chore(api): update composite API spec

Author: stainless-app[bot]

.stats.yml

@@ -1,4 +1,4 @@
 configured_endpoints: 2273
 openapi_spec_url: https://storage.googleapis.com/stainless-sdk-openapi-specs/cloudflare%2Fcloudflare-a6c352830d1270d0abb5bb983058ea21815e1bb7d2e163965335dcb0e706f057.yml
-openapi_spec_hash: 47ba059c643c2fa4d24ca81d3ce8ffc3
+openapi_spec_hash: b3e28b3635caf14765747dd14abcac1a
 config_hash: 86a9b8037b215f0a9c5c69239f9c6cfd

src/cloudflare/resources/zero_trust/identity_providers/identity_providers.py

@@ -836,6 +836,60 @@ def create(
         """
         ...
 
+    @overload
+    def create(
+        self,
+        *,
+        config: identity_provider_create_params.AccessCloudflareConfig,
+        name: str,
+        type: IdentityProviderType,
+        account_id: str | Omit = omit,
+        zone_id: str | Omit = omit,
+        saml_certificate_set_id: str | Omit = omit,
+        scim_config: IdentityProviderSCIMConfigParam | Omit = omit,
+        # Use the following arguments if you need to pass additional parameters to the API that aren't available via kwargs.
+        # The extra values given here take precedence over values defined on the client or passed to this method.
+        extra_headers: Headers | None = None,
+        extra_query: Query | None = None,
+        extra_body: Body | None = None,
+        timeout: float | httpx.Timeout | None | NotGiven = not_given,
+    ) -> Optional[IdentityProvider]:
+        """
+        Adds a new identity provider to Access.
+
+        Args:
+          config: The configuration parameters for the identity provider. To view the required
+              parameters for a specific provider, refer to our
+              [developer documentation](https://developers.cloudflare.com/cloudflare-one/identity/idp-integration/).
+
+          name: The name of the identity provider, shown to users on the login page.
+
+          type: The type of identity provider. To determine the value for a specific provider,
+              refer to our
+              [developer documentation](https://developers.cloudflare.com/cloudflare-one/identity/idp-integration/).
+
+          account_id: The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
+
+          zone_id: The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
+
+          saml_certificate_set_id: The UID of the SAML encryption certificate set assigned to this Identity
+              Provider. Only present for SAML identity providers with encryption configured.
+              Create a certificate set via POST to
+              `/identity_providers/{id}/saml_certificate`.
+
+          scim_config: The configuration settings for enabling a System for Cross-Domain Identity
+              Management (SCIM) with the identity provider.
+
+          extra_headers: Send extra headers
+
+          extra_query: Add additional query parameters to the request
+
+          extra_body: Add additional JSON properties to the request
+
+          timeout: Override the client-level default timeout for this request, in seconds
+        """
+        ...
+
     @required_args(["config", "name", "type"])
     def create(
         self,
@@ -850,7 +904,8 @@ def create(
         | identity_provider_create_params.AccessOneloginConfig
         | identity_provider_create_params.AccessPingoneConfig
         | identity_provider_create_params.AccessSAMLConfig
-        | identity_provider_create_params.AccessOnetimepinConfig,
+        | identity_provider_create_params.AccessOnetimepinConfig
+        | identity_provider_create_params.AccessCloudflareConfig,
         name: str,
         type: IdentityProviderType,
         account_id: str | Omit = omit,
@@ -1705,6 +1760,63 @@ def update(
         """
         ...
 
+    @overload
+    def update(
+        self,
+        identity_provider_id: str,
+        *,
+        config: identity_provider_update_params.AccessCloudflareConfig,
+        name: str,
+        type: IdentityProviderType,
+        account_id: str | Omit = omit,
+        zone_id: str | Omit = omit,
+        saml_certificate_set_id: str | Omit = omit,
+        scim_config: IdentityProviderSCIMConfigParam | Omit = omit,
+        # Use the following arguments if you need to pass additional parameters to the API that aren't available via kwargs.
+        # The extra values given here take precedence over values defined on the client or passed to this method.
+        extra_headers: Headers | None = None,
+        extra_query: Query | None = None,
+        extra_body: Body | None = None,
+        timeout: float | httpx.Timeout | None | NotGiven = not_given,
+    ) -> Optional[IdentityProvider]:
+        """
+        Updates a configured identity provider.
+
+        Args:
+          identity_provider_id: UUID.
+
+          config: The configuration parameters for the identity provider. To view the required
+              parameters for a specific provider, refer to our
+              [developer documentation](https://developers.cloudflare.com/cloudflare-one/identity/idp-integration/).
+
+          name: The name of the identity provider, shown to users on the login page.
+
+          type: The type of identity provider. To determine the value for a specific provider,
+              refer to our
+              [developer documentation](https://developers.cloudflare.com/cloudflare-one/identity/idp-integration/).
+
+          account_id: The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
+
+          zone_id: The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
+
+          saml_certificate_set_id: The UID of the SAML encryption certificate set assigned to this Identity
+              Provider. Only present for SAML identity providers with encryption configured.
+              Create a certificate set via POST to
+              `/identity_providers/{id}/saml_certificate`.
+
+          scim_config: The configuration settings for enabling a System for Cross-Domain Identity
+              Management (SCIM) with the identity provider.
+
+          extra_headers: Send extra headers
+
+          extra_query: Add additional query parameters to the request
+
+          extra_body: Add additional JSON properties to the request
+
+          timeout: Override the client-level default timeout for this request, in seconds
+        """
+        ...
+
     @required_args(["config", "name", "type"])
     def update(
         self,
@@ -1720,7 +1832,8 @@ def update(
         | identity_provider_update_params.AccessOneloginConfig
         | identity_provider_update_params.AccessPingoneConfig
         | identity_provider_update_params.AccessSAMLConfig
-        | identity_provider_update_params.AccessOnetimepinConfig,
+        | identity_provider_update_params.AccessOnetimepinConfig
+        | identity_provider_update_params.AccessCloudflareConfig,
         name: str,
         type: IdentityProviderType,
         account_id: str | Omit = omit,
@@ -2776,6 +2889,60 @@ async def create(
         """
         ...
 
