Added support for new attributes to the ApplicationOIDC data model (#…

…248)

* Added support for new attributes to the `ApplicationOIDC` data model

* changelog

* changelogs

CHANGELOG.md

@@ -12,6 +12,7 @@
     * **Enhancement** Added default value to the `ResponseSigned` attributes on the `ApplicationSAML` model. [#247](https://github.com/patrickcping/pingone-go-sdk-v2/pull/247)
     * **Enhancement** Added support for the `AuthnRequestSigned` attribute on the `ApplicationSAMLAllOfSpVerification` model. [#247](https://github.com/patrickcping/pingone-go-sdk-v2/pull/247)
     * **Enhancement** Added support for the `Algorithm` attribute on the `IdentityProviderSAMLAllOfSpSigning` model. [#247](https://github.com/patrickcping/pingone-go-sdk-v2/pull/247)
+    * **Enhancement** Added support for new attributes `AdditionalRefreshTokenReplayProtectionEnabled`, `RequireSignedRequestObject`, `ParRequirement`, `ParTimeout` to the `ApplicationOIDC` and `ApplicationOIDCAllOf` data models. [#248](https://github.com/patrickcping/pingone-go-sdk-v2/pull/248)
 
 # Release (2023-09-05)
 

management/.openapi-generator/FILES

@@ -189,6 +189,7 @@ docs/EnumAlertChannelType.md
 docs/EnumApplicationAccessControlType.md
 docs/EnumApplicationNativeGooglePlayVerificationType.md
 docs/EnumApplicationOIDCGrantType.md
+docs/EnumApplicationOIDCPARRequirement.md
 docs/EnumApplicationOIDCPKCEOption.md
 docs/EnumApplicationOIDCResponseType.md
 docs/EnumApplicationOIDCTokenAuthMethod.md
@@ -703,6 +704,7 @@ model_enum_application_native_google_play_verification_type.go
 model_enum_application_oidc_grant_type.go
 model_enum_application_oidc_response_type.go
 model_enum_application_oidc_token_auth_method.go
+model_enum_application_oidcpar_requirement.go
 model_enum_application_oidcpkce_option.go
 model_enum_application_protocol.go
 model_enum_application_saml_slo_binding.go

management/CHANGELOG.md

@@ -11,6 +11,7 @@
 * **Enhancement** Added default value to the `ResponseSigned` attributes on the `ApplicationSAML` model. [#247](https://github.com/patrickcping/pingone-go-sdk-v2/pull/247)
 * **Enhancement** Added support for the `AuthnRequestSigned` attribute on the `ApplicationSAMLAllOfSpVerification` model. [#247](https://github.com/patrickcping/pingone-go-sdk-v2/pull/247)
 * **Enhancement** Added support for the `Algorithm` attribute on the `IdentityProviderSAMLAllOfSpSigning` model. [#247](https://github.com/patrickcping/pingone-go-sdk-v2/pull/247)
+* **Enhancement** Added support for new attributes `AdditionalRefreshTokenReplayProtectionEnabled`, `RequireSignedRequestObject`, `ParRequirement`, `ParTimeout` to the `ApplicationOIDC` and `ApplicationOIDCAllOf` data models. [#248](https://github.com/patrickcping/pingone-go-sdk-v2/pull/248)
 
 # v0.27.0 (2023-09-05)
 

management/README.md

@@ -511,6 +511,7 @@ Class | Method | HTTP request | Description
  - [EnumApplicationAccessControlType](docs/EnumApplicationAccessControlType.md)
  - [EnumApplicationNativeGooglePlayVerificationType](docs/EnumApplicationNativeGooglePlayVerificationType.md)
  - [EnumApplicationOIDCGrantType](docs/EnumApplicationOIDCGrantType.md)
+ - [EnumApplicationOIDCPARRequirement](docs/EnumApplicationOIDCPARRequirement.md)
  - [EnumApplicationOIDCPKCEOption](docs/EnumApplicationOIDCPKCEOption.md)
  - [EnumApplicationOIDCResponseType](docs/EnumApplicationOIDCResponseType.md)
  - [EnumApplicationOIDCTokenAuthMethod](docs/EnumApplicationOIDCTokenAuthMethod.md)

