feat(iam): update the api

yoshi-automation · yoshi-automation · commit 88ebba5edbeb · 2021-09-07T07:08:21.000Z
#### iam:v1

The following keys were added:
- resources.projects.resources.serviceAccounts.resources.keys.methods.disable (Total Keys: 12)
- resources.projects.resources.serviceAccounts.resources.keys.methods.enable (Total Keys: 12)
- schemas.DisableServiceAccountKeyRequest (Total Keys: 2)
- schemas.EnableServiceAccountKeyRequest (Total Keys: 2)
- schemas.ServiceAccountKey.properties.disabled.type (Total Keys: 1)
diff --git a/docs/dyn/iam_v1.projects.serviceAccounts.keys.html b/docs/dyn/iam_v1.projects.serviceAccounts.keys.html
@@ -83,6 +83,12 @@ <h2>Instance Methods</h2>
 <p class="toc_element">
   <code><a href="#delete">delete(name, x__xgafv=None)</a></code></p>
 <p class="firstline">Deletes a ServiceAccountKey. Deleting a service account key does not revoke short-lived credentials that have been issued based on the service account key.</p>
+<p class="toc_element">
+  <code><a href="#disable">disable(name, body=None, x__xgafv=None)</a></code></p>
+<p class="firstline">Disable a ServiceAccountKey. A disabled service account key can be enabled through EnableServiceAccountKey. The API is currently in preview phase.</p>
+<p class="toc_element">
+  <code><a href="#enable">enable(name, body=None, x__xgafv=None)</a></code></p>
+<p class="firstline">Enable a ServiceAccountKey. The API is currently in preview phase.</p>
 <p class="toc_element">
   <code><a href="#get">get(name, publicKeyType=None, x__xgafv=None)</a></code></p>
 <p class="firstline">Gets a ServiceAccountKey.</p>
@@ -121,6 +127,7 @@ <h3>Method Details</h3>
   An object of the form:
 
     { # Represents a service account key. A service account has two sets of key-pairs: user-managed, and system-managed. User-managed key-pairs can be created and deleted by users. Users are responsible for rotating these keys periodically to ensure security of their service accounts. Users retain the private key of these key-pairs, and Google retains ONLY the public key. System-managed keys are automatically rotated by Google, and are used for signing for a maximum of two weeks. The rotation process is probabilistic, and usage of the new key will gradually ramp up and down over the key&#x27;s lifetime. If you cache the public key set for a service account, we recommend that you update the cache every 15 minutes. User-managed keys can be added and removed at any time, so it is important to update the cache frequently. For Google-managed keys, Google will publish a key at least 6 hours before it is first used for signing and will keep publishing it for at least 6 hours after it was last used for signing. Public keys for all service accounts are also published at the OAuth2 Service Account API.
+  &quot;disabled&quot;: True or False, # The key status.
   &quot;keyAlgorithm&quot;: &quot;A String&quot;, # Specifies the algorithm (and possibly key size) for the key.
   &quot;keyOrigin&quot;: &quot;A String&quot;, # The key origin.
   &quot;keyType&quot;: &quot;A String&quot;, # The key type.
@@ -151,6 +158,54 @@ <h3>Method Details</h3>
 }</pre>
 </div>
 
+<div class="method">
+    <code class="details" id="disable">disable(name, body=None, x__xgafv=None)</code>
+  <pre>Disable a ServiceAccountKey. A disabled service account key can be enabled through EnableServiceAccountKey. The API is currently in preview phase.
+
+Args:
+  name: string, Required. The resource name of the service account key in the following format: `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}`. Using `-` as a wildcard for the `PROJECT_ID` will infer the project from the account. The `ACCOUNT` value can be the `email` address or the `unique_id` of the service account. (required)
+  body: object, The request body.
+    The object takes the form of:
+
+{ # The service account key disable request.
+}
+
+  x__xgafv: string, V1 error format.
+    Allowed values
+      1 - v1 error format
+      2 - v2 error format
+
+Returns:
+  An object of the form:
+
+    { # A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); } The JSON representation for `Empty` is empty JSON object `{}`.
+}</pre>
+</div>
+
+<div class="method">
+    <code class="details" id="enable">enable(name, body=None, x__xgafv=None)</code>
+  <pre>Enable a ServiceAccountKey. The API is currently in preview phase.
+
+Args:
+  name: string, Required. The resource name of the service account key in the following format: `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}`. Using `-` as a wildcard for the `PROJECT_ID` will infer the project from the account. The `ACCOUNT` value can be the `email` address or the `unique_id` of the service account. (required)
+  body: object, The request body.
+    The object takes the form of:
+
+{ # The service account key enable request.
+}
+
+  x__xgafv: string, V1 error format.
+    Allowed values
+      1 - v1 error format
+      2 - v2 error format
+
+Returns:
+  An object of the form:
+
+    { # A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); } The JSON representation for `Empty` is empty JSON object `{}`.
+}</pre>
+</div>
+
 <div class="method">
     <code class="details" id="get">get(name, publicKeyType=None, x__xgafv=None)</code>
   <pre>Gets a ServiceAccountKey.
@@ -171,6 +226,7 @@ <h3>Method Details</h3>
   An object of the form:
 
