Class: Akeyless::AuthMethodUpdateGcp

Inherits:
Object
  • Object
show all
Defined in:
lib/akeyless/models/auth_method_update_gcp.rb

Overview

authMethodUpdateGcp is a command that updates a new auth method that will be able to authenticate using GCP IAM Service Account credentials or GCE instance credentials.

Instance Attribute Summary collapse

Class Method Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(attributes = {}) ⇒ AuthMethodUpdateGcp

Initializes the object

Parameters:

  • attributes (Hash) (defaults to: {})

    Model attributes in the form of hash



159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 159

def initialize(attributes = {})
  if (!attributes.is_a?(Hash))
    fail ArgumentError, "The input argument (attributes) must be a hash in `Akeyless::AuthMethodUpdateGcp` initialize method"
  end

  # check to see if the attribute exists and convert string to symbol for hash key
  attributes = attributes.each_with_object({}) { |(k, v), h|
    if (!self.class.attribute_map.key?(k.to_sym))
      fail ArgumentError, "`#{k}` is not a valid attribute in `Akeyless::AuthMethodUpdateGcp`. Please check the name to make sure it's valid. List of attributes: " + self.class.attribute_map.keys.inspect
    end
    h[k.to_sym] = v
  }

  if attributes.key?(:'access_expires')
    self.access_expires = attributes[:'access_expires']
  else
    self.access_expires = 0
  end

  if attributes.key?(:'audience')
    self.audience = attributes[:'audience']
  else
    self.audience = 'akeyless.io'
  end

  if attributes.key?(:'audit_logs_claims')
    if (value = attributes[:'audit_logs_claims']).is_a?(Array)
      self.audit_logs_claims = value
    end
  end

  if attributes.key?(:'bound_ips')
    if (value = attributes[:'bound_ips']).is_a?(Array)
      self.bound_ips = value
    end
  end

  if attributes.key?(:'bound_labels')
    if (value = attributes[:'bound_labels']).is_a?(Array)
      self.bound_labels = value
    end
  end

  if attributes.key?(:'bound_projects')
    if (value = attributes[:'bound_projects']).is_a?(Array)
      self.bound_projects = value
    end
  end

  if attributes.key?(:'bound_regions')
    if (value = attributes[:'bound_regions']).is_a?(Array)
      self.bound_regions = value
    end
  end

  if attributes.key?(:'bound_service_accounts')
    if (value = attributes[:'bound_service_accounts']).is_a?(Array)
      self.bound_service_accounts = value
    end
  end

  if attributes.key?(:'bound_zones')
    if (value = attributes[:'bound_zones']).is_a?(Array)
      self.bound_zones = value
    end
  end

  if attributes.key?(:'delete_protection')
    self.delete_protection = attributes[:'delete_protection']
  end

  if attributes.key?(:'description')
    self.description = attributes[:'description']
  end

  if attributes.key?(:'force_sub_claims')
    self.force_sub_claims = attributes[:'force_sub_claims']
  end

  if attributes.key?(:'gw_bound_ips')
    if (value = attributes[:'gw_bound_ips']).is_a?(Array)
      self.gw_bound_ips = value
    end
  end

  if attributes.key?(:'json')
    self.json = attributes[:'json']
  else
    self.json = false
  end

  if attributes.key?(:'jwt_ttl')
    self.jwt_ttl = attributes[:'jwt_ttl']
  else
    self.jwt_ttl = 0
  end

  if attributes.key?(:'name')
    self.name = attributes[:'name']
  else
    self.name = nil
  end

  if attributes.key?(:'new_name')
    self.new_name = attributes[:'new_name']
  end

  if attributes.key?(:'product_type')
    if (value = attributes[:'product_type']).is_a?(Array)
      self.product_type = value
    end
  end

  if attributes.key?(:'service_account_creds_data')
    self. = attributes[:'service_account_creds_data']
  end

  if attributes.key?(:'token')
    self.token = attributes[:'token']
  end

  if attributes.key?(:'type')
    self.type = attributes[:'type']
  else
    self.type = nil
  end

  if attributes.key?(:'uid_token')
    self.uid_token = attributes[:'uid_token']
  end

  if attributes.key?(:'unique_identifier')
    self.unique_identifier = attributes[:'unique_identifier']
  end
end

Instance Attribute Details

#access_expiresObject

Access expiration date in Unix timestamp (select 0 for access without expiry date)