management/api/openapi.yaml

@@ -23080,6 +23080,14 @@ components:
       - REFRESH_TOKEN
       - CLIENT_CREDENTIALS
       type: string
+    EnumApplicationOIDCPARRequirement:
+      default: OPTIONAL
+      description: Whether pushed authorization requests (PAR) are required. Options
+        are `REQUIRED` and `OPTIONAL`. The default value is `OPTIONAL`.
+      enum:
+      - REQUIRED
+      - OPTIONAL
+      type: string
     EnumApplicationOIDCPKCEOption:
       description: A string that specifies how PKCE request parameters are handled
         on the authorize request. Options are OPTIONAL PKCE code_challenge is optional
@@ -30533,6 +30541,13 @@ components:
       example: null
     ApplicationOIDC_allOf:
       properties:
+        additionalRefreshTokenReplayProtectionEnabled:
+          default: true
+          description: "When set to `true` (the default), if you attempt to reuse\
+            \ the refresh token, the authorization server immediately revokes the\
+            \ reused refresh token, as well as all descendant tokens. Setting this\
+            \ to null equates to a `false` setting."
+          type: boolean
         allowWildcardInRedirectUris:
           description: "A boolean to specify whether wildcards are allowed in redirect\
             \ URIs. For more information, see [Wildcards in Redirect URIs](https://docs.pingidentity.com/csh?context=p1_c_wildcard_redirect_uri)."
@@ -30626,6 +30641,12 @@ components:
           items:
             $ref: '#/components/schemas/EnumApplicationOIDCResponseType'
           type: array
+        requireSignedRequestObject:
+          description: "Indicates that the Java Web Token (JWT) for the [request query](https://openid.net/specs/openid-connect-core-1_0.html#RequestObject)\
+            \ parameter is required to be signed. If `false` or null (default), a\
+            \ signed request object is not required. Both `supportUnsignedRequestObject`\
+            \ and this property cannot be set to `true`."
+          type: boolean
         supportUnsignedRequestObject:
           description: "A boolean that specifies whether the [request query](https://openid.net/specs/openid-connect-core-1_0.html#RequestObject)\
             \ parameter JWT is allowed to be unsigned. If false or null (default),\
@@ -30646,6 +30667,15 @@ components:
           type: string
         tokenEndpointAuthMethod:
           $ref: '#/components/schemas/EnumApplicationOIDCTokenAuthMethod'
+        parRequirement:
+          $ref: '#/components/schemas/EnumApplicationOIDCPARRequirement'
+        parTimeout:
+          default: 60
+          description: PAR timeout in seconds. Must be between `1` and `600`. The
+            default value is `60`.
+          maximum: 600
+          minimum: 1
+          type: integer
       required:
       - grantTypes
       - tokenEndpointAuthMethod

