Class: Akeyless::AuthMethodUpdateOauth2

Inherits:

Object

• Object
• Akeyless::AuthMethodUpdateOauth2

Defined in:

lib/akeyless/models/auth_method_update_oauth2.rb

Overview

authMethodUpdateOauth2 is a command that updates a new auth method that will be able to authenticate using Oauth2.

Instance Attribute Summary

• #access_expires ⇒ Object

  Access expiration date in Unix timestamp (select 0 for access without expiry date).

• #audience ⇒ Object

  The audience in the JWT.

• #audit_logs_claims ⇒ Object

  Subclaims to include in audit logs, e.g "–audit-logs-claims email –audit-logs-claims username".

• #bound_client_ids ⇒ Object

  The clients ids that the access is restricted to.

• #bound_ips ⇒ Object

  A CIDR whitelist with the IPs that the access is restricted to.

• #cert ⇒ Object

  CertificateFile Path to a file that contain the certificate in a PEM format.

• #cert_file_data ⇒ Object

  CertificateFileData PEM Certificate in a Base64 format.

• #delete_protection ⇒ Object

  Protection from accidental deletion of this object [true/false].

• #description ⇒ Object

  Auth Method description.

• #force_sub_claims ⇒ Object

  if true: enforce role-association must include sub claims.

• #gateway_url ⇒ Object

  Akeyless Gateway URL (Configuration Management port).

• #gw_bound_ips ⇒ Object

  A CIDR whitelist with the GW IPs that the access is restricted to.

• #issuer ⇒ Object

  Issuer URL.

• #json ⇒ Object

  Set output format to JSON.

• #jwks_json_data ⇒ Object

  The JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server.

• #jwks_uri ⇒ Object

  The URL to the JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server.

• #jwt_ttl ⇒ Object

  Jwt TTL.

• #name ⇒ Object

  Auth Method name.

• #new_name ⇒ Object

  Auth Method new name.

• #product_type ⇒ Object

  Choose the relevant product type for the auth method [sm, sra, pm, dp, ca].

• #subclaims_delimiters ⇒ Object

  A list of additional sub claims delimiters (relevant only for SAML, OIDC, OAuth2/JWT).

• #token ⇒ Object

  Authentication token (see ‘/auth` and `/configure`).

• #uid_token ⇒ Object

  The universal identity token, Required only for universal_identity authentication.

• #unique_identifier ⇒ Object

  A unique identifier (ID) value should be configured for OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example.

Class Method Summary

• ._deserialize(type, value) ⇒ Object

  Deserializes the data based on type.

• .acceptable_attributes ⇒ Object

  Returns all the JSON keys this model knows about.

• .attribute_map ⇒ Object

  Attribute mapping from ruby-style variable name to JSON key.

• .build_from_hash(attributes) ⇒ Object

  Builds the object from hash.

• .openapi_nullable ⇒ Object

  List of attributes with nullable: true.

• .openapi_types ⇒ Object

  Attribute type mapping.

Instance Method Summary

• #==(o) ⇒ Object

  Checks equality by comparing each attribute.

• #_to_hash(value) ⇒ Hash

  Outputs non-array value in the form of hash For object, use to_hash.

• #eql?(o) ⇒ Boolean
• #hash ⇒ Integer

  Calculates hash code according to all attributes.

• #initialize(attributes = {}) ⇒ AuthMethodUpdateOauth2 constructor

  Initializes the object.

• #list_invalid_properties ⇒ Object

  Show invalid properties with the reasons.

• #to_body ⇒ Hash

  to_body is an alias to to_hash (backward compatibility).

• #to_hash ⇒ Hash

  Returns the object in the form of hash.

• #to_s ⇒ String

  Returns the string representation of the object.

• #valid? ⇒ Boolean

  Check to see if the all the properties in the model are valid.

