strongdm 7.1.0__zip → 8.0.0__zip

{strongdm-7.1.0 → strongdm-8.0.0}/PKG-INFO

@@ -1,12 +1,12 @@
 Metadata-Version: 2.1
 Name: strongdm
-Version: 7.1.0
+Version: 8.0.0
 Summary: strongDM SDK for the Python programming language.
 Home-page: https://github.com/strongdm/strongdm-sdk-python
 Author: strongDM Team
 Author-email: sdk-feedback@strongdm.com
 License: apache-2.0
-Download-URL: https://github.com/strongdm/strongdm-sdk-python/archive/v7.1.0.tar.gz
+Download-URL: https://github.com/strongdm/strongdm-sdk-python/archive/v8.0.0.tar.gz
 Keywords: strongDM,sdm,api,automation,security,audit,database,server,ssh,rdp
 Platform: UNKNOWN
 Classifier: Development Status :: 4 - Beta

{strongdm-7.1.0 → strongdm-8.0.0}/setup.py

@@ -23,7 +23,7 @@ from setuptools import setup
 setup(
     name='strongdm',
     packages=['strongdm'],
-    version='7.1.0',
+    version='8.0.0',
     license='apache-2.0',
     description='strongDM SDK for the Python programming language.',
     long_description=long_description,
@@ -32,7 +32,7 @@ setup(
     author_email='sdk-feedback@strongdm.com',
     url='https://github.com/strongdm/strongdm-sdk-python',
     download_url=
-    'https://github.com/strongdm/strongdm-sdk-python/archive/v7.1.0.tar.gz',
+    'https://github.com/strongdm/strongdm-sdk-python/archive/v8.0.0.tar.gz',
     keywords=[
         'strongDM', 'sdm', 'api', 'automation', 'security', 'audit',
         'database', 'server', 'ssh', 'rdp'

{strongdm-7.1.0 → strongdm-8.0.0}/strongdm/accounts_pb2.py

@@ -26,13 +26,14 @@ from google.protobuf import symbol_database as _symbol_database
 _sym_db = _symbol_database.Default()
 
 
+from google.protobuf import duration_pb2 as google_dot_protobuf_dot_duration__pb2
 from google.protobuf import timestamp_pb2 as google_dot_protobuf_dot_timestamp__pb2
 from . import options_pb2 as options__pb2
 from . import spec_pb2 as spec__pb2
 from . import tags_pb2 as tags__pb2
 
