjdFF1ZXJ5SAASMQoLYXJ0aWZhY3RfaWQYBSABKAsyGi5mbHl0ZWlkbDIuY29yZS5BcnRpZmFjdElESABCCgoIYmVoYXZpb3IingEKDFBhcmFtZXRlck1hcBJACgpwYXJhbWV0ZXJzGAEgAygLMiwuZmx5dGVpZGwyLmNvcmUuUGFyYW1ldGVyTWFwLlBhcmFtZXRlcnNFbnRyeRpMCg9QYXJhbWV0ZXJzRW50cnkSCwoDa2V5GAEgASgJEigKBXZhbHVlGAIgASgLMhkuZmx5dGVpZGwyLmNvcmUuUGFyYW1ldGVyOgI4AUKzAQoSY29tLmZseXRlaWRsMi5jb3JlQg5JbnRlcmZhY2VQcm90b0gCUAFaMmdpdGh1Yi5jb20vZmx5dGVvcmcvZmx5dGUvdjIvZ2VuL2dvL2ZseXRlaWRsMi9jb3JlogIDRkNYqgIORmx5dGVpZGwyLkNvcmXKAg5GbHl0ZWlkbDJcQ29yZeICGkZseXRlaWRsMlxDb3JlXEdQQk1ldGFkYXRh6gIPRmx5dGVpZGwyOjpDb3JlYgZwcm90bzM", [file_flyteidl2_core_artifact_id, file_flyteidl2_core_literals, file_flyteidl2_core_types]);
+  fileDesc("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", [file_flyteidl2_core_artifact_id, file_flyteidl2_core_literals, file_flyteidl2_core_types]);
 
 /**
  * Defines a strongly typed variable.
@@ -59,6 +59,30 @@ export type Variable = Message<"flyteidl2.core.Variable"> & {
 export const VariableSchema: GenMessage<Variable> = /*@__PURE__*/
   messageDesc(file_flyteidl2_core_interface, 0);
 
+/**
+ * Defines a single entity for variable.
+ *
+ * @generated from message flyteidl2.core.VariableEntry
+ */
+export type VariableEntry = Message<"flyteidl2.core.VariableEntry"> & {
+  /**
+   * @generated from field: string key = 1;
+   */
+  key: string;
+
+  /**
+   * @generated from field: flyteidl2.core.Variable value = 2;
+   */
+  value?: Variable;
+};
+
+/**
+ * Describes the message flyteidl2.core.VariableEntry.
+ * Use `create(VariableEntrySchema)` to create a new message.
+ */
+export const VariableEntrySchema: GenMessage<VariableEntry> = /*@__PURE__*/
+  messageDesc(file_flyteidl2_core_interface, 1);
+
 /**
  * A map of Variables
  *
@@ -66,11 +90,11 @@ export const VariableSchema: GenMessage<Variable> = /*@__PURE__*/
  */
 export type VariableMap = Message<"flyteidl2.core.VariableMap"> & {
   /**
-   * Defines a map of variable names to variables.
+   * Use repeated key value pair to maintain ordering across different languages.
    *
-   * @generated from field: map<string, flyteidl2.core.Variable> variables = 1;
+   * @generated from field: repeated flyteidl2.core.VariableEntry variables = 1;
    */
-  variables: { [key: string]: Variable };
+  variables: VariableEntry[];
 };
 
 /**
@@ -78,7 +102,7 @@ export type VariableMap = Message<"flyteidl2.core.VariableMap"> & {
  * Use `create(VariableMapSchema)` to create a new message.
  */
 export const VariableMapSchema: GenMessage<VariableMap> = /*@__PURE__*/
-  messageDesc(file_flyteidl2_core_interface, 1);
+  messageDesc(file_flyteidl2_core_interface, 2);
 
 /**
  * Defines strongly typed inputs and outputs.
@@ -102,7 +126,7 @@ export type TypedInterface = Message<"flyteidl2.core.TypedInterface"> & {
  * Use `create(TypedInterfaceSchema)` to create a new message.
  */
 export const TypedInterfaceSchema: GenMessage<TypedInterface> = /*@__PURE__*/
-  messageDesc(file_flyteidl2_core_interface, 2);
+  messageDesc(file_flyteidl2_core_interface, 3);
 
