1---
2apiVersion: apiextensions.k8s.io/v1
3kind: CustomResourceDefinition
4metadata:
5 annotations:
6 controller-gen.kubebuilder.io/version: (unknown)
7 name: containerclusters.container.cnrm.cloud.google.com
8spec:
9 group: container.cnrm.cloud.google.com
10 names:
11 kind: ContainerCluster
12 listKind: ContainerClusterList
13 plural: containerclusters
14 singular: containercluster
15 scope: Namespaced
16 versions:
17 - name: v1beta1
18 schema:
19 openAPIV3Schema:
20 description: ContainerCluster is the Schema for the container API
21 properties:
22 apiVersion:
23 description: |-
24 APIVersion defines the versioned schema of this representation of an object.
25 Servers should convert recognized schemas to the latest internal value, and
26 may reject unrecognized values.
27 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
28 type: string
29 kind:
30 description: |-
31 Kind is a string value representing the REST resource this object represents.
32 Servers may infer this from the endpoint the client submits requests to.
33 Cannot be updated.
34 In CamelCase.
35 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
36 type: string
37 metadata:
38 type: object
39 spec:
40 properties:
41 addonsConfig:
42 description: The configuration for addons supported by GKE.
43 properties:
44 cloudrunConfig:
45 description: The status of the CloudRun addon. It is disabled
46 by default. Set disabled = false to enable.
47 properties:
48 disabled:
49 type: boolean
50 loadBalancerType:
51 type: string
52 required:
53 - disabled
54 type: object
55 configConnectorConfig:
56 description: The of the Config Connector addon.
57 properties:
58 enabled:
59 type: boolean
60 required:
61 - enabled
62 type: object
63 dnsCacheConfig:
64 description: The status of the NodeLocal DNSCache addon. It is
65 disabled by default. Set enabled = true to enable.
66 properties:
67 enabled:
68 type: boolean
69 required:
70 - enabled
71 type: object
72 gcePersistentDiskCsiDriverConfig:
73 description: Whether this cluster should enable the Google Compute
74 Engine Persistent Disk Container Storage Interface (CSI) Driver.
75 Defaults to enabled; set disabled = true to disable.
76 properties:
77 enabled:
78 type: boolean
79 required:
80 - enabled
81 type: object
82 gcpFilestoreCsiDriverConfig:
83 description: The status of the Filestore CSI driver addon, which
84 allows the usage of filestore instance as volumes. Defaults
85 to disabled; set enabled = true to enable.
86 properties:
87 enabled:
88 type: boolean
89 required:
90 - enabled
91 type: object
92 gcsFuseCsiDriverConfig:
93 description: The status of the GCS Fuse CSI driver addon, which
94 allows the usage of gcs bucket as volumes. Defaults to disabled;
95 set enabled = true to enable.
96 properties:
97 enabled:
98 type: boolean
99 required:
100 - enabled
101 type: object
102 gkeBackupAgentConfig:
103 description: The status of the Backup for GKE Agent addon. It
104 is disabled by default. Set enabled = true to enable.
105 properties:
106 enabled:
107 type: boolean
108 required:
109 - enabled
110 type: object
111 horizontalPodAutoscaling:
112 description: The status of the Horizontal Pod Autoscaling addon,
113 which increases or decreases the number of replica pods a replication
114 controller has based on the resource usage of the existing pods.
115 It ensures that a Heapster pod is running in the cluster, which
116 is also used by the Cloud Monitoring service. It is enabled
117 by default; set disabled = true to disable.
118 properties:
119 disabled:
120 type: boolean
121 required:
122 - disabled
123 type: object
124 httpLoadBalancing:
125 description: The status of the HTTP (L7) load balancing controller
126 addon, which makes it easy to set up HTTP load balancers for
127 services in a cluster. It is enabled by default; set disabled
128 = true to disable.
129 properties:
130 disabled:
131 type: boolean
132 required:
133 - disabled
134 type: object
135 istioConfig:
136 description: The status of the Istio addon.
137 properties:
138 auth:
139 description: The authentication type between services in Istio.