Constructor Details

#initialize(attributes = {}) ⇒ AuthMethodUpdateOauth2

Initializes the object

Parameters:

• attributes (Hash) (defaults to: {}) —

  Model attributes in the form of hash

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 164

def initialize(attributes = {})
  if (!attributes.is_a?(Hash))
    fail ArgumentError, "The input argument (attributes) must be a hash in `Akeyless::AuthMethodUpdateOauth2` initialize method"
  end

  # check to see if the attribute exists and convert string to symbol for hash key
  attributes = attributes.each_with_object({}) { |(k, v), h|
    if (!self.class.attribute_map.key?(k.to_sym))
      fail ArgumentError, "`#{k}` is not a valid attribute in `Akeyless::AuthMethodUpdateOauth2`. Please check the name to make sure it's valid. List of attributes: " + self.class.attribute_map.keys.inspect
    end
    h[k.to_sym] = v
  }

  if attributes.key?(:'access_expires')
    self.access_expires = attributes[:'access_expires']
  else
    self.access_expires = 0
  end

  if attributes.key?(:'audience')
    self.audience = attributes[:'audience']
  end

  if attributes.key?(:'audit_logs_claims')
    if (value = attributes[:'audit_logs_claims']).is_a?(Array)
      self.audit_logs_claims = value
    end
  end

  if attributes.key?(:'bound_client_ids')
    if (value = attributes[:'bound_client_ids']).is_a?(Array)
      self.bound_client_ids = value
    end
  end

  if attributes.key?(:'bound_ips')
    if (value = attributes[:'bound_ips']).is_a?(Array)
      self.bound_ips = value
    end
  end

  if attributes.key?(:'cert')
    self.cert = attributes[:'cert']
  end

  if attributes.key?(:'cert_file_data')
    self.cert_file_data = attributes[:'cert_file_data']
  end

  if attributes.key?(:'delete_protection')
    self.delete_protection = attributes[:'delete_protection']
  end

  if attributes.key?(:'description')
    self.description = attributes[:'description']
  end

  if attributes.key?(:'force_sub_claims')
    self.force_sub_claims = attributes[:'force_sub_claims']
  end

  if attributes.key?(:'gateway_url')
    self.gateway_url = attributes[:'gateway_url']
  end

  if attributes.key?(:'gw_bound_ips')
    if (value = attributes[:'gw_bound_ips']).is_a?(Array)
      self.gw_bound_ips = value
    end
  end

  if attributes.key?(:'issuer')
    self.issuer = attributes[:'issuer']
  end

  if attributes.key?(:'json')
    self.json = attributes[:'json']
  else
    self.json = false
  end

  if attributes.key?(:'jwks_json_data')
    self.jwks_json_data = attributes[:'jwks_json_data']
  end

  if attributes.key?(:'jwks_uri')
    self.jwks_uri = attributes[:'jwks_uri']
  else
    self.jwks_uri = 'default_jwks_url'
  end

  if attributes.key?(:'jwt_ttl')
    self.jwt_ttl = attributes[:'jwt_ttl']
  else
    self.jwt_ttl = 0
  end

  if attributes.key?(:'name')
    self.name = attributes[:'name']
  else
    self.name = nil
  end

  if attributes.key?(:'new_name')
    self.new_name = attributes[:'new_name']
  end

  if attributes.key?(:'product_type')
    if (value = attributes[:'product_type']).is_a?(Array)
      self.product_type = value
    end
  end

  if attributes.key?(:'subclaims_delimiters')
    if (value = attributes[:'subclaims_delimiters']).is_a?(Array)
      self.subclaims_delimiters = value
    end
  end

  if attributes.key?(:'token')
    self.token = attributes[:'token']
  end

  if attributes.key?(:'uid_token')
    self.uid_token = attributes[:'uid_token']
  end

  if attributes.key?(:'unique_identifier')
    self.unique_identifier = attributes[:'unique_identifier']
  else
    self.unique_identifier = nil
  end
end

Instance Attribute Details

#access_expires ⇒ Object

Access expiration date in Unix timestamp (select 0 for access without expiry date)

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 20

def access_expires
  @access_expires
end

#audience ⇒ Object

The audience in the JWT

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 23

def audience
  @audience
end

#audit_logs_claims ⇒ Object

Subclaims to include in audit logs, e.g "–audit-logs-claims email –audit-logs-claims username"

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 26

def audit_logs_claims
  @audit_logs_claims
end

#bound_client_ids ⇒ Object

The clients ids that the access is restricted to

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 29

def bound_client_ids
  @bound_client_ids
end

#bound_ips ⇒ Object

A CIDR whitelist with the IPs that the access is restricted to

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 32

def bound_ips
  @bound_ips
end

#cert ⇒ Object

CertificateFile Path to a file that contain the certificate in a PEM format.

