fix(authorizationmanagement): updates to the authorizationmanagement package (#1353)

pranav-new-relic · web-flow · commit a8a643063f3b · 2025-11-25T00:01:59.000+05:30
diff --git a/.tutone.yml b/.tutone.yml
@@ -167,6 +167,8 @@ packages:
       - name: DateTime
         field_type_override: nrtime.DateTime
         skip_type_create: true
+      - name: AuthorizationManagementGrantee
+        field_type_override: "*AuthorizationManagementGrantee"
 
   - name: alerts
     path: pkg/alerts
diff --git a/pkg/authorizationmanagement/authorizationmanagement_api.go b/pkg/authorizationmanagement/authorizationmanagement_api.go
diff --git a/pkg/authorizationmanagement/types.go b/pkg/authorizationmanagement/types.go
@@ -1,24 +1,96 @@
 // Code generated by tutone: DO NOT EDIT
 package authorizationmanagement
 
+// AuthorizationManagementGranteeTypeEnum - Defines the grantee types for authorization management
+type AuthorizationManagementGranteeTypeEnum string
+
+var AuthorizationManagementGranteeTypeEnumTypes = struct {
+	// Group grantee type
+	GROUP AuthorizationManagementGranteeTypeEnum
+	// Organization grantee type
+	ORGANIZATION AuthorizationManagementGranteeTypeEnum
+	// System identity grantee type
+	SYSTEM_IDENTITY AuthorizationManagementGranteeTypeEnum
+	// System identity group grantee type
+	SYSTEM_IDENTITY_GROUP AuthorizationManagementGranteeTypeEnum
+	// User grantee type
+	USER AuthorizationManagementGranteeTypeEnum
+}{
+	// Group grantee type
+	GROUP: "GROUP",
+	// Organization grantee type
+	ORGANIZATION: "ORGANIZATION",
+	// System identity grantee type
+	SYSTEM_IDENTITY: "SYSTEM_IDENTITY",
+	// System identity group grantee type
+	SYSTEM_IDENTITY_GROUP: "SYSTEM_IDENTITY_GROUP",
+	// User grantee type
+	USER: "USER",
+}
+
+// AuthorizationManagementIamParentScopeTypeEnum - Defines the iam parent scope type for grant/revoke mutation
+type AuthorizationManagementIamParentScopeTypeEnum string
+
+var AuthorizationManagementIamParentScopeTypeEnumTypes = struct {
+	// Account iam parent scope
+	ACCOUNT AuthorizationManagementIamParentScopeTypeEnum
+	// Organization iam parent scope
+	ORGANIZATION AuthorizationManagementIamParentScopeTypeEnum
+}{
+	// Account iam parent scope
+	ACCOUNT: "ACCOUNT",
+	// Organization iam parent scope
+	ORGANIZATION: "ORGANIZATION",
+}
+
 // Actor - The `Actor` object contains fields that are scoped to the API user's access level.
 type Actor struct {
 	// The `organization` field is the entry point into data that is scoped to the user's organization.
 	Organization Organization `json:"organization,omitempty"`
 }
 
+// AuthorizationManagementAccessGrant - An Access Grant defines the access a group has to an entity
+type AuthorizationManagementAccessGrant struct {
+	// a value that uniquely identifies this object
+	ID string `json:"id"`
+}
+
 // AuthorizationManagementAccountAccessGrant - The Account and Role a Group should have access to
 type AuthorizationManagementAccountAccessGrant struct {
 	// The Account ID the Role will grant access to
 	AccountID int `json:"accountId"`
+	// The Data Access Policy ID will define what data in an account is allowed
+	DataAccessPolicyId string `json:"dataAccessPolicyId,omitempty"`
 	// The Role ID that will define the access
 	RoleId string `json:"roleId"`
 }
 
+// AuthorizationManagementEntity - The Entity a Group should have access to
+type AuthorizationManagementEntity struct {
+	// The Entity id that will define the Entity's access
+	ID string `json:"id"`
+	// The Entity type that defines the scope (organization, account, or group)
+	Type string `json:"type"`
+}
+
+// AuthorizationManagementEntityAccessGrants - The Entity and Role a Group should have access to
+type AuthorizationManagementEntityAccessGrants struct {
+	// The Entity type that defines the scope (organization, account, or group)
+	Entity AuthorizationManagementEntity `json:"entity,omitempty"`
+	// The IAM Parent entity with the given scope and entity id (organization or account)
+	IamParent AuthorizationManagementIamParent `json:"iamParent,omitempty"`
+	// The Role ID that will define the Entity's access
+	RoleId string `json:"roleId"`
+}
+
 // AuthorizationManagementGrantAccess - The input object representing the access to grant for the group
 type AuthorizationManagementGrantAccess struct {
-	// The Role and the Account the Target Group should have access to
+	// The Role, Data Access Policy, and the Account that the Target Group should have access to
 	AccountAccessGrants []AuthorizationManagementAccountAccessGrant `json:"accountAccessGrants,omitempty"`
+	// The Entity and Role a Group should have access to
+	EntityAccessGrants []AuthorizationManagementEntityAccessGrants `json:"entityAccessGrants,omitempty"`
+	// The Grantee to which the access will be granted
+	Grantee *AuthorizationManagementGrantee `json:"grantee,omitempty"`
 	// The Role and the Group the Target Group should have access to
 	GroupAccessGrants []AuthorizationManagementGroupAccessGrant `json:"groupAccessGrants,omitempty"`
 	// The Group ID that will have access granted
@@ -27,8 +99,10 @@ type AuthorizationManagementGrantAccess struct {
 	OrganizationAccessGrants []AuthorizationManagementOrganizationAccessGrant `json:"organizationAccessGrants,omitempty"`
 }
 