140 Available options include AUTH_MUTUAL_TLS.
141 type: string
142 disabled:
143 description: The status of the Istio addon, which makes it
144 easy to set up Istio for services in a cluster. It is disabled
145 by default. Set disabled = false to enable.
146 type: boolean
147 required:
148 - disabled
149 type: object
150 kalmConfig:
151 description: Configuration for the KALM addon, which manages the
152 lifecycle of k8s. It is disabled by default; Set enabled = true
153 to enable.
154 properties:
155 enabled:
156 type: boolean
157 required:
158 - enabled
159 type: object
160 networkPolicyConfig:
161 description: Whether we should enable the network policy addon
162 for the master. This must be enabled in order to enable network
163 policy for the nodes. To enable this, you must also define a
164 network_policy block, otherwise nothing will happen. It can
165 only be disabled if the nodes already do not have network policies
166 enabled. Defaults to disabled; set disabled = false to enable.
167 properties:
168 disabled:
169 type: boolean
170 required:
171 - disabled
172 type: object
173 type: object
174 authenticatorGroupsConfig:
175 description: Configuration for the Google Groups for GKE feature.
176 properties:
177 securityGroup:
178 description: The name of the RBAC security group for use with
179 Google security groups in Kubernetes RBAC. Group name must be
180 in format gke-security-groups@yourdomain.com.
181 type: string
182 required:
183 - securityGroup
184 type: object
185 binaryAuthorization:
186 description: Configuration options for the Binary Authorization feature.
187 properties:
188 enabled:
189 description: DEPRECATED. Deprecated in favor of evaluation_mode.
190 Enable Binary Authorization for this cluster.
191 type: boolean
192 evaluationMode:
193 description: Mode of operation for Binary Authorization policy
194 evaluation.
195 type: string
196 type: object
197 clusterAutoscaling:
198 description: Per-cluster configuration of Node Auto-Provisioning with
199 Cluster Autoscaler to automatically adjust the size of the cluster
200 and create/delete node pools based on the current needs of the cluster's
201 workload. See the guide to using Node Auto-Provisioning for more
202 details.
203 properties:
204 autoProvisioningDefaults:
205 description: Contains defaults for a node pool created by NAP.
206 properties:
207 bootDiskKMSKeyRef:
208 description: |-
209 Immutable. The Customer Managed Encryption Key used to encrypt the
210 boot disk attached to each node in the node pool.
211 properties:
212 external:
213 description: The external name of the referenced resource
214 type: string
215 kind:
216 description: Kind of the referent.
217 type: string
218 name:
219 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
220 type: string
221 namespace:
222 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
223 type: string
224 type: object
225 diskSize:
226 description: Size of the disk attached to each node, specified
227 in GB. The smallest allowed disk size is 10GB.
228 type: integer
229 imageType:
230 description: The default image type used by NAP once a new
231 node pool is being created.
232 type: string
233 management:
234 description: NodeManagement configuration for this NodePool.
235 properties:
236 autoRepair:
237 description: Specifies whether the node auto-repair is
238 enabled for the node pool. If enabled, the nodes in
239 this node pool will be monitored and, if they fail health
240 checks too many times, an automatic repair action will
241 be triggered.
242 type: boolean
243 autoUpgrade:
244 description: Specifies whether node auto-upgrade is enabled
245 for the node pool. If enabled, node auto-upgrade helps
246 keep the nodes in your node pool up to date with the
247 latest release version of Kubernetes.
248 type: boolean
249 upgradeOptions:
250 description: Specifies the Auto Upgrade knobs for the
251 node pool.
252 items:
253 properties:
254 autoUpgradeStartTime:
255 description: This field is set when upgrades are
256 about to commence with the approximate start time
257 for the upgrades, in RFC3339 text format.
258 type: string
259 description:
260 description: This field is set when upgrades are
261 about to commence with the description of the
262 upgrade.
263 type: string
264 type: object
265 type: array
266 type: object
267 minCpuPlatform:
268 description: Minimum CPU platform to be used by this instance.
269 The instance may be scheduled on the specified or newer
270 CPU platform. Applicable values are the friendly names of
271 CPU platforms, such as Intel Haswell.
272 type: string
273 oauthScopes:
274 description: Scopes that are used by NAP when creating node
275 pools.
