Class: Akeyless::CreateAuthMethodAzureAD

Inherits:
Object
  • Object
show all
Defined in:
lib/akeyless/models/create_auth_method_azure_ad.rb

Overview

createAuthMethodAzureAD is a command that creates a new auth method that will be able to authenticate using Azure Active Directory credentials. [Deprecated: Use auth-method-create-azure-ad command]

Instance Attribute Summary collapse

Class Method Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(attributes = {}) ⇒ CreateAuthMethodAzureAD

Initializes the object

Parameters:

  • attributes (Hash) (defaults to: {})

    Model attributes in the form of hash



174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 174

def initialize(attributes = {})
  if (!attributes.is_a?(Hash))
    fail ArgumentError, "The input argument (attributes) must be a hash in `Akeyless::CreateAuthMethodAzureAD` initialize method"
  end

  # check to see if the attribute exists and convert string to symbol for hash key
  attributes = attributes.each_with_object({}) { |(k, v), h|
    if (!self.class.attribute_map.key?(k.to_sym))
      fail ArgumentError, "`#{k}` is not a valid attribute in `Akeyless::CreateAuthMethodAzureAD`. Please check the name to make sure it's valid. List of attributes: " + self.class.attribute_map.keys.inspect
    end
    h[k.to_sym] = v
  }

  if attributes.key?(:'access_expires')
    self.access_expires = attributes[:'access_expires']
  else
    self.access_expires = 0
  end

  if attributes.key?(:'audience')
    self.audience = attributes[:'audience']
  else
    self.audience = 'https://management.azure.com/'
  end

  if attributes.key?(:'audit_logs_claims')
    if (value = attributes[:'audit_logs_claims']).is_a?(Array)
      self.audit_logs_claims = value
    end
  end

  if attributes.key?(:'bound_group_id')
    if (value = attributes[:'bound_group_id']).is_a?(Array)
      self.bound_group_id = value
    end
  end

  if attributes.key?(:'bound_ips')
    if (value = attributes[:'bound_ips']).is_a?(Array)
      self.bound_ips = value
    end
  end

  if attributes.key?(:'bound_providers')
    if (value = attributes[:'bound_providers']).is_a?(Array)
      self.bound_providers = value
    end
  end

  if attributes.key?(:'bound_resource_id')
    if (value = attributes[:'bound_resource_id']).is_a?(Array)
      self.bound_resource_id = value
    end
  end

  if attributes.key?(:'bound_resource_names')
    if (value = attributes[:'bound_resource_names']).is_a?(Array)
      self.bound_resource_names = value
    end
  end

  if attributes.key?(:'bound_resource_types')
    if (value = attributes[:'bound_resource_types']).is_a?(Array)
      self.bound_resource_types = value
    end
  end

  if attributes.key?(:'bound_rg_id')
    if (value = attributes[:'bound_rg_id']).is_a?(Array)
      self.bound_rg_id = value
    end
  end

  if attributes.key?(:'bound_spid')
    if (value = attributes[:'bound_spid']).is_a?(Array)
      self.bound_spid = value
    end
  end

  if attributes.key?(:'bound_sub_id')
    if (value = attributes[:'bound_sub_id']).is_a?(Array)
      self.bound_sub_id = value
    end
  end

  if attributes.key?(:'bound_tenant_id')
    self.bound_tenant_id = attributes[:'bound_tenant_id']
  else
    self.bound_tenant_id = nil
  end

  if attributes.key?(:'delete_protection')
    self.delete_protection = attributes[:'delete_protection']
  end

  if attributes.key?(:'description')
    self.description = attributes[:'description']
  end

  if attributes.key?(:'force_sub_claims')
    self.force_sub_claims = attributes[:'force_sub_claims']
  end

  if attributes.key?(:'gw_bound_ips')
    if (value = attributes[:'gw_bound_ips']).is_a?(Array)
      self.gw_bound_ips = value
    end
  end

  if attributes.key?(:'issuer')
    self.issuer = attributes[:'issuer']
  else
    self.issuer = 'https://sts.windows.net/---bound_tenant_id---'
  end

  if attributes.key?(:'json')
    self.json = attributes[:'json']
  else
    self.json = false
  end

  if attributes.key?(:'jwks_uri')
    self.jwks_uri = attributes[:'jwks_uri']
  else
    self.jwks_uri = 'https://login.microsoftonline.com/common/discovery/keys'
  end

  if attributes.key?(:'jwt_ttl')
    self.jwt_ttl = attributes[:'jwt_ttl']
  else
    self.jwt_ttl = 0
  end

  if attributes.key?(:'name')
    self.name = attributes[:'name']
  else
    self.name = nil
  end

  if attributes.key?(:'product_type')
    if (value = attributes[:'product_type']).is_a?(Array)
      self.product_type = value
    end
  end

  if attributes.key?(:'token')
    self.token = attributes[:'token']
  end

  if attributes.key?(:'uid_token')
    self.uid_token = attributes[:'uid_token']
  end

  if attributes.key?(:'unique_identifier')
    self.unique_identifier = attributes[:'unique_identifier']
  end
end

