feat(api): api update (#3876)

Author: stainless-app[bot]

.stats.yml

@@ -1,2 +1,2 @@
 configured_endpoints: 1504
-openapi_spec_url: https://storage.googleapis.com/stainless-sdk-openapi-specs/cloudflare%2Fcloudflare-ee0fe6ded1f6eb6dfeee8aa4341555587ceed6fdce971e87b56809c6dbf2d64a.yml
+openapi_spec_url: https://storage.googleapis.com/stainless-sdk-openapi-specs/cloudflare%2Fcloudflare-8973dde42d42a39c8fbc5f3f1eb1328e6ac0c805ca4d3e5920796749ed58eb0a.yml

api.md

@@ -364,46 +364,6 @@ func (r applicationPolicyJSON) RawJSON() string {
 	return r.raw
 }
 
-type ApplicationPolicyParam struct {
-	// The UUID of the policy
-	ID param.Field[string] `json:"id"`
-	// Administrators who can approve a temporary authentication request.
-	ApprovalGroups param.Field[[]ApprovalGroupParam] `json:"approval_groups"`
-	// Requires the user to request access from an administrator at the start of each
-	// session.
-	ApprovalRequired param.Field[bool] `json:"approval_required"`
-	// The action Access will take if a user matches this policy. Infrastructure
-	// application policies can only use the Allow action.
-	Decision param.Field[Decision] `json:"decision"`
-	// Rules evaluated with a NOT logical operator. To match the policy, a user cannot
-	// meet any of the Exclude rules.
-	Exclude param.Field[[]AccessRuleUnionParam] `json:"exclude"`
-	// Rules evaluated with an OR logical operator. A user needs to meet only one of
-	// the Include rules.
-	Include param.Field[[]AccessRuleUnionParam] `json:"include"`
-	// Require this application to be served in an isolated browser for users matching
-	// this policy. 'Client Web Isolation' must be on for the account in order to use
-	// this feature.
-	IsolationRequired param.Field[bool] `json:"isolation_required"`
-	// The name of the Access policy.
-	Name param.Field[string] `json:"name"`
-	// A custom message that will appear on the purpose justification screen.
-	PurposeJustificationPrompt param.Field[string] `json:"purpose_justification_prompt"`
-	// Require users to enter a justification when they log in to the application.
-	PurposeJustificationRequired param.Field[bool] `json:"purpose_justification_required"`
-	// Rules evaluated with an AND logical operator. To match the policy, a user must
-	// meet all of the Require rules.
-	Require param.Field[[]AccessRuleUnionParam] `json:"require"`
-	// The amount of time that tokens issued for the application will be valid. Must be
-	// in the format `300ms` or `2h45m`. Valid time units are: ns, us (or µs), ms, s,
-	// m, h.
-	SessionDuration param.Field[string] `json:"session_duration"`
-}
-
-func (r ApplicationPolicyParam) MarshalJSON() (data []byte, err error) {
-	return apijson.MarshalRoot(r)
-}
-
 // The application type.
 type ApplicationType string
 

zero_trust/accessapplication.go

@@ -7,11 +7,14 @@ import (
 	"errors"
 	"fmt"
 	"net/http"
+	"net/url"
 
 	"github.com/cloudflare/cloudflare-go/v4/internal/apijson"
+	"github.com/cloudflare/cloudflare-go/v4/internal/apiquery"
 	"github.com/cloudflare/cloudflare-go/v4/internal/param"
 	"github.com/cloudflare/cloudflare-go/v4/internal/requestconfig"
 	"github.com/cloudflare/cloudflare-go/v4/option"
+	"github.com/cloudflare/cloudflare-go/v4/shared"
 )
 
 // AccessApplicationPolicyTestService contains methods and other services that help
@@ -37,29 +40,39 @@ func NewAccessApplicationPolicyTestService(opts ...option.RequestOption) (r *Acc
 
 // Starts an Access policy test.
 func (r *AccessApplicationPolicyTestService) New(ctx context.Context, params AccessApplicationPolicyTestNewParams, opts ...option.RequestOption) (res *AccessApplicationPolicyTestNewResponse, err error) {
+	var env AccessApplicationPolicyTestNewResponseEnvelope
 	opts = append(r.Options[:], opts...)
 	if params.AccountID.Value == "" {
 		err = errors.New("missing required account_id parameter")
 		return
 	}
 	path := fmt.Sprintf("accounts/%s/access/policy-tests", params.AccountID)
-	err = requestconfig.ExecuteNewRequest(ctx, http.MethodPost, path, params, &res, opts...)
+	err = requestconfig.ExecuteNewRequest(ctx, http.MethodPost, path, params, &env, opts...)
+	if err != nil {
+		return
+	}
+	res = &env.Result
 	return
 }
 