     { # Represents a service account key. A service account has two sets of key-pairs: user-managed, and system-managed. User-managed key-pairs can be created and deleted by users. Users are responsible for rotating these keys periodically to ensure security of their service accounts. Users retain the private key of these key-pairs, and Google retains ONLY the public key. System-managed keys are automatically rotated by Google, and are used for signing for a maximum of two weeks. The rotation process is probabilistic, and usage of the new key will gradually ramp up and down over the key&#x27;s lifetime. If you cache the public key set for a service account, we recommend that you update the cache every 15 minutes. User-managed keys can be added and removed at any time, so it is important to update the cache frequently. For Google-managed keys, Google will publish a key at least 6 hours before it is first used for signing and will keep publishing it for at least 6 hours after it was last used for signing. Public keys for all service accounts are also published at the OAuth2 Service Account API.
+  &quot;disabled&quot;: True or False, # The key status.
   &quot;keyAlgorithm&quot;: &quot;A String&quot;, # Specifies the algorithm (and possibly key size) for the key.
   &quot;keyOrigin&quot;: &quot;A String&quot;, # The key origin.
   &quot;keyType&quot;: &quot;A String&quot;, # The key type.
@@ -205,6 +261,7 @@ <h3>Method Details</h3>
     { # The service account keys list response.
   &quot;keys&quot;: [ # The public keys for the service account.
     { # Represents a service account key. A service account has two sets of key-pairs: user-managed, and system-managed. User-managed key-pairs can be created and deleted by users. Users are responsible for rotating these keys periodically to ensure security of their service accounts. Users retain the private key of these key-pairs, and Google retains ONLY the public key. System-managed keys are automatically rotated by Google, and are used for signing for a maximum of two weeks. The rotation process is probabilistic, and usage of the new key will gradually ramp up and down over the key&#x27;s lifetime. If you cache the public key set for a service account, we recommend that you update the cache every 15 minutes. User-managed keys can be added and removed at any time, so it is important to update the cache frequently. For Google-managed keys, Google will publish a key at least 6 hours before it is first used for signing and will keep publishing it for at least 6 hours after it was last used for signing. Public keys for all service accounts are also published at the OAuth2 Service Account API.
+      &quot;disabled&quot;: True or False, # The key status.
       &quot;keyAlgorithm&quot;: &quot;A String&quot;, # Specifies the algorithm (and possibly key size) for the key.
       &quot;keyOrigin&quot;: &quot;A String&quot;, # The key origin.
       &quot;keyType&quot;: &quot;A String&quot;, # The key type.
@@ -241,6 +298,7 @@ <h3>Method Details</h3>
   An object of the form:
 
