chore: regenerate networksecurity client (googleapis#28186)

Generated in GitHub action: https://togithub.com/googleapis/googleapis/google-api-java-client-services/actions/workflows/codegen.yaml

Author: yoshi-code-bot

clients/google-api-services-networksecurity/v1beta1/2.0.0/README.md

@@ -22,7 +22,7 @@ Add the following lines to your `pom.xml` file:
     <dependency>
       <groupId>com.google.apis</groupId>
       <artifactId>google-api-services-networksecurity</artifactId>
-      <version>v1beta1-rev20250608-2.0.0</version>
+      <version>v1beta1-rev20250714-2.0.0</version>
     </dependency>
   </dependencies>
 </project>
@@ -35,7 +35,7 @@ repositories {
   mavenCentral()
 }
 dependencies {
-  implementation 'com.google.apis:google-api-services-networksecurity:v1beta1-rev20250608-2.0.0'
+  implementation 'com.google.apis:google-api-services-networksecurity:v1beta1-rev20250714-2.0.0'
 }
 ```
 

clients/google-api-services-networksecurity/v1beta1/2.0.0/com/google/api/services/networksecurity/v1beta1/NetworkSecurity.java

@@ -12080,7 +12080,7 @@ public List set(String parameterName, Object value) {
          * optional parameters, call the {@link Patch#execute()} method to invoke the remote operation.
          *
          * @param name Required. Name of the ClientTlsPolicy resource. It matches the pattern
-         *        `projects/locations/{location}/clientTlsPolicies/{client_tls_policy}`
+         *        `projects/{project}/locations/{location}/clientTlsPolicies/{client_tls_policy}`
          * @param content the {@link com.google.api.services.networksecurity.v1beta1.model.ClientTlsPolicy}
          * @return the request
          */
@@ -12109,7 +12109,7 @@ public class Patch extends NetworkSecurityRequest<com.google.api.services.networ
            * be called to initialize this instance immediately after invoking the constructor. </p>
            *
            * @param name Required. Name of the ClientTlsPolicy resource. It matches the pattern
-         *        `projects/locations/{location}/clientTlsPolicies/{client_tls_policy}`
+         *        `projects/{project}/locations/{location}/clientTlsPolicies/{client_tls_policy}`
            * @param content the {@link com.google.api.services.networksecurity.v1beta1.model.ClientTlsPolicy}
            * @since 1.13
            */
@@ -12180,21 +12180,21 @@ public Patch setUploadProtocol(java.lang.String uploadProtocol) {
 
           /**
            * Required. Name of the ClientTlsPolicy resource. It matches the pattern
-           * `projects/locations/{location}/clientTlsPolicies/{client_tls_policy}`
+           * `projects/{project}/locations/{location}/clientTlsPolicies/{client_tls_policy}`
            */
           @com.google.api.client.util.Key
           private java.lang.String name;
 
           /** Required. Name of the ClientTlsPolicy resource. It matches the pattern
-         `projects/locations/{location}/clientTlsPolicies/{client_tls_policy}`
+         `projects/{project}/locations/{location}/clientTlsPolicies/{client_tls_policy}`
            */
           public java.lang.String getName() {
             return name;
           }
 
           /**
            * Required. Name of the ClientTlsPolicy resource. It matches the pattern
-           * `projects/locations/{location}/clientTlsPolicies/{client_tls_policy}`
+           * `projects/{project}/locations/{location}/clientTlsPolicies/{client_tls_policy}`
            */
           public Patch setName(java.lang.String name) {
             if (!getSuppressPatternChecks()) {

clients/google-api-services-networksecurity/v1beta1/2.0.0/com/google/api/services/networksecurity/v1beta1/model/AuthzPolicyAuthzRuleFromRequestSource.java

@@ -30,13 +30,24 @@
 public final class AuthzPolicyAuthzRuleFromRequestSource extends com.google.api.client.json.GenericJson {
 
   /**
-   * Optional. A list of IPs or CIDRs to match against the source IP of a request. Limited to 5
-   * ip_blocks.