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 35

def cert
  @cert
end

#cert_file_data ⇒ Object

CertificateFileData PEM Certificate in a Base64 format.

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 38

def cert_file_data
  @cert_file_data
end

#delete_protection ⇒ Object

Protection from accidental deletion of this object [true/false]

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 41

def delete_protection
  @delete_protection
end

#description ⇒ Object

Auth Method description

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 44

def description
  @description
end

#force_sub_claims ⇒ Object

if true: enforce role-association must include sub claims

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 47

def force_sub_claims
  @force_sub_claims
end

#gateway_url ⇒ Object

Akeyless Gateway URL (Configuration Management port). Relevant only when the jwks-uri is accessible only from the gateway.

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 50

def gateway_url
  @gateway_url
end

#gw_bound_ips ⇒ Object

A CIDR whitelist with the GW IPs that the access is restricted to

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 53

def gw_bound_ips
  @gw_bound_ips
end

#issuer ⇒ Object

Issuer URL

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 56

def issuer
  @issuer
end

#json ⇒ Object

Set output format to JSON

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 59

def json
  @json
end

#jwks_json_data ⇒ Object

The JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server. base64 encoded string

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 62

def jwks_json_data
  @jwks_json_data
end

#jwks_uri ⇒ Object

The URL to the JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server.

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 65

def jwks_uri
  @jwks_uri
end

#jwt_ttl ⇒ Object

Jwt TTL

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 68

def jwt_ttl
  @jwt_ttl
end

#name ⇒ Object

Auth Method name

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 71

def name
  @name
end

#new_name ⇒ Object

Auth Method new name

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 74

def new_name
  @new_name
end

#product_type ⇒ Object

Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 77

def product_type
  @product_type
end

#subclaims_delimiters ⇒ Object

A list of additional sub claims delimiters (relevant only for SAML, OIDC, OAuth2/JWT)

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 80

def subclaims_delimiters
  @subclaims_delimiters
end

#token ⇒ Object

Authentication token (see ‘/auth` and `/configure`)

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 83

def token
  @token
end

#uid_token ⇒ Object

The universal identity token, Required only for universal_identity authentication

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 86

def uid_token
  @uid_token
end

#unique_identifier ⇒ Object

A unique identifier (ID) value should be configured for OAuth2, LDAP and SAML authentication method types and is usually a value such as the email, username, or upn for example. Whenever a user logs in with a token, these authentication types issue a "sub claim" that contains details uniquely identifying that user. This sub claim includes a key containing the ID value that you configured, and is used to distinguish between different users from within the same organization.

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 89

def unique_identifier
  @unique_identifier
end

Class Method Details

._deserialize(type, value) ⇒ Object

Deserializes the data based on type

Parameters:

• string —

  type Data type

• string —

  value Value to be deserialized

Returns:

• (Object) —

  Deserialized data

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 398

def self._deserialize(type, value)
  case type.to_sym
  when :Time
    Time.parse(value)
  when :Date
    Date.parse(value)
  when :String
    value.to_s
  when :Integer
    value.to_i
  when :Float
    value.to_f
  when :Boolean
    if value.to_s =~ /\A(true|t|yes|y|1)\z/i
      true
    else
      false
    end
  when :Object
    # generic object (usually a Hash), return directly
    value
  when /\AArray<(?<inner_type>.+)>\z/
    inner_type = Regexp.last_match[:inner_type]
    value.map { |v| _deserialize(inner_type, v) }
  when /\AHash<(?<k_type>.+?), (?<v_type>.+)>\z/
    k_type = Regexp.last_match[:k_type]
    v_type = Regexp.last_match[:v_type]
    {}.tap do |hash|
      value.each do |k, v|
        hash[_deserialize(k_type, k)] = _deserialize(v_type, v)
      end
    end
  else # model
    # models (e.g. Pet) or oneOf
    klass = Akeyless.const_get(type)
    klass.respond_to?(:openapi_any_of) || klass.respond_to?(:openapi_one_of) ? klass.build(value) : klass.build_from_hash(value)
  end
end

.acceptable_attributes ⇒ Object

Returns all the JSON keys this model knows about

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 122

def self.acceptable_attributes
  attribute_map.values
end

.attribute_map ⇒ Object

Attribute mapping from ruby-style variable name to JSON key.

