Skip to main content

AuthMethodUpdateGcp

akeyless_api::models::auth_method_update_gcp

Struct AuthMethodUpdateGcp 

Source 
pub struct AuthMethodUpdateGcp {
Show 25 fields
    pub access_expires: Option<i64>,
    pub allowed_client_type: Option<Vec<String>>,
    pub audience: String,
    pub audit_logs_claims: Option<Vec<String>>,
    pub bound_ips: Option<Vec<String>>,
    pub bound_labels: Option<Vec<String>>,
    pub bound_projects: Option<Vec<String>>,
    pub bound_regions: Option<Vec<String>>,
    pub bound_service_accounts: Option<Vec<String>>,
    pub bound_zones: Option<Vec<String>>,
    pub delete_protection: Option<String>,
    pub description: Option<String>,
    pub expiration_event_in: Option<Vec<String>>,
    pub force_sub_claims: Option<bool>,
    pub gw_bound_ips: Option<Vec<String>>,
    pub json: Option<bool>,
    pub jwt_ttl: Option<i64>,
    pub name: String,
    pub new_name: Option<String>,
    pub product_type: Option<Vec<String>>,
    pub service_account_creds_data: Option<String>,
    pub token: Option<String>,
    pub type: String,
    pub uid_token: Option<String>,
    pub unique_identifier: Option<String>,

}
Expand description

AuthMethodUpdateGcp : authMethodUpdateGcp is a command that updates a new auth method that will be able to authenticate using GCP IAM Service Account credentials or GCE instance credentials.

Fields§

§access_expires: Option<i64>

Access expiration date in Unix timestamp (select 0 for access without expiry date)

§allowed_client_type: Option<Vec<String>>

limit the auth method usage for specific client types [cli,ui,gateway-admin,sdk,mobile,extension]

§audience: String

The audience to verify in the JWT received by the client

§audit_logs_claims: Option<Vec<String>>

Subclaims to include in audit logs, e.g "–audit-logs-claims email –audit-logs-claims username"

§bound_ips: Option<Vec<String>>

A CIDR whitelist with the IPs that the access is restricted to

§bound_labels: Option<Vec<String>>

A comma-separated list of GCP labels formatted as "key:value" strings that must be set on authorized GCE instances. TODO: Because GCP labels are not currently ACL’d ….

§bound_projects: Option<Vec<String>>

=== Human and Machine authentication section === Array of GCP project IDs. Only entities belonging to any of the provided projects can authenticate.

§bound_regions: Option<Vec<String>>

List of regions that a GCE instance must belong to in order to be authenticated. TODO: If bound_instance_groups is provided, it is assumed to be a regional group and the group must belong to this region. If bound_zones are provided, this attribute is ignored.

§bound_service_accounts: Option<Vec<String>>

List of service accounts the service account must be part of in order to be authenticated.

§bound_zones: Option<Vec<String>>

=== Machine authentication section === List of zones that a GCE instance must belong to in order to be authenticated. TODO: If bound_instance_groups is provided, it is assumed to be a zonal group and the group must belong to this zone.

§delete_protection: Option<String>

Protection from accidental deletion of this object [true/false]

§description: Option<String>

Auth Method description

§expiration_event_in: Option<Vec<String>>

How many days before the expiration of the auth method would you like to be notified.

§force_sub_claims: Option<bool>

if true: enforce role-association must include sub claims

§gw_bound_ips: Option<Vec<String>>

A CIDR whitelist with the GW IPs that the access is restricted to

§json: Option<bool>

Set output format to JSON

§jwt_ttl: Option<i64>

Jwt TTL

§name: String

Auth Method name

§new_name: Option<String>

Auth Method new name

§product_type: Option<Vec<String>>

Choose the relevant product type for the auth method [sm, sra, pm, dp, ca]

§service_account_creds_data: Option<String>

ServiceAccount credentials data instead of giving a file path, base64 encoded

§token: Option<String>

Authentication token (see /auth and /configure)

§type: String

Type of the GCP Access Rules

§uid_token: Option<String>

The universal identity token, Required only for universal_identity authentication

§unique_identifier: Option<String>

A unique identifier (ID) value which is a "sub claim" name that contains details uniquely identifying that resource. This "sub claim" is used to distinguish between different identities.

Implementations§

Source§

impl AuthMethodUpdateGcp

Source

pub fn new(audience: String, name: String, type: String) -> AuthMethodUpdateGcp

authMethodUpdateGcp is a command that updates a new auth method that will be able to authenticate using GCP IAM Service Account credentials or GCE instance credentials.

Trait Implementations§

Source§

impl Clone for AuthMethodUpdateGcp

Source§

fn clone(&self) -> AuthMethodUpdateGcp

Returns a duplicate of the value. Read more
1.0.0 (const: unstable) · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for AuthMethodUpdateGcp

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl Default for AuthMethodUpdateGcp

Source§

fn default() -> AuthMethodUpdateGcp

Returns the “default value” for a type. Read more
Source§

impl<'de> Deserialize<'de> for AuthMethodUpdateGcp

Source§

fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>
where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer. Read more
Source§

impl PartialEq for AuthMethodUpdateGcp

Source§

fn eq(&self, other: &AuthMethodUpdateGcp) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 (const: unstable) · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
Source§

impl Serialize for AuthMethodUpdateGcp

Source§

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>
where __S: Serializer,

Serialize this value into the given Serde serializer. Read more
Source§

impl StructuralPartialEq for AuthMethodUpdateGcp

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> DeserializeOwned for T
where T: for<'de> Deserialize<'de>,

Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> PolicyExt for T
where T: ?Sized,

Source§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Sized + Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow only if self and other return Action::Follow. Read more
Source§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Sized + Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow if either self or other returns Action::Follow. Read more
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more