Instance Attribute Details

#access_expiresObject

Access expiration date in Unix timestamp (select 0 for access without expiry date)



20
21
22
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 20

def access_expires
  @access_expires
end

#audienceObject

Deprecated (Deprecated) The audience in the JWT



23
24
25
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 23

def audience
  @audience
end

#audit_logs_claimsObject

Subclaims to include in audit logs, e.g "–audit-logs-claims email –audit-logs-claims username"



26
27
28
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 26

def audit_logs_claims
  @audit_logs_claims
end

#bound_group_idObject

A list of group ids that the access is restricted to



29
30
31
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 29

def bound_group_id
  @bound_group_id
end

#bound_ipsObject

A CIDR whitelist with the IPs that the access is restricted to



32
33
34
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 32

def bound_ips
  @bound_ips
end

#bound_providersObject

A list of resource providers that the access is restricted to (e.g, Microsoft.Compute, Microsoft.ManagedIdentity, etc)



35
36
37
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 35

def bound_providers
  @bound_providers
end

#bound_resource_idObject

A list of full resource ids that the access is restricted to



38
39
40
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 38

def bound_resource_id
  @bound_resource_id
end

#bound_resource_namesObject

A list of resource names that the access is restricted to (e.g, a virtual machine name, scale set name, etc).



41
42
43
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 41

def bound_resource_names
  @bound_resource_names
end

#bound_resource_typesObject

A list of resource types that the access is restricted to (e.g, virtualMachines, userAssignedIdentities, etc)



44
45
46
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 44

def bound_resource_types
  @bound_resource_types
end

#bound_rg_idObject

A list of resource groups that the access is restricted to



47
48
49
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 47

def bound_rg_id
  @bound_rg_id
end

#bound_spidObject

A list of service principal IDs that the access is restricted to



50
51
52
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 50

def bound_spid
  @bound_spid
end

#bound_sub_idObject

A list of subscription ids that the access is restricted to



53
54
55
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 53

def bound_sub_id
  @bound_sub_id
end

#bound_tenant_idObject

The Azure tenant id that the access is restricted to



56
57
58
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 56

def bound_tenant_id
  @bound_tenant_id
end

#delete_protectionObject

Protection from accidental deletion of this object [true/false]



59
60
61
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 59

def delete_protection
  @delete_protection
end

#descriptionObject

Auth Method description



62
63
64
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 62

def description
  @description
end

#force_sub_claimsObject

if true: enforce role-association must include sub claims



65
66
67
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 65

def force_sub_claims
  @force_sub_claims
end

#gw_bound_ipsObject

A CIDR whitelist with the GW IPs that the access is restricted to



68
69
70
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 68

def gw_bound_ips
  @gw_bound_ips
end

#issuerObject

Issuer URL



71
72
73
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 71

def issuer
  @issuer
end

#jsonObject

Set output format to JSON



74
75
76
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 74

def json
  @json
end

#jwks_uriObject

The URL to the JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server.



77
78
79
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 77

def jwks_uri
  @jwks_uri
end

#jwt_ttlObject

Jwt TTL



80
81
82
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 80

def jwt_ttl
  @jwt_ttl
end

#nameObject

Auth Method name



83
84
85
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 83

def name
  @name
end

#product_typeObject

Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]



86
87
88
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 86

def product_type
  @product_type
end

#tokenObject

Authentication token (see ‘/auth` and `/configure`)



89
90
91
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 89

def token
  @token
end

#uid_tokenObject

The universal identity token, Required only for universal_identity authentication



92
93
94
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 92

def uid_token
  @uid_token
end

#unique_identifierObject

A unique identifier (ID) value which is a "sub claim" name that contains details uniquely identifying that resource. This "sub claim" is used to distinguish between different identities.