 
-DESCRIPTOR = _descriptor_pool.Default().AddSerializedFile(b'\n\x0e\x61\x63\x63ounts.proto\x12\x02v1\x1a\x1fgoogle/protobuf/timestamp.proto\x1a\roptions.proto\x1a\nspec.proto\x1a\ntags.proto\"i\n\x14\x41\x63\x63ountCreateRequest\x12\'\n\x04meta\x18\x01 \x01(\x0b\x32\x19.v1.CreateRequestMetadata\x12(\n\x07\x61\x63\x63ount\x18\x02 \x01(\x0b\x32\x0b.v1.AccountB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\"\xfc\x01\n\x15\x41\x63\x63ountCreateResponse\x12\x34\n\x04meta\x18\x01 \x01(\x0b\x32\x1a.v1.CreateResponseMetadataB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12(\n\x07\x61\x63\x63ount\x18\x02 \x01(\x0b\x32\x0b.v1.AccountB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x1e\n\x05token\x18\x03 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\xf0\xf3\xb3\x07\x01\x12W\n\nrate_limit\x18\x04 \x01(\x0b\x32\x15.v1.RateLimitMetadataB,\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\xf2\xf8\xb3\x07\x06\xb2\xf4\xb3\x07\x01*\xf2\xf8\xb3\x07\x12\xb2\xf4\xb3\x07\r!json_gateway:\n\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\"Q\n\x11\x41\x63\x63ountGetRequest\x12$\n\x04meta\x18\x01 \x01(\x0b\x32\x16.v1.GetRequestMetadata\x12\x16\n\x02id\x18\x02 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\"\xd6\x01\n\x12\x41\x63\x63ountGetResponse\x12\x31\n\x04meta\x18\x01 \x01(\x0b\x32\x17.v1.GetResponseMetadataB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12(\n\x07\x61\x63\x63ount\x18\x02 \x01(\x0b\x32\x0b.v1.AccountB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12W\n\nrate_limit\x18\x03 \x01(\x0b\x32\x15.v1.RateLimitMetadataB,\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\xf2\xf8\xb3\x07\x06\xb2\xf4\xb3\x07\x01*\xf2\xf8\xb3\x07\x12\xb2\xf4\xb3\x07\r!json_gateway:\n\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\"u\n\x14\x41\x63\x63ountUpdateRequest\x12\'\n\x04meta\x18\x01 \x01(\x0b\x32\x19.v1.UpdateRequestMetadata\x12\n\n\x02id\x18\x02 \x01(\t\x12(\n\x07\x61\x63\x63ount\x18\x03 \x01(\x0b\x32\x0b.v1.AccountB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\"\xdc\x01\n\x15\x41\x63\x63ountUpdateResponse\x12\x34\n\x04meta\x18\x01 \x01(\x0b\x32\x1a.v1.UpdateResponseMetadataB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12(\n\x07\x61\x63\x63ount\x18\x02 \x01(\x0b\x32\x0b.v1.AccountB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12W\n\nrate_limit\x18\x03 \x01(\x0b\x32\x15.v1.RateLimitMetadataB,\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\xf2\xf8\xb3\x07\x06\xb2\xf4\xb3\x07\x01*\xf2\xf8\xb3\x07\x12\xb2\xf4\xb3\x07\r!json_gateway:\n\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\"W\n\x14\x41\x63\x63ountDeleteRequest\x12\'\n\x04meta\x18\x01 \x01(\x0b\x32\x19.v1.DeleteRequestMetadata\x12\x16\n\x02id\x18\x02 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\"\xb2\x01\n\x15\x41\x63\x63ountDeleteResponse\x12\x34\n\x04meta\x18\x01 \x01(\x0b\x32\x1a.v1.DeleteResponseMetadataB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12W\n\nrate_limit\x18\x02 \x01(\x0b\x32\x15.v1.RateLimitMetadataB,\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\xf2\xf8\xb3\x07\x06\xb2\xf4\xb3\x07\x01*\xf2\xf8\xb3\x07\x12\xb2\xf4\xb3\x07\r!json_gateway:\n\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\"W\n\x12\x41\x63\x63ountListRequest\x12%\n\x04meta\x18\x01 \x01(\x0b\x32\x17.v1.ListRequestMetadata\x12\x1a\n\x06\x66ilter\x18\x02 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\"\xc1\x01\n\x13\x41\x63\x63ountListResponse\x12&\n\x04meta\x18\x01 \x01(\x0b\x32\x18.v1.ListResponseMetadata\x12)\n\x08\x61\x63\x63ounts\x18\x02 \x03(\x0b\x32\x0b.v1.AccountB\n\xf2\xf8\xb3\x07\x05\xb8\xf3\xb3\x07\x01\x12W\n\nrate_limit\x18\x03 \x01(\x0b\x32\x15.v1.RateLimitMetadataB,\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\xf2\xf8\xb3\x07\x06\xb2\xf4\xb3\x07\x01*\xf2\xf8\xb3\x07\x12\xb2\xf4\xb3\x07\r!json_gateway\"\x9e\x02\n\x07\x41\x63\x63ount\x12$\n\x04user\x18\x01 \x01(\x0b\x32\x08.v1.UserB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01H\x00\x12*\n\x07service\x18\x02 \x01(\x0b\x32\x0b.v1.ServiceB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01H\x00\x12\x30\n\x05token\x18\x03 \x01(\x0b\x32\t.v1.TokenB\x14\xf2\xf8\xb3\x07\x0f\xb2\xf4\xb3\x07\ngo_privateH\x00:a\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\xfa\xf8\xb3\x07R\xc2\xf3\xb3\x07M\xa2\xf3\xb3\x07 tf_examples/account_resource.txt\xaa\xf3\xb3\x07#tf_examples/account_data_source.txtB,\n\x07\x61\x63\x63ount\x12!\xaa\xf8\xb3\x07\x0e\xaa\xf8\xb3\x07\tsuspended\xaa\xf8\xb3\x07\t\xaa\xf8\xb3\x07\x04tags\"\xd2\x06\n\x04User\x12\x16\n\x02id\x18\x01 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x1e\n\x05\x65mail\x18\x02 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\xc0\xf3\xb3\x07\x01\x12#\n\nfirst_name\x18\x03 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\xc0\xf3\xb3\x07\x01\x12\"\n\tlast_name\x18\x04 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\xc0\xf3\xb3\x07\x01\x12*\n\tsuspended\x18\x05 \x01(\x08\x42\x17\xf2\xf8\xb3\x07\x12\xb2\xf4\xb3\x07\r!json_gateway\x12\"\n\x04tags\x18\x06 \x01(\x0b\x32\x08.v1.TagsB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x36\n\x10permission_level\x18\x07 \x01(\tB\x1c\xf2\xf8\xb3\x07\x17\x98\xf4\xb3\x07\x01\xb2\xf4\xb3\x07\r!json_gateway\x12#\n\nmanaged_by\x18\x08 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\x98\xf4\xb3\x07\x01\x12\x1f\n\x0b\x65xternal_id\x18\t \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\xdb\x01\n\x0bsuspendedRO\x18\n \x01(\x08\x42\xc5\x01\xf2\xf8\xb3\x07\xbf\x01\xb0\xf3\xb3\x07\x01\xca\xf3\xb3\x07\xaf\x01\xc2\xf4\xb3\x07\x0f\n\x02go\x12\tSuspended\xc2\xf4\xb3\x07\x10\n\x03\x63li\x12\tsuspended\xc2\xf4\xb3\x07\x11\n\x04ruby\x12\tsuspended\xc2\xf4\xb3\x07\x13\n\x06python\x12\tsuspended\xc2\xf4\xb3\x07\x11\n\x04java\x12\tSuspended\xc2\xf4\xb3\x07\x1f\n\x12terraform-provider\x12\tsuspended\xc2\xf4\xb3\x07\x19\n\x0cjson_gateway\x12\tsuspended\x98\xf4\xb3\x07\x01\x12\x90\x02\n\x12permission_levelRW\x18\x0b \x01(\tB\xf3\x01\xf2\xf8\xb3\x07\xed\x01\xb0\xf3\xb3\x07\x01\xca\xf3\xb3\x07\xdd\x01\xc2\xf4\xb3\x07\x15\n\x02go\x12\x0fPermissionLevel\xc2\xf4\xb3\x07\x17\n\x03\x63li\x12\x10permission-level\xc2\xf4\xb3\x07\x18\n\x04ruby\x12\x10permission_level\xc2\xf4\xb3\x07\x1a\n\x06python\x12\x10permission_level\xc2\xf4\xb3\x07\x17\n\x04java\x12\x0fPermissionLevel\xc2\xf4\xb3\x07&\n\x12terraform-provider\x12\x10permission_level\xc2\xf4\xb3\x07\x1f\n\x0cjson_gateway\x12\x0fpermissionLevel\xd0\xf4\xb3\x07\x01:\n\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\"\x8f\x01\n\x07Service\x12\x16\n\x02id\x18\x01 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x1d\n\x04name\x18\x02 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\xc0\xf3\xb3\x07\x01\x12\x1d\n\tsuspended\x18\x03 \x01(\x08\x42\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\"\n\x04tags\x18\x04 \x01(\x0b\x32\x08.v1.TagsB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01:\n\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\"\x8f\x02\n\x05Token\x12\x16\n\x02id\x18\x01 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x1d\n\x04name\x18\x02 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\xc0\xf3\xb3\x07\x01\x12\x1d\n\tsuspended\x18\x03 \x01(\x08\x42\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\"\n\x04tags\x18\x04 \x01(\x0b\x32\x08.v1.TagsB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x37\n\x07rekeyed\x18\x05 \x01(\x0b\x32\x1a.google.protobuf.TimestampB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x38\n\x08\x64\x65\x61\x64line\x18\x06 \x01(\x0b\x32\x1a.google.protobuf.TimestampB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01:\x19\xfa\xf8\xb3\x07\x14\xa8\xf3\xb3\x07\x01\xd2\xf3\xb3\x07\ngo_private2\xa1\x04\n\x08\x41\x63\x63ounts\x12\x63\n\x06\x43reate\x12\x18.v1.AccountCreateRequest\x1a\x19.v1.AccountCreateResponse\"$\x82\xf9\xb3\x07\t\xa2\xf3\xb3\x07\x04post\x82\xf9\xb3\x07\x11\xaa\xf3\xb3\x07\x0c/v1/accounts\x12^\n\x03Get\x12\x15.v1.AccountGetRequest\x1a\x16.v1.AccountGetResponse\"(\x82\xf9\xb3\x07\x08\xa2\xf3\xb3\x07\x03get\x82\xf9\xb3\x07\x16\xaa\xf3\xb3\x07\x11/v1/accounts/{id}\x12g\n\x06Update\x12\x18.v1.AccountUpdateRequest\x1a\x19.v1.AccountUpdateResponse\"(\x82\xf9\xb3\x07\x08\xa2\xf3\xb3\x07\x03put\x82\xf9\xb3\x07\x16\xaa\xf3\xb3\x07\x11/v1/accounts/{id}\x12j\n\x06\x44\x65lete\x12\x18.v1.AccountDeleteRequest\x1a\x19.v1.AccountDeleteResponse\"+\x82\xf9\xb3\x07\x0b\xa2\xf3\xb3\x07\x06\x64\x65lete\x82\xf9\xb3\x07\x16\xaa\xf3\xb3\x07\x11/v1/accounts/{id}\x12\\\n\x04List\x12\x16.v1.AccountListRequest\x1a\x17.v1.AccountListResponse\"#\x82\xf9\xb3\x07\x08\xa2\xf3\xb3\x07\x03get\x82\xf9\xb3\x07\x11\xaa\xf3\xb3\x07\x0c/v1/accounts\x1a\x1d\xca\xf9\xb3\x07\x0c\xc2\xf9\xb3\x07\x07\x41\x63\x63ount\xca\xf9\xb3\x07\x07\xd2\xf9\xb3\x07\x02\x61-Bd\n\x19\x63om.strongdm.api.plumbingB\x10\x41\x63\x63ountsPlumbingZ5github.com/strongdm/strongdm-sdk-go/v3/internal/v1;v1b\x06proto3')
+DESCRIPTOR = _descriptor_pool.Default().AddSerializedFile(b'\n\x0e\x61\x63\x63ounts.proto\x12\x02v1\x1a\x1egoogle/protobuf/duration.proto\x1a\x1fgoogle/protobuf/timestamp.proto\x1a\roptions.proto\x1a\nspec.proto\x1a\ntags.proto\"i\n\x14\x41\x63\x63ountCreateRequest\x12\'\n\x04meta\x18\x01 \x01(\x0b\x32\x19.v1.CreateRequestMetadata\x12(\n\x07\x61\x63\x63ount\x18\x02 \x01(\x0b\x32\x0b.v1.AccountB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\"\xf8\x02\n\x15\x41\x63\x63ountCreateResponse\x12\x34\n\x04meta\x18\x01 \x01(\x0b\x32\x1a.v1.CreateResponseMetadataB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12(\n\x07\x61\x63\x63ount\x18\x02 \x01(\x0b\x32\x0b.v1.AccountB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x1e\n\x05token\x18\x03 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\xf0\xf3\xb3\x07\x01\x12W\n\nrate_limit\x18\x04 \x01(\x0b\x32\x15.v1.RateLimitMetadataB,\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\xf2\xf8\xb3\x07\x06\xb2\xf4\xb3\x07\x01*\xf2\xf8\xb3\x07\x12\xb2\xf4\xb3\x07\r!json_gateway\x12<\n\naccess_key\x18\x05 \x01(\tB(\xf2\xf8\xb3\x07#\xb0\xf3\xb3\x07\x01\xb2\xf4\xb3\x07\x01*\xb2\xf4\xb3\x07\x13!terraform-provider\x12<\n\nsecret_key\x18\x06 \x01(\tB(\xf2\xf8\xb3\x07#\xb0\xf3\xb3\x07\x01\xb2\xf4\xb3\x07\x01*\xb2\xf4\xb3\x07\x13!terraform-provider:\n\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\"Q\n\x11\x41\x63\x63ountGetRequest\x12$\n\x04meta\x18\x01 \x01(\x0b\x32\x16.v1.GetRequestMetadata\x12\x16\n\x02id\x18\x02 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\"\xd6\x01\n\x12\x41\x63\x63ountGetResponse\x12\x31\n\x04meta\x18\x01 \x01(\x0b\x32\x17.v1.GetResponseMetadataB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12(\n\x07\x61\x63\x63ount\x18\x02 \x01(\x0b\x32\x0b.v1.AccountB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12W\n\nrate_limit\x18\x03 \x01(\x0b\x32\x15.v1.RateLimitMetadataB,\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\xf2\xf8\xb3\x07\x06\xb2\xf4\xb3\x07\x01*\xf2\xf8\xb3\x07\x12\xb2\xf4\xb3\x07\r!json_gateway:\n\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\"u\n\x14\x41\x63\x63ountUpdateRequest\x12\'\n\x04meta\x18\x01 \x01(\x0b\x32\x19.v1.UpdateRequestMetadata\x12\n\n\x02id\x18\x02 \x01(\t\x12(\n\x07\x61\x63\x63ount\x18\x03 \x01(\x0b\x32\x0b.v1.AccountB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\"\xdc\x01\n\x15\x41\x63\x63ountUpdateResponse\x12\x34\n\x04meta\x18\x01 \x01(\x0b\x32\x1a.v1.UpdateResponseMetadataB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12(\n\x07\x61\x63\x63ount\x18\x02 \x01(\x0b\x32\x0b.v1.AccountB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12W\n\nrate_limit\x18\x03 \x01(\x0b\x32\x15.v1.RateLimitMetadataB,\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\xf2\xf8\xb3\x07\x06\xb2\xf4\xb3\x07\x01*\xf2\xf8\xb3\x07\x12\xb2\xf4\xb3\x07\r!json_gateway:\n\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\"W\n\x14\x41\x63\x63ountDeleteRequest\x12\'\n\x04meta\x18\x01 \x01(\x0b\x32\x19.v1.DeleteRequestMetadata\x12\x16\n\x02id\x18\x02 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\"\xb2\x01\n\x15\x41\x63\x63ountDeleteResponse\x12\x34\n\x04meta\x18\x01 \x01(\x0b\x32\x1a.v1.DeleteResponseMetadataB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12W\n\nrate_limit\x18\x02 \x01(\x0b\x32\x15.v1.RateLimitMetadataB,\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\xf2\xf8\xb3\x07\x06\xb2\xf4\xb3\x07\x01*\xf2\xf8\xb3\x07\x12\xb2\xf4\xb3\x07\r!json_gateway:\n\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\"W\n\x12\x41\x63\x63ountListRequest\x12%\n\x04meta\x18\x01 \x01(\x0b\x32\x17.v1.ListRequestMetadata\x12\x1a\n\x06\x66ilter\x18\x02 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\"\xc1\x01\n\x13\x41\x63\x63ountListResponse\x12&\n\x04meta\x18\x01 \x01(\x0b\x32\x18.v1.ListResponseMetadata\x12)\n\x08\x61\x63\x63ounts\x18\x02 \x03(\x0b\x32\x0b.v1.AccountB\n\xf2\xf8\xb3\x07\x05\xb8\xf3\xb3\x07\x01\x12W\n\nrate_limit\x18\x03 \x01(\x0b\x32\x15.v1.RateLimitMetadataB,\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\xf2\xf8\xb3\x07\x06\xb2\xf4\xb3\x07\x01*\xf2\xf8\xb3\x07\x12\xb2\xf4\xb3\x07\r!json_gateway\"\xb2\x02\n\x07\x41\x63\x63ount\x12$\n\x04user\x18\x01 \x01(\x0b\x32\x08.v1.UserB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01H\x00\x12*\n\x07service\x18\x02 \x01(\x0b\x32\x0b.v1.ServiceB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01H\x00\x12\x44\n\x05token\x18\x03 \x01(\x0b\x32\t.v1.TokenB(\xf2\xf8\xb3\x07#\xb0\xf3\xb3\x07\x01\xb2\xf4\xb3\x07\x01*\xb2\xf4\xb3\x07\x13!terraform-providerH\x00:a\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\xfa\xf8\xb3\x07R\xc2\xf3\xb3\x07M\xa2\xf3\xb3\x07 tf_examples/account_resource.txt\xaa\xf3\xb3\x07#tf_examples/account_data_source.txtB,\n\x07\x61\x63\x63ount\x12!\xaa\xf8\xb3\x07\x0e\xaa\xf8\xb3\x07\tsuspended\xaa\xf8\xb3\x07\t\xaa\xf8\xb3\x07\x04tags\"\xd2\x06\n\x04User\x12\x16\n\x02id\x18\x01 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x1e\n\x05\x65mail\x18\x02 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\xc0\xf3\xb3\x07\x01\x12#\n\nfirst_name\x18\x03 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\xc0\xf3\xb3\x07\x01\x12\"\n\tlast_name\x18\x04 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\xc0\xf3\xb3\x07\x01\x12*\n\tsuspended\x18\x05 \x01(\x08\x42\x17\xf2\xf8\xb3\x07\x12\xb2\xf4\xb3\x07\r!json_gateway\x12\"\n\x04tags\x18\x06 \x01(\x0b\x32\x08.v1.TagsB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x36\n\x10permission_level\x18\x07 \x01(\tB\x1c\xf2\xf8\xb3\x07\x17\x98\xf4\xb3\x07\x01\xb2\xf4\xb3\x07\r!json_gateway\x12#\n\nmanaged_by\x18\x08 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\x98\xf4\xb3\x07\x01\x12\x1f\n\x0b\x65xternal_id\x18\t \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\xdb\x01\n\x0bsuspendedRO\x18\n \x01(\x08\x42\xc5\x01\xf2\xf8\xb3\x07\xbf\x01\xb0\xf3\xb3\x07\x01\xca\xf3\xb3\x07\xaf\x01\xc2\xf4\xb3\x07\x0f\n\x02go\x12\tSuspended\xc2\xf4\xb3\x07\x10\n\x03\x63li\x12\tsuspended\xc2\xf4\xb3\x07\x11\n\x04ruby\x12\tsuspended\xc2\xf4\xb3\x07\x13\n\x06python\x12\tsuspended\xc2\xf4\xb3\x07\x11\n\x04java\x12\tSuspended\xc2\xf4\xb3\x07\x1f\n\x12terraform-provider\x12\tsuspended\xc2\xf4\xb3\x07\x19\n\x0cjson_gateway\x12\tsuspended\x98\xf4\xb3\x07\x01\x12\x90\x02\n\x12permission_levelRW\x18\x0b \x01(\tB\xf3\x01\xf2\xf8\xb3\x07\xed\x01\xb0\xf3\xb3\x07\x01\xca\xf3\xb3\x07\xdd\x01\xc2\xf4\xb3\x07\x15\n\x02go\x12\x0fPermissionLevel\xc2\xf4\xb3\x07\x17\n\x03\x63li\x12\x10permission-level\xc2\xf4\xb3\x07\x18\n\x04ruby\x12\x10permission_level\xc2\xf4\xb3\x07\x1a\n\x06python\x12\x10permission_level\xc2\xf4\xb3\x07\x17\n\x04java\x12\x0fPermissionLevel\xc2\xf4\xb3\x07&\n\x12terraform-provider\x12\x10permission_level\xc2\xf4\xb3\x07\x1f\n\x0cjson_gateway\x12\x0fpermissionLevel\xd0\xf4\xb3\x07\x01:\n\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\"\x8f\x01\n\x07Service\x12\x16\n\x02id\x18\x01 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x1d\n\x04name\x18\x02 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\xc0\xf3\xb3\x07\x01\x12\x1d\n\tsuspended\x18\x03 \x01(\x08\x42\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\"\n\x04tags\x18\x04 \x01(\x0b\x32\x08.v1.TagsB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01:\n\xfa\xf8\xb3\x07\x05\xa8\xf3\xb3\x07\x01\"\x9a\x03\n\x05Token\x12\x16\n\x02id\x18\x01 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x1d\n\x04name\x18\x02 \x01(\tB\x0f\xf2\xf8\xb3\x07\n\xb0\xf3\xb3\x07\x01\xc0\xf3\xb3\x07\x01\x12\x1d\n\tsuspended\x18\x03 \x01(\x08\x42\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\"\n\x04tags\x18\x04 \x01(\x0b\x32\x08.v1.TagsB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x37\n\x07rekeyed\x18\x05 \x01(\x0b\x32\x1a.google.protobuf.TimestampB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x38\n\x08\x64\x65\x61\x64line\x18\x06 \x01(\x0b\x32\x1a.google.protobuf.TimestampB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12 \n\x0c\x61\x63\x63ount_type\x18\x07 \x01(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x1f\n\x0bpermissions\x18\x08 \x03(\tB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01\x12\x37\n\x08\x64uration\x18\t \x01(\x0b\x32\x19.google.protobuf.DurationB\n\xf2\xf8\xb3\x07\x05\xb0\xf3\xb3\x07\x01:(\xfa\xf8\xb3\x07#\xa8\xf3\xb3\x07\x01\xd2\xf3\xb3\x07\x01*\xd2\xf3\xb3\x07\x13!terraform-provider2\xab\x04\n\x08\x41\x63\x63ounts\x12\x63\n\x06\x43reate\x12\x18.v1.AccountCreateRequest\x1a\x19.v1.AccountCreateResponse\"$\x82\xf9\xb3\x07\t\xa2\xf3\xb3\x07\x04post\x82\xf9\xb3\x07\x11\xaa\xf3\xb3\x07\x0c/v1/accounts\x12^\n\x03Get\x12\x15.v1.AccountGetRequest\x1a\x16.v1.AccountGetResponse\"(\x82\xf9\xb3\x07\x08\xa2\xf3\xb3\x07\x03get\x82\xf9\xb3\x07\x16\xaa\xf3\xb3\x07\x11/v1/accounts/{id}\x12g\n\x06Update\x12\x18.v1.AccountUpdateRequest\x1a\x19.v1.AccountUpdateResponse\"(\x82\xf9\xb3\x07\x08\xa2\xf3\xb3\x07\x03put\x82\xf9\xb3\x07\x16\xaa\xf3\xb3\x07\x11/v1/accounts/{id}\x12j\n\x06\x44\x65lete\x12\x18.v1.AccountDeleteRequest\x1a\x19.v1.AccountDeleteResponse\"+\x82\xf9\xb3\x07\x0b\xa2\xf3\xb3\x07\x06\x64\x65lete\x82\xf9\xb3\x07\x16\xaa\xf3\xb3\x07\x11/v1/accounts/{id}\x12\\\n\x04List\x12\x16.v1.AccountListRequest\x1a\x17.v1.AccountListResponse\"#\x82\xf9\xb3\x07\x08\xa2\xf3\xb3\x07\x03get\x82\xf9\xb3\x07\x11\xaa\xf3\xb3\x07\x0c/v1/accounts\x1a\'\xca\xf9\xb3\x07\x0c\xc2\xf9\xb3\x07\x07\x41\x63\x63ount\xca\xf9\xb3\x07\x07\xd2\xf9\xb3\x07\x02\x61-\xca\xf9\xb3\x07\x05\xe0\xf9\xb3\x07\x01\x42\x64\n\x19\x63om.strongdm.api.plumbingB\x10\x41\x63\x63ountsPlumbingZ5github.com/strongdm/strongdm-sdk-go/v3/internal/v1;v1b\x06proto3')
 