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 92

def self.attribute_map
  {
    :'access_expires' => :'access-expires',
    :'audience' => :'audience',
    :'audit_logs_claims' => :'audit-logs-claims',
    :'bound_client_ids' => :'bound-client-ids',
    :'bound_ips' => :'bound-ips',
    :'cert' => :'cert',
    :'cert_file_data' => :'cert-file-data',
    :'delete_protection' => :'delete_protection',
    :'description' => :'description',
    :'force_sub_claims' => :'force-sub-claims',
    :'gateway_url' => :'gateway-url',
    :'gw_bound_ips' => :'gw-bound-ips',
    :'issuer' => :'issuer',
    :'json' => :'json',
    :'jwks_json_data' => :'jwks-json-data',
    :'jwks_uri' => :'jwks-uri',
    :'jwt_ttl' => :'jwt-ttl',
    :'name' => :'name',
    :'new_name' => :'new-name',
    :'product_type' => :'product-type',
    :'subclaims_delimiters' => :'subclaims-delimiters',
    :'token' => :'token',
    :'uid_token' => :'uid-token',
    :'unique_identifier' => :'unique-identifier'
  }
end

.build_from_hash(attributes) ⇒ Object

Builds the object from hash

Parameters:

• attributes (Hash) —

  Model attributes in the form of hash

Returns:

• (Object) —

  Returns the model itself

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 374

def self.build_from_hash(attributes)
  return nil unless attributes.is_a?(Hash)
  attributes = attributes.transform_keys(&:to_sym)
  transformed_hash = {}
  openapi_types.each_pair do |key, type|
    if attributes.key?(attribute_map[key]) && attributes[attribute_map[key]].nil?
      transformed_hash["#{key}"] = nil
    elsif type =~ /\AArray<(.*)>/i
      # check to ensure the input is an array given that the attribute
      # is documented as an array but the input is not
      if attributes[attribute_map[key]].is_a?(Array)
        transformed_hash["#{key}"] = attributes[attribute_map[key]].map { |v| _deserialize($1, v) }
      end
    elsif !attributes[attribute_map[key]].nil?
      transformed_hash["#{key}"] = _deserialize(type, attributes[attribute_map[key]])
    end
  end
  new(transformed_hash)
end

.openapi_nullable ⇒ Object

List of attributes with nullable: true

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 157

def self.openapi_nullable
  Set.new([
  ])
end

.openapi_types ⇒ Object

Attribute type mapping.

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 127

def self.openapi_types
  {
    :'access_expires' => :'Integer',
    :'audience' => :'String',
    :'audit_logs_claims' => :'Array<String>',
    :'bound_client_ids' => :'Array<String>',
    :'bound_ips' => :'Array<String>',
    :'cert' => :'String',
    :'cert_file_data' => :'String',
    :'delete_protection' => :'String',
    :'description' => :'String',
    :'force_sub_claims' => :'Boolean',
    :'gateway_url' => :'String',
    :'gw_bound_ips' => :'Array<String>',
    :'issuer' => :'String',
    :'json' => :'Boolean',
    :'jwks_json_data' => :'String',
    :'jwks_uri' => :'String',
    :'jwt_ttl' => :'Integer',
    :'name' => :'String',
    :'new_name' => :'String',
    :'product_type' => :'Array<String>',
    :'subclaims_delimiters' => :'Array<String>',
    :'token' => :'String',
    :'uid_token' => :'String',
    :'unique_identifier' => :'String'
  }
end

Instance Method Details

#==(o) ⇒ Object

Checks equality by comparing each attribute.