95
96
97
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 95

def unique_identifier
  @unique_identifier
end

Class Method Details

._deserialize(type, value) ⇒ Object

Deserializes the data based on type

Parameters:

  • string

    type Data type

  • string

    value Value to be deserialized

Returns:

  • (Object)

    Deserialized data



429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 429

def self._deserialize(type, value)
  case type.to_sym
  when :Time
    Time.parse(value)
  when :Date
    Date.parse(value)
  when :String
    value.to_s
  when :Integer
    value.to_i
  when :Float
    value.to_f
  when :Boolean
    if value.to_s =~ /\A(true|t|yes|y|1)\z/i
      true
    else
      false
    end
  when :Object
    # generic object (usually a Hash), return directly
    value
  when /\AArray<(?<inner_type>.+)>\z/
    inner_type = Regexp.last_match[:inner_type]
    value.map { |v| _deserialize(inner_type, v) }
  when /\AHash<(?<k_type>.+?), (?<v_type>.+)>\z/
    k_type = Regexp.last_match[:k_type]
    v_type = Regexp.last_match[:v_type]
    {}.tap do |hash|
      value.each do |k, v|
        hash[_deserialize(k_type, k)] = _deserialize(v_type, v)
      end
    end
  else # model
    # models (e.g. Pet) or oneOf
    klass = Akeyless.const_get(type)
    klass.respond_to?(:openapi_any_of) || klass.respond_to?(:openapi_one_of) ? klass.build(value) : klass.build_from_hash(value)
  end
end

.acceptable_attributesObject

Returns all the JSON keys this model knows about



130
131
132
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 130

def self.acceptable_attributes
  attribute_map.values
end

.attribute_mapObject

Attribute mapping from ruby-style variable name to JSON key.



98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 98

def self.attribute_map
  {
    :'access_expires' => :'access-expires',
    :'audience' => :'audience',
    :'audit_logs_claims' => :'audit-logs-claims',
    :'bound_group_id' => :'bound-group-id',
    :'bound_ips' => :'bound-ips',
    :'bound_providers' => :'bound-providers',
    :'bound_resource_id' => :'bound-resource-id',
    :'bound_resource_names' => :'bound-resource-names',
    :'bound_resource_types' => :'bound-resource-types',
    :'bound_rg_id' => :'bound-rg-id',
    :'bound_spid' => :'bound-spid',
    :'bound_sub_id' => :'bound-sub-id',
    :'bound_tenant_id' => :'bound-tenant-id',
    :'delete_protection' => :'delete_protection',
    :'description' => :'description',
    :'force_sub_claims' => :'force-sub-claims',
    :'gw_bound_ips' => :'gw-bound-ips',
    :'issuer' => :'issuer',
    :'json' => :'json',
    :'jwks_uri' => :'jwks-uri',
    :'jwt_ttl' => :'jwt-ttl',
    :'name' => :'name',
    :'product_type' => :'product-type',
    :'token' => :'token',
    :'uid_token' => :'uid-token',
    :'unique_identifier' => :'unique-identifier'
  }
end

.build_from_hash(attributes) ⇒ Object

Builds the object from hash

Parameters:

  • attributes (Hash)

    Model attributes in the form of hash

Returns:

  • (Object)

    Returns the model itself



405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 405

def self.build_from_hash(attributes)
  return nil unless attributes.is_a?(Hash)
  attributes = attributes.transform_keys(&:to_sym)
  transformed_hash = {}
  openapi_types.each_pair do |key, type|
    if attributes.key?(attribute_map[key]) && attributes[attribute_map[key]].nil?
      transformed_hash["#{key}"] = nil
    elsif type =~ /\AArray<(.*)>/i
      # check to ensure the input is an array given that the attribute
      # is documented as an array but the input is not
      if attributes[attribute_map[key]].is_a?(Array)
        transformed_hash["#{key}"] = attributes[attribute_map[key]].map { |v| _deserialize($1, v) }
      end
    elsif !attributes[attribute_map[key]].nil?
      transformed_hash["#{key}"] = _deserialize(type, attributes[attribute_map[key]])
    end
  end
  new(transformed_hash)
end

.openapi_nullableObject

List of attributes with nullable: true



167
168
169
170
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 167

def self.openapi_nullable
  Set.new([
  ])
end

.openapi_typesObject

Attribute type mapping.



135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 135

def self.openapi_types
  {
    :'access_expires' => :'Integer',
    :'audience' => :'String',
    :'audit_logs_claims' => :'Array<String>',
    :'bound_group_id' => :'Array<String>',
    :'bound_ips' => :'Array<String>',
    :'bound_providers' => :'Array<String>',
    :'bound_resource_id' => :'Array<String>',
    :'bound_resource_names' => :'Array<String>',
    :'bound_resource_types' => :'Array<String>',
    :'bound_rg_id' => :'Array<String>',
    :'bound_spid' => :'Array<String>',
    :'bound_sub_id' => :'Array<String>',
    :'bound_tenant_id' => :'String',
    :'delete_protection' => :'String',
    :'description' => :'String',
    :'force_sub_claims' => :'Boolean',
    :'gw_bound_ips' => :'Array<String>',
    :'issuer' => :'String',
    :'json' => :'Boolean',
    :'jwks_uri' => :'String',
    :'jwt_ttl' => :'Integer',
    :'name' => :'String',
    :'product_type' => :'Array<String>',
    :'token' => :'String',
    :'uid_token' => :'String',
    :'unique_identifier' => :'String'
  }
end

Instance Method Details

#==(o) ⇒ Object

Checks equality by comparing each attribute.