 
 
@@ -163,6 +164,10 @@ if _descriptor._USE_C_DESCRIPTORS == False:
   _ACCOUNTCREATERESPONSE.fields_by_name['token']._serialized_options = b'\362\370\263\007\n\260\363\263\007\001\360\363\263\007\001'
   _ACCOUNTCREATERESPONSE.fields_by_name['rate_limit']._options = None
   _ACCOUNTCREATERESPONSE.fields_by_name['rate_limit']._serialized_options = b'\362\370\263\007\005\260\363\263\007\001\362\370\263\007\006\262\364\263\007\001*\362\370\263\007\022\262\364\263\007\r!json_gateway'
+  _ACCOUNTCREATERESPONSE.fields_by_name['access_key']._options = None
+  _ACCOUNTCREATERESPONSE.fields_by_name['access_key']._serialized_options = b'\362\370\263\007#\260\363\263\007\001\262\364\263\007\001*\262\364\263\007\023!terraform-provider'
+  _ACCOUNTCREATERESPONSE.fields_by_name['secret_key']._options = None
+  _ACCOUNTCREATERESPONSE.fields_by_name['secret_key']._serialized_options = b'\362\370\263\007#\260\363\263\007\001\262\364\263\007\001*\262\364\263\007\023!terraform-provider'
   _ACCOUNTCREATERESPONSE._options = None
   _ACCOUNTCREATERESPONSE._serialized_options = b'\372\370\263\007\005\250\363\263\007\001'
   _ACCOUNTGETREQUEST.fields_by_name['id']._options = None
@@ -206,7 +211,7 @@ if _descriptor._USE_C_DESCRIPTORS == False:
   _ACCOUNT.fields_by_name['service']._options = None
   _ACCOUNT.fields_by_name['service']._serialized_options = b'\362\370\263\007\005\260\363\263\007\001'
   _ACCOUNT.fields_by_name['token']._options = None
-  _ACCOUNT.fields_by_name['token']._serialized_options = b'\362\370\263\007\017\262\364\263\007\ngo_private'
+  _ACCOUNT.fields_by_name['token']._serialized_options = b'\362\370\263\007#\260\363\263\007\001\262\364\263\007\001*\262\364\263\007\023!terraform-provider'
   _ACCOUNT._options = None
   _ACCOUNT._serialized_options = b'\372\370\263\007\005\250\363\263\007\001\372\370\263\007R\302\363\263\007M\242\363\263\007 tf_examples/account_resource.txt\252\363\263\007#tf_examples/account_data_source.txt'
   _USER.fields_by_name['id']._options = None
@@ -255,10 +260,16 @@ if _descriptor._USE_C_DESCRIPTORS == False:
   _TOKEN.fields_by_name['rekeyed']._serialized_options = b'\362\370\263\007\005\260\363\263\007\001'
   _TOKEN.fields_by_name['deadline']._options = None
   _TOKEN.fields_by_name['deadline']._serialized_options = b'\362\370\263\007\005\260\363\263\007\001'
+  _TOKEN.fields_by_name['account_type']._options = None
+  _TOKEN.fields_by_name['account_type']._serialized_options = b'\362\370\263\007\005\260\363\263\007\001'
+  _TOKEN.fields_by_name['permissions']._options = None
+  _TOKEN.fields_by_name['permissions']._serialized_options = b'\362\370\263\007\005\260\363\263\007\001'
+  _TOKEN.fields_by_name['duration']._options = None
+  _TOKEN.fields_by_name['duration']._serialized_options = b'\362\370\263\007\005\260\363\263\007\001'
   _TOKEN._options = None
-  _TOKEN._serialized_options = b'\372\370\263\007\024\250\363\263\007\001\322\363\263\007\ngo_private'
+  _TOKEN._serialized_options = b'\372\370\263\007#\250\363\263\007\001\322\363\263\007\001*\322\363\263\007\023!terraform-provider'
   _ACCOUNTS._options = None
-  _ACCOUNTS._serialized_options = b'\312\371\263\007\014\302\371\263\007\007Account\312\371\263\007\007\322\371\263\007\002a-'
+  _ACCOUNTS._serialized_options = b'\312\371\263\007\014\302\371\263\007\007Account\312\371\263\007\007\322\371\263\007\002a-\312\371\263\007\005\340\371\263\007\001'
   _ACCOUNTS.methods_by_name['Create']._options = None
   _ACCOUNTS.methods_by_name['Create']._serialized_options = b'\202\371\263\007\t\242\363\263\007\004post\202\371\263\007\021\252\363\263\007\014/v1/accounts'
   _ACCOUNTS.methods_by_name['Get']._options = None
@@ -269,34 +280,34 @@ if _descriptor._USE_C_DESCRIPTORS == False:
   _ACCOUNTS.methods_by_name['Delete']._serialized_options = b'\202\371\263\007\013\242\363\263\007\006delete\202\371\263\007\026\252\363\263\007\021/v1/accounts/{id}'
   _ACCOUNTS.methods_by_name['List']._options = None
   _ACCOUNTS.methods_by_name['List']._serialized_options = b'\202\371\263\007\010\242\363\263\007\003get\202\371\263\007\021\252\363\263\007\014/v1/accounts'
-  _ACCOUNTCREATEREQUEST._serialized_start=94
-  _ACCOUNTCREATEREQUEST._serialized_end=199
-  _ACCOUNTCREATERESPONSE._serialized_start=202
-  _ACCOUNTCREATERESPONSE._serialized_end=454
-  _ACCOUNTGETREQUEST._serialized_start=456
-  _ACCOUNTGETREQUEST._serialized_end=537
-  _ACCOUNTGETRESPONSE._serialized_start=540
-  _ACCOUNTGETRESPONSE._serialized_end=754
-  _ACCOUNTUPDATEREQUEST._serialized_start=756
-  _ACCOUNTUPDATEREQUEST._serialized_end=873
-  _ACCOUNTUPDATERESPONSE._serialized_start=876
-  _ACCOUNTUPDATERESPONSE._serialized_end=1096
-  _ACCOUNTDELETEREQUEST._serialized_start=1098
-  _ACCOUNTDELETEREQUEST._serialized_end=1185
-  _ACCOUNTDELETERESPONSE._serialized_start=1188
-  _ACCOUNTDELETERESPONSE._serialized_end=1366
-  _ACCOUNTLISTREQUEST._serialized_start=1368
-  _ACCOUNTLISTREQUEST._serialized_end=1455
-  _ACCOUNTLISTRESPONSE._serialized_start=1458
-  _ACCOUNTLISTRESPONSE._serialized_end=1651
-  _ACCOUNT._serialized_start=1654
-  _ACCOUNT._serialized_end=1940
-  _USER._serialized_start=1943
-  _USER._serialized_end=2793
-  _SERVICE._serialized_start=2796
-  _SERVICE._serialized_end=2939
-  _TOKEN._serialized_start=2942
-  _TOKEN._serialized_end=3213
-  _ACCOUNTS._serialized_start=3216
-  _ACCOUNTS._serialized_end=3761
+  _ACCOUNTCREATEREQUEST._serialized_start=126
+  _ACCOUNTCREATEREQUEST._serialized_end=231
+  _ACCOUNTCREATERESPONSE._serialized_start=234
+  _ACCOUNTCREATERESPONSE._serialized_end=610
+  _ACCOUNTGETREQUEST._serialized_start=612
+  _ACCOUNTGETREQUEST._serialized_end=693
+  _ACCOUNTGETRESPONSE._serialized_start=696
+  _ACCOUNTGETRESPONSE._serialized_end=910
+  _ACCOUNTUPDATEREQUEST._serialized_start=912
+  _ACCOUNTUPDATEREQUEST._serialized_end=1029
+  _ACCOUNTUPDATERESPONSE._serialized_start=1032
+  _ACCOUNTUPDATERESPONSE._serialized_end=1252
+  _ACCOUNTDELETEREQUEST._serialized_start=1254
+  _ACCOUNTDELETEREQUEST._serialized_end=1341
+  _ACCOUNTDELETERESPONSE._serialized_start=1344
+  _ACCOUNTDELETERESPONSE._serialized_end=1522
+  _ACCOUNTLISTREQUEST._serialized_start=1524
+  _ACCOUNTLISTREQUEST._serialized_end=1611
+  _ACCOUNTLISTRESPONSE._serialized_start=1614
+  _ACCOUNTLISTRESPONSE._serialized_end=1807
+  _ACCOUNT._serialized_start=1810
+  _ACCOUNT._serialized_end=2116
+  _USER._serialized_start=2119
+  _USER._serialized_end=2969
+  _SERVICE._serialized_start=2972
+  _SERVICE._serialized_end=3115
+  _TOKEN._serialized_start=3118
+  _TOKEN._serialized_end=3528
+  _ACCOUNTS._serialized_start=3531
+  _ACCOUNTS._serialized_end=4086
 # @@protoc_insertion_point(module_scope)