management/docs/ApplicationOIDC.md

@@ -18,6 +18,7 @@ Name | Type | Description | Notes
 **Protocol** | [**EnumApplicationProtocol**](EnumApplicationProtocol.md) |  | 
 **Type** | [**EnumApplicationType**](EnumApplicationType.md) |  | 
 **UpdatedAt** | Pointer to **time.Time** | The time the resource was last updated. | [optional] [readonly] 
+**AdditionalRefreshTokenReplayProtectionEnabled** | Pointer to **bool** | When set to `true` (the default), if you attempt to reuse the refresh token, the authorization server immediately revokes the reused refresh token, as well as all descendant tokens. Setting this to null equates to a `false` setting. | [optional] [default to true]
 **AllowWildcardInRedirectUris** | Pointer to **bool** | A boolean to specify whether wildcards are allowed in redirect URIs. For more information, see [Wildcards in Redirect URIs](https://docs.pingidentity.com/csh?context=p1_c_wildcard_redirect_uri). | [optional] 
 **AssignActorRoles** | Pointer to **bool** | A boolean that specifies whether the permissions service should assign default roles to the application. This property is set only on the POST request. The property is ignored when included in a PUT request. | [optional] 
 **Mobile** | Pointer to [**ApplicationOIDCAllOfMobile**](ApplicationOIDCAllOfMobile.md) |  | [optional] 
@@ -34,10 +35,13 @@ Name | Type | Description | Notes
 **RefreshTokenRollingDuration** | Pointer to **int32** | An integer that specifies the number of seconds a refresh token can be exchanged before re-authentication is required. If a value is not provided, the refresh token is valid forever. Valid values are between 60 and 2147483647. After this property is set, the value cannot be nullified. This value is used to generate the value for the exp claim when minting a new refresh token. | [optional] 
 **RefreshTokenRollingGracePeriodDuration** | Pointer to **int32** | The number of seconds that a refresh token may be reused after having been exchanged for a new set of tokens. This is useful in the case of network errors on the client. Valid values are between 0 and 86400 seconds. Null is treated the same as 0. | [optional] 
 **ResponseTypes** | Pointer to [**[]EnumApplicationOIDCResponseType**](EnumApplicationOIDCResponseType.md) | A string that specifies the code or token type returned by an authorization request. Options are TOKEN, ID_TOKEN, and CODE. Note that CODE cannot be used in an authorization request with TOKEN or ID_TOKEN because PingOne does not currently support OIDC hybrid flows. | [optional] 
+**RequireSignedRequestObject** | Pointer to **bool** | Indicates that the Java Web Token (JWT) for the [request query](https://openid.net/specs/openid-connect-core-1_0.html#RequestObject) parameter is required to be signed. If `false` or null (default), a signed request object is not required. Both `supportUnsignedRequestObject` and this property cannot be set to `true`. | [optional] 
 **SupportUnsignedRequestObject** | Pointer to **bool** | A boolean that specifies whether the [request query](https://openid.net/specs/openid-connect-core-1_0.html#RequestObject) parameter JWT is allowed to be unsigned. If false or null (default), an unsigned request object is not allowed. | [optional] 
 **Tags** | Pointer to [**[]EnumApplicationTags**](EnumApplicationTags.md) | An array that specifies the list of labels associated with the application. Options are `PING_FED_CONNECTION_INTEGRATION`.  Only applicable for creating worker applications. | [optional] 
 **TargetLinkUri** | Pointer to **string** | The URI for the application. If specified, PingOne will redirect application users to this URI after a user is authenticated. In the PingOne admin console, this becomes the value of the `target_link_uri` parameter used for the Initiate Single Sign-On URL field. | [optional] 
 **TokenEndpointAuthMethod** | [**EnumApplicationOIDCTokenAuthMethod**](EnumApplicationOIDCTokenAuthMethod.md) |  | 
+**ParRequirement** | Pointer to [**EnumApplicationOIDCPARRequirement**](EnumApplicationOIDCPARRequirement.md) |  | [optional] [default to ENUMAPPLICATIONOIDCPARREQUIREMENT_OPTIONAL]
+**ParTimeout** | Pointer to **int32** | PAR timeout in seconds. Must be between `1` and `600`. The default value is `60`. | [optional] [default to 60]
 
 ## Methods
 
@@ -388,6 +392,31 @@ SetUpdatedAt sets UpdatedAt field to given value.
 
 HasUpdatedAt returns a boolean if a field has been set.
 
+### GetAdditionalRefreshTokenReplayProtectionEnabled
+
+`func (o *ApplicationOIDC) GetAdditionalRefreshTokenReplayProtectionEnabled() bool`
+
+GetAdditionalRefreshTokenReplayProtectionEnabled returns the AdditionalRefreshTokenReplayProtectionEnabled field if non-nil, zero value otherwise.
+
+### GetAdditionalRefreshTokenReplayProtectionEnabledOk
+
+`func (o *ApplicationOIDC) GetAdditionalRefreshTokenReplayProtectionEnabledOk() (*bool, bool)`
+
+GetAdditionalRefreshTokenReplayProtectionEnabledOk returns a tuple with the AdditionalRefreshTokenReplayProtectionEnabled field if it's non-nil, zero value otherwise
+and a boolean to check if the value has been set.
+
+### SetAdditionalRefreshTokenReplayProtectionEnabled
+
+`func (o *ApplicationOIDC) SetAdditionalRefreshTokenReplayProtectionEnabled(v bool)`
+
+SetAdditionalRefreshTokenReplayProtectionEnabled sets AdditionalRefreshTokenReplayProtectionEnabled field to given value.
+
+### HasAdditionalRefreshTokenReplayProtectionEnabled
+
+`func (o *ApplicationOIDC) HasAdditionalRefreshTokenReplayProtectionEnabled() bool`
+
+HasAdditionalRefreshTokenReplayProtectionEnabled returns a boolean if a field has been set.
+
 ### GetAllowWildcardInRedirectUris
 
