feat(iam): update the api

yoshi-automation · yoshi-automation · commit a4d0aa346eda · 2025-01-14T07:08:04.000Z
#### iam:v1

The following keys were deleted:
- schemas.WorkforcePool.properties.name.readOnly (Total Keys: 1)
- schemas.WorkforcePoolProvider.properties.name.readOnly (Total Keys: 1)
- schemas.WorkforcePoolProviderKey.properties.name.readOnly (Total Keys: 1)
diff --git a/docs/dyn/iam_v1.locations.workforcePools.html b/docs/dyn/iam_v1.locations.workforcePools.html
@@ -150,7 +150,7 @@ <h3>Method Details</h3>
   &quot;disabled&quot;: True or False, # Optional. Disables the workforce pool. You cannot use a disabled pool to exchange tokens, or use existing tokens to access resources. If the pool is re-enabled, existing tokens grant access again.
   &quot;displayName&quot;: &quot;A String&quot;, # Optional. A user-specified display name of the pool in Google Cloud Console. Cannot exceed 32 characters.
   &quot;expireTime&quot;: &quot;A String&quot;, # Output only. Time after which the workforce pool will be permanently purged and cannot be recovered.
-  &quot;name&quot;: &quot;A String&quot;, # Output only. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}`
+  &quot;name&quot;: &quot;A String&quot;, # Identifier. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}`
   &quot;parent&quot;: &quot;A String&quot;, # Immutable. The resource name of the parent. Format: `organizations/{org-id}`.
   &quot;sessionDuration&quot;: &quot;A String&quot;, # Optional. Duration that the Google Cloud access tokens, console sign-in sessions, and `gcloud` sign-in sessions from this pool are valid. Must be greater than 15 minutes (900s) and less than 12 hours (43200s). If `session_duration` is not configured, minted credentials have a default duration of one hour (3600s). For SAML providers, the lifetime of the token is the minimum of the `session_duration` and the `SessionNotOnOrAfter` claim in the SAML assertion.
   &quot;state&quot;: &quot;A String&quot;, # Output only. The state of the pool.
@@ -248,7 +248,7 @@ <h3>Method Details</h3>
   &quot;disabled&quot;: True or False, # Optional. Disables the workforce pool. You cannot use a disabled pool to exchange tokens, or use existing tokens to access resources. If the pool is re-enabled, existing tokens grant access again.
   &quot;displayName&quot;: &quot;A String&quot;, # Optional. A user-specified display name of the pool in Google Cloud Console. Cannot exceed 32 characters.
   &quot;expireTime&quot;: &quot;A String&quot;, # Output only. Time after which the workforce pool will be permanently purged and cannot be recovered.
-  &quot;name&quot;: &quot;A String&quot;, # Output only. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}`
+  &quot;name&quot;: &quot;A String&quot;, # Identifier. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}`
   &quot;parent&quot;: &quot;A String&quot;, # Immutable. The resource name of the parent. Format: `organizations/{org-id}`.
   &quot;sessionDuration&quot;: &quot;A String&quot;, # Optional. Duration that the Google Cloud access tokens, console sign-in sessions, and `gcloud` sign-in sessions from this pool are valid. Must be greater than 15 minutes (900s) and less than 12 hours (43200s). If `session_duration` is not configured, minted credentials have a default duration of one hour (3600s). For SAML providers, the lifetime of the token is the minimum of the `session_duration` and the `SessionNotOnOrAfter` claim in the SAML assertion.
   &quot;state&quot;: &quot;A String&quot;, # Output only. The state of the pool.
@@ -345,7 +345,7 @@ <h3>Method Details</h3>
       &quot;disabled&quot;: True or False, # Optional. Disables the workforce pool. You cannot use a disabled pool to exchange tokens, or use existing tokens to access resources. If the pool is re-enabled, existing tokens grant access again.
       &quot;displayName&quot;: &quot;A String&quot;, # Optional. A user-specified display name of the pool in Google Cloud Console. Cannot exceed 32 characters.
       &quot;expireTime&quot;: &quot;A String&quot;, # Output only. Time after which the workforce pool will be permanently purged and cannot be recovered.