+    @overload
+    async def create(
+        self,
+        *,
+        config: identity_provider_create_params.AccessCloudflareConfig,
+        name: str,
+        type: IdentityProviderType,
+        account_id: str | Omit = omit,
+        zone_id: str | Omit = omit,
+        saml_certificate_set_id: str | Omit = omit,
+        scim_config: IdentityProviderSCIMConfigParam | Omit = omit,
+        # Use the following arguments if you need to pass additional parameters to the API that aren't available via kwargs.
+        # The extra values given here take precedence over values defined on the client or passed to this method.
+        extra_headers: Headers | None = None,
+        extra_query: Query | None = None,
+        extra_body: Body | None = None,
+        timeout: float | httpx.Timeout | None | NotGiven = not_given,
+    ) -> Optional[IdentityProvider]:
+        """
+        Adds a new identity provider to Access.
+
+        Args:
+          config: The configuration parameters for the identity provider. To view the required
+              parameters for a specific provider, refer to our
+              [developer documentation](https://developers.cloudflare.com/cloudflare-one/identity/idp-integration/).
+
+          name: The name of the identity provider, shown to users on the login page.
+
+          type: The type of identity provider. To determine the value for a specific provider,
+              refer to our
+              [developer documentation](https://developers.cloudflare.com/cloudflare-one/identity/idp-integration/).
+
+          account_id: The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
+
+          zone_id: The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
+
+          saml_certificate_set_id: The UID of the SAML encryption certificate set assigned to this Identity
+              Provider. Only present for SAML identity providers with encryption configured.
+              Create a certificate set via POST to
+              `/identity_providers/{id}/saml_certificate`.
+
+          scim_config: The configuration settings for enabling a System for Cross-Domain Identity
+              Management (SCIM) with the identity provider.
+
+          extra_headers: Send extra headers
+
+          extra_query: Add additional query parameters to the request
+
+          extra_body: Add additional JSON properties to the request
+
+          timeout: Override the client-level default timeout for this request, in seconds
+        """
+        ...
+
     @required_args(["config", "name", "type"])
     async def create(
         self,
@@ -2790,7 +2957,8 @@ async def create(
         | identity_provider_create_params.AccessOneloginConfig
         | identity_provider_create_params.AccessPingoneConfig
         | identity_provider_create_params.AccessSAMLConfig
-        | identity_provider_create_params.AccessOnetimepinConfig,
+        | identity_provider_create_params.AccessOnetimepinConfig
+        | identity_provider_create_params.AccessCloudflareConfig,
         name: str,
         type: IdentityProviderType,
         account_id: str | Omit = omit,
@@ -3645,6 +3813,63 @@ async def update(
         """
         ...
 
