@maxim_mazurok/gapi.client.sqladmin-v1beta4 0.1.20251025 → 0.1.20251107

package/index.d.ts

@@ -9,7 +9,7 @@
 // This file was generated by https://github.com/Maxim-Mazurok/google-api-typings-generator. Please do not edit it manually.
 // In case of any problems please post issue to https://github.com/Maxim-Mazurok/google-api-typings-generator
 // Generated from: https://sqladmin.googleapis.com/$discovery/rest?version=v1beta4
-// Revision: 20251025
+// Revision: 20251107
 
 /// <reference types="gapi.client" />
 
@@ -692,7 +692,7 @@ declare namespace gapi.client {
           /** Path to the Certificate Private Key (.pvk) in Cloud Storage, in the form `gs://bucketName/fileName`. The instance must have write permissions to the bucket and read access to the file. */
           pvkPath?: string;
         };
-        /** Whether or not the backup importing will restore database with NORECOVERY option Applies only to Cloud SQL for SQL Server. */
+        /** Whether or not the backup importing will restore database with NORECOVERY option. Applies only to Cloud SQL for SQL Server. */
         noRecovery?: boolean;
         /** Whether or not the backup importing request will just bring database online without downloading Bak content only one of "no_recovery" and "recovery_only" can be true otherwise error will return. Applies only to Cloud SQL for SQL Server. */
         recoveryOnly?: boolean;
@@ -802,6 +802,14 @@ declare namespace gapi.client {
       /** Contains details about the import operation. */
       importContext?: ImportContext;
     }
+    interface InstancesListEntraIdCertificatesResponse {
+      /** The `sha1_fingerprint` of the active certificate from `certs`. */
+      activeVersion?: string;
+      /** List of Entra ID certificates for the instance. */
+      certs?: SslCert[];
+      /** This is always `sql#instancesListEntraIdCertificates`. */
+      kind?: string;
+    }
     interface InstancesListResponse {
       /** List of database instance resources. */
       items?: DatabaseInstance[];
@@ -849,6 +857,10 @@ declare namespace gapi.client {
       /** Optional. By using this parameter, Cloud SQL overrides any instance settings stored in the backup you are restoring from. You can't change the instance's major database version and you can only increase the disk size. You can use this field to restore new instances only. This field is not applicable for restore to existing instances. */
       restoreInstanceSettings?: DatabaseInstance;
     }
+    interface InstancesRotateEntraIdCertificateRequest {
+      /** Optional. Contains details about the rotate Entra ID certificate operation. */
+      rotateEntraIdCertificateContext?: RotateEntraIdCertificateContext;
+    }
     interface InstancesRotateServerCaRequest {
       /** Contains details about the rotate server CA operation. */
       rotateServerCaContext?: RotateServerCaContext;
@@ -888,6 +900,8 @@ declare namespace gapi.client {
       serverCaMode?: string;
       /** Optional. The resource name of the server CA pool for an instance with `CUSTOMER_MANAGED_CAS_CA` as the `server_ca_mode`. Format: projects/{PROJECT}/locations/{REGION}/caPools/{CA_POOL_ID} */
       serverCaPool?: string;
+      /** Optional. Controls the automatic server certificate rotation feature. This feature is disabled by default. When enabled, the server certificate will be automatically rotated during Cloud SQL scheduled maintenance or self-service maintenance updates up to six months before it expires. This setting can only be set if server_ca_mode is either GOOGLE_MANAGED_CAS_CA or CUSTOMER_MANAGED_CAS_CA. */
+      serverCertificateRotationMode?: string;
       /** Specify how SSL/TLS is enforced in database connections. If you must use the `require_ssl` flag for backward compatibility, then only the following value pairs are valid: For PostgreSQL and MySQL: * `ssl_mode=ALLOW_UNENCRYPTED_AND_ENCRYPTED` and `require_ssl=false` * `ssl_mode=ENCRYPTED_ONLY` and `require_ssl=false` * `ssl_mode=TRUSTED_CLIENT_CERTIFICATE_REQUIRED` and `require_ssl=true` For SQL Server: * `ssl_mode=ALLOW_UNENCRYPTED_AND_ENCRYPTED` and `require_ssl=false` * `ssl_mode=ENCRYPTED_ONLY` and `require_ssl=true` The value of `ssl_mode` has priority over the value of `require_ssl`. For example, for the pair `ssl_mode=ENCRYPTED_ONLY` and `require_ssl=false`, `ssl_mode=ENCRYPTED_ONLY` means accept only SSL connections, while `require_ssl=false` means accept both non-SSL and SSL connections. In this case, MySQL and PostgreSQL databases respect `ssl_mode` and accepts only SSL connections. */
       sslMode?: string;
     }
@@ -1097,7 +1111,7 @@ declare namespace gapi.client {
     interface PointInTimeRestoreContext {
       /** Optional. The name of the allocated IP range for the internal IP Cloud SQL instance. For example: "google-managed-services-default". If you set this, then Cloud SQL creates the IP address for the cloned instance in the allocated range. This range must comply with [RFC 1035](https://tools.ietf.org/html/rfc1035) standards. Specifically, the name must be 1-63 characters long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])?. Reserved for future use. */