-      &quot;name&quot;: &quot;A String&quot;, # Output only. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}`
+      &quot;name&quot;: &quot;A String&quot;, # Identifier. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}`
       &quot;parent&quot;: &quot;A String&quot;, # Immutable. The resource name of the parent. Format: `organizations/{org-id}`.
       &quot;sessionDuration&quot;: &quot;A String&quot;, # Optional. Duration that the Google Cloud access tokens, console sign-in sessions, and `gcloud` sign-in sessions from this pool are valid. Must be greater than 15 minutes (900s) and less than 12 hours (43200s). If `session_duration` is not configured, minted credentials have a default duration of one hour (3600s). For SAML providers, the lifetime of the token is the minimum of the `session_duration` and the `SessionNotOnOrAfter` claim in the SAML assertion.
       &quot;state&quot;: &quot;A String&quot;, # Output only. The state of the pool.
@@ -373,7 +373,7 @@ <h3>Method Details</h3>
   <pre>Updates an existing WorkforcePool.
 
 Args:
-  name: string, Output only. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}` (required)
+  name: string, Identifier. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}` (required)
   body: object, The request body.
     The object takes the form of:
 
@@ -390,7 +390,7 @@ <h3>Method Details</h3>
   &quot;disabled&quot;: True or False, # Optional. Disables the workforce pool. You cannot use a disabled pool to exchange tokens, or use existing tokens to access resources. If the pool is re-enabled, existing tokens grant access again.
   &quot;displayName&quot;: &quot;A String&quot;, # Optional. A user-specified display name of the pool in Google Cloud Console. Cannot exceed 32 characters.
   &quot;expireTime&quot;: &quot;A String&quot;, # Output only. Time after which the workforce pool will be permanently purged and cannot be recovered.
-  &quot;name&quot;: &quot;A String&quot;, # Output only. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}`
+  &quot;name&quot;: &quot;A String&quot;, # Identifier. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}`
   &quot;parent&quot;: &quot;A String&quot;, # Immutable. The resource name of the parent. Format: `organizations/{org-id}`.
   &quot;sessionDuration&quot;: &quot;A String&quot;, # Optional. Duration that the Google Cloud access tokens, console sign-in sessions, and `gcloud` sign-in sessions from this pool are valid. Must be greater than 15 minutes (900s) and less than 12 hours (43200s). If `session_duration` is not configured, minted credentials have a default duration of one hour (3600s). For SAML providers, the lifetime of the token is the minimum of the `session_duration` and the `SessionNotOnOrAfter` claim in the SAML assertion.
   &quot;state&quot;: &quot;A String&quot;, # Output only. The state of the pool.
diff --git a/docs/dyn/iam_v1.locations.workforcePools.providers.html b/docs/dyn/iam_v1.locations.workforcePools.providers.html
@@ -146,7 +146,7 @@ <h3>Method Details</h3>
       &quot;filter&quot;: &quot;A String&quot;, # Optional. The filter used to request specific records from IdP. In case of attributes type as AZURE_AD_GROUPS_MAIL, it represents the filter used to request specific groups for users from IdP. By default, all of the groups associated with the user are fetched. The groups should be mail enabled and security enabled. See https://learn.microsoft.com/en-us/graph/search-query-parameter for more details.
     },
   },
-  &quot;name&quot;: &quot;A String&quot;, # Output only. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}`
+  &quot;name&quot;: &quot;A String&quot;, # Identifier. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}`
   &quot;oidc&quot;: { # Represents an OpenId Connect 1.0 identity provider. # An OpenId Connect 1.0 identity provider configuration.
     &quot;clientId&quot;: &quot;A String&quot;, # Required. The client ID. Must match the audience claim of the JWT issued by the identity provider.
     &quot;clientSecret&quot;: { # Representation of a client secret configured for the OIDC provider. # Optional. The optional client secret. Required to enable Authorization Code flow for web sign-in.
@@ -273,7 +273,7 @@ <h3>Method Details</h3>
       &quot;filter&quot;: &quot;A String&quot;, # Optional. The filter used to request specific records from IdP. In case of attributes type as AZURE_AD_GROUPS_MAIL, it represents the filter used to request specific groups for users from IdP. By default, all of the groups associated with the user are fetched. The groups should be mail enabled and security enabled. See https://learn.microsoft.com/en-us/graph/search-query-parameter for more details.