+   * Optional. A list of IP addresses or IP address ranges to match against the source IP address of
+   * the request. Limited to 5 ip_blocks.
    * The value may be {@code null}.
    */
   @com.google.api.client.util.Key
   private java.util.List<AuthzPolicyAuthzRuleIpBlock> ipBlocks;
 
+  /**
+   * Optional. A list of identities derived from the client's certificate. This field will not match
+   * on a request unless frontend mutual TLS is enabled for the forwarding rule or Gateway and the
+   * client certificate has been successfully validated by mTLS. Each identity is a string whose
+   * value is matched against a list of URI SANs, DNS Name SANs, or the common name in the client's
+   * certificate. A match happens when any principal matches with the rule. Limited to 5 principals.
+   * The value may be {@code null}.
+   */
+  @com.google.api.client.util.Key
+  private java.util.List<AuthzPolicyAuthzRulePrincipal> principals;
+
   /**
    * Optional. A list of resources to match against the resource of the source VM of a request.
    * Limited to 5 resources.
@@ -46,24 +57,49 @@ public final class AuthzPolicyAuthzRuleFromRequestSource extends com.google.api.
   private java.util.List<AuthzPolicyAuthzRuleRequestResource> resources;
 
   /**
-   * Optional. A list of IPs or CIDRs to match against the source IP of a request. Limited to 5
-   * ip_blocks.
+   * Optional. A list of IP addresses or IP address ranges to match against the source IP address of
+   * the request. Limited to 5 ip_blocks.
    * @return value or {@code null} for none
    */
   public java.util.List<AuthzPolicyAuthzRuleIpBlock> getIpBlocks() {
     return ipBlocks;
   }
 
   /**
-   * Optional. A list of IPs or CIDRs to match against the source IP of a request. Limited to 5
-   * ip_blocks.
+   * Optional. A list of IP addresses or IP address ranges to match against the source IP address of
+   * the request. Limited to 5 ip_blocks.
    * @param ipBlocks ipBlocks or {@code null} for none
    */
   public AuthzPolicyAuthzRuleFromRequestSource setIpBlocks(java.util.List<AuthzPolicyAuthzRuleIpBlock> ipBlocks) {
     this.ipBlocks = ipBlocks;
     return this;
   }
 
+  /**
+   * Optional. A list of identities derived from the client's certificate. This field will not match
+   * on a request unless frontend mutual TLS is enabled for the forwarding rule or Gateway and the
+   * client certificate has been successfully validated by mTLS. Each identity is a string whose
+   * value is matched against a list of URI SANs, DNS Name SANs, or the common name in the client's
+   * certificate. A match happens when any principal matches with the rule. Limited to 5 principals.
+   * @return value or {@code null} for none
+   */
+  public java.util.List<AuthzPolicyAuthzRulePrincipal> getPrincipals() {
+    return principals;
+  }
+
+  /**
+   * Optional. A list of identities derived from the client's certificate. This field will not match
+   * on a request unless frontend mutual TLS is enabled for the forwarding rule or Gateway and the
+   * client certificate has been successfully validated by mTLS. Each identity is a string whose
+   * value is matched against a list of URI SANs, DNS Name SANs, or the common name in the client's
+   * certificate. A match happens when any principal matches with the rule. Limited to 5 principals.
+   * @param principals principals or {@code null} for none
+   */
+  public AuthzPolicyAuthzRuleFromRequestSource setPrincipals(java.util.List<AuthzPolicyAuthzRulePrincipal> principals) {
+    this.principals = principals;
+    return this;
+  }
+
   /**
    * Optional. A list of resources to match against the resource of the source VM of a request.
    * Limited to 5 resources.

