@@ -113,6 +113,28 @@ def update!(**args)
113
113
end
114
114
end
115
115
116
+ # LRO response metadata for InboundOidcSsoProfilesService.
117
+ # CreateInboundOidcSsoProfile.
118
+ class CreateInboundOidcSsoProfileOperationMetadata
119
+ include Google ::Apis ::Core ::Hashable
120
+
121
+ # State of this Operation Will be "awaiting-multi-party-approval" when the
122
+ # operation is deferred due to the target customer having enabled [Multi-party
123
+ # approval for sensitive actions](https://support.google.com/a/answer/13790448).
124
+ # Corresponds to the JSON property `state`
125
+ # @return [String]
126
+ attr_accessor :state
127
+
128
+ def initialize ( **args )
129
+ update! ( **args )
130
+ end
131
+
132
+ # Update properties of this object
133
+ def update! ( **args )
134
+ @state = args [ :state ] if args . key? ( :state )
135
+ end
136
+ end
137
+
116
138
# LRO response metadata for InboundSamlSsoProfilesService.
117
139
# CreateInboundSamlSsoProfile.
118
140
class CreateInboundSamlSsoProfileOperationMetadata
@@ -188,6 +210,20 @@ def update!(**args)
188
210
end
189
211
end
190
212
213
+ # LRO response metadata for InboundOidcSsoProfilesService.
214
+ # DeleteInboundOidcSsoProfile.
215
+ class DeleteInboundOidcSsoProfileOperationMetadata
216
+ include Google ::Apis ::Core ::Hashable
217
+
218
+ def initialize ( **args )
219
+ update! ( **args )
220
+ end
221
+
222
+ # Update properties of this object
223
+ def update! ( **args )
224
+ end
225
+ end
226
+
191
227
# LRO response metadata for InboundSamlSsoProfilesService.
192
228
# DeleteInboundSamlSsoProfile.
193
229
class DeleteInboundSamlSsoProfileOperationMetadata
@@ -1975,6 +2011,51 @@ def update!(**args)
1975
2011
end
1976
2012
end
1977
2013
2014
+ # An [OIDC](https://openid.net/developers/how-connect-works/) federation between
2015
+ # a Google enterprise customer and an OIDC identity provider.
2016
+ class InboundOidcSsoProfile
2017
+ include Google ::Apis ::Core ::Hashable
2018
+
2019
+ # Immutable. The customer. For example: `customers/C0123abc`.
2020
+ # Corresponds to the JSON property `customer`
2021
+ # @return [String]
2022
+ attr_accessor :customer
2023
+
2024
+ # Human-readable name of the OIDC SSO profile.
2025
+ # Corresponds to the JSON property `displayName`
2026
+ # @return [String]
2027
+ attr_accessor :display_name
2028
+
2029
+ # OIDC IDP (identity provider) configuration.
2030
+ # Corresponds to the JSON property `idpConfig`
2031
+ # @return [Google::Apis::CloudidentityV1::OidcIdpConfig]
2032
+ attr_accessor :idp_config
2033
+
2034
+ # Output only. [Resource name](https://cloud.google.com/apis/design/
2035
+ # resource_names) of the OIDC SSO profile.
2036
+ # Corresponds to the JSON property `name`
2037
+ # @return [String]
2038
+ attr_accessor :name
2039
+
2040
+ # OIDC RP (relying party) configuration.
2041
+ # Corresponds to the JSON property `rpConfig`
2042
+ # @return [Google::Apis::CloudidentityV1::OidcRpConfig]
2043
+ attr_accessor :rp_config
2044
+
2045
+ def initialize ( **args )
2046
+ update! ( **args )
2047
+ end
2048
+
2049
+ # Update properties of this object
2050
+ def update! ( **args )
2051
+ @customer = args [ :customer ] if args . key? ( :customer )
2052
+ @display_name = args [ :display_name ] if args . key? ( :display_name )
2053
+ @idp_config = args [ :idp_config ] if args . key? ( :idp_config )
2054
+ @name = args [ :name ] if args . key? ( :name )
2055
+ @rp_config = args [ :rp_config ] if args . key? ( :rp_config )
2056
+ end
2057
+ end
2058
+
1978
2059
# A [SAML 2.0](https://www.oasis-open.org/standards#samlv2.0) federation between
1979
2060
# a Google enterprise customer and a SAML identity provider.
1980
2061
class InboundSamlSsoProfile
@@ -2035,6 +2116,11 @@ class InboundSsoAssignment
2035
2116
# @return [String]
2036
2117
attr_accessor :name
2037
2118
2119
+ # Details that are applicable when `sso_mode` is set to `OIDC_SSO`.