+    @overload
+    async def update(
+        self,
+        identity_provider_id: str,
+        *,
+        config: identity_provider_update_params.AccessCloudflareConfig,
+        name: str,
+        type: IdentityProviderType,
+        account_id: str | Omit = omit,
+        zone_id: str | Omit = omit,
+        saml_certificate_set_id: str | Omit = omit,
+        scim_config: IdentityProviderSCIMConfigParam | Omit = omit,
+        # Use the following arguments if you need to pass additional parameters to the API that aren't available via kwargs.
+        # The extra values given here take precedence over values defined on the client or passed to this method.
+        extra_headers: Headers | None = None,
+        extra_query: Query | None = None,
+        extra_body: Body | None = None,
+        timeout: float | httpx.Timeout | None | NotGiven = not_given,
+    ) -> Optional[IdentityProvider]:
+        """
+        Updates a configured identity provider.
+
+        Args:
+          identity_provider_id: UUID.
+
+          config: The configuration parameters for the identity provider. To view the required
+              parameters for a specific provider, refer to our
+              [developer documentation](https://developers.cloudflare.com/cloudflare-one/identity/idp-integration/).
+
+          name: The name of the identity provider, shown to users on the login page.
+
+          type: The type of identity provider. To determine the value for a specific provider,
+              refer to our
+              [developer documentation](https://developers.cloudflare.com/cloudflare-one/identity/idp-integration/).
+
+          account_id: The Account ID to use for this endpoint. Mutually exclusive with the Zone ID.
+
+          zone_id: The Zone ID to use for this endpoint. Mutually exclusive with the Account ID.
+
+          saml_certificate_set_id: The UID of the SAML encryption certificate set assigned to this Identity
+              Provider. Only present for SAML identity providers with encryption configured.
+              Create a certificate set via POST to
+              `/identity_providers/{id}/saml_certificate`.
+
+          scim_config: The configuration settings for enabling a System for Cross-Domain Identity
+              Management (SCIM) with the identity provider.
+
+          extra_headers: Send extra headers
+
+          extra_query: Add additional query parameters to the request
+
+          extra_body: Add additional JSON properties to the request
+
+          timeout: Override the client-level default timeout for this request, in seconds
+        """
+        ...
+
     @required_args(["config", "name", "type"])
     async def update(
         self,
@@ -3660,7 +3885,8 @@ async def update(
         | identity_provider_update_params.AccessOneloginConfig
         | identity_provider_update_params.AccessPingoneConfig
         | identity_provider_update_params.AccessSAMLConfig
-        | identity_provider_update_params.AccessOnetimepinConfig,
+        | identity_provider_update_params.AccessOnetimepinConfig
+        | identity_provider_update_params.AccessCloudflareConfig,
         name: str,
         type: IdentityProviderType,
         account_id: str | Omit = omit,

src/cloudflare/types/zero_trust/access/applications/access_rule.py

@@ -1,6 +1,6 @@
 # File generated from our OpenAPI spec by Stainless. See CONTRIBUTING.md for details.
 
-from typing import List, Union
+from typing import List, Union, Optional
 from typing_extensions import Literal, TypeAlias
 
 from .ip_rule import IPRule
@@ -38,6 +38,8 @@
     "AccessLinkedAppTokenRuleLinkedAppToken",
     "AccessUserRiskScoreRule",
     "AccessUserRiskScoreRuleUserRiskScore",
+    "AccessCloudflareAccountMemberRule",
+    "AccessCloudflareAccountMemberRuleCloudflareAccountMember",
 ]
 
 
@@ -130,6 +132,20 @@ class AccessUserRiskScoreRule(BaseModel):
     user_risk_score: AccessUserRiskScoreRuleUserRiskScore
 
 
+class AccessCloudflareAccountMemberRuleCloudflareAccountMember(BaseModel):
+    account_id: Optional[str] = None
+    """Identifier."""
+
+
+class AccessCloudflareAccountMemberRule(BaseModel):
+    """
+    Matches users who are members of a specific Cloudflare account.
+    Requires a Cloudflare identity provider.
+    """
+
+    cloudflare_account_member: AccessCloudflareAccountMemberRuleCloudflareAccountMember
+
+
 AccessRule: TypeAlias = Union[
     GroupRule,
     AnyValidServiceTokenRule,
@@ -156,4 +172,5 @@ class AccessUserRiskScoreRule(BaseModel):
     ServiceTokenRule,
     AccessLinkedAppTokenRule,
     AccessUserRiskScoreRule,
+    AccessCloudflareAccountMemberRule,
 ]

src/cloudflare/types/zero_trust/access/applications/access_rule_param.py

@@ -39,6 +39,8 @@
     "AccessLinkedAppTokenRuleLinkedAppToken",
     "AccessUserRiskScoreRule",
     "AccessUserRiskScoreRuleUserRiskScore",
+    "AccessCloudflareAccountMemberRule",
+    "AccessCloudflareAccountMemberRuleCloudflareAccountMember",
 ]
 
 
@@ -131,6 +133,20 @@ class AccessUserRiskScoreRule(TypedDict, total=False):
     user_risk_score: Required[AccessUserRiskScoreRuleUserRiskScore]
 
 
+class AccessCloudflareAccountMemberRuleCloudflareAccountMember(TypedDict, total=False):
+    account_id: str
+    """Identifier."""
+
+
+class AccessCloudflareAccountMemberRule(TypedDict, total=False):
+    """
+    Matches users who are members of a specific Cloudflare account.
+    Requires a Cloudflare identity provider.
+    """
+
+    cloudflare_account_member: Required[AccessCloudflareAccountMemberRuleCloudflareAccountMember]
+
+
 AccessRuleParam: TypeAlias = Union[
     GroupRuleParam,
     AnyValidServiceTokenRuleParam,
@@ -157,4 +173,5 @@ class AccessUserRiskScoreRule(TypedDict, total=False):
     ServiceTokenRuleParam,
     AccessLinkedAppTokenRule,
     AccessUserRiskScoreRule,
+    AccessCloudflareAccountMemberRule,
 ]