 // Fetches the current status of a given Access policy test.
-func (r *AccessApplicationPolicyTestService) Get(ctx context.Context, policyTestID string, query AccessApplicationPolicyTestGetParams, opts ...option.RequestOption) (res *AccessApplicationPolicyTestGetResponse, err error) {
+func (r *AccessApplicationPolicyTestService) Get(ctx context.Context, policyTestID string, params AccessApplicationPolicyTestGetParams, opts ...option.RequestOption) (res *AccessApplicationPolicyTestGetResponse, err error) {
+	var env AccessApplicationPolicyTestGetResponseEnvelope
 	opts = append(r.Options[:], opts...)
-	if query.AccountID.Value == "" {
+	if params.AccountID.Value == "" {
 		err = errors.New("missing required account_id parameter")
 		return
 	}
 	if policyTestID == "" {
 		err = errors.New("missing required policy_test_id parameter")
 		return
 	}
-	path := fmt.Sprintf("accounts/%s/access/policy-tests/%s", query.AccountID, policyTestID)
-	err = requestconfig.ExecuteNewRequest(ctx, http.MethodGet, path, nil, &res, opts...)
+	path := fmt.Sprintf("accounts/%s/access/policy-tests/%s", params.AccountID, policyTestID)
+	err = requestconfig.ExecuteNewRequest(ctx, http.MethodGet, path, params, &env, opts...)
+	if err != nil {
+		return
+	}
+	res = &env.Result
 	return
 }
 
@@ -168,15 +181,149 @@ func (r AccessApplicationPolicyTestGetResponseStatus) IsKnown() bool {
 
 type AccessApplicationPolicyTestNewParams struct {
 	// Identifier
-	AccountID         param.Field[string]    `path:"account_id,required"`
-	ApplicationPolicy ApplicationPolicyParam `json:"application_policy,required"`
+	AccountID param.Field[string]                                       `path:"account_id,required"`
+	Policies  param.Field[[]AccessApplicationPolicyTestNewParamsPolicy] `json:"policies"`
 }
 
 func (r AccessApplicationPolicyTestNewParams) MarshalJSON() (data []byte, err error) {
-	return apijson.MarshalRoot(r.ApplicationPolicy)
+	return apijson.MarshalRoot(r)
+}
+
+type AccessApplicationPolicyTestNewParamsPolicy struct {
+	// The action Access will take if a user matches this policy. Infrastructure
+	// application policies can only use the Allow action.
+	Decision param.Field[Decision] `json:"decision,required"`
+	// Rules evaluated with an OR logical operator. A user needs to meet only one of
+	// the Include rules.
+	Include param.Field[[]AccessRuleUnionParam] `json:"include,required"`
+	// The name of the Access policy.
+	Name param.Field[string] `json:"name,required"`
+	// Administrators who can approve a temporary authentication request.
+	ApprovalGroups param.Field[[]ApprovalGroupParam] `json:"approval_groups"`
+	// Requires the user to request access from an administrator at the start of each
+	// session.
+	ApprovalRequired param.Field[bool] `json:"approval_required"`
+	// Rules evaluated with a NOT logical operator. To match the policy, a user cannot
+	// meet any of the Exclude rules.
+	Exclude param.Field[[]AccessRuleUnionParam] `json:"exclude"`
+	// Require this application to be served in an isolated browser for users matching
+	// this policy. 'Client Web Isolation' must be on for the account in order to use
+	// this feature.
+	IsolationRequired param.Field[bool] `json:"isolation_required"`
+	// A custom message that will appear on the purpose justification screen.
+	PurposeJustificationPrompt param.Field[string] `json:"purpose_justification_prompt"`
+	// Require users to enter a justification when they log in to the application.
+	PurposeJustificationRequired param.Field[bool] `json:"purpose_justification_required"`
+	// Rules evaluated with an AND logical operator. To match the policy, a user must
+	// meet all of the Require rules.
+	Require param.Field[[]AccessRuleUnionParam] `json:"require"`
+	// The amount of time that tokens issued for the application will be valid. Must be
+	// in the format `300ms` or `2h45m`. Valid time units are: ns, us (or µs), ms, s,
+	// m, h.
+	SessionDuration param.Field[string] `json:"session_duration"`
+}
+
+func (r AccessApplicationPolicyTestNewParamsPolicy) MarshalJSON() (data []byte, err error) {
+	return apijson.MarshalRoot(r)
+}
+
+type AccessApplicationPolicyTestNewResponseEnvelope struct {
+	Errors   []shared.ResponseInfo `json:"errors,required"`
+	Messages []shared.ResponseInfo `json:"messages,required"`
+	// Whether the API call was successful
+	Success AccessApplicationPolicyTestNewResponseEnvelopeSuccess `json:"success,required"`
+	Result  AccessApplicationPolicyTestNewResponse                `json:"result"`
+	JSON    accessApplicationPolicyTestNewResponseEnvelopeJSON    `json:"-"`
+}
+
+// accessApplicationPolicyTestNewResponseEnvelopeJSON contains the JSON metadata
+// for the struct [AccessApplicationPolicyTestNewResponseEnvelope]
+type accessApplicationPolicyTestNewResponseEnvelopeJSON struct {
+	Errors      apijson.Field
+	Messages    apijson.Field
+	Success     apijson.Field
+	Result      apijson.Field
+	raw         string
+	ExtraFields map[string]apijson.Field
+}
+
+func (r *AccessApplicationPolicyTestNewResponseEnvelope) UnmarshalJSON(data []byte) (err error) {
+	return apijson.UnmarshalRoot(data, r)
+}
+
+func (r accessApplicationPolicyTestNewResponseEnvelopeJSON) RawJSON() string {
+	return r.raw
+}
+
+// Whether the API call was successful
+type AccessApplicationPolicyTestNewResponseEnvelopeSuccess bool
+
+const (
+	AccessApplicationPolicyTestNewResponseEnvelopeSuccessTrue AccessApplicationPolicyTestNewResponseEnvelopeSuccess = true
+)
+
+func (r AccessApplicationPolicyTestNewResponseEnvelopeSuccess) IsKnown() bool {
+	switch r {
+	case AccessApplicationPolicyTestNewResponseEnvelopeSuccessTrue:
+		return true
+	}
+	return false
 }
 