       allocatedIpRange?: string;
-      /** The Google Cloud Backup and Disaster Recovery Datasource URI. Format: projects/{project}/locations/{region}/backupVaults/{backupvault}/dataSources/{datasource}. */
+      /** The Backup and Disaster Recovery (DR) Service Datasource URI. Format: projects/{project}/locations/{region}/backupVaults/{backupvault}/dataSources/{datasource}. */
       datasource?: string;
       /** Required. The date and time to which you want to restore the instance. */
       pointInTime?: string;
@@ -1224,6 +1238,12 @@ declare namespace gapi.client {
       /** The full project ID of the source instance. */
       project?: string;
     }
+    interface RotateEntraIdCertificateContext {
+      /** Optional. This is always `sql#rotateEntraIdCertificateContext`. */
+      kind?: string;
+      /** Optional. The fingerprint of the next version to be rotated to. If left unspecified, will be rotated to the most recently added Entra ID certificate version. */
+      nextVersion?: string;
+    }
     interface RotateServerCaContext {
       /** This is always `sql#rotateServerCaContext`. */
       kind?: string;
@@ -1267,7 +1287,7 @@ declare namespace gapi.client {
       connectorEnforcement?: string;
       /** Configuration specific to read replica instances. Indicates whether database flags for crash-safe replication are enabled. This property was only applicable to First Generation instances. */
       crashSafeReplicationEnabled?: boolean;
-      /** This parameter controls whether to allow using Data API to connect to the instance. Not allowed by default. */
+      /** This parameter controls whether to allow using ExecuteSql API to connect to the instance. Not allowed by default. */
       dataApiAccess?: string;
       /** The database flags passed to the instance at startup. */
       databaseFlags?: DatabaseFlags[];
@@ -1293,6 +1313,8 @@ declare namespace gapi.client {
       enableDataplexIntegration?: boolean;
       /** Optional. When this parameter is set to true, Cloud SQL instances can connect to Vertex AI to pass requests for real-time predictions and insights to the AI. The default value is false. This applies only to Cloud SQL for MySQL and Cloud SQL for PostgreSQL instances. */
       enableGoogleMlIntegration?: boolean;
+      /** Optional. The Microsoft Entra ID configuration for the SQL Server instance. */
+      entraidConfig?: SqlServerEntraIdConfig;
       /** Optional. The final backup configuration for the instance. */
       finalBackupConfig?: FinalBackupConfig;
       /** Insights configuration, for now relevant only for Postgres. */
@@ -1358,6 +1380,7 @@ declare namespace gapi.client {
       /** The unique identifier for this operation. */
       operationId?: string;
     }
+    interface SqlInstancesAddEntraIdCertificateRequest {}
     interface SqlInstancesExecuteSqlResponse {
       /** A list of notices and warnings generated during query execution. For PostgreSQL, this includes all notices and warnings. For MySQL, this includes warnings generated by the last executed statement. To retrieve all warnings for a multi-statement query, `SHOW WARNINGS` must be executed after each statement. */
       messages?: Message[];
@@ -1462,6 +1485,14 @@ declare namespace gapi.client {
       /** The recovery model of a SQL Server database */
       recoveryModel?: string;
     }
+    interface SqlServerEntraIdConfig {
+      /** Optional. The application ID for the Entra ID configuration. */
+      applicationId?: string;
+      /** Output only. This is always sql#sqlServerEntraIdConfig */
+      kind?: string;
+      /** Optional. The tenant ID for the Entra ID configuration. */
+      tenantId?: string;
+    }
     interface SqlServerUserDetails {
       /** If the user has been disabled */
       disabled?: boolean;
@@ -1569,6 +1600,8 @@ declare namespace gapi.client {
       logType?: string;
     }
     interface User {
+      /** Optional. Role memberships of the user */
+      databaseRoles?: string[];
       /** Dual password status for the user. */
       dualPasswordType?: string;
       /** This field is deprecated and will be removed from a future version of the API. */
@@ -2465,6 +2498,68 @@ declare namespace gapi.client {
         },
         body: InstancesAcquireSsrsLeaseRequest,
       ): Request<SqlInstancesAcquireSsrsLeaseResponse>;
+      /** Adds a new Entra ID certificate for the specified instance. If an Entra ID certificate was previously added but never used in a certificate rotation, this operation replaces that version. */
+      addEntraIdCertificate(request: {
+        /** V1 error format. */
+        '$.xgafv'?: string;
+        /** OAuth access token. */
+        access_token?: string;
+        /** Data format for response. */
+        alt?: string;
+        /** JSONP */
+        callback?: string;
+        /** Selector specifying which fields to include in a partial response. */
+        fields?: string;