20
21
22
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 20

def access_expires
  @access_expires
end

#audienceObject

The audience to verify in the JWT received by the client



23
24
25
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 23

def audience
  @audience
end

#audit_logs_claimsObject

Subclaims to include in audit logs, e.g "–audit-logs-claims email –audit-logs-claims username"



26
27
28
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 26

def audit_logs_claims
  @audit_logs_claims
end

#bound_ipsObject

A CIDR whitelist with the IPs that the access is restricted to



29
30
31
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 29

def bound_ips
  @bound_ips
end

#bound_labelsObject

A comma-separated list of GCP labels formatted as "key:value" strings that must be set on authorized GCE instances. TODO: Because GCP labels are not currently ACL’d .…



32
33
34
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 32

def bound_labels
  @bound_labels
end

#bound_projectsObject

Human and Machine authentication section === Array of GCP project IDs. Only entities belonging to any of the provided projects can authenticate.



35
36
37
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 35

def bound_projects
  @bound_projects
end

#bound_regionsObject

List of regions that a GCE instance must belong to in order to be authenticated. TODO: If bound_instance_groups is provided, it is assumed to be a regional group and the group must belong to this region. If bound_zones are provided, this attribute is ignored.



38
39
40
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 38

def bound_regions
  @bound_regions
end

#bound_service_accountsObject

List of service accounts the service account must be part of in order to be authenticated.



41
42
43
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 41

def bound_service_accounts
  @bound_service_accounts
end

#bound_zonesObject

Machine authentication section === List of zones that a GCE instance must belong to in order to be authenticated. TODO: If bound_instance_groups is provided, it is assumed to be a zonal group and the group must belong to this zone.



44
45
46
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 44

def bound_zones
  @bound_zones
end

#delete_protectionObject

Protection from accidental deletion of this object [true/false]



47
48
49
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 47

def delete_protection
  @delete_protection
end

#descriptionObject

Auth Method description



50
51
52
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 50

def description
  @description
end

#force_sub_claimsObject

if true: enforce role-association must include sub claims



53
54
55
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 53

def force_sub_claims
  @force_sub_claims
end

#gw_bound_ipsObject

A CIDR whitelist with the GW IPs that the access is restricted to



56
57
58
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 56

def gw_bound_ips
  @gw_bound_ips
end

#jsonObject

Set output format to JSON



59
60
61
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 59

def json
  @json
end

#jwt_ttlObject

Jwt TTL



62
63
64
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 62

def jwt_ttl
  @jwt_ttl
end

#nameObject

Auth Method name



65
66
67
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 65

def name
  @name
end

#new_nameObject

Auth Method new name



68
69
70
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 68

def new_name
  @new_name
end

#product_typeObject

Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]



71
72
73
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 71

def product_type
  @product_type
end

#service_account_creds_dataObject

ServiceAccount credentials data instead of giving a file path, base64 encoded



74
75
76
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 74

def 
  @service_account_creds_data
end

#tokenObject

Authentication token (see ‘/auth` and `/configure`)



77
78
79
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 77

def token
  @token
end

#typeObject

Type of the GCP Access Rules



80
81
82
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 80

def type
  @type
end

#uid_tokenObject

The universal identity token, Required only for universal_identity authentication



83
84
85
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 83

def uid_token
  @uid_token
end

#unique_identifierObject

A unique identifier (ID) value which is a "sub claim" name that contains details uniquely identifying that resource. This "sub claim" is used to distinguish between different identities.



86
87
88
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 86

def unique_identifier
  @unique_identifier
end

Class Method Details

._deserialize(type, value) ⇒ Object

Deserializes the data based on type

Parameters:

  • string

    type Data type

  • string

    value Value to be deserialized

Returns:

  • (Object)