 type AccessApplicationPolicyTestGetParams struct {
 	// Identifier
 	AccountID param.Field[string] `path:"account_id,required"`
+	Page      param.Field[int64]  `query:"page"`
+}
+
+// URLQuery serializes [AccessApplicationPolicyTestGetParams]'s query parameters as
+// `url.Values`.
+func (r AccessApplicationPolicyTestGetParams) URLQuery() (v url.Values) {
+	return apiquery.MarshalWithSettings(r, apiquery.QuerySettings{
+		ArrayFormat:  apiquery.ArrayQueryFormatRepeat,
+		NestedFormat: apiquery.NestedQueryFormatDots,
+	})
+}
+
+type AccessApplicationPolicyTestGetResponseEnvelope struct {
+	Errors   []shared.ResponseInfo `json:"errors,required"`
+	Messages []shared.ResponseInfo `json:"messages,required"`
+	// Whether the API call was successful
+	Success AccessApplicationPolicyTestGetResponseEnvelopeSuccess `json:"success,required"`
+	Result  AccessApplicationPolicyTestGetResponse                `json:"result"`
+	JSON    accessApplicationPolicyTestGetResponseEnvelopeJSON    `json:"-"`
+}
+
+// accessApplicationPolicyTestGetResponseEnvelopeJSON contains the JSON metadata
+// for the struct [AccessApplicationPolicyTestGetResponseEnvelope]
+type accessApplicationPolicyTestGetResponseEnvelopeJSON struct {
+	Errors      apijson.Field
+	Messages    apijson.Field
+	Success     apijson.Field
+	Result      apijson.Field
+	raw         string
+	ExtraFields map[string]apijson.Field
+}
+
+func (r *AccessApplicationPolicyTestGetResponseEnvelope) UnmarshalJSON(data []byte) (err error) {
+	return apijson.UnmarshalRoot(data, r)
+}
+
+func (r accessApplicationPolicyTestGetResponseEnvelopeJSON) RawJSON() string {
+	return r.raw
+}
+
+// Whether the API call was successful
+type AccessApplicationPolicyTestGetResponseEnvelopeSuccess bool
+
+const (
+	AccessApplicationPolicyTestGetResponseEnvelopeSuccessTrue AccessApplicationPolicyTestGetResponseEnvelopeSuccess = true
+)
+
+func (r AccessApplicationPolicyTestGetResponseEnvelopeSuccess) IsKnown() bool {
+	switch r {
+	case AccessApplicationPolicyTestGetResponseEnvelopeSuccessTrue:
+		return true
+	}
+	return false
 }