276 items:
277 type: string
278 type: array
279 serviceAccountRef:
280 properties:
281 external:
282 description: The external name of the referenced resource
283 type: string
284 kind:
285 description: Kind of the referent.
286 type: string
287 name:
288 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
289 type: string
290 namespace:
291 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
292 type: string
293 type: object
294 shieldedInstanceConfig:
295 description: Shielded Instance options.
296 properties:
297 enableIntegrityMonitoring:
298 description: Immutable. Defines whether the instance has
299 integrity monitoring enabled.
300 type: boolean
301 enableSecureBoot:
302 description: Immutable. Defines whether the instance has
303 Secure Boot enabled.
304 type: boolean
305 type: object
306 upgradeSettings:
307 description: Specifies the upgrade settings for NAP created
308 node pools.
309 properties:
310 blueGreenSettings:
311 description: Settings for blue-green upgrade strategy.
312 properties:
313 nodePoolSoakDuration:
314 description: |-
315 Time needed after draining entire blue pool. After this period, blue pool will be cleaned up.
316
317
318 A duration in seconds with up to nine fractional digits, ending with 's'. Example: "3.5s".
319 type: string
320 standardRolloutPolicy:
321 description: Standard policy for the blue-green upgrade.
322 properties:
323 batchNodeCount:
324 description: Number of blue nodes to drain in
325 a batch.
326 type: integer
327 batchPercentage:
328 description: Percentage of the bool pool nodes
329 to drain in a batch. The range of this field
330 should be (0.0, 1.0].
331 type: number
332 batchSoakDuration:
333 description: |-
334 Soak time after each batch gets drained.
335
336
337 A duration in seconds with up to nine fractional digits, ending with 's'. Example: "3.5s".
338 type: string
339 type: object
340 type: object
341 maxSurge:
342 description: The maximum number of nodes that can be created
343 beyond the current size of the node pool during the
344 upgrade process.
345 type: integer
346 maxUnavailable:
347 description: The maximum number of nodes that can be simultaneously
348 unavailable during the upgrade process.
349 type: integer
350 strategy:
351 description: Update strategy of the node pool.
352 type: string
353 type: object
354 type: object
355 autoscalingProfile:
356 description: Configuration options for the Autoscaling profile
357 feature, which lets you choose whether the cluster autoscaler
358 should optimize for resource utilization or resource availability
359 when deciding to remove nodes from a cluster. Can be BALANCED
360 or OPTIMIZE_UTILIZATION. Defaults to BALANCED.
361 type: string
362 enabled:
363 description: Whether node auto-provisioning is enabled. Resource
364 limits for cpu and memory must be defined to enable node auto-provisioning.
365 type: boolean
366 resourceLimits:
367 description: Global constraints for machine resources in the cluster.
368 Configuring the cpu and memory types is required if node auto-provisioning
369 is enabled. These limits will apply to node pool autoscaling
370 in addition to node auto-provisioning.
371 items:
372 properties:
373 maximum:
374 description: Maximum amount of the resource in the cluster.
375 type: integer
376 minimum:
377 description: Minimum amount of the resource in the cluster.
378 type: integer
379 resourceType:
380 description: The type of the resource. For example, cpu
381 and memory. See the guide to using Node Auto-Provisioning
382 for a list of types.
383 type: string
384 required:
385 - resourceType
386 type: object
387 type: array
388 type: object
389 clusterIpv4Cidr:
390 description: Immutable. The IP address range of the Kubernetes pods
391 in this cluster in CIDR notation (e.g. 10.96.0.0/14). Leave blank
392 to have one automatically chosen or specify a /14 block in 10.0.0.0/8.
393 This field will only work for routes-based clusters, where ip_allocation_policy
394 is not defined.
395 type: string
396 clusterTelemetry:
397 description: Telemetry integration for the cluster.
398 properties:
399 type:
400 description: Type of the integration.
401 type: string
402 required:
403 - type
404 type: object
405 confidentialNodes:
406 description: 'Immutable. Configuration for the confidential nodes
407 feature, which makes nodes run on confidential VMs. Warning: This
408 configuration can''t be changed (or added/removed) after cluster
409 creation without deleting and recreating the entire cluster.'
