@maxim_mazurok/gapi.client.gkehub-v1alpha 0.0.20240229 → 0.0.20240318

package/index.d.ts

@@ -9,7 +9,7 @@
 // This file was generated by https://github.com/Maxim-Mazurok/google-api-typings-generator. Please do not edit it manually.
 // In case of any problems please post issue to https://github.com/Maxim-Mazurok/google-api-typings-generator
 // Generated from: https://gkehub.googleapis.com/$discovery/rest?version=v1alpha
-// Revision: 20240229
+// Revision: 20240318
 
 /// <reference types="gapi.client" />
 
@@ -682,6 +682,8 @@ declare namespace gapi.client {
       azureadConfig?: IdentityServiceAzureADConfig;
       /** GoogleConfig specific configuration. */
       googleConfig?: IdentityServiceGoogleConfig;
+      /** LDAP specific configuration. */
+      ldapConfig?: IdentityServiceLdapConfig;
       /** Identifier for auth config. */
       name?: string;
       /** OIDC specific configuration. */
@@ -711,6 +713,24 @@ declare namespace gapi.client {
       /** Disable automatic configuration of Google Plugin on supported platforms. */
       disable?: boolean;
     }
+    interface IdentityServiceGroupConfig {
+      /** Required. The location of the subtree in the LDAP directory to search for group entries. */
+      baseDn?: string;
+      /** Optional. Optional filter to be used when searching for groups a user belongs to. This can be used to explicitly match only certain groups in order to reduce the amount of groups returned for each user. This defaults to "(objectClass=Group)". */
+      filter?: string;
+      /** Optional. The identifying name of each group a user belongs to. For example, if this is set to "distinguishedName" then RBACs and other group expectations should be written as full DNs. This defaults to "distinguishedName". */
+      idAttribute?: string;
+    }
+    interface IdentityServiceLdapConfig {
+      /** Optional. Contains the properties for locating and authenticating groups in the directory. */
+      group?: IdentityServiceGroupConfig;
+      /** Required. Server settings for the external LDAP server. */
+      server?: IdentityServiceServerConfig;
+      /** Required. Contains the credentials of the service account which is authorized to perform the LDAP search in the directory. The credentials can be supplied by the combination of the DN and password or the client certificate. */
+      serviceAccount?: IdentityServiceServiceAccountConfig;
+      /** Required. Defines where users exist in the LDAP directory. */
+      user?: IdentityServiceUserConfig;
+    }
     interface IdentityServiceMembershipSpec {
       /** A member may support multiple auth methods. */
       authMethods?: IdentityServiceAuthMethod[];
@@ -773,6 +793,36 @@ declare namespace gapi.client {
       /** Optional. Prefix to prepend to user name. */
       userPrefix?: string;
     }
+    interface IdentityServiceServerConfig {
+      /** Optional. Contains a Base64 encoded, PEM formatted certificate authority certificate for the LDAP server. This must be provided for the "ldaps" and "startTLS" connections. */
+      certificateAuthorityData?: string;
+      /** Optional. Defines the connection type to communicate with the LDAP server. If `starttls` or `ldaps` is specified, the certificate_authority_data should not be empty. */
+      connectionType?: string;
+      /** Required. Defines the hostname or IP of the LDAP server. Port is optional and will default to 389, if unspecified. For example, "ldap.server.example" or "10.10.10.10:389". */
+      host?: string;
+    }
+    interface IdentityServiceServiceAccountConfig {
+      /** Credentials for basic auth. */
+      simpleBindCredentials?: IdentityServiceSimpleBindCredentials;
+    }
+    interface IdentityServiceSimpleBindCredentials {
+      /** Required. The distinguished name(DN) of the service account object/user. */
+      dn?: string;
+      /** Output only. The encrypted password of the service account object/user. */
+      encryptedPassword?: string;
+      /** Required. Input only. The password of the service account object/user. */
+      password?: string;
+    }
+    interface IdentityServiceUserConfig {
+      /** Required. The location of the subtree in the LDAP directory to search for user entries. */
+      baseDn?: string;
+      /** Optional. Filter to apply when searching for the user. This can be used to further restrict the user accounts which are allowed to login. This defaults to "(objectClass=User)". */
+      filter?: string;
+      /** Optional. Determines which attribute to use as the user's identity after they are authenticated. This is distinct from the loginAttribute field to allow users to login with a username, but then have their actual identifier be an email address or full Distinguished Name (DN). For example, setting loginAttribute to "sAMAccountName" and identifierAttribute to "userPrincipalName" would allow a user to login as "bsmith", but actual RBAC policies for the user would be written as "bsmith@example.com". Using "userPrincipalName" is recommended since this will be unique for each user. This defaults to "userPrincipalName". */
+      idAttribute?: string;
+      /** Optional. The name of the attribute which matches against the input username. This is used to find the user in the LDAP database e.g. "(=)" and is combined with the optional filter field. This defaults to "userPrincipalName". */
+      loginAttribute?: string;
+    }
     interface KubernetesMetadata {
       /** Output only. Kubernetes API server version string as reported by `/version`. */
       kubernetesApiServerVersion?: string;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@maxim_mazurok/gapi.client.gkehub-v1alpha",
-  "version": "0.0.20240229",
+  "version": "0.0.20240318",
   "description": "TypeScript typings for GKE Hub API v1alpha",
   "repository": {
     "type": "git",