-
Notifications
You must be signed in to change notification settings - Fork 18
/
model_token_write_role_request.go
63 lines (45 loc) · 3.62 KB
/
model_token_write_role_request.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
// Copyright (c) HashiCorp, Inc.
// SPDX-License-Identifier: MPL-2.0
//
// Code generated with OpenAPI Generator (https://openapi-generator.tech); DO NOT EDIT.
package schema
// TokenWriteRoleRequest struct for TokenWriteRoleRequest
type TokenWriteRoleRequest struct {
// String or JSON list of allowed entity aliases. If set, specifies the entity aliases which are allowed to be used during token generation. This field supports globbing.
AllowedEntityAliases []string `json:"allowed_entity_aliases,omitempty"`
// If set, tokens can be created with any subset of the policies in this list, rather than the normal semantics of tokens being a subset of the calling token's policies. The parameter is a comma-delimited string of policy names.
AllowedPolicies []string `json:"allowed_policies,omitempty"`
// If set, tokens can be created with any subset of glob matched policies in this list, rather than the normal semantics of tokens being a subset of the calling token's policies. The parameter is a comma-delimited string of policy name globs.
AllowedPoliciesGlob []string `json:"allowed_policies_glob,omitempty"`
// Use 'token_bound_cidrs' instead.
// Deprecated
BoundCidrs []string `json:"bound_cidrs,omitempty"`
// If set, successful token creation via this role will require that no policies in the given list are requested. The parameter is a comma-delimited string of policy names.
DisallowedPolicies []string `json:"disallowed_policies,omitempty"`
// If set, successful token creation via this role will require that no requested policies glob match any of policies in this list. The parameter is a comma-delimited string of policy name globs.
DisallowedPoliciesGlob []string `json:"disallowed_policies_glob,omitempty"`
// Use 'token_explicit_max_ttl' instead.
// Deprecated
ExplicitMaxTtl string `json:"explicit_max_ttl,omitempty"`
// If true, tokens created via this role will be orphan tokens (have no parent)
Orphan bool `json:"orphan,omitempty"`
// If set, tokens created via this role will contain the given suffix as a part of their path. This can be used to assist use of the 'revoke-prefix' endpoint later on. The given suffix must match the regular expression.\\w[\\w-.]+\\w
PathSuffix string `json:"path_suffix,omitempty"`
// Use 'token_period' instead.
// Deprecated
Period string `json:"period,omitempty"`
// Tokens created via this role will be renewable or not according to this value. Defaults to \"true\".
Renewable bool `json:"renewable,omitempty"`
// Comma separated string or JSON list of CIDR blocks. If set, specifies the blocks of IP addresses which are allowed to use the generated token.
TokenBoundCidrs []string `json:"token_bound_cidrs,omitempty"`
// If set, tokens created via this role carry an explicit maximum TTL. During renewal, the current maximum TTL values of the role and the mount are not checked for changes, and any updates to these values will have no effect on the token being renewed.
TokenExplicitMaxTtl string `json:"token_explicit_max_ttl,omitempty"`
// If true, the 'default' policy will not automatically be added to generated tokens
TokenNoDefaultPolicy bool `json:"token_no_default_policy,omitempty"`
// The maximum number of times a token may be used, a value of zero means unlimited
TokenNumUses int32 `json:"token_num_uses,omitempty"`
// If set, tokens created via this role will have no max lifetime; instead, their renewal period will be fixed to this value. This takes an integer number of seconds, or a string duration (e.g. \"24h\").
TokenPeriod string `json:"token_period,omitempty"`
// The type of token to generate, service or batch
TokenType string `json:"token_type,omitempty"`
}