googleapis · gcf-merge-on-green · Mar 12, 2024 · Mar 12, 2024
@@ -17,7 +17,7 @@ end
 
 ## For more information
 
-Product documentation is available at [https://cloud.google.com/cloud-provider-access-management/access-approval/docs](https://cloud.google.com/cloud-provider-access-management/access-approval/docs).
+Product documentation is available at [https://cloud.google.com/assured-workloads/access-approval/docs](https://cloud.google.com/assured-workloads/access-approval/docs).
 
 Library reference documentation is published on Hexdocs at
 [https://hexdocs.pm/google_api_access_approval](https://hexdocs.pm/google_api_access_approval).
@@ -20,7 +20,7 @@ defmodule GoogleApi.AccessApproval.V1 do
   API client metadata for GoogleApi.AccessApproval.V1.
   """
 
-  @discovery_revision "20220826"
+  @discovery_revision "20240311"
 
   def discovery_revision(), do: @discovery_revision
 end
@@ -28,6 +28,9 @@ defmodule GoogleApi.AccessApproval.V1.Model.AccessApprovalSettings do
   *   `invalidKeyVersion` (*type:* `boolean()`, *default:* `nil`) - Output only. This field is read only (not settable via UpdateAccessApprovalSettings method). If the field is true, that indicates that there is some configuration issue with the active_key_version configured at this level in the resource hierarchy (e.g. it doesn't exist or the Access Approval service account doesn't have the correct permissions on it, etc.) This key version is not necessarily the effective key version at this level, as key versions are inherited top-down.
   *   `name` (*type:* `String.t`, *default:* `nil`) - The resource name of the settings. Format is one of: * "projects/{project}/accessApprovalSettings" * "folders/{folder}/accessApprovalSettings" * "organizations/{organization}/accessApprovalSettings"
   *   `notificationEmails` (*type:* `list(String.t)`, *default:* `nil`) - A list of email addresses to which notifications relating to approval requests should be sent. Notifications relating to a resource will be sent to all emails in the settings of ancestor resources of that resource. A maximum of 50 email addresses are allowed.
+  *   `notificationPubsubTopic` (*type:* `String.t`, *default:* `nil`) - Optional. A pubsub topic to which notifications relating to approval requests should be sent.
+  *   `preferNoBroadApprovalRequests` (*type:* `boolean()`, *default:* `nil`) - This preference is communicated to Google personnel when sending an approval request but can be overridden if necessary.
+  *   `preferredRequestExpirationDays` (*type:* `integer()`, *default:* `nil`) - This preference is shared with Google personnel, but can be overridden if said personnel deems necessary. The approver ultimately can set the expiration at approval time.
   """
 
   use GoogleApi.Gax.ModelBase
@@ -39,7 +42,10 @@ defmodule GoogleApi.AccessApproval.V1.Model.AccessApprovalSettings do
           :enrolledServices => list(GoogleApi.AccessApproval.V1.Model.EnrolledService.t()) | nil,
           :invalidKeyVersion => boolean() | nil,
           :name => String.t() | nil,
-          :notificationEmails => list(String.t()) | nil
+          :notificationEmails => list(String.t()) | nil,
+          :notificationPubsubTopic => String.t() | nil,
+          :preferNoBroadApprovalRequests => boolean() | nil,
+          :preferredRequestExpirationDays => integer() | nil
         }
 
   field(:activeKeyVersion)
@@ -49,6 +55,9 @@ defmodule GoogleApi.AccessApproval.V1.Model.AccessApprovalSettings do
   field(:invalidKeyVersion)
   field(:name)
   field(:notificationEmails, type: :list)
+  field(:notificationPubsubTopic)
+  field(:preferNoBroadApprovalRequests)
+  field(:preferredRequestExpirationDays)
 end
 
 defimpl Poison.Decoder, for: GoogleApi.AccessApproval.V1.Model.AccessApprovalSettings do