zero_trust/accessapplicationpolicytest.go

@@ -29,8 +29,14 @@ func TestAccessApplicationPolicyTestNewWithOptionalParams(t *testing.T) {
 	)
 	_, err := client.ZeroTrust.Access.Applications.PolicyTests.New(context.TODO(), zero_trust.AccessApplicationPolicyTestNewParams{
 		AccountID: cloudflare.F("023e105f4ecef8ad9ca31a8372d0c353"),
-		ApplicationPolicy: zero_trust.ApplicationPolicyParam{
-			ID: cloudflare.F("f174e90a-fafe-4643-bbbc-4a0ed4fc8415"),
+		Policies: cloudflare.F([]zero_trust.AccessApplicationPolicyTestNewParamsPolicy{{
+			Decision: cloudflare.F(zero_trust.DecisionAllow),
+			Include: cloudflare.F([]zero_trust.AccessRuleUnionParam{zero_trust.GroupRuleParam{
+				Group: cloudflare.F(zero_trust.GroupRuleGroupParam{
+					ID: cloudflare.F("aa0a4aab-672b-4bdb-bc33-a59f1130a11f"),
+				}),
+			}}),
+			Name: cloudflare.F("Allow devs"),
 			ApprovalGroups: cloudflare.F([]zero_trust.ApprovalGroupParam{{
 				ApprovalsNeeded: cloudflare.F(1.000000),
 				EmailAddresses:  cloudflare.F([]string{"test1@cloudflare.com", "test2@cloudflare.com"}),
@@ -41,19 +47,12 @@ func TestAccessApplicationPolicyTestNewWithOptionalParams(t *testing.T) {
 				EmailListUUID:   cloudflare.F("597147a1-976b-4ef2-9af0-81d5d007fc34"),
 			}}),
 			ApprovalRequired: cloudflare.F(true),
-			Decision:         cloudflare.F(zero_trust.DecisionAllow),
 			Exclude: cloudflare.F([]zero_trust.AccessRuleUnionParam{zero_trust.GroupRuleParam{
 				Group: cloudflare.F(zero_trust.GroupRuleGroupParam{
 					ID: cloudflare.F("aa0a4aab-672b-4bdb-bc33-a59f1130a11f"),
 				}),
 			}}),
-			Include: cloudflare.F([]zero_trust.AccessRuleUnionParam{zero_trust.GroupRuleParam{
-				Group: cloudflare.F(zero_trust.GroupRuleGroupParam{
-					ID: cloudflare.F("aa0a4aab-672b-4bdb-bc33-a59f1130a11f"),
-				}),
-			}}),
 			IsolationRequired:            cloudflare.F(false),
-			Name:                         cloudflare.F("Allow devs"),
 			PurposeJustificationPrompt:   cloudflare.F("Please enter a justification for entering this protected domain."),
 			PurposeJustificationRequired: cloudflare.F(true),
 			Require: cloudflare.F([]zero_trust.AccessRuleUnionParam{zero_trust.GroupRuleParam{
@@ -62,7 +61,7 @@ func TestAccessApplicationPolicyTestNewWithOptionalParams(t *testing.T) {
 				}),
 			}}),
 			SessionDuration: cloudflare.F("24h"),
-		},
+		}}),
 	})
 	if err != nil {
 		var apierr *cloudflare.Error
@@ -73,7 +72,7 @@ func TestAccessApplicationPolicyTestNewWithOptionalParams(t *testing.T) {
 	}
 }
 
-func TestAccessApplicationPolicyTestGet(t *testing.T) {
+func TestAccessApplicationPolicyTestGetWithOptionalParams(t *testing.T) {
 	baseURL := "http://localhost:4010"
 	if envURL, ok := os.LookupEnv("TEST_API_BASE_URL"); ok {
 		baseURL = envURL
@@ -91,6 +90,7 @@ func TestAccessApplicationPolicyTestGet(t *testing.T) {
 		"f1a8b3c9d4e5f6789a0b1c2d3e4f5678a9b0c1d2e3f4a5b67890c1d2e3f4b5a6",
 		zero_trust.AccessApplicationPolicyTestGetParams{
 			AccountID: cloudflare.F("023e105f4ecef8ad9ca31a8372d0c353"),
+			Page:      cloudflare.F(int64(0)),
 		},
 	)
 	if err != nil {

zero_trust/accessapplicationpolicytest_test.go

@@ -12,6 +12,7 @@ import (
 	"github.com/cloudflare/cloudflare-go/v4/internal/param"
 	"github.com/cloudflare/cloudflare-go/v4/internal/requestconfig"
 	"github.com/cloudflare/cloudflare-go/v4/option"
+	"github.com/cloudflare/cloudflare-go/v4/packages/pagination"
 )
 
