@maxim_mazurok/gapi.client.gkehub-v1 0.0.20240307 → 0.0.20240318

package/index.d.ts

@@ -9,7 +9,7 @@
 // This file was generated by https://github.com/Maxim-Mazurok/google-api-typings-generator. Please do not edit it manually.
 // In case of any problems please post issue to https://github.com/Maxim-Mazurok/google-api-typings-generator
 // Generated from: https://gkehub.googleapis.com/$discovery/rest?version=v1
-// Revision: 20240307
+// Revision: 20240318
 
 /// <reference types="gapi.client" />
 
@@ -602,6 +602,8 @@ declare namespace gapi.client {
       azureadConfig?: IdentityServiceAzureADConfig;
       /** GoogleConfig specific configuration. */
       googleConfig?: IdentityServiceGoogleConfig;
+      /** LDAP specific configuration. */
+      ldapConfig?: IdentityServiceLdapConfig;
       /** Identifier for auth config. */
       name?: string;
       /** OIDC specific configuration. */
@@ -631,6 +633,24 @@ declare namespace gapi.client {
       /** Disable automatic configuration of Google Plugin on supported platforms. */
       disable?: boolean;
     }
+    interface IdentityServiceGroupConfig {
+      /** Required. The location of the subtree in the LDAP directory to search for group entries. */
+      baseDn?: string;
+      /** Optional. Optional filter to be used when searching for groups a user belongs to. This can be used to explicitly match only certain groups in order to reduce the amount of groups returned for each user. This defaults to "(objectClass=Group)". */
+      filter?: string;
+      /** Optional. The identifying name of each group a user belongs to. For example, if this is set to "distinguishedName" then RBACs and other group expectations should be written as full DNs. This defaults to "distinguishedName". */
+      idAttribute?: string;
+    }
+    interface IdentityServiceLdapConfig {
+      /** Optional. Contains the properties for locating and authenticating groups in the directory. */
+      group?: IdentityServiceGroupConfig;
+      /** Required. Server settings for the external LDAP server. */
+      server?: IdentityServiceServerConfig;
+      /** Required. Contains the credentials of the service account which is authorized to perform the LDAP search in the directory. The credentials can be supplied by the combination of the DN and password or the client certificate. */
+      serviceAccount?: IdentityServiceServiceAccountConfig;
+      /** Required. Defines where users exist in the LDAP directory. */
+      user?: IdentityServiceUserConfig;
+    }
     interface IdentityServiceMembershipSpec {
       /** A member may support multiple auth methods. */
       authMethods?: IdentityServiceAuthMethod[];
@@ -693,6 +713,36 @@ declare namespace gapi.client {
       /** Optional. Prefix to prepend to user name. */
       userPrefix?: string;
     }
+    interface IdentityServiceServerConfig {
+      /** Optional. Contains a Base64 encoded, PEM formatted certificate authority certificate for the LDAP server. This must be provided for the "ldaps" and "startTLS" connections. */
+      certificateAuthorityData?: string;
+      /** Optional. Defines the connection type to communicate with the LDAP server. If `starttls` or `ldaps` is specified, the certificate_authority_data should not be empty. */
+      connectionType?: string;
+      /** Required. Defines the hostname or IP of the LDAP server. Port is optional and will default to 389, if unspecified. For example, "ldap.server.example" or "10.10.10.10:389". */
+      host?: string;
+    }
+    interface IdentityServiceServiceAccountConfig {
+      /** Credentials for basic auth. */
+      simpleBindCredentials?: IdentityServiceSimpleBindCredentials;
+    }
+    interface IdentityServiceSimpleBindCredentials {
+      /** Required. The distinguished name(DN) of the service account object/user. */
+      dn?: string;
+      /** Output only. The encrypted password of the service account object/user. */
+      encryptedPassword?: string;
+      /** Required. Input only. The password of the service account object/user. */
+      password?: string;
+    }
+    interface IdentityServiceUserConfig {
+      /** Required. The location of the subtree in the LDAP directory to search for user entries. */
+      baseDn?: string;
+      /** Optional. Filter to apply when searching for the user. This can be used to further restrict the user accounts which are allowed to login. This defaults to "(objectClass=User)". */
+      filter?: string;
+      /** Optional. Determines which attribute to use as the user's identity after they are authenticated. This is distinct from the loginAttribute field to allow users to login with a username, but then have their actual identifier be an email address or full Distinguished Name (DN). For example, setting loginAttribute to "sAMAccountName" and identifierAttribute to "userPrincipalName" would allow a user to login as "bsmith", but actual RBAC policies for the user would be written as "bsmith@example.com". Using "userPrincipalName" is recommended since this will be unique for each user. This defaults to "userPrincipalName". */
+      idAttribute?: string;
+      /** Optional. The name of the attribute which matches against the input username. This is used to find the user in the LDAP database e.g. "(=)" and is combined with the optional filter field. This defaults to "userPrincipalName". */
+      loginAttribute?: string;
+    }
     interface KubernetesMetadata {
       /** Output only. Kubernetes API server version string as reported by `/version`. */
       kubernetesApiServerVersion?: string;
@@ -717,6 +767,14 @@ declare namespace gapi.client {
       /** Optional. Options for Kubernetes resource generation. */
       resourceOptions?: ResourceOptions;