@@ -25,7 +25,8 @@ defmodule GoogleApi.AccessApproval.V1.Model.ApprovalRequest do
   *   `dismiss` (*type:* `GoogleApi.AccessApproval.V1.Model.DismissDecision.t`, *default:* `nil`) - The request was dismissed.
   *   `name` (*type:* `String.t`, *default:* `nil`) - The resource name of the request. Format is "{projects|folders|organizations}/{id}/approvalRequests/{approval_request}".
   *   `requestTime` (*type:* `DateTime.t`, *default:* `nil`) - The time at which approval was requested.
-  *   `requestedExpiration` (*type:* `DateTime.t`, *default:* `nil`) - The requested expiration for the approval. If the request is approved, access will be granted from the time of approval until the expiration time.
+  *   `requestedDuration` (*type:* `String.t`, *default:* `nil`) - The requested access duration.
+  *   `requestedExpiration` (*type:* `DateTime.t`, *default:* `nil`) - The original requested expiration for the approval. Calculated by adding the requested_duration to the request_time.
   *   `requestedLocations` (*type:* `GoogleApi.AccessApproval.V1.Model.AccessLocations.t`, *default:* `nil`) - The locations for which approval is being requested.
   *   `requestedReason` (*type:* `GoogleApi.AccessApproval.V1.Model.AccessReason.t`, *default:* `nil`) - The justification for which approval is being requested.
   *   `requestedResourceName` (*type:* `String.t`, *default:* `nil`) - The resource for which approval is being requested. The format of the resource name is defined at https://cloud.google.com/apis/design/resource_names. The resource name here may either be a "full" resource name (e.g. "//library.googleapis.com/shelves/shelf1/books/book2") or a "relative" resource name (e.g. "shelves/shelf1/books/book2") as described in the resource name specification.
@@ -39,6 +40,7 @@ defmodule GoogleApi.AccessApproval.V1.Model.ApprovalRequest do
           :dismiss => GoogleApi.AccessApproval.V1.Model.DismissDecision.t() | nil,
           :name => String.t() | nil,
           :requestTime => DateTime.t() | nil,
+          :requestedDuration => String.t() | nil,
           :requestedExpiration => DateTime.t() | nil,
           :requestedLocations => GoogleApi.AccessApproval.V1.Model.AccessLocations.t() | nil,
           :requestedReason => GoogleApi.AccessApproval.V1.Model.AccessReason.t() | nil,
@@ -51,6 +53,7 @@ defmodule GoogleApi.AccessApproval.V1.Model.ApprovalRequest do
   field(:dismiss, as: GoogleApi.AccessApproval.V1.Model.DismissDecision)
   field(:name)
   field(:requestTime, as: DateTime)
+  field(:requestedDuration)
   field(:requestedExpiration, as: DateTime)
   field(:requestedLocations, as: GoogleApi.AccessApproval.V1.Model.AccessLocations)
   field(:requestedReason, as: GoogleApi.AccessApproval.V1.Model.AccessReason)