 // AccessApplicationPolicyTestUserService contains methods and other services that
@@ -34,8 +35,10 @@ func NewAccessApplicationPolicyTestUserService(opts ...option.RequestOption) (r
 }
 
 // Fetches a single page of user results from an Access policy test.
-func (r *AccessApplicationPolicyTestUserService) List(ctx context.Context, policyTestID string, query AccessApplicationPolicyTestUserListParams, opts ...option.RequestOption) (res *[]AccessApplicationPolicyTestUserListResponse, err error) {
+func (r *AccessApplicationPolicyTestUserService) List(ctx context.Context, policyTestID string, query AccessApplicationPolicyTestUserListParams, opts ...option.RequestOption) (res *pagination.SinglePage[AccessApplicationPolicyTestUserListResponse], err error) {
+	var raw *http.Response
 	opts = append(r.Options[:], opts...)
+	opts = append([]option.RequestOption{option.WithResponseInto(&raw)}, opts...)
 	if query.AccountID.Value == "" {
 		err = errors.New("missing required account_id parameter")
 		return
@@ -45,8 +48,21 @@ func (r *AccessApplicationPolicyTestUserService) List(ctx context.Context, polic
 		return
 	}
 	path := fmt.Sprintf("accounts/%s/access/policy-tests/%s/users", query.AccountID, policyTestID)
-	err = requestconfig.ExecuteNewRequest(ctx, http.MethodGet, path, nil, &res, opts...)
-	return
+	cfg, err := requestconfig.NewRequestConfig(ctx, http.MethodGet, path, nil, &res, opts...)
+	if err != nil {
+		return nil, err
+	}
+	err = cfg.Execute()
+	if err != nil {
+		return nil, err
+	}
+	res.SetPageConfig(cfg, raw)
+	return res, nil
+}
+
+// Fetches a single page of user results from an Access policy test.
+func (r *AccessApplicationPolicyTestUserService) ListAutoPaging(ctx context.Context, policyTestID string, query AccessApplicationPolicyTestUserListParams, opts ...option.RequestOption) *pagination.SinglePageAutoPager[AccessApplicationPolicyTestUserListResponse] {
+	return pagination.NewSinglePageAutoPager(r.List(ctx, policyTestID, query, opts...))
 }
 
 type AccessApplicationPolicyTestUserListResponse struct {

zero_trust/accessapplicationpolicytestuser.go

@@ -39,7 +39,7 @@ func NewAccessGroupService(opts ...option.RequestOption) (r *AccessGroupService)
 }
 
 // Creates a new Access group.
-func (r *AccessGroupService) New(ctx context.Context, params AccessGroupNewParams, opts ...option.RequestOption) (res *ZeroTrustGroup, err error) {
+func (r *AccessGroupService) New(ctx context.Context, params AccessGroupNewParams, opts ...option.RequestOption) (res *AccessGroupNewResponse, err error) {
 	var env AccessGroupNewResponseEnvelope
 	opts = append(r.Options[:], opts...)
 	var accountOrZone string
@@ -70,7 +70,7 @@ func (r *AccessGroupService) New(ctx context.Context, params AccessGroupNewParam
 }
 
 // Updates a configured Access group.
-func (r *AccessGroupService) Update(ctx context.Context, groupID string, params AccessGroupUpdateParams, opts ...option.RequestOption) (res *ZeroTrustGroup, err error) {
+func (r *AccessGroupService) Update(ctx context.Context, groupID string, params AccessGroupUpdateParams, opts ...option.RequestOption) (res *AccessGroupUpdateResponse, err error) {
 	var env AccessGroupUpdateResponseEnvelope
 	opts = append(r.Options[:], opts...)
 	var accountOrZone string
@@ -105,7 +105,7 @@ func (r *AccessGroupService) Update(ctx context.Context, groupID string, params
 }
 
 // Lists all Access groups.
-func (r *AccessGroupService) List(ctx context.Context, params AccessGroupListParams, opts ...option.RequestOption) (res *pagination.SinglePage[ZeroTrustGroup], err error) {
+func (r *AccessGroupService) List(ctx context.Context, params AccessGroupListParams, opts ...option.RequestOption) (res *pagination.SinglePage[AccessGroupListResponse], err error) {
 	var raw *http.Response
 	opts = append(r.Options[:], opts...)
 	opts = append([]option.RequestOption{option.WithResponseInto(&raw)}, opts...)
@@ -141,7 +141,7 @@ func (r *AccessGroupService) List(ctx context.Context, params AccessGroupListPar
 }
 
