docs: update generated docs (#981)
diff --git a/docs/dyn/container_v1beta1.projects.zones.clusters.html b/docs/dyn/container_v1beta1.projects.zones.clusters.html
index 74a0c40..178d16c 100644
--- a/docs/dyn/container_v1beta1.projects.zones.clusters.html
+++ b/docs/dyn/container_v1beta1.projects.zones.clusters.html
@@ -149,49 +149,23 @@
The object takes the form of:
{ # SetAddonsRequest sets the addons associated with the cluster.
- "name": "A String", # The name (project, location, cluster) of the cluster to set addons.
- # Specified in the format `projects/*/locations/*/clusters/*`.
- "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
- # number](https://support.google.com/cloud/answer/6158840).
- # This field has been deprecated and replaced by the name field.
- "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster resides. This field has been deprecated and replaced by the name
- # field.
"clusterId": "A String", # Required. Deprecated. The name of the cluster to upgrade.
# This field has been deprecated and replaced by the name field.
+ "name": "A String", # The name (project, location, cluster) of the cluster to set addons.
+ # Specified in the format `projects/*/locations/*/clusters/*`.
"addonsConfig": { # Configuration for the addons that can be automatically spun up in the # Required. The desired configurations for the various addons available to run in the
# cluster.
# cluster, enabling additional functionality.
- "httpLoadBalancing": { # Configuration options for the HTTP (L7) load balancing controller addon, # Configuration for the HTTP (L7) load balancing controller addon, which
- # makes it easy to set up HTTP load balancers for services in a cluster.
- # which makes it easy to set up HTTP load balancers for services in a cluster.
- "disabled": True or False, # Whether the HTTP Load Balancing controller is enabled in the cluster.
- # When enabled, it runs a small pod in the cluster that manages the load
- # balancers.
- },
- "kubernetesDashboard": { # Configuration for the Kubernetes Dashboard. # Configuration for the Kubernetes Dashboard.
- # This addon is deprecated, and will be disabled in 1.15. It is recommended
- # to use the Cloud Console to manage and monitor your Kubernetes clusters,
- # workloads and applications. For more information, see:
- # https://cloud.google.com/kubernetes-engine/docs/concepts/dashboards
- "disabled": True or False, # Whether the Kubernetes Dashboard is enabled for this cluster.
- },
- "dnsCacheConfig": { # Configuration for NodeLocal DNSCache # Configuration for NodeLocalDNS, a dns cache running on cluster nodes
- "enabled": True or False, # Whether NodeLocal DNSCache is enabled for this cluster.
- },
- "kalmConfig": { # Configuration options for the KALM addon. # Configuration for the KALM addon, which manages the lifecycle of k8s
- # applications.
- "enabled": True or False, # Whether KALM is enabled for this cluster.
+ "configConnectorConfig": { # Configuration options for the Config Connector add-on. # Configuration for the ConfigConnector add-on, a Kubernetes
+ # extension to manage hosted GCP services through the Kubernetes API
+ "enabled": True or False, # Whether Cloud Connector is enabled for this cluster.
},
"gcePersistentDiskCsiDriverConfig": { # Configuration for the Compute Engine PD CSI driver. This option can only be # Configuration for the Compute Engine Persistent Disk CSI driver.
# enabled at cluster creation time.
"enabled": True or False, # Whether the Compute Engine PD CSI driver is enabled for this cluster.
},
- "istioConfig": { # Configuration options for Istio addon. # Configuration for Istio, an open platform to connect, manage, and secure
- # microservices.
- "auth": "A String", # The specified Istio auth mode, either none, or mutual TLS.
- "disabled": True or False, # Whether Istio is enabled for this cluster.
+ "dnsCacheConfig": { # Configuration for NodeLocal DNSCache # Configuration for NodeLocalDNS, a dns cache running on cluster nodes
+ "enabled": True or False, # Whether NodeLocal DNSCache is enabled for this cluster.
},
"networkPolicyConfig": { # Configuration for NetworkPolicy. This only tracks whether the addon # Configuration for NetworkPolicy. This only tracks whether the addon
# is enabled or not on the Master, it does not track whether network policy
@@ -200,14 +174,24 @@
# is enabled for the nodes.
"disabled": True or False, # Whether NetworkPolicy is enabled for this cluster.
},
- "cloudRunConfig": { # Configuration options for the Cloud Run feature. # Configuration for the Cloud Run addon. The `IstioConfig` addon must be
- # enabled in order to enable Cloud Run addon. This option can only be enabled
- # at cluster creation time.
- "disabled": True or False, # Whether Cloud Run addon is enabled for this cluster.
+ "kubernetesDashboard": { # Configuration for the Kubernetes Dashboard. # Configuration for the Kubernetes Dashboard.
+ # This addon is deprecated, and will be disabled in 1.15. It is recommended
+ # to use the Cloud Console to manage and monitor your Kubernetes clusters,
+ # workloads and applications. For more information, see:
+ # https://cloud.google.com/kubernetes-engine/docs/concepts/dashboards
+ "disabled": True or False, # Whether the Kubernetes Dashboard is enabled for this cluster.
},
- "configConnectorConfig": { # Configuration options for the Config Connector add-on. # Configuration for the ConfigConnector add-on, a Kubernetes
- # extension to manage hosted GCP services through the Kubernetes API
- "enabled": True or False, # Whether Cloud Connector is enabled for this cluster.
+ "httpLoadBalancing": { # Configuration options for the HTTP (L7) load balancing controller addon, # Configuration for the HTTP (L7) load balancing controller addon, which
+ # makes it easy to set up HTTP load balancers for services in a cluster.
+ # which makes it easy to set up HTTP load balancers for services in a cluster.
+ "disabled": True or False, # Whether the HTTP Load Balancing controller is enabled in the cluster.
+ # When enabled, it runs a small pod in the cluster that manages the load
+ # balancers.
+ },
+ "istioConfig": { # Configuration options for Istio addon. # Configuration for Istio, an open platform to connect, manage, and secure
+ # microservices.
+ "disabled": True or False, # Whether Istio is enabled for this cluster.
+ "auth": "A String", # The specified Istio auth mode, either none, or mutual TLS.
},
"horizontalPodAutoscaling": { # Configuration options for the horizontal pod autoscaling feature, which # Configuration for the horizontal pod autoscaling feature, which
# increases or decreases the number of replica pods a replication controller
@@ -218,7 +202,23 @@
# When enabled, it ensures that metrics are collected into Stackdriver
# Monitoring.
},
+ "cloudRunConfig": { # Configuration options for the Cloud Run feature. # Configuration for the Cloud Run addon. The `IstioConfig` addon must be
+ # enabled in order to enable Cloud Run addon. This option can only be enabled
+ # at cluster creation time.
+ "disabled": True or False, # Whether Cloud Run addon is enabled for this cluster.
+ },
+ "kalmConfig": { # Configuration options for the KALM addon. # Configuration for the KALM addon, which manages the lifecycle of k8s
+ # applications.
+ "enabled": True or False, # Whether KALM is enabled for this cluster.
+ },
},
+ "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
+ # number](https://support.google.com/cloud/answer/6158840).
+ # This field has been deprecated and replaced by the name field.
+ "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster resides. This field has been deprecated and replaced by the name
+ # field.
}
x__xgafv: string, V1 error format.
@@ -232,34 +232,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -267,25 +248,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -307,17 +307,17 @@
The object takes the form of:
{ # CompleteIPRotationRequest moves the cluster master back into single-IP mode.
- "clusterId": "A String", # Required. Deprecated. The name of the cluster.
- # This field has been deprecated and replaced by the name field.
- "name": "A String", # The name (project, location, cluster id) of the cluster to complete IP
- # rotation. Specified in the format `projects/*/locations/*/clusters/*`.
- "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
- # number](https://developers.google.com/console/help/new/#projectnumber).
- # This field has been deprecated and replaced by the name field.
"zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# cluster resides. This field has been deprecated and replaced by the name
# field.
+ "name": "A String", # The name (project, location, cluster id) of the cluster to complete IP
+ # rotation. Specified in the format `projects/*/locations/*/clusters/*`.
+ "clusterId": "A String", # Required. Deprecated. The name of the cluster.
+ # This field has been deprecated and replaced by the name field.
+ "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
+ # number](https://developers.google.com/console/help/new/#projectnumber).
+ # This field has been deprecated and replaced by the name field.
}
x__xgafv: string, V1 error format.
@@ -331,34 +331,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -366,25 +347,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -417,139 +417,29 @@
The object takes the form of:
{ # CreateClusterRequest creates a cluster.
+ "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster resides. This field has been deprecated and replaced by the parent
+ # field.
"parent": "A String", # The parent (project and location) where the cluster will be created.
# Specified in the format `projects/*/locations/*`.
+ "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
+ # number](https://support.google.com/cloud/answer/6158840).
+ # This field has been deprecated and replaced by the parent field.
"cluster": { # A Google Kubernetes Engine cluster. # Required. A [cluster
- # resource](https://cloud.google.com/container-engine/reference/rest/v1beta1/projects.zones.clusters)
- "privateClusterConfig": { # Configuration options for private clusters. # Configuration for private cluster.
- "masterIpv4CidrBlock": "A String", # The IP range in CIDR notation to use for the hosted master network. This
- # range will be used for assigning internal IP addresses to the master or
- # set of masters, as well as the ILB VIP. This range must not overlap with
- # any other ranges in use within the cluster's network.
- "enablePrivateNodes": True or False, # Whether nodes have internal IP addresses only. If enabled, all nodes are
- # given only RFC 1918 private addresses and communicate with the master via
- # private networking.
- "privateEndpoint": "A String", # Output only. The internal IP address of this cluster's master endpoint.
- "enablePrivateEndpoint": True or False, # Whether the master's internal IP address is used as the cluster endpoint.
- "peeringName": "A String", # Output only. The peering name in the customer VPC used by this cluster.
- "masterGlobalAccessConfig": { # Configuration for controlling master global access settings. # Controls master global access settings.
- "enabled": True or False, # Whenever master is accessible globally or not.
- },
- "publicEndpoint": "A String", # Output only. The external IP address of this cluster's master endpoint.
- },
- "shieldedNodes": { # Configuration of Shielded Nodes feature. # Shielded Nodes configuration.
- "enabled": True or False, # Whether Shielded Nodes features are enabled on all nodes in this cluster.
- },
- "verticalPodAutoscaling": { # VerticalPodAutoscaling contains global, per-cluster information # Cluster-level Vertical Pod Autoscaling configuration.
- # required by Vertical Pod Autoscaler to automatically adjust
- # the resources of pods controlled by it.
- "enabled": True or False, # Enables vertical pod autoscaling.
- },
- "defaultMaxPodsConstraint": { # Constraints applied to pods. # The default constraint on the maximum number of pods that can be run
- # simultaneously on a node in the node pool of this cluster. Only honored
- # if cluster created with IP Alias support.
- "maxPodsPerNode": "A String", # Constraint enforced on the max num of pods per node.
- },
- "network": "A String", # The name of the Google Compute Engine
- # [network](https://cloud.google.com/compute/docs/networks-and-firewalls#networks)
- # to which the cluster is connected. If left unspecified, the `default`
- # network will be used. On output this shows the network ID instead of the
- # name.
- "labelFingerprint": "A String", # The fingerprint of the set of labels for this cluster.
- "nodeIpv4CidrSize": 42, # [Output only] The size of the address space on each node for hosting
- # containers. This is provisioned from within the `container_ipv4_cidr`
- # range. This field will only be set when cluster is in route-based network
- # mode.
- "masterAuthorizedNetworksConfig": { # Configuration options for the master authorized networks feature. Enabled # The configuration options for master authorized networks feature.
- # master authorized networks will disallow all external traffic to access
- # Kubernetes master through HTTPS except traffic from the given CIDR blocks,
- # Google Compute Engine Public IPs and Google Prod IPs.
- "enabled": True or False, # Whether or not master authorized networks is enabled.
- "cidrBlocks": [ # cidr_blocks define up to 10 external networks that could access
- # Kubernetes master through HTTPS.
- { # CidrBlock contains an optional name and one CIDR block.
- "cidrBlock": "A String", # cidr_block must be specified in CIDR notation.
- "displayName": "A String", # display_name is an optional field for users to identify CIDR blocks.
- },
- ],
- },
- "statusMessage": "A String", # [Output only] Additional information about the current status of this
- # cluster, if available.
- "masterAuth": { # The authentication information for accessing the master endpoint. # The authentication information for accessing the master endpoint.
- # If unspecified, the defaults are used:
- # For clusters before v1.12, if master_auth is unspecified, `username` will
- # be set to "admin", a random password will be generated, and a client
- # certificate will be issued.
- # Authentication can be done using HTTP basic auth or using client
- # certificates.
- "password": "A String", # The password to use for HTTP basic authentication to the master endpoint.
- # Because the master endpoint is open to the Internet, you should create a
- # strong password. If a password is provided for cluster creation, username
- # must be non-empty.
- "clientCertificateConfig": { # Configuration for client certificates on the cluster. # Configuration for client certificate authentication on the cluster. For
- # clusters before v1.12, if no configuration is specified, a client
- # certificate is issued.
- "issueClientCertificate": True or False, # Issue a client certificate.
- },
- "clientKey": "A String", # [Output only] Base64-encoded private key used by clients to authenticate
- # to the cluster endpoint.
- "clusterCaCertificate": "A String",
- "clientCertificate": "A String", # [Output only] Base64-encoded public certificate used by clients to
- # authenticate to the cluster endpoint.
- "username": "A String", # The username to use for HTTP basic authentication to the master endpoint.
- # For clusters v1.6.0 and later, basic authentication can be disabled by
- # leaving username unspecified (or setting it to the empty string).
- },
- "authenticatorGroupsConfig": { # Configuration for returning group information from authenticators. # Configuration controlling RBAC group membership information.
- "securityGroup": "A String", # The name of the security group-of-groups to be used. Only relevant
- # if enabled = true.
- "enabled": True or False, # Whether this cluster should return group membership lookups
- # during authentication using a group of security groups.
- },
- "masterIpv4CidrBlock": "A String", # The IP prefix in CIDR notation to use for the hosted master network.
- # This prefix will be used for assigning private IP addresses to the
- # master or set of masters, as well as the ILB VIP.
- # This field is deprecated, use
- # private_cluster_config.master_ipv4_cidr_block instead.
- "clusterTelemetry": { # Telemetry integration for the cluster. # Telemetry integration for the cluster.
- "type": "A String", # Type of the integration.
- },
- "currentMasterVersion": "A String", # [Output only] The current software version of the master endpoint.
- "podSecurityPolicyConfig": { # Configuration for the PodSecurityPolicy feature. # Configuration for the PodSecurityPolicy feature.
- "enabled": True or False, # Enable the PodSecurityPolicy controller for this cluster. If enabled, pods
- # must be valid under a PodSecurityPolicy to be created.
- },
+ # resource](https://cloud.google.com/container-engine/reference/rest/v1beta1/projects.locations.clusters)
"addonsConfig": { # Configuration for the addons that can be automatically spun up in the # Configurations for the various addons available to run in the cluster.
# cluster, enabling additional functionality.
- "httpLoadBalancing": { # Configuration options for the HTTP (L7) load balancing controller addon, # Configuration for the HTTP (L7) load balancing controller addon, which
- # makes it easy to set up HTTP load balancers for services in a cluster.
- # which makes it easy to set up HTTP load balancers for services in a cluster.
- "disabled": True or False, # Whether the HTTP Load Balancing controller is enabled in the cluster.
- # When enabled, it runs a small pod in the cluster that manages the load
- # balancers.
- },
- "kubernetesDashboard": { # Configuration for the Kubernetes Dashboard. # Configuration for the Kubernetes Dashboard.
- # This addon is deprecated, and will be disabled in 1.15. It is recommended
- # to use the Cloud Console to manage and monitor your Kubernetes clusters,
- # workloads and applications. For more information, see:
- # https://cloud.google.com/kubernetes-engine/docs/concepts/dashboards
- "disabled": True or False, # Whether the Kubernetes Dashboard is enabled for this cluster.
- },
- "dnsCacheConfig": { # Configuration for NodeLocal DNSCache # Configuration for NodeLocalDNS, a dns cache running on cluster nodes
- "enabled": True or False, # Whether NodeLocal DNSCache is enabled for this cluster.
- },
- "kalmConfig": { # Configuration options for the KALM addon. # Configuration for the KALM addon, which manages the lifecycle of k8s
- # applications.
- "enabled": True or False, # Whether KALM is enabled for this cluster.
+ "configConnectorConfig": { # Configuration options for the Config Connector add-on. # Configuration for the ConfigConnector add-on, a Kubernetes
+ # extension to manage hosted GCP services through the Kubernetes API
+ "enabled": True or False, # Whether Cloud Connector is enabled for this cluster.
},
"gcePersistentDiskCsiDriverConfig": { # Configuration for the Compute Engine PD CSI driver. This option can only be # Configuration for the Compute Engine Persistent Disk CSI driver.
# enabled at cluster creation time.
"enabled": True or False, # Whether the Compute Engine PD CSI driver is enabled for this cluster.
},
- "istioConfig": { # Configuration options for Istio addon. # Configuration for Istio, an open platform to connect, manage, and secure
- # microservices.
- "auth": "A String", # The specified Istio auth mode, either none, or mutual TLS.
- "disabled": True or False, # Whether Istio is enabled for this cluster.
+ "dnsCacheConfig": { # Configuration for NodeLocal DNSCache # Configuration for NodeLocalDNS, a dns cache running on cluster nodes
+ "enabled": True or False, # Whether NodeLocal DNSCache is enabled for this cluster.
},
"networkPolicyConfig": { # Configuration for NetworkPolicy. This only tracks whether the addon # Configuration for NetworkPolicy. This only tracks whether the addon
# is enabled or not on the Master, it does not track whether network policy
@@ -558,14 +448,24 @@
# is enabled for the nodes.
"disabled": True or False, # Whether NetworkPolicy is enabled for this cluster.
},
- "cloudRunConfig": { # Configuration options for the Cloud Run feature. # Configuration for the Cloud Run addon. The `IstioConfig` addon must be
- # enabled in order to enable Cloud Run addon. This option can only be enabled
- # at cluster creation time.
- "disabled": True or False, # Whether Cloud Run addon is enabled for this cluster.
+ "kubernetesDashboard": { # Configuration for the Kubernetes Dashboard. # Configuration for the Kubernetes Dashboard.
+ # This addon is deprecated, and will be disabled in 1.15. It is recommended
+ # to use the Cloud Console to manage and monitor your Kubernetes clusters,
+ # workloads and applications. For more information, see:
+ # https://cloud.google.com/kubernetes-engine/docs/concepts/dashboards
+ "disabled": True or False, # Whether the Kubernetes Dashboard is enabled for this cluster.
},
- "configConnectorConfig": { # Configuration options for the Config Connector add-on. # Configuration for the ConfigConnector add-on, a Kubernetes
- # extension to manage hosted GCP services through the Kubernetes API
- "enabled": True or False, # Whether Cloud Connector is enabled for this cluster.
+ "httpLoadBalancing": { # Configuration options for the HTTP (L7) load balancing controller addon, # Configuration for the HTTP (L7) load balancing controller addon, which
+ # makes it easy to set up HTTP load balancers for services in a cluster.
+ # which makes it easy to set up HTTP load balancers for services in a cluster.
+ "disabled": True or False, # Whether the HTTP Load Balancing controller is enabled in the cluster.
+ # When enabled, it runs a small pod in the cluster that manages the load
+ # balancers.
+ },
+ "istioConfig": { # Configuration options for Istio addon. # Configuration for Istio, an open platform to connect, manage, and secure
+ # microservices.
+ "disabled": True or False, # Whether Istio is enabled for this cluster.
+ "auth": "A String", # The specified Istio auth mode, either none, or mutual TLS.
},
"horizontalPodAutoscaling": { # Configuration options for the horizontal pod autoscaling feature, which # Configuration for the horizontal pod autoscaling feature, which
# increases or decreases the number of replica pods a replication controller
@@ -576,97 +476,41 @@
# When enabled, it ensures that metrics are collected into Stackdriver
# Monitoring.
},
+ "cloudRunConfig": { # Configuration options for the Cloud Run feature. # Configuration for the Cloud Run addon. The `IstioConfig` addon must be
+ # enabled in order to enable Cloud Run addon. This option can only be enabled
+ # at cluster creation time.
+ "disabled": True or False, # Whether Cloud Run addon is enabled for this cluster.
+ },
+ "kalmConfig": { # Configuration options for the KALM addon. # Configuration for the KALM addon, which manages the lifecycle of k8s
+ # applications.
+ "enabled": True or False, # Whether KALM is enabled for this cluster.
+ },
},
- "subnetwork": "A String", # The name of the Google Compute Engine
- # [subnetwork](https://cloud.google.com/compute/docs/subnetworks) to which
- # the cluster is connected. On output this shows the subnetwork ID instead of
- # the name.
+ "createTime": "A String", # [Output only] The time the cluster was created, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "clusterIpv4Cidr": "A String", # The IP address range of the container pods in this cluster, in
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `10.96.0.0/14`). Leave blank to have
+ # one automatically chosen or specify a `/14` block in `10.0.0.0/8`.
+ "legacyAbac": { # Configuration for the legacy Attribute Based Access Control authorization # Configuration for the legacy ABAC authorization mode.
+ # mode.
+ "enabled": True or False, # Whether the ABAC authorizer is enabled for this cluster. When enabled,
+ # identities in the system, including service accounts, nodes, and
+ # controllers, will have statically granted permissions beyond those
+ # provided by the RBAC configuration or IAM.
+ },
+ "binaryAuthorization": { # Configuration for Binary Authorization. # Configuration for Binary Authorization.
+ "enabled": True or False, # Enable Binary Authorization for this cluster. If enabled, all container
+ # images will be validated by Google Binauthz.
+ },
"currentNodeVersion": "A String", # [Output only] Deprecated, use
# [NodePool.version](https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1beta1/projects.locations.clusters.nodePools)
# instead. The current version of the node software components.
# If they are currently at multiple versions because they're in the process
# of being upgraded, this reflects the minimum version of all nodes.
- "maintenancePolicy": { # MaintenancePolicy defines the maintenance policy to be used for the cluster. # Configure the maintenance policy for this cluster.
- "window": { # MaintenanceWindow defines the maintenance window to be used for the cluster. # Specifies the maintenance window in which maintenance may be performed.
- "maintenanceExclusions": { # Exceptions to maintenance window. Non-emergency maintenance should not
- # occur in these windows.
- "a_key": { # Represents an arbitrary window of time.
- "startTime": "A String", # The time that the window first starts.
- "endTime": "A String", # The time that the window ends. The end time should take place after the
- # start time.
- },
- },
- "recurringWindow": { # Represents an arbitrary window of time that recurs. # RecurringWindow specifies some number of recurring time periods for
- # maintenance to occur. The time windows may be overlapping. If no
- # maintenance windows are set, maintenance can occur at any time.
- "recurrence": "A String", # An RRULE (https://tools.ietf.org/html/rfc5545#section-3.8.5.3) for how
- # this window reccurs. They go on for the span of time between the start and
- # end time.
- #
- # For example, to have something repeat every weekday, you'd use:
- # <code>FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR</code>
- # To repeat some window daily (equivalent to the DailyMaintenanceWindow):
- # <code>FREQ=DAILY</code>
- # For the first weekend of every month:
- # <code>FREQ=MONTHLY;BYSETPOS=1;BYDAY=SA,SU</code>
- # This specifies how frequently the window starts. Eg, if you wanted to have
- # a 9-5 UTC-4 window every weekday, you'd use something like:
- # <code>
- # start time = 2019-01-01T09:00:00-0400
- # end time = 2019-01-01T17:00:00-0400
- # recurrence = FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR
- # </code>
- # Windows can span multiple days. Eg, to make the window encompass every
- # weekend from midnight Saturday till the last minute of Sunday UTC:
- # <code>
- # start time = 2019-01-05T00:00:00Z
- # end time = 2019-01-07T23:59:00Z
- # recurrence = FREQ=WEEKLY;BYDAY=SA
- # </code>
- # Note the start and end time's specific dates are largely arbitrary except
- # to specify duration of the window and when it first starts.
- # The FREQ values of HOURLY, MINUTELY, and SECONDLY are not supported.
- "window": { # Represents an arbitrary window of time. # The window of the first recurrence.
- "startTime": "A String", # The time that the window first starts.
- "endTime": "A String", # The time that the window ends. The end time should take place after the
- # start time.
- },
- },
- "dailyMaintenanceWindow": { # Time window specified for daily maintenance operations. # DailyMaintenanceWindow specifies a daily maintenance operation window.
- "duration": "A String", # [Output only] Duration of the time window, automatically chosen to be
- # smallest possible in the given scenario.
- "startTime": "A String", # Time within the maintenance window to start the maintenance operations.
- # It must be in format "HH:MM", where HH : [00-23] and MM : [00-59] GMT.
- },
- },
- "resourceVersion": "A String", # A hash identifying the version of this policy, so that updates to fields of
- # the policy won't accidentally undo intermediate changes (and so that users
- # of the API unaware of some fields won't accidentally remove other fields).
- # Make a <code>get()</code> request to the cluster to get the current
- # resource version and include it with requests to set the policy.
- },
- "resourceLabels": { # The resource labels for the cluster to use to annotate any related
- # Google Compute Engine resources.
- "a_key": "A String",
- },
- "initialClusterVersion": "A String", # The initial Kubernetes version for this cluster. Valid versions are those
- # found in validMasterVersions returned by getServerConfig. The version can
- # be upgraded over time; such upgrades are reflected in
- # currentMasterVersion and currentNodeVersion.
- #
- # Users may specify either explicit versions offered by
- # Kubernetes Engine or version aliases, which have the following behavior:
- #
- # - "latest": picks the highest valid Kubernetes version
- # - "1.X": picks the highest valid patch+gke.N patch in the 1.X version
- # - "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
- # - "1.X.Y-gke.N": picks an explicit Kubernetes version
- # - "","-": picks the default Kubernetes version
+ "currentNodeCount": 42, # [Output only] The number of nodes currently in the cluster. Deprecated.
+ # Call Kubernetes API directly to retrieve node information.
"ipAllocationPolicy": { # Configuration for controlling how IPs are allocated in the cluster. # Configuration for cluster IP allocation.
- "useRoutes": True or False, # Whether routes will be used for pod IPs in the cluster.
- # This is used in conjunction with use_ip_aliases. It cannot be true if
- # use_ip_aliases is true. If both use_ip_aliases and use_routes are false,
- # then the server picks the default IP allocation mode
"servicesIpv4CidrBlock": "A String", # The IP address range of the services IPs in this cluster. If blank, a range
# will be automatically chosen with the default size.
#
@@ -682,55 +526,7 @@
# notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
# `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
# to use.
- "allowRouteOverlap": True or False, # If true, allow allocation of cluster CIDR ranges that overlap with certain
- # kinds of network routes. By default we do not allow cluster CIDR ranges to
- # intersect with any user declared routes. With allow_route_overlap == true,
- # we allow overlapping with CIDR ranges that are larger than the cluster CIDR
- # range.
- #
- # If this field is set to true, then cluster and services CIDRs must be
- # fully-specified (e.g. `10.96.0.0/14`, but not `/14`), which means:
- # 1) When `use_ip_aliases` is true, `cluster_ipv4_cidr_block` and
- # `services_ipv4_cidr_block` must be fully-specified.
- # 2) When `use_ip_aliases` is false, `cluster.cluster_ipv4_cidr` muse be
- # fully-specified.
- "nodeIpv4Cidr": "A String", # This field is deprecated, use node_ipv4_cidr_block.
- "clusterIpv4CidrBlock": "A String", # The IP address range for the cluster pod IPs. If this field is set, then
- # `cluster.cluster_ipv4_cidr` must be left blank.
- #
- # This field is only applicable when `use_ip_aliases` is true.
- #
- # Set to blank to have a range chosen with the default size.
- #
- # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
- # netmask.
- #
- # Set to a
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
- # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
- # to use.
- "clusterSecondaryRangeName": "A String", # The name of the secondary range to be used for the cluster CIDR
- # block. The secondary range will be used for pod IP
- # addresses. This must be an existing secondary range associated
- # with the cluster subnetwork.
- #
- # This field is only applicable with use_ip_aliases and
- # create_subnetwork is false.
- "nodeIpv4CidrBlock": "A String", # The IP address range of the instance IPs in this cluster.
- #
- # This is applicable only if `create_subnetwork` is true.
- #
- # Set to blank to have a range chosen with the default size.
- #
- # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
- # netmask.
- #
- # Set to a
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
- # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
- # to use.
+ "servicesIpv4Cidr": "A String", # This field is deprecated, use services_ipv4_cidr_block.
"tpuIpv4CidrBlock": "A String", # The IP address range of the Cloud TPUs in this cluster. If unspecified, a
# range will be automatically chosen with the default size.
#
@@ -747,6 +543,21 @@
# `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
# to use.
# This field is deprecated, use cluster.tpu_config.ipv4_cidr_block instead.
+ "useIpAliases": True or False, # Whether alias IPs will be used for pod IPs in the cluster.
+ # This is used in conjunction with use_routes. It cannot
+ # be true if use_routes is true. If both use_ip_aliases and use_routes are
+ # false, then the server picks the default IP allocation mode
+ "nodeIpv4Cidr": "A String", # This field is deprecated, use node_ipv4_cidr_block.
+ "createSubnetwork": True or False, # Whether a new subnetwork will be created automatically for the cluster.
+ #
+ # This field is only applicable when `use_ip_aliases` is true.
+ "clusterSecondaryRangeName": "A String", # The name of the secondary range to be used for the cluster CIDR
+ # block. The secondary range will be used for pod IP
+ # addresses. This must be an existing secondary range associated
+ # with the cluster subnetwork.
+ #
+ # This field is only applicable with use_ip_aliases and
+ # create_subnetwork is false.
"servicesSecondaryRangeName": "A String", # The name of the secondary range to be used as for the services
# CIDR block. The secondary range will be used for service
# ClusterIPs. This must be an existing secondary range associated
@@ -754,354 +565,86 @@
#
# This field is only applicable with use_ip_aliases and
# create_subnetwork is false.
- "createSubnetwork": True or False, # Whether a new subnetwork will be created automatically for the cluster.
- #
- # This field is only applicable when `use_ip_aliases` is true.
- "useIpAliases": True or False, # Whether alias IPs will be used for pod IPs in the cluster.
- # This is used in conjunction with use_routes. It cannot
- # be true if use_routes is true. If both use_ip_aliases and use_routes are
- # false, then the server picks the default IP allocation mode
+ "useRoutes": True or False, # Whether routes will be used for pod IPs in the cluster.
+ # This is used in conjunction with use_ip_aliases. It cannot be true if
+ # use_ip_aliases is true. If both use_ip_aliases and use_routes are false,
+ # then the server picks the default IP allocation mode
"subnetworkName": "A String", # A custom subnetwork name to be used if `create_subnetwork` is true. If
# this field is empty, then an automatic name will be chosen for the new
# subnetwork.
+ "allowRouteOverlap": True or False, # If true, allow allocation of cluster CIDR ranges that overlap with certain
+ # kinds of network routes. By default we do not allow cluster CIDR ranges to
+ # intersect with any user declared routes. With allow_route_overlap == true,
+ # we allow overlapping with CIDR ranges that are larger than the cluster CIDR
+ # range.
+ #
+ # If this field is set to true, then cluster and services CIDRs must be
+ # fully-specified (e.g. `10.96.0.0/14`, but not `/14`), which means:
+ # 1) When `use_ip_aliases` is true, `cluster_ipv4_cidr_block` and
+ # `services_ipv4_cidr_block` must be fully-specified.
+ # 2) When `use_ip_aliases` is false, `cluster.cluster_ipv4_cidr` muse be
+ # fully-specified.
"clusterIpv4Cidr": "A String", # This field is deprecated, use cluster_ipv4_cidr_block.
- "servicesIpv4Cidr": "A String", # This field is deprecated, use services_ipv4_cidr_block.
- },
- "legacyAbac": { # Configuration for the legacy Attribute Based Access Control authorization # Configuration for the legacy ABAC authorization mode.
- # mode.
- "enabled": True or False, # Whether the ABAC authorizer is enabled for this cluster. When enabled,
- # identities in the system, including service accounts, nodes, and
- # controllers, will have statically granted permissions beyond those
- # provided by the RBAC configuration or IAM.
- },
- "resourceUsageExportConfig": { # Configuration for exporting cluster resource usages. # Configuration for exporting resource usages. Resource usage export is
- # disabled when this config unspecified.
- "enableNetworkEgressMetering": True or False, # Whether to enable network egress metering for this cluster. If enabled, a
- # daemonset will be created in the cluster to meter network egress traffic.
- "consumptionMeteringConfig": { # Parameters for controlling consumption metering. # Configuration to enable resource consumption metering.
- "enabled": True or False, # Whether to enable consumption metering for this cluster. If enabled, a
- # second BigQuery table will be created to hold resource consumption
- # records.
- },
- "bigqueryDestination": { # Parameters for using BigQuery as the destination of resource usage export. # Configuration to use BigQuery as usage export destination.
- "datasetId": "A String", # The ID of a BigQuery Dataset.
- },
- },
- "enableTpu": True or False, # Enable the ability to use Cloud TPUs in this cluster.
- # This field is deprecated, use tpu_config.enabled instead.
- "nodePools": [ # The node pools associated with this cluster.
- # This field should not be set if "node_config" or "initial_node_count" are
- # specified.
- { # NodePool contains the name and configuration for a cluster's node pool.
- # Node pools are a set of nodes (i.e. VM's), with a common configuration and
- # specification, under the control of the cluster master. They may have a set
- # of Kubernetes labels applied to them, which may be used to reference them
- # during pod scheduling. They may also be resized up or down, to accommodate
- # the workload.
- "status": "A String", # [Output only] The status of the nodes in this pool instance.
- "config": { # Parameters that describe the nodes in a cluster. # The node configuration of the pool.
- "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
- # scheduled on the specified or newer CPU platform. Applicable values are the
- # friendly names of CPU platforms, such as
- # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
- # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
- # information, read [how to specify min CPU
- # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
- "shieldedInstanceConfig": { # A set of Shielded Instance options. # Shielded Instance options.
- "enableIntegrityMonitoring": True or False, # Defines whether the instance has integrity monitoring enabled.
- #
- # Enables monitoring and attestation of the boot integrity of the instance.
- # The attestation is performed against the integrity policy baseline. This
- # baseline is initially derived from the implicitly trusted boot image when
- # the instance is created.
- "enableSecureBoot": True or False, # Defines whether the instance has Secure Boot enabled.
- #
- # Secure Boot helps ensure that the system only runs authentic software by
- # verifying the digital signature of all boot components, and halting the
- # boot process if signature verification fails.
- },
- "preemptible": True or False, # Whether the nodes are created as preemptible VM instances. See:
- # https://cloud.google.com/compute/docs/instances/preemptible for more
- # inforamtion about preemptible VM instances.
- "localSsdCount": 42, # The number of local SSD disks to be attached to the node.
- #
- # The limit for this value is dependent upon the maximum number of
- # disks available on a machine per zone. See:
- # https://cloud.google.com/compute/docs/disks/local-ssd
- # for more information.
- "sandboxConfig": { # SandboxConfig contains configurations of the sandbox to use for the node. # Sandbox configuration for this node.
- "type": "A String", # Type of the sandbox to use for the node.
- "sandboxType": "A String", # Type of the sandbox to use for the node (e.g. 'gvisor')
- },
- "metadata": { # The metadata key/value pairs assigned to instances in the cluster.
- #
- # Keys must conform to the regexp [a-zA-Z0-9-_]+ and be less than 128 bytes
- # in length. These are reflected as part of a URL in the metadata server.
- # Additionally, to avoid ambiguity, keys must not conflict with any other
- # metadata keys for the project or be one of the reserved keys:
- # "cluster-location"
- # "cluster-name"
- # "cluster-uid"
- # "configure-sh"
- # "containerd-configure-sh"
- # "enable-oslogin"
- # "gci-ensure-gke-docker"
- # "gci-metrics-enabled"
- # "gci-update-strategy"
- # "instance-template"
- # "kube-env"
- # "startup-script"
- # "user-data"
- # "disable-address-manager"
- # "windows-startup-script-ps1"
- # "common-psm1"
- # "k8s-node-setup-psm1"
- # "install-ssh-psm1"
- # "user-profile-psm1"
- # "serial-port-logging-enable"
- # Values are free-form strings, and only have meaning as interpreted by
- # the image running in the instance. The only restriction placed on them is
- # that each value's size must be less than or equal to 32 KB.
- #
- # The total size of all keys and values must be less than 512 KB.
- "a_key": "A String",
- },
- "reservationAffinity": { # [ReservationAffinity](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources) # The optional reservation affinity. Setting this field will apply
- # the specified [Zonal Compute
- # Reservation](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources)
- # to this node pool.
- # is the configuration of desired reservation which instances could take
- # capacity from.
- "key": "A String", # Corresponds to the label key of a reservation resource. To target a
- # SPECIFIC_RESERVATION by name, specify "googleapis.com/reservation-name" as
- # the key and specify the name of your reservation as its value.
- "values": [ # Corresponds to the label value(s) of reservation resource(s).
- "A String",
- ],
- "consumeReservationType": "A String", # Corresponds to the type of reservation consumption.
- },
- "tags": [ # The list of instance tags applied to all nodes. Tags are used to identify
- # valid sources or targets for network firewalls and are specified by
- # the client during cluster or node pool creation. Each tag within the list
- # must comply with RFC1035.
- "A String",
- ],
- "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
- # Specify the email address of the Service Account; otherwise, if no Service
- # Account is specified, the "default" service account is used.
- "imageType": "A String", # The image type to use for this node. Note that for a given image type,
- # the latest version of it will be used.
- "oauthScopes": [ # The set of Google API scopes to be made available on all of the
- # node VMs under the "default" service account.
- #
- # The following scopes are recommended, but not required, and by default are
- # not included:
- #
- # * `https://www.googleapis.com/auth/compute` is required for mounting
- # persistent storage on your nodes.
- # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
- # communicating with **gcr.io**
- # (the [Google Container
- # Registry](https://cloud.google.com/container-registry/)).
- #
- # If unspecified, no scopes are added, unless Cloud Logging or Cloud
- # Monitoring are enabled, in which case their required scopes will be added.
- "A String",
- ],
- "taints": [ # List of kubernetes taints to be applied to each node.
- #
- # For more information, including usage and the valid values, see:
- # https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
- { # Kubernetes taint is comprised of three fields: key, value, and effect. Effect
- # can only be one of three types: NoSchedule, PreferNoSchedule or NoExecute.
- #
- # See
- # [here](https://kubernetes.io/docs/concepts/configuration/taint-and-toleration)
- # for more information, including usage and the valid values.
- "effect": "A String", # Effect for taint.
- "value": "A String", # Value for taint.
- "key": "A String", # Key for taint.
- },
- ],
- "labels": { # The map of Kubernetes labels (key/value pairs) to be applied to each node.
- # These will added in addition to any default label(s) that
- # Kubernetes may apply to the node.
- # In case of conflict in label keys, the applied set may differ depending on
- # the Kubernetes version -- it's best to assume the behavior is undefined
- # and conflicts should be avoided.
- # For more information, including usage and the valid values, see:
- # https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
- "a_key": "A String",
- },
- "diskSizeGb": 42, # Size of the disk attached to each node, specified in GB.
- # The smallest allowed disk size is 10GB.
- #
- # If unspecified, the default disk size is 100GB.
- "workloadMetadataConfig": { # WorkloadMetadataConfig defines the metadata configuration to expose to # The workload metadata configuration for this node.
- # workloads on the node pool.
- "nodeMetadata": "A String", # NodeMetadata is the configuration for how to expose metadata to the
- # workloads running on the node.
- "mode": "A String", # Mode is the configuration for how to expose metadata to workloads running
- # on the node pool.
- },
- "accelerators": [ # A list of hardware accelerators to be attached to each node.
- # See https://cloud.google.com/compute/docs/gpus for more information about
- # support for GPUs.
- { # AcceleratorConfig represents a Hardware Accelerator request.
- "acceleratorType": "A String", # The accelerator type resource name. List of supported accelerators
- # [here](https://cloud.google.com/compute/docs/gpus)
- "acceleratorCount": "A String", # The number of the accelerator cards exposed to an instance.
- },
- ],
- "machineType": "A String", # The name of a Google Compute Engine [machine
- # type](https://cloud.google.com/compute/docs/machine-types) (e.g.
- # `n1-standard-1`).
- #
- # If unspecified, the default machine type is
- # `n1-standard-1`.
- "diskType": "A String", # Type of the disk attached to each node (e.g. 'pd-standard' or 'pd-ssd')
- #
- # If unspecified, the default disk type is 'pd-standard'
- "bootDiskKmsKey": "A String", #
- # The Customer Managed Encryption Key used to encrypt the boot disk attached
- # to each node in the node pool. This should be of the form
- # projects/[KEY_PROJECT_ID]/locations/[LOCATION]/keyRings/[RING_NAME]/cryptoKeys/[KEY_NAME].
- # For more information about protecting resources with Cloud KMS Keys please
- # see:
- # https://cloud.google.com/compute/docs/disks/customer-managed-encryption
- },
- "maxPodsConstraint": { # Constraints applied to pods. # The constraint on the maximum number of pods that can be run
- # simultaneously on a node in the node pool.
- "maxPodsPerNode": "A String", # Constraint enforced on the max num of pods per node.
- },
- "name": "A String", # The name of the node pool.
- "management": { # NodeManagement defines the set of node management services turned on for the # NodeManagement configuration for this NodePool.
- # node pool.
- "autoRepair": True or False, # Whether the nodes will be automatically repaired.
- "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
- "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
- # the Auto Upgrades will proceed.
- "description": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the description of the upgrade.
- "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the approximate start time for the upgrades, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- },
- },
- "statusMessage": "A String", # [Output only] Additional information about the current status of this
- # node pool instance, if available.
- "autoscaling": { # NodePoolAutoscaling contains information required by cluster autoscaler to # Autoscaler configuration for this NodePool. Autoscaler is enabled
- # only if a valid configuration is present.
- # adjust the size of the node pool to the current cluster usage.
- "maxNodeCount": 42, # Maximum number of nodes in the NodePool. Must be >= min_node_count. There
- # has to enough quota to scale up the cluster.
- "autoprovisioned": True or False, # Can this node pool be deleted automatically.
- "minNodeCount": 42, # Minimum number of nodes in the NodePool. Must be >= 1 and <=
- # max_node_count.
- "enabled": True or False, # Is autoscaling enabled for this node pool.
- },
- "initialNodeCount": 42, # The initial node count for the pool. You must ensure that your
- # Compute Engine <a href="/compute/docs/resource-quotas">resource quota</a>
- # is sufficient for this number of instances. You must also have available
- # firewall and routes quota.
- "locations": [ # The list of Google Compute Engine
- # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
- # NodePool's nodes should be located.
- "A String",
- ],
- "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Upgrade settings control disruption and speed of the upgrade.
- # disruption caused by an upgrade.
- #
- # maxUnavailable controls the number of nodes that can be simultaneously
- # unavailable.
- #
- # maxSurge controls the number of additional nodes that can be added to the
- # node pool temporarily for the time of the upgrade to increase the number of
- # available nodes.
- #
- # (maxUnavailable + maxSurge) determines the level of parallelism (how many
- # nodes are being upgraded at the same time).
- #
- # Note: upgrades inevitably introduce some disruption since workloads need to
- # be moved from old nodes to new, upgraded ones. Even if maxUnavailable=0,
- # this holds true. (Disruption stays within the limits of
- # PodDisruptionBudget, if it is configured.)