    Deserialized data



394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 394

def self._deserialize(type, value)
  case type.to_sym
  when :Time
    Time.parse(value)
  when :Date
    Date.parse(value)
  when :String
    value.to_s
  when :Integer
    value.to_i
  when :Float
    value.to_f
  when :Boolean
    if value.to_s =~ /\A(true|t|yes|y|1)\z/i
      true
    else
      false
    end
  when :Object
    # generic object (usually a Hash), return directly
    value
  when /\AArray<(?<inner_type>.+)>\z/
    inner_type = Regexp.last_match[:inner_type]
    value.map { |v| _deserialize(inner_type, v) }
  when /\AHash<(?<k_type>.+?), (?<v_type>.+)>\z/
    k_type = Regexp.last_match[:k_type]
    v_type = Regexp.last_match[:v_type]
    {}.tap do |hash|
      value.each do |k, v|
        hash[_deserialize(k_type, k)] = _deserialize(v_type, v)
      end
    end
  else # model
    # models (e.g. Pet) or oneOf
    klass = Akeyless.const_get(type)
    klass.respond_to?(:openapi_any_of) || klass.respond_to?(:openapi_one_of) ? klass.build(value) : klass.build_from_hash(value)
  end
end

.acceptable_attributesObject

Returns all the JSON keys this model knows about



118
119
120
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 118

def self.acceptable_attributes
  attribute_map.values
end

.attribute_mapObject

Attribute mapping from ruby-style variable name to JSON key.



89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 89

def self.attribute_map
  {
    :'access_expires' => :'access-expires',
    :'audience' => :'audience',
    :'audit_logs_claims' => :'audit-logs-claims',
    :'bound_ips' => :'bound-ips',
    :'bound_labels' => :'bound-labels',
    :'bound_projects' => :'bound-projects',
    :'bound_regions' => :'bound-regions',
    :'bound_service_accounts' => :'bound-service-accounts',
    :'bound_zones' => :'bound-zones',
    :'delete_protection' => :'delete_protection',
    :'description' => :'description',
    :'force_sub_claims' => :'force-sub-claims',
    :'gw_bound_ips' => :'gw-bound-ips',
    :'json' => :'json',
    :'jwt_ttl' => :'jwt-ttl',
    :'name' => :'name',
    :'new_name' => :'new-name',
    :'product_type' => :'product-type',
    :'service_account_creds_data' => :'service-account-creds-data',
    :'token' => :'token',
    :'type' => :'type',
    :'uid_token' => :'uid-token',
    :'unique_identifier' => :'unique-identifier'
  }
end

.build_from_hash(attributes) ⇒ Object

Builds the object from hash

Parameters:

  • attributes (Hash)

    Model attributes in the form of hash

Returns:

  • (Object)

    Returns the model itself



370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 370

def self.build_from_hash(attributes)
  return nil unless attributes.is_a?(Hash)
  attributes = attributes.transform_keys(&:to_sym)
  transformed_hash = {}
  openapi_types.each_pair do |key, type|
    if attributes.key?(attribute_map[key]) && attributes[attribute_map[key]].nil?
      transformed_hash["#{key}"] = nil
    elsif type =~ /\AArray<(.*)>/i
      # check to ensure the input is an array given that the attribute
      # is documented as an array but the input is not
      if attributes[attribute_map[key]].is_a?(Array)
        transformed_hash["#{key}"] = attributes[attribute_map[key]].map { |v| _deserialize($1, v) }
      end
    elsif !attributes[attribute_map[key]].nil?
      transformed_hash["#{key}"] = _deserialize(type, attributes[attribute_map[key]])
    end
  end
  new(transformed_hash)
end

.openapi_nullableObject

List of attributes with nullable: true



152
153
154
155
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 152

def self.openapi_nullable
  Set.new([
  ])
end

.openapi_typesObject

Attribute type mapping.



123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 123

def self.openapi_types
  {
    :'access_expires' => :'Integer',
    :'audience' => :'String',
    :'audit_logs_claims' => :'Array<String>',
    :'bound_ips' => :'Array<String>',
    :'bound_labels' => :'Array<String>',
    :'bound_projects' => :'Array<String>',
    :'bound_regions' => :'Array<String>',
    :'bound_service_accounts' => :'Array<String>',
    :'bound_zones' => :'Array<String>',
    :'delete_protection' => :'String',
    :'description' => :'String',
    :'force_sub_claims' => :'Boolean',
    :'gw_bound_ips' => :'Array<String>',
    :'json' => :'Boolean',
    :'jwt_ttl' => :'Integer',
    :'name' => :'String',
    :'new_name' => :'String',
    :'product_type' => :'Array<String>',
    :'service_account_creds_data' => :'String',
    :'token' => :'String',
    :'type' => :'String',
    :'uid_token' => :'String',
    :'unique_identifier' => :'String'
  }
end

Instance Method Details

#==(o) ⇒ Object

Checks equality by comparing each attribute.

