Document new resource_collection and is_security_command_center_enabled fields in GCP APIs (#1804)

Co-authored-by: ci.datadog-api-spec <[email protected]>
Co-authored-by: api-clients-generation-pipeline[bot] <54105614+api-clients-generation-pipeline[bot]@users.noreply.github.com>

Author: api-clients-generation-pipeline[bot]

.apigentools-info

@@ -4,13 +4,13 @@
     "spec_versions": {
         "v1": {
             "apigentools_version": "1.6.6",
-            "regenerated": "2023-12-14 10:49:25.707098",
-            "spec_repo_commit": "43a99a56"
+            "regenerated": "2023-12-14 17:13:00.567226",
+            "spec_repo_commit": "fd0b0fcb"
         },
         "v2": {
             "apigentools_version": "1.6.6",
-            "regenerated": "2023-12-14 10:49:25.793558",
-            "spec_repo_commit": "43a99a56"
+            "regenerated": "2023-12-14 17:13:00.585680",
+            "spec_repo_commit": "fd0b0fcb"
         }
     }
 }

.generator/schemas/v1/openapi.yaml

@@ -3212,8 +3212,16 @@ components:
           type: string
         is_cspm_enabled:
           default: false
-          description: When enabled, Datadog performs configuration checks across
-            your Google Cloud environment by continuously scanning every resource.
+          description: 'When enabled, Datadog will activate the Cloud Security Monitoring
+            product for this service account. Note: This requires resource_collection_enabled
+            to be set to true.'
+          example: true
+          type: boolean
+        is_security_command_center_enabled:
+          default: false
+          description: 'When enabled, Datadog will attempt to collect Security Command
+            Center Findings. Note: This requires additional permissions on the service
+            account.'
           example: true
           type: boolean
         private_key:
@@ -3229,6 +3237,11 @@ components:
             key.
           example: datadog-apitest
           type: string
+        resource_collection_enabled:
+          default: false
+          description: When enabled, Datadog scans for all resources in your GCP environment.
+          example: true
+          type: boolean
         token_uri:
           description: Should be `https://accounts.google.com/o/oauth2/token`.
           example: https://accounts.google.com/o/oauth2/token

.generator/schemas/v2/openapi.yaml

@@ -6393,8 +6393,20 @@ components:
             type: string
           type: array
         is_cspm_enabled:
-          description: When enabled, Datadog performs configuration checks across
-            your Google Cloud environment by continuously scanning every resource.
+          description: 'When enabled, Datadog will activate the Cloud Security Monitoring
+            product for this service account. Note: This requires resource_collection_enabled
+            to be set to true.'
+          type: boolean
+        is_security_command_center_enabled:
+          default: false
+          description: 'When enabled, Datadog will attempt to collect Security Command
+            Center Findings. Note: This requires additional permissions on the service
+            account.'
+          example: true
+          type: boolean
+        resource_collection_enabled:
+          default: false
+          description: When enabled, Datadog scans for all resources in your GCP environment.
           type: boolean
       type: object
     GCPSTSServiceAccountCreateRequest:

examples/v1/gcp-integration/CreateGCPIntegration.py

@@ -17,9 +17,11 @@
     ],
     host_filters="key:value,filter:example",
     is_cspm_enabled=True,
+    is_security_command_center_enabled=True,
     private_key="private_key",
     private_key_id="123456789abcdefghi123456789abcdefghijklm",
     project_id="datadog-apitest",
+    resource_collection_enabled=True,
     token_uri="https://accounts.google.com/o/oauth2/token",
     type="service_account",
 )

examples/v1/gcp-integration/DeleteGCPIntegration.py

@@ -17,9 +17,11 @@
     ],
     host_filters="key:value,filter:example",
     is_cspm_enabled=True,
+    is_security_command_center_enabled=True,
     private_key="private_key",
     private_key_id="123456789abcdefghi123456789abcdefghijklm",
     project_id="datadog-apitest",
+    resource_collection_enabled=True,
     token_uri="https://accounts.google.com/o/oauth2/token",
     type="service_account",
 )

examples/v1/gcp-integration/UpdateGCPIntegration.py

@@ -17,9 +17,11 @@
     ],
     host_filters="key:value,filter:example",
     is_cspm_enabled=True,
+    is_security_command_center_enabled=True,
     private_key="private_key",
     private_key_id="123456789abcdefghi123456789abcdefghijklm",
     project_id="datadog-apitest",
+    resource_collection_enabled=True,
     token_uri="https://accounts.google.com/o/oauth2/token",
     type="service_account",
 )