{strongdm-7.1.0 → strongdm-8.0.0}/strongdm/accounts_pb2_grpc.py

@@ -23,6 +23,7 @@ class AccountsStub(object):
     """Accounts are users that have access to strongDM. There are two types of accounts:
     1. **Users:** humans who are authenticated through username and password or SSO.
     2. **Service Accounts:** machines that are authenticated using a service token.
+    3. **Tokens** are access keys with permissions that can be used for authentication.
     """
 
     def __init__(self, channel):
@@ -62,6 +63,7 @@ class AccountsServicer(object):
     """Accounts are users that have access to strongDM. There are two types of accounts:
     1. **Users:** humans who are authenticated through username and password or SSO.
     2. **Service Accounts:** machines that are authenticated using a service token.
+    3. **Tokens** are access keys with permissions that can be used for authentication.
     """
 
     def Create(self, request, context):
@@ -138,6 +140,7 @@ class Accounts(object):
     """Accounts are users that have access to strongDM. There are two types of accounts:
     1. **Users:** humans who are authenticated through username and password or SSO.
     2. **Service Accounts:** machines that are authenticated using a service token.
+    3. **Tokens** are access keys with permissions that can be used for authentication.
     """
 
     @staticmethod

{strongdm-7.1.0 → strongdm-8.0.0}/strongdm/client.py

@@ -23,16 +23,17 @@ import hashlib
 import hmac
 import random
 import time
-from . import svc
+from . import errors
 from . import plumbing
+from . import svc
 
 # These defaults are taken from AWS. Customization of these values
 # is a future step in the API.
 DEFAULT_MAX_RETRIES = 3
 DEFAULT_BASE_RETRY_DELAY = 0.0030  # 30 ms
 DEFAULT_MAX_RETRY_DELAY = 300  # 300 seconds
-API_VERSION = '2024-03-14'
-USER_AGENT = 'strongdm-sdk-python/7.1.0'
+API_VERSION = '2024-03-28'
+USER_AGENT = 'strongdm-sdk-python/8.0.0'
 
 
 class Client:
@@ -138,6 +139,7 @@ class Client:
          Accounts are users that have access to strongDM. There are two types of accounts:
          1. **Users:** humans who are authenticated through username and password or SSO.
          2. **Service Accounts:** machines that are authenticated using a service token.
+         3. **Tokens** are access keys with permissions that can be used for authentication.
 