- #
- # Consider a hypothetical node pool with 5 nodes having maxSurge=2,
- # maxUnavailable=1. This means the upgrade process upgrades 3 nodes
- # simultaneously. It creates 2 additional (upgraded) nodes, then it brings
- # down 3 old (not yet upgraded) nodes at the same time. This ensures that
- # there are always at least 4 nodes available.
- "maxUnavailable": 42, # The maximum number of nodes that can be simultaneously unavailable during
- # the upgrade process. A node is considered available if its status is
- # Ready.
- "maxSurge": 42, # The maximum number of nodes that can be created beyond the current size
- # of the node pool during the upgrade process.
- },
- "selfLink": "A String", # [Output only] Server-defined URL for the resource.
- "version": "A String", # The version of the Kubernetes of this node.
- "instanceGroupUrls": [ # [Output only] The resource URLs of the [managed instance
- # groups](https://cloud.google.com/compute/docs/instance-groups/creating-groups-of-managed-instances)
- # associated with this node pool.
- "A String",
- ],
- "podIpv4CidrSize": 42, # [Output only] The pod CIDR block size per node in this node pool.
- "conditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- },
- ],
- "locations": [ # The list of Google Compute Engine
- # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster's nodes should be located.
- "A String",
- ],
- "selfLink": "A String", # [Output only] Server-defined URL for the resource.
- "releaseChannel": { # ReleaseChannel indicates which release channel a cluster is # Release channel configuration.
- # subscribed to. Release channels are arranged in order of risk and
- # frequency of updates.
- #
- # When a cluster is subscribed to a release channel, Google maintains
- # both the master version and the node version. Node auto-upgrade
- # defaults to true and cannot be disabled. Updates to version related
- # fields (e.g. current_master_version) return an error.
- "channel": "A String", # channel specifies which release channel the cluster is subscribed to.
+ "nodeIpv4CidrBlock": "A String", # The IP address range of the instance IPs in this cluster.
+ #
+ # This is applicable only if `create_subnetwork` is true.
+ #
+ # Set to blank to have a range chosen with the default size.
+ #
+ # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
+ # netmask.
+ #
+ # Set to a
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
+ # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
+ # to use.
+ "clusterIpv4CidrBlock": "A String", # The IP address range for the cluster pod IPs. If this field is set, then
+ # `cluster.cluster_ipv4_cidr` must be left blank.
+ #
+ # This field is only applicable when `use_ip_aliases` is true.
+ #
+ # Set to blank to have a range chosen with the default size.
+ #
+ # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
+ # netmask.
+ #
+ # Set to a
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
+ # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
+ # to use.
},
"networkPolicy": { # Configuration options for the NetworkPolicy feature. # Configuration options for the NetworkPolicy feature.
# https://kubernetes.io/docs/concepts/services-networking/networkpolicies/
"provider": "A String", # The selected network policy provider.
"enabled": True or False, # Whether network policy is enabled on the cluster.
},
- "servicesIpv4Cidr": "A String", # [Output only] The IP address range of the Kubernetes services in
- # this cluster, in
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `1.2.3.4/29`). Service addresses are
- # typically put in the last `/16` from the container CIDR.
- "enableKubernetesAlpha": True or False, # Kubernetes alpha features are enabled on this cluster. This includes alpha
- # API groups (e.g. v1beta1) and features that may not be production ready in
- # the kubernetes version of the master and nodes.
- # The cluster has no SLA for uptime and master/node upgrades are disabled.
- # Alpha enabled clusters are automatically deleted thirty days after
- # creation.
- "description": "A String", # An optional description of this cluster.
- "conditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
+ "privateClusterConfig": { # Configuration options for private clusters. # Configuration for private cluster.
+ "enablePrivateNodes": True or False, # Whether nodes have internal IP addresses only. If enabled, all nodes are
+ # given only RFC 1918 private addresses and communicate with the master via
+ # private networking.
+ "masterIpv4CidrBlock": "A String", # The IP range in CIDR notation to use for the hosted master network. This
+ # range will be used for assigning internal IP addresses to the master or
+ # set of masters, as well as the ILB VIP. This range must not overlap with
+ # any other ranges in use within the cluster's network.
+ "peeringName": "A String", # Output only. The peering name in the customer VPC used by this cluster.
+ "publicEndpoint": "A String", # Output only. The external IP address of this cluster's master endpoint.
+ "enablePrivateEndpoint": True or False, # Whether the master's internal IP address is used as the cluster endpoint.
+ "masterGlobalAccessConfig": { # Configuration for controlling master global access settings. # Controls master global access settings.
+ "enabled": True or False, # Whenever master is accessible globally or not.
},
- ],
- "privateCluster": True or False, # If this is a private cluster setup. Private clusters are clusters that, by
- # default have no external IP addresses on the nodes and where nodes and the
- # master communicate over private IP addresses.
- # This field is deprecated, use private_cluster_config.enable_private_nodes
- # instead.
- "currentNodeCount": 42, # [Output only] The number of nodes currently in the cluster. Deprecated.
- # Call Kubernetes API directly to retrieve node information.
+ "privateEndpoint": "A String", # Output only. The internal IP address of this cluster's master endpoint.
+ },
+ "enableTpu": True or False, # Enable the ability to use Cloud TPUs in this cluster.
+ # This field is deprecated, use tpu_config.enabled instead.
+ "workloadIdentityConfig": { # Configuration for the use of Kubernetes Service Accounts in GCP IAM # Configuration for the use of Kubernetes Service Accounts in GCP IAM
+ # policies.
+ # policies.
+ "identityNamespace": "A String", # IAM Identity Namespace to attach all Kubernetes Service Accounts to.
+ "identityProvider": "A String", # identity provider is the third party identity provider.
+ "workloadPool": "A String", # The workload pool to attach all Kubernetes service accounts to.
+ },
"monitoringService": "A String", # The monitoring service the cluster should use to write metrics.
# Currently available options:
#
@@ -1113,40 +656,71 @@
#
# If left as an empty string,`monitoring.googleapis.com/kubernetes` will be
# used for GKE 1.14+ or `monitoring.googleapis.com` for earlier versions.
- "databaseEncryption": { # Configuration of etcd encryption. # Configuration of etcd encryption.
- "state": "A String", # Denotes the state of etcd encryption.
- "keyName": "A String", # Name of CloudKMS key to use for the encryption of secrets in etcd.
- # Ex. projects/my-project/locations/global/keyRings/my-ring/cryptoKeys/my-key
+ "networkConfig": { # NetworkConfig reports the relative names of network & subnetwork. # Configuration for cluster networking.
+ "defaultSnatStatus": { # DefaultSnatStatus contains the desired state of whether default sNAT should # Whether the cluster disables default in-node sNAT rules. In-node sNAT rules
+ # will be disabled when default_snat_status is disabled. When disabled is set
+ # to false, default IP masquerade rules will be applied to the nodes to
+ # prevent sNAT on cluster internal traffic.
+ # be disabled on the cluster.
+ "disabled": True or False, # Disables cluster default sNAT rules.
+ },
+ "enableIntraNodeVisibility": True or False, # Whether Intra-node visibility is enabled for this cluster.
+ # This makes same node pod to pod traffic visible for VPC network.
+ "subnetwork": "A String", # Output only. The relative name of the Google Compute Engine
+ # [subnetwork](https://cloud.google.com/compute/docs/vpc) to which the
+ # cluster is connected. Example:
+ # projects/my-project/regions/us-central1/subnetworks/my-subnet
+ "network": "A String", # Output only. The relative name of the Google Compute Engine
+ # network(https://cloud.google.com/compute/docs/networks-and-firewalls#networks)
+ # to which the cluster is connected. Example:
+ # projects/my-project/global/networks/my-network
},
- "binaryAuthorization": { # Configuration for Binary Authorization. # Configuration for Binary Authorization.
- "enabled": True or False, # Enable Binary Authorization for this cluster. If enabled, all container
- # images will be validated by Google Binauthz.
+ "shieldedNodes": { # Configuration of Shielded Nodes feature. # Shielded Nodes configuration.
+ "enabled": True or False, # Whether Shielded Nodes features are enabled on all nodes in this cluster.
},
- "tpuIpv4CidrBlock": "A String", # [Output only] The IP address range of the Cloud TPUs in this cluster, in
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `1.2.3.4/29`).
- "workloadIdentityConfig": { # Configuration for the use of Kubernetes Service Accounts in GCP IAM # Configuration for the use of Kubernetes Service Accounts in GCP IAM
- # policies.
- # policies.
- "workloadPool": "A String", # The workload pool to attach all Kubernetes service accounts to.
- "identityNamespace": "A String", # IAM Identity Namespace to attach all Kubernetes Service Accounts to.
+ "masterAuth": { # The authentication information for accessing the master endpoint. # The authentication information for accessing the master endpoint.
+ # If unspecified, the defaults are used:
+ # For clusters before v1.12, if master_auth is unspecified, `username` will
+ # be set to "admin", a random password will be generated, and a client
+ # certificate will be issued.
+ # Authentication can be done using HTTP basic auth or using client
+ # certificates.
+ "clusterCaCertificate": "A String",
+ "username": "A String", # The username to use for HTTP basic authentication to the master endpoint.
+ # For clusters v1.6.0 and later, basic authentication can be disabled by
+ # leaving username unspecified (or setting it to the empty string).
+ "clientCertificate": "A String", # [Output only] Base64-encoded public certificate used by clients to
+ # authenticate to the cluster endpoint.
+ "password": "A String", # The password to use for HTTP basic authentication to the master endpoint.
+ # Because the master endpoint is open to the Internet, you should create a
+ # strong password. If a password is provided for cluster creation, username
+ # must be non-empty.
+ "clientCertificateConfig": { # Configuration for client certificates on the cluster. # Configuration for client certificate authentication on the cluster. For
+ # clusters before v1.12, if no configuration is specified, a client
+ # certificate is issued.
+ "issueClientCertificate": True or False, # Issue a client certificate.
+ },
+ "clientKey": "A String", # [Output only] Base64-encoded private key used by clients to authenticate
+ # to the cluster endpoint.
},
- "zone": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster resides. This field is deprecated, use location instead.
- "loggingService": "A String", # The logging service the cluster should use to write logs.
- # Currently available options:
+ "initialClusterVersion": "A String", # The initial Kubernetes version for this cluster. Valid versions are those
+ # found in validMasterVersions returned by getServerConfig. The version can
+ # be upgraded over time; such upgrades are reflected in
+ # currentMasterVersion and currentNodeVersion.
#
- # * `logging.googleapis.com/kubernetes` - The Cloud Logging
- # service with a Kubernetes-native resource model
- # * `logging.googleapis.com` - The legacy Cloud Logging service (no longer
- # available as of GKE 1.15).
- # * `none` - no logs will be exported from the cluster.
+ # Users may specify either explicit versions offered by
+ # Kubernetes Engine or version aliases, which have the following behavior:
#
- # If left as an empty string,`logging.googleapis.com/kubernetes` will be
- # used for GKE 1.14+ or `logging.googleapis.com` for earlier versions.
- "expireTime": "A String", # [Output only] The time the cluster will be automatically
- # deleted in [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ # - "latest": picks the highest valid Kubernetes version
+ # - "1.X": picks the highest valid patch+gke.N patch in the 1.X version
+ # - "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
+ # - "1.X.Y-gke.N": picks an explicit Kubernetes version
+ # - "","-": picks the default Kubernetes version
+ "privateCluster": True or False, # If this is a private cluster setup. Private clusters are clusters that, by
+ # default have no external IP addresses on the nodes and where nodes and the
+ # master communicate over private IP addresses.
+ # This field is deprecated, use private_cluster_config.enable_private_nodes
+ # instead.
"nodeConfig": { # Parameters that describe the nodes in a cluster. # Parameters used in creating the cluster's nodes.
# For requests, this field should only be used in lieu of a
# "node_pool" object, since this configuration (along with the
@@ -1158,39 +732,23 @@
#
# If unspecified, the defaults are used.
# This field is deprecated, use node_pool.config instead.
- "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
- # scheduled on the specified or newer CPU platform. Applicable values are the
- # friendly names of CPU platforms, such as
- # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
- # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
- # information, read [how to specify min CPU
- # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
- "shieldedInstanceConfig": { # A set of Shielded Instance options. # Shielded Instance options.
- "enableIntegrityMonitoring": True or False, # Defines whether the instance has integrity monitoring enabled.
- #
- # Enables monitoring and attestation of the boot integrity of the instance.
- # The attestation is performed against the integrity policy baseline. This
- # baseline is initially derived from the implicitly trusted boot image when
- # the instance is created.
- "enableSecureBoot": True or False, # Defines whether the instance has Secure Boot enabled.
- #
- # Secure Boot helps ensure that the system only runs authentic software by
- # verifying the digital signature of all boot components, and halting the
- # boot process if signature verification fails.
- },
- "preemptible": True or False, # Whether the nodes are created as preemptible VM instances. See:
- # https://cloud.google.com/compute/docs/instances/preemptible for more
- # inforamtion about preemptible VM instances.
- "localSsdCount": 42, # The number of local SSD disks to be attached to the node.
+ "oauthScopes": [ # The set of Google API scopes to be made available on all of the
+ # node VMs under the "default" service account.
#
- # The limit for this value is dependent upon the maximum number of
- # disks available on a machine per zone. See:
- # https://cloud.google.com/compute/docs/disks/local-ssd
- # for more information.
- "sandboxConfig": { # SandboxConfig contains configurations of the sandbox to use for the node. # Sandbox configuration for this node.
- "type": "A String", # Type of the sandbox to use for the node.
- "sandboxType": "A String", # Type of the sandbox to use for the node (e.g. 'gvisor')
- },
+ # The following scopes are recommended, but not required, and by default are
+ # not included:
+ #
+ # * `https://www.googleapis.com/auth/compute` is required for mounting
+ # persistent storage on your nodes.
+ # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
+ # communicating with **gcr.io**
+ # (the [Google Container
+ # Registry](https://cloud.google.com/container-registry/)).
+ #
+ # If unspecified, no scopes are added, unless Cloud Logging or Cloud
+ # Monitoring are enabled, in which case their required scopes will be added.
+ "A String",
+ ],
"metadata": { # The metadata key/value pairs assigned to instances in the cluster.
#
# Keys must conform to the regexp [a-zA-Z0-9-_]+ and be less than 128 bytes
@@ -1224,48 +782,54 @@
# The total size of all keys and values must be less than 512 KB.
"a_key": "A String",
},
- "reservationAffinity": { # [ReservationAffinity](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources) # The optional reservation affinity. Setting this field will apply
- # the specified [Zonal Compute
- # Reservation](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources)
- # to this node pool.
- # is the configuration of desired reservation which instances could take
- # capacity from.
- "key": "A String", # Corresponds to the label key of a reservation resource. To target a
- # SPECIFIC_RESERVATION by name, specify "googleapis.com/reservation-name" as
- # the key and specify the name of your reservation as its value.
- "values": [ # Corresponds to the label value(s) of reservation resource(s).
- "A String",
- ],
- "consumeReservationType": "A String", # Corresponds to the type of reservation consumption.
+ "machineType": "A String", # The name of a Google Compute Engine [machine
+ # type](https://cloud.google.com/compute/docs/machine-types) (e.g.
+ # `n1-standard-1`).
+ #
+ # If unspecified, the default machine type is
+ # `n1-standard-1`.
+ "nodeGroup": "A String", # Setting this field will assign instances of this
+ # pool to run on the specified node group. This is useful for running
+ # workloads on [sole tenant
+ # nodes](https://cloud.google.com/compute/docs/nodes/sole-tenant-nodes).
+ "shieldedInstanceConfig": { # A set of Shielded Instance options. # Shielded Instance options.
+ "enableSecureBoot": True or False, # Defines whether the instance has Secure Boot enabled.
+ #
+ # Secure Boot helps ensure that the system only runs authentic software by
+ # verifying the digital signature of all boot components, and halting the
+ # boot process if signature verification fails.
+ "enableIntegrityMonitoring": True or False, # Defines whether the instance has integrity monitoring enabled.
+ #
+ # Enables monitoring and attestation of the boot integrity of the instance.
+ # The attestation is performed against the integrity policy baseline. This
+ # baseline is initially derived from the implicitly trusted boot image when
+ # the instance is created.
},
- "tags": [ # The list of instance tags applied to all nodes. Tags are used to identify
- # valid sources or targets for network firewalls and are specified by
- # the client during cluster or node pool creation. Each tag within the list
- # must comply with RFC1035.
- "A String",
- ],
"serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
# Specify the email address of the Service Account; otherwise, if no Service
# Account is specified, the "default" service account is used.
- "imageType": "A String", # The image type to use for this node. Note that for a given image type,
- # the latest version of it will be used.
- "oauthScopes": [ # The set of Google API scopes to be made available on all of the
- # node VMs under the "default" service account.
- #
- # The following scopes are recommended, but not required, and by default are
- # not included:
- #
- # * `https://www.googleapis.com/auth/compute` is required for mounting
- # persistent storage on your nodes.
- # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
- # communicating with **gcr.io**
- # (the [Google Container
- # Registry](https://cloud.google.com/container-registry/)).
- #
- # If unspecified, no scopes are added, unless Cloud Logging or Cloud
- # Monitoring are enabled, in which case their required scopes will be added.
- "A String",
- ],
+ "linuxNodeConfig": { # Parameters that can be configured on Linux nodes. # Parameters that can be configured on Linux nodes.
+ "sysctls": { # The Linux kernel parameters to be applied to the nodes and all pods running
+ # on the nodes.
+ #
+ # The following parameters are supported.
+ #
+ # net.core.netdev_max_backlog
+ # net.core.rmem_max
+ # net.core.wmem_default
+ # net.core.wmem_max
+ # net.core.optmem_max
+ # net.core.somaxconn
+ # net.ipv4.tcp_rmem
+ # net.ipv4.tcp_wmem
+ # net.ipv4.tcp_tw_reuse
+ "a_key": "A String",
+ },
+ },
+ "sandboxConfig": { # SandboxConfig contains configurations of the sandbox to use for the node. # Sandbox configuration for this node.
+ "type": "A String", # Type of the sandbox to use for the node.
+ "sandboxType": "A String", # Type of the sandbox to use for the node (e.g. 'gvisor')
+ },
"taints": [ # List of kubernetes taints to be applied to each node.
#
# For more information, including usage and the valid values, see:
@@ -1277,10 +841,37 @@
# [here](https://kubernetes.io/docs/concepts/configuration/taint-and-toleration)
# for more information, including usage and the valid values.
"effect": "A String", # Effect for taint.
- "value": "A String", # Value for taint.
"key": "A String", # Key for taint.
+ "value": "A String", # Value for taint.
},
],
+ "kubeletConfig": { # Node kubelet configs. # Node kubelet configs.
+ "cpuCfsQuotaPeriod": "A String", # Set the CPU CFS quota period value 'cpu.cfs_period_us'.
+ #
+ # The string must be a sequence of decimal numbers, each with optional
+ # fraction and a unit suffix, such as "300ms".
+ # Valid time units are "ns", "us" (or "µs"), "ms", "s", "m", "h".
+ # The value must be a positive duration.
+ "cpuCfsQuota": True or False, # Enable CPU CFS quota enforcement for containers that specify CPU limits.
+ #
+ # If this option is enabled, kubelet uses CFS quota
+ # (https://www.kernel.org/doc/Documentation/scheduler/sched-bwc.txt) to
+ # enforce container CPU limits. Otherwise, CPU limits will not be enforced at
+ # all.
+ #
+ # Disable this option to mitigate CPU throttling problems while still having
+ # your pods to be in Guaranteed QoS class by specifying the CPU limits.
+ #
+ # The default value is 'true' if unspecified.
+ "cpuManagerPolicy": "A String", # Control the CPU management policy on the node.
+ # See
+ # https://kubernetes.io/docs/tasks/administer-cluster/cpu-management-policies/
+ #
+ # The following values are allowed.
+ # - "none": the default, which represents the existing scheduling behavior.
+ # - "static": allows pods with certain resource characteristics to be
+ # granted increased CPU affinity and exclusivity on the node.
+ },
"labels": { # The map of Kubernetes labels (key/value pairs) to be applied to each node.
# These will added in addition to any default label(s) that
# Kubernetes may apply to the node.
@@ -1291,10 +882,9 @@
# https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
"a_key": "A String",
},
- "diskSizeGb": 42, # Size of the disk attached to each node, specified in GB.
- # The smallest allowed disk size is 10GB.
+ "diskType": "A String", # Type of the disk attached to each node (e.g. 'pd-standard' or 'pd-ssd')
#
- # If unspecified, the default disk size is 100GB.
+ # If unspecified, the default disk type is 'pd-standard'
"workloadMetadataConfig": { # WorkloadMetadataConfig defines the metadata configuration to expose to # The workload metadata configuration for this node.
# workloads on the node pool.
"nodeMetadata": "A String", # NodeMetadata is the configuration for how to expose metadata to the
@@ -1302,24 +892,6 @@
"mode": "A String", # Mode is the configuration for how to expose metadata to workloads running
# on the node pool.
},
- "accelerators": [ # A list of hardware accelerators to be attached to each node.
- # See https://cloud.google.com/compute/docs/gpus for more information about
- # support for GPUs.
- { # AcceleratorConfig represents a Hardware Accelerator request.
- "acceleratorType": "A String", # The accelerator type resource name. List of supported accelerators
- # [here](https://cloud.google.com/compute/docs/gpus)
- "acceleratorCount": "A String", # The number of the accelerator cards exposed to an instance.
- },
- ],
- "machineType": "A String", # The name of a Google Compute Engine [machine
- # type](https://cloud.google.com/compute/docs/machine-types) (e.g.
- # `n1-standard-1`).
- #
- # If unspecified, the default machine type is
- # `n1-standard-1`.
- "diskType": "A String", # Type of the disk attached to each node (e.g. 'pd-standard' or 'pd-ssd')
- #
- # If unspecified, the default disk type is 'pd-standard'
"bootDiskKmsKey": "A String", #
# The Customer Managed Encryption Key used to encrypt the boot disk attached
# to each node in the node pool. This should be of the form
@@ -1327,107 +899,91 @@
# For more information about protecting resources with Cloud KMS Keys please
# see:
# https://cloud.google.com/compute/docs/disks/customer-managed-encryption
- },
- "tpuConfig": { # Configuration for Cloud TPU. # Configuration for Cloud TPU support;
- "useServiceNetworking": True or False, # Whether to use service networking for Cloud TPU or not.
- "ipv4CidrBlock": "A String", # IPv4 CIDR block reserved for Cloud TPU in the VPC.
- "enabled": True or False, # Whether Cloud TPU integration is enabled or not.
- },
- "status": "A String", # [Output only] The current status of this cluster.
- "networkConfig": { # NetworkConfig reports the relative names of network & subnetwork. # Configuration for cluster networking.
- "enableIntraNodeVisibility": True or False, # Whether Intra-node visibility is enabled for this cluster.
- # This makes same node pod to pod traffic visible for VPC network.
- "subnetwork": "A String", # Output only. The relative name of the Google Compute Engine
- # [subnetwork](https://cloud.google.com/compute/docs/vpc) to which the
- # cluster is connected. Example:
- # projects/my-project/regions/us-central1/subnetworks/my-subnet
- "network": "A String", # Output only. The relative name of the Google Compute Engine
- # network(https://cloud.google.com/compute/docs/networks-and-firewalls#networks)
- # to which the cluster is connected. Example:
- # projects/my-project/global/networks/my-network
- "defaultSnatStatus": { # DefaultSnatStatus contains the desired state of whether default sNAT should # Whether the cluster disables default in-node sNAT rules. In-node sNAT rules
- # will be disabled when default_snat_status is disabled. When disabled is set
- # to false, default IP masquerade rules will be applied to the nodes to
- # prevent sNAT on cluster internal traffic.
- # be disabled on the cluster.
- "disabled": True or False, # Disables cluster default sNAT rules.
+ "diskSizeGb": 42, # Size of the disk attached to each node, specified in GB.
+ # The smallest allowed disk size is 10GB.
+ #
+ # If unspecified, the default disk size is 100GB.
+ "reservationAffinity": { # [ReservationAffinity](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources) # The optional reservation affinity. Setting this field will apply
+ # the specified [Zonal Compute
+ # Reservation](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources)
+ # to this node pool.
+ # is the configuration of desired reservation which instances could take
+ # capacity from.
+ "consumeReservationType": "A String", # Corresponds to the type of reservation consumption.
+ "key": "A String", # Corresponds to the label key of a reservation resource. To target a
+ # SPECIFIC_RESERVATION by name, specify "googleapis.com/reservation-name" as
+ # the key and specify the name of your reservation as its value.
+ "values": [ # Corresponds to the label value(s) of reservation resource(s).
+ "A String",
+ ],
},
+ "preemptible": True or False, # Whether the nodes are created as preemptible VM instances. See:
+ # https://cloud.google.com/compute/docs/instances/preemptible for more
+ # inforamtion about preemptible VM instances.
+ "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
+ # scheduled on the specified or newer CPU platform. Applicable values are the
+ # friendly names of CPU platforms, such as
+ # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
+ # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
+ # information, read [how to specify min CPU
+ # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
+ "tags": [ # The list of instance tags applied to all nodes. Tags are used to identify
+ # valid sources or targets for network firewalls and are specified by
+ # the client during cluster or node pool creation. Each tag within the list
+ # must comply with RFC1035.
+ "A String",
+ ],
+ "accelerators": [ # A list of hardware accelerators to be attached to each node.
+ # See https://cloud.google.com/compute/docs/gpus for more information about
+ # support for GPUs.
+ { # AcceleratorConfig represents a Hardware Accelerator request.
+ "acceleratorCount": "A String", # The number of the accelerator cards exposed to an instance.
+ "acceleratorType": "A String", # The accelerator type resource name. List of supported accelerators
+ # [here](https://cloud.google.com/compute/docs/gpus)
+ },
+ ],
+ "localSsdCount": 42, # The number of local SSD disks to be attached to the node.
+ #
+ # The limit for this value is dependent upon the maximum number of
+ # disks available on a machine per zone. See:
+ # https://cloud.google.com/compute/docs/disks/local-ssd
+ # for more information.
+ "imageType": "A String", # The image type to use for this node. Note that for a given image type,
+ # the latest version of it will be used.
},
- "name": "A String", # The name of this cluster. The name must be unique within this project
- # and location (e.g. zone or region), and can be up to 40 characters with
- # the following restrictions:
- #
- # * Lowercase letters, numbers, and hyphens only.
- # * Must start with a letter.
- # * Must end with a number or a letter.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "endpoint": "A String", # [Output only] The IP address of this cluster's master endpoint.
- # The endpoint can be accessed from the internet at
- # `https://username:password@endpoint/`.
- #
- # See the `masterAuth` property of this resource for username and
- # password information.
- "createTime": "A String", # [Output only] The time the cluster was created, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterIpv4Cidr": "A String", # The IP address range of the container pods in this cluster, in
+ "currentMasterVersion": "A String", # [Output only] The current software version of the master endpoint.
+ "masterAuthorizedNetworksConfig": { # Configuration options for the master authorized networks feature. Enabled # The configuration options for master authorized networks feature.
+ # master authorized networks will disallow all external traffic to access
+ # Kubernetes master through HTTPS except traffic from the given CIDR blocks,
+ # Google Compute Engine Public IPs and Google Prod IPs.
+ "cidrBlocks": [ # cidr_blocks define up to 10 external networks that could access
+ # Kubernetes master through HTTPS.
+ { # CidrBlock contains an optional name and one CIDR block.
+ "displayName": "A String", # display_name is an optional field for users to identify CIDR blocks.
+ "cidrBlock": "A String", # cidr_block must be specified in CIDR notation.
+ },
+ ],
+ "enabled": True or False, # Whether or not master authorized networks is enabled.
+ },
+ "servicesIpv4Cidr": "A String", # [Output only] The IP address range of the Kubernetes services in
+ # this cluster, in
# [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `10.96.0.0/14`). Leave blank to have
- # one automatically chosen or specify a `/14` block in `10.0.0.0/8`.
+ # notation (e.g. `1.2.3.4/29`). Service addresses are
+ # typically put in the last `/16` from the container CIDR.
+ "masterIpv4CidrBlock": "A String", # The IP prefix in CIDR notation to use for the hosted master network.
+ # This prefix will be used for assigning private IP addresses to the
+ # master or set of masters, as well as the ILB VIP.
+ # This field is deprecated, use
+ # private_cluster_config.master_ipv4_cidr_block instead.
"autoscaling": { # ClusterAutoscaling contains global, per-cluster information # Cluster-level autoscaling configuration.
# required by Cluster Autoscaler to automatically adjust
# the size of the cluster and create/delete
# node pools based on the current needs.
- "autoprovisioningLocations": [ # The list of Google Compute Engine
- # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
- # NodePool's nodes can be created by NAP.
- "A String",
- ],
- "resourceLimits": [ # Contains global constraints regarding minimum and maximum
- # amount of resources in the cluster.
- { # Contains information about amount of some resource in the cluster.
- # For memory, value should be in GB.
- "maximum": "A String", # Maximum amount of the resource in the cluster.
- "resourceType": "A String", # Resource name "cpu", "memory" or gpu-specific string.
- "minimum": "A String", # Minimum amount of the resource in the cluster.
- },
- ],
- "autoscalingProfile": "A String", # Defines autoscaling behaviour.
"enableNodeAutoprovisioning": True or False, # Enables automatic node pool creation and deletion.
"autoprovisioningNodePoolDefaults": { # AutoprovisioningNodePoolDefaults contains defaults for a node pool created # AutoprovisioningNodePoolDefaults contains defaults for a node pool
# created by NAP.
# by NAP.
- "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs. If
- # service_account is specified, scopes should be empty.
- "minCpuPlatform": "A String", # Minimum CPU platform to be used for NAP created node pools.
- # The instance may be scheduled on the specified or newer CPU platform.
- # Applicable values are the friendly names of CPU platforms, such as
- # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
- # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
- # information, read [how to specify min CPU
- # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
- # To unset the min cpu platform field pass "automatic" as field value.
- "management": { # NodeManagement defines the set of node management services turned on for the # Specifies the node management options for NAP created node-pools.
- # node pool.
- "autoRepair": True or False, # Whether the nodes will be automatically repaired.
- "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
- "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
- # the Auto Upgrades will proceed.
- "description": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the description of the upgrade.
- "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the approximate start time for the upgrades, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- },
- },
- "oauthScopes": [ # Scopes that are used by NAP when creating node pools. If oauth_scopes are
- # specified, service_account should be empty.
- "A String",
- ],
- "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Specifies the upgrade settings for NAP created node pools
+ "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Upgrade settings control disruption and speed of the upgrade.
# disruption caused by an upgrade.
#
# maxUnavailable controls the number of nodes that can be simultaneously
@@ -1456,10 +1012,548 @@
"maxSurge": 42, # The maximum number of nodes that can be created beyond the current size
# of the node pool during the upgrade process.
},
+ "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
+ # Specify the email address of the Service Account; otherwise, if no Service
+ # Account is specified, the "default" service account is used.
+ "oauthScopes": [ # The set of Google API scopes to be made available on all of the
+ # node VMs under the "default" service account.
+ #
+ # The following scopes are recommended, but not required, and by default are
+ # not included:
+ #
+ # * `https://www.googleapis.com/auth/compute` is required for mounting
+ # persistent storage on your nodes.
+ # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
+ # communicating with **gcr.io**
+ # (the [Google Container
+ # Registry](https://cloud.google.com/container-registry/)).
+ #
+ # If unspecified, no scopes are added, unless Cloud Logging or Cloud
+ # Monitoring are enabled, in which case their required scopes will be added.
+ "A String",
+ ],
+ "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
+ # scheduled on the specified or newer CPU platform. Applicable values are the
+ # friendly names of CPU platforms, such as
+ # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
+ # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
+ # information, read [how to specify min CPU
+ # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
+ # To unset the min cpu platform field pass "automatic"
+ # as field value.
+ "management": { # NodeManagement defines the set of node management services turned on for the # NodeManagement configuration for this NodePool.
+ # node pool.
+ "autoRepair": True or False, # Whether the nodes will be automatically repaired.
+ "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
+ "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
+ # the Auto Upgrades will proceed.
+ "description": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the description of the upgrade.
+ "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the approximate start time for the upgrades, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ },
+ },
},
+ "autoscalingProfile": "A String", # Defines autoscaling behaviour.
+ "resourceLimits": [ # Contains global constraints regarding minimum and maximum
+ # amount of resources in the cluster.
+ { # Contains information about amount of some resource in the cluster.
+ # For memory, value should be in GB.
+ "minimum": "A String", # Minimum amount of the resource in the cluster.
+ "maximum": "A String", # Maximum amount of the resource in the cluster.
+ "resourceType": "A String", # Resource name "cpu", "memory" or gpu-specific string.
+ },
+ ],
+ "autoprovisioningLocations": [ # The list of Google Compute Engine
+ # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
+ # NodePool's nodes can be created by NAP.
+ "A String",
+ ],
},
+ "locations": [ # The list of Google Compute Engine
+ # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster's nodes should be located.
+ "A String",
+ ],
+ "conditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "loggingService": "A String", # The logging service the cluster should use to write logs.
+ # Currently available options:
+ #
+ # * `logging.googleapis.com/kubernetes` - The Cloud Logging
+ # service with a Kubernetes-native resource model
+ # * `logging.googleapis.com` - The legacy Cloud Logging service (no longer
+ # available as of GKE 1.15).
+ # * `none` - no logs will be exported from the cluster.
+ #
+ # If left as an empty string,`logging.googleapis.com/kubernetes` will be
+ # used for GKE 1.14+ or `logging.googleapis.com` for earlier versions.
+ "enableKubernetesAlpha": True or False, # Kubernetes alpha features are enabled on this cluster. This includes alpha
+ # API groups (e.g. v1beta1) and features that may not be production ready in
+ # the kubernetes version of the master and nodes.
+ # The cluster has no SLA for uptime and master/node upgrades are disabled.
+ # Alpha enabled clusters are automatically deleted thirty days after
+ # creation.
+ "instanceGroupUrls": [ # Deprecated. Use node_pools.instance_group_urls.
+ "A String",
+ ],
+ "name": "A String", # The name of this cluster. The name must be unique within this project
+ # and location (e.g. zone or region), and can be up to 40 characters with
+ # the following restrictions:
+ #
+ # * Lowercase letters, numbers, and hyphens only.
+ # * Must start with a letter.
+ # * Must end with a number or a letter.
+ "master": { # Master is the configuration for components on master. # Configuration for master components.
+ },
+ "endpoint": "A String", # [Output only] The IP address of this cluster's master endpoint.
+ # The endpoint can be accessed from the internet at
+ # `https://username:password@endpoint/`.
+ #
+ # See the `masterAuth` property of this resource for username and
+ # password information.
+ "resourceUsageExportConfig": { # Configuration for exporting cluster resource usages. # Configuration for exporting resource usages. Resource usage export is
+ # disabled when this config unspecified.
+ "consumptionMeteringConfig": { # Parameters for controlling consumption metering. # Configuration to enable resource consumption metering.
+ "enabled": True or False, # Whether to enable consumption metering for this cluster. If enabled, a
+ # second BigQuery table will be created to hold resource consumption
+ # records.
+ },
+ "bigqueryDestination": { # Parameters for using BigQuery as the destination of resource usage export. # Configuration to use BigQuery as usage export destination.
+ "datasetId": "A String", # The ID of a BigQuery Dataset.
+ },
+ "enableNetworkEgressMetering": True or False, # Whether to enable network egress metering for this cluster. If enabled, a
+ # daemonset will be created in the cluster to meter network egress traffic.
+ },
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
+ "authenticatorGroupsConfig": { # Configuration for returning group information from authenticators. # Configuration controlling RBAC group membership information.
+ "securityGroup": "A String", # The name of the security group-of-groups to be used. Only relevant
+ # if enabled = true.
+ "enabled": True or False, # Whether this cluster should return group membership lookups
+ # during authentication using a group of security groups.
+ },
+ "subnetwork": "A String", # The name of the Google Compute Engine
+ # [subnetwork](https://cloud.google.com/compute/docs/subnetworks) to which
+ # the cluster is connected. On output this shows the subnetwork ID instead of
+ # the name.
+ "maintenancePolicy": { # MaintenancePolicy defines the maintenance policy to be used for the cluster. # Configure the maintenance policy for this cluster.
+ "window": { # MaintenanceWindow defines the maintenance window to be used for the cluster. # Specifies the maintenance window in which maintenance may be performed.
+ "recurringWindow": { # Represents an arbitrary window of time that recurs. # RecurringWindow specifies some number of recurring time periods for
+ # maintenance to occur. The time windows may be overlapping. If no
+ # maintenance windows are set, maintenance can occur at any time.
+ "recurrence": "A String", # An RRULE (https://tools.ietf.org/html/rfc5545#section-3.8.5.3) for how
+ # this window reccurs. They go on for the span of time between the start and
+ # end time.
+ #
+ # For example, to have something repeat every weekday, you'd use:
+ # <code>FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR</code>
+ # To repeat some window daily (equivalent to the DailyMaintenanceWindow):
+ # <code>FREQ=DAILY</code>
+ # For the first weekend of every month:
+ # <code>FREQ=MONTHLY;BYSETPOS=1;BYDAY=SA,SU</code>
+ # This specifies how frequently the window starts. Eg, if you wanted to have
+ # a 9-5 UTC-4 window every weekday, you'd use something like:
+ # <code>
+ # start time = 2019-01-01T09:00:00-0400
+ # end time = 2019-01-01T17:00:00-0400
+ # recurrence = FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR
+ # </code>
+ # Windows can span multiple days. Eg, to make the window encompass every
+ # weekend from midnight Saturday till the last minute of Sunday UTC:
+ # <code>
+ # start time = 2019-01-05T00:00:00Z
+ # end time = 2019-01-07T23:59:00Z
+ # recurrence = FREQ=WEEKLY;BYDAY=SA
+ # </code>
+ # Note the start and end time's specific dates are largely arbitrary except
+ # to specify duration of the window and when it first starts.
+ # The FREQ values of HOURLY, MINUTELY, and SECONDLY are not supported.
+ "window": { # Represents an arbitrary window of time. # The window of the first recurrence.
+ "endTime": "A String", # The time that the window ends. The end time should take place after the
+ # start time.
+ "startTime": "A String", # The time that the window first starts.
+ },
+ },
+ "dailyMaintenanceWindow": { # Time window specified for daily maintenance operations. # DailyMaintenanceWindow specifies a daily maintenance operation window.
+ "startTime": "A String", # Time within the maintenance window to start the maintenance operations.
+ # It must be in format "HH:MM", where HH : [00-23] and MM : [00-59] GMT.
+ "duration": "A String", # [Output only] Duration of the time window, automatically chosen to be
+ # smallest possible in the given scenario.
+ },
+ "maintenanceExclusions": { # Exceptions to maintenance window. Non-emergency maintenance should not
+ # occur in these windows.
+ "a_key": { # Represents an arbitrary window of time.
+ "endTime": "A String", # The time that the window ends. The end time should take place after the
+ # start time.
+ "startTime": "A String", # The time that the window first starts.
+ },
+ },
+ },
+ "resourceVersion": "A String", # A hash identifying the version of this policy, so that updates to fields of
+ # the policy won't accidentally undo intermediate changes (and so that users
+ # of the API unaware of some fields won't accidentally remove other fields).
+ # Make a <code>get()</code> request to the cluster to get the current
+ # resource version and include it with requests to set the policy.
+ },
+ "tpuConfig": { # Configuration for Cloud TPU. # Configuration for Cloud TPU support;
+ "ipv4CidrBlock": "A String", # IPv4 CIDR block reserved for Cloud TPU in the VPC.
+ "useServiceNetworking": True or False, # Whether to use service networking for Cloud TPU or not.
+ "enabled": True or False, # Whether Cloud TPU integration is enabled or not.
+ },
+ "nodePools": [ # The node pools associated with this cluster.
+ # This field should not be set if "node_config" or "initial_node_count" are
+ # specified.
+ { # NodePool contains the name and configuration for a cluster's node pool.
+ # Node pools are a set of nodes (i.e. VM's), with a common configuration and
+ # specification, under the control of the cluster master. They may have a set
+ # of Kubernetes labels applied to them, which may be used to reference them
+ # during pod scheduling. They may also be resized up or down, to accommodate
+ # the workload.
+ "status": "A String", # [Output only] The status of the nodes in this pool instance.
+ "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Upgrade settings control disruption and speed of the upgrade.
+ # disruption caused by an upgrade.
+ #
+ # maxUnavailable controls the number of nodes that can be simultaneously
+ # unavailable.
+ #
+ # maxSurge controls the number of additional nodes that can be added to the
+ # node pool temporarily for the time of the upgrade to increase the number of
+ # available nodes.
+ #
+ # (maxUnavailable + maxSurge) determines the level of parallelism (how many
+ # nodes are being upgraded at the same time).
+ #
+ # Note: upgrades inevitably introduce some disruption since workloads need to
+ # be moved from old nodes to new, upgraded ones. Even if maxUnavailable=0,
+ # this holds true. (Disruption stays within the limits of
+ # PodDisruptionBudget, if it is configured.)
+ #
+ # Consider a hypothetical node pool with 5 nodes having maxSurge=2,
+ # maxUnavailable=1. This means the upgrade process upgrades 3 nodes
+ # simultaneously. It creates 2 additional (upgraded) nodes, then it brings
+ # down 3 old (not yet upgraded) nodes at the same time. This ensures that
+ # there are always at least 4 nodes available.
+ "maxUnavailable": 42, # The maximum number of nodes that can be simultaneously unavailable during
+ # the upgrade process. A node is considered available if its status is
+ # Ready.
+ "maxSurge": 42, # The maximum number of nodes that can be created beyond the current size
+ # of the node pool during the upgrade process.
+ },
+ "instanceGroupUrls": [ # [Output only] The resource URLs of the [managed instance
+ # groups](https://cloud.google.com/compute/docs/instance-groups/creating-groups-of-managed-instances)
+ # associated with this node pool.
+ "A String",
+ ],
+ "autoscaling": { # NodePoolAutoscaling contains information required by cluster autoscaler to # Autoscaler configuration for this NodePool. Autoscaler is enabled
+ # only if a valid configuration is present.
+ # adjust the size of the node pool to the current cluster usage.
+ "autoprovisioned": True or False, # Can this node pool be deleted automatically.
+ "minNodeCount": 42, # Minimum number of nodes in the NodePool. Must be >= 1 and <=
+ # max_node_count.
+ "enabled": True or False, # Is autoscaling enabled for this node pool.
+ "maxNodeCount": 42, # Maximum number of nodes in the NodePool. Must be >= min_node_count. There
+ # has to enough quota to scale up the cluster.
+ },
+ "initialNodeCount": 42, # The initial node count for the pool. You must ensure that your
+ # Compute Engine [resource quota](https://cloud.google.com/compute/quotas)
+ # is sufficient for this number of instances. You must also have available
+ # firewall and routes quota.
+ "config": { # Parameters that describe the nodes in a cluster. # The node configuration of the pool.
+ "oauthScopes": [ # The set of Google API scopes to be made available on all of the
+ # node VMs under the "default" service account.
+ #
+ # The following scopes are recommended, but not required, and by default are
+ # not included:
+ #
+ # * `https://www.googleapis.com/auth/compute` is required for mounting
+ # persistent storage on your nodes.
+ # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
+ # communicating with **gcr.io**
+ # (the [Google Container
+ # Registry](https://cloud.google.com/container-registry/)).