 // Lists all Access groups.
-func (r *AccessGroupService) ListAutoPaging(ctx context.Context, params AccessGroupListParams, opts ...option.RequestOption) *pagination.SinglePageAutoPager[ZeroTrustGroup] {
+func (r *AccessGroupService) ListAutoPaging(ctx context.Context, params AccessGroupListParams, opts ...option.RequestOption) *pagination.SinglePageAutoPager[AccessGroupListResponse] {
 	return pagination.NewSinglePageAutoPager(r.List(ctx, params, opts...))
 }
 
@@ -181,7 +181,7 @@ func (r *AccessGroupService) Delete(ctx context.Context, groupID string, body Ac
 }
 
 // Fetches a single Access group.
-func (r *AccessGroupService) Get(ctx context.Context, groupID string, query AccessGroupGetParams, opts ...option.RequestOption) (res *ZeroTrustGroup, err error) {
+func (r *AccessGroupService) Get(ctx context.Context, groupID string, query AccessGroupGetParams, opts ...option.RequestOption) (res *AccessGroupGetResponse, err error) {
 	var env AccessGroupGetResponseEnvelope
 	opts = append(r.Options[:], opts...)
 	var accountOrZone string
@@ -215,7 +215,7 @@ func (r *AccessGroupService) Get(ctx context.Context, groupID string, query Acce
 	return
 }
 
-type ZeroTrustGroup struct {
+type AccessGroupNewResponse struct {
 	// UUID
 	ID        string    `json:"id"`
 	CreatedAt time.Time `json:"created_at" format:"date-time"`
@@ -232,13 +232,14 @@ type ZeroTrustGroup struct {
 	Name string `json:"name"`
 	// Rules evaluated with an AND logical operator. To match a policy, a user must
 	// meet all of the Require rules.
-	Require   []AccessRule       `json:"require"`
-	UpdatedAt time.Time          `json:"updated_at" format:"date-time"`
-	JSON      zeroTrustGroupJSON `json:"-"`
+	Require   []AccessRule               `json:"require"`
+	UpdatedAt time.Time                  `json:"updated_at" format:"date-time"`
+	JSON      accessGroupNewResponseJSON `json:"-"`
 }
 
-// zeroTrustGroupJSON contains the JSON metadata for the struct [ZeroTrustGroup]
-type zeroTrustGroupJSON struct {
+// accessGroupNewResponseJSON contains the JSON metadata for the struct
+// [AccessGroupNewResponse]
+type accessGroupNewResponseJSON struct {
 	ID          apijson.Field
 	CreatedAt   apijson.Field
 	Exclude     apijson.Field
@@ -251,11 +252,101 @@ type zeroTrustGroupJSON struct {
 	ExtraFields map[string]apijson.Field
 }
 
-func (r *ZeroTrustGroup) UnmarshalJSON(data []byte) (err error) {
+func (r *AccessGroupNewResponse) UnmarshalJSON(data []byte) (err error) {
 	return apijson.UnmarshalRoot(data, r)
 }
 