-// AuthorizationManagementGrantAccessPayload - Autogenerated return type of GrantAccess
+// AuthorizationManagementGrantAccessPayload - Autogenerated return type of GrantAccess.
 type AuthorizationManagementGrantAccessPayload struct {
+	// the access grants that were created
+	AccessGrants []AuthorizationManagementAccessGrant `json:"accessGrants"`
 	// the roles that were granted to this group
 	Roles []AuthorizationManagementGrantedRole `json:"roles"`
 }
@@ -37,6 +111,8 @@ type AuthorizationManagementGrantAccessPayload struct {
 type AuthorizationManagementGrantedRole struct {
 	// the account that this role grants access to
 	AccountID int `json:"accountId,omitempty"`
+	// the data access policy that defines the data access
+	DataAccessPolicyId string `json:"dataAccessPolicyId,omitempty"`
 	// the name of the object
 	DisplayName string `json:"displayName,omitempty"`
 	// the group that this role grants access to
@@ -63,6 +139,14 @@ type AuthorizationManagementGrantedRoleSearch struct {
 	TotalCount int `json:"totalCount"`
 }
 
+// AuthorizationManagementGrantee - The actor or group that are the recipient of the access grant
+type AuthorizationManagementGrantee struct {
+	// The ID of the object that is having access modified
+	ID string `json:"id"`
+	// The type of the object that is having access modified. Valid values are: group, user, system_identity, system_identity_group, organization
+	Type AuthorizationManagementGranteeTypeEnum `json:"type"`
+}
+
 // AuthorizationManagementGroupAccessGrant - The Group and Role another Group should have access to
 type AuthorizationManagementGroupAccessGrant struct {
 	// The Group ID the Role will grant access to
@@ -71,6 +155,14 @@ type AuthorizationManagementGroupAccessGrant struct {
 	RoleId string `json:"roleId"`
 }
 
+// AuthorizationManagementIamParent - The IAM Parent entity with the given scope and entity id (organization or account)
+type AuthorizationManagementIamParent struct {
+	// The id of the entity at parent scope
+	ID string `json:"id"`
+	// The parent IAM scope (account or organization)
+	Scope AuthorizationManagementIamParentScopeTypeEnum `json:"scope"`
+}
+
 // AuthorizationManagementOrganizationAccessGrant - The Organization Role a Group should have access to
 type AuthorizationManagementOrganizationAccessGrant struct {
 	// The Role ID that will define the Organization access
@@ -84,8 +176,12 @@ type AuthorizationManagementOrganizationStitchedFields struct {
 
 // AuthorizationManagementRevokeAccess - The input object representing the access to revoke for the group
 type AuthorizationManagementRevokeAccess struct {
-	// The Role and the Account the Target Group should no longer have access to
+	// The Role, Data Access Policy, and the Account that the Target Group should no longer have access to
 	AccountAccessGrants []AuthorizationManagementAccountAccessGrant `json:"accountAccessGrants,omitempty"`
+	// The Entity and Role a Group should no longer have access to
+	EntityAccessGrants []AuthorizationManagementEntityAccessGrants `json:"entityAccessGrants,omitempty"`
+	// The Grantee to which the access will be granted
+	Grantee *AuthorizationManagementGrantee `json:"grantee,omitempty"`
 	// The Role and the Group the Target Group should no longer have access to
 	GroupAccessGrants []AuthorizationManagementGroupAccessGrant `json:"groupAccessGrants,omitempty"`
 	// The Group ID that will have access revoked
@@ -94,8 +190,10 @@ type AuthorizationManagementRevokeAccess struct {
 	OrganizationAccessGrants []AuthorizationManagementOrganizationAccessGrant `json:"organizationAccessGrants,omitempty"`
 }
 
-// AuthorizationManagementRevokeAccessPayload - Autogenerated return type of RevokeAccess
+// AuthorizationManagementRevokeAccessPayload - Autogenerated return type of RevokeAccess.
 type AuthorizationManagementRevokeAccessPayload struct {
+	// the access grants that were revoked
+	AccessGrants []AuthorizationManagementAccessGrant `json:"accessGrants"`
 	// the roles that were revoked from this group
 	Roles []AuthorizationManagementGrantedRole `json:"roles"`
 }
@@ -154,6 +252,8 @@ type Organization struct {
 	CustomerId string `json:"customerId,omitempty"`
 	// The name of the organization.
 	Name string `json:"name,omitempty"`
+	// The storage account of the organization
+	StorageAccountId int `json:"storageAccountId,omitempty"`
 	// The telemetry id for the organization
 	TelemetryId string `json:"telemetryId,omitempty"`
 }