+ #
+ # If unspecified, no scopes are added, unless Cloud Logging or Cloud
+ # Monitoring are enabled, in which case their required scopes will be added.
+ "A String",
+ ],
+ "metadata": { # The metadata key/value pairs assigned to instances in the cluster.
+ #
+ # Keys must conform to the regexp [a-zA-Z0-9-_]+ and be less than 128 bytes
+ # in length. These are reflected as part of a URL in the metadata server.
+ # Additionally, to avoid ambiguity, keys must not conflict with any other
+ # metadata keys for the project or be one of the reserved keys:
+ # "cluster-location"
+ # "cluster-name"
+ # "cluster-uid"
+ # "configure-sh"
+ # "containerd-configure-sh"
+ # "enable-oslogin"
+ # "gci-ensure-gke-docker"
+ # "gci-metrics-enabled"
+ # "gci-update-strategy"
+ # "instance-template"
+ # "kube-env"
+ # "startup-script"
+ # "user-data"
+ # "disable-address-manager"
+ # "windows-startup-script-ps1"
+ # "common-psm1"
+ # "k8s-node-setup-psm1"
+ # "install-ssh-psm1"
+ # "user-profile-psm1"
+ # "serial-port-logging-enable"
+ # Values are free-form strings, and only have meaning as interpreted by
+ # the image running in the instance. The only restriction placed on them is
+ # that each value's size must be less than or equal to 32 KB.
+ #
+ # The total size of all keys and values must be less than 512 KB.
+ "a_key": "A String",
+ },
+ "machineType": "A String", # The name of a Google Compute Engine [machine
+ # type](https://cloud.google.com/compute/docs/machine-types) (e.g.
+ # `n1-standard-1`).
+ #
+ # If unspecified, the default machine type is
+ # `n1-standard-1`.
+ "nodeGroup": "A String", # Setting this field will assign instances of this
+ # pool to run on the specified node group. This is useful for running
+ # workloads on [sole tenant
+ # nodes](https://cloud.google.com/compute/docs/nodes/sole-tenant-nodes).
+ "shieldedInstanceConfig": { # A set of Shielded Instance options. # Shielded Instance options.
+ "enableSecureBoot": True or False, # Defines whether the instance has Secure Boot enabled.
+ #
+ # Secure Boot helps ensure that the system only runs authentic software by
+ # verifying the digital signature of all boot components, and halting the
+ # boot process if signature verification fails.
+ "enableIntegrityMonitoring": True or False, # Defines whether the instance has integrity monitoring enabled.
+ #
+ # Enables monitoring and attestation of the boot integrity of the instance.
+ # The attestation is performed against the integrity policy baseline. This
+ # baseline is initially derived from the implicitly trusted boot image when
+ # the instance is created.
+ },
+ "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
+ # Specify the email address of the Service Account; otherwise, if no Service
+ # Account is specified, the "default" service account is used.
+ "linuxNodeConfig": { # Parameters that can be configured on Linux nodes. # Parameters that can be configured on Linux nodes.
+ "sysctls": { # The Linux kernel parameters to be applied to the nodes and all pods running
+ # on the nodes.
+ #
+ # The following parameters are supported.
+ #
+ # net.core.netdev_max_backlog
+ # net.core.rmem_max
+ # net.core.wmem_default
+ # net.core.wmem_max
+ # net.core.optmem_max
+ # net.core.somaxconn
+ # net.ipv4.tcp_rmem
+ # net.ipv4.tcp_wmem
+ # net.ipv4.tcp_tw_reuse
+ "a_key": "A String",
+ },
+ },
+ "sandboxConfig": { # SandboxConfig contains configurations of the sandbox to use for the node. # Sandbox configuration for this node.
+ "type": "A String", # Type of the sandbox to use for the node.
+ "sandboxType": "A String", # Type of the sandbox to use for the node (e.g. 'gvisor')
+ },
+ "taints": [ # List of kubernetes taints to be applied to each node.
+ #
+ # For more information, including usage and the valid values, see:
+ # https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+ { # Kubernetes taint is comprised of three fields: key, value, and effect. Effect
+ # can only be one of three types: NoSchedule, PreferNoSchedule or NoExecute.
+ #
+ # See
+ # [here](https://kubernetes.io/docs/concepts/configuration/taint-and-toleration)
+ # for more information, including usage and the valid values.
+ "effect": "A String", # Effect for taint.
+ "key": "A String", # Key for taint.
+ "value": "A String", # Value for taint.
+ },
+ ],
+ "kubeletConfig": { # Node kubelet configs. # Node kubelet configs.
+ "cpuCfsQuotaPeriod": "A String", # Set the CPU CFS quota period value 'cpu.cfs_period_us'.
+ #
+ # The string must be a sequence of decimal numbers, each with optional
+ # fraction and a unit suffix, such as "300ms".
+ # Valid time units are "ns", "us" (or "µs"), "ms", "s", "m", "h".
+ # The value must be a positive duration.
+ "cpuCfsQuota": True or False, # Enable CPU CFS quota enforcement for containers that specify CPU limits.
+ #
+ # If this option is enabled, kubelet uses CFS quota
+ # (https://www.kernel.org/doc/Documentation/scheduler/sched-bwc.txt) to
+ # enforce container CPU limits. Otherwise, CPU limits will not be enforced at
+ # all.
+ #
+ # Disable this option to mitigate CPU throttling problems while still having
+ # your pods to be in Guaranteed QoS class by specifying the CPU limits.
+ #
+ # The default value is 'true' if unspecified.
+ "cpuManagerPolicy": "A String", # Control the CPU management policy on the node.
+ # See
+ # https://kubernetes.io/docs/tasks/administer-cluster/cpu-management-policies/
+ #
+ # The following values are allowed.
+ # - "none": the default, which represents the existing scheduling behavior.
+ # - "static": allows pods with certain resource characteristics to be
+ # granted increased CPU affinity and exclusivity on the node.
+ },
+ "labels": { # The map of Kubernetes labels (key/value pairs) to be applied to each node.
+ # These will added in addition to any default label(s) that
+ # Kubernetes may apply to the node.
+ # In case of conflict in label keys, the applied set may differ depending on
+ # the Kubernetes version -- it's best to assume the behavior is undefined
+ # and conflicts should be avoided.
+ # For more information, including usage and the valid values, see:
+ # https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
+ "a_key": "A String",
+ },
+ "diskType": "A String", # Type of the disk attached to each node (e.g. 'pd-standard' or 'pd-ssd')
+ #
+ # If unspecified, the default disk type is 'pd-standard'
+ "workloadMetadataConfig": { # WorkloadMetadataConfig defines the metadata configuration to expose to # The workload metadata configuration for this node.
+ # workloads on the node pool.
+ "nodeMetadata": "A String", # NodeMetadata is the configuration for how to expose metadata to the
+ # workloads running on the node.
+ "mode": "A String", # Mode is the configuration for how to expose metadata to workloads running
+ # on the node pool.
+ },
+ "bootDiskKmsKey": "A String", #
+ # The Customer Managed Encryption Key used to encrypt the boot disk attached
+ # to each node in the node pool. This should be of the form
+ # projects/[KEY_PROJECT_ID]/locations/[LOCATION]/keyRings/[RING_NAME]/cryptoKeys/[KEY_NAME].
+ # For more information about protecting resources with Cloud KMS Keys please
+ # see:
+ # https://cloud.google.com/compute/docs/disks/customer-managed-encryption
+ "diskSizeGb": 42, # Size of the disk attached to each node, specified in GB.
+ # The smallest allowed disk size is 10GB.
+ #
+ # If unspecified, the default disk size is 100GB.
+ "reservationAffinity": { # [ReservationAffinity](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources) # The optional reservation affinity. Setting this field will apply
+ # the specified [Zonal Compute
+ # Reservation](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources)
+ # to this node pool.
+ # is the configuration of desired reservation which instances could take
+ # capacity from.
+ "consumeReservationType": "A String", # Corresponds to the type of reservation consumption.
+ "key": "A String", # Corresponds to the label key of a reservation resource. To target a
+ # SPECIFIC_RESERVATION by name, specify "googleapis.com/reservation-name" as
+ # the key and specify the name of your reservation as its value.
+ "values": [ # Corresponds to the label value(s) of reservation resource(s).
+ "A String",
+ ],
+ },
+ "preemptible": True or False, # Whether the nodes are created as preemptible VM instances. See:
+ # https://cloud.google.com/compute/docs/instances/preemptible for more
+ # inforamtion about preemptible VM instances.
+ "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
+ # scheduled on the specified or newer CPU platform. Applicable values are the
+ # friendly names of CPU platforms, such as
+ # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
+ # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
+ # information, read [how to specify min CPU
+ # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
+ "tags": [ # The list of instance tags applied to all nodes. Tags are used to identify
+ # valid sources or targets for network firewalls and are specified by
+ # the client during cluster or node pool creation. Each tag within the list
+ # must comply with RFC1035.
+ "A String",
+ ],
+ "accelerators": [ # A list of hardware accelerators to be attached to each node.
+ # See https://cloud.google.com/compute/docs/gpus for more information about
+ # support for GPUs.
+ { # AcceleratorConfig represents a Hardware Accelerator request.
+ "acceleratorCount": "A String", # The number of the accelerator cards exposed to an instance.
+ "acceleratorType": "A String", # The accelerator type resource name. List of supported accelerators
+ # [here](https://cloud.google.com/compute/docs/gpus)
+ },
+ ],
+ "localSsdCount": 42, # The number of local SSD disks to be attached to the node.
+ #
+ # The limit for this value is dependent upon the maximum number of
+ # disks available on a machine per zone. See:
+ # https://cloud.google.com/compute/docs/disks/local-ssd
+ # for more information.
+ "imageType": "A String", # The image type to use for this node. Note that for a given image type,
+ # the latest version of it will be used.
+ },
+ "selfLink": "A String", # [Output only] Server-defined URL for the resource.
+ "management": { # NodeManagement defines the set of node management services turned on for the # NodeManagement configuration for this NodePool.
+ # node pool.
+ "autoRepair": True or False, # Whether the nodes will be automatically repaired.
+ "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
+ "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
+ # the Auto Upgrades will proceed.
+ "description": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the description of the upgrade.
+ "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the approximate start time for the upgrades, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ },
+ },
+ "name": "A String", # The name of the node pool.
+ "version": "A String", # The version of the Kubernetes of this node.
+ "maxPodsConstraint": { # Constraints applied to pods. # The constraint on the maximum number of pods that can be run
+ # simultaneously on a node in the node pool.
+ "maxPodsPerNode": "A String", # Constraint enforced on the max num of pods per node.
+ },
+ "statusMessage": "A String", # [Output only] Additional information about the current status of this
+ # node pool instance, if available.
+ "podIpv4CidrSize": 42, # [Output only] The pod CIDR block size per node in this node pool.
+ "conditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "locations": [ # The list of Google Compute Engine
+ # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
+ # NodePool's nodes should be located.
+ "A String",
+ ],
+ },
+ ],
+ "statusMessage": "A String", # [Output only] Additional information about the current status of this
+ # cluster, if available.
+ "releaseChannel": { # ReleaseChannel indicates which release channel a cluster is # Release channel configuration.
+ # subscribed to. Release channels are arranged in order of risk.
+ #
+ # When a cluster is subscribed to a release channel, Google maintains
+ # both the master version and the node version. Node auto-upgrade
+ # defaults to true and cannot be disabled.
+ "channel": "A String", # channel specifies which release channel the cluster is subscribed to.
+ },
+ "selfLink": "A String", # [Output only] Server-defined URL for the resource.
+ "defaultMaxPodsConstraint": { # Constraints applied to pods. # The default constraint on the maximum number of pods that can be run
+ # simultaneously on a node in the node pool of this cluster. Only honored
+ # if cluster created with IP Alias support.
+ "maxPodsPerNode": "A String", # Constraint enforced on the max num of pods per node.
+ },
+ "clusterTelemetry": { # Telemetry integration for the cluster. # Telemetry integration for the cluster.
+ "type": "A String", # Type of the integration.
+ },
+ "status": "A String", # [Output only] The current status of this cluster.
+ "resourceLabels": { # The resource labels for the cluster to use to annotate any related
+ # Google Compute Engine resources.
+ "a_key": "A String",
+ },
+ "tpuIpv4CidrBlock": "A String", # [Output only] The IP address range of the Cloud TPUs in this cluster, in
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `1.2.3.4/29`).
"initialNodeCount": 42, # The number of nodes to create in this cluster. You must ensure that your
- # Compute Engine <a href="/compute/docs/resource-quotas">resource quota</a>
+ # Compute Engine [resource quota](https://cloud.google.com/compute/quotas)
# is sufficient for this number of instances. You must also have available
# firewall and routes quota.
# For requests, this field should only be used in lieu of a
@@ -1468,17 +1562,37 @@
# auto-generated name. Do not use this and a node_pool at the same time.
#
# This field is deprecated, use node_pool.initial_node_count instead.
- "instanceGroupUrls": [ # Deprecated. Use node_pools.instance_group_urls.
- "A String",
- ],
+ "podSecurityPolicyConfig": { # Configuration for the PodSecurityPolicy feature. # Configuration for the PodSecurityPolicy feature.
+ "enabled": True or False, # Enable the PodSecurityPolicy controller for this cluster. If enabled, pods
+ # must be valid under a PodSecurityPolicy to be created.
+ },
+ "description": "A String", # An optional description of this cluster.
+ "databaseEncryption": { # Configuration of etcd encryption. # Configuration of etcd encryption.
+ "state": "A String", # Denotes the state of etcd encryption.
+ "keyName": "A String", # Name of CloudKMS key to use for the encryption of secrets in etcd.
+ # Ex. projects/my-project/locations/global/keyRings/my-ring/cryptoKeys/my-key
+ },
+ "network": "A String", # The name of the Google Compute Engine
+ # [network](https://cloud.google.com/compute/docs/networks-and-firewalls#networks)
+ # to which the cluster is connected. If left unspecified, the `default`
+ # network will be used. On output this shows the network ID instead of the
+ # name.
+ "zone": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster resides. This field is deprecated, use location instead.
+ "verticalPodAutoscaling": { # VerticalPodAutoscaling contains global, per-cluster information # Cluster-level Vertical Pod Autoscaling configuration.
+ # required by Vertical Pod Autoscaler to automatically adjust
+ # the resources of pods controlled by it.
+ "enabled": True or False, # Enables vertical pod autoscaling.
+ },
+ "expireTime": "A String", # [Output only] The time the cluster will be automatically
+ # deleted in [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "nodeIpv4CidrSize": 42, # [Output only] The size of the address space on each node for hosting
+ # containers. This is provisioned from within the `container_ipv4_cidr`
+ # range. This field will only be set when cluster is in route-based network
+ # mode.
+ "labelFingerprint": "A String", # The fingerprint of the set of labels for this cluster.
},
- "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
- # number](https://support.google.com/cloud/answer/6158840).
- # This field has been deprecated and replaced by the parent field.
- "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster resides. This field has been deprecated and replaced by the parent
- # field.
}
x__xgafv: string, V1 error format.
@@ -1492,34 +1606,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -1527,25 +1622,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -1584,34 +1698,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -1619,25 +1714,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -1666,135 +1780,18 @@
An object of the form:
{ # A Google Kubernetes Engine cluster.
- "privateClusterConfig": { # Configuration options for private clusters. # Configuration for private cluster.
- "masterIpv4CidrBlock": "A String", # The IP range in CIDR notation to use for the hosted master network. This
- # range will be used for assigning internal IP addresses to the master or
- # set of masters, as well as the ILB VIP. This range must not overlap with
- # any other ranges in use within the cluster's network.
- "enablePrivateNodes": True or False, # Whether nodes have internal IP addresses only. If enabled, all nodes are
- # given only RFC 1918 private addresses and communicate with the master via
- # private networking.
- "privateEndpoint": "A String", # Output only. The internal IP address of this cluster's master endpoint.
- "enablePrivateEndpoint": True or False, # Whether the master's internal IP address is used as the cluster endpoint.
- "peeringName": "A String", # Output only. The peering name in the customer VPC used by this cluster.
- "masterGlobalAccessConfig": { # Configuration for controlling master global access settings. # Controls master global access settings.
- "enabled": True or False, # Whenever master is accessible globally or not.
- },
- "publicEndpoint": "A String", # Output only. The external IP address of this cluster's master endpoint.
- },
- "shieldedNodes": { # Configuration of Shielded Nodes feature. # Shielded Nodes configuration.
- "enabled": True or False, # Whether Shielded Nodes features are enabled on all nodes in this cluster.
- },
- "verticalPodAutoscaling": { # VerticalPodAutoscaling contains global, per-cluster information # Cluster-level Vertical Pod Autoscaling configuration.
- # required by Vertical Pod Autoscaler to automatically adjust
- # the resources of pods controlled by it.
- "enabled": True or False, # Enables vertical pod autoscaling.
- },
- "defaultMaxPodsConstraint": { # Constraints applied to pods. # The default constraint on the maximum number of pods that can be run
- # simultaneously on a node in the node pool of this cluster. Only honored
- # if cluster created with IP Alias support.
- "maxPodsPerNode": "A String", # Constraint enforced on the max num of pods per node.
- },
- "network": "A String", # The name of the Google Compute Engine
- # [network](https://cloud.google.com/compute/docs/networks-and-firewalls#networks)
- # to which the cluster is connected. If left unspecified, the `default`
- # network will be used. On output this shows the network ID instead of the
- # name.
- "labelFingerprint": "A String", # The fingerprint of the set of labels for this cluster.
- "nodeIpv4CidrSize": 42, # [Output only] The size of the address space on each node for hosting
- # containers. This is provisioned from within the `container_ipv4_cidr`
- # range. This field will only be set when cluster is in route-based network
- # mode.
- "masterAuthorizedNetworksConfig": { # Configuration options for the master authorized networks feature. Enabled # The configuration options for master authorized networks feature.
- # master authorized networks will disallow all external traffic to access
- # Kubernetes master through HTTPS except traffic from the given CIDR blocks,
- # Google Compute Engine Public IPs and Google Prod IPs.
- "enabled": True or False, # Whether or not master authorized networks is enabled.
- "cidrBlocks": [ # cidr_blocks define up to 10 external networks that could access
- # Kubernetes master through HTTPS.
- { # CidrBlock contains an optional name and one CIDR block.
- "cidrBlock": "A String", # cidr_block must be specified in CIDR notation.
- "displayName": "A String", # display_name is an optional field for users to identify CIDR blocks.
- },
- ],
- },
- "statusMessage": "A String", # [Output only] Additional information about the current status of this
- # cluster, if available.
- "masterAuth": { # The authentication information for accessing the master endpoint. # The authentication information for accessing the master endpoint.
- # If unspecified, the defaults are used:
- # For clusters before v1.12, if master_auth is unspecified, `username` will
- # be set to "admin", a random password will be generated, and a client
- # certificate will be issued.
- # Authentication can be done using HTTP basic auth or using client
- # certificates.
- "password": "A String", # The password to use for HTTP basic authentication to the master endpoint.
- # Because the master endpoint is open to the Internet, you should create a
- # strong password. If a password is provided for cluster creation, username
- # must be non-empty.
- "clientCertificateConfig": { # Configuration for client certificates on the cluster. # Configuration for client certificate authentication on the cluster. For
- # clusters before v1.12, if no configuration is specified, a client
- # certificate is issued.
- "issueClientCertificate": True or False, # Issue a client certificate.
- },
- "clientKey": "A String", # [Output only] Base64-encoded private key used by clients to authenticate
- # to the cluster endpoint.
- "clusterCaCertificate": "A String",
- "clientCertificate": "A String", # [Output only] Base64-encoded public certificate used by clients to
- # authenticate to the cluster endpoint.
- "username": "A String", # The username to use for HTTP basic authentication to the master endpoint.
- # For clusters v1.6.0 and later, basic authentication can be disabled by
- # leaving username unspecified (or setting it to the empty string).
- },
- "authenticatorGroupsConfig": { # Configuration for returning group information from authenticators. # Configuration controlling RBAC group membership information.
- "securityGroup": "A String", # The name of the security group-of-groups to be used. Only relevant
- # if enabled = true.
- "enabled": True or False, # Whether this cluster should return group membership lookups
- # during authentication using a group of security groups.
- },
- "masterIpv4CidrBlock": "A String", # The IP prefix in CIDR notation to use for the hosted master network.
- # This prefix will be used for assigning private IP addresses to the
- # master or set of masters, as well as the ILB VIP.
- # This field is deprecated, use
- # private_cluster_config.master_ipv4_cidr_block instead.
- "clusterTelemetry": { # Telemetry integration for the cluster. # Telemetry integration for the cluster.
- "type": "A String", # Type of the integration.
- },
- "currentMasterVersion": "A String", # [Output only] The current software version of the master endpoint.
- "podSecurityPolicyConfig": { # Configuration for the PodSecurityPolicy feature. # Configuration for the PodSecurityPolicy feature.
- "enabled": True or False, # Enable the PodSecurityPolicy controller for this cluster. If enabled, pods
- # must be valid under a PodSecurityPolicy to be created.
- },
"addonsConfig": { # Configuration for the addons that can be automatically spun up in the # Configurations for the various addons available to run in the cluster.
# cluster, enabling additional functionality.
- "httpLoadBalancing": { # Configuration options for the HTTP (L7) load balancing controller addon, # Configuration for the HTTP (L7) load balancing controller addon, which
- # makes it easy to set up HTTP load balancers for services in a cluster.
- # which makes it easy to set up HTTP load balancers for services in a cluster.
- "disabled": True or False, # Whether the HTTP Load Balancing controller is enabled in the cluster.
- # When enabled, it runs a small pod in the cluster that manages the load
- # balancers.
- },
- "kubernetesDashboard": { # Configuration for the Kubernetes Dashboard. # Configuration for the Kubernetes Dashboard.
- # This addon is deprecated, and will be disabled in 1.15. It is recommended
- # to use the Cloud Console to manage and monitor your Kubernetes clusters,
- # workloads and applications. For more information, see:
- # https://cloud.google.com/kubernetes-engine/docs/concepts/dashboards
- "disabled": True or False, # Whether the Kubernetes Dashboard is enabled for this cluster.
- },
- "dnsCacheConfig": { # Configuration for NodeLocal DNSCache # Configuration for NodeLocalDNS, a dns cache running on cluster nodes
- "enabled": True or False, # Whether NodeLocal DNSCache is enabled for this cluster.
- },
- "kalmConfig": { # Configuration options for the KALM addon. # Configuration for the KALM addon, which manages the lifecycle of k8s
- # applications.
- "enabled": True or False, # Whether KALM is enabled for this cluster.
+ "configConnectorConfig": { # Configuration options for the Config Connector add-on. # Configuration for the ConfigConnector add-on, a Kubernetes
+ # extension to manage hosted GCP services through the Kubernetes API
+ "enabled": True or False, # Whether Cloud Connector is enabled for this cluster.
},
"gcePersistentDiskCsiDriverConfig": { # Configuration for the Compute Engine PD CSI driver. This option can only be # Configuration for the Compute Engine Persistent Disk CSI driver.
# enabled at cluster creation time.
"enabled": True or False, # Whether the Compute Engine PD CSI driver is enabled for this cluster.
},
- "istioConfig": { # Configuration options for Istio addon. # Configuration for Istio, an open platform to connect, manage, and secure
- # microservices.
- "auth": "A String", # The specified Istio auth mode, either none, or mutual TLS.
- "disabled": True or False, # Whether Istio is enabled for this cluster.
+ "dnsCacheConfig": { # Configuration for NodeLocal DNSCache # Configuration for NodeLocalDNS, a dns cache running on cluster nodes
+ "enabled": True or False, # Whether NodeLocal DNSCache is enabled for this cluster.
},
"networkPolicyConfig": { # Configuration for NetworkPolicy. This only tracks whether the addon # Configuration for NetworkPolicy. This only tracks whether the addon
# is enabled or not on the Master, it does not track whether network policy
@@ -1803,14 +1800,24 @@
# is enabled for the nodes.
"disabled": True or False, # Whether NetworkPolicy is enabled for this cluster.
},
- "cloudRunConfig": { # Configuration options for the Cloud Run feature. # Configuration for the Cloud Run addon. The `IstioConfig` addon must be
- # enabled in order to enable Cloud Run addon. This option can only be enabled
- # at cluster creation time.
- "disabled": True or False, # Whether Cloud Run addon is enabled for this cluster.
+ "kubernetesDashboard": { # Configuration for the Kubernetes Dashboard. # Configuration for the Kubernetes Dashboard.
+ # This addon is deprecated, and will be disabled in 1.15. It is recommended
+ # to use the Cloud Console to manage and monitor your Kubernetes clusters,
+ # workloads and applications. For more information, see:
+ # https://cloud.google.com/kubernetes-engine/docs/concepts/dashboards
+ "disabled": True or False, # Whether the Kubernetes Dashboard is enabled for this cluster.
},
- "configConnectorConfig": { # Configuration options for the Config Connector add-on. # Configuration for the ConfigConnector add-on, a Kubernetes
- # extension to manage hosted GCP services through the Kubernetes API
- "enabled": True or False, # Whether Cloud Connector is enabled for this cluster.
+ "httpLoadBalancing": { # Configuration options for the HTTP (L7) load balancing controller addon, # Configuration for the HTTP (L7) load balancing controller addon, which
+ # makes it easy to set up HTTP load balancers for services in a cluster.
+ # which makes it easy to set up HTTP load balancers for services in a cluster.
+ "disabled": True or False, # Whether the HTTP Load Balancing controller is enabled in the cluster.
+ # When enabled, it runs a small pod in the cluster that manages the load
+ # balancers.
+ },
+ "istioConfig": { # Configuration options for Istio addon. # Configuration for Istio, an open platform to connect, manage, and secure
+ # microservices.
+ "disabled": True or False, # Whether Istio is enabled for this cluster.
+ "auth": "A String", # The specified Istio auth mode, either none, or mutual TLS.
},
"horizontalPodAutoscaling": { # Configuration options for the horizontal pod autoscaling feature, which # Configuration for the horizontal pod autoscaling feature, which
# increases or decreases the number of replica pods a replication controller
@@ -1821,97 +1828,41 @@
# When enabled, it ensures that metrics are collected into Stackdriver
# Monitoring.
},
+ "cloudRunConfig": { # Configuration options for the Cloud Run feature. # Configuration for the Cloud Run addon. The `IstioConfig` addon must be
+ # enabled in order to enable Cloud Run addon. This option can only be enabled
+ # at cluster creation time.
+ "disabled": True or False, # Whether Cloud Run addon is enabled for this cluster.
+ },
+ "kalmConfig": { # Configuration options for the KALM addon. # Configuration for the KALM addon, which manages the lifecycle of k8s
+ # applications.
+ "enabled": True or False, # Whether KALM is enabled for this cluster.
+ },
},
- "subnetwork": "A String", # The name of the Google Compute Engine
- # [subnetwork](https://cloud.google.com/compute/docs/subnetworks) to which
- # the cluster is connected. On output this shows the subnetwork ID instead of
- # the name.
+ "createTime": "A String", # [Output only] The time the cluster was created, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "clusterIpv4Cidr": "A String", # The IP address range of the container pods in this cluster, in
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `10.96.0.0/14`). Leave blank to have
+ # one automatically chosen or specify a `/14` block in `10.0.0.0/8`.
+ "legacyAbac": { # Configuration for the legacy Attribute Based Access Control authorization # Configuration for the legacy ABAC authorization mode.
+ # mode.
+ "enabled": True or False, # Whether the ABAC authorizer is enabled for this cluster. When enabled,
+ # identities in the system, including service accounts, nodes, and
+ # controllers, will have statically granted permissions beyond those
+ # provided by the RBAC configuration or IAM.
+ },
+ "binaryAuthorization": { # Configuration for Binary Authorization. # Configuration for Binary Authorization.
+ "enabled": True or False, # Enable Binary Authorization for this cluster. If enabled, all container
+ # images will be validated by Google Binauthz.
+ },
"currentNodeVersion": "A String", # [Output only] Deprecated, use
# [NodePool.version](https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1beta1/projects.locations.clusters.nodePools)
# instead. The current version of the node software components.
# If they are currently at multiple versions because they're in the process
# of being upgraded, this reflects the minimum version of all nodes.
- "maintenancePolicy": { # MaintenancePolicy defines the maintenance policy to be used for the cluster. # Configure the maintenance policy for this cluster.
- "window": { # MaintenanceWindow defines the maintenance window to be used for the cluster. # Specifies the maintenance window in which maintenance may be performed.
- "maintenanceExclusions": { # Exceptions to maintenance window. Non-emergency maintenance should not
- # occur in these windows.
- "a_key": { # Represents an arbitrary window of time.
- "startTime": "A String", # The time that the window first starts.
- "endTime": "A String", # The time that the window ends. The end time should take place after the
- # start time.
- },
- },
- "recurringWindow": { # Represents an arbitrary window of time that recurs. # RecurringWindow specifies some number of recurring time periods for
- # maintenance to occur. The time windows may be overlapping. If no
- # maintenance windows are set, maintenance can occur at any time.
- "recurrence": "A String", # An RRULE (https://tools.ietf.org/html/rfc5545#section-3.8.5.3) for how
- # this window reccurs. They go on for the span of time between the start and
- # end time.
- #
- # For example, to have something repeat every weekday, you'd use:
- # <code>FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR</code>
- # To repeat some window daily (equivalent to the DailyMaintenanceWindow):
- # <code>FREQ=DAILY</code>
- # For the first weekend of every month:
- # <code>FREQ=MONTHLY;BYSETPOS=1;BYDAY=SA,SU</code>
- # This specifies how frequently the window starts. Eg, if you wanted to have
- # a 9-5 UTC-4 window every weekday, you'd use something like:
- # <code>
- # start time = 2019-01-01T09:00:00-0400
- # end time = 2019-01-01T17:00:00-0400
- # recurrence = FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR
- # </code>
- # Windows can span multiple days. Eg, to make the window encompass every
- # weekend from midnight Saturday till the last minute of Sunday UTC:
- # <code>
- # start time = 2019-01-05T00:00:00Z
- # end time = 2019-01-07T23:59:00Z
- # recurrence = FREQ=WEEKLY;BYDAY=SA
- # </code>
- # Note the start and end time's specific dates are largely arbitrary except
- # to specify duration of the window and when it first starts.
- # The FREQ values of HOURLY, MINUTELY, and SECONDLY are not supported.
- "window": { # Represents an arbitrary window of time. # The window of the first recurrence.
- "startTime": "A String", # The time that the window first starts.
- "endTime": "A String", # The time that the window ends. The end time should take place after the
- # start time.
- },
- },
- "dailyMaintenanceWindow": { # Time window specified for daily maintenance operations. # DailyMaintenanceWindow specifies a daily maintenance operation window.
- "duration": "A String", # [Output only] Duration of the time window, automatically chosen to be
- # smallest possible in the given scenario.
- "startTime": "A String", # Time within the maintenance window to start the maintenance operations.
- # It must be in format "HH:MM", where HH : [00-23] and MM : [00-59] GMT.
- },
- },
- "resourceVersion": "A String", # A hash identifying the version of this policy, so that updates to fields of
- # the policy won't accidentally undo intermediate changes (and so that users
- # of the API unaware of some fields won't accidentally remove other fields).
- # Make a <code>get()</code> request to the cluster to get the current
- # resource version and include it with requests to set the policy.
- },
- "resourceLabels": { # The resource labels for the cluster to use to annotate any related
- # Google Compute Engine resources.
- "a_key": "A String",
- },
- "initialClusterVersion": "A String", # The initial Kubernetes version for this cluster. Valid versions are those
- # found in validMasterVersions returned by getServerConfig. The version can
- # be upgraded over time; such upgrades are reflected in
- # currentMasterVersion and currentNodeVersion.
- #
- # Users may specify either explicit versions offered by
- # Kubernetes Engine or version aliases, which have the following behavior:
- #
- # - "latest": picks the highest valid Kubernetes version
- # - "1.X": picks the highest valid patch+gke.N patch in the 1.X version
- # - "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
- # - "1.X.Y-gke.N": picks an explicit Kubernetes version
- # - "","-": picks the default Kubernetes version
+ "currentNodeCount": 42, # [Output only] The number of nodes currently in the cluster. Deprecated.
+ # Call Kubernetes API directly to retrieve node information.
"ipAllocationPolicy": { # Configuration for controlling how IPs are allocated in the cluster. # Configuration for cluster IP allocation.
- "useRoutes": True or False, # Whether routes will be used for pod IPs in the cluster.
- # This is used in conjunction with use_ip_aliases. It cannot be true if
- # use_ip_aliases is true. If both use_ip_aliases and use_routes are false,
- # then the server picks the default IP allocation mode
"servicesIpv4CidrBlock": "A String", # The IP address range of the services IPs in this cluster. If blank, a range
# will be automatically chosen with the default size.
#
@@ -1927,55 +1878,7 @@
# notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
# `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
# to use.
- "allowRouteOverlap": True or False, # If true, allow allocation of cluster CIDR ranges that overlap with certain
- # kinds of network routes. By default we do not allow cluster CIDR ranges to
- # intersect with any user declared routes. With allow_route_overlap == true,
- # we allow overlapping with CIDR ranges that are larger than the cluster CIDR
- # range.
- #
- # If this field is set to true, then cluster and services CIDRs must be
- # fully-specified (e.g. `10.96.0.0/14`, but not `/14`), which means:
- # 1) When `use_ip_aliases` is true, `cluster_ipv4_cidr_block` and
- # `services_ipv4_cidr_block` must be fully-specified.
- # 2) When `use_ip_aliases` is false, `cluster.cluster_ipv4_cidr` muse be
- # fully-specified.
- "nodeIpv4Cidr": "A String", # This field is deprecated, use node_ipv4_cidr_block.
- "clusterIpv4CidrBlock": "A String", # The IP address range for the cluster pod IPs. If this field is set, then
- # `cluster.cluster_ipv4_cidr` must be left blank.
- #
- # This field is only applicable when `use_ip_aliases` is true.
- #
- # Set to blank to have a range chosen with the default size.
- #
- # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
- # netmask.
- #
- # Set to a
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
- # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
- # to use.
- "clusterSecondaryRangeName": "A String", # The name of the secondary range to be used for the cluster CIDR
- # block. The secondary range will be used for pod IP
- # addresses. This must be an existing secondary range associated
- # with the cluster subnetwork.
- #
- # This field is only applicable with use_ip_aliases and
- # create_subnetwork is false.
- "nodeIpv4CidrBlock": "A String", # The IP address range of the instance IPs in this cluster.
- #
- # This is applicable only if `create_subnetwork` is true.
- #
- # Set to blank to have a range chosen with the default size.
- #
- # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
- # netmask.
- #
- # Set to a
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
- # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
- # to use.
+ "servicesIpv4Cidr": "A String", # This field is deprecated, use services_ipv4_cidr_block.
"tpuIpv4CidrBlock": "A String", # The IP address range of the Cloud TPUs in this cluster. If unspecified, a
# range will be automatically chosen with the default size.
#
@@ -1992,6 +1895,21 @@
# `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
# to use.
# This field is deprecated, use cluster.tpu_config.ipv4_cidr_block instead.
+ "useIpAliases": True or False, # Whether alias IPs will be used for pod IPs in the cluster.
+ # This is used in conjunction with use_routes. It cannot
+ # be true if use_routes is true. If both use_ip_aliases and use_routes are
+ # false, then the server picks the default IP allocation mode
+ "nodeIpv4Cidr": "A String", # This field is deprecated, use node_ipv4_cidr_block.
+ "createSubnetwork": True or False, # Whether a new subnetwork will be created automatically for the cluster.
+ #
+ # This field is only applicable when `use_ip_aliases` is true.
+ "clusterSecondaryRangeName": "A String", # The name of the secondary range to be used for the cluster CIDR
+ # block. The secondary range will be used for pod IP
+ # addresses. This must be an existing secondary range associated
+ # with the cluster subnetwork.
+ #
+ # This field is only applicable with use_ip_aliases and
+ # create_subnetwork is false.
"servicesSecondaryRangeName": "A String", # The name of the secondary range to be used as for the services
# CIDR block. The secondary range will be used for service
# ClusterIPs. This must be an existing secondary range associated
@@ -1999,354 +1917,86 @@
#
# This field is only applicable with use_ip_aliases and
# create_subnetwork is false.
- "createSubnetwork": True or False, # Whether a new subnetwork will be created automatically for the cluster.
- #
- # This field is only applicable when `use_ip_aliases` is true.
- "useIpAliases": True or False, # Whether alias IPs will be used for pod IPs in the cluster.
- # This is used in conjunction with use_routes. It cannot
- # be true if use_routes is true. If both use_ip_aliases and use_routes are
- # false, then the server picks the default IP allocation mode
+ "useRoutes": True or False, # Whether routes will be used for pod IPs in the cluster.
+ # This is used in conjunction with use_ip_aliases. It cannot be true if
+ # use_ip_aliases is true. If both use_ip_aliases and use_routes are false,
+ # then the server picks the default IP allocation mode
"subnetworkName": "A String", # A custom subnetwork name to be used if `create_subnetwork` is true. If
# this field is empty, then an automatic name will be chosen for the new
# subnetwork.
+ "allowRouteOverlap": True or False, # If true, allow allocation of cluster CIDR ranges that overlap with certain
+ # kinds of network routes. By default we do not allow cluster CIDR ranges to
+ # intersect with any user declared routes. With allow_route_overlap == true,
+ # we allow overlapping with CIDR ranges that are larger than the cluster CIDR
+ # range.
+ #
+ # If this field is set to true, then cluster and services CIDRs must be
+ # fully-specified (e.g. `10.96.0.0/14`, but not `/14`), which means:
+ # 1) When `use_ip_aliases` is true, `cluster_ipv4_cidr_block` and
+ # `services_ipv4_cidr_block` must be fully-specified.
+ # 2) When `use_ip_aliases` is false, `cluster.cluster_ipv4_cidr` muse be
+ # fully-specified.
"clusterIpv4Cidr": "A String", # This field is deprecated, use cluster_ipv4_cidr_block.
- "servicesIpv4Cidr": "A String", # This field is deprecated, use services_ipv4_cidr_block.
- },
- "legacyAbac": { # Configuration for the legacy Attribute Based Access Control authorization # Configuration for the legacy ABAC authorization mode.
- # mode.
- "enabled": True or False, # Whether the ABAC authorizer is enabled for this cluster. When enabled,
- # identities in the system, including service accounts, nodes, and
- # controllers, will have statically granted permissions beyond those
- # provided by the RBAC configuration or IAM.
- },
- "resourceUsageExportConfig": { # Configuration for exporting cluster resource usages. # Configuration for exporting resource usages. Resource usage export is
- # disabled when this config unspecified.
- "enableNetworkEgressMetering": True or False, # Whether to enable network egress metering for this cluster. If enabled, a
- # daemonset will be created in the cluster to meter network egress traffic.
- "consumptionMeteringConfig": { # Parameters for controlling consumption metering. # Configuration to enable resource consumption metering.
- "enabled": True or False, # Whether to enable consumption metering for this cluster. If enabled, a
- # second BigQuery table will be created to hold resource consumption
- # records.
- },
- "bigqueryDestination": { # Parameters for using BigQuery as the destination of resource usage export. # Configuration to use BigQuery as usage export destination.
- "datasetId": "A String", # The ID of a BigQuery Dataset.
- },
- },
- "enableTpu": True or False, # Enable the ability to use Cloud TPUs in this cluster.
- # This field is deprecated, use tpu_config.enabled instead.
- "nodePools": [ # The node pools associated with this cluster.
- # This field should not be set if "node_config" or "initial_node_count" are
- # specified.
- { # NodePool contains the name and configuration for a cluster's node pool.
- # Node pools are a set of nodes (i.e. VM's), with a common configuration and
- # specification, under the control of the cluster master. They may have a set
- # of Kubernetes labels applied to them, which may be used to reference them
- # during pod scheduling. They may also be resized up or down, to accommodate
- # the workload.
- "status": "A String", # [Output only] The status of the nodes in this pool instance.
- "config": { # Parameters that describe the nodes in a cluster. # The node configuration of the pool.
- "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
- # scheduled on the specified or newer CPU platform. Applicable values are the
- # friendly names of CPU platforms, such as
- # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
- # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
- # information, read [how to specify min CPU
- # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
- "shieldedInstanceConfig": { # A set of Shielded Instance options. # Shielded Instance options.
- "enableIntegrityMonitoring": True or False, # Defines whether the instance has integrity monitoring enabled.
- #
- # Enables monitoring and attestation of the boot integrity of the instance.
- # The attestation is performed against the integrity policy baseline. This
- # baseline is initially derived from the implicitly trusted boot image when
- # the instance is created.
- "enableSecureBoot": True or False, # Defines whether the instance has Secure Boot enabled.
- #
- # Secure Boot helps ensure that the system only runs authentic software by
- # verifying the digital signature of all boot components, and halting the
- # boot process if signature verification fails.
- },
- "preemptible": True or False, # Whether the nodes are created as preemptible VM instances. See:
- # https://cloud.google.com/compute/docs/instances/preemptible for more
- # inforamtion about preemptible VM instances.
- "localSsdCount": 42, # The number of local SSD disks to be attached to the node.
- #
- # The limit for this value is dependent upon the maximum number of
- # disks available on a machine per zone. See:
- # https://cloud.google.com/compute/docs/disks/local-ssd
- # for more information.
- "sandboxConfig": { # SandboxConfig contains configurations of the sandbox to use for the node. # Sandbox configuration for this node.
- "type": "A String", # Type of the sandbox to use for the node.
- "sandboxType": "A String", # Type of the sandbox to use for the node (e.g. 'gvisor')
- },
- "metadata": { # The metadata key/value pairs assigned to instances in the cluster.
- #
- # Keys must conform to the regexp [a-zA-Z0-9-_]+ and be less than 128 bytes
- # in length. These are reflected as part of a URL in the metadata server.
- # Additionally, to avoid ambiguity, keys must not conflict with any other
- # metadata keys for the project or be one of the reserved keys:
- # "cluster-location"
- # "cluster-name"
- # "cluster-uid"
- # "configure-sh"
- # "containerd-configure-sh"
- # "enable-oslogin"
- # "gci-ensure-gke-docker"
- # "gci-metrics-enabled"
- # "gci-update-strategy"
- # "instance-template"
- # "kube-env"
- # "startup-script"
- # "user-data"
- # "disable-address-manager"
- # "windows-startup-script-ps1"
- # "common-psm1"
- # "k8s-node-setup-psm1"
- # "install-ssh-psm1"
- # "user-profile-psm1"
- # "serial-port-logging-enable"
- # Values are free-form strings, and only have meaning as interpreted by
- # the image running in the instance. The only restriction placed on them is
- # that each value's size must be less than or equal to 32 KB.
- #
- # The total size of all keys and values must be less than 512 KB.
- "a_key": "A String",
- },
- "reservationAffinity": { # [ReservationAffinity](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources) # The optional reservation affinity. Setting this field will apply
- # the specified [Zonal Compute
- # Reservation](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources)
- # to this node pool.
- # is the configuration of desired reservation which instances could take
- # capacity from.
- "key": "A String", # Corresponds to the label key of a reservation resource. To target a
- # SPECIFIC_RESERVATION by name, specify "googleapis.com/reservation-name" as
- # the key and specify the name of your reservation as its value.
- "values": [ # Corresponds to the label value(s) of reservation resource(s).
- "A String",
- ],
- "consumeReservationType": "A String", # Corresponds to the type of reservation consumption.
- },
- "tags": [ # The list of instance tags applied to all nodes. Tags are used to identify
- # valid sources or targets for network firewalls and are specified by
- # the client during cluster or node pool creation. Each tag within the list
- # must comply with RFC1035.
