@maxim_mazurok/gapi.client.iam-v1 0.0.20250320 → 0.0.20250418

package/index.d.ts

@@ -9,7 +9,7 @@
 // This file was generated by https://github.com/Maxim-Mazurok/google-api-typings-generator. Please do not edit it manually.
 // In case of any problems please post issue to https://github.com/Maxim-Mazurok/google-api-typings-generator
 // Generated from: https://iam.googleapis.com/$discovery/rest?version=v1
-// Revision: 20250320
+// Revision: 20250418
 
 /// <reference types="gapi.client" />
 
@@ -357,7 +357,7 @@ declare namespace gapi.client {
     interface Oidc {
       /** Optional. Acceptable values for the `aud` field (audience) in the OIDC token. Token exchange requests are rejected if the token audience does not match one of the configured values. Each audience may be at most 256 characters. A maximum of 10 audiences may be configured. If this list is empty, the OIDC token audience must be equal to the full canonical resource name of the WorkloadIdentityPoolProvider, with or without the HTTPS prefix. For example: ``` //iam.googleapis.com/projects//locations//workloadIdentityPools//providers/ https://iam.googleapis.com/projects//locations//workloadIdentityPools//providers/ ``` */
       allowedAudiences?: string[];
-      /** Required. The OIDC issuer URL. Must be an HTTPS endpoint. */
+      /** Required. The OIDC issuer URL. Must be an HTTPS endpoint. Used per OpenID Connect Discovery 1.0 spec to locate the provider's public keys (via `jwks_uri`) for verifying tokens like the OIDC ID token. These public key types must be 'EC' or 'RSA'. */
       issuerUri?: string;
       /** Optional. OIDC JWKs in JSON String format. For details on the definition of a JWK, see https://tools.ietf.org/html/rfc7517. If not set, the `jwks_uri` from the discovery document(fetched from the .well-known path of the `issuer_uri`) will be used. Currently, RSA and EC asymmetric keys are supported. The JWK must use following format and include only the following fields: { "keys": [ { "kty": "RSA/EC", "alg": "", "use": "sig", "kid": "", "n": "", "e": "", "x": "", "y": "", "crv": "" } ] } */
       jwksJson?: string;
@@ -757,6 +757,8 @@ declare namespace gapi.client {
       saml?: Saml;
       /** Output only. The state of the provider. */
       state?: string;
+      /** An X.509-type identity provider. */
+      x509?: X509;
     }
     interface WorkloadIdentityPoolProviderKey {
       /** Output only. Time after which the key will be permanently purged and cannot be recovered. Note that the key may get purged before this timestamp if the total limit of keys per provider is crossed. */
@@ -770,6 +772,10 @@ declare namespace gapi.client {
       /** Required. The purpose of the key. */
       use?: string;
     }
+    interface X509 {
+      /** Required. A Trust store, use this trust store as a wrapper to config the trust anchor and optional intermediate cas to help build the trust chain for the incoming end entity certificate. Follow the x509 guidelines to define those PEM encoded certs. Only 1 trust store is currently supported. */
+      trustStore?: TrustStore;
+    }
     interface IamPoliciesResource {
       /** Lints, or validates, an IAM policy. Currently checks the google.iam.v1.Binding.condition field, which contains a condition expression for a role binding. Successful calls to this method always return an HTTP `200 OK` status code, even if the linter detects an issue in the IAM policy. */
       lintPolicy(request: {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@maxim_mazurok/gapi.client.iam-v1",
-  "version": "0.0.20250320",
+  "version": "0.0.20250418",
   "description": "TypeScript typings for Identity and Access Management (IAM) API v1",
   "repository": {
     "type": "git",