clients/google-api-services-networksecurity/v1beta1/2.0.0/com/google/api/services/networksecurity/v1beta1/model/AuthzPolicyAuthzRulePrincipal.java

@@ -0,0 +1,99 @@
+/*
+ * Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License. You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software distributed under the License
+ * is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express
+ * or implied. See the License for the specific language governing permissions and limitations under
+ * the License.
+ */
+/*
+ * This code was generated by https://github.com/googleapis/google-api-java-client-services/
+ * Modify at your own risk.
+ */
+
+package com.google.api.services.networksecurity.v1beta1.model;
+
+/**
+ * Describes the properties of a principal to be matched against.
+ *
+ * <p> This is the Java data model class that specifies how to parse/serialize into the JSON that is
+ * transmitted over HTTP when working with the Network Security API. For a detailed explanation see:
+ * <a href="https://developers.google.com/api-client-library/java/google-http-java-client/json">https://developers.google.com/api-client-library/java/google-http-java-client/json</a>
+ * </p>
+ *
+ * @author Google, Inc.
+ */
+@SuppressWarnings("javadoc")
+public final class AuthzPolicyAuthzRulePrincipal extends com.google.api.client.json.GenericJson {
+
+  /**
+   * Required. A non-empty string whose value is matched against the principal value based on the
+   * principal_selector. Only exact match can be applied for CLIENT_CERT_URI_SAN,
+   * CLIENT_CERT_DNS_NAME_SAN, CLIENT_CERT_COMMON_NAME selectors.
+   * The value may be {@code null}.
+   */
+  @com.google.api.client.util.Key
+  private AuthzPolicyAuthzRuleStringMatch principal;
+
+  /**
+   * Optional. An enum to decide what principal value the principal rule will match against. If not
+   * specified, the PrincipalSelector is CLIENT_CERT_URI_SAN.
+   * The value may be {@code null}.
+   */
+  @com.google.api.client.util.Key
+  private java.lang.String principalSelector;
+
+  /**
+   * Required. A non-empty string whose value is matched against the principal value based on the
+   * principal_selector. Only exact match can be applied for CLIENT_CERT_URI_SAN,
+   * CLIENT_CERT_DNS_NAME_SAN, CLIENT_CERT_COMMON_NAME selectors.
+   * @return value or {@code null} for none
+   */
+  public AuthzPolicyAuthzRuleStringMatch getPrincipal() {
+    return principal;
+  }
+
+  /**
+   * Required. A non-empty string whose value is matched against the principal value based on the
+   * principal_selector. Only exact match can be applied for CLIENT_CERT_URI_SAN,
+   * CLIENT_CERT_DNS_NAME_SAN, CLIENT_CERT_COMMON_NAME selectors.
+   * @param principal principal or {@code null} for none
+   */
+  public AuthzPolicyAuthzRulePrincipal setPrincipal(AuthzPolicyAuthzRuleStringMatch principal) {
+    this.principal = principal;
+    return this;
+  }
+
+  /**
+   * Optional. An enum to decide what principal value the principal rule will match against. If not
+   * specified, the PrincipalSelector is CLIENT_CERT_URI_SAN.
+   * @return value or {@code null} for none
+   */
+  public java.lang.String getPrincipalSelector() {
+    return principalSelector;
+  }
+
+  /**
+   * Optional. An enum to decide what principal value the principal rule will match against. If not
+   * specified, the PrincipalSelector is CLIENT_CERT_URI_SAN.