-func (r zeroTrustGroupJSON) RawJSON() string {
+func (r accessGroupNewResponseJSON) RawJSON() string {
+	return r.raw
+}
+
+type AccessGroupUpdateResponse struct {
+	// UUID
+	ID        string    `json:"id"`
+	CreatedAt time.Time `json:"created_at" format:"date-time"`
+	// Rules evaluated with a NOT logical operator. To match a policy, a user cannot
+	// meet any of the Exclude rules.
+	Exclude []AccessRule `json:"exclude"`
+	// Rules evaluated with an OR logical operator. A user needs to meet only one of
+	// the Include rules.
+	Include []AccessRule `json:"include"`
+	// Rules evaluated with an AND logical operator. To match a policy, a user must
+	// meet all of the Require rules.
+	IsDefault []AccessRule `json:"is_default"`
+	// The name of the Access group.
+	Name string `json:"name"`
+	// Rules evaluated with an AND logical operator. To match a policy, a user must
+	// meet all of the Require rules.
+	Require   []AccessRule                  `json:"require"`
+	UpdatedAt time.Time                     `json:"updated_at" format:"date-time"`
+	JSON      accessGroupUpdateResponseJSON `json:"-"`
+}
+
+// accessGroupUpdateResponseJSON contains the JSON metadata for the struct
+// [AccessGroupUpdateResponse]
+type accessGroupUpdateResponseJSON struct {
+	ID          apijson.Field
+	CreatedAt   apijson.Field
+	Exclude     apijson.Field
+	Include     apijson.Field
+	IsDefault   apijson.Field
+	Name        apijson.Field
+	Require     apijson.Field
+	UpdatedAt   apijson.Field
+	raw         string
+	ExtraFields map[string]apijson.Field
+}
+
+func (r *AccessGroupUpdateResponse) UnmarshalJSON(data []byte) (err error) {
+	return apijson.UnmarshalRoot(data, r)
+}
+
+func (r accessGroupUpdateResponseJSON) RawJSON() string {
+	return r.raw
+}
+
+type AccessGroupListResponse struct {
+	// UUID
+	ID        string    `json:"id"`
+	CreatedAt time.Time `json:"created_at" format:"date-time"`
+	// Rules evaluated with a NOT logical operator. To match a policy, a user cannot
+	// meet any of the Exclude rules.
+	Exclude []AccessRule `json:"exclude"`
+	// Rules evaluated with an OR logical operator. A user needs to meet only one of
+	// the Include rules.
+	Include []AccessRule `json:"include"`
+	// Rules evaluated with an AND logical operator. To match a policy, a user must
+	// meet all of the Require rules.
+	IsDefault []AccessRule `json:"is_default"`
+	// The name of the Access group.
+	Name string `json:"name"`
+	// Rules evaluated with an AND logical operator. To match a policy, a user must
+	// meet all of the Require rules.
+	Require   []AccessRule                `json:"require"`
+	UpdatedAt time.Time                   `json:"updated_at" format:"date-time"`
+	JSON      accessGroupListResponseJSON `json:"-"`
+}
+
+// accessGroupListResponseJSON contains the JSON metadata for the struct
+// [AccessGroupListResponse]
+type accessGroupListResponseJSON struct {
+	ID          apijson.Field
+	CreatedAt   apijson.Field
+	Exclude     apijson.Field
+	Include     apijson.Field
+	IsDefault   apijson.Field
+	Name        apijson.Field
+	Require     apijson.Field
+	UpdatedAt   apijson.Field
+	raw         string
+	ExtraFields map[string]apijson.Field
+}
+
+func (r *AccessGroupListResponse) UnmarshalJSON(data []byte) (err error) {
+	return apijson.UnmarshalRoot(data, r)
+}
+
+func (r accessGroupListResponseJSON) RawJSON() string {
 	return r.raw
 }
 
@@ -281,6 +372,51 @@ func (r accessGroupDeleteResponseJSON) RawJSON() string {
 	return r.raw
 }
 
+type AccessGroupGetResponse struct {
+	// UUID
+	ID        string    `json:"id"`
+	CreatedAt time.Time `json:"created_at" format:"date-time"`
+	// Rules evaluated with a NOT logical operator. To match a policy, a user cannot
+	// meet any of the Exclude rules.
+	Exclude []AccessRule `json:"exclude"`
+	// Rules evaluated with an OR logical operator. A user needs to meet only one of
+	// the Include rules.
+	Include []AccessRule `json:"include"`
+	// Rules evaluated with an AND logical operator. To match a policy, a user must
+	// meet all of the Require rules.
+	IsDefault []AccessRule `json:"is_default"`
+	// The name of the Access group.
+	Name string `json:"name"`
+	// Rules evaluated with an AND logical operator. To match a policy, a user must
+	// meet all of the Require rules.
+	Require   []AccessRule               `json:"require"`
+	UpdatedAt time.Time                  `json:"updated_at" format:"date-time"`
+	JSON      accessGroupGetResponseJSON `json:"-"`
+}
+
+// accessGroupGetResponseJSON contains the JSON metadata for the struct
+// [AccessGroupGetResponse]
+type accessGroupGetResponseJSON struct {
+	ID          apijson.Field
+	CreatedAt   apijson.Field
+	Exclude     apijson.Field
+	Include     apijson.Field
+	IsDefault   apijson.Field
+	Name        apijson.Field
+	Require     apijson.Field
+	UpdatedAt   apijson.Field
+	raw         string
+	ExtraFields map[string]apijson.Field
+}
+
+func (r *AccessGroupGetResponse) UnmarshalJSON(data []byte) (err error) {
+	return apijson.UnmarshalRoot(data, r)
+}
+
+func (r accessGroupGetResponseJSON) RawJSON() string {
+	return r.raw
+}
+
 type AccessGroupNewParams struct {
 	// Rules evaluated with an OR logical operator. A user needs to meet only one of
 	// the Include rules.
@@ -310,7 +446,7 @@ type AccessGroupNewResponseEnvelope struct {
 	Messages []shared.ResponseInfo `json:"messages,required"`
 	// Whether the API call was successful
 	Success AccessGroupNewResponseEnvelopeSuccess `json:"success,required"`
-	Result  ZeroTrustGroup                        `json:"result"`
+	Result  AccessGroupNewResponse                `json:"result"`
 	JSON    accessGroupNewResponseEnvelopeJSON    `json:"-"`
 }
 