410 properties:
411 enabled:
412 description: Immutable. Whether Confidential Nodes feature is
413 enabled for all nodes in this cluster.
414 type: boolean
415 required:
416 - enabled
417 type: object
418 costManagementConfig:
419 description: Cost management configuration for the cluster.
420 properties:
421 enabled:
422 description: Whether to enable GKE cost allocation. When you enable
423 GKE cost allocation, the cluster name and namespace of your
424 GKE workloads appear in the labels field of the billing export
425 to BigQuery. Defaults to false.
426 type: boolean
427 required:
428 - enabled
429 type: object
430 databaseEncryption:
431 description: 'Application-layer Secrets Encryption settings. The object
432 format is {state = string, key_name = string}. Valid values of state
433 are: "ENCRYPTED"; "DECRYPTED". key_name is the name of a CloudKMS
434 key.'
435 properties:
436 keyName:
437 description: The key to use to encrypt/decrypt secrets.
438 type: string
439 state:
440 description: ENCRYPTED or DECRYPTED.
441 type: string
442 required:
443 - state
444 type: object
445 datapathProvider:
446 description: Immutable. The desired datapath provider for this cluster.
447 By default, uses the IPTables-based kube-proxy implementation.
448 type: string
449 defaultMaxPodsPerNode:
450 description: Immutable. The default maximum number of pods per node
451 in this cluster. This doesn't work on "routes-based" clusters, clusters
452 that don't have IP Aliasing enabled.
453 type: integer
454 defaultSnatStatus:
455 description: Whether the cluster disables default in-node sNAT rules.
456 In-node sNAT rules will be disabled when defaultSnatStatus is disabled.
457 properties:
458 disabled:
459 description: When disabled is set to false, default IP masquerade
460 rules will be applied to the nodes to prevent sNAT on cluster
461 internal traffic.
462 type: boolean
463 required:
464 - disabled
465 type: object
466 description:
467 description: Immutable. Description of the cluster.
468 type: string
469 dnsConfig:
470 description: Immutable. Configuration for Cloud DNS for Kubernetes
471 Engine.
472 properties:
473 clusterDns:
474 description: Which in-cluster DNS provider should be used.
475 type: string
476 clusterDnsDomain:
477 description: The suffix used for all cluster service records.
478 type: string
479 clusterDnsScope:
480 description: The scope of access to cluster DNS records.
481 type: string
482 type: object
483 enableAutopilot:
484 description: Immutable. Enable Autopilot for this cluster.
485 type: boolean
486 enableBinaryAuthorization:
487 description: DEPRECATED. Deprecated in favor of binary_authorization.
488 Enable Binary Authorization for this cluster. If enabled, all container
489 images will be validated by Google Binary Authorization.
490 type: boolean
491 enableIntranodeVisibility:
492 description: Whether Intra-node visibility is enabled for this cluster.
493 This makes same node pod to pod traffic visible for VPC network.
494 type: boolean
495 enableKubernetesAlpha:
496 description: Immutable. Whether to enable Kubernetes Alpha features
497 for this cluster. Note that when this option is enabled, the cluster
498 cannot be upgraded and will be automatically deleted after 30 days.
499 type: boolean
500 enableL4IlbSubsetting:
501 description: Whether L4ILB Subsetting is enabled for this cluster.
502 type: boolean
503 enableLegacyAbac:
504 description: Whether the ABAC authorizer is enabled for this cluster.
505 When enabled, identities in the system, including service accounts,
506 nodes, and controllers, will have statically granted permissions
507 beyond those provided by the RBAC configuration or IAM. Defaults
508 to false.
509 type: boolean
510 enableShieldedNodes:
511 description: Enable Shielded Nodes features on all nodes in this cluster.
512 Defaults to true.
513 type: boolean
514 enableTpu:
515 description: Immutable. Whether to enable Cloud TPU resources in this
516 cluster.
517 type: boolean
518 gatewayApiConfig:
519 description: Configuration for GKE Gateway API controller.