+        /** Required. Cloud SQL instance ID. This does not include the project ID. */
+        instance: string;
+        /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
+        key?: string;
+        /** OAuth 2.0 token for the current user. */
+        oauth_token?: string;
+        /** Returns response with indentations and line breaks. */
+        prettyPrint?: boolean;
+        /** Required. Project ID of the project that contains the instance. */
+        project: string;
+        /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
+        quotaUser?: string;
+        /** Upload protocol for media (e.g. "raw", "multipart"). */
+        upload_protocol?: string;
+        /** Legacy upload protocol for media (e.g. "media", "multipart"). */
+        uploadType?: string;
+        /** Request body */
+        resource: SqlInstancesAddEntraIdCertificateRequest;
+      }): Request<Operation>;
+      addEntraIdCertificate(
+        request: {
+          /** V1 error format. */
+          '$.xgafv'?: string;
+          /** OAuth access token. */
+          access_token?: string;
+          /** Data format for response. */
+          alt?: string;
+          /** JSONP */
+          callback?: string;
+          /** Selector specifying which fields to include in a partial response. */
+          fields?: string;
+          /** Required. Cloud SQL instance ID. This does not include the project ID. */
+          instance: string;
+          /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
+          key?: string;
+          /** OAuth 2.0 token for the current user. */
+          oauth_token?: string;
+          /** Returns response with indentations and line breaks. */
+          prettyPrint?: boolean;
+          /** Required. Project ID of the project that contains the instance. */
+          project: string;
+          /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
+          quotaUser?: string;
+          /** Upload protocol for media (e.g. "raw", "multipart"). */
+          upload_protocol?: string;
+          /** Legacy upload protocol for media (e.g. "media", "multipart"). */
+          uploadType?: string;
+        },
+        body: SqlInstancesAddEntraIdCertificateRequest,
+      ): Request<Operation>;
       /** Add a new trusted Certificate Authority (CA) version for the specified instance. Required to prepare for a certificate rotation. If a CA version was previously added but never used in a certificate rotation, this operation replaces that version. There cannot be more than one CA version waiting to be rotated in. For instances that have enabled Certificate Authority Service (CAS) based server CA, use AddServerCertificate to add a new server certificate. */
       addServerCa(request?: {
         /** V1 error format. */
@@ -3114,6 +3209,35 @@ declare namespace gapi.client {
         /** Legacy upload protocol for media (e.g. "media", "multipart"). */
         uploadType?: string;
       }): Request<InstancesListResponse>;
+      /** Lists all versions of EntraID certificates for the specified instance. There can be up to three sets of certificates listed: the certificate that is currently in use, a future that has been added but not yet used to sign a certificate, and a certificate that has been rotated out. */
+      ListEntraIdCertificates(request?: {
+        /** V1 error format. */
+        '$.xgafv'?: string;
+        /** OAuth access token. */
+        access_token?: string;
+        /** Data format for response. */
+        alt?: string;
+        /** JSONP */
+        callback?: string;
+        /** Selector specifying which fields to include in a partial response. */
+        fields?: string;
+        /** Required. Cloud SQL instance ID. This does not include the project ID. */
+        instance: string;
+        /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
+        key?: string;
+        /** OAuth 2.0 token for the current user. */
+        oauth_token?: string;
+        /** Returns response with indentations and line breaks. */
+        prettyPrint?: boolean;
+        /** Required. Project ID of the project that contains the instance. */
+        project: string;
+        /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
+        quotaUser?: string;
+        /** Upload protocol for media (e.g. "raw", "multipart"). */
+        upload_protocol?: string;
+        /** Legacy upload protocol for media (e.g. "media", "multipart"). */
+        uploadType?: string;
+      }): Request<InstancesListEntraIdCertificatesResponse>;
       /** Lists all of the trusted Certificate Authorities (CAs) for the specified instance. There can be up to three CAs listed: the CA that was used to sign the certificate that is currently in use, a CA that has been added but not yet used to sign a certificate, and a CA used to sign a certificate that has previously rotated out. */
       listServerCas(request?: {
         /** V1 error format. */
@@ -3598,6 +3722,68 @@ declare namespace gapi.client {
         },
         body: InstancesRestoreBackupRequest,