     },
   },
-  &quot;name&quot;: &quot;A String&quot;, # Output only. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}`
+  &quot;name&quot;: &quot;A String&quot;, # Identifier. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}`
   &quot;oidc&quot;: { # Represents an OpenId Connect 1.0 identity provider. # An OpenId Connect 1.0 identity provider configuration.
     &quot;clientId&quot;: &quot;A String&quot;, # Required. The client ID. Must match the audience claim of the JWT issued by the identity provider.
     &quot;clientSecret&quot;: { # Representation of a client secret configured for the OIDC provider. # Optional. The optional client secret. Required to enable Authorization Code flow for web sign-in.
@@ -342,7 +342,7 @@ <h3>Method Details</h3>
           &quot;filter&quot;: &quot;A String&quot;, # Optional. The filter used to request specific records from IdP. In case of attributes type as AZURE_AD_GROUPS_MAIL, it represents the filter used to request specific groups for users from IdP. By default, all of the groups associated with the user are fetched. The groups should be mail enabled and security enabled. See https://learn.microsoft.com/en-us/graph/search-query-parameter for more details.
         },
       },
-      &quot;name&quot;: &quot;A String&quot;, # Output only. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}`
+      &quot;name&quot;: &quot;A String&quot;, # Identifier. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}`
       &quot;oidc&quot;: { # Represents an OpenId Connect 1.0 identity provider. # An OpenId Connect 1.0 identity provider configuration.
         &quot;clientId&quot;: &quot;A String&quot;, # Required. The client ID. Must match the audience claim of the JWT issued by the identity provider.
         &quot;clientSecret&quot;: { # Representation of a client secret configured for the OIDC provider. # Optional. The optional client secret. Required to enable Authorization Code flow for web sign-in.
@@ -389,7 +389,7 @@ <h3>Method Details</h3>
   <pre>Updates an existing WorkforcePoolProvider.
 
 Args:
-  name: string, Output only. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}` (required)
+  name: string, Identifier. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}` (required)
   body: object, The request body.
     The object takes the form of:
 
@@ -416,7 +416,7 @@ <h3>Method Details</h3>
       &quot;filter&quot;: &quot;A String&quot;, # Optional. The filter used to request specific records from IdP. In case of attributes type as AZURE_AD_GROUPS_MAIL, it represents the filter used to request specific groups for users from IdP. By default, all of the groups associated with the user are fetched. The groups should be mail enabled and security enabled. See https://learn.microsoft.com/en-us/graph/search-query-parameter for more details.
     },
   },
-  &quot;name&quot;: &quot;A String&quot;, # Output only. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}`
+  &quot;name&quot;: &quot;A String&quot;, # Identifier. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}`
   &quot;oidc&quot;: { # Represents an OpenId Connect 1.0 identity provider. # An OpenId Connect 1.0 identity provider configuration.
     &quot;clientId&quot;: &quot;A String&quot;, # Required. The client ID. Must match the audience claim of the JWT issued by the identity provider.
     &quot;clientSecret&quot;: { # Representation of a client secret configured for the OIDC provider. # Optional. The optional client secret. Required to enable Authorization Code flow for web sign-in.
diff --git a/docs/dyn/iam_v1.locations.workforcePools.providers.keys.html b/docs/dyn/iam_v1.locations.workforcePools.providers.keys.html
@@ -124,7 +124,7 @@ <h3>Method Details</h3>
     &quot;notAfterTime&quot;: &quot;A String&quot;, # Output only. Latest timestamp when this key is valid. Attempts to use this key after this time will fail. Only present if the key data represents a X.509 certificate.
     &quot;notBeforeTime&quot;: &quot;A String&quot;, # Output only. Earliest timestamp when this key is valid. Attempts to use this key before this time will fail. Only present if the key data represents a X.509 certificate.
   },
-  &quot;name&quot;: &quot;A String&quot;, # Output only. The resource name of the key.