Parameters:

  • Object (Object)

    to be compared



327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 327

def ==(o)
  return true if self.equal?(o)
  self.class == o.class &&
      access_expires == o.access_expires &&
      audience == o.audience &&
      audit_logs_claims == o.audit_logs_claims &&
      bound_ips == o.bound_ips &&
      bound_labels == o.bound_labels &&
      bound_projects == o.bound_projects &&
      bound_regions == o.bound_regions &&
      bound_service_accounts == o.bound_service_accounts &&
      bound_zones == o.bound_zones &&
      delete_protection == o.delete_protection &&
      description == o.description &&
      force_sub_claims == o.force_sub_claims &&
      gw_bound_ips == o.gw_bound_ips &&
      json == o.json &&
      jwt_ttl == o.jwt_ttl &&
      name == o.name &&
      new_name == o.new_name &&
      product_type == o.product_type &&
       == o. &&
      token == o.token &&
      type == o.type &&
      uid_token == o.uid_token &&
      unique_identifier == o.unique_identifier
end

#_to_hash(value) ⇒ Hash

Outputs non-array value in the form of hash For object, use to_hash. Otherwise, just return the value

Parameters:

  • value (Object)

    Any valid value

Returns:

  • (Hash)

    Returns the value in the form of hash



465
466
467
468
469
470
471
472
473
474
475
476
477
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 465

def _to_hash(value)
  if value.is_a?(Array)
    value.compact.map { |v| _to_hash(v) }
  elsif value.is_a?(Hash)
    {}.tap do |hash|
      value.each { |k, v| hash[k] = _to_hash(v) }
    end
  elsif value.respond_to? :to_hash
    value.to_hash
  else
    value
  end
end

#eql?(o) ⇒ Boolean

Parameters:

  • Object (Object)

    to be compared

Returns:

  • (Boolean)

See Also:

  • `==` method


357
358
359
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 357

def eql?(o)
  self == o
end

#hashInteger

Calculates hash code according to all attributes.

Returns:

  • (Integer)

    Hash code



363
364
365
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 363

def hash
  [access_expires, audience, audit_logs_claims, bound_ips, bound_labels, bound_projects, bound_regions, bound_service_accounts, bound_zones, delete_protection, description, force_sub_claims, gw_bound_ips, json, jwt_ttl, name, new_name, product_type, , token, type, uid_token, unique_identifier].hash
end

#list_invalid_propertiesObject

Show invalid properties with the reasons. Usually used together with valid?

Returns:

  • Array for valid properties with the reasons



297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 297

def list_invalid_properties
  warn '[DEPRECATED] the `list_invalid_properties` method is obsolete'
  invalid_properties = Array.new
  if @audience.nil?
    invalid_properties.push('invalid value for "audience", audience cannot be nil.')
  end

  if @name.nil?
    invalid_properties.push('invalid value for "name", name cannot be nil.')
  end

  if @type.nil?
    invalid_properties.push('invalid value for "type", type cannot be nil.')
  end

  invalid_properties
end

#to_bodyHash

to_body is an alias to to_hash (backward compatibility)

Returns:

  • (Hash)

    Returns the object in the form of hash



441
442
443
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 441

def to_body
  to_hash
end

#to_hashHash

Returns the object in the form of hash

Returns:

  • (Hash)

    Returns the object in the form of hash



447
448
449
450
451
452
453
454
455
456
457
458
459
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 447

def to_hash
  hash = {}
  self.class.attribute_map.each_pair do |attr, param|
    value = self.send(attr)
    if value.nil?
      is_nullable = self.class.openapi_nullable.include?(attr)
      next if !is_nullable || (is_nullable && !instance_variable_defined?(:"@#{attr}"))
    end

    hash[param] = _to_hash(value)
  end
  hash
end

#to_sString

Returns the string representation of the object

Returns:

  • (String)

    String presentation of the object



435
436
437
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 435

def to_s
  to_hash.to_s
end

#valid?Boolean

Check to see if the all the properties in the model are valid

Returns:

  • (Boolean)

    true if the model is valid



317
318
319
320
321
322
323
# File 'lib/akeyless/models/auth_method_update_gcp.rb', line 317

def valid?
  warn '[DEPRECATED] the `valid?` method is obsolete'
  return false if @audience.nil?
  return false if @name.nil?
  return false if @type.nil?
  true
end