- "A String",
- ],
- "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
- # Specify the email address of the Service Account; otherwise, if no Service
- # Account is specified, the "default" service account is used.
- "imageType": "A String", # The image type to use for this node. Note that for a given image type,
- # the latest version of it will be used.
- "oauthScopes": [ # The set of Google API scopes to be made available on all of the
- # node VMs under the "default" service account.
- #
- # The following scopes are recommended, but not required, and by default are
- # not included:
- #
- # * `https://www.googleapis.com/auth/compute` is required for mounting
- # persistent storage on your nodes.
- # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
- # communicating with **gcr.io**
- # (the [Google Container
- # Registry](https://cloud.google.com/container-registry/)).
- #
- # If unspecified, no scopes are added, unless Cloud Logging or Cloud
- # Monitoring are enabled, in which case their required scopes will be added.
- "A String",
- ],
- "taints": [ # List of kubernetes taints to be applied to each node.
- #
- # For more information, including usage and the valid values, see:
- # https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
- { # Kubernetes taint is comprised of three fields: key, value, and effect. Effect
- # can only be one of three types: NoSchedule, PreferNoSchedule or NoExecute.
- #
- # See
- # [here](https://kubernetes.io/docs/concepts/configuration/taint-and-toleration)
- # for more information, including usage and the valid values.
- "effect": "A String", # Effect for taint.
- "value": "A String", # Value for taint.
- "key": "A String", # Key for taint.
- },
- ],
- "labels": { # The map of Kubernetes labels (key/value pairs) to be applied to each node.
- # These will added in addition to any default label(s) that
- # Kubernetes may apply to the node.
- # In case of conflict in label keys, the applied set may differ depending on
- # the Kubernetes version -- it's best to assume the behavior is undefined
- # and conflicts should be avoided.
- # For more information, including usage and the valid values, see:
- # https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
- "a_key": "A String",
- },
- "diskSizeGb": 42, # Size of the disk attached to each node, specified in GB.
- # The smallest allowed disk size is 10GB.
- #
- # If unspecified, the default disk size is 100GB.
- "workloadMetadataConfig": { # WorkloadMetadataConfig defines the metadata configuration to expose to # The workload metadata configuration for this node.
- # workloads on the node pool.
- "nodeMetadata": "A String", # NodeMetadata is the configuration for how to expose metadata to the
- # workloads running on the node.
- "mode": "A String", # Mode is the configuration for how to expose metadata to workloads running
- # on the node pool.
- },
- "accelerators": [ # A list of hardware accelerators to be attached to each node.
- # See https://cloud.google.com/compute/docs/gpus for more information about
- # support for GPUs.
- { # AcceleratorConfig represents a Hardware Accelerator request.
- "acceleratorType": "A String", # The accelerator type resource name. List of supported accelerators
- # [here](https://cloud.google.com/compute/docs/gpus)
- "acceleratorCount": "A String", # The number of the accelerator cards exposed to an instance.
- },
- ],
- "machineType": "A String", # The name of a Google Compute Engine [machine
- # type](https://cloud.google.com/compute/docs/machine-types) (e.g.
- # `n1-standard-1`).
- #
- # If unspecified, the default machine type is
- # `n1-standard-1`.
- "diskType": "A String", # Type of the disk attached to each node (e.g. 'pd-standard' or 'pd-ssd')
- #
- # If unspecified, the default disk type is 'pd-standard'
- "bootDiskKmsKey": "A String", #
- # The Customer Managed Encryption Key used to encrypt the boot disk attached
- # to each node in the node pool. This should be of the form
- # projects/[KEY_PROJECT_ID]/locations/[LOCATION]/keyRings/[RING_NAME]/cryptoKeys/[KEY_NAME].
- # For more information about protecting resources with Cloud KMS Keys please
- # see:
- # https://cloud.google.com/compute/docs/disks/customer-managed-encryption
- },
- "maxPodsConstraint": { # Constraints applied to pods. # The constraint on the maximum number of pods that can be run
- # simultaneously on a node in the node pool.
- "maxPodsPerNode": "A String", # Constraint enforced on the max num of pods per node.
- },
- "name": "A String", # The name of the node pool.
- "management": { # NodeManagement defines the set of node management services turned on for the # NodeManagement configuration for this NodePool.
- # node pool.
- "autoRepair": True or False, # Whether the nodes will be automatically repaired.
- "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
- "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
- # the Auto Upgrades will proceed.
- "description": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the description of the upgrade.
- "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the approximate start time for the upgrades, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- },
- },
- "statusMessage": "A String", # [Output only] Additional information about the current status of this
- # node pool instance, if available.
- "autoscaling": { # NodePoolAutoscaling contains information required by cluster autoscaler to # Autoscaler configuration for this NodePool. Autoscaler is enabled
- # only if a valid configuration is present.
- # adjust the size of the node pool to the current cluster usage.
- "maxNodeCount": 42, # Maximum number of nodes in the NodePool. Must be >= min_node_count. There
- # has to enough quota to scale up the cluster.
- "autoprovisioned": True or False, # Can this node pool be deleted automatically.
- "minNodeCount": 42, # Minimum number of nodes in the NodePool. Must be >= 1 and <=
- # max_node_count.
- "enabled": True or False, # Is autoscaling enabled for this node pool.
- },
- "initialNodeCount": 42, # The initial node count for the pool. You must ensure that your
- # Compute Engine <a href="/compute/docs/resource-quotas">resource quota</a>
- # is sufficient for this number of instances. You must also have available
- # firewall and routes quota.
- "locations": [ # The list of Google Compute Engine
- # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
- # NodePool's nodes should be located.
- "A String",
- ],
- "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Upgrade settings control disruption and speed of the upgrade.
- # disruption caused by an upgrade.
- #
- # maxUnavailable controls the number of nodes that can be simultaneously
- # unavailable.
- #
- # maxSurge controls the number of additional nodes that can be added to the
- # node pool temporarily for the time of the upgrade to increase the number of
- # available nodes.
- #
- # (maxUnavailable + maxSurge) determines the level of parallelism (how many
- # nodes are being upgraded at the same time).
- #
- # Note: upgrades inevitably introduce some disruption since workloads need to
- # be moved from old nodes to new, upgraded ones. Even if maxUnavailable=0,
- # this holds true. (Disruption stays within the limits of
- # PodDisruptionBudget, if it is configured.)
- #
- # Consider a hypothetical node pool with 5 nodes having maxSurge=2,
- # maxUnavailable=1. This means the upgrade process upgrades 3 nodes
- # simultaneously. It creates 2 additional (upgraded) nodes, then it brings
- # down 3 old (not yet upgraded) nodes at the same time. This ensures that
- # there are always at least 4 nodes available.
- "maxUnavailable": 42, # The maximum number of nodes that can be simultaneously unavailable during
- # the upgrade process. A node is considered available if its status is
- # Ready.
- "maxSurge": 42, # The maximum number of nodes that can be created beyond the current size
- # of the node pool during the upgrade process.
- },
- "selfLink": "A String", # [Output only] Server-defined URL for the resource.
- "version": "A String", # The version of the Kubernetes of this node.
- "instanceGroupUrls": [ # [Output only] The resource URLs of the [managed instance
- # groups](https://cloud.google.com/compute/docs/instance-groups/creating-groups-of-managed-instances)
- # associated with this node pool.
- "A String",
- ],
- "podIpv4CidrSize": 42, # [Output only] The pod CIDR block size per node in this node pool.
- "conditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- },
- ],
- "locations": [ # The list of Google Compute Engine
- # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster's nodes should be located.
- "A String",
- ],
- "selfLink": "A String", # [Output only] Server-defined URL for the resource.
- "releaseChannel": { # ReleaseChannel indicates which release channel a cluster is # Release channel configuration.
- # subscribed to. Release channels are arranged in order of risk and
- # frequency of updates.
- #
- # When a cluster is subscribed to a release channel, Google maintains
- # both the master version and the node version. Node auto-upgrade
- # defaults to true and cannot be disabled. Updates to version related
- # fields (e.g. current_master_version) return an error.
- "channel": "A String", # channel specifies which release channel the cluster is subscribed to.
+ "nodeIpv4CidrBlock": "A String", # The IP address range of the instance IPs in this cluster.
+ #
+ # This is applicable only if `create_subnetwork` is true.
+ #
+ # Set to blank to have a range chosen with the default size.
+ #
+ # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
+ # netmask.
+ #
+ # Set to a
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
+ # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
+ # to use.
+ "clusterIpv4CidrBlock": "A String", # The IP address range for the cluster pod IPs. If this field is set, then
+ # `cluster.cluster_ipv4_cidr` must be left blank.
+ #
+ # This field is only applicable when `use_ip_aliases` is true.
+ #
+ # Set to blank to have a range chosen with the default size.
+ #
+ # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
+ # netmask.
+ #
+ # Set to a
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
+ # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
+ # to use.
},
"networkPolicy": { # Configuration options for the NetworkPolicy feature. # Configuration options for the NetworkPolicy feature.
# https://kubernetes.io/docs/concepts/services-networking/networkpolicies/
"provider": "A String", # The selected network policy provider.
"enabled": True or False, # Whether network policy is enabled on the cluster.
},
- "servicesIpv4Cidr": "A String", # [Output only] The IP address range of the Kubernetes services in
- # this cluster, in
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `1.2.3.4/29`). Service addresses are
- # typically put in the last `/16` from the container CIDR.
- "enableKubernetesAlpha": True or False, # Kubernetes alpha features are enabled on this cluster. This includes alpha
- # API groups (e.g. v1beta1) and features that may not be production ready in
- # the kubernetes version of the master and nodes.
- # The cluster has no SLA for uptime and master/node upgrades are disabled.
- # Alpha enabled clusters are automatically deleted thirty days after
- # creation.
- "description": "A String", # An optional description of this cluster.
- "conditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
+ "privateClusterConfig": { # Configuration options for private clusters. # Configuration for private cluster.
+ "enablePrivateNodes": True or False, # Whether nodes have internal IP addresses only. If enabled, all nodes are
+ # given only RFC 1918 private addresses and communicate with the master via
+ # private networking.
+ "masterIpv4CidrBlock": "A String", # The IP range in CIDR notation to use for the hosted master network. This
+ # range will be used for assigning internal IP addresses to the master or
+ # set of masters, as well as the ILB VIP. This range must not overlap with
+ # any other ranges in use within the cluster's network.
+ "peeringName": "A String", # Output only. The peering name in the customer VPC used by this cluster.
+ "publicEndpoint": "A String", # Output only. The external IP address of this cluster's master endpoint.
+ "enablePrivateEndpoint": True or False, # Whether the master's internal IP address is used as the cluster endpoint.
+ "masterGlobalAccessConfig": { # Configuration for controlling master global access settings. # Controls master global access settings.
+ "enabled": True or False, # Whenever master is accessible globally or not.
},
- ],
- "privateCluster": True or False, # If this is a private cluster setup. Private clusters are clusters that, by
- # default have no external IP addresses on the nodes and where nodes and the
- # master communicate over private IP addresses.
- # This field is deprecated, use private_cluster_config.enable_private_nodes
- # instead.
- "currentNodeCount": 42, # [Output only] The number of nodes currently in the cluster. Deprecated.
- # Call Kubernetes API directly to retrieve node information.
+ "privateEndpoint": "A String", # Output only. The internal IP address of this cluster's master endpoint.
+ },
+ "enableTpu": True or False, # Enable the ability to use Cloud TPUs in this cluster.
+ # This field is deprecated, use tpu_config.enabled instead.
+ "workloadIdentityConfig": { # Configuration for the use of Kubernetes Service Accounts in GCP IAM # Configuration for the use of Kubernetes Service Accounts in GCP IAM
+ # policies.
+ # policies.
+ "identityNamespace": "A String", # IAM Identity Namespace to attach all Kubernetes Service Accounts to.
+ "identityProvider": "A String", # identity provider is the third party identity provider.
+ "workloadPool": "A String", # The workload pool to attach all Kubernetes service accounts to.
+ },
"monitoringService": "A String", # The monitoring service the cluster should use to write metrics.
# Currently available options:
#
@@ -2358,40 +2008,71 @@
#
# If left as an empty string,`monitoring.googleapis.com/kubernetes` will be
# used for GKE 1.14+ or `monitoring.googleapis.com` for earlier versions.
- "databaseEncryption": { # Configuration of etcd encryption. # Configuration of etcd encryption.
- "state": "A String", # Denotes the state of etcd encryption.
- "keyName": "A String", # Name of CloudKMS key to use for the encryption of secrets in etcd.
- # Ex. projects/my-project/locations/global/keyRings/my-ring/cryptoKeys/my-key
+ "networkConfig": { # NetworkConfig reports the relative names of network & subnetwork. # Configuration for cluster networking.
+ "defaultSnatStatus": { # DefaultSnatStatus contains the desired state of whether default sNAT should # Whether the cluster disables default in-node sNAT rules. In-node sNAT rules
+ # will be disabled when default_snat_status is disabled. When disabled is set
+ # to false, default IP masquerade rules will be applied to the nodes to
+ # prevent sNAT on cluster internal traffic.
+ # be disabled on the cluster.
+ "disabled": True or False, # Disables cluster default sNAT rules.
+ },
+ "enableIntraNodeVisibility": True or False, # Whether Intra-node visibility is enabled for this cluster.
+ # This makes same node pod to pod traffic visible for VPC network.
+ "subnetwork": "A String", # Output only. The relative name of the Google Compute Engine
+ # [subnetwork](https://cloud.google.com/compute/docs/vpc) to which the
+ # cluster is connected. Example:
+ # projects/my-project/regions/us-central1/subnetworks/my-subnet
+ "network": "A String", # Output only. The relative name of the Google Compute Engine
+ # network(https://cloud.google.com/compute/docs/networks-and-firewalls#networks)
+ # to which the cluster is connected. Example:
+ # projects/my-project/global/networks/my-network
},
- "binaryAuthorization": { # Configuration for Binary Authorization. # Configuration for Binary Authorization.
- "enabled": True or False, # Enable Binary Authorization for this cluster. If enabled, all container
- # images will be validated by Google Binauthz.
+ "shieldedNodes": { # Configuration of Shielded Nodes feature. # Shielded Nodes configuration.
+ "enabled": True or False, # Whether Shielded Nodes features are enabled on all nodes in this cluster.
},
- "tpuIpv4CidrBlock": "A String", # [Output only] The IP address range of the Cloud TPUs in this cluster, in
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `1.2.3.4/29`).
- "workloadIdentityConfig": { # Configuration for the use of Kubernetes Service Accounts in GCP IAM # Configuration for the use of Kubernetes Service Accounts in GCP IAM
- # policies.
- # policies.
- "workloadPool": "A String", # The workload pool to attach all Kubernetes service accounts to.
- "identityNamespace": "A String", # IAM Identity Namespace to attach all Kubernetes Service Accounts to.
+ "masterAuth": { # The authentication information for accessing the master endpoint. # The authentication information for accessing the master endpoint.
+ # If unspecified, the defaults are used:
+ # For clusters before v1.12, if master_auth is unspecified, `username` will
+ # be set to "admin", a random password will be generated, and a client
+ # certificate will be issued.
+ # Authentication can be done using HTTP basic auth or using client
+ # certificates.
+ "clusterCaCertificate": "A String",
+ "username": "A String", # The username to use for HTTP basic authentication to the master endpoint.
+ # For clusters v1.6.0 and later, basic authentication can be disabled by
+ # leaving username unspecified (or setting it to the empty string).
+ "clientCertificate": "A String", # [Output only] Base64-encoded public certificate used by clients to
+ # authenticate to the cluster endpoint.
+ "password": "A String", # The password to use for HTTP basic authentication to the master endpoint.
+ # Because the master endpoint is open to the Internet, you should create a
+ # strong password. If a password is provided for cluster creation, username
+ # must be non-empty.
+ "clientCertificateConfig": { # Configuration for client certificates on the cluster. # Configuration for client certificate authentication on the cluster. For
+ # clusters before v1.12, if no configuration is specified, a client
+ # certificate is issued.
+ "issueClientCertificate": True or False, # Issue a client certificate.
+ },
+ "clientKey": "A String", # [Output only] Base64-encoded private key used by clients to authenticate
+ # to the cluster endpoint.
},
- "zone": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster resides. This field is deprecated, use location instead.
- "loggingService": "A String", # The logging service the cluster should use to write logs.
- # Currently available options:
+ "initialClusterVersion": "A String", # The initial Kubernetes version for this cluster. Valid versions are those
+ # found in validMasterVersions returned by getServerConfig. The version can
+ # be upgraded over time; such upgrades are reflected in
+ # currentMasterVersion and currentNodeVersion.
#
- # * `logging.googleapis.com/kubernetes` - The Cloud Logging
- # service with a Kubernetes-native resource model
- # * `logging.googleapis.com` - The legacy Cloud Logging service (no longer
- # available as of GKE 1.15).
- # * `none` - no logs will be exported from the cluster.
+ # Users may specify either explicit versions offered by
+ # Kubernetes Engine or version aliases, which have the following behavior:
#
- # If left as an empty string,`logging.googleapis.com/kubernetes` will be
- # used for GKE 1.14+ or `logging.googleapis.com` for earlier versions.
- "expireTime": "A String", # [Output only] The time the cluster will be automatically
- # deleted in [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ # - "latest": picks the highest valid Kubernetes version
+ # - "1.X": picks the highest valid patch+gke.N patch in the 1.X version
+ # - "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
+ # - "1.X.Y-gke.N": picks an explicit Kubernetes version
+ # - "","-": picks the default Kubernetes version
+ "privateCluster": True or False, # If this is a private cluster setup. Private clusters are clusters that, by
+ # default have no external IP addresses on the nodes and where nodes and the
+ # master communicate over private IP addresses.
+ # This field is deprecated, use private_cluster_config.enable_private_nodes
+ # instead.
"nodeConfig": { # Parameters that describe the nodes in a cluster. # Parameters used in creating the cluster's nodes.
# For requests, this field should only be used in lieu of a
# "node_pool" object, since this configuration (along with the
@@ -2403,39 +2084,23 @@
#
# If unspecified, the defaults are used.
# This field is deprecated, use node_pool.config instead.
- "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
- # scheduled on the specified or newer CPU platform. Applicable values are the
- # friendly names of CPU platforms, such as
- # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
- # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
- # information, read [how to specify min CPU
- # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
- "shieldedInstanceConfig": { # A set of Shielded Instance options. # Shielded Instance options.
- "enableIntegrityMonitoring": True or False, # Defines whether the instance has integrity monitoring enabled.
- #
- # Enables monitoring and attestation of the boot integrity of the instance.
- # The attestation is performed against the integrity policy baseline. This
- # baseline is initially derived from the implicitly trusted boot image when
- # the instance is created.
- "enableSecureBoot": True or False, # Defines whether the instance has Secure Boot enabled.
- #
- # Secure Boot helps ensure that the system only runs authentic software by
- # verifying the digital signature of all boot components, and halting the
- # boot process if signature verification fails.
- },
- "preemptible": True or False, # Whether the nodes are created as preemptible VM instances. See:
- # https://cloud.google.com/compute/docs/instances/preemptible for more
- # inforamtion about preemptible VM instances.
- "localSsdCount": 42, # The number of local SSD disks to be attached to the node.
+ "oauthScopes": [ # The set of Google API scopes to be made available on all of the
+ # node VMs under the "default" service account.
#
- # The limit for this value is dependent upon the maximum number of
- # disks available on a machine per zone. See:
- # https://cloud.google.com/compute/docs/disks/local-ssd
- # for more information.
- "sandboxConfig": { # SandboxConfig contains configurations of the sandbox to use for the node. # Sandbox configuration for this node.
- "type": "A String", # Type of the sandbox to use for the node.
- "sandboxType": "A String", # Type of the sandbox to use for the node (e.g. 'gvisor')
- },
+ # The following scopes are recommended, but not required, and by default are
+ # not included:
+ #
+ # * `https://www.googleapis.com/auth/compute` is required for mounting
+ # persistent storage on your nodes.
+ # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
+ # communicating with **gcr.io**
+ # (the [Google Container
+ # Registry](https://cloud.google.com/container-registry/)).
+ #
+ # If unspecified, no scopes are added, unless Cloud Logging or Cloud
+ # Monitoring are enabled, in which case their required scopes will be added.
+ "A String",
+ ],
"metadata": { # The metadata key/value pairs assigned to instances in the cluster.
#
# Keys must conform to the regexp [a-zA-Z0-9-_]+ and be less than 128 bytes
@@ -2469,48 +2134,54 @@
# The total size of all keys and values must be less than 512 KB.
"a_key": "A String",
},
- "reservationAffinity": { # [ReservationAffinity](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources) # The optional reservation affinity. Setting this field will apply
- # the specified [Zonal Compute
- # Reservation](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources)
- # to this node pool.
- # is the configuration of desired reservation which instances could take
- # capacity from.
- "key": "A String", # Corresponds to the label key of a reservation resource. To target a
- # SPECIFIC_RESERVATION by name, specify "googleapis.com/reservation-name" as
- # the key and specify the name of your reservation as its value.
- "values": [ # Corresponds to the label value(s) of reservation resource(s).
- "A String",
- ],
- "consumeReservationType": "A String", # Corresponds to the type of reservation consumption.
+ "machineType": "A String", # The name of a Google Compute Engine [machine
+ # type](https://cloud.google.com/compute/docs/machine-types) (e.g.
+ # `n1-standard-1`).
+ #
+ # If unspecified, the default machine type is
+ # `n1-standard-1`.
+ "nodeGroup": "A String", # Setting this field will assign instances of this
+ # pool to run on the specified node group. This is useful for running
+ # workloads on [sole tenant
+ # nodes](https://cloud.google.com/compute/docs/nodes/sole-tenant-nodes).
+ "shieldedInstanceConfig": { # A set of Shielded Instance options. # Shielded Instance options.
+ "enableSecureBoot": True or False, # Defines whether the instance has Secure Boot enabled.
+ #
+ # Secure Boot helps ensure that the system only runs authentic software by
+ # verifying the digital signature of all boot components, and halting the
+ # boot process if signature verification fails.
+ "enableIntegrityMonitoring": True or False, # Defines whether the instance has integrity monitoring enabled.
+ #
+ # Enables monitoring and attestation of the boot integrity of the instance.
+ # The attestation is performed against the integrity policy baseline. This
+ # baseline is initially derived from the implicitly trusted boot image when
+ # the instance is created.
},
- "tags": [ # The list of instance tags applied to all nodes. Tags are used to identify
- # valid sources or targets for network firewalls and are specified by
- # the client during cluster or node pool creation. Each tag within the list
- # must comply with RFC1035.
- "A String",
- ],
"serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
# Specify the email address of the Service Account; otherwise, if no Service
# Account is specified, the "default" service account is used.
- "imageType": "A String", # The image type to use for this node. Note that for a given image type,
- # the latest version of it will be used.
- "oauthScopes": [ # The set of Google API scopes to be made available on all of the
- # node VMs under the "default" service account.
- #
- # The following scopes are recommended, but not required, and by default are
- # not included:
- #
- # * `https://www.googleapis.com/auth/compute` is required for mounting
- # persistent storage on your nodes.
- # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
- # communicating with **gcr.io**
- # (the [Google Container
- # Registry](https://cloud.google.com/container-registry/)).
- #
- # If unspecified, no scopes are added, unless Cloud Logging or Cloud
- # Monitoring are enabled, in which case their required scopes will be added.
- "A String",
- ],
+ "linuxNodeConfig": { # Parameters that can be configured on Linux nodes. # Parameters that can be configured on Linux nodes.
+ "sysctls": { # The Linux kernel parameters to be applied to the nodes and all pods running
+ # on the nodes.
+ #
+ # The following parameters are supported.
+ #
+ # net.core.netdev_max_backlog
+ # net.core.rmem_max
+ # net.core.wmem_default
+ # net.core.wmem_max
+ # net.core.optmem_max
+ # net.core.somaxconn
+ # net.ipv4.tcp_rmem
+ # net.ipv4.tcp_wmem
+ # net.ipv4.tcp_tw_reuse
+ "a_key": "A String",
+ },
+ },
+ "sandboxConfig": { # SandboxConfig contains configurations of the sandbox to use for the node. # Sandbox configuration for this node.
+ "type": "A String", # Type of the sandbox to use for the node.
+ "sandboxType": "A String", # Type of the sandbox to use for the node (e.g. 'gvisor')
+ },
"taints": [ # List of kubernetes taints to be applied to each node.
#
# For more information, including usage and the valid values, see:
@@ -2522,10 +2193,37 @@
# [here](https://kubernetes.io/docs/concepts/configuration/taint-and-toleration)
# for more information, including usage and the valid values.
"effect": "A String", # Effect for taint.
- "value": "A String", # Value for taint.
"key": "A String", # Key for taint.
+ "value": "A String", # Value for taint.
},
],
+ "kubeletConfig": { # Node kubelet configs. # Node kubelet configs.
+ "cpuCfsQuotaPeriod": "A String", # Set the CPU CFS quota period value 'cpu.cfs_period_us'.
+ #
+ # The string must be a sequence of decimal numbers, each with optional
+ # fraction and a unit suffix, such as "300ms".
+ # Valid time units are "ns", "us" (or "µs"), "ms", "s", "m", "h".
+ # The value must be a positive duration.
+ "cpuCfsQuota": True or False, # Enable CPU CFS quota enforcement for containers that specify CPU limits.
+ #
+ # If this option is enabled, kubelet uses CFS quota
+ # (https://www.kernel.org/doc/Documentation/scheduler/sched-bwc.txt) to
+ # enforce container CPU limits. Otherwise, CPU limits will not be enforced at
+ # all.
+ #
+ # Disable this option to mitigate CPU throttling problems while still having
+ # your pods to be in Guaranteed QoS class by specifying the CPU limits.
+ #
+ # The default value is 'true' if unspecified.
+ "cpuManagerPolicy": "A String", # Control the CPU management policy on the node.
+ # See
+ # https://kubernetes.io/docs/tasks/administer-cluster/cpu-management-policies/
+ #
+ # The following values are allowed.
+ # - "none": the default, which represents the existing scheduling behavior.
+ # - "static": allows pods with certain resource characteristics to be
+ # granted increased CPU affinity and exclusivity on the node.
+ },
"labels": { # The map of Kubernetes labels (key/value pairs) to be applied to each node.
# These will added in addition to any default label(s) that
# Kubernetes may apply to the node.
@@ -2536,10 +2234,9 @@
# https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
"a_key": "A String",
},
- "diskSizeGb": 42, # Size of the disk attached to each node, specified in GB.
- # The smallest allowed disk size is 10GB.
+ "diskType": "A String", # Type of the disk attached to each node (e.g. 'pd-standard' or 'pd-ssd')
#
- # If unspecified, the default disk size is 100GB.
+ # If unspecified, the default disk type is 'pd-standard'
"workloadMetadataConfig": { # WorkloadMetadataConfig defines the metadata configuration to expose to # The workload metadata configuration for this node.
# workloads on the node pool.
"nodeMetadata": "A String", # NodeMetadata is the configuration for how to expose metadata to the
@@ -2547,24 +2244,6 @@
"mode": "A String", # Mode is the configuration for how to expose metadata to workloads running
# on the node pool.
},
- "accelerators": [ # A list of hardware accelerators to be attached to each node.
- # See https://cloud.google.com/compute/docs/gpus for more information about
- # support for GPUs.
- { # AcceleratorConfig represents a Hardware Accelerator request.
- "acceleratorType": "A String", # The accelerator type resource name. List of supported accelerators
- # [here](https://cloud.google.com/compute/docs/gpus)
- "acceleratorCount": "A String", # The number of the accelerator cards exposed to an instance.
- },
- ],
- "machineType": "A String", # The name of a Google Compute Engine [machine
- # type](https://cloud.google.com/compute/docs/machine-types) (e.g.
- # `n1-standard-1`).
- #
- # If unspecified, the default machine type is
- # `n1-standard-1`.
- "diskType": "A String", # Type of the disk attached to each node (e.g. 'pd-standard' or 'pd-ssd')
- #
- # If unspecified, the default disk type is 'pd-standard'
"bootDiskKmsKey": "A String", #
# The Customer Managed Encryption Key used to encrypt the boot disk attached
# to each node in the node pool. This should be of the form
@@ -2572,107 +2251,91 @@
# For more information about protecting resources with Cloud KMS Keys please
# see:
# https://cloud.google.com/compute/docs/disks/customer-managed-encryption
- },
- "tpuConfig": { # Configuration for Cloud TPU. # Configuration for Cloud TPU support;
- "useServiceNetworking": True or False, # Whether to use service networking for Cloud TPU or not.
- "ipv4CidrBlock": "A String", # IPv4 CIDR block reserved for Cloud TPU in the VPC.
- "enabled": True or False, # Whether Cloud TPU integration is enabled or not.
- },
- "status": "A String", # [Output only] The current status of this cluster.
- "networkConfig": { # NetworkConfig reports the relative names of network & subnetwork. # Configuration for cluster networking.
- "enableIntraNodeVisibility": True or False, # Whether Intra-node visibility is enabled for this cluster.
- # This makes same node pod to pod traffic visible for VPC network.
- "subnetwork": "A String", # Output only. The relative name of the Google Compute Engine
- # [subnetwork](https://cloud.google.com/compute/docs/vpc) to which the
- # cluster is connected. Example:
- # projects/my-project/regions/us-central1/subnetworks/my-subnet
- "network": "A String", # Output only. The relative name of the Google Compute Engine
- # network(https://cloud.google.com/compute/docs/networks-and-firewalls#networks)
- # to which the cluster is connected. Example:
- # projects/my-project/global/networks/my-network
- "defaultSnatStatus": { # DefaultSnatStatus contains the desired state of whether default sNAT should # Whether the cluster disables default in-node sNAT rules. In-node sNAT rules
- # will be disabled when default_snat_status is disabled. When disabled is set
- # to false, default IP masquerade rules will be applied to the nodes to
- # prevent sNAT on cluster internal traffic.
- # be disabled on the cluster.
- "disabled": True or False, # Disables cluster default sNAT rules.
+ "diskSizeGb": 42, # Size of the disk attached to each node, specified in GB.
+ # The smallest allowed disk size is 10GB.
+ #
+ # If unspecified, the default disk size is 100GB.
+ "reservationAffinity": { # [ReservationAffinity](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources) # The optional reservation affinity. Setting this field will apply
+ # the specified [Zonal Compute
+ # Reservation](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources)
+ # to this node pool.
+ # is the configuration of desired reservation which instances could take
+ # capacity from.
+ "consumeReservationType": "A String", # Corresponds to the type of reservation consumption.
+ "key": "A String", # Corresponds to the label key of a reservation resource. To target a
+ # SPECIFIC_RESERVATION by name, specify "googleapis.com/reservation-name" as
+ # the key and specify the name of your reservation as its value.
+ "values": [ # Corresponds to the label value(s) of reservation resource(s).
+ "A String",
+ ],
},
+ "preemptible": True or False, # Whether the nodes are created as preemptible VM instances. See:
+ # https://cloud.google.com/compute/docs/instances/preemptible for more
+ # inforamtion about preemptible VM instances.
+ "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
+ # scheduled on the specified or newer CPU platform. Applicable values are the
+ # friendly names of CPU platforms, such as
+ # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
+ # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
+ # information, read [how to specify min CPU
+ # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
+ "tags": [ # The list of instance tags applied to all nodes. Tags are used to identify
+ # valid sources or targets for network firewalls and are specified by
+ # the client during cluster or node pool creation. Each tag within the list
+ # must comply with RFC1035.
+ "A String",
+ ],
+ "accelerators": [ # A list of hardware accelerators to be attached to each node.
+ # See https://cloud.google.com/compute/docs/gpus for more information about
+ # support for GPUs.
+ { # AcceleratorConfig represents a Hardware Accelerator request.
+ "acceleratorCount": "A String", # The number of the accelerator cards exposed to an instance.
+ "acceleratorType": "A String", # The accelerator type resource name. List of supported accelerators
+ # [here](https://cloud.google.com/compute/docs/gpus)
+ },
+ ],
+ "localSsdCount": 42, # The number of local SSD disks to be attached to the node.
+ #
+ # The limit for this value is dependent upon the maximum number of
+ # disks available on a machine per zone. See:
+ # https://cloud.google.com/compute/docs/disks/local-ssd
+ # for more information.
+ "imageType": "A String", # The image type to use for this node. Note that for a given image type,
+ # the latest version of it will be used.
},
- "name": "A String", # The name of this cluster. The name must be unique within this project
- # and location (e.g. zone or region), and can be up to 40 characters with
- # the following restrictions:
- #
- # * Lowercase letters, numbers, and hyphens only.
- # * Must start with a letter.
- # * Must end with a number or a letter.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "endpoint": "A String", # [Output only] The IP address of this cluster's master endpoint.
- # The endpoint can be accessed from the internet at
- # `https://username:password@endpoint/`.
- #
- # See the `masterAuth` property of this resource for username and
- # password information.
- "createTime": "A String", # [Output only] The time the cluster was created, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterIpv4Cidr": "A String", # The IP address range of the container pods in this cluster, in
+ "currentMasterVersion": "A String", # [Output only] The current software version of the master endpoint.
+ "masterAuthorizedNetworksConfig": { # Configuration options for the master authorized networks feature. Enabled # The configuration options for master authorized networks feature.
+ # master authorized networks will disallow all external traffic to access
+ # Kubernetes master through HTTPS except traffic from the given CIDR blocks,
+ # Google Compute Engine Public IPs and Google Prod IPs.
+ "cidrBlocks": [ # cidr_blocks define up to 10 external networks that could access
+ # Kubernetes master through HTTPS.
+ { # CidrBlock contains an optional name and one CIDR block.
+ "displayName": "A String", # display_name is an optional field for users to identify CIDR blocks.
+ "cidrBlock": "A String", # cidr_block must be specified in CIDR notation.
+ },
+ ],
+ "enabled": True or False, # Whether or not master authorized networks is enabled.
+ },
+ "servicesIpv4Cidr": "A String", # [Output only] The IP address range of the Kubernetes services in
+ # this cluster, in
# [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `10.96.0.0/14`). Leave blank to have
- # one automatically chosen or specify a `/14` block in `10.0.0.0/8`.
+ # notation (e.g. `1.2.3.4/29`). Service addresses are
+ # typically put in the last `/16` from the container CIDR.
+ "masterIpv4CidrBlock": "A String", # The IP prefix in CIDR notation to use for the hosted master network.
+ # This prefix will be used for assigning private IP addresses to the
+ # master or set of masters, as well as the ILB VIP.
+ # This field is deprecated, use
+ # private_cluster_config.master_ipv4_cidr_block instead.
"autoscaling": { # ClusterAutoscaling contains global, per-cluster information # Cluster-level autoscaling configuration.
# required by Cluster Autoscaler to automatically adjust
# the size of the cluster and create/delete
# node pools based on the current needs.
- "autoprovisioningLocations": [ # The list of Google Compute Engine
- # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
- # NodePool's nodes can be created by NAP.
- "A String",
- ],
- "resourceLimits": [ # Contains global constraints regarding minimum and maximum
- # amount of resources in the cluster.
- { # Contains information about amount of some resource in the cluster.
- # For memory, value should be in GB.
- "maximum": "A String", # Maximum amount of the resource in the cluster.
- "resourceType": "A String", # Resource name "cpu", "memory" or gpu-specific string.
- "minimum": "A String", # Minimum amount of the resource in the cluster.
- },
- ],
- "autoscalingProfile": "A String", # Defines autoscaling behaviour.
"enableNodeAutoprovisioning": True or False, # Enables automatic node pool creation and deletion.
"autoprovisioningNodePoolDefaults": { # AutoprovisioningNodePoolDefaults contains defaults for a node pool created # AutoprovisioningNodePoolDefaults contains defaults for a node pool
# created by NAP.
# by NAP.
- "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs. If
- # service_account is specified, scopes should be empty.
- "minCpuPlatform": "A String", # Minimum CPU platform to be used for NAP created node pools.
- # The instance may be scheduled on the specified or newer CPU platform.
- # Applicable values are the friendly names of CPU platforms, such as
- # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
- # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
- # information, read [how to specify min CPU
- # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
- # To unset the min cpu platform field pass "automatic" as field value.
- "management": { # NodeManagement defines the set of node management services turned on for the # Specifies the node management options for NAP created node-pools.
- # node pool.
- "autoRepair": True or False, # Whether the nodes will be automatically repaired.
- "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
- "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
- # the Auto Upgrades will proceed.
- "description": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the description of the upgrade.
- "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the approximate start time for the upgrades, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- },
- },
- "oauthScopes": [ # Scopes that are used by NAP when creating node pools. If oauth_scopes are
- # specified, service_account should be empty.
- "A String",
- ],
- "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Specifies the upgrade settings for NAP created node pools
+ "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Upgrade settings control disruption and speed of the upgrade.
# disruption caused by an upgrade.
#
# maxUnavailable controls the number of nodes that can be simultaneously
@@ -2701,923 +2364,280 @@
"maxSurge": 42, # The maximum number of nodes that can be created beyond the current size
# of the node pool during the upgrade process.
},
+ "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
+ # Specify the email address of the Service Account; otherwise, if no Service
+ # Account is specified, the "default" service account is used.
+ "oauthScopes": [ # The set of Google API scopes to be made available on all of the
+ # node VMs under the "default" service account.
+ #
+ # The following scopes are recommended, but not required, and by default are
+ # not included:
+ #
+ # * `https://www.googleapis.com/auth/compute` is required for mounting
+ # persistent storage on your nodes.
+ # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
+ # communicating with **gcr.io**
+ # (the [Google Container
+ # Registry](https://cloud.google.com/container-registry/)).
+ #
+ # If unspecified, no scopes are added, unless Cloud Logging or Cloud
+ # Monitoring are enabled, in which case their required scopes will be added.
+ "A String",
+ ],
+ "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
+ # scheduled on the specified or newer CPU platform. Applicable values are the
+ # friendly names of CPU platforms, such as
+ # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
+ # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
+ # information, read [how to specify min CPU
+ # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
+ # To unset the min cpu platform field pass "automatic"
+ # as field value.
+ "management": { # NodeManagement defines the set of node management services turned on for the # NodeManagement configuration for this NodePool.
+ # node pool.
+ "autoRepair": True or False, # Whether the nodes will be automatically repaired.
+ "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
+ "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
+ # the Auto Upgrades will proceed.
+ "description": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the description of the upgrade.
+ "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the approximate start time for the upgrades, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ },
+ },
},
+ "autoscalingProfile": "A String", # Defines autoscaling behaviour.
+ "resourceLimits": [ # Contains global constraints regarding minimum and maximum
+ # amount of resources in the cluster.
+ { # Contains information about amount of some resource in the cluster.
+ # For memory, value should be in GB.
+ "minimum": "A String", # Minimum amount of the resource in the cluster.
+ "maximum": "A String", # Maximum amount of the resource in the cluster.
+ "resourceType": "A String", # Resource name "cpu", "memory" or gpu-specific string.
+ },
+ ],
+ "autoprovisioningLocations": [ # The list of Google Compute Engine
+ # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
+ # NodePool's nodes can be created by NAP.
+ "A String",
+ ],
},
- "initialNodeCount": 42, # The number of nodes to create in this cluster. You must ensure that your
- # Compute Engine <a href="/compute/docs/resource-quotas">resource quota</a>
- # is sufficient for this number of instances. You must also have available
- # firewall and routes quota.
- # For requests, this field should only be used in lieu of a
- # "node_pool" object, since this configuration (along with the
- # "node_config") will be used to create a "NodePool" object with an
- # auto-generated name. Do not use this and a node_pool at the same time.
- #
- # This field is deprecated, use node_pool.initial_node_count instead.
- "instanceGroupUrls": [ # Deprecated. Use node_pools.instance_group_urls.
+ "locations": [ # The list of Google Compute Engine
+ # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster's nodes should be located.
"A String",
],
- }</pre>
-</div>
-
-<div class="method">
- <code class="details" id="legacyAbac">legacyAbac(projectId, zone, clusterId, body=None, x__xgafv=None)</code>
- <pre>Enables or disables the ABAC authorization mechanism on a cluster.
-
-Args:
- projectId: string, Required. Deprecated. The Google Developers Console [project ID or project
-number](https://support.google.com/cloud/answer/6158840).
-This field has been deprecated and replaced by the name field. (required)
- zone: string, Required. Deprecated. The name of the Google Compute Engine
-[zone](https://cloud.google.com/compute/docs/zones#available) in which the
-cluster resides. This field has been deprecated and replaced by the name
-field. (required)
- clusterId: string, Required. Deprecated. The name of the cluster to update.
-This field has been deprecated and replaced by the name field. (required)
- body: object, The request body.
- The object takes the form of:
-
-{ # SetLegacyAbacRequest enables or disables the ABAC authorization mechanism for
- # a cluster.
- "name": "A String", # The name (project, location, cluster id) of the cluster to set legacy abac.
- # Specified in the format `projects/*/locations/*/clusters/*`.
- "enabled": True or False, # Required. Whether ABAC authorization will be enabled in the cluster.
- "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
- # number](https://support.google.com/cloud/answer/6158840).
- # This field has been deprecated and replaced by the name field.
- "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster resides. This field has been deprecated and replaced by the name
- # field.
- "clusterId": "A String", # Required. Deprecated. The name of the cluster to update.
- # This field has been deprecated and replaced by the name field.
- }
-
- x__xgafv: string, V1 error format.
- Allowed values
- 1 - v1 error format
- 2 - v2 error format
-
-Returns:
- An object of the form:
-
- { # This operation resource represents operations that may have happened or are
- # happening on the cluster. All fields are output only.
- "targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
- "operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ "conditions": [ # Which conditions caused the current cluster state.
{ # StatusCondition describes why a cluster or a node pool has a certain status
# (e.g., ERROR or DEGRADED).
"code": "A String", # Machine-friendly representation of the condition
"message": "A String", # Human-friendly representation of the condition
},
],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "loggingService": "A String", # The logging service the cluster should use to write logs.
+ # Currently available options:
+ #
+ # * `logging.googleapis.com/kubernetes` - The Cloud Logging
+ # service with a Kubernetes-native resource model
+ # * `logging.googleapis.com` - The legacy Cloud Logging service (no longer
+ # available as of GKE 1.15).
+ # * `none` - no logs will be exported from the cluster.
+ #
+ # If left as an empty string,`logging.googleapis.com/kubernetes` will be
+ # used for GKE 1.14+ or `logging.googleapis.com` for earlier versions.
+ "enableKubernetesAlpha": True or False, # Kubernetes alpha features are enabled on this cluster. This includes alpha
+ # API groups (e.g. v1beta1) and features that may not be production ready in
+ # the kubernetes version of the master and nodes.
+ # The cluster has no SLA for uptime and master/node upgrades are disabled.
+ # Alpha enabled clusters are automatically deleted thirty days after
+ # creation.
+ "instanceGroupUrls": [ # Deprecated. Use node_pools.instance_group_urls.
+ "A String",
+ ],
+ "name": "A String", # The name of this cluster. The name must be unique within this project
+ # and location (e.g. zone or region), and can be up to 40 characters with
+ # the following restrictions:
+ #
+ # * Lowercase letters, numbers, and hyphens only.
+ # * Must start with a letter.
+ # * Must end with a number or a letter.
+ "master": { # Master is the configuration for components on master. # Configuration for master components.
+ },
+ "endpoint": "A String", # [Output only] The IP address of this cluster's master endpoint.
+ # The endpoint can be accessed from the internet at
+ # `https://username:password@endpoint/`.
+ #
+ # See the `masterAuth` property of this resource for username and
+ # password information.