+  &quot;name&quot;: &quot;A String&quot;, # Identifier. The resource name of the key. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}/keys/{key_id}`
   &quot;state&quot;: &quot;A String&quot;, # Output only. The state of the key.
   &quot;use&quot;: &quot;A String&quot;, # Required. The purpose of the key.
 }
@@ -217,7 +217,7 @@ <h3>Method Details</h3>
     &quot;notAfterTime&quot;: &quot;A String&quot;, # Output only. Latest timestamp when this key is valid. Attempts to use this key after this time will fail. Only present if the key data represents a X.509 certificate.
     &quot;notBeforeTime&quot;: &quot;A String&quot;, # Output only. Earliest timestamp when this key is valid. Attempts to use this key before this time will fail. Only present if the key data represents a X.509 certificate.
   },
-  &quot;name&quot;: &quot;A String&quot;, # Output only. The resource name of the key.
+  &quot;name&quot;: &quot;A String&quot;, # Identifier. The resource name of the key. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}/keys/{key_id}`
   &quot;state&quot;: &quot;A String&quot;, # Output only. The state of the key.
   &quot;use&quot;: &quot;A String&quot;, # Required. The purpose of the key.
 }</pre>
@@ -252,7 +252,7 @@ <h3>Method Details</h3>
         &quot;notAfterTime&quot;: &quot;A String&quot;, # Output only. Latest timestamp when this key is valid. Attempts to use this key after this time will fail. Only present if the key data represents a X.509 certificate.
         &quot;notBeforeTime&quot;: &quot;A String&quot;, # Output only. Earliest timestamp when this key is valid. Attempts to use this key before this time will fail. Only present if the key data represents a X.509 certificate.
       },
-      &quot;name&quot;: &quot;A String&quot;, # Output only. The resource name of the key.
+      &quot;name&quot;: &quot;A String&quot;, # Identifier. The resource name of the key. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}/keys/{key_id}`
       &quot;state&quot;: &quot;A String&quot;, # Output only. The state of the key.
       &quot;use&quot;: &quot;A String&quot;, # Required. The purpose of the key.
     },
diff --git a/googleapiclient/discovery_cache/documents/iam.v1.json b/googleapiclient/discovery_cache/documents/iam.v1.json
@@ -316,7 +316,7 @@
 ],
 "parameters": {
 "name": {
-"description": "Output only. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}`",
+"description": "Identifier. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}`",
 "location": "path",
 "pattern": "^locations/[^/]+/workforcePools/[^/]+$",
 "required": true,
@@ -591,7 +591,7 @@
 ],
 "parameters": {
 "name": {
-"description": "Output only. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}`",
+"description": "Identifier. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}`",
 "location": "path",
 "pattern": "^locations/[^/]+/workforcePools/[^/]+/providers/[^/]+$",
 "required": true,
@@ -3188,7 +3188,7 @@
 }
 }
 },
-"revision": "20241114",
+"revision": "20250102",
 "rootUrl": "https://iam.googleapis.com/",
 "schemas": {
 "AccessRestrictions": {
@@ -5016,8 +5016,7 @@ false
 "type": "string"
 },
 "name": {
-"description": "Output only. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}`",
-"readOnly": true,
+"description": "Identifier. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}`",
 "type": "string"
 },
 "parent": {
@@ -5085,8 +5084,7 @@ false
 "description": "Optional. The configuration for OAuth 2.0 client used to get the additional user attributes. This should be used when users can't get the desired claims in authentication credentials. Currently this configuration is only supported with OIDC protocol."
 },
 "name": {
-"description": "Output only. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}`",
-"readOnly": true,
+"description": "Identifier. The resource name of the provider. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}`",
 "type": "string"
 },
 "oidc": {
@@ -5130,8 +5128,7 @@ false
 "description": "Immutable. Public half of the asymmetric key."
 },
 "name": {
-"description": "Output only. The resource name of the key.",
-"readOnly": true,
+"description": "Identifier. The resource name of the key. Format: `locations/{location}/workforcePools/{workforce_pool_id}/providers/{provider_id}/keys/{key_id}`",
 "type": "string"
 },
 "state": {