+   * @param principalSelector principalSelector or {@code null} for none
+   */
+  public AuthzPolicyAuthzRulePrincipal setPrincipalSelector(java.lang.String principalSelector) {
+    this.principalSelector = principalSelector;
+    return this;
+  }
+
+  @Override
+  public AuthzPolicyAuthzRulePrincipal set(String fieldName, Object value) {
+    return (AuthzPolicyAuthzRulePrincipal) super.set(fieldName, value);
+  }
+
+  @Override
+  public AuthzPolicyAuthzRulePrincipal clone() {
+    return (AuthzPolicyAuthzRulePrincipal) super.clone();
+  }
+
+}

clients/google-api-services-networksecurity/v1beta1/2.0.0/com/google/api/services/networksecurity/v1beta1/model/BackendAuthenticationConfig.java

@@ -23,7 +23,7 @@
  * should trust backend server certificates that are issued by public certificate authorities, in
  * addition to certificates trusted by the TrustConfig. * `clientCertificate` is a client
  * certificate that the load balancer uses to express its identity to the backend, if the connection
- * to the backend uses mTLS. You can attach the BackendAuthenticationConfig to the load balancer’s
+ * to the backend uses mTLS. You can attach the BackendAuthenticationConfig to the load balancer's
  * BackendService directly determining how that BackendService negotiates TLS.
  *
  * <p> This is the Java data model class that specifies how to parse/serialize into the JSON that is

clients/google-api-services-networksecurity/v1beta1/2.0.0/com/google/api/services/networksecurity/v1beta1/model/ClientTlsPolicy.java

@@ -62,7 +62,7 @@ public final class ClientTlsPolicy extends com.google.api.client.json.GenericJso
 
   /**
    * Required. Name of the ClientTlsPolicy resource. It matches the pattern
-   * `projects/locations/{location}/clientTlsPolicies/{client_tls_policy}`
+   * `projects/{project}/locations/{location}/clientTlsPolicies/{client_tls_policy}`
    * The value may be {@code null}.
    */
   @com.google.api.client.util.Key
@@ -163,7 +163,7 @@ public ClientTlsPolicy setLabels(java.util.Map<String, java.lang.String> labels)
 
   /**
    * Required. Name of the ClientTlsPolicy resource. It matches the pattern
-   * `projects/locations/{location}/clientTlsPolicies/{client_tls_policy}`
+   * `projects/{project}/locations/{location}/clientTlsPolicies/{client_tls_policy}`
    * @return value or {@code null} for none
    */
   public java.lang.String getName() {
@@ -172,7 +172,7 @@ public java.lang.String getName() {
 
   /**
    * Required. Name of the ClientTlsPolicy resource. It matches the pattern
-   * `projects/locations/{location}/clientTlsPolicies/{client_tls_policy}`
+   * `projects/{project}/locations/{location}/clientTlsPolicies/{client_tls_policy}`
    * @param name name or {@code null} for none
    */
   public ClientTlsPolicy setName(java.lang.String name) {

clients/google-api-services-networksecurity/v1beta1/2.0.0/pom.xml

@@ -8,8 +8,8 @@
 
   <groupId>com.google.apis</groupId>
   <artifactId>google-api-services-networksecurity</artifactId>
-  <version>v1beta1-rev20250608-2.0.0</version>
-  <name>Network Security API v1beta1-rev20250608-2.0.0</name>
+  <version>v1beta1-rev20250714-2.0.0</version>
+  <name>Network Security API v1beta1-rev20250714-2.0.0</name>
   <packaging>jar</packaging>
 
   <inceptionYear>2011</inceptionYear>

clients/google-api-services-networksecurity/v1beta1/README.md

@@ -22,7 +22,7 @@ Add the following lines to your `pom.xml` file:
     <dependency>
       <groupId>com.google.apis</groupId>
       <artifactId>google-api-services-networksecurity</artifactId>
-      <version>v1beta1-rev20250608-2.0.0</version>
+      <version>v1beta1-rev20250714-2.0.0</version>
     </dependency>
   </dependencies>
 </project>
@@ -35,7 +35,7 @@ repositories {
   mavenCentral()
 }
 dependencies {
-  implementation 'com.google.apis:google-api-services-networksecurity:v1beta1-rev20250608-2.0.0'
+  implementation 'com.google.apis:google-api-services-networksecurity:v1beta1-rev20250714-2.0.0'
 }
 ```