aherman
/
boundary
mirror of https://github.com/hashicorp/boundary
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9b56db8858'
${ noResults }
boundary/internal/proto/controller/api/services/v1/account_service.proto

168 lines
6.7 KiB
Raw Blame History

// Copyright (c) HashiCorp, Inc.
// SPDX-License-Identifier: MPL-2.0
syntax = "proto3";
package controller.api.services.v1;
import "controller/api/resources/accounts/v1/account.proto";
import "controller/custom_options/v1/options.proto";
import "google/api/annotations.proto";
import "google/protobuf/field_mask.proto";
import "protoc-gen-openapiv2/options/annotations.proto";
option go_package = "github.com/hashicorp/boundary/internal/gen/controller/api/services;services";
option (custom_options.v1.domain) = "auth";
service AccountService {
// GetAccount returns a stored Account if present. The provided request must
// include the id for the Account be retrieved. If missing, malformed or
// referencing a non existing Account an error is returned.
rpc GetAccount(GetAccountRequest) returns (GetAccountResponse) {
option (google.api.http) = {
get: "/v1/accounts/{id}"
response_body: "item"
};
option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = {summary: "Gets a single Account."};
}
// ListAccounts returns a list of stored Accounts which exist inside the
// provided Auth Method. The request must include the Auth Method id which
// contains the Accounts being listed. If missing or malformed an error
// is returned.
rpc ListAccounts(ListAccountsRequest) returns (ListAccountsResponse) {
option (google.api.http) = {get: "/v1/accounts"};
option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = {summary: "Lists all Accounts in a specific Auth Method."};
}
// CreateAccount creates and stores an Account in boundary. The provided
// request must include the Auth Method ID in which the Account will be
// created. If the Auth Method ID is missing, malformed, or references a non
// existing resource an error is returned. If a name or login_name is
// provided that is in use in another Account in the same Auth Method an
// error is returned.
rpc CreateAccount(CreateAccountRequest) returns (CreateAccountResponse) {
option (google.api.http) = {
post: "/v1/accounts"
body: "item"
response_body: "item"
};
option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = {summary: "Creates a single Account in the provided Auth Method."};
}
// UpdateAccount updates an existing Account in boundary. The provided Account
// must not have any read only fields set. The update mask must be included in
// the request and contain at least 1 mutable field. To unset a field's value,
// include the field in the update mask and don't set it in the provided
// Account. An error is returned if the Account id is missing or references a
// non-existing resource. An error is also returned if the request attempts
// to update the name or login_name to one that is already in use in the
// containing Auth Method.
rpc UpdateAccount(UpdateAccountRequest) returns (UpdateAccountResponse) {
option (google.api.http) = {
patch: "/v1/accounts/{id}"
body: "item"
response_body: "item"
};
option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = {summary: "Updates an Account."};
}
// DeleteAccount removes an Account from Boundary. If the provided Account Id
// is malformed or not provided an error is returned.
rpc DeleteAccount(DeleteAccountRequest) returns (DeleteAccountResponse) {
option (google.api.http) = {delete: "/v1/accounts/{id}"};
option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = {summary: "Deletes an Account."};
}
// SetPassword sets the Account's password to the one provided in the
// request. This method is intended for administration purpose and as such
// does not require the old password.
rpc SetPassword(SetPasswordRequest) returns (SetPasswordResponse) {
option (google.api.http) = {
post: "/v1/accounts/{id}:set-password"
body: "*"
response_body: "item"
};
option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = {summary: "Sets the password for the provided Account."};
}
// ChangePassword changes the Account's password to the one provided in the
// request. This method is intended for end users and requires the existing
// password to be provided for authentication purposes.
rpc ChangePassword(ChangePasswordRequest) returns (ChangePasswordResponse) {
option (google.api.http) = {
post: "/v1/accounts/{id}:change-password"
body: "*"
response_body: "item"
};
option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = {summary: "Sets the password for the provided Account."};
}
}
message GetAccountRequest {
string id = 1; // @gotags: `class:"public" eventstream:"observation"`
}
message GetAccountResponse {
resources.accounts.v1.Account item = 1;
}
message ListAccountsRequest {
string auth_method_id = 1 [json_name = "auth_method_id"]; // @gotags: `class:"public" eventstream:"observation"`
string filter = 30 [json_name = "filter"]; // @gotags: `class:"sensitive"`
}
message ListAccountsResponse {
repeated resources.accounts.v1.Account items = 1;
}
message CreateAccountRequest {
resources.accounts.v1.Account item = 2;
}
message CreateAccountResponse {
string uri = 1; // @gotags: `class:"public" eventstream:"observation"`
resources.accounts.v1.Account item = 2;
}
message UpdateAccountRequest {
string id = 1; // @gotags: `class:"public" eventstream:"observation"`
resources.accounts.v1.Account item = 2;
google.protobuf.FieldMask update_mask = 3 [json_name = "update_mask"];
}
message UpdateAccountResponse {
resources.accounts.v1.Account item = 1;
}
message DeleteAccountRequest {
string id = 1; // @gotags: `class:"public" eventstream:"observation"`
}
message DeleteAccountResponse {}
message SetPasswordRequest {
string id = 1; // @gotags: `class:"public" eventstream:"observation"`
// Version is used to ensure this resource has not changed.
// The mutation will fail if the version does not match the latest known good version.
uint32 version = 2; // @gotags: `class:"public"`
string password = 3; // @gotags: `class:"secret"`
}
message SetPasswordResponse {
resources.accounts.v1.Account item = 1;
}
message ChangePasswordRequest {
string id = 1; // @gotags: `class:"public" eventstream:"observation"`
// Version is used to ensure this resource has not changed.
// The mutation will fail if the version does not match the latest known good version.
uint32 version = 2; // @gotags: `class:"public"`
string current_password = 3 [json_name = "current_password"]; // @gotags: `class:"secret"`
string new_password = 4 [json_name = "new_password"]; // @gotags: `class:"secret"`
}
message ChangePasswordResponse {
resources.accounts.v1.Account item = 1;
}
Reference in new issue View Git Blame Copy Permalink