+ "resourceUsageExportConfig": { # Configuration for exporting cluster resource usages. # Configuration for exporting resource usages. Resource usage export is
+ # disabled when this config unspecified.
+ "consumptionMeteringConfig": { # Parameters for controlling consumption metering. # Configuration to enable resource consumption metering.
+ "enabled": True or False, # Whether to enable consumption metering for this cluster. If enabled, a
+ # second BigQuery table will be created to hold resource consumption
+ # records.
+ },
+ "bigqueryDestination": { # Parameters for using BigQuery as the destination of resource usage export. # Configuration to use BigQuery as usage export destination.
+ "datasetId": "A String", # The ID of a BigQuery Dataset.
+ },
+ "enableNetworkEgressMetering": True or False, # Whether to enable network egress metering for this cluster. If enabled, a
+ # daemonset will be created in the cluster to meter network egress traffic.
+ },
"location": "A String", # [Output only] The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
# or
# [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
# in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
- "metrics": [ # Progress metric bundle, for example:
- # metrics: [{name: "nodes done", int_value: 15},
- # {name: "nodes total", int_value: 32}]
- # or
- # metrics: [{name: "progress", double_value: 0.56},
- # {name: "progress scale", double_value: 1.0}]
- { # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
- "doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
- "stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
- },
- ],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
+ "authenticatorGroupsConfig": { # Configuration for returning group information from authenticators. # Configuration controlling RBAC group membership information.
+ "securityGroup": "A String", # The name of the security group-of-groups to be used. Only relevant
+ # if enabled = true.
+ "enabled": True or False, # Whether this cluster should return group membership lookups
+ # during authentication using a group of security groups.
},
- "zone": "A String", # The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
- # operation is taking place. This field is deprecated, use location instead.
- "statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
- }</pre>
-</div>
-
-<div class="method">
- <code class="details" id="list">list(projectId, zone, parent=None, x__xgafv=None)</code>
- <pre>Lists all clusters owned by a project in either the specified zone or all
-zones.
-
-Args:
- projectId: string, Required. Deprecated. The Google Developers Console [project ID or project
-number](https://support.google.com/cloud/answer/6158840).
-This field has been deprecated and replaced by the parent field. (required)
- zone: string, Required. Deprecated. The name of the Google Compute Engine
-[zone](https://cloud.google.com/compute/docs/zones#available) in which the
-cluster resides, or "-" for all zones. This field has been deprecated and
-replaced by the parent field. (required)
- parent: string, The parent (project and location) where the clusters will be listed.
-Specified in the format `projects/*/locations/*`.
-Location "-" matches all zones and all regions.
- x__xgafv: string, V1 error format.
- Allowed values
- 1 - v1 error format
- 2 - v2 error format
-
-Returns:
- An object of the form:
-
- { # ListClustersResponse is the result of ListClustersRequest.
- "clusters": [ # A list of clusters in the project in the specified zone, or
- # across all ones.
- { # A Google Kubernetes Engine cluster.
- "privateClusterConfig": { # Configuration options for private clusters. # Configuration for private cluster.
- "masterIpv4CidrBlock": "A String", # The IP range in CIDR notation to use for the hosted master network. This
- # range will be used for assigning internal IP addresses to the master or
- # set of masters, as well as the ILB VIP. This range must not overlap with
- # any other ranges in use within the cluster's network.
- "enablePrivateNodes": True or False, # Whether nodes have internal IP addresses only. If enabled, all nodes are
- # given only RFC 1918 private addresses and communicate with the master via
- # private networking.
- "privateEndpoint": "A String", # Output only. The internal IP address of this cluster's master endpoint.
- "enablePrivateEndpoint": True or False, # Whether the master's internal IP address is used as the cluster endpoint.
- "peeringName": "A String", # Output only. The peering name in the customer VPC used by this cluster.
- "masterGlobalAccessConfig": { # Configuration for controlling master global access settings. # Controls master global access settings.
- "enabled": True or False, # Whenever master is accessible globally or not.
- },
- "publicEndpoint": "A String", # Output only. The external IP address of this cluster's master endpoint.
- },
- "shieldedNodes": { # Configuration of Shielded Nodes feature. # Shielded Nodes configuration.
- "enabled": True or False, # Whether Shielded Nodes features are enabled on all nodes in this cluster.
- },
- "verticalPodAutoscaling": { # VerticalPodAutoscaling contains global, per-cluster information # Cluster-level Vertical Pod Autoscaling configuration.
- # required by Vertical Pod Autoscaler to automatically adjust
- # the resources of pods controlled by it.
- "enabled": True or False, # Enables vertical pod autoscaling.
- },
- "defaultMaxPodsConstraint": { # Constraints applied to pods. # The default constraint on the maximum number of pods that can be run
- # simultaneously on a node in the node pool of this cluster. Only honored
- # if cluster created with IP Alias support.
- "maxPodsPerNode": "A String", # Constraint enforced on the max num of pods per node.
- },
- "network": "A String", # The name of the Google Compute Engine
- # [network](https://cloud.google.com/compute/docs/networks-and-firewalls#networks)
- # to which the cluster is connected. If left unspecified, the `default`
- # network will be used. On output this shows the network ID instead of the
- # name.
- "labelFingerprint": "A String", # The fingerprint of the set of labels for this cluster.
- "nodeIpv4CidrSize": 42, # [Output only] The size of the address space on each node for hosting
- # containers. This is provisioned from within the `container_ipv4_cidr`
- # range. This field will only be set when cluster is in route-based network
- # mode.
- "masterAuthorizedNetworksConfig": { # Configuration options for the master authorized networks feature. Enabled # The configuration options for master authorized networks feature.
- # master authorized networks will disallow all external traffic to access
- # Kubernetes master through HTTPS except traffic from the given CIDR blocks,
- # Google Compute Engine Public IPs and Google Prod IPs.
- "enabled": True or False, # Whether or not master authorized networks is enabled.
- "cidrBlocks": [ # cidr_blocks define up to 10 external networks that could access
- # Kubernetes master through HTTPS.
- { # CidrBlock contains an optional name and one CIDR block.
- "cidrBlock": "A String", # cidr_block must be specified in CIDR notation.
- "displayName": "A String", # display_name is an optional field for users to identify CIDR blocks.
- },
- ],
- },
- "statusMessage": "A String", # [Output only] Additional information about the current status of this
- # cluster, if available.
- "masterAuth": { # The authentication information for accessing the master endpoint. # The authentication information for accessing the master endpoint.
- # If unspecified, the defaults are used:
- # For clusters before v1.12, if master_auth is unspecified, `username` will
- # be set to "admin", a random password will be generated, and a client
- # certificate will be issued.
- # Authentication can be done using HTTP basic auth or using client
- # certificates.
- "password": "A String", # The password to use for HTTP basic authentication to the master endpoint.
- # Because the master endpoint is open to the Internet, you should create a
- # strong password. If a password is provided for cluster creation, username
- # must be non-empty.
- "clientCertificateConfig": { # Configuration for client certificates on the cluster. # Configuration for client certificate authentication on the cluster. For
- # clusters before v1.12, if no configuration is specified, a client
- # certificate is issued.
- "issueClientCertificate": True or False, # Issue a client certificate.
- },
- "clientKey": "A String", # [Output only] Base64-encoded private key used by clients to authenticate
- # to the cluster endpoint.
- "clusterCaCertificate": "A String",
- "clientCertificate": "A String", # [Output only] Base64-encoded public certificate used by clients to
- # authenticate to the cluster endpoint.
- "username": "A String", # The username to use for HTTP basic authentication to the master endpoint.
- # For clusters v1.6.0 and later, basic authentication can be disabled by
- # leaving username unspecified (or setting it to the empty string).
- },
- "authenticatorGroupsConfig": { # Configuration for returning group information from authenticators. # Configuration controlling RBAC group membership information.
- "securityGroup": "A String", # The name of the security group-of-groups to be used. Only relevant
- # if enabled = true.
- "enabled": True or False, # Whether this cluster should return group membership lookups
- # during authentication using a group of security groups.
- },
- "masterIpv4CidrBlock": "A String", # The IP prefix in CIDR notation to use for the hosted master network.
- # This prefix will be used for assigning private IP addresses to the
- # master or set of masters, as well as the ILB VIP.
- # This field is deprecated, use
- # private_cluster_config.master_ipv4_cidr_block instead.
- "clusterTelemetry": { # Telemetry integration for the cluster. # Telemetry integration for the cluster.
- "type": "A String", # Type of the integration.
- },
- "currentMasterVersion": "A String", # [Output only] The current software version of the master endpoint.
- "podSecurityPolicyConfig": { # Configuration for the PodSecurityPolicy feature. # Configuration for the PodSecurityPolicy feature.
- "enabled": True or False, # Enable the PodSecurityPolicy controller for this cluster. If enabled, pods
- # must be valid under a PodSecurityPolicy to be created.
- },
- "addonsConfig": { # Configuration for the addons that can be automatically spun up in the # Configurations for the various addons available to run in the cluster.
- # cluster, enabling additional functionality.
- "httpLoadBalancing": { # Configuration options for the HTTP (L7) load balancing controller addon, # Configuration for the HTTP (L7) load balancing controller addon, which
- # makes it easy to set up HTTP load balancers for services in a cluster.
- # which makes it easy to set up HTTP load balancers for services in a cluster.
- "disabled": True or False, # Whether the HTTP Load Balancing controller is enabled in the cluster.
- # When enabled, it runs a small pod in the cluster that manages the load
- # balancers.
- },
- "kubernetesDashboard": { # Configuration for the Kubernetes Dashboard. # Configuration for the Kubernetes Dashboard.
- # This addon is deprecated, and will be disabled in 1.15. It is recommended
- # to use the Cloud Console to manage and monitor your Kubernetes clusters,
- # workloads and applications. For more information, see:
- # https://cloud.google.com/kubernetes-engine/docs/concepts/dashboards
- "disabled": True or False, # Whether the Kubernetes Dashboard is enabled for this cluster.
- },
- "dnsCacheConfig": { # Configuration for NodeLocal DNSCache # Configuration for NodeLocalDNS, a dns cache running on cluster nodes
- "enabled": True or False, # Whether NodeLocal DNSCache is enabled for this cluster.
- },
- "kalmConfig": { # Configuration options for the KALM addon. # Configuration for the KALM addon, which manages the lifecycle of k8s
- # applications.
- "enabled": True or False, # Whether KALM is enabled for this cluster.
- },
- "gcePersistentDiskCsiDriverConfig": { # Configuration for the Compute Engine PD CSI driver. This option can only be # Configuration for the Compute Engine Persistent Disk CSI driver.
- # enabled at cluster creation time.
- "enabled": True or False, # Whether the Compute Engine PD CSI driver is enabled for this cluster.
- },
- "istioConfig": { # Configuration options for Istio addon. # Configuration for Istio, an open platform to connect, manage, and secure
- # microservices.
- "auth": "A String", # The specified Istio auth mode, either none, or mutual TLS.
- "disabled": True or False, # Whether Istio is enabled for this cluster.
- },
- "networkPolicyConfig": { # Configuration for NetworkPolicy. This only tracks whether the addon # Configuration for NetworkPolicy. This only tracks whether the addon
- # is enabled or not on the Master, it does not track whether network policy
- # is enabled for the nodes.
- # is enabled or not on the Master, it does not track whether network policy
- # is enabled for the nodes.
- "disabled": True or False, # Whether NetworkPolicy is enabled for this cluster.
- },
- "cloudRunConfig": { # Configuration options for the Cloud Run feature. # Configuration for the Cloud Run addon. The `IstioConfig` addon must be
- # enabled in order to enable Cloud Run addon. This option can only be enabled
- # at cluster creation time.
- "disabled": True or False, # Whether Cloud Run addon is enabled for this cluster.
- },
- "configConnectorConfig": { # Configuration options for the Config Connector add-on. # Configuration for the ConfigConnector add-on, a Kubernetes
- # extension to manage hosted GCP services through the Kubernetes API
- "enabled": True or False, # Whether Cloud Connector is enabled for this cluster.
- },
- "horizontalPodAutoscaling": { # Configuration options for the horizontal pod autoscaling feature, which # Configuration for the horizontal pod autoscaling feature, which
- # increases or decreases the number of replica pods a replication controller
- # has based on the resource usage of the existing pods.
- # increases or decreases the number of replica pods a replication controller
- # has based on the resource usage of the existing pods.
- "disabled": True or False, # Whether the Horizontal Pod Autoscaling feature is enabled in the cluster.
- # When enabled, it ensures that metrics are collected into Stackdriver
- # Monitoring.
+ "subnetwork": "A String", # The name of the Google Compute Engine
+ # [subnetwork](https://cloud.google.com/compute/docs/subnetworks) to which
+ # the cluster is connected. On output this shows the subnetwork ID instead of
+ # the name.
+ "maintenancePolicy": { # MaintenancePolicy defines the maintenance policy to be used for the cluster. # Configure the maintenance policy for this cluster.
+ "window": { # MaintenanceWindow defines the maintenance window to be used for the cluster. # Specifies the maintenance window in which maintenance may be performed.
+ "recurringWindow": { # Represents an arbitrary window of time that recurs. # RecurringWindow specifies some number of recurring time periods for
+ # maintenance to occur. The time windows may be overlapping. If no
+ # maintenance windows are set, maintenance can occur at any time.
+ "recurrence": "A String", # An RRULE (https://tools.ietf.org/html/rfc5545#section-3.8.5.3) for how
+ # this window reccurs. They go on for the span of time between the start and
+ # end time.
+ #
+ # For example, to have something repeat every weekday, you'd use:
+ # <code>FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR</code>
+ # To repeat some window daily (equivalent to the DailyMaintenanceWindow):
+ # <code>FREQ=DAILY</code>
+ # For the first weekend of every month:
+ # <code>FREQ=MONTHLY;BYSETPOS=1;BYDAY=SA,SU</code>
+ # This specifies how frequently the window starts. Eg, if you wanted to have
+ # a 9-5 UTC-4 window every weekday, you'd use something like:
+ # <code>
+ # start time = 2019-01-01T09:00:00-0400
+ # end time = 2019-01-01T17:00:00-0400
+ # recurrence = FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR
+ # </code>
+ # Windows can span multiple days. Eg, to make the window encompass every
+ # weekend from midnight Saturday till the last minute of Sunday UTC:
+ # <code>
+ # start time = 2019-01-05T00:00:00Z
+ # end time = 2019-01-07T23:59:00Z
+ # recurrence = FREQ=WEEKLY;BYDAY=SA
+ # </code>
+ # Note the start and end time's specific dates are largely arbitrary except
+ # to specify duration of the window and when it first starts.
+ # The FREQ values of HOURLY, MINUTELY, and SECONDLY are not supported.
+ "window": { # Represents an arbitrary window of time. # The window of the first recurrence.
+ "endTime": "A String", # The time that the window ends. The end time should take place after the
+ # start time.
+ "startTime": "A String", # The time that the window first starts.
},
},
- "subnetwork": "A String", # The name of the Google Compute Engine
- # [subnetwork](https://cloud.google.com/compute/docs/subnetworks) to which
- # the cluster is connected. On output this shows the subnetwork ID instead of
- # the name.
- "currentNodeVersion": "A String", # [Output only] Deprecated, use
- # [NodePool.version](https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1beta1/projects.locations.clusters.nodePools)
- # instead. The current version of the node software components.
- # If they are currently at multiple versions because they're in the process
- # of being upgraded, this reflects the minimum version of all nodes.
- "maintenancePolicy": { # MaintenancePolicy defines the maintenance policy to be used for the cluster. # Configure the maintenance policy for this cluster.
- "window": { # MaintenanceWindow defines the maintenance window to be used for the cluster. # Specifies the maintenance window in which maintenance may be performed.
- "maintenanceExclusions": { # Exceptions to maintenance window. Non-emergency maintenance should not
- # occur in these windows.
- "a_key": { # Represents an arbitrary window of time.
- "startTime": "A String", # The time that the window first starts.
- "endTime": "A String", # The time that the window ends. The end time should take place after the
- # start time.
- },
- },
- "recurringWindow": { # Represents an arbitrary window of time that recurs. # RecurringWindow specifies some number of recurring time periods for
- # maintenance to occur. The time windows may be overlapping. If no
- # maintenance windows are set, maintenance can occur at any time.
- "recurrence": "A String", # An RRULE (https://tools.ietf.org/html/rfc5545#section-3.8.5.3) for how
- # this window reccurs. They go on for the span of time between the start and
- # end time.
- #
- # For example, to have something repeat every weekday, you'd use:
- # <code>FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR</code>
- # To repeat some window daily (equivalent to the DailyMaintenanceWindow):
- # <code>FREQ=DAILY</code>
- # For the first weekend of every month:
- # <code>FREQ=MONTHLY;BYSETPOS=1;BYDAY=SA,SU</code>
- # This specifies how frequently the window starts. Eg, if you wanted to have
- # a 9-5 UTC-4 window every weekday, you'd use something like:
- # <code>
- # start time = 2019-01-01T09:00:00-0400
- # end time = 2019-01-01T17:00:00-0400
- # recurrence = FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR
- # </code>
- # Windows can span multiple days. Eg, to make the window encompass every
- # weekend from midnight Saturday till the last minute of Sunday UTC:
- # <code>
- # start time = 2019-01-05T00:00:00Z
- # end time = 2019-01-07T23:59:00Z
- # recurrence = FREQ=WEEKLY;BYDAY=SA
- # </code>
- # Note the start and end time's specific dates are largely arbitrary except
- # to specify duration of the window and when it first starts.
- # The FREQ values of HOURLY, MINUTELY, and SECONDLY are not supported.
- "window": { # Represents an arbitrary window of time. # The window of the first recurrence.
- "startTime": "A String", # The time that the window first starts.
- "endTime": "A String", # The time that the window ends. The end time should take place after the
- # start time.
- },
- },
- "dailyMaintenanceWindow": { # Time window specified for daily maintenance operations. # DailyMaintenanceWindow specifies a daily maintenance operation window.
- "duration": "A String", # [Output only] Duration of the time window, automatically chosen to be
- # smallest possible in the given scenario.
- "startTime": "A String", # Time within the maintenance window to start the maintenance operations.
- # It must be in format "HH:MM", where HH : [00-23] and MM : [00-59] GMT.
- },
+ "dailyMaintenanceWindow": { # Time window specified for daily maintenance operations. # DailyMaintenanceWindow specifies a daily maintenance operation window.
+ "startTime": "A String", # Time within the maintenance window to start the maintenance operations.
+ # It must be in format "HH:MM", where HH : [00-23] and MM : [00-59] GMT.
+ "duration": "A String", # [Output only] Duration of the time window, automatically chosen to be
+ # smallest possible in the given scenario.
+ },
+ "maintenanceExclusions": { # Exceptions to maintenance window. Non-emergency maintenance should not
+ # occur in these windows.
+ "a_key": { # Represents an arbitrary window of time.
+ "endTime": "A String", # The time that the window ends. The end time should take place after the
+ # start time.
+ "startTime": "A String", # The time that the window first starts.
},
- "resourceVersion": "A String", # A hash identifying the version of this policy, so that updates to fields of
- # the policy won't accidentally undo intermediate changes (and so that users
- # of the API unaware of some fields won't accidentally remove other fields).
- # Make a <code>get()</code> request to the cluster to get the current
- # resource version and include it with requests to set the policy.
},
- "resourceLabels": { # The resource labels for the cluster to use to annotate any related
- # Google Compute Engine resources.
- "a_key": "A String",
- },
- "initialClusterVersion": "A String", # The initial Kubernetes version for this cluster. Valid versions are those
- # found in validMasterVersions returned by getServerConfig. The version can
- # be upgraded over time; such upgrades are reflected in
- # currentMasterVersion and currentNodeVersion.
+ },
+ "resourceVersion": "A String", # A hash identifying the version of this policy, so that updates to fields of
+ # the policy won't accidentally undo intermediate changes (and so that users
+ # of the API unaware of some fields won't accidentally remove other fields).
+ # Make a <code>get()</code> request to the cluster to get the current
+ # resource version and include it with requests to set the policy.
+ },
+ "tpuConfig": { # Configuration for Cloud TPU. # Configuration for Cloud TPU support;
+ "ipv4CidrBlock": "A String", # IPv4 CIDR block reserved for Cloud TPU in the VPC.
+ "useServiceNetworking": True or False, # Whether to use service networking for Cloud TPU or not.
+ "enabled": True or False, # Whether Cloud TPU integration is enabled or not.
+ },
+ "nodePools": [ # The node pools associated with this cluster.
+ # This field should not be set if "node_config" or "initial_node_count" are
+ # specified.
+ { # NodePool contains the name and configuration for a cluster's node pool.
+ # Node pools are a set of nodes (i.e. VM's), with a common configuration and
+ # specification, under the control of the cluster master. They may have a set
+ # of Kubernetes labels applied to them, which may be used to reference them
+ # during pod scheduling. They may also be resized up or down, to accommodate
+ # the workload.
+ "status": "A String", # [Output only] The status of the nodes in this pool instance.
+ "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Upgrade settings control disruption and speed of the upgrade.
+ # disruption caused by an upgrade.
#
- # Users may specify either explicit versions offered by
- # Kubernetes Engine or version aliases, which have the following behavior:
+ # maxUnavailable controls the number of nodes that can be simultaneously
+ # unavailable.
#
- # - "latest": picks the highest valid Kubernetes version
- # - "1.X": picks the highest valid patch+gke.N patch in the 1.X version
- # - "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
- # - "1.X.Y-gke.N": picks an explicit Kubernetes version
- # - "","-": picks the default Kubernetes version
- "ipAllocationPolicy": { # Configuration for controlling how IPs are allocated in the cluster. # Configuration for cluster IP allocation.
- "useRoutes": True or False, # Whether routes will be used for pod IPs in the cluster.
- # This is used in conjunction with use_ip_aliases. It cannot be true if
- # use_ip_aliases is true. If both use_ip_aliases and use_routes are false,
- # then the server picks the default IP allocation mode
- "servicesIpv4CidrBlock": "A String", # The IP address range of the services IPs in this cluster. If blank, a range
- # will be automatically chosen with the default size.
- #
- # This field is only applicable when `use_ip_aliases` is true.
- #
- # Set to blank to have a range chosen with the default size.
- #
- # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
- # netmask.
- #
- # Set to a
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
- # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
- # to use.
- "allowRouteOverlap": True or False, # If true, allow allocation of cluster CIDR ranges that overlap with certain
- # kinds of network routes. By default we do not allow cluster CIDR ranges to
- # intersect with any user declared routes. With allow_route_overlap == true,
- # we allow overlapping with CIDR ranges that are larger than the cluster CIDR
- # range.
- #
- # If this field is set to true, then cluster and services CIDRs must be
- # fully-specified (e.g. `10.96.0.0/14`, but not `/14`), which means:
- # 1) When `use_ip_aliases` is true, `cluster_ipv4_cidr_block` and
- # `services_ipv4_cidr_block` must be fully-specified.
- # 2) When `use_ip_aliases` is false, `cluster.cluster_ipv4_cidr` muse be
- # fully-specified.
- "nodeIpv4Cidr": "A String", # This field is deprecated, use node_ipv4_cidr_block.
- "clusterIpv4CidrBlock": "A String", # The IP address range for the cluster pod IPs. If this field is set, then
- # `cluster.cluster_ipv4_cidr` must be left blank.
- #
- # This field is only applicable when `use_ip_aliases` is true.
- #
- # Set to blank to have a range chosen with the default size.
- #
- # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
- # netmask.
- #
- # Set to a
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
- # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
- # to use.
- "clusterSecondaryRangeName": "A String", # The name of the secondary range to be used for the cluster CIDR
- # block. The secondary range will be used for pod IP
- # addresses. This must be an existing secondary range associated
- # with the cluster subnetwork.
- #
- # This field is only applicable with use_ip_aliases and
- # create_subnetwork is false.
- "nodeIpv4CidrBlock": "A String", # The IP address range of the instance IPs in this cluster.
- #
- # This is applicable only if `create_subnetwork` is true.
- #
- # Set to blank to have a range chosen with the default size.
- #
- # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
- # netmask.
- #
- # Set to a
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
- # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
- # to use.
- "tpuIpv4CidrBlock": "A String", # The IP address range of the Cloud TPUs in this cluster. If unspecified, a
- # range will be automatically chosen with the default size.
- #
- # This field is only applicable when `use_ip_aliases` is true.
- #
- # If unspecified, the range will use the default size.
- #
- # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
- # netmask.
- #
- # Set to a
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
- # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
- # to use.
- # This field is deprecated, use cluster.tpu_config.ipv4_cidr_block instead.
- "servicesSecondaryRangeName": "A String", # The name of the secondary range to be used as for the services
- # CIDR block. The secondary range will be used for service
- # ClusterIPs. This must be an existing secondary range associated
- # with the cluster subnetwork.
- #
- # This field is only applicable with use_ip_aliases and
- # create_subnetwork is false.
- "createSubnetwork": True or False, # Whether a new subnetwork will be created automatically for the cluster.
- #
- # This field is only applicable when `use_ip_aliases` is true.
- "useIpAliases": True or False, # Whether alias IPs will be used for pod IPs in the cluster.
- # This is used in conjunction with use_routes. It cannot
- # be true if use_routes is true. If both use_ip_aliases and use_routes are
- # false, then the server picks the default IP allocation mode
- "subnetworkName": "A String", # A custom subnetwork name to be used if `create_subnetwork` is true. If
- # this field is empty, then an automatic name will be chosen for the new
- # subnetwork.
- "clusterIpv4Cidr": "A String", # This field is deprecated, use cluster_ipv4_cidr_block.
- "servicesIpv4Cidr": "A String", # This field is deprecated, use services_ipv4_cidr_block.
+ # maxSurge controls the number of additional nodes that can be added to the
+ # node pool temporarily for the time of the upgrade to increase the number of
+ # available nodes.
+ #
+ # (maxUnavailable + maxSurge) determines the level of parallelism (how many
+ # nodes are being upgraded at the same time).
+ #
+ # Note: upgrades inevitably introduce some disruption since workloads need to
+ # be moved from old nodes to new, upgraded ones. Even if maxUnavailable=0,
+ # this holds true. (Disruption stays within the limits of
+ # PodDisruptionBudget, if it is configured.)
+ #
+ # Consider a hypothetical node pool with 5 nodes having maxSurge=2,
+ # maxUnavailable=1. This means the upgrade process upgrades 3 nodes
+ # simultaneously. It creates 2 additional (upgraded) nodes, then it brings
+ # down 3 old (not yet upgraded) nodes at the same time. This ensures that
+ # there are always at least 4 nodes available.
+ "maxUnavailable": 42, # The maximum number of nodes that can be simultaneously unavailable during
+ # the upgrade process. A node is considered available if its status is
+ # Ready.
+ "maxSurge": 42, # The maximum number of nodes that can be created beyond the current size
+ # of the node pool during the upgrade process.
},
- "legacyAbac": { # Configuration for the legacy Attribute Based Access Control authorization # Configuration for the legacy ABAC authorization mode.
- # mode.
- "enabled": True or False, # Whether the ABAC authorizer is enabled for this cluster. When enabled,
- # identities in the system, including service accounts, nodes, and
- # controllers, will have statically granted permissions beyond those
- # provided by the RBAC configuration or IAM.
- },
- "resourceUsageExportConfig": { # Configuration for exporting cluster resource usages. # Configuration for exporting resource usages. Resource usage export is
- # disabled when this config unspecified.
- "enableNetworkEgressMetering": True or False, # Whether to enable network egress metering for this cluster. If enabled, a
- # daemonset will be created in the cluster to meter network egress traffic.
- "consumptionMeteringConfig": { # Parameters for controlling consumption metering. # Configuration to enable resource consumption metering.
- "enabled": True or False, # Whether to enable consumption metering for this cluster. If enabled, a
- # second BigQuery table will be created to hold resource consumption
- # records.
- },
- "bigqueryDestination": { # Parameters for using BigQuery as the destination of resource usage export. # Configuration to use BigQuery as usage export destination.
- "datasetId": "A String", # The ID of a BigQuery Dataset.
- },
- },
- "enableTpu": True or False, # Enable the ability to use Cloud TPUs in this cluster.
- # This field is deprecated, use tpu_config.enabled instead.
- "nodePools": [ # The node pools associated with this cluster.
- # This field should not be set if "node_config" or "initial_node_count" are
- # specified.
- { # NodePool contains the name and configuration for a cluster's node pool.
- # Node pools are a set of nodes (i.e. VM's), with a common configuration and
- # specification, under the control of the cluster master. They may have a set
- # of Kubernetes labels applied to them, which may be used to reference them
- # during pod scheduling. They may also be resized up or down, to accommodate
- # the workload.
- "status": "A String", # [Output only] The status of the nodes in this pool instance.
- "config": { # Parameters that describe the nodes in a cluster. # The node configuration of the pool.
- "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
- # scheduled on the specified or newer CPU platform. Applicable values are the
- # friendly names of CPU platforms, such as
- # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
- # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
- # information, read [how to specify min CPU
- # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
- "shieldedInstanceConfig": { # A set of Shielded Instance options. # Shielded Instance options.
- "enableIntegrityMonitoring": True or False, # Defines whether the instance has integrity monitoring enabled.
- #
- # Enables monitoring and attestation of the boot integrity of the instance.
- # The attestation is performed against the integrity policy baseline. This
- # baseline is initially derived from the implicitly trusted boot image when
- # the instance is created.
- "enableSecureBoot": True or False, # Defines whether the instance has Secure Boot enabled.
- #
- # Secure Boot helps ensure that the system only runs authentic software by
- # verifying the digital signature of all boot components, and halting the
- # boot process if signature verification fails.
- },
- "preemptible": True or False, # Whether the nodes are created as preemptible VM instances. See:
- # https://cloud.google.com/compute/docs/instances/preemptible for more
- # inforamtion about preemptible VM instances.
- "localSsdCount": 42, # The number of local SSD disks to be attached to the node.
- #
- # The limit for this value is dependent upon the maximum number of
- # disks available on a machine per zone. See:
- # https://cloud.google.com/compute/docs/disks/local-ssd
- # for more information.
- "sandboxConfig": { # SandboxConfig contains configurations of the sandbox to use for the node. # Sandbox configuration for this node.
- "type": "A String", # Type of the sandbox to use for the node.
- "sandboxType": "A String", # Type of the sandbox to use for the node (e.g. 'gvisor')
- },
- "metadata": { # The metadata key/value pairs assigned to instances in the cluster.
- #
- # Keys must conform to the regexp [a-zA-Z0-9-_]+ and be less than 128 bytes
- # in length. These are reflected as part of a URL in the metadata server.
- # Additionally, to avoid ambiguity, keys must not conflict with any other
- # metadata keys for the project or be one of the reserved keys:
- # "cluster-location"
- # "cluster-name"
- # "cluster-uid"
- # "configure-sh"
- # "containerd-configure-sh"
- # "enable-oslogin"
- # "gci-ensure-gke-docker"
- # "gci-metrics-enabled"
- # "gci-update-strategy"
- # "instance-template"
- # "kube-env"
- # "startup-script"
- # "user-data"
- # "disable-address-manager"
- # "windows-startup-script-ps1"
- # "common-psm1"
- # "k8s-node-setup-psm1"
- # "install-ssh-psm1"
- # "user-profile-psm1"
- # "serial-port-logging-enable"
- # Values are free-form strings, and only have meaning as interpreted by
- # the image running in the instance. The only restriction placed on them is
- # that each value's size must be less than or equal to 32 KB.
- #
- # The total size of all keys and values must be less than 512 KB.
- "a_key": "A String",
- },
- "reservationAffinity": { # [ReservationAffinity](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources) # The optional reservation affinity. Setting this field will apply
- # the specified [Zonal Compute
- # Reservation](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources)
- # to this node pool.
- # is the configuration of desired reservation which instances could take
- # capacity from.
- "key": "A String", # Corresponds to the label key of a reservation resource. To target a
- # SPECIFIC_RESERVATION by name, specify "googleapis.com/reservation-name" as
- # the key and specify the name of your reservation as its value.
- "values": [ # Corresponds to the label value(s) of reservation resource(s).
- "A String",
- ],
- "consumeReservationType": "A String", # Corresponds to the type of reservation consumption.
- },
- "tags": [ # The list of instance tags applied to all nodes. Tags are used to identify
- # valid sources or targets for network firewalls and are specified by
- # the client during cluster or node pool creation. Each tag within the list
- # must comply with RFC1035.
- "A String",
- ],
- "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
- # Specify the email address of the Service Account; otherwise, if no Service
- # Account is specified, the "default" service account is used.
- "imageType": "A String", # The image type to use for this node. Note that for a given image type,
- # the latest version of it will be used.
- "oauthScopes": [ # The set of Google API scopes to be made available on all of the
- # node VMs under the "default" service account.
- #
- # The following scopes are recommended, but not required, and by default are
- # not included:
- #
- # * `https://www.googleapis.com/auth/compute` is required for mounting
- # persistent storage on your nodes.
- # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
- # communicating with **gcr.io**
- # (the [Google Container
- # Registry](https://cloud.google.com/container-registry/)).
- #
- # If unspecified, no scopes are added, unless Cloud Logging or Cloud
- # Monitoring are enabled, in which case their required scopes will be added.
- "A String",
- ],
- "taints": [ # List of kubernetes taints to be applied to each node.
- #
- # For more information, including usage and the valid values, see:
- # https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
- { # Kubernetes taint is comprised of three fields: key, value, and effect. Effect
- # can only be one of three types: NoSchedule, PreferNoSchedule or NoExecute.
- #
- # See
- # [here](https://kubernetes.io/docs/concepts/configuration/taint-and-toleration)
- # for more information, including usage and the valid values.
- "effect": "A String", # Effect for taint.
- "value": "A String", # Value for taint.
- "key": "A String", # Key for taint.
- },
- ],
- "labels": { # The map of Kubernetes labels (key/value pairs) to be applied to each node.
- # These will added in addition to any default label(s) that
- # Kubernetes may apply to the node.
- # In case of conflict in label keys, the applied set may differ depending on
- # the Kubernetes version -- it's best to assume the behavior is undefined
- # and conflicts should be avoided.
- # For more information, including usage and the valid values, see:
- # https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
- "a_key": "A String",
- },
- "diskSizeGb": 42, # Size of the disk attached to each node, specified in GB.
- # The smallest allowed disk size is 10GB.
- #
- # If unspecified, the default disk size is 100GB.
- "workloadMetadataConfig": { # WorkloadMetadataConfig defines the metadata configuration to expose to # The workload metadata configuration for this node.
- # workloads on the node pool.
- "nodeMetadata": "A String", # NodeMetadata is the configuration for how to expose metadata to the
- # workloads running on the node.
- "mode": "A String", # Mode is the configuration for how to expose metadata to workloads running
- # on the node pool.
- },
- "accelerators": [ # A list of hardware accelerators to be attached to each node.
- # See https://cloud.google.com/compute/docs/gpus for more information about
- # support for GPUs.
- { # AcceleratorConfig represents a Hardware Accelerator request.
- "acceleratorType": "A String", # The accelerator type resource name. List of supported accelerators
- # [here](https://cloud.google.com/compute/docs/gpus)
- "acceleratorCount": "A String", # The number of the accelerator cards exposed to an instance.
- },
- ],
- "machineType": "A String", # The name of a Google Compute Engine [machine
- # type](https://cloud.google.com/compute/docs/machine-types) (e.g.
- # `n1-standard-1`).
- #
- # If unspecified, the default machine type is
- # `n1-standard-1`.
- "diskType": "A String", # Type of the disk attached to each node (e.g. 'pd-standard' or 'pd-ssd')
- #
- # If unspecified, the default disk type is 'pd-standard'
- "bootDiskKmsKey": "A String", #
- # The Customer Managed Encryption Key used to encrypt the boot disk attached
- # to each node in the node pool. This should be of the form
- # projects/[KEY_PROJECT_ID]/locations/[LOCATION]/keyRings/[RING_NAME]/cryptoKeys/[KEY_NAME].
- # For more information about protecting resources with Cloud KMS Keys please
- # see:
- # https://cloud.google.com/compute/docs/disks/customer-managed-encryption
- },
- "maxPodsConstraint": { # Constraints applied to pods. # The constraint on the maximum number of pods that can be run
- # simultaneously on a node in the node pool.
- "maxPodsPerNode": "A String", # Constraint enforced on the max num of pods per node.
- },
- "name": "A String", # The name of the node pool.
- "management": { # NodeManagement defines the set of node management services turned on for the # NodeManagement configuration for this NodePool.
- # node pool.
- "autoRepair": True or False, # Whether the nodes will be automatically repaired.
- "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
- "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
- # the Auto Upgrades will proceed.
- "description": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the description of the upgrade.
- "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the approximate start time for the upgrades, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- },
- },
- "statusMessage": "A String", # [Output only] Additional information about the current status of this
- # node pool instance, if available.
- "autoscaling": { # NodePoolAutoscaling contains information required by cluster autoscaler to # Autoscaler configuration for this NodePool. Autoscaler is enabled
- # only if a valid configuration is present.
- # adjust the size of the node pool to the current cluster usage.
- "maxNodeCount": 42, # Maximum number of nodes in the NodePool. Must be >= min_node_count. There
- # has to enough quota to scale up the cluster.
- "autoprovisioned": True or False, # Can this node pool be deleted automatically.
- "minNodeCount": 42, # Minimum number of nodes in the NodePool. Must be >= 1 and <=
- # max_node_count.
- "enabled": True or False, # Is autoscaling enabled for this node pool.
- },
- "initialNodeCount": 42, # The initial node count for the pool. You must ensure that your
- # Compute Engine <a href="/compute/docs/resource-quotas">resource quota</a>
- # is sufficient for this number of instances. You must also have available
- # firewall and routes quota.
- "locations": [ # The list of Google Compute Engine
- # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
- # NodePool's nodes should be located.
- "A String",
- ],
- "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Upgrade settings control disruption and speed of the upgrade.
- # disruption caused by an upgrade.
- #
- # maxUnavailable controls the number of nodes that can be simultaneously
- # unavailable.
- #
- # maxSurge controls the number of additional nodes that can be added to the
- # node pool temporarily for the time of the upgrade to increase the number of
- # available nodes.
- #
- # (maxUnavailable + maxSurge) determines the level of parallelism (how many
- # nodes are being upgraded at the same time).
- #
- # Note: upgrades inevitably introduce some disruption since workloads need to
- # be moved from old nodes to new, upgraded ones. Even if maxUnavailable=0,
- # this holds true. (Disruption stays within the limits of
- # PodDisruptionBudget, if it is configured.)
- #
- # Consider a hypothetical node pool with 5 nodes having maxSurge=2,
- # maxUnavailable=1. This means the upgrade process upgrades 3 nodes
- # simultaneously. It creates 2 additional (upgraded) nodes, then it brings
- # down 3 old (not yet upgraded) nodes at the same time. This ensures that
- # there are always at least 4 nodes available.
- "maxUnavailable": 42, # The maximum number of nodes that can be simultaneously unavailable during
- # the upgrade process. A node is considered available if its status is
- # Ready.
- "maxSurge": 42, # The maximum number of nodes that can be created beyond the current size
- # of the node pool during the upgrade process.
- },
- "selfLink": "A String", # [Output only] Server-defined URL for the resource.
- "version": "A String", # The version of the Kubernetes of this node.
- "instanceGroupUrls": [ # [Output only] The resource URLs of the [managed instance
- # groups](https://cloud.google.com/compute/docs/instance-groups/creating-groups-of-managed-instances)
- # associated with this node pool.
- "A String",
- ],
- "podIpv4CidrSize": 42, # [Output only] The pod CIDR block size per node in this node pool.
- "conditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- },
- ],
- "locations": [ # The list of Google Compute Engine
- # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster's nodes should be located.
+ "instanceGroupUrls": [ # [Output only] The resource URLs of the [managed instance
+ # groups](https://cloud.google.com/compute/docs/instance-groups/creating-groups-of-managed-instances)
+ # associated with this node pool.
"A String",
],
- "selfLink": "A String", # [Output only] Server-defined URL for the resource.
- "releaseChannel": { # ReleaseChannel indicates which release channel a cluster is # Release channel configuration.
- # subscribed to. Release channels are arranged in order of risk and
- # frequency of updates.
- #
- # When a cluster is subscribed to a release channel, Google maintains
- # both the master version and the node version. Node auto-upgrade
- # defaults to true and cannot be disabled. Updates to version related
- # fields (e.g. current_master_version) return an error.
- "channel": "A String", # channel specifies which release channel the cluster is subscribed to.
+ "autoscaling": { # NodePoolAutoscaling contains information required by cluster autoscaler to # Autoscaler configuration for this NodePool. Autoscaler is enabled
+ # only if a valid configuration is present.
+ # adjust the size of the node pool to the current cluster usage.
+ "autoprovisioned": True or False, # Can this node pool be deleted automatically.
+ "minNodeCount": 42, # Minimum number of nodes in the NodePool. Must be >= 1 and <=
+ # max_node_count.
+ "enabled": True or False, # Is autoscaling enabled for this node pool.
+ "maxNodeCount": 42, # Maximum number of nodes in the NodePool. Must be >= min_node_count. There
+ # has to enough quota to scale up the cluster.
},
- "networkPolicy": { # Configuration options for the NetworkPolicy feature. # Configuration options for the NetworkPolicy feature.
- # https://kubernetes.io/docs/concepts/services-networking/networkpolicies/
- "provider": "A String", # The selected network policy provider.
- "enabled": True or False, # Whether network policy is enabled on the cluster.
- },
- "servicesIpv4Cidr": "A String", # [Output only] The IP address range of the Kubernetes services in
- # this cluster, in
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `1.2.3.4/29`). Service addresses are
- # typically put in the last `/16` from the container CIDR.
- "enableKubernetesAlpha": True or False, # Kubernetes alpha features are enabled on this cluster. This includes alpha
- # API groups (e.g. v1beta1) and features that may not be production ready in
- # the kubernetes version of the master and nodes.
- # The cluster has no SLA for uptime and master/node upgrades are disabled.
- # Alpha enabled clusters are automatically deleted thirty days after
- # creation.
- "description": "A String", # An optional description of this cluster.
- "conditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "privateCluster": True or False, # If this is a private cluster setup. Private clusters are clusters that, by
- # default have no external IP addresses on the nodes and where nodes and the
- # master communicate over private IP addresses.
- # This field is deprecated, use private_cluster_config.enable_private_nodes
- # instead.
- "currentNodeCount": 42, # [Output only] The number of nodes currently in the cluster. Deprecated.
- # Call Kubernetes API directly to retrieve node information.
- "monitoringService": "A String", # The monitoring service the cluster should use to write metrics.
- # Currently available options:
- #
- # * "monitoring.googleapis.com/kubernetes" - The Cloud Monitoring
- # service with a Kubernetes-native resource model
- # * `monitoring.googleapis.com` - The legacy Cloud Monitoring service (no
- # longer available as of GKE 1.15).
- # * `none` - No metrics will be exported from the cluster.
- #
- # If left as an empty string,`monitoring.googleapis.com/kubernetes` will be
- # used for GKE 1.14+ or `monitoring.googleapis.com` for earlier versions.
- "databaseEncryption": { # Configuration of etcd encryption. # Configuration of etcd encryption.
- "state": "A String", # Denotes the state of etcd encryption.
- "keyName": "A String", # Name of CloudKMS key to use for the encryption of secrets in etcd.
- # Ex. projects/my-project/locations/global/keyRings/my-ring/cryptoKeys/my-key
- },
- "binaryAuthorization": { # Configuration for Binary Authorization. # Configuration for Binary Authorization.
- "enabled": True or False, # Enable Binary Authorization for this cluster. If enabled, all container
- # images will be validated by Google Binauthz.