     }
+    interface ListBoundMembershipsResponse {
+      /** The list of Memberships bound to the given Scope. */
+      memberships?: Membership[];
+      /** A token to request the next page of resources from the `ListBoundMemberships` method. The value of an empty string means that there are no more resources to return. */
+      nextPageToken?: string;
+      /** List of locations that could not be reached while fetching this list. */
+      unreachable?: string[];
+    }
     interface ListFeaturesResponse {
       /** A token to request the next page of resources from the `ListFeatures` method. The value of an empty string means that there are no more resources to return. */
       nextPageToken?: string;
@@ -755,6 +813,12 @@ declare namespace gapi.client {
       /** A list of operations that matches the specified filter in the request. */
       operations?: Operation[];
     }
+    interface ListPermittedScopesResponse {
+      /** A token to request the next page of resources from the `ListPermittedScopes` method. The value of an empty string means that there are no more resources to return. */
+      nextPageToken?: string;
+      /** The list of permitted Scopes */
+      scopes?: Scope[];
+    }
     interface ListScopeNamespacesResponse {
       /** A token to request the next page of resources from the `ListNamespaces` method. The value of an empty string means that there are no more resources to return. */
       nextPageToken?: string;
@@ -3105,6 +3169,70 @@ declare namespace gapi.client {
         /** Legacy upload protocol for media (e.g. "media", "multipart"). */
         uploadType?: string;
       }): Request<ListScopesResponse>;
+      /** Lists Memberships bound to a Scope. The response includes relevant Memberships from all regions. */
+      listMemberships(request?: {
+        /** V1 error format. */
+        '$.xgafv'?: string;
+        /** OAuth access token. */
+        access_token?: string;
+        /** Data format for response. */
+        alt?: string;
+        /** JSONP */
+        callback?: string;
+        /** Selector specifying which fields to include in a partial response. */
+        fields?: string;
+        /** Optional. Lists Memberships that match the filter expression, following the syntax outlined in https://google.aip.dev/160. Currently, filtering can be done only based on Memberships's `name`, `labels`, `create_time`, `update_time`, and `unique_id`. */
+        filter?: string;
+        /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
+        key?: string;
+        /** OAuth 2.0 token for the current user. */
+        oauth_token?: string;
+        /** Optional. When requesting a 'page' of resources, `page_size` specifies number of resources to return. If unspecified or set to 0, all resources will be returned. Pagination is currently not supported; therefore, setting this field does not have any impact for now. */
+        pageSize?: number;
+        /** Optional. Token returned by previous call to `ListBoundMemberships` which specifies the position in the list from where to continue listing the resources. */
+        pageToken?: string;
+        /** Returns response with indentations and line breaks. */
+        prettyPrint?: boolean;
+        /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
+        quotaUser?: string;
+        /** Required. Name of the Scope, in the format `projects/*‍/locations/global/scopes/*`, to which the Memberships are bound. */
+        scopeName: string;
+        /** Upload protocol for media (e.g. "raw", "multipart"). */
+        upload_protocol?: string;
+        /** Legacy upload protocol for media (e.g. "media", "multipart"). */
+        uploadType?: string;
+      }): Request<ListBoundMembershipsResponse>;
+      /** Lists permitted Scopes. */
+      listPermitted(request?: {
+        /** V1 error format. */
+        '$.xgafv'?: string;
+        /** OAuth access token. */
+        access_token?: string;
+        /** Data format for response. */
+        alt?: string;
+        /** JSONP */
+        callback?: string;
+        /** Selector specifying which fields to include in a partial response. */
+        fields?: string;
+        /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
+        key?: string;
+        /** OAuth 2.0 token for the current user. */
+        oauth_token?: string;
+        /** Optional. When requesting a 'page' of resources, `page_size` specifies number of resources to return. If unspecified or set to 0, all resources will be returned. */
+        pageSize?: number;
+        /** Optional. Token returned by previous call to `ListPermittedScopes` which specifies the position in the list from where to continue listing the resources. */
+        pageToken?: string;
+        /** Required. The parent (project and location) where the Scope will be listed. Specified in the format `projects/*‍/locations/*`. */
+        parent: string;
+        /** Returns response with indentations and line breaks. */
+        prettyPrint?: boolean;
+        /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
+        quotaUser?: string;
+        /** Upload protocol for media (e.g. "raw", "multipart"). */
+        upload_protocol?: string;
+        /** Legacy upload protocol for media (e.g. "media", "multipart"). */
+        uploadType?: string;
+      }): Request<ListPermittedScopesResponse>;
       /** Updates a scopes. */
       patch(request: {
         /** V1 error format. */

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@maxim_mazurok/gapi.client.gkehub-v1",
-  "version": "0.0.20240307",
+  "version": "0.0.20240318",
   "description": "TypeScript typings for GKE Hub API v1",
   "repository": {
     "type": "git",