Parameters:

• Object (Object) —

  to be compared

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 330

def ==(o)
  return true if self.equal?(o)
  self.class == o.class &&
      access_expires == o.access_expires &&
      audience == o.audience &&
      audit_logs_claims == o.audit_logs_claims &&
      bound_client_ids == o.bound_client_ids &&
      bound_ips == o.bound_ips &&
      cert == o.cert &&
      cert_file_data == o.cert_file_data &&
      delete_protection == o.delete_protection &&
      description == o.description &&
      force_sub_claims == o.force_sub_claims &&
      gateway_url == o.gateway_url &&
      gw_bound_ips == o.gw_bound_ips &&
      issuer == o.issuer &&
      json == o.json &&
      jwks_json_data == o.jwks_json_data &&
      jwks_uri == o.jwks_uri &&
      jwt_ttl == o.jwt_ttl &&
      name == o.name &&
      new_name == o.new_name &&
      product_type == o.product_type &&
      subclaims_delimiters == o.subclaims_delimiters &&
      token == o.token &&
      uid_token == o.uid_token &&
      unique_identifier == o.unique_identifier
end

#_to_hash(value) ⇒ Hash

Outputs non-array value in the form of hash For object, use to_hash. Otherwise, just return the value

Parameters:

• value (Object) —

  Any valid value

Returns:

• (Hash) —

  Returns the value in the form of hash

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 469

def _to_hash(value)
  if value.is_a?(Array)
    value.compact.map { |v| _to_hash(v) }
  elsif value.is_a?(Hash)
    {}.tap do |hash|
      value.each { |k, v| hash[k] = _to_hash(v) }
    end
  elsif value.respond_to? :to_hash
    value.to_hash
  else
    value
  end
end

#eql?(o) ⇒ Boolean

Parameters:

• Object (Object) —

  to be compared

Returns:

• (Boolean)

See Also:

• `==` method

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 361

def eql?(o)
  self == o
end

#hash ⇒ Integer

Calculates hash code according to all attributes.

Returns:

• (Integer) —

  Hash code

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 367

def hash
  [access_expires, audience, audit_logs_claims, bound_client_ids, bound_ips, cert, cert_file_data, delete_protection, description, force_sub_claims, gateway_url, gw_bound_ips, issuer, json, jwks_json_data, jwks_uri, jwt_ttl, name, new_name, product_type, subclaims_delimiters, token, uid_token, unique_identifier].hash
end

#list_invalid_properties ⇒ Object

Show invalid properties with the reasons. Usually used together with valid?

Returns:

• Array for valid properties with the reasons

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 300

def list_invalid_properties
  warn '[DEPRECATED] the `list_invalid_properties` method is obsolete'
  invalid_properties = Array.new
  if @jwks_uri.nil?
    invalid_properties.push('invalid value for "jwks_uri", jwks_uri cannot be nil.')
  end

  if @name.nil?
    invalid_properties.push('invalid value for "name", name cannot be nil.')
  end

  if @unique_identifier.nil?
    invalid_properties.push('invalid value for "unique_identifier", unique_identifier cannot be nil.')
  end

  invalid_properties
end

#to_body ⇒ Hash

to_body is an alias to to_hash (backward compatibility)

Returns:

• (Hash) —

  Returns the object in the form of hash

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 445

def to_body
  to_hash
end

#to_hash ⇒ Hash

Returns the object in the form of hash

Returns:

• (Hash) —

  Returns the object in the form of hash

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 451

def to_hash
  hash = {}
  self.class.attribute_map.each_pair do |attr, param|
    value = self.send(attr)
    if value.nil?
      is_nullable = self.class.openapi_nullable.include?(attr)
      next if !is_nullable || (is_nullable && !instance_variable_defined?(:"@#{attr}"))
    end

    hash[param] = _to_hash(value)
  end
  hash
end

#to_s ⇒ String

Returns the string representation of the object

Returns:

• (String) —

  String presentation of the object

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 439

def to_s
  to_hash.to_s
end

#valid? ⇒ Boolean

Check to see if the all the properties in the model are valid

Returns:

• (Boolean) —

  true if the model is valid

# File 'lib/akeyless/models/auth_method_update_oauth2.rb', line 320

def valid?
  warn '[DEPRECATED] the `valid?` method is obsolete'
  return false if @jwks_uri.nil?
  return false if @name.nil?
  return false if @unique_identifier.nil?
  true
end