         See `strongdm.svc.Accounts`.
         '''
@@ -425,7 +427,8 @@ class Client:
             return hmac.new(key, msg=msg_byte_string,
                             digestmod=hashlib.sha256).digest()
 
-        current_utc_date = datetime.datetime.utcnow().strftime('%Y-%m-%d')
+        current_utc_date = datetime.datetime.now(
+            datetime.timezone.utc).strftime('%Y-%m-%d')
         signing_key = hmac_digest(self.api_secret, current_utc_date.encode())
         signing_key = hmac_digest(signing_key, b'sdm_api_v1')
 
@@ -450,9 +453,9 @@ class Client:
             return False
         if not isinstance(err, grpc.RpcError):
             return True
-        if (not self.expose_rate_limit_errors
-            ) and err.code() == grpc.StatusCode.RESOURCE_EXHAUSTED:
-            porcelain_err = plumbing.convert_error_to_porcelain(err)
+        porcelain_err = plumbing.convert_error_to_porcelain(err)
+        if (not self.expose_rate_limit_errors) and isinstance(
+                porcelain_err, errors.RateLimitError):
             wait_until = porcelain_err.rate_limit.reset_at
             now = datetime.datetime.now(datetime.timezone.utc)
             sleep_for = (wait_until - now).total_seconds()
@@ -548,6 +551,7 @@ class SnapshotClient:
          Accounts are users that have access to strongDM. There are two types of accounts:
          1. **Users:** humans who are authenticated through username and password or SSO.
          2. **Service Accounts:** machines that are authenticated using a service token.
+         3. **Tokens** are access keys with permissions that can be used for authentication.
 
         See `strongdm.svc.SnapshotAccounts`.
         '''

{strongdm-7.1.0 → strongdm-8.0.0}/strongdm/models.py

@@ -2153,19 +2153,27 @@ class AccountCreateResponse:
          AccountCreateResponse reports how the Accounts were created in the system.
     '''
     __slots__ = [
+        'access_key',
         'account',
         'meta',
         'rate_limit',
+        'secret_key',
         'token',
     ]
 
     def __init__(
         self,
+        access_key=None,
         account=None,
         meta=None,
         rate_limit=None,
+        secret_key=None,
         token=None,
     ):
+        self.access_key = access_key if access_key is not None else ''
+        '''
+         ID part of the API key.
+        '''
         self.account = account if account is not None else None
         '''
          The created Account.
@@ -2178,6 +2186,10 @@ class AccountCreateResponse:
         '''
          Rate limit information.
         '''
+        self.secret_key = secret_key if secret_key is not None else ''
+        '''
+         Secret part of the API key.
+        '''
         self.token = token if token is not None else ''
         '''
          The auth token generated for the Account. The Account will use this token to
@@ -2186,26 +2198,32 @@ class AccountCreateResponse:
 
     def __repr__(self):
         return '<sdm.AccountCreateResponse ' + \
+            'access_key: ' + repr(self.access_key) + ' ' +\
             'account: ' + repr(self.account) + ' ' +\
             'meta: ' + repr(self.meta) + ' ' +\
             'rate_limit: ' + repr(self.rate_limit) + ' ' +\
+            'secret_key: ' + repr(self.secret_key) + ' ' +\
             'token: ' + repr(self.token) + ' ' +\
             '>'
 
     def to_dict(self):
         return {
+            'access_key': self.access_key,
             'account': self.account,
             'meta': self.meta,
             'rate_limit': self.rate_limit,
+            'secret_key': self.secret_key,
             'token': self.token,
         }
 
     @classmethod
     def from_dict(cls, d):
         return cls(
+            access_key=d.get('access_key'),
             account=d.get('account'),
             meta=d.get('meta'),
             rate_limit=d.get('rate_limit'),
+            secret_key=d.get('secret_key'),
             token=d.get('token'),
         )
 
@@ -20826,6 +20844,113 @@ class Teradata:
         )
 
 
+class Token:
+    '''
+         A Token is an account providing tokenized access for automation or integration use.
+     Tokens include admin tokens, API keys, and SCIM tokens.
+    '''
+    __slots__ = [
+        'account_type',
+        'deadline',
+        'duration',
+        'id',
+        'name',
+        'permissions',
+        'rekeyed',
+        'suspended',
+        'tags',
+    ]
+
+    def __init__(
+        self,
+        account_type=None,
+        deadline=None,
+        duration=None,
+        id=None,
+        name=None,
+        permissions=None,
+        rekeyed=None,
+        suspended=None,
+        tags=None,
+    ):
+        self.account_type = account_type if account_type is not None else ''
+        '''
+         Corresponds to the type of token, e.g. api or admin-token.
+        '''
+        self.deadline = deadline if deadline is not None else None
+        '''
+         The timestamp when the Token will expire.
+        '''
+        self.duration = duration if duration is not None else None
+        '''
+         Duration from token creation to expiration.
+        '''
+        self.id = id if id is not None else ''
+        '''
+         Unique identifier of the Token.
+        '''
+        self.name = name if name is not None else ''
+        '''
+         Unique human-readable name of the Token.
+        '''
+        self.permissions = permissions if permissions is not None else []
+        '''
+         Permissions assigned to the token, e.g. role:create.
+        '''
+        self.rekeyed = rekeyed if rekeyed is not None else None
+        '''
+         The timestamp when the Token was last rekeyed.
+        '''
+        self.suspended = suspended if suspended is not None else False
+        '''
+         Reserved for future use.  Always false for tokens.
+        '''
+        self.tags = tags if tags is not None else _porcelain_zero_value_tags()
+        '''
+         Tags is a map of key, value pairs.
+        '''
+
+    def __repr__(self):
+        return '<sdm.Token ' + \
+            'account_type: ' + repr(self.account_type) + ' ' +\
+            'deadline: ' + repr(self.deadline) + ' ' +\
+            'duration: ' + repr(self.duration) + ' ' +\
+            'id: ' + repr(self.id) + ' ' +\
+            'name: ' + repr(self.name) + ' ' +\
+            'permissions: ' + repr(self.permissions) + ' ' +\
+            'rekeyed: ' + repr(self.rekeyed) + ' ' +\
+            'suspended: ' + repr(self.suspended) + ' ' +\
+            'tags: ' + repr(self.tags) + ' ' +\
+            '>'
+
+    def to_dict(self):
+        return {
+            'account_type': self.account_type,
+            'deadline': self.deadline,
+            'duration': self.duration,
+            'id': self.id,
+            'name': self.name,
+            'permissions': self.permissions,
+            'rekeyed': self.rekeyed,
+            'suspended': self.suspended,
+            'tags': self.tags,
+        }
+
+    @classmethod
+    def from_dict(cls, d):
+        return cls(
+            account_type=d.get('account_type'),
+            deadline=d.get('deadline'),
+            duration=d.get('duration'),
+            id=d.get('id'),
+            name=d.get('name'),
+            permissions=d.get('permissions'),
+            rekeyed=d.get('rekeyed'),
+            suspended=d.get('suspended'),
+            tags=d.get('tags'),
+        )
+
+
 class Trino:
     '''
     Trino is currently unstable, and its API may change, or it may be removed,