2120
+ # Corresponds to the JSON property `oidcSsoInfo`
2121
+ # @return [Google::Apis::CloudidentityV1::OidcSsoInfo]
2122
+ attr_accessor :oidc_sso_info
2123
+
2038
2124
# Must be zero (which is the default value so it can be omitted) for assignments
2039
2125
# with `target_org_unit` set and must be greater-than-or-equal-to one for
2040
2126
# assignments with `target_group` set.
@@ -2075,6 +2161,7 @@ def initialize(**args)
2075
2161
def update! ( **args )
2076
2162
@customer = args [ :customer ] if args . key? ( :customer )
2077
2163
@name = args [ :name ] if args . key? ( :name )
2164
+ @oidc_sso_info = args [ :oidc_sso_info ] if args . key? ( :oidc_sso_info )
2078
2165
@rank = args [ :rank ] if args . key? ( :rank )
2079
2166
@saml_sso_info = args [ :saml_sso_info ] if args . key? ( :saml_sso_info )
2080
2167
@sign_in_behavior = args [ :sign_in_behavior ] if args . key? ( :sign_in_behavior )
@@ -2156,6 +2243,33 @@ def update!(**args)
2156
2243
end
2157
2244
end
2158
2245
2246
+ # Response of the InboundOidcSsoProfilesService.ListInboundOidcSsoProfiles
2247
+ # method.
2248
+ class ListInboundOidcSsoProfilesResponse
2249
+ include Google ::Apis ::Core ::Hashable
2250
+
2251
+ # List of InboundOidcSsoProfiles.
2252
+ # Corresponds to the JSON property `inboundOidcSsoProfiles`
2253
+ # @return [Array<Google::Apis::CloudidentityV1::InboundOidcSsoProfile>]
2254
+ attr_accessor :inbound_oidc_sso_profiles
2255
+
2256
+ # A token, which can be sent as `page_token` to retrieve the next page. If this
2257
+ # field is omitted, there are no subsequent pages.
2258
+ # Corresponds to the JSON property `nextPageToken`
2259
+ # @return [String]
2260
+ attr_accessor :next_page_token
2261
+
2262
+ def initialize ( **args )
2263
+ update! ( **args )
2264
+ end
2265
+
2266
+ # Update properties of this object
2267
+ def update! ( **args )
2268
+ @inbound_oidc_sso_profiles = args [ :inbound_oidc_sso_profiles ] if args . key? ( :inbound_oidc_sso_profiles )
2269
+ @next_page_token = args [ :next_page_token ] if args . key? ( :next_page_token )
2270
+ end
2271
+ end
2272
+
2159
2273
# Response of the InboundSamlSsoProfilesService.ListInboundSamlSsoProfiles
2160
2274
# method.
2161
2275
class ListInboundSamlSsoProfilesResponse
@@ -2666,6 +2780,87 @@ def update!(**args)
2666
2780
end
2667
2781
end
2668
2782
2783
+ # OIDC IDP (identity provider) configuration.
2784
+ class OidcIdpConfig
2785
+ include Google ::Apis ::Core ::Hashable
2786
+
2787
+ # The **Change Password URL** of the identity provider. Users will be sent to
2788
+ # this URL when changing their passwords at `myaccount.google.com`. This takes
2789
+ # precedence over the change password URL configured at customer-level. Must use
2790
+ # `HTTPS`.
2791
+ # Corresponds to the JSON property `changePasswordUri`
2792
+ # @return [String]
2793
+ attr_accessor :change_password_uri
2794
+
2795
+ # Required. The Issuer identifier for the IdP. Must be a URL. The discovery URL
2796
+ # will be derived from this as described in Section 4 of [the OIDC specification]
2797
+ # (https://openid.net/specs/openid-connect-discovery-1_0.html).