- },
- "tpuIpv4CidrBlock": "A String", # [Output only] The IP address range of the Cloud TPUs in this cluster, in
- # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `1.2.3.4/29`).
- "workloadIdentityConfig": { # Configuration for the use of Kubernetes Service Accounts in GCP IAM # Configuration for the use of Kubernetes Service Accounts in GCP IAM
- # policies.
- # policies.
- "workloadPool": "A String", # The workload pool to attach all Kubernetes service accounts to.
- "identityNamespace": "A String", # IAM Identity Namespace to attach all Kubernetes Service Accounts to.
- },
- "zone": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster resides. This field is deprecated, use location instead.
- "loggingService": "A String", # The logging service the cluster should use to write logs.
- # Currently available options:
- #
- # * `logging.googleapis.com/kubernetes` - The Cloud Logging
- # service with a Kubernetes-native resource model
- # * `logging.googleapis.com` - The legacy Cloud Logging service (no longer
- # available as of GKE 1.15).
- # * `none` - no logs will be exported from the cluster.
- #
- # If left as an empty string,`logging.googleapis.com/kubernetes` will be
- # used for GKE 1.14+ or `logging.googleapis.com` for earlier versions.
- "expireTime": "A String", # [Output only] The time the cluster will be automatically
- # deleted in [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "nodeConfig": { # Parameters that describe the nodes in a cluster. # Parameters used in creating the cluster's nodes.
- # For requests, this field should only be used in lieu of a
- # "node_pool" object, since this configuration (along with the
- # "initial_node_count") will be used to create a "NodePool" object with an
- # auto-generated name. Do not use this and a node_pool at the same time.
- # For responses, this field will be populated with the node configuration of
- # the first node pool. (For configuration of each node pool, see
- # `node_pool.config`)
- #
- # If unspecified, the defaults are used.
- # This field is deprecated, use node_pool.config instead.
- "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
- # scheduled on the specified or newer CPU platform. Applicable values are the
- # friendly names of CPU platforms, such as
- # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
- # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
- # information, read [how to specify min CPU
- # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
- "shieldedInstanceConfig": { # A set of Shielded Instance options. # Shielded Instance options.
- "enableIntegrityMonitoring": True or False, # Defines whether the instance has integrity monitoring enabled.
- #
- # Enables monitoring and attestation of the boot integrity of the instance.
- # The attestation is performed against the integrity policy baseline. This
- # baseline is initially derived from the implicitly trusted boot image when
- # the instance is created.
- "enableSecureBoot": True or False, # Defines whether the instance has Secure Boot enabled.
- #
- # Secure Boot helps ensure that the system only runs authentic software by
- # verifying the digital signature of all boot components, and halting the
- # boot process if signature verification fails.
- },
- "preemptible": True or False, # Whether the nodes are created as preemptible VM instances. See:
- # https://cloud.google.com/compute/docs/instances/preemptible for more
- # inforamtion about preemptible VM instances.
- "localSsdCount": 42, # The number of local SSD disks to be attached to the node.
+ "initialNodeCount": 42, # The initial node count for the pool. You must ensure that your
+ # Compute Engine [resource quota](https://cloud.google.com/compute/quotas)
+ # is sufficient for this number of instances. You must also have available
+ # firewall and routes quota.
+ "config": { # Parameters that describe the nodes in a cluster. # The node configuration of the pool.
+ "oauthScopes": [ # The set of Google API scopes to be made available on all of the
+ # node VMs under the "default" service account.
#
- # The limit for this value is dependent upon the maximum number of
- # disks available on a machine per zone. See:
- # https://cloud.google.com/compute/docs/disks/local-ssd
- # for more information.
- "sandboxConfig": { # SandboxConfig contains configurations of the sandbox to use for the node. # Sandbox configuration for this node.
- "type": "A String", # Type of the sandbox to use for the node.
- "sandboxType": "A String", # Type of the sandbox to use for the node (e.g. 'gvisor')
- },
+ # The following scopes are recommended, but not required, and by default are
+ # not included:
+ #
+ # * `https://www.googleapis.com/auth/compute` is required for mounting
+ # persistent storage on your nodes.
+ # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
+ # communicating with **gcr.io**
+ # (the [Google Container
+ # Registry](https://cloud.google.com/container-registry/)).
+ #
+ # If unspecified, no scopes are added, unless Cloud Logging or Cloud
+ # Monitoring are enabled, in which case their required scopes will be added.
+ "A String",
+ ],
"metadata": { # The metadata key/value pairs assigned to instances in the cluster.
#
# Keys must conform to the regexp [a-zA-Z0-9-_]+ and be less than 128 bytes
@@ -3651,31 +2671,719 @@
# The total size of all keys and values must be less than 512 KB.
"a_key": "A String",
},
+ "machineType": "A String", # The name of a Google Compute Engine [machine
+ # type](https://cloud.google.com/compute/docs/machine-types) (e.g.
+ # `n1-standard-1`).
+ #
+ # If unspecified, the default machine type is
+ # `n1-standard-1`.
+ "nodeGroup": "A String", # Setting this field will assign instances of this
+ # pool to run on the specified node group. This is useful for running
+ # workloads on [sole tenant
+ # nodes](https://cloud.google.com/compute/docs/nodes/sole-tenant-nodes).
+ "shieldedInstanceConfig": { # A set of Shielded Instance options. # Shielded Instance options.
+ "enableSecureBoot": True or False, # Defines whether the instance has Secure Boot enabled.
+ #
+ # Secure Boot helps ensure that the system only runs authentic software by
+ # verifying the digital signature of all boot components, and halting the
+ # boot process if signature verification fails.
+ "enableIntegrityMonitoring": True or False, # Defines whether the instance has integrity monitoring enabled.
+ #
+ # Enables monitoring and attestation of the boot integrity of the instance.
+ # The attestation is performed against the integrity policy baseline. This
+ # baseline is initially derived from the implicitly trusted boot image when
+ # the instance is created.
+ },
+ "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
+ # Specify the email address of the Service Account; otherwise, if no Service
+ # Account is specified, the "default" service account is used.
+ "linuxNodeConfig": { # Parameters that can be configured on Linux nodes. # Parameters that can be configured on Linux nodes.
+ "sysctls": { # The Linux kernel parameters to be applied to the nodes and all pods running
+ # on the nodes.
+ #
+ # The following parameters are supported.
+ #
+ # net.core.netdev_max_backlog
+ # net.core.rmem_max
+ # net.core.wmem_default
+ # net.core.wmem_max
+ # net.core.optmem_max
+ # net.core.somaxconn
+ # net.ipv4.tcp_rmem
+ # net.ipv4.tcp_wmem
+ # net.ipv4.tcp_tw_reuse
+ "a_key": "A String",
+ },
+ },
+ "sandboxConfig": { # SandboxConfig contains configurations of the sandbox to use for the node. # Sandbox configuration for this node.
+ "type": "A String", # Type of the sandbox to use for the node.
+ "sandboxType": "A String", # Type of the sandbox to use for the node (e.g. 'gvisor')
+ },
+ "taints": [ # List of kubernetes taints to be applied to each node.
+ #
+ # For more information, including usage and the valid values, see:
+ # https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+ { # Kubernetes taint is comprised of three fields: key, value, and effect. Effect
+ # can only be one of three types: NoSchedule, PreferNoSchedule or NoExecute.
+ #
+ # See
+ # [here](https://kubernetes.io/docs/concepts/configuration/taint-and-toleration)
+ # for more information, including usage and the valid values.
+ "effect": "A String", # Effect for taint.
+ "key": "A String", # Key for taint.
+ "value": "A String", # Value for taint.
+ },
+ ],
+ "kubeletConfig": { # Node kubelet configs. # Node kubelet configs.
+ "cpuCfsQuotaPeriod": "A String", # Set the CPU CFS quota period value 'cpu.cfs_period_us'.
+ #
+ # The string must be a sequence of decimal numbers, each with optional
+ # fraction and a unit suffix, such as "300ms".
+ # Valid time units are "ns", "us" (or "µs"), "ms", "s", "m", "h".
+ # The value must be a positive duration.
+ "cpuCfsQuota": True or False, # Enable CPU CFS quota enforcement for containers that specify CPU limits.
+ #
+ # If this option is enabled, kubelet uses CFS quota
+ # (https://www.kernel.org/doc/Documentation/scheduler/sched-bwc.txt) to
+ # enforce container CPU limits. Otherwise, CPU limits will not be enforced at
+ # all.
+ #
+ # Disable this option to mitigate CPU throttling problems while still having
+ # your pods to be in Guaranteed QoS class by specifying the CPU limits.
+ #
+ # The default value is 'true' if unspecified.
+ "cpuManagerPolicy": "A String", # Control the CPU management policy on the node.
+ # See
+ # https://kubernetes.io/docs/tasks/administer-cluster/cpu-management-policies/
+ #
+ # The following values are allowed.
+ # - "none": the default, which represents the existing scheduling behavior.
+ # - "static": allows pods with certain resource characteristics to be
+ # granted increased CPU affinity and exclusivity on the node.
+ },
+ "labels": { # The map of Kubernetes labels (key/value pairs) to be applied to each node.
+ # These will added in addition to any default label(s) that
+ # Kubernetes may apply to the node.
+ # In case of conflict in label keys, the applied set may differ depending on
+ # the Kubernetes version -- it's best to assume the behavior is undefined
+ # and conflicts should be avoided.
+ # For more information, including usage and the valid values, see:
+ # https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
+ "a_key": "A String",
+ },
+ "diskType": "A String", # Type of the disk attached to each node (e.g. 'pd-standard' or 'pd-ssd')
+ #
+ # If unspecified, the default disk type is 'pd-standard'
+ "workloadMetadataConfig": { # WorkloadMetadataConfig defines the metadata configuration to expose to # The workload metadata configuration for this node.
+ # workloads on the node pool.
+ "nodeMetadata": "A String", # NodeMetadata is the configuration for how to expose metadata to the
+ # workloads running on the node.
+ "mode": "A String", # Mode is the configuration for how to expose metadata to workloads running
+ # on the node pool.
+ },
+ "bootDiskKmsKey": "A String", #
+ # The Customer Managed Encryption Key used to encrypt the boot disk attached
+ # to each node in the node pool. This should be of the form
+ # projects/[KEY_PROJECT_ID]/locations/[LOCATION]/keyRings/[RING_NAME]/cryptoKeys/[KEY_NAME].
+ # For more information about protecting resources with Cloud KMS Keys please
+ # see:
+ # https://cloud.google.com/compute/docs/disks/customer-managed-encryption
+ "diskSizeGb": 42, # Size of the disk attached to each node, specified in GB.
+ # The smallest allowed disk size is 10GB.
+ #
+ # If unspecified, the default disk size is 100GB.
"reservationAffinity": { # [ReservationAffinity](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources) # The optional reservation affinity. Setting this field will apply
# the specified [Zonal Compute
# Reservation](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources)
# to this node pool.
# is the configuration of desired reservation which instances could take
# capacity from.
+ "consumeReservationType": "A String", # Corresponds to the type of reservation consumption.
"key": "A String", # Corresponds to the label key of a reservation resource. To target a
# SPECIFIC_RESERVATION by name, specify "googleapis.com/reservation-name" as
# the key and specify the name of your reservation as its value.
"values": [ # Corresponds to the label value(s) of reservation resource(s).
"A String",
],
- "consumeReservationType": "A String", # Corresponds to the type of reservation consumption.
},
+ "preemptible": True or False, # Whether the nodes are created as preemptible VM instances. See:
+ # https://cloud.google.com/compute/docs/instances/preemptible for more
+ # inforamtion about preemptible VM instances.
+ "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
+ # scheduled on the specified or newer CPU platform. Applicable values are the
+ # friendly names of CPU platforms, such as
+ # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
+ # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
+ # information, read [how to specify min CPU
+ # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
"tags": [ # The list of instance tags applied to all nodes. Tags are used to identify
# valid sources or targets for network firewalls and are specified by
# the client during cluster or node pool creation. Each tag within the list
# must comply with RFC1035.
"A String",
],
- "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
- # Specify the email address of the Service Account; otherwise, if no Service
- # Account is specified, the "default" service account is used.
+ "accelerators": [ # A list of hardware accelerators to be attached to each node.
+ # See https://cloud.google.com/compute/docs/gpus for more information about
+ # support for GPUs.
+ { # AcceleratorConfig represents a Hardware Accelerator request.
+ "acceleratorCount": "A String", # The number of the accelerator cards exposed to an instance.
+ "acceleratorType": "A String", # The accelerator type resource name. List of supported accelerators
+ # [here](https://cloud.google.com/compute/docs/gpus)
+ },
+ ],
+ "localSsdCount": 42, # The number of local SSD disks to be attached to the node.
+ #
+ # The limit for this value is dependent upon the maximum number of
+ # disks available on a machine per zone. See:
+ # https://cloud.google.com/compute/docs/disks/local-ssd
+ # for more information.
"imageType": "A String", # The image type to use for this node. Note that for a given image type,
# the latest version of it will be used.
+ },
+ "selfLink": "A String", # [Output only] Server-defined URL for the resource.
+ "management": { # NodeManagement defines the set of node management services turned on for the # NodeManagement configuration for this NodePool.
+ # node pool.
+ "autoRepair": True or False, # Whether the nodes will be automatically repaired.
+ "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
+ "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
+ # the Auto Upgrades will proceed.
+ "description": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the description of the upgrade.
+ "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the approximate start time for the upgrades, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ },
+ },
+ "name": "A String", # The name of the node pool.
+ "version": "A String", # The version of the Kubernetes of this node.
+ "maxPodsConstraint": { # Constraints applied to pods. # The constraint on the maximum number of pods that can be run
+ # simultaneously on a node in the node pool.
+ "maxPodsPerNode": "A String", # Constraint enforced on the max num of pods per node.
+ },
+ "statusMessage": "A String", # [Output only] Additional information about the current status of this
+ # node pool instance, if available.
+ "podIpv4CidrSize": 42, # [Output only] The pod CIDR block size per node in this node pool.
+ "conditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "locations": [ # The list of Google Compute Engine
+ # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
+ # NodePool's nodes should be located.
+ "A String",
+ ],
+ },
+ ],
+ "statusMessage": "A String", # [Output only] Additional information about the current status of this
+ # cluster, if available.
+ "releaseChannel": { # ReleaseChannel indicates which release channel a cluster is # Release channel configuration.
+ # subscribed to. Release channels are arranged in order of risk.
+ #
+ # When a cluster is subscribed to a release channel, Google maintains
+ # both the master version and the node version. Node auto-upgrade
+ # defaults to true and cannot be disabled.
+ "channel": "A String", # channel specifies which release channel the cluster is subscribed to.
+ },
+ "selfLink": "A String", # [Output only] Server-defined URL for the resource.
+ "defaultMaxPodsConstraint": { # Constraints applied to pods. # The default constraint on the maximum number of pods that can be run
+ # simultaneously on a node in the node pool of this cluster. Only honored
+ # if cluster created with IP Alias support.
+ "maxPodsPerNode": "A String", # Constraint enforced on the max num of pods per node.
+ },
+ "clusterTelemetry": { # Telemetry integration for the cluster. # Telemetry integration for the cluster.
+ "type": "A String", # Type of the integration.
+ },
+ "status": "A String", # [Output only] The current status of this cluster.
+ "resourceLabels": { # The resource labels for the cluster to use to annotate any related
+ # Google Compute Engine resources.
+ "a_key": "A String",
+ },
+ "tpuIpv4CidrBlock": "A String", # [Output only] The IP address range of the Cloud TPUs in this cluster, in
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `1.2.3.4/29`).
+ "initialNodeCount": 42, # The number of nodes to create in this cluster. You must ensure that your
+ # Compute Engine [resource quota](https://cloud.google.com/compute/quotas)
+ # is sufficient for this number of instances. You must also have available
+ # firewall and routes quota.
+ # For requests, this field should only be used in lieu of a
+ # "node_pool" object, since this configuration (along with the
+ # "node_config") will be used to create a "NodePool" object with an
+ # auto-generated name. Do not use this and a node_pool at the same time.
+ #
+ # This field is deprecated, use node_pool.initial_node_count instead.
+ "podSecurityPolicyConfig": { # Configuration for the PodSecurityPolicy feature. # Configuration for the PodSecurityPolicy feature.
+ "enabled": True or False, # Enable the PodSecurityPolicy controller for this cluster. If enabled, pods
+ # must be valid under a PodSecurityPolicy to be created.
+ },
+ "description": "A String", # An optional description of this cluster.
+ "databaseEncryption": { # Configuration of etcd encryption. # Configuration of etcd encryption.
+ "state": "A String", # Denotes the state of etcd encryption.
+ "keyName": "A String", # Name of CloudKMS key to use for the encryption of secrets in etcd.
+ # Ex. projects/my-project/locations/global/keyRings/my-ring/cryptoKeys/my-key
+ },
+ "network": "A String", # The name of the Google Compute Engine
+ # [network](https://cloud.google.com/compute/docs/networks-and-firewalls#networks)
+ # to which the cluster is connected. If left unspecified, the `default`
+ # network will be used. On output this shows the network ID instead of the
+ # name.
+ "zone": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster resides. This field is deprecated, use location instead.
+ "verticalPodAutoscaling": { # VerticalPodAutoscaling contains global, per-cluster information # Cluster-level Vertical Pod Autoscaling configuration.
+ # required by Vertical Pod Autoscaler to automatically adjust
+ # the resources of pods controlled by it.
+ "enabled": True or False, # Enables vertical pod autoscaling.
+ },
+ "expireTime": "A String", # [Output only] The time the cluster will be automatically
+ # deleted in [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "nodeIpv4CidrSize": 42, # [Output only] The size of the address space on each node for hosting
+ # containers. This is provisioned from within the `container_ipv4_cidr`
+ # range. This field will only be set when cluster is in route-based network
+ # mode.
+ "labelFingerprint": "A String", # The fingerprint of the set of labels for this cluster.
+ }</pre>
+</div>
+
+<div class="method">
+ <code class="details" id="legacyAbac">legacyAbac(projectId, zone, clusterId, body=None, x__xgafv=None)</code>
+ <pre>Enables or disables the ABAC authorization mechanism on a cluster.
+
+Args:
+ projectId: string, Required. Deprecated. The Google Developers Console [project ID or project
+number](https://support.google.com/cloud/answer/6158840).
+This field has been deprecated and replaced by the name field. (required)
+ zone: string, Required. Deprecated. The name of the Google Compute Engine
+[zone](https://cloud.google.com/compute/docs/zones#available) in which the
+cluster resides. This field has been deprecated and replaced by the name
+field. (required)
+ clusterId: string, Required. Deprecated. The name of the cluster to update.
+This field has been deprecated and replaced by the name field. (required)
+ body: object, The request body.
+ The object takes the form of:
+
+{ # SetLegacyAbacRequest enables or disables the ABAC authorization mechanism for
+ # a cluster.
+ "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
+ # number](https://support.google.com/cloud/answer/6158840).
+ # This field has been deprecated and replaced by the name field.
+ "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster resides. This field has been deprecated and replaced by the name
+ # field.
+ "enabled": True or False, # Required. Whether ABAC authorization will be enabled in the cluster.
+ "name": "A String", # The name (project, location, cluster id) of the cluster to set legacy abac.
+ # Specified in the format `projects/*/locations/*/clusters/*`.
+ "clusterId": "A String", # Required. Deprecated. The name of the cluster to update.
+ # This field has been deprecated and replaced by the name field.
+ }
+
+ x__xgafv: string, V1 error format.
+ Allowed values
+ 1 - v1 error format
+ 2 - v2 error format
+
+Returns:
+ An object of the form:
+
+ { # This operation resource represents operations that may have happened or are
+ # happening on the cluster. All fields are output only.
+ "targetLink": "A String", # Server-defined URL for the target of the operation.
+ "operationType": "A String", # The operation type.
+ "progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
+ "metrics": [ # Progress metric bundle, for example:
+ # metrics: [{name: "nodes done", int_value: 15},
+ # {name: "nodes total", int_value: 32}]
+ # or
+ # metrics: [{name: "progress", double_value: 0.56},
+ # {name: "progress scale", double_value: 1.0}]
+ { # Progress metric is (string, int|float|string) pair.
+ "doubleValue": 3.14, # For metrics with floating point value.
+ "stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
+ },
+ ],
+ },
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
+ "zone": "A String", # The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
+ # operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
+ }</pre>
+</div>
+
+<div class="method">
+ <code class="details" id="list">list(projectId, zone, parent=None, x__xgafv=None)</code>
+ <pre>Lists all clusters owned by a project in either the specified zone or all
+zones.
+
+Args:
+ projectId: string, Required. Deprecated. The Google Developers Console [project ID or project
+number](https://support.google.com/cloud/answer/6158840).
+This field has been deprecated and replaced by the parent field. (required)
+ zone: string, Required. Deprecated. The name of the Google Compute Engine
+[zone](https://cloud.google.com/compute/docs/zones#available) in which the
+cluster resides, or "-" for all zones. This field has been deprecated and
+replaced by the parent field. (required)
+ parent: string, The parent (project and location) where the clusters will be listed.
+Specified in the format `projects/*/locations/*`.
+Location "-" matches all zones and all regions.
+ x__xgafv: string, V1 error format.
+ Allowed values
+ 1 - v1 error format
+ 2 - v2 error format
+
+Returns:
+ An object of the form:
+
+ { # ListClustersResponse is the result of ListClustersRequest.
+ "missingZones": [ # If any zones are listed here, the list of clusters returned
+ # may be missing those zones.
+ "A String",
+ ],
+ "clusters": [ # A list of clusters in the project in the specified zone, or
+ # across all ones.
+ { # A Google Kubernetes Engine cluster.
+ "addonsConfig": { # Configuration for the addons that can be automatically spun up in the # Configurations for the various addons available to run in the cluster.
+ # cluster, enabling additional functionality.
+ "configConnectorConfig": { # Configuration options for the Config Connector add-on. # Configuration for the ConfigConnector add-on, a Kubernetes
+ # extension to manage hosted GCP services through the Kubernetes API
+ "enabled": True or False, # Whether Cloud Connector is enabled for this cluster.
+ },
+ "gcePersistentDiskCsiDriverConfig": { # Configuration for the Compute Engine PD CSI driver. This option can only be # Configuration for the Compute Engine Persistent Disk CSI driver.
+ # enabled at cluster creation time.
+ "enabled": True or False, # Whether the Compute Engine PD CSI driver is enabled for this cluster.
+ },
+ "dnsCacheConfig": { # Configuration for NodeLocal DNSCache # Configuration for NodeLocalDNS, a dns cache running on cluster nodes
+ "enabled": True or False, # Whether NodeLocal DNSCache is enabled for this cluster.
+ },
+ "networkPolicyConfig": { # Configuration for NetworkPolicy. This only tracks whether the addon # Configuration for NetworkPolicy. This only tracks whether the addon
+ # is enabled or not on the Master, it does not track whether network policy
+ # is enabled for the nodes.
+ # is enabled or not on the Master, it does not track whether network policy
+ # is enabled for the nodes.
+ "disabled": True or False, # Whether NetworkPolicy is enabled for this cluster.
+ },
+ "kubernetesDashboard": { # Configuration for the Kubernetes Dashboard. # Configuration for the Kubernetes Dashboard.
+ # This addon is deprecated, and will be disabled in 1.15. It is recommended
+ # to use the Cloud Console to manage and monitor your Kubernetes clusters,
+ # workloads and applications. For more information, see:
+ # https://cloud.google.com/kubernetes-engine/docs/concepts/dashboards
+ "disabled": True or False, # Whether the Kubernetes Dashboard is enabled for this cluster.
+ },
+ "httpLoadBalancing": { # Configuration options for the HTTP (L7) load balancing controller addon, # Configuration for the HTTP (L7) load balancing controller addon, which
+ # makes it easy to set up HTTP load balancers for services in a cluster.
+ # which makes it easy to set up HTTP load balancers for services in a cluster.
+ "disabled": True or False, # Whether the HTTP Load Balancing controller is enabled in the cluster.
+ # When enabled, it runs a small pod in the cluster that manages the load
+ # balancers.
+ },
+ "istioConfig": { # Configuration options for Istio addon. # Configuration for Istio, an open platform to connect, manage, and secure
+ # microservices.
+ "disabled": True or False, # Whether Istio is enabled for this cluster.
+ "auth": "A String", # The specified Istio auth mode, either none, or mutual TLS.
+ },
+ "horizontalPodAutoscaling": { # Configuration options for the horizontal pod autoscaling feature, which # Configuration for the horizontal pod autoscaling feature, which
+ # increases or decreases the number of replica pods a replication controller
+ # has based on the resource usage of the existing pods.
+ # increases or decreases the number of replica pods a replication controller
+ # has based on the resource usage of the existing pods.
+ "disabled": True or False, # Whether the Horizontal Pod Autoscaling feature is enabled in the cluster.
+ # When enabled, it ensures that metrics are collected into Stackdriver
+ # Monitoring.
+ },
+ "cloudRunConfig": { # Configuration options for the Cloud Run feature. # Configuration for the Cloud Run addon. The `IstioConfig` addon must be
+ # enabled in order to enable Cloud Run addon. This option can only be enabled
+ # at cluster creation time.
+ "disabled": True or False, # Whether Cloud Run addon is enabled for this cluster.
+ },
+ "kalmConfig": { # Configuration options for the KALM addon. # Configuration for the KALM addon, which manages the lifecycle of k8s
+ # applications.
+ "enabled": True or False, # Whether KALM is enabled for this cluster.
+ },
+ },
+ "createTime": "A String", # [Output only] The time the cluster was created, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "clusterIpv4Cidr": "A String", # The IP address range of the container pods in this cluster, in
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `10.96.0.0/14`). Leave blank to have
+ # one automatically chosen or specify a `/14` block in `10.0.0.0/8`.
+ "legacyAbac": { # Configuration for the legacy Attribute Based Access Control authorization # Configuration for the legacy ABAC authorization mode.
+ # mode.
+ "enabled": True or False, # Whether the ABAC authorizer is enabled for this cluster. When enabled,
+ # identities in the system, including service accounts, nodes, and
+ # controllers, will have statically granted permissions beyond those
+ # provided by the RBAC configuration or IAM.
+ },
+ "binaryAuthorization": { # Configuration for Binary Authorization. # Configuration for Binary Authorization.
+ "enabled": True or False, # Enable Binary Authorization for this cluster. If enabled, all container
+ # images will be validated by Google Binauthz.
+ },
+ "currentNodeVersion": "A String", # [Output only] Deprecated, use
+ # [NodePool.version](https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1beta1/projects.locations.clusters.nodePools)
+ # instead. The current version of the node software components.
+ # If they are currently at multiple versions because they're in the process
+ # of being upgraded, this reflects the minimum version of all nodes.
+ "currentNodeCount": 42, # [Output only] The number of nodes currently in the cluster. Deprecated.
+ # Call Kubernetes API directly to retrieve node information.
+ "ipAllocationPolicy": { # Configuration for controlling how IPs are allocated in the cluster. # Configuration for cluster IP allocation.
+ "servicesIpv4CidrBlock": "A String", # The IP address range of the services IPs in this cluster. If blank, a range
+ # will be automatically chosen with the default size.
+ #
+ # This field is only applicable when `use_ip_aliases` is true.
+ #
+ # Set to blank to have a range chosen with the default size.
+ #
+ # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
+ # netmask.
+ #
+ # Set to a
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
+ # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
+ # to use.
+ "servicesIpv4Cidr": "A String", # This field is deprecated, use services_ipv4_cidr_block.
+ "tpuIpv4CidrBlock": "A String", # The IP address range of the Cloud TPUs in this cluster. If unspecified, a
+ # range will be automatically chosen with the default size.
+ #
+ # This field is only applicable when `use_ip_aliases` is true.
+ #
+ # If unspecified, the range will use the default size.
+ #
+ # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
+ # netmask.
+ #
+ # Set to a
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
+ # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
+ # to use.
+ # This field is deprecated, use cluster.tpu_config.ipv4_cidr_block instead.
+ "useIpAliases": True or False, # Whether alias IPs will be used for pod IPs in the cluster.
+ # This is used in conjunction with use_routes. It cannot
+ # be true if use_routes is true. If both use_ip_aliases and use_routes are
+ # false, then the server picks the default IP allocation mode
+ "nodeIpv4Cidr": "A String", # This field is deprecated, use node_ipv4_cidr_block.
+ "createSubnetwork": True or False, # Whether a new subnetwork will be created automatically for the cluster.
+ #
+ # This field is only applicable when `use_ip_aliases` is true.
+ "clusterSecondaryRangeName": "A String", # The name of the secondary range to be used for the cluster CIDR
+ # block. The secondary range will be used for pod IP
+ # addresses. This must be an existing secondary range associated
+ # with the cluster subnetwork.
+ #
+ # This field is only applicable with use_ip_aliases and
+ # create_subnetwork is false.
+ "servicesSecondaryRangeName": "A String", # The name of the secondary range to be used as for the services
+ # CIDR block. The secondary range will be used for service
+ # ClusterIPs. This must be an existing secondary range associated
+ # with the cluster subnetwork.
+ #
+ # This field is only applicable with use_ip_aliases and
+ # create_subnetwork is false.
+ "useRoutes": True or False, # Whether routes will be used for pod IPs in the cluster.
+ # This is used in conjunction with use_ip_aliases. It cannot be true if
+ # use_ip_aliases is true. If both use_ip_aliases and use_routes are false,
+ # then the server picks the default IP allocation mode
+ "subnetworkName": "A String", # A custom subnetwork name to be used if `create_subnetwork` is true. If
+ # this field is empty, then an automatic name will be chosen for the new
+ # subnetwork.
+ "allowRouteOverlap": True or False, # If true, allow allocation of cluster CIDR ranges that overlap with certain
+ # kinds of network routes. By default we do not allow cluster CIDR ranges to
+ # intersect with any user declared routes. With allow_route_overlap == true,
+ # we allow overlapping with CIDR ranges that are larger than the cluster CIDR
+ # range.
+ #
+ # If this field is set to true, then cluster and services CIDRs must be
+ # fully-specified (e.g. `10.96.0.0/14`, but not `/14`), which means:
+ # 1) When `use_ip_aliases` is true, `cluster_ipv4_cidr_block` and
+ # `services_ipv4_cidr_block` must be fully-specified.
+ # 2) When `use_ip_aliases` is false, `cluster.cluster_ipv4_cidr` muse be
+ # fully-specified.
+ "clusterIpv4Cidr": "A String", # This field is deprecated, use cluster_ipv4_cidr_block.
+ "nodeIpv4CidrBlock": "A String", # The IP address range of the instance IPs in this cluster.
+ #
+ # This is applicable only if `create_subnetwork` is true.
+ #
+ # Set to blank to have a range chosen with the default size.
+ #
+ # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
+ # netmask.
+ #
+ # Set to a
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
+ # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
+ # to use.
+ "clusterIpv4CidrBlock": "A String", # The IP address range for the cluster pod IPs. If this field is set, then
+ # `cluster.cluster_ipv4_cidr` must be left blank.
+ #
+ # This field is only applicable when `use_ip_aliases` is true.
+ #
+ # Set to blank to have a range chosen with the default size.
+ #
+ # Set to /netmask (e.g. `/14`) to have a range chosen with a specific
+ # netmask.
+ #
+ # Set to a
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
+ # `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
+ # to use.
+ },
+ "networkPolicy": { # Configuration options for the NetworkPolicy feature. # Configuration options for the NetworkPolicy feature.
+ # https://kubernetes.io/docs/concepts/services-networking/networkpolicies/
+ "provider": "A String", # The selected network policy provider.
+ "enabled": True or False, # Whether network policy is enabled on the cluster.
+ },
+ "privateClusterConfig": { # Configuration options for private clusters. # Configuration for private cluster.
+ "enablePrivateNodes": True or False, # Whether nodes have internal IP addresses only. If enabled, all nodes are
+ # given only RFC 1918 private addresses and communicate with the master via
+ # private networking.
+ "masterIpv4CidrBlock": "A String", # The IP range in CIDR notation to use for the hosted master network. This
+ # range will be used for assigning internal IP addresses to the master or
+ # set of masters, as well as the ILB VIP. This range must not overlap with
+ # any other ranges in use within the cluster's network.
+ "peeringName": "A String", # Output only. The peering name in the customer VPC used by this cluster.
+ "publicEndpoint": "A String", # Output only. The external IP address of this cluster's master endpoint.
+ "enablePrivateEndpoint": True or False, # Whether the master's internal IP address is used as the cluster endpoint.
+ "masterGlobalAccessConfig": { # Configuration for controlling master global access settings. # Controls master global access settings.
+ "enabled": True or False, # Whenever master is accessible globally or not.
+ },
+ "privateEndpoint": "A String", # Output only. The internal IP address of this cluster's master endpoint.
+ },
+ "enableTpu": True or False, # Enable the ability to use Cloud TPUs in this cluster.
+ # This field is deprecated, use tpu_config.enabled instead.
+ "workloadIdentityConfig": { # Configuration for the use of Kubernetes Service Accounts in GCP IAM # Configuration for the use of Kubernetes Service Accounts in GCP IAM
+ # policies.
+ # policies.
+ "identityNamespace": "A String", # IAM Identity Namespace to attach all Kubernetes Service Accounts to.
+ "identityProvider": "A String", # identity provider is the third party identity provider.
+ "workloadPool": "A String", # The workload pool to attach all Kubernetes service accounts to.
+ },
+ "monitoringService": "A String", # The monitoring service the cluster should use to write metrics.
+ # Currently available options:
+ #
+ # * "monitoring.googleapis.com/kubernetes" - The Cloud Monitoring
+ # service with a Kubernetes-native resource model
+ # * `monitoring.googleapis.com` - The legacy Cloud Monitoring service (no
+ # longer available as of GKE 1.15).
+ # * `none` - No metrics will be exported from the cluster.
+ #
+ # If left as an empty string,`monitoring.googleapis.com/kubernetes` will be
+ # used for GKE 1.14+ or `monitoring.googleapis.com` for earlier versions.
+ "networkConfig": { # NetworkConfig reports the relative names of network & subnetwork. # Configuration for cluster networking.
+ "defaultSnatStatus": { # DefaultSnatStatus contains the desired state of whether default sNAT should # Whether the cluster disables default in-node sNAT rules. In-node sNAT rules
+ # will be disabled when default_snat_status is disabled. When disabled is set
+ # to false, default IP masquerade rules will be applied to the nodes to
+ # prevent sNAT on cluster internal traffic.
+ # be disabled on the cluster.
+ "disabled": True or False, # Disables cluster default sNAT rules.
+ },
+ "enableIntraNodeVisibility": True or False, # Whether Intra-node visibility is enabled for this cluster.
+ # This makes same node pod to pod traffic visible for VPC network.
+ "subnetwork": "A String", # Output only. The relative name of the Google Compute Engine
+ # [subnetwork](https://cloud.google.com/compute/docs/vpc) to which the
+ # cluster is connected. Example:
+ # projects/my-project/regions/us-central1/subnetworks/my-subnet
+ "network": "A String", # Output only. The relative name of the Google Compute Engine
+ # network(https://cloud.google.com/compute/docs/networks-and-firewalls#networks)
+ # to which the cluster is connected. Example:
+ # projects/my-project/global/networks/my-network
+ },
+ "shieldedNodes": { # Configuration of Shielded Nodes feature. # Shielded Nodes configuration.
+ "enabled": True or False, # Whether Shielded Nodes features are enabled on all nodes in this cluster.
+ },
+ "masterAuth": { # The authentication information for accessing the master endpoint. # The authentication information for accessing the master endpoint.
+ # If unspecified, the defaults are used:
+ # For clusters before v1.12, if master_auth is unspecified, `username` will
+ # be set to "admin", a random password will be generated, and a client
+ # certificate will be issued.
+ # Authentication can be done using HTTP basic auth or using client
+ # certificates.
+ "clusterCaCertificate": "A String",
+ "username": "A String", # The username to use for HTTP basic authentication to the master endpoint.
+ # For clusters v1.6.0 and later, basic authentication can be disabled by
+ # leaving username unspecified (or setting it to the empty string).
+ "clientCertificate": "A String", # [Output only] Base64-encoded public certificate used by clients to
+ # authenticate to the cluster endpoint.
+ "password": "A String", # The password to use for HTTP basic authentication to the master endpoint.
+ # Because the master endpoint is open to the Internet, you should create a
+ # strong password. If a password is provided for cluster creation, username
+ # must be non-empty.
+ "clientCertificateConfig": { # Configuration for client certificates on the cluster. # Configuration for client certificate authentication on the cluster. For
+ # clusters before v1.12, if no configuration is specified, a client
+ # certificate is issued.
+ "issueClientCertificate": True or False, # Issue a client certificate.
+ },
+ "clientKey": "A String", # [Output only] Base64-encoded private key used by clients to authenticate
+ # to the cluster endpoint.
+ },
+ "initialClusterVersion": "A String", # The initial Kubernetes version for this cluster. Valid versions are those
+ # found in validMasterVersions returned by getServerConfig. The version can
+ # be upgraded over time; such upgrades are reflected in
+ # currentMasterVersion and currentNodeVersion.
+ #
+ # Users may specify either explicit versions offered by
+ # Kubernetes Engine or version aliases, which have the following behavior:
+ #
+ # - "latest": picks the highest valid Kubernetes version
+ # - "1.X": picks the highest valid patch+gke.N patch in the 1.X version
+ # - "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
+ # - "1.X.Y-gke.N": picks an explicit Kubernetes version
+ # - "","-": picks the default Kubernetes version
+ "privateCluster": True or False, # If this is a private cluster setup. Private clusters are clusters that, by
+ # default have no external IP addresses on the nodes and where nodes and the
+ # master communicate over private IP addresses.
+ # This field is deprecated, use private_cluster_config.enable_private_nodes
+ # instead.
+ "nodeConfig": { # Parameters that describe the nodes in a cluster. # Parameters used in creating the cluster's nodes.
+ # For requests, this field should only be used in lieu of a
+ # "node_pool" object, since this configuration (along with the
+ # "initial_node_count") will be used to create a "NodePool" object with an
+ # auto-generated name. Do not use this and a node_pool at the same time.
+ # For responses, this field will be populated with the node configuration of
+ # the first node pool. (For configuration of each node pool, see
+ # `node_pool.config`)
+ #
+ # If unspecified, the defaults are used.
+ # This field is deprecated, use node_pool.config instead.
"oauthScopes": [ # The set of Google API scopes to be made available on all of the
# node VMs under the "default" service account.
#
@@ -3693,6 +3401,87 @@
# Monitoring are enabled, in which case their required scopes will be added.
"A String",
],
+ "metadata": { # The metadata key/value pairs assigned to instances in the cluster.
+ #
+ # Keys must conform to the regexp [a-zA-Z0-9-_]+ and be less than 128 bytes
+ # in length. These are reflected as part of a URL in the metadata server.
+ # Additionally, to avoid ambiguity, keys must not conflict with any other
+ # metadata keys for the project or be one of the reserved keys:
+ # "cluster-location"
+ # "cluster-name"
+ # "cluster-uid"
+ # "configure-sh"
+ # "containerd-configure-sh"
+ # "enable-oslogin"
+ # "gci-ensure-gke-docker"
+ # "gci-metrics-enabled"
+ # "gci-update-strategy"
+ # "instance-template"
+ # "kube-env"
+ # "startup-script"
+ # "user-data"
+ # "disable-address-manager"
+ # "windows-startup-script-ps1"
+ # "common-psm1"
+ # "k8s-node-setup-psm1"
+ # "install-ssh-psm1"
+ # "user-profile-psm1"
+ # "serial-port-logging-enable"
+ # Values are free-form strings, and only have meaning as interpreted by
+ # the image running in the instance. The only restriction placed on them is
+ # that each value's size must be less than or equal to 32 KB.
+ #
+ # The total size of all keys and values must be less than 512 KB.
+ "a_key": "A String",
+ },
+ "machineType": "A String", # The name of a Google Compute Engine [machine
+ # type](https://cloud.google.com/compute/docs/machine-types) (e.g.
+ # `n1-standard-1`).
+ #
+ # If unspecified, the default machine type is
+ # `n1-standard-1`.
+ "nodeGroup": "A String", # Setting this field will assign instances of this
+ # pool to run on the specified node group. This is useful for running
+ # workloads on [sole tenant
+ # nodes](https://cloud.google.com/compute/docs/nodes/sole-tenant-nodes).
+ "shieldedInstanceConfig": { # A set of Shielded Instance options. # Shielded Instance options.
+ "enableSecureBoot": True or False, # Defines whether the instance has Secure Boot enabled.
+ #
+ # Secure Boot helps ensure that the system only runs authentic software by
+ # verifying the digital signature of all boot components, and halting the
+ # boot process if signature verification fails.
+ "enableIntegrityMonitoring": True or False, # Defines whether the instance has integrity monitoring enabled.
+ #
+ # Enables monitoring and attestation of the boot integrity of the instance.
+ # The attestation is performed against the integrity policy baseline. This
+ # baseline is initially derived from the implicitly trusted boot image when
+ # the instance is created.
+ },
+ "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
+ # Specify the email address of the Service Account; otherwise, if no Service
+ # Account is specified, the "default" service account is used.
+ "linuxNodeConfig": { # Parameters that can be configured on Linux nodes. # Parameters that can be configured on Linux nodes.
+ "sysctls": { # The Linux kernel parameters to be applied to the nodes and all pods running
+ # on the nodes.
+ #
+ # The following parameters are supported.
+ #
+ # net.core.netdev_max_backlog
+ # net.core.rmem_max
+ # net.core.wmem_default
+ # net.core.wmem_max
+ # net.core.optmem_max
+ # net.core.somaxconn
+ # net.ipv4.tcp_rmem
+ # net.ipv4.tcp_wmem
+ # net.ipv4.tcp_tw_reuse
+ "a_key": "A String",
+ },
+ },
+ "sandboxConfig": { # SandboxConfig contains configurations of the sandbox to use for the node. # Sandbox configuration for this node.
+ "type": "A String", # Type of the sandbox to use for the node.
+ "sandboxType": "A String", # Type of the sandbox to use for the node (e.g. 'gvisor')
+ },
"taints": [ # List of kubernetes taints to be applied to each node.
#
# For more information, including usage and the valid values, see:
@@ -3704,10 +3493,37 @@
# [here](https://kubernetes.io/docs/concepts/configuration/taint-and-toleration)
# for more information, including usage and the valid values.
"effect": "A String", # Effect for taint.
- "value": "A String", # Value for taint.
"key": "A String", # Key for taint.
+ "value": "A String", # Value for taint.
},
],
+ "kubeletConfig": { # Node kubelet configs. # Node kubelet configs.
+ "cpuCfsQuotaPeriod": "A String", # Set the CPU CFS quota period value 'cpu.cfs_period_us'.
+ #
+ # The string must be a sequence of decimal numbers, each with optional
+ # fraction and a unit suffix, such as "300ms".
+ # Valid time units are "ns", "us" (or "µs"), "ms", "s", "m", "h".
+ # The value must be a positive duration.
+ "cpuCfsQuota": True or False, # Enable CPU CFS quota enforcement for containers that specify CPU limits.
+ #
+ # If this option is enabled, kubelet uses CFS quota
+ # (https://www.kernel.org/doc/Documentation/scheduler/sched-bwc.txt) to
+ # enforce container CPU limits. Otherwise, CPU limits will not be enforced at
+ # all.
+ #
+ # Disable this option to mitigate CPU throttling problems while still having
+ # your pods to be in Guaranteed QoS class by specifying the CPU limits.
+ #
+ # The default value is 'true' if unspecified.