{strongdm-7.1.0 → strongdm-8.0.0}/strongdm/plumbing.py

@@ -964,6 +964,8 @@ def convert_account_to_plumbing(porcelain):
         return plumbing
     if isinstance(porcelain, models.Service):
         plumbing.service.CopyFrom(convert_service_to_plumbing(porcelain))
+    if isinstance(porcelain, models.Token):
+        plumbing.token.CopyFrom(convert_token_to_plumbing(porcelain))
     if isinstance(porcelain, models.User):
         plumbing.user.CopyFrom(convert_user_to_plumbing(porcelain))
     return plumbing
@@ -974,6 +976,8 @@ def convert_account_to_porcelain(plumbing):
         return None
     if plumbing.HasField('service'):
         return convert_service_to_porcelain(plumbing.service)
+    if plumbing.HasField('token'):
+        return convert_token_to_porcelain(plumbing.token)
     if plumbing.HasField('user'):
         return convert_user_to_porcelain(plumbing.user)
     raise errors.UnknownError(
@@ -1185,11 +1189,13 @@ def convert_account_create_response_to_porcelain(plumbing):
     if plumbing is None:
         return None
     porcelain = models.AccountCreateResponse()
+    porcelain.access_key = (plumbing.access_key)
     porcelain.account = convert_account_to_porcelain(plumbing.account)
     porcelain.meta = convert_create_response_metadata_to_porcelain(
         plumbing.meta)
     porcelain.rate_limit = convert_rate_limit_metadata_to_porcelain(
         plumbing.rate_limit)
+    porcelain.secret_key = (plumbing.secret_key)
     porcelain.token = (plumbing.token)
     return porcelain
 
@@ -1198,11 +1204,13 @@ def convert_account_create_response_to_plumbing(porcelain):
     plumbing = AccountCreateResponse()
     if porcelain is None:
         return plumbing
+    plumbing.access_key = (porcelain.access_key)
     plumbing.account.CopyFrom(convert_account_to_plumbing(porcelain.account))
     plumbing.meta.CopyFrom(
         convert_create_response_metadata_to_plumbing(porcelain.meta))
     plumbing.rate_limit.CopyFrom(
         convert_rate_limit_metadata_to_plumbing(porcelain.rate_limit))
+    plumbing.secret_key = (porcelain.secret_key)
     plumbing.token = (porcelain.token)
     return plumbing
 
@@ -10406,6 +10414,49 @@ def convert_repeated_teradata_to_porcelain(plumbings):
     return [convert_teradata_to_porcelain(plumbing) for plumbing in plumbings]
 
 
+def convert_token_to_porcelain(plumbing):
+    if plumbing is None:
+        return None
+    porcelain = models.Token()
+    porcelain.account_type = (plumbing.account_type)
+    porcelain.deadline = convert_timestamp_to_porcelain(plumbing.deadline)
+    porcelain.duration = convert_duration_to_porcelain(plumbing.duration)
+    porcelain.id = (plumbing.id)
+    porcelain.name = (plumbing.name)
+    porcelain.permissions = (plumbing.permissions)
+    porcelain.rekeyed = convert_timestamp_to_porcelain(plumbing.rekeyed)
+    porcelain.suspended = (plumbing.suspended)
+    porcelain.tags = convert_tags_to_porcelain(plumbing.tags)
+    return porcelain
+
+
+def convert_token_to_plumbing(porcelain):
+    plumbing = Token()
+    if porcelain is None:
+        return plumbing
+    plumbing.account_type = (porcelain.account_type)
+    plumbing.deadline.CopyFrom(
+        convert_timestamp_to_plumbing(porcelain.deadline))
+    plumbing.duration.CopyFrom(convert_duration_to_plumbing(
+        porcelain.duration))
+    plumbing.id = (porcelain.id)
+    plumbing.name = (porcelain.name)
+    del plumbing.permissions[:]
+    plumbing.permissions.extend((porcelain.permissions))
+    plumbing.rekeyed.CopyFrom(convert_timestamp_to_plumbing(porcelain.rekeyed))
+    plumbing.suspended = (porcelain.suspended)
+    plumbing.tags.CopyFrom(convert_tags_to_plumbing(porcelain.tags))
+    return plumbing
+
+
+def convert_repeated_token_to_plumbing(porcelains):
+    return [convert_token_to_plumbing(porcelain) for porcelain in porcelains]
+
+
+def convert_repeated_token_to_porcelain(plumbings):
+    return [convert_token_to_porcelain(plumbing) for plumbing in plumbings]
+
+
 def convert_trino_to_porcelain(plumbing):
     if plumbing is None:
         return None

{strongdm-7.1.0 → strongdm-8.0.0}/strongdm/svc.py

@@ -925,8 +925,10 @@ class Accounts:
      Accounts are users that have access to strongDM. There are two types of accounts:
      1. **Users:** humans who are authenticated through username and password or SSO.
      2. **Service Accounts:** machines that are authenticated using a service token.
+     3. **Tokens** are access keys with permissions that can be used for authentication.
     See:
     `strongdm.models.Service`
+    `strongdm.models.Token`
     `strongdm.models.User`
     '''
     def __init__(self, channel, client):
@@ -958,12 +960,14 @@ class Accounts:
             break
 
         resp = models.AccountCreateResponse()
+        resp.access_key = (plumbing_response.access_key)
         resp.account = plumbing.convert_account_to_porcelain(
             plumbing_response.account)
         resp.meta = plumbing.convert_create_response_metadata_to_porcelain(
             plumbing_response.meta)
         resp.rate_limit = plumbing.convert_rate_limit_metadata_to_porcelain(
             plumbing_response.rate_limit)
+        resp.secret_key = (plumbing_response.secret_key)
         resp.token = (plumbing_response.token)
         return resp
 

{strongdm-7.1.0 → strongdm-8.0.0}/strongdm.egg-info/PKG-INFO

@@ -1,12 +1,12 @@
 Metadata-Version: 2.1
 Name: strongdm
-Version: 7.1.0
+Version: 8.0.0
 Summary: strongDM SDK for the Python programming language.
 Home-page: https://github.com/strongdm/strongdm-sdk-python
 Author: strongDM Team
 Author-email: sdk-feedback@strongdm.com
 License: apache-2.0
-Download-URL: https://github.com/strongdm/strongdm-sdk-python/archive/v7.1.0.tar.gz
+Download-URL: https://github.com/strongdm/strongdm-sdk-python/archive/v8.0.0.tar.gz
 Keywords: strongDM,sdm,api,automation,security,audit,database,server,ssh,rdp
 Platform: UNKNOWN
 Classifier: Development Status :: 4 - Beta