@@ -21,7 +21,7 @@ defmodule GoogleApi.AccessApproval.V1.Model.EnrolledService do
 
   ## Attributes
 
-  *   `cloudProduct` (*type:* `String.t`, *default:* `nil`) - The product for which Access Approval will be enrolled. Allowed values are listed below (case-sensitive): * all * GA * App Engine * BigQuery * Cloud Bigtable * Cloud Key Management Service * Compute Engine * Cloud Dataflow * Cloud Dataproc * Cloud DLP * Cloud EKM * Cloud HSM * Cloud Identity and Access Management * Cloud Logging * Cloud Pub/Sub * Cloud Spanner * Cloud SQL * Cloud Storage * Google Kubernetes Engine * Organization Policy Serivice * Persistent Disk * Resource Manager * Secret Manager * Speaker ID Note: These values are supported as input for legacy purposes, but will not be returned from the API. * all * ga-only * appengine.googleapis.com * bigquery.googleapis.com * bigtable.googleapis.com * container.googleapis.com * cloudkms.googleapis.com * cloudresourcemanager.googleapis.com * cloudsql.googleapis.com * compute.googleapis.com * dataflow.googleapis.com * dataproc.googleapis.com * dlp.googleapis.com * iam.googleapis.com * logging.googleapis.com * orgpolicy.googleapis.com * pubsub.googleapis.com * spanner.googleapis.com * secretmanager.googleapis.com * speakerid.googleapis.com * storage.googleapis.com Calls to UpdateAccessApprovalSettings using 'all' or any of the XXX.googleapis.com will be translated to the associated product name ('all', 'App Engine', etc.). Note: 'all' will enroll the resource in all products supported at both 'GA' and 'Preview' levels. More information about levels of support is available at https://cloud.google.com/access-approval/docs/supported-services
+  *   `cloudProduct` (*type:* `String.t`, *default:* `nil`) - The product for which Access Approval will be enrolled. Allowed values are listed below (case-sensitive): * all * GA * App Engine * Artifact Registry * BigQuery * Certificate Authority Service * Cloud Bigtable * Cloud Key Management Service * Compute Engine * Cloud Composer * Cloud Dataflow * Cloud Dataproc * Cloud DLP * Cloud EKM * Cloud Firestore * Cloud HSM * Cloud Identity and Access Management * Cloud Logging * Cloud NAT * Cloud Pub/Sub * Cloud Spanner * Cloud SQL * Cloud Storage * Eventarc * Google Kubernetes Engine * Organization Policy Serivice * Persistent Disk * Resource Manager * Secret Manager * Speaker ID Note: These values are supported as input for legacy purposes, but will not be returned from the API. * all * ga-only * appengine.googleapis.com * artifactregistry.googleapis.com * bigquery.googleapis.com * bigtable.googleapis.com * container.googleapis.com * cloudkms.googleapis.com * cloudresourcemanager.googleapis.com * cloudsql.googleapis.com * compute.googleapis.com * dataflow.googleapis.com * dataproc.googleapis.com * dlp.googleapis.com * iam.googleapis.com * logging.googleapis.com * orgpolicy.googleapis.com * pubsub.googleapis.com * spanner.googleapis.com * secretmanager.googleapis.com * speakerid.googleapis.com * storage.googleapis.com Calls to UpdateAccessApprovalSettings using 'all' or any of the XXX.googleapis.com will be translated to the associated product name ('all', 'App Engine', etc.). Note: 'all' will enroll the resource in all products supported at both 'GA' and 'Preview' levels. More information about levels of support is available at https://cloud.google.com/access-approval/docs/supported-services
   *   `enrollmentLevel` (*type:* `String.t`, *default:* `nil`) - The enrollment level of the service.
   """
 

@@ -22,20 +22,26 @@ defmodule GoogleApi.AccessApproval.V1.Model.SignatureInfo do
   ## Attributes
 
   *   `customerKmsKeyVersion` (*type:* `String.t`, *default:* `nil`) - The resource name of the customer CryptoKeyVersion used for signing.
+  *   `googleKeyAlgorithm` (*type:* `String.t`, *default:* `nil`) - The hashing algorithm used for signature verification. It will only be present in the case of Google managed keys.
   *   `googlePublicKeyPem` (*type:* `String.t`, *default:* `nil`) - The public key for the Google default signing, encoded in PEM format. The signature was created using a private key which may be verified using this public key.
+  *   `serializedApprovalRequest` (*type:* `String.t`, *default:* `nil`) - The ApprovalRequest that is serialized without the SignatureInfo message field. This data is used with the hashing algorithm to generate the digital signature, and it can be used for signature verification.
   *   `signature` (*type:* `String.t`, *default:* `nil`) - The digital signature.
   """
 
   use GoogleApi.Gax.ModelBase
 
   @type t :: %__MODULE__{
           :customerKmsKeyVersion => String.t() | nil,
+          :googleKeyAlgorithm => String.t() | nil,
           :googlePublicKeyPem => String.t() | nil,
+          :serializedApprovalRequest => String.t() | nil,
           :signature => String.t() | nil
         }
 
   field(:customerKmsKeyVersion)
+  field(:googleKeyAlgorithm)
   field(:googlePublicKeyPem)
+  field(:serializedApprovalRequest)
   field(:signature)
 end
 

@@ -59,7 +59,7 @@ defmodule GoogleApi.AccessApproval.Mixfile do
       licenses: ["Apache 2.0"],
       links: %{
         "GitHub" => "https://github.com/googleapis/elixir-google-api/tree/master/clients/access_approval",
-        "Homepage" => "https://cloud.google.com/cloud-provider-access-management/access-approval/docs"
+        "Homepage" => "https://cloud.google.com/assured-workloads/access-approval/docs"
       }
     ]
   end