+ "cpuManagerPolicy": "A String", # Control the CPU management policy on the node.
+ # See
+ # https://kubernetes.io/docs/tasks/administer-cluster/cpu-management-policies/
+ #
+ # The following values are allowed.
+ # - "none": the default, which represents the existing scheduling behavior.
+ # - "static": allows pods with certain resource characteristics to be
+ # granted increased CPU affinity and exclusivity on the node.
+ },
"labels": { # The map of Kubernetes labels (key/value pairs) to be applied to each node.
# These will added in addition to any default label(s) that
# Kubernetes may apply to the node.
@@ -3718,10 +3534,9 @@
# https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
"a_key": "A String",
},
- "diskSizeGb": 42, # Size of the disk attached to each node, specified in GB.
- # The smallest allowed disk size is 10GB.
+ "diskType": "A String", # Type of the disk attached to each node (e.g. 'pd-standard' or 'pd-ssd')
#
- # If unspecified, the default disk size is 100GB.
+ # If unspecified, the default disk type is 'pd-standard'
"workloadMetadataConfig": { # WorkloadMetadataConfig defines the metadata configuration to expose to # The workload metadata configuration for this node.
# workloads on the node pool.
"nodeMetadata": "A String", # NodeMetadata is the configuration for how to expose metadata to the
@@ -3729,24 +3544,6 @@
"mode": "A String", # Mode is the configuration for how to expose metadata to workloads running
# on the node pool.
},
- "accelerators": [ # A list of hardware accelerators to be attached to each node.
- # See https://cloud.google.com/compute/docs/gpus for more information about
- # support for GPUs.
- { # AcceleratorConfig represents a Hardware Accelerator request.
- "acceleratorType": "A String", # The accelerator type resource name. List of supported accelerators
- # [here](https://cloud.google.com/compute/docs/gpus)
- "acceleratorCount": "A String", # The number of the accelerator cards exposed to an instance.
- },
- ],
- "machineType": "A String", # The name of a Google Compute Engine [machine
- # type](https://cloud.google.com/compute/docs/machine-types) (e.g.
- # `n1-standard-1`).
- #
- # If unspecified, the default machine type is
- # `n1-standard-1`.
- "diskType": "A String", # Type of the disk attached to each node (e.g. 'pd-standard' or 'pd-ssd')
- #
- # If unspecified, the default disk type is 'pd-standard'
"bootDiskKmsKey": "A String", #
# The Customer Managed Encryption Key used to encrypt the boot disk attached
# to each node in the node pool. This should be of the form
@@ -3754,107 +3551,91 @@
# For more information about protecting resources with Cloud KMS Keys please
# see:
# https://cloud.google.com/compute/docs/disks/customer-managed-encryption
- },
- "tpuConfig": { # Configuration for Cloud TPU. # Configuration for Cloud TPU support;
- "useServiceNetworking": True or False, # Whether to use service networking for Cloud TPU or not.
- "ipv4CidrBlock": "A String", # IPv4 CIDR block reserved for Cloud TPU in the VPC.
- "enabled": True or False, # Whether Cloud TPU integration is enabled or not.
- },
- "status": "A String", # [Output only] The current status of this cluster.
- "networkConfig": { # NetworkConfig reports the relative names of network & subnetwork. # Configuration for cluster networking.
- "enableIntraNodeVisibility": True or False, # Whether Intra-node visibility is enabled for this cluster.
- # This makes same node pod to pod traffic visible for VPC network.
- "subnetwork": "A String", # Output only. The relative name of the Google Compute Engine
- # [subnetwork](https://cloud.google.com/compute/docs/vpc) to which the
- # cluster is connected. Example:
- # projects/my-project/regions/us-central1/subnetworks/my-subnet
- "network": "A String", # Output only. The relative name of the Google Compute Engine
- # network(https://cloud.google.com/compute/docs/networks-and-firewalls#networks)
- # to which the cluster is connected. Example:
- # projects/my-project/global/networks/my-network
- "defaultSnatStatus": { # DefaultSnatStatus contains the desired state of whether default sNAT should # Whether the cluster disables default in-node sNAT rules. In-node sNAT rules
- # will be disabled when default_snat_status is disabled. When disabled is set
- # to false, default IP masquerade rules will be applied to the nodes to
- # prevent sNAT on cluster internal traffic.
- # be disabled on the cluster.
- "disabled": True or False, # Disables cluster default sNAT rules.
+ "diskSizeGb": 42, # Size of the disk attached to each node, specified in GB.
+ # The smallest allowed disk size is 10GB.
+ #
+ # If unspecified, the default disk size is 100GB.
+ "reservationAffinity": { # [ReservationAffinity](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources) # The optional reservation affinity. Setting this field will apply
+ # the specified [Zonal Compute
+ # Reservation](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources)
+ # to this node pool.
+ # is the configuration of desired reservation which instances could take
+ # capacity from.
+ "consumeReservationType": "A String", # Corresponds to the type of reservation consumption.
+ "key": "A String", # Corresponds to the label key of a reservation resource. To target a
+ # SPECIFIC_RESERVATION by name, specify "googleapis.com/reservation-name" as
+ # the key and specify the name of your reservation as its value.
+ "values": [ # Corresponds to the label value(s) of reservation resource(s).
+ "A String",
+ ],
},
+ "preemptible": True or False, # Whether the nodes are created as preemptible VM instances. See:
+ # https://cloud.google.com/compute/docs/instances/preemptible for more
+ # inforamtion about preemptible VM instances.
+ "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
+ # scheduled on the specified or newer CPU platform. Applicable values are the
+ # friendly names of CPU platforms, such as
+ # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
+ # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
+ # information, read [how to specify min CPU
+ # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
+ "tags": [ # The list of instance tags applied to all nodes. Tags are used to identify
+ # valid sources or targets for network firewalls and are specified by
+ # the client during cluster or node pool creation. Each tag within the list
+ # must comply with RFC1035.
+ "A String",
+ ],
+ "accelerators": [ # A list of hardware accelerators to be attached to each node.
+ # See https://cloud.google.com/compute/docs/gpus for more information about
+ # support for GPUs.
+ { # AcceleratorConfig represents a Hardware Accelerator request.
+ "acceleratorCount": "A String", # The number of the accelerator cards exposed to an instance.
+ "acceleratorType": "A String", # The accelerator type resource name. List of supported accelerators
+ # [here](https://cloud.google.com/compute/docs/gpus)
+ },
+ ],
+ "localSsdCount": 42, # The number of local SSD disks to be attached to the node.
+ #
+ # The limit for this value is dependent upon the maximum number of
+ # disks available on a machine per zone. See:
+ # https://cloud.google.com/compute/docs/disks/local-ssd
+ # for more information.
+ "imageType": "A String", # The image type to use for this node. Note that for a given image type,
+ # the latest version of it will be used.
},
- "name": "A String", # The name of this cluster. The name must be unique within this project
- # and location (e.g. zone or region), and can be up to 40 characters with
- # the following restrictions:
- #
- # * Lowercase letters, numbers, and hyphens only.
- # * Must start with a letter.
- # * Must end with a number or a letter.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "endpoint": "A String", # [Output only] The IP address of this cluster's master endpoint.
- # The endpoint can be accessed from the internet at
- # `https://username:password@endpoint/`.
- #
- # See the `masterAuth` property of this resource for username and
- # password information.
- "createTime": "A String", # [Output only] The time the cluster was created, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterIpv4Cidr": "A String", # The IP address range of the container pods in this cluster, in
+ "currentMasterVersion": "A String", # [Output only] The current software version of the master endpoint.
+ "masterAuthorizedNetworksConfig": { # Configuration options for the master authorized networks feature. Enabled # The configuration options for master authorized networks feature.
+ # master authorized networks will disallow all external traffic to access
+ # Kubernetes master through HTTPS except traffic from the given CIDR blocks,
+ # Google Compute Engine Public IPs and Google Prod IPs.
+ "cidrBlocks": [ # cidr_blocks define up to 10 external networks that could access
+ # Kubernetes master through HTTPS.
+ { # CidrBlock contains an optional name and one CIDR block.
+ "displayName": "A String", # display_name is an optional field for users to identify CIDR blocks.
+ "cidrBlock": "A String", # cidr_block must be specified in CIDR notation.
+ },
+ ],
+ "enabled": True or False, # Whether or not master authorized networks is enabled.
+ },
+ "servicesIpv4Cidr": "A String", # [Output only] The IP address range of the Kubernetes services in
+ # this cluster, in
# [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
- # notation (e.g. `10.96.0.0/14`). Leave blank to have
- # one automatically chosen or specify a `/14` block in `10.0.0.0/8`.
+ # notation (e.g. `1.2.3.4/29`). Service addresses are
+ # typically put in the last `/16` from the container CIDR.
+ "masterIpv4CidrBlock": "A String", # The IP prefix in CIDR notation to use for the hosted master network.
+ # This prefix will be used for assigning private IP addresses to the
+ # master or set of masters, as well as the ILB VIP.
+ # This field is deprecated, use
+ # private_cluster_config.master_ipv4_cidr_block instead.
"autoscaling": { # ClusterAutoscaling contains global, per-cluster information # Cluster-level autoscaling configuration.
# required by Cluster Autoscaler to automatically adjust
# the size of the cluster and create/delete
# node pools based on the current needs.
- "autoprovisioningLocations": [ # The list of Google Compute Engine
- # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
- # NodePool's nodes can be created by NAP.
- "A String",
- ],
- "resourceLimits": [ # Contains global constraints regarding minimum and maximum
- # amount of resources in the cluster.
- { # Contains information about amount of some resource in the cluster.
- # For memory, value should be in GB.
- "maximum": "A String", # Maximum amount of the resource in the cluster.
- "resourceType": "A String", # Resource name "cpu", "memory" or gpu-specific string.
- "minimum": "A String", # Minimum amount of the resource in the cluster.
- },
- ],
- "autoscalingProfile": "A String", # Defines autoscaling behaviour.
"enableNodeAutoprovisioning": True or False, # Enables automatic node pool creation and deletion.
"autoprovisioningNodePoolDefaults": { # AutoprovisioningNodePoolDefaults contains defaults for a node pool created # AutoprovisioningNodePoolDefaults contains defaults for a node pool
# created by NAP.
# by NAP.
- "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs. If
- # service_account is specified, scopes should be empty.
- "minCpuPlatform": "A String", # Minimum CPU platform to be used for NAP created node pools.
- # The instance may be scheduled on the specified or newer CPU platform.
- # Applicable values are the friendly names of CPU platforms, such as
- # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
- # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
- # information, read [how to specify min CPU
- # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
- # To unset the min cpu platform field pass "automatic" as field value.
- "management": { # NodeManagement defines the set of node management services turned on for the # Specifies the node management options for NAP created node-pools.
- # node pool.
- "autoRepair": True or False, # Whether the nodes will be automatically repaired.
- "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
- "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
- # the Auto Upgrades will proceed.
- "description": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the description of the upgrade.
- "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the approximate start time for the upgrades, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- },
- },
- "oauthScopes": [ # Scopes that are used by NAP when creating node pools. If oauth_scopes are
- # specified, service_account should be empty.
- "A String",
- ],
- "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Specifies the upgrade settings for NAP created node pools
+ "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Upgrade settings control disruption and speed of the upgrade.
# disruption caused by an upgrade.
#
# maxUnavailable controls the number of nodes that can be simultaneously
@@ -3883,10 +3664,548 @@
"maxSurge": 42, # The maximum number of nodes that can be created beyond the current size
# of the node pool during the upgrade process.
},
+ "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
+ # Specify the email address of the Service Account; otherwise, if no Service
+ # Account is specified, the "default" service account is used.
+ "oauthScopes": [ # The set of Google API scopes to be made available on all of the
+ # node VMs under the "default" service account.
+ #
+ # The following scopes are recommended, but not required, and by default are
+ # not included:
+ #
+ # * `https://www.googleapis.com/auth/compute` is required for mounting
+ # persistent storage on your nodes.
+ # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
+ # communicating with **gcr.io**
+ # (the [Google Container
+ # Registry](https://cloud.google.com/container-registry/)).
+ #
+ # If unspecified, no scopes are added, unless Cloud Logging or Cloud
+ # Monitoring are enabled, in which case their required scopes will be added.
+ "A String",
+ ],
+ "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
+ # scheduled on the specified or newer CPU platform. Applicable values are the
+ # friendly names of CPU platforms, such as
+ # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
+ # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
+ # information, read [how to specify min CPU
+ # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
+ # To unset the min cpu platform field pass "automatic"
+ # as field value.
+ "management": { # NodeManagement defines the set of node management services turned on for the # NodeManagement configuration for this NodePool.
+ # node pool.
+ "autoRepair": True or False, # Whether the nodes will be automatically repaired.
+ "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
+ "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
+ # the Auto Upgrades will proceed.
+ "description": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the description of the upgrade.
+ "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the approximate start time for the upgrades, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ },
+ },
},
+ "autoscalingProfile": "A String", # Defines autoscaling behaviour.
+ "resourceLimits": [ # Contains global constraints regarding minimum and maximum
+ # amount of resources in the cluster.
+ { # Contains information about amount of some resource in the cluster.
+ # For memory, value should be in GB.
+ "minimum": "A String", # Minimum amount of the resource in the cluster.
+ "maximum": "A String", # Maximum amount of the resource in the cluster.
+ "resourceType": "A String", # Resource name "cpu", "memory" or gpu-specific string.
+ },
+ ],
+ "autoprovisioningLocations": [ # The list of Google Compute Engine
+ # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
+ # NodePool's nodes can be created by NAP.
+ "A String",
+ ],
},
+ "locations": [ # The list of Google Compute Engine
+ # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster's nodes should be located.
+ "A String",
+ ],
+ "conditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "loggingService": "A String", # The logging service the cluster should use to write logs.
+ # Currently available options:
+ #
+ # * `logging.googleapis.com/kubernetes` - The Cloud Logging
+ # service with a Kubernetes-native resource model
+ # * `logging.googleapis.com` - The legacy Cloud Logging service (no longer
+ # available as of GKE 1.15).
+ # * `none` - no logs will be exported from the cluster.
+ #
+ # If left as an empty string,`logging.googleapis.com/kubernetes` will be
+ # used for GKE 1.14+ or `logging.googleapis.com` for earlier versions.
+ "enableKubernetesAlpha": True or False, # Kubernetes alpha features are enabled on this cluster. This includes alpha
+ # API groups (e.g. v1beta1) and features that may not be production ready in
+ # the kubernetes version of the master and nodes.
+ # The cluster has no SLA for uptime and master/node upgrades are disabled.
+ # Alpha enabled clusters are automatically deleted thirty days after
+ # creation.
+ "instanceGroupUrls": [ # Deprecated. Use node_pools.instance_group_urls.
+ "A String",
+ ],
+ "name": "A String", # The name of this cluster. The name must be unique within this project
+ # and location (e.g. zone or region), and can be up to 40 characters with
+ # the following restrictions:
+ #
+ # * Lowercase letters, numbers, and hyphens only.
+ # * Must start with a letter.
+ # * Must end with a number or a letter.
+ "master": { # Master is the configuration for components on master. # Configuration for master components.
+ },
+ "endpoint": "A String", # [Output only] The IP address of this cluster's master endpoint.
+ # The endpoint can be accessed from the internet at
+ # `https://username:password@endpoint/`.
+ #
+ # See the `masterAuth` property of this resource for username and
+ # password information.
+ "resourceUsageExportConfig": { # Configuration for exporting cluster resource usages. # Configuration for exporting resource usages. Resource usage export is
+ # disabled when this config unspecified.
+ "consumptionMeteringConfig": { # Parameters for controlling consumption metering. # Configuration to enable resource consumption metering.
+ "enabled": True or False, # Whether to enable consumption metering for this cluster. If enabled, a
+ # second BigQuery table will be created to hold resource consumption
+ # records.
+ },
+ "bigqueryDestination": { # Parameters for using BigQuery as the destination of resource usage export. # Configuration to use BigQuery as usage export destination.
+ "datasetId": "A String", # The ID of a BigQuery Dataset.
+ },
+ "enableNetworkEgressMetering": True or False, # Whether to enable network egress metering for this cluster. If enabled, a
+ # daemonset will be created in the cluster to meter network egress traffic.
+ },
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
+ "authenticatorGroupsConfig": { # Configuration for returning group information from authenticators. # Configuration controlling RBAC group membership information.
+ "securityGroup": "A String", # The name of the security group-of-groups to be used. Only relevant
+ # if enabled = true.
+ "enabled": True or False, # Whether this cluster should return group membership lookups
+ # during authentication using a group of security groups.
+ },
+ "subnetwork": "A String", # The name of the Google Compute Engine
+ # [subnetwork](https://cloud.google.com/compute/docs/subnetworks) to which
+ # the cluster is connected. On output this shows the subnetwork ID instead of
+ # the name.
+ "maintenancePolicy": { # MaintenancePolicy defines the maintenance policy to be used for the cluster. # Configure the maintenance policy for this cluster.
+ "window": { # MaintenanceWindow defines the maintenance window to be used for the cluster. # Specifies the maintenance window in which maintenance may be performed.
+ "recurringWindow": { # Represents an arbitrary window of time that recurs. # RecurringWindow specifies some number of recurring time periods for
+ # maintenance to occur. The time windows may be overlapping. If no
+ # maintenance windows are set, maintenance can occur at any time.
+ "recurrence": "A String", # An RRULE (https://tools.ietf.org/html/rfc5545#section-3.8.5.3) for how
+ # this window reccurs. They go on for the span of time between the start and
+ # end time.
+ #
+ # For example, to have something repeat every weekday, you'd use:
+ # <code>FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR</code>
+ # To repeat some window daily (equivalent to the DailyMaintenanceWindow):
+ # <code>FREQ=DAILY</code>
+ # For the first weekend of every month:
+ # <code>FREQ=MONTHLY;BYSETPOS=1;BYDAY=SA,SU</code>
+ # This specifies how frequently the window starts. Eg, if you wanted to have
+ # a 9-5 UTC-4 window every weekday, you'd use something like:
+ # <code>
+ # start time = 2019-01-01T09:00:00-0400
+ # end time = 2019-01-01T17:00:00-0400
+ # recurrence = FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR
+ # </code>
+ # Windows can span multiple days. Eg, to make the window encompass every
+ # weekend from midnight Saturday till the last minute of Sunday UTC:
+ # <code>
+ # start time = 2019-01-05T00:00:00Z
+ # end time = 2019-01-07T23:59:00Z
+ # recurrence = FREQ=WEEKLY;BYDAY=SA
+ # </code>
+ # Note the start and end time's specific dates are largely arbitrary except
+ # to specify duration of the window and when it first starts.
+ # The FREQ values of HOURLY, MINUTELY, and SECONDLY are not supported.
+ "window": { # Represents an arbitrary window of time. # The window of the first recurrence.
+ "endTime": "A String", # The time that the window ends. The end time should take place after the
+ # start time.
+ "startTime": "A String", # The time that the window first starts.
+ },
+ },
+ "dailyMaintenanceWindow": { # Time window specified for daily maintenance operations. # DailyMaintenanceWindow specifies a daily maintenance operation window.
+ "startTime": "A String", # Time within the maintenance window to start the maintenance operations.
+ # It must be in format "HH:MM", where HH : [00-23] and MM : [00-59] GMT.
+ "duration": "A String", # [Output only] Duration of the time window, automatically chosen to be
+ # smallest possible in the given scenario.
+ },
+ "maintenanceExclusions": { # Exceptions to maintenance window. Non-emergency maintenance should not
+ # occur in these windows.
+ "a_key": { # Represents an arbitrary window of time.
+ "endTime": "A String", # The time that the window ends. The end time should take place after the
+ # start time.
+ "startTime": "A String", # The time that the window first starts.
+ },
+ },
+ },
+ "resourceVersion": "A String", # A hash identifying the version of this policy, so that updates to fields of
+ # the policy won't accidentally undo intermediate changes (and so that users
+ # of the API unaware of some fields won't accidentally remove other fields).
+ # Make a <code>get()</code> request to the cluster to get the current
+ # resource version and include it with requests to set the policy.
+ },
+ "tpuConfig": { # Configuration for Cloud TPU. # Configuration for Cloud TPU support;
+ "ipv4CidrBlock": "A String", # IPv4 CIDR block reserved for Cloud TPU in the VPC.
+ "useServiceNetworking": True or False, # Whether to use service networking for Cloud TPU or not.
+ "enabled": True or False, # Whether Cloud TPU integration is enabled or not.
+ },
+ "nodePools": [ # The node pools associated with this cluster.
+ # This field should not be set if "node_config" or "initial_node_count" are
+ # specified.
+ { # NodePool contains the name and configuration for a cluster's node pool.
+ # Node pools are a set of nodes (i.e. VM's), with a common configuration and
+ # specification, under the control of the cluster master. They may have a set
+ # of Kubernetes labels applied to them, which may be used to reference them
+ # during pod scheduling. They may also be resized up or down, to accommodate
+ # the workload.
+ "status": "A String", # [Output only] The status of the nodes in this pool instance.
+ "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Upgrade settings control disruption and speed of the upgrade.
+ # disruption caused by an upgrade.
+ #
+ # maxUnavailable controls the number of nodes that can be simultaneously
+ # unavailable.
+ #
+ # maxSurge controls the number of additional nodes that can be added to the
+ # node pool temporarily for the time of the upgrade to increase the number of
+ # available nodes.
+ #
+ # (maxUnavailable + maxSurge) determines the level of parallelism (how many
+ # nodes are being upgraded at the same time).
+ #
+ # Note: upgrades inevitably introduce some disruption since workloads need to
+ # be moved from old nodes to new, upgraded ones. Even if maxUnavailable=0,
+ # this holds true. (Disruption stays within the limits of
+ # PodDisruptionBudget, if it is configured.)
+ #
+ # Consider a hypothetical node pool with 5 nodes having maxSurge=2,
+ # maxUnavailable=1. This means the upgrade process upgrades 3 nodes
+ # simultaneously. It creates 2 additional (upgraded) nodes, then it brings
+ # down 3 old (not yet upgraded) nodes at the same time. This ensures that
+ # there are always at least 4 nodes available.
+ "maxUnavailable": 42, # The maximum number of nodes that can be simultaneously unavailable during
+ # the upgrade process. A node is considered available if its status is
+ # Ready.
+ "maxSurge": 42, # The maximum number of nodes that can be created beyond the current size
+ # of the node pool during the upgrade process.
+ },
+ "instanceGroupUrls": [ # [Output only] The resource URLs of the [managed instance
+ # groups](https://cloud.google.com/compute/docs/instance-groups/creating-groups-of-managed-instances)
+ # associated with this node pool.
+ "A String",
+ ],
+ "autoscaling": { # NodePoolAutoscaling contains information required by cluster autoscaler to # Autoscaler configuration for this NodePool. Autoscaler is enabled
+ # only if a valid configuration is present.
+ # adjust the size of the node pool to the current cluster usage.
+ "autoprovisioned": True or False, # Can this node pool be deleted automatically.
+ "minNodeCount": 42, # Minimum number of nodes in the NodePool. Must be >= 1 and <=
+ # max_node_count.
+ "enabled": True or False, # Is autoscaling enabled for this node pool.
+ "maxNodeCount": 42, # Maximum number of nodes in the NodePool. Must be >= min_node_count. There
+ # has to enough quota to scale up the cluster.
+ },
+ "initialNodeCount": 42, # The initial node count for the pool. You must ensure that your
+ # Compute Engine [resource quota](https://cloud.google.com/compute/quotas)
+ # is sufficient for this number of instances. You must also have available
+ # firewall and routes quota.
+ "config": { # Parameters that describe the nodes in a cluster. # The node configuration of the pool.
+ "oauthScopes": [ # The set of Google API scopes to be made available on all of the
+ # node VMs under the "default" service account.
+ #
+ # The following scopes are recommended, but not required, and by default are
+ # not included:
+ #
+ # * `https://www.googleapis.com/auth/compute` is required for mounting
+ # persistent storage on your nodes.
+ # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
+ # communicating with **gcr.io**
+ # (the [Google Container
+ # Registry](https://cloud.google.com/container-registry/)).
+ #
+ # If unspecified, no scopes are added, unless Cloud Logging or Cloud
+ # Monitoring are enabled, in which case their required scopes will be added.
+ "A String",
+ ],
+ "metadata": { # The metadata key/value pairs assigned to instances in the cluster.
+ #
+ # Keys must conform to the regexp [a-zA-Z0-9-_]+ and be less than 128 bytes
+ # in length. These are reflected as part of a URL in the metadata server.
+ # Additionally, to avoid ambiguity, keys must not conflict with any other
+ # metadata keys for the project or be one of the reserved keys:
+ # "cluster-location"
+ # "cluster-name"
+ # "cluster-uid"
+ # "configure-sh"
+ # "containerd-configure-sh"
+ # "enable-oslogin"
+ # "gci-ensure-gke-docker"
+ # "gci-metrics-enabled"
+ # "gci-update-strategy"
+ # "instance-template"
+ # "kube-env"
+ # "startup-script"
+ # "user-data"
+ # "disable-address-manager"
+ # "windows-startup-script-ps1"
+ # "common-psm1"
+ # "k8s-node-setup-psm1"
+ # "install-ssh-psm1"
+ # "user-profile-psm1"
+ # "serial-port-logging-enable"
+ # Values are free-form strings, and only have meaning as interpreted by
+ # the image running in the instance. The only restriction placed on them is
+ # that each value's size must be less than or equal to 32 KB.
+ #
+ # The total size of all keys and values must be less than 512 KB.
+ "a_key": "A String",
+ },
+ "machineType": "A String", # The name of a Google Compute Engine [machine
+ # type](https://cloud.google.com/compute/docs/machine-types) (e.g.
+ # `n1-standard-1`).
+ #
+ # If unspecified, the default machine type is
+ # `n1-standard-1`.
+ "nodeGroup": "A String", # Setting this field will assign instances of this
+ # pool to run on the specified node group. This is useful for running
+ # workloads on [sole tenant
+ # nodes](https://cloud.google.com/compute/docs/nodes/sole-tenant-nodes).
+ "shieldedInstanceConfig": { # A set of Shielded Instance options. # Shielded Instance options.
+ "enableSecureBoot": True or False, # Defines whether the instance has Secure Boot enabled.
+ #
+ # Secure Boot helps ensure that the system only runs authentic software by
+ # verifying the digital signature of all boot components, and halting the
+ # boot process if signature verification fails.
+ "enableIntegrityMonitoring": True or False, # Defines whether the instance has integrity monitoring enabled.
+ #
+ # Enables monitoring and attestation of the boot integrity of the instance.
+ # The attestation is performed against the integrity policy baseline. This
+ # baseline is initially derived from the implicitly trusted boot image when
+ # the instance is created.
+ },
+ "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
+ # Specify the email address of the Service Account; otherwise, if no Service
+ # Account is specified, the "default" service account is used.
+ "linuxNodeConfig": { # Parameters that can be configured on Linux nodes. # Parameters that can be configured on Linux nodes.
+ "sysctls": { # The Linux kernel parameters to be applied to the nodes and all pods running
+ # on the nodes.
+ #
+ # The following parameters are supported.
+ #
+ # net.core.netdev_max_backlog
+ # net.core.rmem_max
+ # net.core.wmem_default
+ # net.core.wmem_max
+ # net.core.optmem_max
+ # net.core.somaxconn
+ # net.ipv4.tcp_rmem
+ # net.ipv4.tcp_wmem
+ # net.ipv4.tcp_tw_reuse
+ "a_key": "A String",
+ },
+ },
+ "sandboxConfig": { # SandboxConfig contains configurations of the sandbox to use for the node. # Sandbox configuration for this node.
+ "type": "A String", # Type of the sandbox to use for the node.
+ "sandboxType": "A String", # Type of the sandbox to use for the node (e.g. 'gvisor')
+ },
+ "taints": [ # List of kubernetes taints to be applied to each node.
+ #
+ # For more information, including usage and the valid values, see:
+ # https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+ { # Kubernetes taint is comprised of three fields: key, value, and effect. Effect
+ # can only be one of three types: NoSchedule, PreferNoSchedule or NoExecute.
+ #
+ # See
+ # [here](https://kubernetes.io/docs/concepts/configuration/taint-and-toleration)
+ # for more information, including usage and the valid values.
+ "effect": "A String", # Effect for taint.
+ "key": "A String", # Key for taint.
+ "value": "A String", # Value for taint.
+ },
+ ],
+ "kubeletConfig": { # Node kubelet configs. # Node kubelet configs.
+ "cpuCfsQuotaPeriod": "A String", # Set the CPU CFS quota period value 'cpu.cfs_period_us'.
+ #
+ # The string must be a sequence of decimal numbers, each with optional
+ # fraction and a unit suffix, such as "300ms".
+ # Valid time units are "ns", "us" (or "µs"), "ms", "s", "m", "h".
+ # The value must be a positive duration.
+ "cpuCfsQuota": True or False, # Enable CPU CFS quota enforcement for containers that specify CPU limits.
+ #
+ # If this option is enabled, kubelet uses CFS quota
+ # (https://www.kernel.org/doc/Documentation/scheduler/sched-bwc.txt) to
+ # enforce container CPU limits. Otherwise, CPU limits will not be enforced at
+ # all.
+ #
+ # Disable this option to mitigate CPU throttling problems while still having
+ # your pods to be in Guaranteed QoS class by specifying the CPU limits.
+ #
+ # The default value is 'true' if unspecified.
+ "cpuManagerPolicy": "A String", # Control the CPU management policy on the node.
+ # See
+ # https://kubernetes.io/docs/tasks/administer-cluster/cpu-management-policies/
+ #
+ # The following values are allowed.
+ # - "none": the default, which represents the existing scheduling behavior.
+ # - "static": allows pods with certain resource characteristics to be
+ # granted increased CPU affinity and exclusivity on the node.
+ },
+ "labels": { # The map of Kubernetes labels (key/value pairs) to be applied to each node.
+ # These will added in addition to any default label(s) that
+ # Kubernetes may apply to the node.
+ # In case of conflict in label keys, the applied set may differ depending on
+ # the Kubernetes version -- it's best to assume the behavior is undefined
+ # and conflicts should be avoided.
+ # For more information, including usage and the valid values, see:
+ # https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
+ "a_key": "A String",
+ },
+ "diskType": "A String", # Type of the disk attached to each node (e.g. 'pd-standard' or 'pd-ssd')
+ #
+ # If unspecified, the default disk type is 'pd-standard'
+ "workloadMetadataConfig": { # WorkloadMetadataConfig defines the metadata configuration to expose to # The workload metadata configuration for this node.
+ # workloads on the node pool.
+ "nodeMetadata": "A String", # NodeMetadata is the configuration for how to expose metadata to the
+ # workloads running on the node.
+ "mode": "A String", # Mode is the configuration for how to expose metadata to workloads running
+ # on the node pool.
+ },
+ "bootDiskKmsKey": "A String", #
+ # The Customer Managed Encryption Key used to encrypt the boot disk attached
+ # to each node in the node pool. This should be of the form
+ # projects/[KEY_PROJECT_ID]/locations/[LOCATION]/keyRings/[RING_NAME]/cryptoKeys/[KEY_NAME].
+ # For more information about protecting resources with Cloud KMS Keys please
+ # see:
+ # https://cloud.google.com/compute/docs/disks/customer-managed-encryption
+ "diskSizeGb": 42, # Size of the disk attached to each node, specified in GB.
+ # The smallest allowed disk size is 10GB.
+ #
+ # If unspecified, the default disk size is 100GB.
+ "reservationAffinity": { # [ReservationAffinity](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources) # The optional reservation affinity. Setting this field will apply
+ # the specified [Zonal Compute
+ # Reservation](https://cloud.google.com/compute/docs/instances/reserving-zonal-resources)
+ # to this node pool.
+ # is the configuration of desired reservation which instances could take
+ # capacity from.
+ "consumeReservationType": "A String", # Corresponds to the type of reservation consumption.
+ "key": "A String", # Corresponds to the label key of a reservation resource. To target a
+ # SPECIFIC_RESERVATION by name, specify "googleapis.com/reservation-name" as
+ # the key and specify the name of your reservation as its value.
+ "values": [ # Corresponds to the label value(s) of reservation resource(s).
+ "A String",
+ ],
+ },
+ "preemptible": True or False, # Whether the nodes are created as preemptible VM instances. See:
+ # https://cloud.google.com/compute/docs/instances/preemptible for more
+ # inforamtion about preemptible VM instances.
+ "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
+ # scheduled on the specified or newer CPU platform. Applicable values are the
+ # friendly names of CPU platforms, such as
+ # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
+ # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
+ # information, read [how to specify min CPU
+ # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
+ "tags": [ # The list of instance tags applied to all nodes. Tags are used to identify
+ # valid sources or targets for network firewalls and are specified by
+ # the client during cluster or node pool creation. Each tag within the list
+ # must comply with RFC1035.
+ "A String",
+ ],
+ "accelerators": [ # A list of hardware accelerators to be attached to each node.
+ # See https://cloud.google.com/compute/docs/gpus for more information about
+ # support for GPUs.
+ { # AcceleratorConfig represents a Hardware Accelerator request.
+ "acceleratorCount": "A String", # The number of the accelerator cards exposed to an instance.
+ "acceleratorType": "A String", # The accelerator type resource name. List of supported accelerators
+ # [here](https://cloud.google.com/compute/docs/gpus)
+ },
+ ],
+ "localSsdCount": 42, # The number of local SSD disks to be attached to the node.
+ #
+ # The limit for this value is dependent upon the maximum number of
+ # disks available on a machine per zone. See:
+ # https://cloud.google.com/compute/docs/disks/local-ssd
+ # for more information.
+ "imageType": "A String", # The image type to use for this node. Note that for a given image type,
+ # the latest version of it will be used.
+ },
+ "selfLink": "A String", # [Output only] Server-defined URL for the resource.
+ "management": { # NodeManagement defines the set of node management services turned on for the # NodeManagement configuration for this NodePool.
+ # node pool.
+ "autoRepair": True or False, # Whether the nodes will be automatically repaired.
+ "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
+ "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
+ # the Auto Upgrades will proceed.
+ "description": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the description of the upgrade.
+ "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the approximate start time for the upgrades, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ },
+ },
+ "name": "A String", # The name of the node pool.
+ "version": "A String", # The version of the Kubernetes of this node.
+ "maxPodsConstraint": { # Constraints applied to pods. # The constraint on the maximum number of pods that can be run
+ # simultaneously on a node in the node pool.
+ "maxPodsPerNode": "A String", # Constraint enforced on the max num of pods per node.
+ },
+ "statusMessage": "A String", # [Output only] Additional information about the current status of this
+ # node pool instance, if available.
+ "podIpv4CidrSize": 42, # [Output only] The pod CIDR block size per node in this node pool.
+ "conditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "locations": [ # The list of Google Compute Engine
+ # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
+ # NodePool's nodes should be located.
+ "A String",
+ ],
+ },
+ ],
+ "statusMessage": "A String", # [Output only] Additional information about the current status of this
+ # cluster, if available.
+ "releaseChannel": { # ReleaseChannel indicates which release channel a cluster is # Release channel configuration.
+ # subscribed to. Release channels are arranged in order of risk.
+ #
+ # When a cluster is subscribed to a release channel, Google maintains
+ # both the master version and the node version. Node auto-upgrade
+ # defaults to true and cannot be disabled.
+ "channel": "A String", # channel specifies which release channel the cluster is subscribed to.
+ },
+ "selfLink": "A String", # [Output only] Server-defined URL for the resource.
+ "defaultMaxPodsConstraint": { # Constraints applied to pods. # The default constraint on the maximum number of pods that can be run
+ # simultaneously on a node in the node pool of this cluster. Only honored
+ # if cluster created with IP Alias support.
+ "maxPodsPerNode": "A String", # Constraint enforced on the max num of pods per node.
+ },
+ "clusterTelemetry": { # Telemetry integration for the cluster. # Telemetry integration for the cluster.
+ "type": "A String", # Type of the integration.
+ },
+ "status": "A String", # [Output only] The current status of this cluster.
+ "resourceLabels": { # The resource labels for the cluster to use to annotate any related
+ # Google Compute Engine resources.
+ "a_key": "A String",
+ },
+ "tpuIpv4CidrBlock": "A String", # [Output only] The IP address range of the Cloud TPUs in this cluster, in
+ # [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+ # notation (e.g. `1.2.3.4/29`).
"initialNodeCount": 42, # The number of nodes to create in this cluster. You must ensure that your
- # Compute Engine <a href="/compute/docs/resource-quotas">resource quota</a>
+ # Compute Engine [resource quota](https://cloud.google.com/compute/quotas)
# is sufficient for this number of instances. You must also have available
# firewall and routes quota.
# For requests, this field should only be used in lieu of a
@@ -3895,15 +4214,38 @@
# auto-generated name. Do not use this and a node_pool at the same time.
#
# This field is deprecated, use node_pool.initial_node_count instead.
- "instanceGroupUrls": [ # Deprecated. Use node_pools.instance_group_urls.
- "A String",
- ],
+ "podSecurityPolicyConfig": { # Configuration for the PodSecurityPolicy feature. # Configuration for the PodSecurityPolicy feature.
+ "enabled": True or False, # Enable the PodSecurityPolicy controller for this cluster. If enabled, pods
+ # must be valid under a PodSecurityPolicy to be created.
+ },
+ "description": "A String", # An optional description of this cluster.
+ "databaseEncryption": { # Configuration of etcd encryption. # Configuration of etcd encryption.
+ "state": "A String", # Denotes the state of etcd encryption.
+ "keyName": "A String", # Name of CloudKMS key to use for the encryption of secrets in etcd.
+ # Ex. projects/my-project/locations/global/keyRings/my-ring/cryptoKeys/my-key
+ },
+ "network": "A String", # The name of the Google Compute Engine
+ # [network](https://cloud.google.com/compute/docs/networks-and-firewalls#networks)
+ # to which the cluster is connected. If left unspecified, the `default`
+ # network will be used. On output this shows the network ID instead of the
+ # name.
+ "zone": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster resides. This field is deprecated, use location instead.
+ "verticalPodAutoscaling": { # VerticalPodAutoscaling contains global, per-cluster information # Cluster-level Vertical Pod Autoscaling configuration.
+ # required by Vertical Pod Autoscaler to automatically adjust
+ # the resources of pods controlled by it.
+ "enabled": True or False, # Enables vertical pod autoscaling.
+ },
+ "expireTime": "A String", # [Output only] The time the cluster will be automatically
+ # deleted in [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "nodeIpv4CidrSize": 42, # [Output only] The size of the address space on each node for hosting
+ # containers. This is provisioned from within the `container_ipv4_cidr`
+ # range. This field will only be set when cluster is in route-based network
+ # mode.
+ "labelFingerprint": "A String", # The fingerprint of the set of labels for this cluster.
},
],
- "missingZones": [ # If any zones are listed here, the list of clusters returned
- # may be missing those zones.
- "A String",
- ],
}</pre>
</div>
@@ -3928,13 +4270,17 @@
The object takes the form of:
{ # SetLocationsRequest sets the locations of the cluster.
+ "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
+ # number](https://support.google.com/cloud/answer/6158840).
+ # This field has been deprecated and replaced by the name field.
"clusterId": "A String", # Required. Deprecated. The name of the cluster to upgrade.
# This field has been deprecated and replaced by the name field.
"name": "A String", # The name (project, location, cluster) of the cluster to set locations.
# Specified in the format `projects/*/locations/*/clusters/*`.
- "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
- # number](https://support.google.com/cloud/answer/6158840).
- # This field has been deprecated and replaced by the name field.
+ "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster resides. This field has been deprecated and replaced by the name
+ # field.
"locations": [ # Required. The desired list of Google Compute Engine
# [zones](https://cloud.google.com/compute/docs/zones#available) in which the
# cluster's nodes should be located. Changing the locations a cluster is in
@@ -3944,10 +4290,6 @@
# This list must always include the cluster's primary zone.
"A String",
],
- "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster resides. This field has been deprecated and replaced by the name
- # field.
}
x__xgafv: string, V1 error format.
@@ -3961,34 +4303,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -3996,25 +4319,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -4036,13 +4378,8 @@
The object takes the form of:
{ # SetLoggingServiceRequest sets the logging service of a cluster.
- "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
- # number](https://support.google.com/cloud/answer/6158840).
- # This field has been deprecated and replaced by the name field.
- "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster resides. This field has been deprecated and replaced by the name
- # field.
+ "name": "A String", # The name (project, location, cluster) of the cluster to set logging.
+ # Specified in the format `projects/*/locations/*/clusters/*`.
"clusterId": "A String", # Required. Deprecated. The name of the cluster to upgrade.
# This field has been deprecated and replaced by the name field.
"loggingService": "A String", # Required. The logging service the cluster should use to write logs.
@@ -4056,8 +4393,13 @@
#
# If left as an empty string,`logging.googleapis.com/kubernetes` will be
# used for GKE 1.14+ or `logging.googleapis.com` for earlier versions.
- "name": "A String", # The name (project, location, cluster) of the cluster to set logging.
- # Specified in the format `projects/*/locations/*/clusters/*`.
+ "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster resides. This field has been deprecated and replaced by the name
+ # field.
+ "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
+ # number](https://support.google.com/cloud/answer/6158840).
+ # This field has been deprecated and replaced by the name field.
}
x__xgafv: string, V1 error format.
@@ -4071,34 +4413,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -4106,25 +4429,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -4146,8 +4488,6 @@
The object takes the form of:
{ # UpdateMasterRequest updates the master of the cluster.
- "name": "A String", # The name (project, location, cluster) of the cluster to update.
- # Specified in the format `projects/*/locations/*/clusters/*`.
"projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
# number](https://support.google.com/cloud/answer/6158840).
# This field has been deprecated and replaced by the name field.
@@ -4161,12 +4501,14 @@
# - "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
# - "1.X.Y-gke.N": picks an explicit Kubernetes version
# - "-": picks the default Kubernetes version
+ "clusterId": "A String", # Required. Deprecated. The name of the cluster to upgrade.
+ # This field has been deprecated and replaced by the name field.
"zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# cluster resides. This field has been deprecated and replaced by the name
# field.
- "clusterId": "A String", # Required. Deprecated. The name of the cluster to upgrade.
- # This field has been deprecated and replaced by the name field.
+ "name": "A String", # The name (project, location, cluster) of the cluster to update.
+ # Specified in the format `projects/*/locations/*/clusters/*`.
}
x__xgafv: string, V1 error format.
@@ -4180,34 +4522,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -4215,25 +4538,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -4255,15 +4597,6 @@
The object takes the form of:
{ # SetMonitoringServiceRequest sets the monitoring service of a cluster.
- "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
- # number](https://support.google.com/cloud/answer/6158840).
- # This field has been deprecated and replaced by the name field.
- "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster resides. This field has been deprecated and replaced by the name
- # field.
- "clusterId": "A String", # Required. Deprecated. The name of the cluster to upgrade.
- # This field has been deprecated and replaced by the name field.
"monitoringService": "A String", # Required. The monitoring service the cluster should use to write metrics.
# Currently available options:
#
@@ -4275,6 +4608,15 @@
#
# If left as an empty string,`monitoring.googleapis.com/kubernetes` will be
# used for GKE 1.14+ or `monitoring.googleapis.com` for earlier versions.
+ "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster resides. This field has been deprecated and replaced by the name
+ # field.
+ "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
+ # number](https://support.google.com/cloud/answer/6158840).
+ # This field has been deprecated and replaced by the name field.
+ "clusterId": "A String", # Required. Deprecated. The name of the cluster to upgrade.
+ # This field has been deprecated and replaced by the name field.