520 properties:
521 channel:
522 description: The Gateway API release channel to use for Gateway
523 API.
524 type: string
525 required:
526 - channel
527 type: object
528 identityServiceConfig:
529 description: Configuration for Identity Service which allows customers
530 to use external identity providers with the K8S API.
531 properties:
532 enabled:
533 description: Whether to enable the Identity Service component.
534 type: boolean
535 type: object
536 initialNodeCount:
537 description: Immutable. The number of nodes to create in this cluster's
538 default node pool. In regional or multi-zonal clusters, this is
539 the number of nodes per zone. Must be set if node_pool is not set.
540 If you're using google_container_node_pool objects with no default
541 node pool, you'll need to set this to a value of at least 1, alongside
542 setting remove_default_node_pool to true.
543 type: integer
544 ipAllocationPolicy:
545 description: Immutable. Configuration of cluster IP allocation for
546 VPC-native clusters. Adding this block enables IP aliasing, making
547 the cluster VPC-native instead of routes-based.
548 properties:
549 clusterIpv4CidrBlock:
550 description: Immutable. The IP address range for the cluster pod
551 IPs. Set to blank to have a range chosen with the default size.
552 Set to /netmask (e.g. /14) to have a range chosen with a specific
553 netmask. Set to a CIDR notation (e.g. 10.96.0.0/14) from the
554 RFC-1918 private networks (e.g. 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16)
555 to pick a specific range to use.
556 type: string
557 clusterSecondaryRangeName:
558 description: Immutable. The name of the existing secondary range
559 in the cluster's subnetwork to use for pod IP addresses. Alternatively,
560 cluster_ipv4_cidr_block can be used to automatically create
561 a GKE-managed one.
562 type: string
563 podCidrOverprovisionConfig:
564 description: Immutable. Configuration for cluster level pod cidr
565 overprovision. Default is disabled=false.
566 properties:
567 disabled:
568 type: boolean
569 required:
570 - disabled
571 type: object
572 servicesIpv4CidrBlock:
573 description: Immutable. The IP address range of the services IPs
574 in this cluster. Set to blank to have a range chosen with the
575 default size. Set to /netmask (e.g. /14) to have a range chosen
576 with a specific netmask. Set to a CIDR notation (e.g. 10.96.0.0/14)
577 from the RFC-1918 private networks (e.g. 10.0.0.0/8, 172.16.0.0/12,
578 192.168.0.0/16) to pick a specific range to use.
579 type: string
580 servicesSecondaryRangeName:
581 description: Immutable. The name of the existing secondary range
582 in the cluster's subnetwork to use for service ClusterIPs. Alternatively,
583 services_ipv4_cidr_block can be used to automatically create
584 a GKE-managed one.
585 type: string
586 stackType:
587 description: Immutable. The IP Stack type of the cluster. Choose
588 between IPV4 and IPV4_IPV6. Default type is IPV4 Only if not
589 set.
590 type: string
591 type: object
592 location:
593 description: Immutable. The location (region or zone) in which the
594 cluster master will be created, as well as the default node location.
595 If you specify a zone (such as us-central1-a), the cluster will
596 be a zonal cluster with a single cluster master. If you specify
597 a region (such as us-west1), the cluster will be a regional cluster
598 with multiple masters spread across zones in the region, and with
599 default node locations in those zones as well.
600 type: string
601 loggingConfig:
602 description: Logging configuration for the cluster.
603 properties:
604 enableComponents:
605 description: GKE components exposing logs. Valid values include
606 SYSTEM_COMPONENTS, APISERVER, CONTROLLER_MANAGER, SCHEDULER,
607 and WORKLOADS.
608 items:
609 type: string
610 type: array
611 required:
612 - enableComponents
613 type: object
614 loggingService:
615 description: The logging service that the cluster should write logs
616 to. Available options include logging.googleapis.com(Legacy Stackdriver),
617 logging.googleapis.com/kubernetes(Stackdriver Kubernetes Engine
618 Logging), and none. Defaults to logging.googleapis.com/kubernetes.
619 type: string
620 maintenancePolicy:
621 description: The maintenance policy to use for the cluster.
622 properties:
623 dailyMaintenanceWindow:
624 description: 'Time window specified for daily maintenance operations.