       ): Request<Operation>;
+      /** Rotates the Entra Id certificate version to one previously added with the addEntraIdCertificate method. */
+      RotateEntraIdCertificate(request: {
+        /** V1 error format. */
+        '$.xgafv'?: string;
+        /** OAuth access token. */
+        access_token?: string;
+        /** Data format for response. */
+        alt?: string;
+        /** JSONP */
+        callback?: string;
+        /** Selector specifying which fields to include in a partial response. */
+        fields?: string;
+        /** Required. Cloud SQL instance ID. This does not include the project ID. */
+        instance: string;
+        /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
+        key?: string;
+        /** OAuth 2.0 token for the current user. */
+        oauth_token?: string;
+        /** Returns response with indentations and line breaks. */
+        prettyPrint?: boolean;
+        /** Required. Project ID of the project that contains the instance. */
+        project: string;
+        /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
+        quotaUser?: string;
+        /** Upload protocol for media (e.g. "raw", "multipart"). */
+        upload_protocol?: string;
+        /** Legacy upload protocol for media (e.g. "media", "multipart"). */
+        uploadType?: string;
+        /** Request body */
+        resource: InstancesRotateEntraIdCertificateRequest;
+      }): Request<Operation>;
+      RotateEntraIdCertificate(
+        request: {
+          /** V1 error format. */
+          '$.xgafv'?: string;
+          /** OAuth access token. */
+          access_token?: string;
+          /** Data format for response. */
+          alt?: string;
+          /** JSONP */
+          callback?: string;
+          /** Selector specifying which fields to include in a partial response. */
+          fields?: string;
+          /** Required. Cloud SQL instance ID. This does not include the project ID. */
+          instance: string;
+          /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
+          key?: string;
+          /** OAuth 2.0 token for the current user. */
+          oauth_token?: string;
+          /** Returns response with indentations and line breaks. */
+          prettyPrint?: boolean;
+          /** Required. Project ID of the project that contains the instance. */
+          project: string;
+          /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
+          quotaUser?: string;
+          /** Upload protocol for media (e.g. "raw", "multipart"). */
+          upload_protocol?: string;
+          /** Legacy upload protocol for media (e.g. "media", "multipart"). */
+          uploadType?: string;
+        },
+        body: InstancesRotateEntraIdCertificateRequest,
+      ): Request<Operation>;
       /** Rotates the server certificate to one signed by the Certificate Authority (CA) version previously added with the addServerCA method. For instances that have enabled Certificate Authority Service (CAS) based server CA, use RotateServerCertificate to rotate the server certificate. */
       rotateServerCa(request: {
         /** V1 error format. */
@@ -4818,6 +5004,8 @@ declare namespace gapi.client {
         alt?: string;
         /** JSONP */
         callback?: string;
+        /** Optional. List of database roles to grant to the user. body.database_roles will be ignored for update request. */
+        databaseRoles?: string | string[];
         /** Selector specifying which fields to include in a partial response. */
         fields?: string;
         /** Optional. Host of the user in the instance. */
@@ -4836,6 +5024,8 @@ declare namespace gapi.client {
         project: string;
         /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
         quotaUser?: string;
+        /** Optional. revoke the existing roles granted to the user. */
+        revokeExistingRoles?: boolean;
         /** Upload protocol for media (e.g. "raw", "multipart"). */
         upload_protocol?: string;
         /** Legacy upload protocol for media (e.g. "media", "multipart"). */
@@ -4853,6 +5043,8 @@ declare namespace gapi.client {
           alt?: string;
           /** JSONP */
           callback?: string;
+          /** Optional. List of database roles to grant to the user. body.database_roles will be ignored for update request. */
+          databaseRoles?: string | string[];
           /** Selector specifying which fields to include in a partial response. */
           fields?: string;
           /** Optional. Host of the user in the instance. */
@@ -4871,6 +5063,8 @@ declare namespace gapi.client {
           project: string;
           /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
           quotaUser?: string;
+          /** Optional. revoke the existing roles granted to the user. */
+          revokeExistingRoles?: boolean;
           /** Upload protocol for media (e.g. "raw", "multipart"). */
           upload_protocol?: string;
           /** Legacy upload protocol for media (e.g. "media", "multipart"). */