"name": "A String", # The name (project, location, cluster) of the cluster to set monitoring.
# Specified in the format `projects/*/locations/*/clusters/*`.
}
@@ -4290,34 +4632,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -4325,25 +4648,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -4367,12 +4709,6 @@
{ # SetLabelsRequest sets the Google Cloud Platform labels on a Google Container
# Engine cluster, which will in turn set them for Google Compute Engine
# resources used by that cluster
- "labelFingerprint": "A String", # Required. The fingerprint of the previous set of labels for this resource,
- # used to detect conflicts. The fingerprint is initially generated by
- # Kubernetes Engine and changes after every request to modify or update
- # labels. You must always provide an up-to-date fingerprint hash when
- # updating or changing labels. Make a <code>get()</code> request to the
- # resource to get the latest fingerprint.
"zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# cluster resides. This field has been deprecated and replaced by the name
@@ -4385,6 +4721,12 @@
"projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
# number](https://developers.google.com/console/help/new/#projectnumber).
# This field has been deprecated and replaced by the name field.
+ "labelFingerprint": "A String", # Required. The fingerprint of the previous set of labels for this resource,
+ # used to detect conflicts. The fingerprint is initially generated by
+ # Kubernetes Engine and changes after every request to modify or update
+ # labels. You must always provide an up-to-date fingerprint hash when
+ # updating or changing labels. Make a <code>get()</code> request to the
+ # resource to get the latest fingerprint.
"clusterId": "A String", # Required. Deprecated. The name of the cluster.
# This field has been deprecated and replaced by the name field.
}
@@ -4400,34 +4742,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -4435,25 +4758,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -4472,20 +4814,16 @@
The object takes the form of:
{ # SetMaintenancePolicyRequest sets the maintenance policy for a cluster.
+ "clusterId": "A String", # Required. The name of the cluster to update.
+ "zone": "A String", # Required. The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster resides.
"name": "A String", # The name (project, location, cluster id) of the cluster to set maintenance
# policy.
# Specified in the format `projects/*/locations/*/clusters/*`.
"maintenancePolicy": { # MaintenancePolicy defines the maintenance policy to be used for the cluster. # Required. The maintenance policy to be set for the cluster. An empty field
# clears the existing maintenance policy.
"window": { # MaintenanceWindow defines the maintenance window to be used for the cluster. # Specifies the maintenance window in which maintenance may be performed.
- "maintenanceExclusions": { # Exceptions to maintenance window. Non-emergency maintenance should not
- # occur in these windows.
- "a_key": { # Represents an arbitrary window of time.
- "startTime": "A String", # The time that the window first starts.
- "endTime": "A String", # The time that the window ends. The end time should take place after the
- # start time.
- },
- },
"recurringWindow": { # Represents an arbitrary window of time that recurs. # RecurringWindow specifies some number of recurring time periods for
# maintenance to occur. The time windows may be overlapping. If no
# maintenance windows are set, maintenance can occur at any time.
@@ -4517,16 +4855,24 @@
# to specify duration of the window and when it first starts.
# The FREQ values of HOURLY, MINUTELY, and SECONDLY are not supported.
"window": { # Represents an arbitrary window of time. # The window of the first recurrence.
- "startTime": "A String", # The time that the window first starts.
"endTime": "A String", # The time that the window ends. The end time should take place after the
# start time.
+ "startTime": "A String", # The time that the window first starts.
},
},
"dailyMaintenanceWindow": { # Time window specified for daily maintenance operations. # DailyMaintenanceWindow specifies a daily maintenance operation window.
- "duration": "A String", # [Output only] Duration of the time window, automatically chosen to be
- # smallest possible in the given scenario.
"startTime": "A String", # Time within the maintenance window to start the maintenance operations.
# It must be in format "HH:MM", where HH : [00-23] and MM : [00-59] GMT.
+ "duration": "A String", # [Output only] Duration of the time window, automatically chosen to be
+ # smallest possible in the given scenario.
+ },
+ "maintenanceExclusions": { # Exceptions to maintenance window. Non-emergency maintenance should not
+ # occur in these windows.
+ "a_key": { # Represents an arbitrary window of time.
+ "endTime": "A String", # The time that the window ends. The end time should take place after the
+ # start time.
+ "startTime": "A String", # The time that the window first starts.
+ },
},
},
"resourceVersion": "A String", # A hash identifying the version of this policy, so that updates to fields of
@@ -4537,10 +4883,6 @@
},
"projectId": "A String", # Required. The Google Developers Console [project ID or project
# number](https://support.google.com/cloud/answer/6158840).
- "zone": "A String", # Required. The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster resides.
- "clusterId": "A String", # Required. The name of the cluster to update.
}
x__xgafv: string, V1 error format.
@@ -4554,34 +4896,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -4589,25 +4912,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -4634,14 +4976,15 @@
"name": "A String", # The name (project, location, cluster) of the cluster to set auth.
# Specified in the format `projects/*/locations/*/clusters/*`.
"action": "A String", # Required. The exact form of action to be taken on the master auth.
- "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
- # number](https://support.google.com/cloud/answer/6158840).
- # This field has been deprecated and replaced by the name field.
- "clusterId": "A String", # Required. Deprecated. The name of the cluster to upgrade.
- # This field has been deprecated and replaced by the name field.
"update": { # The authentication information for accessing the master endpoint. # Required. A description of the update.
# Authentication can be done using HTTP basic auth or using client
# certificates.
+ "clusterCaCertificate": "A String",
+ "username": "A String", # The username to use for HTTP basic authentication to the master endpoint.
+ # For clusters v1.6.0 and later, basic authentication can be disabled by
+ # leaving username unspecified (or setting it to the empty string).
+ "clientCertificate": "A String", # [Output only] Base64-encoded public certificate used by clients to
+ # authenticate to the cluster endpoint.
"password": "A String", # The password to use for HTTP basic authentication to the master endpoint.
# Because the master endpoint is open to the Internet, you should create a
# strong password. If a password is provided for cluster creation, username
@@ -4653,13 +4996,12 @@
},
"clientKey": "A String", # [Output only] Base64-encoded private key used by clients to authenticate
# to the cluster endpoint.
- "clusterCaCertificate": "A String",
- "clientCertificate": "A String", # [Output only] Base64-encoded public certificate used by clients to
- # authenticate to the cluster endpoint.
- "username": "A String", # The username to use for HTTP basic authentication to the master endpoint.
- # For clusters v1.6.0 and later, basic authentication can be disabled by
- # leaving username unspecified (or setting it to the empty string).
},
+ "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
+ # number](https://support.google.com/cloud/answer/6158840).
+ # This field has been deprecated and replaced by the name field.
+ "clusterId": "A String", # Required. Deprecated. The name of the cluster to upgrade.
+ # This field has been deprecated and replaced by the name field.
"zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# cluster resides. This field has been deprecated and replaced by the name
@@ -4677,34 +5019,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -4712,25 +5035,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -4752,6 +5094,8 @@
The object takes the form of:
{ # SetNetworkPolicyRequest enables/disables network policy for a cluster.
+ "clusterId": "A String", # Required. Deprecated. The name of the cluster.
+ # This field has been deprecated and replaced by the name field.
"projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
# number](https://developers.google.com/console/help/new/#projectnumber).
# This field has been deprecated and replaced by the name field.
@@ -4759,15 +5103,13 @@
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# cluster resides. This field has been deprecated and replaced by the name
# field.
- "clusterId": "A String", # Required. Deprecated. The name of the cluster.
- # This field has been deprecated and replaced by the name field.
+ "name": "A String", # The name (project, location, cluster id) of the cluster to set networking
+ # policy. Specified in the format `projects/*/locations/*/clusters/*`.
"networkPolicy": { # Configuration options for the NetworkPolicy feature. # Required. Configuration options for the NetworkPolicy feature.
# https://kubernetes.io/docs/concepts/services-networking/networkpolicies/
"provider": "A String", # The selected network policy provider.
"enabled": True or False, # Whether network policy is enabled on the cluster.
},
- "name": "A String", # The name (project, location, cluster id) of the cluster to set networking
- # policy. Specified in the format `projects/*/locations/*/clusters/*`.
}
x__xgafv: string, V1 error format.
@@ -4781,34 +5123,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -4816,25 +5139,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -4857,18 +5199,18 @@
{ # StartIPRotationRequest creates a new IP for the cluster and then performs
# a node upgrade on each node pool to point to the new IP.
+ "clusterId": "A String", # Required. Deprecated. The name of the cluster.
+ # This field has been deprecated and replaced by the name field.
"name": "A String", # The name (project, location, cluster id) of the cluster to start IP
# rotation. Specified in the format `projects/*/locations/*/clusters/*`.
- "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
- # number](https://developers.google.com/console/help/new/#projectnumber).
- # This field has been deprecated and replaced by the name field.
"zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# cluster resides. This field has been deprecated and replaced by the name
# field.
- "rotateCredentials": True or False, # Whether to rotate credentials during IP rotation.
- "clusterId": "A String", # Required. Deprecated. The name of the cluster.
+ "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
+ # number](https://developers.google.com/console/help/new/#projectnumber).
# This field has been deprecated and replaced by the name field.
+ "rotateCredentials": True or False, # Whether to rotate credentials during IP rotation.
}
x__xgafv: string, V1 error format.
@@ -4882,34 +5224,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -4917,25 +5240,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>
@@ -4959,80 +5301,34 @@
{ # UpdateClusterRequest updates the settings of a cluster.
"name": "A String", # The name (project, location, cluster) of the cluster to update.
# Specified in the format `projects/*/locations/*/clusters/*`.
- "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
- # number](https://support.google.com/cloud/answer/6158840).
- # This field has been deprecated and replaced by the name field.
- "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster resides. This field has been deprecated and replaced by the name
- # field.
"clusterId": "A String", # Required. Deprecated. The name of the cluster to upgrade.
# This field has been deprecated and replaced by the name field.
"update": { # ClusterUpdate describes an update to the cluster. Exactly one update can # Required. A description of the update.
# be applied to a cluster with each request, so at most one field can be
# provided.
- "desiredNodeVersion": "A String", # The Kubernetes version to change the nodes to (typically an
- # upgrade).
+ "desiredLoggingService": "A String", # The logging service the cluster should use to write logs.
+ # Currently available options:
#
- # Users may specify either explicit versions offered by
- # Kubernetes Engine or version aliases, which have the following behavior:
+ # * `logging.googleapis.com/kubernetes` - The Cloud Logging
+ # service with a Kubernetes-native resource model
+ # * `logging.googleapis.com` - The legacy Cloud Logging service (no longer
+ # available as of GKE 1.15).
+ # * `none` - no logs will be exported from the cluster.
#
- # - "latest": picks the highest valid Kubernetes version
- # - "1.X": picks the highest valid patch+gke.N patch in the 1.X version
- # - "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
- # - "1.X.Y-gke.N": picks an explicit Kubernetes version
- # - "-": picks the Kubernetes master version
+ # If left as an empty string,`logging.googleapis.com/kubernetes` will be
+ # used for GKE 1.14+ or `logging.googleapis.com` for earlier versions.
+ "desiredShieldedNodes": { # Configuration of Shielded Nodes feature. # Configuration for Shielded Nodes.
+ "enabled": True or False, # Whether Shielded Nodes features are enabled on all nodes in this cluster.
+ },
"desiredClusterAutoscaling": { # ClusterAutoscaling contains global, per-cluster information # Cluster-level autoscaling configuration.
# required by Cluster Autoscaler to automatically adjust
# the size of the cluster and create/delete
# node pools based on the current needs.
- "autoprovisioningLocations": [ # The list of Google Compute Engine
- # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
- # NodePool's nodes can be created by NAP.
- "A String",
- ],
- "resourceLimits": [ # Contains global constraints regarding minimum and maximum
- # amount of resources in the cluster.
- { # Contains information about amount of some resource in the cluster.
- # For memory, value should be in GB.
- "maximum": "A String", # Maximum amount of the resource in the cluster.
- "resourceType": "A String", # Resource name "cpu", "memory" or gpu-specific string.
- "minimum": "A String", # Minimum amount of the resource in the cluster.
- },
- ],
- "autoscalingProfile": "A String", # Defines autoscaling behaviour.
"enableNodeAutoprovisioning": True or False, # Enables automatic node pool creation and deletion.
"autoprovisioningNodePoolDefaults": { # AutoprovisioningNodePoolDefaults contains defaults for a node pool created # AutoprovisioningNodePoolDefaults contains defaults for a node pool
# created by NAP.
# by NAP.
- "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs. If
- # service_account is specified, scopes should be empty.
- "minCpuPlatform": "A String", # Minimum CPU platform to be used for NAP created node pools.
- # The instance may be scheduled on the specified or newer CPU platform.
- # Applicable values are the friendly names of CPU platforms, such as
- # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
- # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
- # information, read [how to specify min CPU
- # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
- # To unset the min cpu platform field pass "automatic" as field value.
- "management": { # NodeManagement defines the set of node management services turned on for the # Specifies the node management options for NAP created node-pools.
- # node pool.
- "autoRepair": True or False, # Whether the nodes will be automatically repaired.
- "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
- "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
- # the Auto Upgrades will proceed.
- "description": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the description of the upgrade.
- "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
- # with the approximate start time for the upgrades, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- },
- },
- "oauthScopes": [ # Scopes that are used by NAP when creating node pools. If oauth_scopes are
- # specified, service_account should be empty.
- "A String",
- ],
- "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Specifies the upgrade settings for NAP created node pools
+ "upgradeSettings": { # These upgrade settings control the level of parallelism and the level of # Upgrade settings control disruption and speed of the upgrade.
# disruption caused by an upgrade.
#
# maxUnavailable controls the number of nodes that can be simultaneously
@@ -5061,40 +5357,64 @@
"maxSurge": 42, # The maximum number of nodes that can be created beyond the current size
# of the node pool during the upgrade process.
},
+ "serviceAccount": "A String", # The Google Cloud Platform Service Account to be used by the node VMs.
+ # Specify the email address of the Service Account; otherwise, if no Service
+ # Account is specified, the "default" service account is used.
+ "oauthScopes": [ # The set of Google API scopes to be made available on all of the
+ # node VMs under the "default" service account.
+ #
+ # The following scopes are recommended, but not required, and by default are
+ # not included:
+ #
+ # * `https://www.googleapis.com/auth/compute` is required for mounting
+ # persistent storage on your nodes.
+ # * `https://www.googleapis.com/auth/devstorage.read_only` is required for
+ # communicating with **gcr.io**
+ # (the [Google Container
+ # Registry](https://cloud.google.com/container-registry/)).
+ #
+ # If unspecified, no scopes are added, unless Cloud Logging or Cloud
+ # Monitoring are enabled, in which case their required scopes will be added.
+ "A String",
+ ],
+ "minCpuPlatform": "A String", # Minimum CPU platform to be used by this instance. The instance may be
+ # scheduled on the specified or newer CPU platform. Applicable values are the
+ # friendly names of CPU platforms, such as
+ # <code>minCpuPlatform: &quot;Intel Haswell&quot;</code> or
+ # <code>minCpuPlatform: &quot;Intel Sandy Bridge&quot;</code>. For more
+ # information, read [how to specify min CPU
+ # platform](https://cloud.google.com/compute/docs/instances/specify-min-cpu-platform)
+ # To unset the min cpu platform field pass "automatic"
+ # as field value.
+ "management": { # NodeManagement defines the set of node management services turned on for the # NodeManagement configuration for this NodePool.
+ # node pool.
+ "autoRepair": True or False, # Whether the nodes will be automatically repaired.
+ "autoUpgrade": True or False, # Whether the nodes will be automatically upgraded.
+ "upgradeOptions": { # AutoUpgradeOptions defines the set of options for the user to control how # Specifies the Auto Upgrade knobs for the node pool.
+ # the Auto Upgrades will proceed.
+ "description": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the description of the upgrade.
+ "autoUpgradeStartTime": "A String", # [Output only] This field is set when upgrades are about to commence
+ # with the approximate start time for the upgrades, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ },
+ },
},
- },
- "desiredPodSecurityPolicyConfig": { # Configuration for the PodSecurityPolicy feature. # The desired configuration options for the PodSecurityPolicy feature.
- "enabled": True or False, # Enable the PodSecurityPolicy controller for this cluster. If enabled, pods
- # must be valid under a PodSecurityPolicy to be created.
- },
- "desiredIntraNodeVisibilityConfig": { # IntraNodeVisibilityConfig contains the desired config of the intra-node # The desired config of Intra-node visibility.
- # visibility on this cluster.
- "enabled": True or False, # Enables intra node visibility for this cluster.
- },
- "desiredMasterAuthorizedNetworksConfig": { # Configuration options for the master authorized networks feature. Enabled # The desired configuration options for master authorized networks feature.
- # master authorized networks will disallow all external traffic to access
- # Kubernetes master through HTTPS except traffic from the given CIDR blocks,
- # Google Compute Engine Public IPs and Google Prod IPs.
- "enabled": True or False, # Whether or not master authorized networks is enabled.
- "cidrBlocks": [ # cidr_blocks define up to 10 external networks that could access
- # Kubernetes master through HTTPS.
- { # CidrBlock contains an optional name and one CIDR block.
- "cidrBlock": "A String", # cidr_block must be specified in CIDR notation.
- "displayName": "A String", # display_name is an optional field for users to identify CIDR blocks.
+ "autoscalingProfile": "A String", # Defines autoscaling behaviour.
+ "resourceLimits": [ # Contains global constraints regarding minimum and maximum
+ # amount of resources in the cluster.
+ { # Contains information about amount of some resource in the cluster.
+ # For memory, value should be in GB.
+ "minimum": "A String", # Minimum amount of the resource in the cluster.
+ "maximum": "A String", # Maximum amount of the resource in the cluster.
+ "resourceType": "A String", # Resource name "cpu", "memory" or gpu-specific string.
},
],
- },
- "desiredResourceUsageExportConfig": { # Configuration for exporting cluster resource usages. # The desired configuration for exporting resource usage.
- "enableNetworkEgressMetering": True or False, # Whether to enable network egress metering for this cluster. If enabled, a
- # daemonset will be created in the cluster to meter network egress traffic.
- "consumptionMeteringConfig": { # Parameters for controlling consumption metering. # Configuration to enable resource consumption metering.
- "enabled": True or False, # Whether to enable consumption metering for this cluster. If enabled, a
- # second BigQuery table will be created to hold resource consumption
- # records.
- },
- "bigqueryDestination": { # Parameters for using BigQuery as the destination of resource usage export. # Configuration to use BigQuery as usage export destination.
- "datasetId": "A String", # The ID of a BigQuery Dataset.
- },
+ "autoprovisioningLocations": [ # The list of Google Compute Engine
+ # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
+ # NodePool's nodes can be created by NAP.
+ "A String",
+ ],
},
"desiredMonitoringService": "A String", # The monitoring service the cluster should use to write metrics.
# Currently available options:
@@ -5107,151 +5427,49 @@
#
# If left as an empty string,`monitoring.googleapis.com/kubernetes` will be
# used for GKE 1.14+ or `monitoring.googleapis.com` for earlier versions.
- "desiredImageType": "A String", # The desired image type for the node pool.
- # NOTE: Set the "desired_node_pool" field as well.
- "desiredWorkloadIdentityConfig": { # Configuration for the use of Kubernetes Service Accounts in GCP IAM # Configuration for Workload Identity.
- # policies.
- "workloadPool": "A String", # The workload pool to attach all Kubernetes service accounts to.
- "identityNamespace": "A String", # IAM Identity Namespace to attach all Kubernetes Service Accounts to.
- },
- "desiredReleaseChannel": { # ReleaseChannel indicates which release channel a cluster is # The desired release channel configuration.
- # subscribed to. Release channels are arranged in order of risk and
- # frequency of updates.
- #
- # When a cluster is subscribed to a release channel, Google maintains
- # both the master version and the node version. Node auto-upgrade
- # defaults to true and cannot be disabled. Updates to version related
- # fields (e.g. current_master_version) return an error.
- "channel": "A String", # channel specifies which release channel the cluster is subscribed to.
- },
- "desiredShieldedNodes": { # Configuration of Shielded Nodes feature. # Configuration for Shielded Nodes.
- "enabled": True or False, # Whether Shielded Nodes features are enabled on all nodes in this cluster.
- },
- "desiredPrivateClusterConfig": { # Configuration options for private clusters. # The desired private cluster configuration.
- "masterIpv4CidrBlock": "A String", # The IP range in CIDR notation to use for the hosted master network. This
- # range will be used for assigning internal IP addresses to the master or
- # set of masters, as well as the ILB VIP. This range must not overlap with
- # any other ranges in use within the cluster's network.
- "enablePrivateNodes": True or False, # Whether nodes have internal IP addresses only. If enabled, all nodes are
- # given only RFC 1918 private addresses and communicate with the master via
- # private networking.
- "privateEndpoint": "A String", # Output only. The internal IP address of this cluster's master endpoint.
- "enablePrivateEndpoint": True or False, # Whether the master's internal IP address is used as the cluster endpoint.
- "peeringName": "A String", # Output only. The peering name in the customer VPC used by this cluster.
- "masterGlobalAccessConfig": { # Configuration for controlling master global access settings. # Controls master global access settings.
- "enabled": True or False, # Whenever master is accessible globally or not.
- },
- "publicEndpoint": "A String", # Output only. The external IP address of this cluster's master endpoint.
- },
"desiredVerticalPodAutoscaling": { # VerticalPodAutoscaling contains global, per-cluster information # Cluster-level Vertical Pod Autoscaling configuration.
# required by Vertical Pod Autoscaler to automatically adjust
# the resources of pods controlled by it.
"enabled": True or False, # Enables vertical pod autoscaling.
},
- "desiredBinaryAuthorization": { # Configuration for Binary Authorization. # The desired configuration options for the Binary Authorization feature.
- "enabled": True or False, # Enable Binary Authorization for this cluster. If enabled, all container
- # images will be validated by Google Binauthz.
+ "desiredClusterTelemetry": { # Telemetry integration for the cluster. # The desired telemetry integration for the cluster.
+ "type": "A String", # Type of the integration.
},
- "desiredAddonsConfig": { # Configuration for the addons that can be automatically spun up in the # Configurations for the various addons available to run in the cluster.
- # cluster, enabling additional functionality.
- "httpLoadBalancing": { # Configuration options for the HTTP (L7) load balancing controller addon, # Configuration for the HTTP (L7) load balancing controller addon, which
- # makes it easy to set up HTTP load balancers for services in a cluster.
- # which makes it easy to set up HTTP load balancers for services in a cluster.
- "disabled": True or False, # Whether the HTTP Load Balancing controller is enabled in the cluster.
- # When enabled, it runs a small pod in the cluster that manages the load
- # balancers.
- },
- "kubernetesDashboard": { # Configuration for the Kubernetes Dashboard. # Configuration for the Kubernetes Dashboard.
- # This addon is deprecated, and will be disabled in 1.15. It is recommended
- # to use the Cloud Console to manage and monitor your Kubernetes clusters,
- # workloads and applications. For more information, see:
- # https://cloud.google.com/kubernetes-engine/docs/concepts/dashboards
- "disabled": True or False, # Whether the Kubernetes Dashboard is enabled for this cluster.
- },
- "dnsCacheConfig": { # Configuration for NodeLocal DNSCache # Configuration for NodeLocalDNS, a dns cache running on cluster nodes
- "enabled": True or False, # Whether NodeLocal DNSCache is enabled for this cluster.
- },
- "kalmConfig": { # Configuration options for the KALM addon. # Configuration for the KALM addon, which manages the lifecycle of k8s
- # applications.
- "enabled": True or False, # Whether KALM is enabled for this cluster.
- },
- "gcePersistentDiskCsiDriverConfig": { # Configuration for the Compute Engine PD CSI driver. This option can only be # Configuration for the Compute Engine Persistent Disk CSI driver.
- # enabled at cluster creation time.
- "enabled": True or False, # Whether the Compute Engine PD CSI driver is enabled for this cluster.
- },
- "istioConfig": { # Configuration options for Istio addon. # Configuration for Istio, an open platform to connect, manage, and secure
- # microservices.
- "auth": "A String", # The specified Istio auth mode, either none, or mutual TLS.
- "disabled": True or False, # Whether Istio is enabled for this cluster.
- },
- "networkPolicyConfig": { # Configuration for NetworkPolicy. This only tracks whether the addon # Configuration for NetworkPolicy. This only tracks whether the addon
- # is enabled or not on the Master, it does not track whether network policy
- # is enabled for the nodes.
- # is enabled or not on the Master, it does not track whether network policy
- # is enabled for the nodes.
- "disabled": True or False, # Whether NetworkPolicy is enabled for this cluster.
- },
- "cloudRunConfig": { # Configuration options for the Cloud Run feature. # Configuration for the Cloud Run addon. The `IstioConfig` addon must be
- # enabled in order to enable Cloud Run addon. This option can only be enabled
- # at cluster creation time.
- "disabled": True or False, # Whether Cloud Run addon is enabled for this cluster.
- },
- "configConnectorConfig": { # Configuration options for the Config Connector add-on. # Configuration for the ConfigConnector add-on, a Kubernetes
- # extension to manage hosted GCP services through the Kubernetes API
- "enabled": True or False, # Whether Cloud Connector is enabled for this cluster.
- },
- "horizontalPodAutoscaling": { # Configuration options for the horizontal pod autoscaling feature, which # Configuration for the horizontal pod autoscaling feature, which
- # increases or decreases the number of replica pods a replication controller
- # has based on the resource usage of the existing pods.
- # increases or decreases the number of replica pods a replication controller
- # has based on the resource usage of the existing pods.
- "disabled": True or False, # Whether the Horizontal Pod Autoscaling feature is enabled in the cluster.
- # When enabled, it ensures that metrics are collected into Stackdriver
- # Monitoring.
- },
+ "desiredReleaseChannel": { # ReleaseChannel indicates which release channel a cluster is # The desired release channel configuration.
+ # subscribed to. Release channels are arranged in order of risk.
+ #
+ # When a cluster is subscribed to a release channel, Google maintains
+ # both the master version and the node version. Node auto-upgrade
+ # defaults to true and cannot be disabled.
+ "channel": "A String", # channel specifies which release channel the cluster is subscribed to.
},
- "desiredDatabaseEncryption": { # Configuration of etcd encryption. # Configuration of etcd encryption.
- "state": "A String", # Denotes the state of etcd encryption.
- "keyName": "A String", # Name of CloudKMS key to use for the encryption of secrets in etcd.
- # Ex. projects/my-project/locations/global/keyRings/my-ring/cryptoKeys/my-key
+ "desiredTpuConfig": { # Configuration for Cloud TPU. # The desired Cloud TPU configuration.
+ "ipv4CidrBlock": "A String", # IPv4 CIDR block reserved for Cloud TPU in the VPC.
+ "useServiceNetworking": True or False, # Whether to use service networking for Cloud TPU or not.
+ "enabled": True or False, # Whether Cloud TPU integration is enabled or not.
+ },
+ "desiredMaster": { # Master is the configuration for components on master. # Configuration for master components.
},
"desiredDefaultSnatStatus": { # DefaultSnatStatus contains the desired state of whether default sNAT should # The desired status of whether to disable default sNAT for this cluster.
# be disabled on the cluster.
"disabled": True or False, # Disables cluster default sNAT rules.
},
- "desiredTpuConfig": { # Configuration for Cloud TPU. # The desired Cloud TPU configuration.
- "useServiceNetworking": True or False, # Whether to use service networking for Cloud TPU or not.
- "ipv4CidrBlock": "A String", # IPv4 CIDR block reserved for Cloud TPU in the VPC.
- "enabled": True or False, # Whether Cloud TPU integration is enabled or not.
+ "desiredPodSecurityPolicyConfig": { # Configuration for the PodSecurityPolicy feature. # The desired configuration options for the PodSecurityPolicy feature.
+ "enabled": True or False, # Enable the PodSecurityPolicy controller for this cluster. If enabled, pods
+ # must be valid under a PodSecurityPolicy to be created.
},
"desiredNodePoolAutoscaling": { # NodePoolAutoscaling contains information required by cluster autoscaler to # Autoscaler configuration for the node pool specified in
# desired_node_pool_id. If there is only one pool in the
# cluster and desired_node_pool_id is not provided then
# the change applies to that single node pool.
# adjust the size of the node pool to the current cluster usage.
- "maxNodeCount": 42, # Maximum number of nodes in the NodePool. Must be >= min_node_count. There
- # has to enough quota to scale up the cluster.
"autoprovisioned": True or False, # Can this node pool be deleted automatically.
"minNodeCount": 42, # Minimum number of nodes in the NodePool. Must be >= 1 and <=
# max_node_count.
"enabled": True or False, # Is autoscaling enabled for this node pool.
+ "maxNodeCount": 42, # Maximum number of nodes in the NodePool. Must be >= min_node_count. There
+ # has to enough quota to scale up the cluster.
},
- "desiredLocations": [ # The desired list of Google Compute Engine
- # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
- # cluster's nodes should be located. Changing the locations a cluster is in
- # will result in nodes being either created or removed from the cluster,
- # depending on whether locations are being added or removed.
- #
- # This list must always include the cluster's primary zone.
- "A String",
- ],
- "desiredClusterTelemetry": { # Telemetry integration for the cluster. # The desired telemetry integration for the cluster.
- "type": "A String", # Type of the integration.
- },
- "desiredNodePoolId": "A String", # The node pool to be upgraded. This field is mandatory if
- # "desired_node_version", "desired_image_family",
- # "desired_node_pool_autoscaling", or "desired_workload_metadata_config"
- # is specified and there is more than one node pool on the cluster.
"desiredMasterVersion": "A String", # The Kubernetes version to change the master to. The only valid value is the
# latest supported version.
#
@@ -5263,18 +5481,158 @@
# - "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
# - "1.X.Y-gke.N": picks an explicit Kubernetes version
# - "-": picks the default Kubernetes version
- "desiredLoggingService": "A String", # The logging service the cluster should use to write logs.
- # Currently available options:
+ "desiredNodeVersion": "A String", # The Kubernetes version to change the nodes to (typically an
+ # upgrade).
#
- # * `logging.googleapis.com/kubernetes` - The Cloud Logging
- # service with a Kubernetes-native resource model
- # * `logging.googleapis.com` - The legacy Cloud Logging service (no longer
- # available as of GKE 1.15).
- # * `none` - no logs will be exported from the cluster.
+ # Users may specify either explicit versions offered by
+ # Kubernetes Engine or version aliases, which have the following behavior:
#
- # If left as an empty string,`logging.googleapis.com/kubernetes` will be
- # used for GKE 1.14+ or `logging.googleapis.com` for earlier versions.
+ # - "latest": picks the highest valid Kubernetes version
+ # - "1.X": picks the highest valid patch+gke.N patch in the 1.X version
+ # - "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
+ # - "1.X.Y-gke.N": picks an explicit Kubernetes version
+ # - "-": picks the Kubernetes master version
+ "desiredMasterAuthorizedNetworksConfig": { # Configuration options for the master authorized networks feature. Enabled # The desired configuration options for master authorized networks feature.
+ # master authorized networks will disallow all external traffic to access
+ # Kubernetes master through HTTPS except traffic from the given CIDR blocks,
+ # Google Compute Engine Public IPs and Google Prod IPs.
+ "cidrBlocks": [ # cidr_blocks define up to 10 external networks that could access
+ # Kubernetes master through HTTPS.
+ { # CidrBlock contains an optional name and one CIDR block.
+ "displayName": "A String", # display_name is an optional field for users to identify CIDR blocks.
+ "cidrBlock": "A String", # cidr_block must be specified in CIDR notation.
+ },
+ ],
+ "enabled": True or False, # Whether or not master authorized networks is enabled.
+ },
+ "desiredDatabaseEncryption": { # Configuration of etcd encryption. # Configuration of etcd encryption.
+ "state": "A String", # Denotes the state of etcd encryption.
+ "keyName": "A String", # Name of CloudKMS key to use for the encryption of secrets in etcd.
+ # Ex. projects/my-project/locations/global/keyRings/my-ring/cryptoKeys/my-key
+ },
+ "desiredIntraNodeVisibilityConfig": { # IntraNodeVisibilityConfig contains the desired config of the intra-node # The desired config of Intra-node visibility.
+ # visibility on this cluster.
+ "enabled": True or False, # Enables intra node visibility for this cluster.
+ },
+ "desiredAddonsConfig": { # Configuration for the addons that can be automatically spun up in the # Configurations for the various addons available to run in the cluster.
+ # cluster, enabling additional functionality.
+ "configConnectorConfig": { # Configuration options for the Config Connector add-on. # Configuration for the ConfigConnector add-on, a Kubernetes
+ # extension to manage hosted GCP services through the Kubernetes API
+ "enabled": True or False, # Whether Cloud Connector is enabled for this cluster.
+ },
+ "gcePersistentDiskCsiDriverConfig": { # Configuration for the Compute Engine PD CSI driver. This option can only be # Configuration for the Compute Engine Persistent Disk CSI driver.
+ # enabled at cluster creation time.
+ "enabled": True or False, # Whether the Compute Engine PD CSI driver is enabled for this cluster.
+ },
+ "dnsCacheConfig": { # Configuration for NodeLocal DNSCache # Configuration for NodeLocalDNS, a dns cache running on cluster nodes
+ "enabled": True or False, # Whether NodeLocal DNSCache is enabled for this cluster.
+ },
+ "networkPolicyConfig": { # Configuration for NetworkPolicy. This only tracks whether the addon # Configuration for NetworkPolicy. This only tracks whether the addon
+ # is enabled or not on the Master, it does not track whether network policy
+ # is enabled for the nodes.
+ # is enabled or not on the Master, it does not track whether network policy
+ # is enabled for the nodes.
+ "disabled": True or False, # Whether NetworkPolicy is enabled for this cluster.
+ },
+ "kubernetesDashboard": { # Configuration for the Kubernetes Dashboard. # Configuration for the Kubernetes Dashboard.
+ # This addon is deprecated, and will be disabled in 1.15. It is recommended
+ # to use the Cloud Console to manage and monitor your Kubernetes clusters,
+ # workloads and applications. For more information, see:
+ # https://cloud.google.com/kubernetes-engine/docs/concepts/dashboards
+ "disabled": True or False, # Whether the Kubernetes Dashboard is enabled for this cluster.
+ },
+ "httpLoadBalancing": { # Configuration options for the HTTP (L7) load balancing controller addon, # Configuration for the HTTP (L7) load balancing controller addon, which
+ # makes it easy to set up HTTP load balancers for services in a cluster.
+ # which makes it easy to set up HTTP load balancers for services in a cluster.
+ "disabled": True or False, # Whether the HTTP Load Balancing controller is enabled in the cluster.
+ # When enabled, it runs a small pod in the cluster that manages the load
+ # balancers.
+ },
+ "istioConfig": { # Configuration options for Istio addon. # Configuration for Istio, an open platform to connect, manage, and secure
+ # microservices.
+ "disabled": True or False, # Whether Istio is enabled for this cluster.
+ "auth": "A String", # The specified Istio auth mode, either none, or mutual TLS.
+ },
+ "horizontalPodAutoscaling": { # Configuration options for the horizontal pod autoscaling feature, which # Configuration for the horizontal pod autoscaling feature, which
+ # increases or decreases the number of replica pods a replication controller
+ # has based on the resource usage of the existing pods.
+ # increases or decreases the number of replica pods a replication controller
+ # has based on the resource usage of the existing pods.
+ "disabled": True or False, # Whether the Horizontal Pod Autoscaling feature is enabled in the cluster.
+ # When enabled, it ensures that metrics are collected into Stackdriver
+ # Monitoring.
+ },
+ "cloudRunConfig": { # Configuration options for the Cloud Run feature. # Configuration for the Cloud Run addon. The `IstioConfig` addon must be
+ # enabled in order to enable Cloud Run addon. This option can only be enabled
+ # at cluster creation time.
+ "disabled": True or False, # Whether Cloud Run addon is enabled for this cluster.
+ },
+ "kalmConfig": { # Configuration options for the KALM addon. # Configuration for the KALM addon, which manages the lifecycle of k8s
+ # applications.
+ "enabled": True or False, # Whether KALM is enabled for this cluster.
+ },
+ },
+ "desiredWorkloadIdentityConfig": { # Configuration for the use of Kubernetes Service Accounts in GCP IAM # Configuration for Workload Identity.
+ # policies.
+ "identityNamespace": "A String", # IAM Identity Namespace to attach all Kubernetes Service Accounts to.
+ "identityProvider": "A String", # identity provider is the third party identity provider.
+ "workloadPool": "A String", # The workload pool to attach all Kubernetes service accounts to.
+ },
+ "desiredResourceUsageExportConfig": { # Configuration for exporting cluster resource usages. # The desired configuration for exporting resource usage.
+ "consumptionMeteringConfig": { # Parameters for controlling consumption metering. # Configuration to enable resource consumption metering.
+ "enabled": True or False, # Whether to enable consumption metering for this cluster. If enabled, a
+ # second BigQuery table will be created to hold resource consumption
+ # records.
+ },
+ "bigqueryDestination": { # Parameters for using BigQuery as the destination of resource usage export. # Configuration to use BigQuery as usage export destination.
+ "datasetId": "A String", # The ID of a BigQuery Dataset.
+ },
+ "enableNetworkEgressMetering": True or False, # Whether to enable network egress metering for this cluster. If enabled, a
+ # daemonset will be created in the cluster to meter network egress traffic.
+ },
+ "desiredBinaryAuthorization": { # Configuration for Binary Authorization. # The desired configuration options for the Binary Authorization feature.
+ "enabled": True or False, # Enable Binary Authorization for this cluster. If enabled, all container
+ # images will be validated by Google Binauthz.
+ },
+ "desiredPrivateClusterConfig": { # Configuration options for private clusters. # The desired private cluster configuration.
+ "enablePrivateNodes": True or False, # Whether nodes have internal IP addresses only. If enabled, all nodes are
+ # given only RFC 1918 private addresses and communicate with the master via
+ # private networking.
+ "masterIpv4CidrBlock": "A String", # The IP range in CIDR notation to use for the hosted master network. This
+ # range will be used for assigning internal IP addresses to the master or
+ # set of masters, as well as the ILB VIP. This range must not overlap with
+ # any other ranges in use within the cluster's network.
+ "peeringName": "A String", # Output only. The peering name in the customer VPC used by this cluster.
+ "publicEndpoint": "A String", # Output only. The external IP address of this cluster's master endpoint.
+ "enablePrivateEndpoint": True or False, # Whether the master's internal IP address is used as the cluster endpoint.
+ "masterGlobalAccessConfig": { # Configuration for controlling master global access settings. # Controls master global access settings.
+ "enabled": True or False, # Whenever master is accessible globally or not.
+ },
+ "privateEndpoint": "A String", # Output only. The internal IP address of this cluster's master endpoint.
+ },
+ "desiredLocations": [ # The desired list of Google Compute Engine
+ # [zones](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster's nodes should be located. Changing the locations a cluster is in
+ # will result in nodes being either created or removed from the cluster,
+ # depending on whether locations are being added or removed.
+ #
+ # This list must always include the cluster's primary zone.
+ "A String",
+ ],
+ "desiredImageType": "A String", # The desired image type for the node pool.
+ # NOTE: Set the "desired_node_pool" field as well.
+ "desiredNodePoolId": "A String", # The node pool to be upgraded. This field is mandatory if
+ # "desired_node_version", "desired_image_family",
+ # "desired_node_pool_autoscaling", or "desired_workload_metadata_config"
+ # is specified and there is more than one node pool on the cluster.
},
+ "projectId": "A String", # Required. Deprecated. The Google Developers Console [project ID or project
+ # number](https://support.google.com/cloud/answer/6158840).
+ # This field has been deprecated and replaced by the name field.
+ "zone": "A String", # Required. Deprecated. The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/zones#available) in which the
+ # cluster resides. This field has been deprecated and replaced by the name
+ # field.
}
x__xgafv: string, V1 error format.
@@ -5288,34 +5646,15 @@
{ # This operation resource represents operations that may have happened or are
# happening on the cluster. All fields are output only.
"targetLink": "A String", # Server-defined URL for the target of the operation.
- "detail": "A String", # Detailed operation progress, if available.
"operationType": "A String", # The operation type.
- "status": "A String", # The current status of the operation.
- "name": "A String", # The server-assigned ID for the operation.
- "nodepoolConditions": [ # Which conditions caused the current node pool state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
- "endTime": "A String", # [Output only] The time the operation completed, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "location": "A String", # [Output only] The name of the Google Compute Engine
- # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # or
- # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
- # in which the cluster resides.
- "startTime": "A String", # [Output only] The time the operation started, in
- # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
- "clusterConditions": [ # Which conditions caused the current cluster state.
- { # StatusCondition describes why a cluster or a node pool has a certain status
- # (e.g., ERROR or DEGRADED).
- "code": "A String", # Machine-friendly representation of the condition
- "message": "A String", # Human-friendly representation of the condition
- },
- ],
"progress": { # Information about operation (or operation stage) progress. # Output only. [Output only] Progress information for an operation.
+ "stages": [ # Substages of an operation or a stage.
+ # Object with schema name: OperationProgress
+ ],
+ "name": "A String", # A non-parameterized string describing an operation stage.
+ # Unset for single-stage operations.
+ "status": "A String", # Status of an operation stage.
+ # Unset for single-stage operations.
"metrics": [ # Progress metric bundle, for example:
# metrics: [{name: "nodes done", int_value: 15},
# {name: "nodes total", int_value: 32}]
@@ -5323,25 +5662,44 @@
# metrics: [{name: "progress", double_value: 0.56},
# {name: "progress scale", double_value: 1.0}]
{ # Progress metric is (string, int|float|string) pair.
- "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
"doubleValue": 3.14, # For metrics with floating point value.
- "intValue": "A String", # For metrics with integer value.
"stringValue": "A String", # For metrics with custom values (ratios, visual progress, etc.).
+ "name": "A String", # Required. Metric name, e.g., "nodes total", "percent done".
+ "intValue": "A String", # For metrics with integer value.
},
],
- "status": "A String", # Status of an operation stage.
- # Unset for single-stage operations.
- "name": "A String", # A non-parameterized string describing an operation stage.
- # Unset for single-stage operations.
- "stages": [ # Substages of an operation or a stage.
- # Object with schema name: OperationProgress
- ],
},
+ "selfLink": "A String", # Server-defined URL for the resource.
+ "location": "A String", # [Output only] The name of the Google Compute Engine
+ # [zone](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # or
+ # [region](https://cloud.google.com/compute/docs/regions-zones/regions-zones#available)
+ # in which the cluster resides.
"zone": "A String", # The name of the Google Compute Engine
# [zone](https://cloud.google.com/compute/docs/zones#available) in which the
# operation is taking place. This field is deprecated, use location instead.
+ "endTime": "A String", # [Output only] The time the operation completed, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
"statusMessage": "A String", # Output only. If an error has occurred, a textual description of the error.
- "selfLink": "A String", # Server-defined URL for the resource.
+ "name": "A String", # The server-assigned ID for the operation.
+ "clusterConditions": [ # Which conditions caused the current cluster state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "startTime": "A String", # [Output only] The time the operation started, in
+ # [RFC3339](https://www.ietf.org/rfc/rfc3339.txt) text format.
+ "detail": "A String", # Detailed operation progress, if available.
+ "nodepoolConditions": [ # Which conditions caused the current node pool state.
+ { # StatusCondition describes why a cluster or a node pool has a certain status
+ # (e.g., ERROR or DEGRADED).
+ "code": "A String", # Machine-friendly representation of the condition
+ "message": "A String", # Human-friendly representation of the condition
+ },
+ ],
+ "status": "A String", # The current status of the operation.
}</pre>
</div>