Parameters:

  • Object (Object)

    to be compared



359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 359

def ==(o)
  return true if self.equal?(o)
  self.class == o.class &&
      access_expires == o.access_expires &&
      audience == o.audience &&
      audit_logs_claims == o.audit_logs_claims &&
      bound_group_id == o.bound_group_id &&
      bound_ips == o.bound_ips &&
      bound_providers == o.bound_providers &&
      bound_resource_id == o.bound_resource_id &&
      bound_resource_names == o.bound_resource_names &&
      bound_resource_types == o.bound_resource_types &&
      bound_rg_id == o.bound_rg_id &&
      bound_spid == o.bound_spid &&
      bound_sub_id == o.bound_sub_id &&
      bound_tenant_id == o.bound_tenant_id &&
      delete_protection == o.delete_protection &&
      description == o.description &&
      force_sub_claims == o.force_sub_claims &&
      gw_bound_ips == o.gw_bound_ips &&
      issuer == o.issuer &&
      json == o.json &&
      jwks_uri == o.jwks_uri &&
      jwt_ttl == o.jwt_ttl &&
      name == o.name &&
      product_type == o.product_type &&
      token == o.token &&
      uid_token == o.uid_token &&
      unique_identifier == o.unique_identifier
end

#_to_hash(value) ⇒ Hash

Outputs non-array value in the form of hash For object, use to_hash. Otherwise, just return the value

Parameters:

  • value (Object)

    Any valid value

Returns:

  • (Hash)

    Returns the value in the form of hash



500
501
502
503
504
505
506
507
508
509
510
511
512
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 500

def _to_hash(value)
  if value.is_a?(Array)
    value.compact.map { |v| _to_hash(v) }
  elsif value.is_a?(Hash)
    {}.tap do |hash|
      value.each { |k, v| hash[k] = _to_hash(v) }
    end
  elsif value.respond_to? :to_hash
    value.to_hash
  else
    value
  end
end

#eql?(o) ⇒ Boolean

Parameters:

  • Object (Object)

    to be compared

Returns:

  • (Boolean)

See Also:

  • `==` method


392
393
394
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 392

def eql?(o)
  self == o
end

#hashInteger

Calculates hash code according to all attributes.

Returns:

  • (Integer)

    Hash code



398
399
400
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 398

def hash
  [access_expires, audience, audit_logs_claims, bound_group_id, bound_ips, bound_providers, bound_resource_id, bound_resource_names, bound_resource_types, bound_rg_id, bound_spid, bound_sub_id, bound_tenant_id, delete_protection, description, force_sub_claims, gw_bound_ips, issuer, json, jwks_uri, jwt_ttl, name, product_type, token, uid_token, unique_identifier].hash
end

#list_invalid_propertiesObject

Show invalid properties with the reasons. Usually used together with valid?

Returns:

  • Array for valid properties with the reasons



334
335
336
337
338
339
340
341
342
343
344
345
346
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 334

def list_invalid_properties
  warn '[DEPRECATED] the `list_invalid_properties` method is obsolete'
  invalid_properties = Array.new
  if @bound_tenant_id.nil?
    invalid_properties.push('invalid value for "bound_tenant_id", bound_tenant_id cannot be nil.')
  end

  if @name.nil?
    invalid_properties.push('invalid value for "name", name cannot be nil.')
  end

  invalid_properties
end

#to_bodyHash

to_body is an alias to to_hash (backward compatibility)

Returns:

  • (Hash)

    Returns the object in the form of hash



476
477
478
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 476

def to_body
  to_hash
end

#to_hashHash

Returns the object in the form of hash

Returns:

  • (Hash)

    Returns the object in the form of hash



482
483
484
485
486
487
488
489
490
491
492
493
494
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 482

def to_hash
  hash = {}
  self.class.attribute_map.each_pair do |attr, param|
    value = self.send(attr)
    if value.nil?
      is_nullable = self.class.openapi_nullable.include?(attr)
      next if !is_nullable || (is_nullable && !instance_variable_defined?(:"@#{attr}"))
    end

    hash[param] = _to_hash(value)
  end
  hash
end

#to_sString

Returns the string representation of the object

Returns:

  • (String)

    String presentation of the object



470
471
472
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 470

def to_s
  to_hash.to_s
end

#valid?Boolean

Check to see if the all the properties in the model are valid

Returns:

  • (Boolean)

    true if the model is valid



350
351
352
353
354
355
# File 'lib/akeyless/models/create_auth_method_azure_ad.rb', line 350

def valid?
  warn '[DEPRECATED] the `valid?` method is obsolete'
  return false if @bound_tenant_id.nil?
  return false if @name.nil?
  true
end