     { # Represents a service account key. A service account has two sets of key-pairs: user-managed, and system-managed. User-managed key-pairs can be created and deleted by users. Users are responsible for rotating these keys periodically to ensure security of their service accounts. Users retain the private key of these key-pairs, and Google retains ONLY the public key. System-managed keys are automatically rotated by Google, and are used for signing for a maximum of two weeks. The rotation process is probabilistic, and usage of the new key will gradually ramp up and down over the key&#x27;s lifetime. If you cache the public key set for a service account, we recommend that you update the cache every 15 minutes. User-managed keys can be added and removed at any time, so it is important to update the cache frequently. For Google-managed keys, Google will publish a key at least 6 hours before it is first used for signing and will keep publishing it for at least 6 hours after it was last used for signing. Public keys for all service accounts are also published at the OAuth2 Service Account API.
+  &quot;disabled&quot;: True or False, # The key status.
   &quot;keyAlgorithm&quot;: &quot;A String&quot;, # Specifies the algorithm (and possibly key size) for the key.
   &quot;keyOrigin&quot;: &quot;A String&quot;, # The key origin.
   &quot;keyType&quot;: &quot;A String&quot;, # The key type.
diff --git a/googleapiclient/discovery_cache/documents/iam.v1.json b/googleapiclient/discovery_cache/documents/iam.v1.json
@@ -1483,6 +1483,62 @@
                     "https://www.googleapis.com/auth/cloud-platform"
                   ]
                 },
+                "disable": {
+                  "description": "Disable a ServiceAccountKey. A disabled service account key can be enabled through EnableServiceAccountKey. The API is currently in preview phase.",
+                  "flatPath": "v1/projects/{projectsId}/serviceAccounts/{serviceAccountsId}/keys/{keysId}:disable",
+                  "httpMethod": "POST",
+                  "id": "iam.projects.serviceAccounts.keys.disable",
+                  "parameterOrder": [
+                    "name"
+                  ],
+                  "parameters": {
+                    "name": {
+                      "description": "Required. The resource name of the service account key in the following format: `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}`. Using `-` as a wildcard for the `PROJECT_ID` will infer the project from the account. The `ACCOUNT` value can be the `email` address or the `unique_id` of the service account.",
+                      "location": "path",
+                      "pattern": "^projects/[^/]+/serviceAccounts/[^/]+/keys/[^/]+$",
+                      "required": true,
+                      "type": "string"
+                    }
+                  },
+                  "path": "v1/{+name}:disable",
+                  "request": {
+                    "$ref": "DisableServiceAccountKeyRequest"
+                  },
+                  "response": {
+                    "$ref": "Empty"
+                  },
+                  "scopes": [
+                    "https://www.googleapis.com/auth/cloud-platform"
+                  ]
+                },
+                "enable": {
+                  "description": "Enable a ServiceAccountKey. The API is currently in preview phase.",
+                  "flatPath": "v1/projects/{projectsId}/serviceAccounts/{serviceAccountsId}/keys/{keysId}:enable",
+                  "httpMethod": "POST",
+                  "id": "iam.projects.serviceAccounts.keys.enable",
+                  "parameterOrder": [
+                    "name"
+                  ],
+                  "parameters": {
+                    "name": {
+                      "description": "Required. The resource name of the service account key in the following format: `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}`. Using `-` as a wildcard for the `PROJECT_ID` will infer the project from the account. The `ACCOUNT` value can be the `email` address or the `unique_id` of the service account.",
+                      "location": "path",
+                      "pattern": "^projects/[^/]+/serviceAccounts/[^/]+/keys/[^/]+$",
+                      "required": true,
+                      "type": "string"
+                    }
+                  },
+                  "path": "v1/{+name}:enable",
+                  "request": {
+                    "$ref": "EnableServiceAccountKeyRequest"
+                  },
+                  "response": {
+                    "$ref": "Empty"
+                  },
+                  "scopes": [
+                    "https://www.googleapis.com/auth/cloud-platform"
+                  ]
+                },
                 "get": {
                   "description": "Gets a ServiceAccountKey.",
                   "flatPath": "v1/projects/{projectsId}/serviceAccounts/{serviceAccountsId}/keys/{keysId}",
@@ -1696,7 +1752,7 @@
       }
     }
   },
-  "revision": "20210812",
+  "revision": "20210825",
   "rootUrl": "https://iam.googleapis.com/",
   "schemas": {
     "AdminAuditData": {
@@ -1911,6 +1967,12 @@
       },
       "type": "object"
     },
+    "DisableServiceAccountKeyRequest": {
+      "description": "The service account key disable request.",
+      "id": "DisableServiceAccountKeyRequest",
+      "properties": {},
+      "type": "object"
+    },
     "DisableServiceAccountRequest": {
       "description": "The service account disable request.",
       "id": "DisableServiceAccountRequest",
@@ -1923,6 +1985,12 @@
       "properties": {},
       "type": "object"
     },
+    "EnableServiceAccountKeyRequest": {
+      "description": "The service account key enable request.",
+      "id": "EnableServiceAccountKeyRequest",
+      "properties": {},
+      "type": "object"
+    },
     "EnableServiceAccountRequest": {
       "description": "The service account enable request.",
       "id": "EnableServiceAccountRequest",
@@ -2536,6 +2604,10 @@
       "description": "Represents a service account key. A service account has two sets of key-pairs: user-managed, and system-managed. User-managed key-pairs can be created and deleted by users. Users are responsible for rotating these keys periodically to ensure security of their service accounts. Users retain the private key of these key-pairs, and Google retains ONLY the public key. System-managed keys are automatically rotated by Google, and are used for signing for a maximum of two weeks. The rotation process is probabilistic, and usage of the new key will gradually ramp up and down over the key's lifetime. If you cache the public key set for a service account, we recommend that you update the cache every 15 minutes. User-managed keys can be added and removed at any time, so it is important to update the cache frequently. For Google-managed keys, Google will publish a key at least 6 hours before it is first used for signing and will keep publishing it for at least 6 hours after it was last used for signing. Public keys for all service accounts are also published at the OAuth2 Service Account API.",
       "id": "ServiceAccountKey",
       "properties": {
+        "disabled": {
+          "description": "The key status.",
+          "type": "boolean"
+        },
         "keyAlgorithm": {
           "description": "Specifies the algorithm (and possibly key size) for the key.",
           "enum": [