 /**
  * A parameter is used as input to a launch plan and has
@@ -162,7 +186,7 @@ export type Parameter = Message<"flyteidl2.core.Parameter"> & {
  * Use `create(ParameterSchema)` to create a new message.
  */
 export const ParameterSchema: GenMessage<Parameter> = /*@__PURE__*/
-  messageDesc(file_flyteidl2_core_interface, 3);
+  messageDesc(file_flyteidl2_core_interface, 4);
 
 /**
  * A map of Parameters.
@@ -183,5 +207,5 @@ export type ParameterMap = Message<"flyteidl2.core.ParameterMap"> & {
  * Use `create(ParameterMapSchema)` to create a new message.
  */
 export const ParameterMapSchema: GenMessage<ParameterMap> = /*@__PURE__*/
-  messageDesc(file_flyteidl2_core_interface, 4);
+  messageDesc(file_flyteidl2_core_interface, 5);
 

package/flyteidl2/dataproxy/dataproxy_service_pb.ts

@@ -0,0 +1,177 @@
+// @generated by protoc-gen-es v2.2.5 with parameter "target=ts,import_extension=.ts"
+// @generated from file flyteidl2/dataproxy/dataproxy_service.proto (package flyteidl2.dataproxy, syntax proto3)
+/* eslint-disable */
+
+import type { GenFile, GenMessage, GenService } from "@bufbuild/protobuf/codegenv1";
+import { fileDesc, messageDesc, serviceDesc } from "@bufbuild/protobuf/codegenv1";
+import { file_buf_validate_validate } from "../../buf/validate/validate_pb.ts";
+import { file_google_api_annotations } from "../../google/api/annotations_pb.ts";
+import type { Duration, Timestamp } from "@bufbuild/protobuf/wkt";
+import { file_google_protobuf_duration, file_google_protobuf_timestamp } from "@bufbuild/protobuf/wkt";
+import { file_protoc_gen_openapiv2_options_annotations } from "../../protoc-gen-openapiv2/options/annotations_pb.ts";
+import type { Message } from "@bufbuild/protobuf";
+
+/**
+ * Describes the file flyteidl2/dataproxy/dataproxy_service.proto.
+ */
+export const file_flyteidl2_dataproxy_dataproxy_service: GenFile = /*@__PURE__*/
+  fileDesc("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", [file_buf_validate_validate, file_google_api_annotations, file_google_protobuf_duration, file_google_protobuf_timestamp, file_protoc_gen_openapiv2_options_annotations]);
+
+/**
+ * CreateUploadLocationRequest specifies the request for the CreateUploadLocation API.
+ * The data proxy service will generate a storage location with server-side configured prefixes.
+ * The generated path follows one of these patterns:
+ *   - project/domain/(deterministic hash of content_md5)/filename (if filename is present); OR
+ *   - project/domain/filename_root/filename (if filename_root and filename are present).
+ *
+ * @generated from message flyteidl2.dataproxy.CreateUploadLocationRequest
+ */
+export type CreateUploadLocationRequest = Message<"flyteidl2.dataproxy.CreateUploadLocationRequest"> & {
+  /**
+   * Project to create the upload location for.
+   * +required
+   *
+   * @generated from field: string project = 1;
+   */
+  project: string;
+
+  /**
+   * Domain to create the upload location for.
+   * +required
+   *
+   * @generated from field: string domain = 2;
+   */
+  domain: string;
+
+  /**
+   * Filename specifies the desired suffix for the generated location. E.g. `file.py` or `pre/fix/file.zip`.
+   * +optional. By default, the service generates a consistent name based on the default filename length provided in the global config..
+   *
+   * @generated from field: string filename = 3;
+   */
+  filename: string;
+
+  /**
+   * ExpiresIn defines the requested expiration duration for the generated URL. The request will be rejected if this
+   * exceeds the platform's configured maximum.
+   * +optional. The default value comes from the global config.
+   *
+   * @generated from field: google.protobuf.Duration expires_in = 4;
+   */
+  expiresIn?: Duration;
+
+  /**
+   * ContentMD5 restricts the upload location to the specific MD5 provided. The MD5 hash will also appear in the
+   * generated path for verification.