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@maxim_mazurok/gapi.client.sqladmin-v1beta4",
-  "version": "0.1.20251025",
+  "version": "0.1.20251107",
   "description": "TypeScript typings for Cloud SQL Admin API v1beta4",
   "repository": {
     "type": "git",

package/readme.md

@@ -209,6 +209,14 @@ await gapi.client.sql.instances.acquireSsrsLease({
   project: 'project',
 });
 
+/*
+Adds a new Entra ID certificate for the specified instance. If an Entra ID certificate was previously added but never used in a certificate rotation, this operation replaces that version.
+*/
+await gapi.client.sql.instances.addEntraIdCertificate({
+  instance: 'instance',
+  project: 'project',
+});
+
 /*
 Add a new trusted Certificate Authority (CA) version for the specified instance. Required to prepare for a certificate rotation. If a CA version was previously added but never used in a certificate rotation, this operation replaces that version. There cannot be more than one CA version waiting to be rotated in. For instances that have enabled Certificate Authority Service (CAS) based server CA, use AddServerCertificate to add a new server certificate.
 */
@@ -304,6 +312,14 @@ Lists instances under a given project.
 */
 await gapi.client.sql.instances.list({project: 'project'});
 
+/*
+Lists all versions of EntraID certificates for the specified instance. There can be up to three sets of certificates listed: the certificate that is currently in use, a future that has been added but not yet used to sign a certificate, and a certificate that has been rotated out.
+*/
+await gapi.client.sql.instances.ListEntraIdCertificates({
+  instance: 'instance',
+  project: 'project',
+});
+
 /*
 Lists all of the trusted Certificate Authorities (CAs) for the specified instance. There can be up to three CAs listed: the CA that was used to sign the certificate that is currently in use, a CA that has been added but not yet used to sign a certificate, and a CA used to sign a certificate that has previously rotated out.
 */
@@ -389,6 +405,14 @@ await gapi.client.sql.instances.restoreBackup({
   project: 'project',
 });
 
+/*
+Rotates the Entra Id certificate version to one previously added with the addEntraIdCertificate method.
+*/
+await gapi.client.sql.instances.RotateEntraIdCertificate({
+  instance: 'instance',
+  project: 'project',
+});
+
 /*
 Rotates the server certificate to one signed by the Certificate Authority (CA) version previously added with the addServerCA method. For instances that have enabled Certificate Authority Service (CAS) based server CA, use RotateServerCertificate to rotate the server certificate.
 */