@@ -377,7 +513,7 @@ type AccessGroupUpdateResponseEnvelope struct {
 	Messages []shared.ResponseInfo `json:"messages,required"`
 	// Whether the API call was successful
 	Success AccessGroupUpdateResponseEnvelopeSuccess `json:"success,required"`
-	Result  ZeroTrustGroup                           `json:"result"`
+	Result  AccessGroupUpdateResponse                `json:"result"`
 	JSON    accessGroupUpdateResponseEnvelopeJSON    `json:"-"`
 }
 
@@ -496,7 +632,7 @@ type AccessGroupGetResponseEnvelope struct {
 	Messages []shared.ResponseInfo `json:"messages,required"`
 	// Whether the API call was successful
 	Success AccessGroupGetResponseEnvelopeSuccess `json:"success,required"`
-	Result  ZeroTrustGroup                        `json:"result"`
+	Result  AccessGroupGetResponse                `json:"result"`
 	JSON    accessGroupGetResponseEnvelopeJSON    `json:"-"`
 }
 

zero_trust/accessgroup.go

@@ -44,7 +44,7 @@ func NewAccessUserService(opts ...option.RequestOption) (r *AccessUserService) {
 }
 
 // Gets a list of users for an account.
-func (r *AccessUserService) List(ctx context.Context, params AccessUserListParams, opts ...option.RequestOption) (res *pagination.SinglePage[AccessUser], err error) {
+func (r *AccessUserService) List(ctx context.Context, params AccessUserListParams, opts ...option.RequestOption) (res *pagination.SinglePage[AccessUserListResponse], err error) {
 	var raw *http.Response
 	opts = append(r.Options[:], opts...)
 	opts = append([]option.RequestOption{option.WithResponseInto(&raw)}, opts...)
@@ -66,11 +66,11 @@ func (r *AccessUserService) List(ctx context.Context, params AccessUserListParam
 }
 
 // Gets a list of users for an account.
-func (r *AccessUserService) ListAutoPaging(ctx context.Context, params AccessUserListParams, opts ...option.RequestOption) *pagination.SinglePageAutoPager[AccessUser] {
+func (r *AccessUserService) ListAutoPaging(ctx context.Context, params AccessUserListParams, opts ...option.RequestOption) *pagination.SinglePageAutoPager[AccessUserListResponse] {
 	return pagination.NewSinglePageAutoPager(r.List(ctx, params, opts...))
 }
 
-type AccessUser struct {
+type AccessUserListResponse struct {
 	// UUID
 	ID string `json:"id"`
 	// True if the user has authenticated with Cloudflare Access.
@@ -89,13 +89,14 @@ type AccessUser struct {
 	// The unique API identifier for the Zero Trust seat.
 	SeatUID string `json:"seat_uid"`
 	// The unique API identifier for the user.
-	UID       string         `json:"uid"`
-	UpdatedAt time.Time      `json:"updated_at" format:"date-time"`
-	JSON      accessUserJSON `json:"-"`
+	UID       string                     `json:"uid"`
+	UpdatedAt time.Time                  `json:"updated_at" format:"date-time"`
+	JSON      accessUserListResponseJSON `json:"-"`
 }
 
-// accessUserJSON contains the JSON metadata for the struct [AccessUser]
-type accessUserJSON struct {
+// accessUserListResponseJSON contains the JSON metadata for the struct
+// [AccessUserListResponse]
+type accessUserListResponseJSON struct {
 	ID                  apijson.Field
 	AccessSeat          apijson.Field
 	ActiveDeviceCount   apijson.Field
@@ -111,11 +112,11 @@ type accessUserJSON struct {
 	ExtraFields         map[string]apijson.Field
 }
 
-func (r *AccessUser) UnmarshalJSON(data []byte) (err error) {
+func (r *AccessUserListResponse) UnmarshalJSON(data []byte) (err error) {
 	return apijson.UnmarshalRoot(data, r)
 }
 
-func (r accessUserJSON) RawJSON() string {
+func (r accessUserListResponseJSON) RawJSON() string {
 	return r.raw
 }