+   * +required
+   *
+   * @generated from field: bytes content_md5 = 5;
+   */
+  contentMd5: Uint8Array;
+
+  /**
+   * FilenameRoot, if present, will be used instead of the MD5 hash in the path. When combined with filename,
+   * this makes the upload location deterministic. The native URL will still be prefixed by the upload location prefix
+   * configured in the data proxy. This option is useful when uploading multiple related files.
+   * +optional
+   *
+   * @generated from field: string filename_root = 6;
+   */
+  filenameRoot: string;
+
+  /**
+   * If true, the data proxy will add content_md5 to the Signed URL requirements,
+   * forcing clients to send this checksum with the object.
+   * This is required to enforce data integrity on backends like GCP, ensuring that
+   * the uploaded file matches the hash.
+   *
+   * @generated from field: bool add_content_md5_metadata = 7;
+   */
+  addContentMd5Metadata: boolean;
+
+  /**
+   * Org is the organization key applied to the resource.
+   * +optional
+   *
+   * @generated from field: string org = 8;
+   */
+  org: string;
+
+  /**
+   * ContentLength specifies the size of the content to be uploaded in bytes.
+   * This is validated against the platform's maximum upload size if provided.
+   * +optional
+   *
+   * @generated from field: int64 content_length = 9;
+   */
+  contentLength: bigint;
+};
+
+/**
+ * Describes the message flyteidl2.dataproxy.CreateUploadLocationRequest.
+ * Use `create(CreateUploadLocationRequestSchema)` to create a new message.
+ */
+export const CreateUploadLocationRequestSchema: GenMessage<CreateUploadLocationRequest> = /*@__PURE__*/
+  messageDesc(file_flyteidl2_dataproxy_dataproxy_service, 0);
+
+/**
+ * CreateUploadLocationResponse specifies the response for the CreateUploadLocation API.
+ *
+ * @generated from message flyteidl2.dataproxy.CreateUploadLocationResponse
+ */
+export type CreateUploadLocationResponse = Message<"flyteidl2.dataproxy.CreateUploadLocationResponse"> & {
+  /**
+   * SignedUrl is the URL to use for uploading content (e.g. https://my-bucket.s3.amazonaws.com/randomstring/suffix.tar?X-...).
+   *
+   * @generated from field: string signed_url = 1;
+   */
+  signedUrl: string;
+
+  /**
+   * NativeUrl is the URL in the format of the configured storage provider (e.g. s3://my-bucket/randomstring/suffix.tar).
+   *
+   * @generated from field: string native_url = 2;
+   */
+  nativeUrl: string;
+
+  /**
+   * ExpiresAt defines when the signed URL will expire.
+   *
+   * @generated from field: google.protobuf.Timestamp expires_at = 3;
+   */
+  expiresAt?: Timestamp;
+
+  /**
+   * Headers are generated by the data proxy for the client. Clients must include these headers in the upload request.
+   *
+   * @generated from field: map<string, string> headers = 4;
+   */
+  headers: { [key: string]: string };
+};
+
+/**
+ * Describes the message flyteidl2.dataproxy.CreateUploadLocationResponse.
+ * Use `create(CreateUploadLocationResponseSchema)` to create a new message.
+ */
+export const CreateUploadLocationResponseSchema: GenMessage<CreateUploadLocationResponse> = /*@__PURE__*/
+  messageDesc(file_flyteidl2_dataproxy_dataproxy_service, 1);
+
+/**
+ * DataProxyService provides an interface for managing data uploads and downloads.
+ *
+ * @generated from service flyteidl2.dataproxy.DataProxyService
+ */
+export const DataProxyService: GenService<{
+  /**
+   * CreateUploadLocation generates a signed URL for uploading data to the configured storage backend.
+   *
+   * @generated from rpc flyteidl2.dataproxy.DataProxyService.CreateUploadLocation
+   */
+  createUploadLocation: {
+    methodKind: "unary";
+    input: typeof CreateUploadLocationRequestSchema;
+    output: typeof CreateUploadLocationResponseSchema;
+  },
+}> = /*@__PURE__*/
+  serviceDesc(file_flyteidl2_dataproxy_dataproxy_service, 0);
+