625 Specify start_time in RFC3339 format "HH:MM”, where HH : [00-23]
626 and MM : [00-59] GMT.'
627 properties:
628 duration:
629 type: string
630 startTime:
631 type: string
632 required:
633 - startTime
634 type: object
635 maintenanceExclusion:
636 description: Exceptions to maintenance window. Non-emergency maintenance
637 should not occur in these windows.
638 items:
639 properties:
640 endTime:
641 type: string
642 exclusionName:
643 type: string
644 exclusionOptions:
645 description: Maintenance exclusion related options.
646 properties:
647 scope:
648 description: The scope of automatic upgrades to restrict
649 in the exclusion window.
650 type: string
651 required:
652 - scope
653 type: object
654 startTime:
655 type: string
656 required:
657 - endTime
658 - exclusionName
659 - startTime
660 type: object
661 type: array
662 recurringWindow:
663 description: Time window for recurring maintenance operations.
664 properties:
665 endTime:
666 type: string
667 recurrence:
668 type: string
669 startTime:
670 type: string
671 required:
672 - endTime
673 - recurrence
674 - startTime
675 type: object
676 type: object
677 masterAuth:
678 description: DEPRECATED. Basic authentication was removed for GKE
679 cluster versions >= 1.19. The authentication information for accessing
680 the Kubernetes master. Some values in this block are only returned
681 by the API if your service account has permission to get credentials
682 for your GKE cluster. If you see an unexpected diff unsetting your
683 client cert, ensure you have the container.clusters.getCredentials
684 permission.
685 properties:
686 clientCertificate:
687 description: Base64 encoded public certificate used by clients
688 to authenticate to the cluster endpoint.
689 type: string
690 clientCertificateConfig:
691 description: Immutable. Whether client certificate authorization
692 is enabled for this cluster.
693 properties:
694 issueClientCertificate:
695 description: Immutable. Whether client certificate authorization
696 is enabled for this cluster.
697 type: boolean
698 required:
699 - issueClientCertificate
700 type: object
701 clientKey:
702 description: Base64 encoded private key used by clients to authenticate
703 to the cluster endpoint.
704 type: string
705 clusterCaCertificate:
706 description: Base64 encoded public certificate that is the root
707 of trust for the cluster.
708 type: string
709 password:
710 description: The password to use for HTTP basic authentication
711 when accessing the Kubernetes master endpoint.
712 properties:
713 value:
714 description: Value of the field. Cannot be used if 'valueFrom'
715 is specified.
716 type: string
717 valueFrom:
718 description: Source for the field's value. Cannot be used
719 if 'value' is specified.
720 properties:
721 secretKeyRef:
722 description: Reference to a value with the given key in
723 the given Secret in the resource's namespace.
724 properties:
725 external:
726 description: The external name of the referenced resource
727 type: string
728 kind:
729 description: Kind of the referent.
730 type: string
731 name:
732 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
733 type: string
734 namespace:
735 description: 'Namespace of the referent. More info:
736 https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
737 type: string
738 type: object
739 type: object
740 type: object
741 username:
742 description: The username to use for HTTP basic authentication
743 when accessing the Kubernetes master endpoint. If not present
744 basic auth will be disabled.
745 type: string
746 type: object
747 masterAuthorizedNetworksConfig:
748 description: The desired configuration options for master authorized
749 networks. Omit the nested cidr_blocks attribute to disallow external
750 access (except the cluster node IPs, which GKE automatically whitelists).
751 properties:
752 cidrBlocks:
753 description: External networks that can access the Kubernetes
754 cluster master through HTTPS.
755 items:
756 properties:
757 cidrBlock:
758 description: External network that can access Kubernetes
759 master through HTTPS. Must be specified in CIDR notation.
760 type: string
761 displayName:
762 description: Field for users to identify CIDR blocks.
763 type: string
764 required:
765 - cidrBlock
766 type: object
767 type: array
768 gcpPublicCidrsAccessEnabled:
769 description: Whether master is accessbile via Google Compute Engine
770 Public IP addresses.
771 type: boolean
772 type: object
773 meshCertificates:
774 description: If set, and enable_certificates=true, the GKE Workload
775 Identity Certificates controller and node agent will be deployed
776 in the cluster.