examples/v2/gcp-integration/CreateGCPSTSAccount_130557025.py

@@ -0,0 +1,28 @@
+"""
+Create a new entry for your service account with resource collection enabled returns "OK" response
+"""
+
+from datadog_api_client import ApiClient, Configuration
+from datadog_api_client.v2.api.gcp_integration_api import GCPIntegrationApi
+from datadog_api_client.v2.model.gcp_service_account_type import GCPServiceAccountType
+from datadog_api_client.v2.model.gcpsts_service_account_attributes import GCPSTSServiceAccountAttributes
+from datadog_api_client.v2.model.gcpsts_service_account_create_request import GCPSTSServiceAccountCreateRequest
+from datadog_api_client.v2.model.gcpsts_service_account_data import GCPSTSServiceAccountData
+
+body = GCPSTSServiceAccountCreateRequest(
+    data=GCPSTSServiceAccountData(
+        attributes=GCPSTSServiceAccountAttributes(
+            resource_collection_enabled=True,
+            client_email="[email protected]",
+            host_filters=[],
+        ),
+        type=GCPServiceAccountType.GCP_SERVICE_ACCOUNT,
+    ),
+)
+
+configuration = Configuration()
+with ApiClient(configuration) as api_client:
+    api_instance = GCPIntegrationApi(api_client)
+    response = api_instance.create_gcpsts_account(body=body)
+
+    print(response)

examples/v2/gcp-integration/CreateGCPSTSAccount_2597004741.py

@@ -0,0 +1,28 @@
+"""
+Create a new entry for your service account with security command center enabled returns "OK" response
+"""
+
+from datadog_api_client import ApiClient, Configuration
+from datadog_api_client.v2.api.gcp_integration_api import GCPIntegrationApi
+from datadog_api_client.v2.model.gcp_service_account_type import GCPServiceAccountType
+from datadog_api_client.v2.model.gcpsts_service_account_attributes import GCPSTSServiceAccountAttributes
+from datadog_api_client.v2.model.gcpsts_service_account_create_request import GCPSTSServiceAccountCreateRequest
+from datadog_api_client.v2.model.gcpsts_service_account_data import GCPSTSServiceAccountData
+
+body = GCPSTSServiceAccountCreateRequest(
+    data=GCPSTSServiceAccountData(
+        attributes=GCPSTSServiceAccountAttributes(
+            is_security_command_center_enabled=True,
+            client_email="[email protected]",
+            host_filters=[],
+        ),
+        type=GCPServiceAccountType.GCP_SERVICE_ACCOUNT,
+    ),
+)
+
+configuration = Configuration()
+with ApiClient(configuration) as api_client:
+    api_instance = GCPIntegrationApi(api_client)
+    response = api_instance.create_gcpsts_account(body=body)
+
+    print(response)

examples/v2/gcp-integration/CreateGCPSTSAccount_4235664992.py

@@ -0,0 +1,28 @@
+"""
+Create a new entry for your service account with cspm enabled returns "OK" response
+"""
+
+from datadog_api_client import ApiClient, Configuration
+from datadog_api_client.v2.api.gcp_integration_api import GCPIntegrationApi
+from datadog_api_client.v2.model.gcp_service_account_type import GCPServiceAccountType
+from datadog_api_client.v2.model.gcpsts_service_account_attributes import GCPSTSServiceAccountAttributes
+from datadog_api_client.v2.model.gcpsts_service_account_create_request import GCPSTSServiceAccountCreateRequest
+from datadog_api_client.v2.model.gcpsts_service_account_data import GCPSTSServiceAccountData
+
+body = GCPSTSServiceAccountCreateRequest(
+    data=GCPSTSServiceAccountData(
+        attributes=GCPSTSServiceAccountAttributes(
+            is_cspm_enabled=True,
+            client_email="[email protected]",
+            host_filters=[],
+        ),
+        type=GCPServiceAccountType.GCP_SERVICE_ACCOUNT,
+    ),
+)
+
+configuration = Configuration()
+with ApiClient(configuration) as api_client:
+    api_instance = GCPIntegrationApi(api_client)
+    response = api_instance.create_gcpsts_account(body=body)
+
+    print(response)

examples/v2/gcp-integration/UpdateGCPSTSAccount_3205636354.py

@@ -0,0 +1,32 @@
+"""
+Update STS Service Account returns "OK" response with enable resource collection turned on
+"""
+
+from os import environ
+from datadog_api_client import ApiClient, Configuration
+from datadog_api_client.v2.api.gcp_integration_api import GCPIntegrationApi
+from datadog_api_client.v2.model.gcp_service_account_type import GCPServiceAccountType
+from datadog_api_client.v2.model.gcpsts_service_account_attributes import GCPSTSServiceAccountAttributes
+from datadog_api_client.v2.model.gcpsts_service_account_update_request import GCPSTSServiceAccountUpdateRequest
+from datadog_api_client.v2.model.gcpsts_service_account_update_request_data import GCPSTSServiceAccountUpdateRequestData
+
+# there is a valid "gcp_sts_account" in the system
+GCP_STS_ACCOUNT_DATA_ID = environ["GCP_STS_ACCOUNT_DATA_ID"]
+
+body = GCPSTSServiceAccountUpdateRequest(
+    data=GCPSTSServiceAccountUpdateRequestData(
+        attributes=GCPSTSServiceAccountAttributes(
+            client_email="[email protected]",
+            resource_collection_enabled=True,
+        ),
+        id=GCP_STS_ACCOUNT_DATA_ID,
+        type=GCPServiceAccountType.GCP_SERVICE_ACCOUNT,
+    ),
+)
+
+configuration = Configuration()
+with ApiClient(configuration) as api_client:
+    api_instance = GCPIntegrationApi(api_client)
+    response = api_instance.update_gcpsts_account(account_id=GCP_STS_ACCOUNT_DATA_ID, body=body)
+
+    print(response)