 `func (o *ApplicationOIDC) GetAllowWildcardInRedirectUris() bool`
@@ -783,6 +812,31 @@ SetResponseTypes sets ResponseTypes field to given value.
 
 HasResponseTypes returns a boolean if a field has been set.
 
+### GetRequireSignedRequestObject
+
+`func (o *ApplicationOIDC) GetRequireSignedRequestObject() bool`
+
+GetRequireSignedRequestObject returns the RequireSignedRequestObject field if non-nil, zero value otherwise.
+
+### GetRequireSignedRequestObjectOk
+
+`func (o *ApplicationOIDC) GetRequireSignedRequestObjectOk() (*bool, bool)`
+
+GetRequireSignedRequestObjectOk returns a tuple with the RequireSignedRequestObject field if it's non-nil, zero value otherwise
+and a boolean to check if the value has been set.
+
+### SetRequireSignedRequestObject
+
+`func (o *ApplicationOIDC) SetRequireSignedRequestObject(v bool)`
+
+SetRequireSignedRequestObject sets RequireSignedRequestObject field to given value.
+
+### HasRequireSignedRequestObject
+
+`func (o *ApplicationOIDC) HasRequireSignedRequestObject() bool`
+
+HasRequireSignedRequestObject returns a boolean if a field has been set.
+
 ### GetSupportUnsignedRequestObject
 
 `func (o *ApplicationOIDC) GetSupportUnsignedRequestObject() bool`
@@ -878,6 +932,56 @@ and a boolean to check if the value has been set.
 SetTokenEndpointAuthMethod sets TokenEndpointAuthMethod field to given value.
 
 
+### GetParRequirement
+
+`func (o *ApplicationOIDC) GetParRequirement() EnumApplicationOIDCPARRequirement`
+
+GetParRequirement returns the ParRequirement field if non-nil, zero value otherwise.
+
+### GetParRequirementOk
+
+`func (o *ApplicationOIDC) GetParRequirementOk() (*EnumApplicationOIDCPARRequirement, bool)`
+
+GetParRequirementOk returns a tuple with the ParRequirement field if it's non-nil, zero value otherwise
+and a boolean to check if the value has been set.
+
+### SetParRequirement
+
+`func (o *ApplicationOIDC) SetParRequirement(v EnumApplicationOIDCPARRequirement)`
+
+SetParRequirement sets ParRequirement field to given value.
+
+### HasParRequirement
+
+`func (o *ApplicationOIDC) HasParRequirement() bool`
+
+HasParRequirement returns a boolean if a field has been set.
+
+### GetParTimeout
+
+`func (o *ApplicationOIDC) GetParTimeout() int32`
+
+GetParTimeout returns the ParTimeout field if non-nil, zero value otherwise.
+
+### GetParTimeoutOk
+
+`func (o *ApplicationOIDC) GetParTimeoutOk() (*int32, bool)`
+
+GetParTimeoutOk returns a tuple with the ParTimeout field if it's non-nil, zero value otherwise
+and a boolean to check if the value has been set.
+
+### SetParTimeout
+
+`func (o *ApplicationOIDC) SetParTimeout(v int32)`
+
+SetParTimeout sets ParTimeout field to given value.
+
+### HasParTimeout
+
+`func (o *ApplicationOIDC) HasParTimeout() bool`
+
+HasParTimeout returns a boolean if a field has been set.
+
 
 [[Back to Model list]](../README.md#documentation-for-models) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to README]](../README.md)