ci(prod): Release OpenAPI Spec V1 🚀. See https://github.com/mongodb/openapi/actions/runs/17328660840.

github-actions[bot] · github-actions[bot] · commit 8e961bc06c08 · 2025-08-29T16:06:08.000Z
diff --git a/openapi/v1-deprecated/v1.json b/openapi/v1-deprecated/v1.json
@@ -8243,6 +8243,17 @@
           },
           "propertyName": "providerName"
         },
+        "oneOf": [
+          {
+            "$ref": "#/components/schemas/CloudProviderAccessAWSIAMRole"
+          },
+          {
+            "$ref": "#/components/schemas/CloudProviderAccessAzureServicePrincipal"
+          },
+          {
+            "$ref": "#/components/schemas/CloudProviderAccessGCPServiceAccount"
+          }
+        ],
         "properties": {
           "providerName": {
             "description": "Human-readable label that identifies the cloud provider of the role.",
@@ -50050,7 +50061,7 @@
               }
             }
           },
-          "description": "Required parameters depend on whether someone has enabled Encryption at Rest using Customer Key Management:\n\nIf you have enabled Encryption at Rest using Customer Key Management (CMK), Atlas requires all of the parameters for the desired encryption provider.\n\n- To use AWS Key Management Service (KMS), MongoDB Cloud requires all the fields in the **awsKms** object.\n- To use Azure Key Vault, MongoDB Cloud requires all the fields in the **azureKeyVault** object.\n- To use Google Cloud Key Management Service (KMS), MongoDB Cloud requires all the fields in the **googleCloudKms** object.\n\nIf you enabled Encryption at Rest using Customer Key  Management, administrators can pass only the changed fields for the **awsKms**, **azureKeyVault**, or **googleCloudKms** object to update the configuration to this endpoint.",
+          "description": "Required parameters depend on whether someone has enabled Encryption at Rest using Customer Key Management:\n\nIf you have enabled Encryption at Rest using Customer Key Management (CMK), Atlas requires all of the parameters for the desired encryption provider.\n\n- To use AWS Key Management Service (KMS), MongoDB Cloud requires all the fields in the **awsKms** object.\n- To use Azure Key Vault, MongoDB Cloud requires all the fields in the **azureKeyVault** object.\n- To use Google Cloud Key Management Service (KMS), MongoDB Cloud requires all the fields in the **googleCloudKms** object For authentication, you must provide either serviceAccountKey (static credentials) or roleId (service-account–based authentication) Once roleId is configured, serviceAccountKey is no longer supported.\n\n If you enabled Encryption at Rest using Customer Key  Management, administrators can pass only the changed fields for the **awsKms**, **azureKeyVault**, or **googleCloudKms** object to update the configuration to this endpoint.",
           "required": true
         },
         "responses": {
diff --git a/openapi/v1-deprecated/v1.yaml b/openapi/v1-deprecated/v1.yaml
@@ -8968,6 +8968,17 @@
           },
           "propertyName": "providerName"
         },
+        "oneOf": [
+          {
+            "$ref": "#/components/schemas/CloudProviderAccessAWSIAMRole"
+          },
+          {
+            "$ref": "#/components/schemas/CloudProviderAccessAzureServicePrincipal"
+          },
+          {
+            "$ref": "#/components/schemas/CloudProviderAccessGCPServiceAccount"
+          }
+        ],
         "properties": {
           "providerName": {
             "description": "Human-readable label that identifies the cloud provider of the role.",
@@ -54303,7 +54314,7 @@
               }
             }
           },
-          "description": "Required parameters depend on whether someone has enabled Encryption at Rest using Customer Key Management:\n\nIf you have enabled Encryption at Rest using Customer Key Management (CMK), Atlas requires all of the parameters for the desired encryption provider.\n\n- To use AWS Key Management Service (KMS), MongoDB Cloud requires all the fields in the **awsKms** object.\n- To use Azure Key Vault, MongoDB Cloud requires all the fields in the **azureKeyVault** object.\n- To use Google Cloud Key Management Service (KMS), MongoDB Cloud requires all the fields in the **googleCloudKms** object.\n\nIf you enabled Encryption at Rest using Customer Key  Management, administrators can pass only the changed fields for the **awsKms**, **azureKeyVault**, or **googleCloudKms** object to update the configuration to this endpoint.",
+          "description": "Required parameters depend on whether someone has enabled Encryption at Rest using Customer Key Management:\n\nIf you have enabled Encryption at Rest using Customer Key Management (CMK), Atlas requires all of the parameters for the desired encryption provider.\n\n- To use AWS Key Management Service (KMS), MongoDB Cloud requires all the fields in the **awsKms** object.\n- To use Azure Key Vault, MongoDB Cloud requires all the fields in the **azureKeyVault** object.\n- To use Google Cloud Key Management Service (KMS), MongoDB Cloud requires all the fields in the **googleCloudKms** object For authentication, you must provide either serviceAccountKey (static credentials) or roleId (service-account–based authentication) Once roleId is configured, serviceAccountKey is no longer supported.\n\n If you enabled Encryption at Rest using Customer Key  Management, administrators can pass only the changed fields for the **awsKms**, **azureKeyVault**, or **googleCloudKms** object to update the configuration to this endpoint.",
           "required": true
         },
         "responses": {