2798
+ # Corresponds to the JSON property `issuerUri`
2799
+ # @return [String]
2800
+ attr_accessor :issuer_uri
2801
+
2802
+ def initialize ( **args )
2803
+ update! ( **args )
2804
+ end
2805
+
2806
+ # Update properties of this object
2807
+ def update! ( **args )
2808
+ @change_password_uri = args [ :change_password_uri ] if args . key? ( :change_password_uri )
2809
+ @issuer_uri = args [ :issuer_uri ] if args . key? ( :issuer_uri )
2810
+ end
2811
+ end
2812
+
2813
+ # OIDC RP (relying party) configuration.
2814
+ class OidcRpConfig
2815
+ include Google ::Apis ::Core ::Hashable
2816
+
2817
+ # OAuth2 client ID for OIDC.
2818
+ # Corresponds to the JSON property `clientId`
2819
+ # @return [String]
2820
+ attr_accessor :client_id
2821
+
2822
+ # Input only. OAuth2 client secret for OIDC.
2823
+ # Corresponds to the JSON property `clientSecret`
2824
+ # @return [String]
2825
+ attr_accessor :client_secret
2826
+
2827
+ # Output only. The URL(s) that this client may use in authentication requests.
2828
+ # Corresponds to the JSON property `redirectUris`
2829
+ # @return [Array<String>]
2830
+ attr_accessor :redirect_uris
2831
+
2832
+ def initialize ( **args )
2833
+ update! ( **args )
2834
+ end
2835
+
2836
+ # Update properties of this object
2837
+ def update! ( **args )
2838
+ @client_id = args [ :client_id ] if args . key? ( :client_id )
2839
+ @client_secret = args [ :client_secret ] if args . key? ( :client_secret )
2840
+ @redirect_uris = args [ :redirect_uris ] if args . key? ( :redirect_uris )
2841
+ end
2842
+ end
2843
+
2844
+ # Details that are applicable when `sso_mode` is set to `OIDC_SSO`.
2845
+ class OidcSsoInfo
2846
+ include Google ::Apis ::Core ::Hashable
2847
+
2848
+ # Required. Name of the `InboundOidcSsoProfile` to use. Must be of the form `
2849
+ # inboundOidcSsoProfiles/`inbound_oidc_sso_profile``.
2850
+ # Corresponds to the JSON property `inboundOidcSsoProfile`
2851
+ # @return [String]
2852
+ attr_accessor :inbound_oidc_sso_profile
2853
+
2854
+ def initialize ( **args )
2855
+ update! ( **args )
2856
+ end
2857
+
2858
+ # Update properties of this object
2859
+ def update! ( **args )
2860
+ @inbound_oidc_sso_profile = args [ :inbound_oidc_sso_profile ] if args . key? ( :inbound_oidc_sso_profile )
2861
+ end
2862
+ end
2863
+
2669
2864
# This resource represents a long-running operation that is the result of a
2670
2865
# network API call.
2671
2866
class Operation
@@ -3239,6 +3434,28 @@ def update!(**args)
3239
3434
end
3240
3435
end
3241
3436
3437
+ # LRO response metadata for InboundOidcSsoProfilesService.
3438
+ # UpdateInboundOidcSsoProfile.
3439
+ class UpdateInboundOidcSsoProfileOperationMetadata
3440
+ include Google ::Apis ::Core ::Hashable
3441
+
3442
+ # State of this Operation Will be "awaiting-multi-party-approval" when the
3443
+ # operation is deferred due to the target customer having enabled [Multi-party
3444
+ # approval for sensitive actions](https://support.google.com/a/answer/13790448).
3445
+ # Corresponds to the JSON property `state`
3446
+ # @return [String]
3447
+ attr_accessor :state
3448
+
3449
+ def initialize ( **args )
3450
+ update! ( **args )
3451
+ end
3452
+
3453
+ # Update properties of this object
3454
+ def update! ( **args )
3455
+ @state = args [ :state ] if args . key? ( :state )
3456
+ end
3457
+ end
3458
+
3242
3459
# LRO response metadata for InboundSamlSsoProfilesService.
3243
3460
# UpdateInboundSamlSsoProfile.
3244
3461
class UpdateInboundSamlSsoProfileOperationMetadata
0 commit comments