777 properties:
778 enableCertificates:
779 description: When enabled the GKE Workload Identity Certificates
780 controller and node agent will be deployed in the cluster.
781 type: boolean
782 required:
783 - enableCertificates
784 type: object
785 minMasterVersion:
786 description: The minimum version of the master. GKE will auto-update
787 the master to new versions, so this does not guarantee the current
788 master version--use the read-only master_version field to obtain
789 that. If unset, the cluster's version will be set by GKE to the
790 version of the most recent official release (which is not necessarily
791 the latest version).
792 type: string
793 monitoringConfig:
794 description: Monitoring configuration for the cluster.
795 properties:
796 enableComponents:
797 description: GKE components exposing metrics. Valid values include
798 SYSTEM_COMPONENTS, APISERVER, CONTROLLER_MANAGER, SCHEDULER,
799 and WORKLOADS.
800 items:
801 type: string
802 type: array
803 managedPrometheus:
804 description: Configuration for Google Cloud Managed Services for
805 Prometheus.
806 properties:
807 enabled:
808 description: Whether or not the managed collection is enabled.
809 type: boolean
810 required:
811 - enabled
812 type: object
813 type: object
814 monitoringService:
815 description: The monitoring service that the cluster should write
816 metrics to. Automatically send metrics from pods in the cluster
817 to the Google Cloud Monitoring API. VM metrics will be collected
818 by Google Compute Engine regardless of this setting Available options
819 include monitoring.googleapis.com(Legacy Stackdriver), monitoring.googleapis.com/kubernetes(Stackdriver
820 Kubernetes Engine Monitoring), and none. Defaults to monitoring.googleapis.com/kubernetes.
821 type: string
822 networkPolicy:
823 description: Configuration options for the NetworkPolicy feature.
824 properties:
825 enabled:
826 description: Whether network policy is enabled on the cluster.
827 type: boolean
828 provider:
829 description: The selected network policy provider. Defaults to
830 PROVIDER_UNSPECIFIED.
831 type: string
832 required:
833 - enabled
834 type: object
835 networkRef:
836 properties:
837 external:
838 description: The external name of the referenced resource
839 type: string
840 kind:
841 description: Kind of the referent.
842 type: string
843 name:
844 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
845 type: string
846 namespace:
847 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
848 type: string
849 type: object
850 networkingMode:
851 description: Immutable. Determines whether alias IPs or routes will
852 be used for pod IPs in the cluster.
853 type: string
854 nodeConfig:
855 description: Immutable. The configuration of the nodepool.
856 properties:
857 advancedMachineFeatures:
858 description: Immutable. Specifies options for controlling advanced
859 machine features.
860 properties:
861 threadsPerCore:
862 description: Immutable. The number of threads per physical
863 core. To disable simultaneous multithreading (SMT) set this
864 to 1. If unset, the maximum number of threads supported
865 per core by the underlying processor is assumed.
866 type: integer
867 required:
868 - threadsPerCore
869 type: object
870 bootDiskKMSCryptoKeyRef:
871 properties:
872 external:
873 description: The external name of the referenced resource
874 type: string
875 kind:
876 description: Kind of the referent.
877 type: string
878 name:
879 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
880 type: string
881 namespace:
882 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
883 type: string
884 type: object
885 diskSizeGb:
886 description: Immutable. Size of the disk attached to each node,
887 specified in GB. The smallest allowed disk size is 10GB.
888 type: integer
889 diskType:
890 description: Immutable. Type of the disk attached to each node.
891 Such as pd-standard, pd-balanced or pd-ssd.
892 type: string
893 ephemeralStorageConfig:
894 description: Immutable. Parameters for the ephemeral storage filesystem.
895 If unspecified, ephemeral storage is backed by the boot disk.
896 properties:
897 localSsdCount:
898 description: Immutable. Number of local SSDs to use to back
899 ephemeral storage. Uses NVMe interfaces. Each local SSD
900 must be 375 or 3000 GB in size, and all local SSDs must
901 share the same size.
902 type: integer
903 required:
904 - localSsdCount
905 type: object
906 ephemeralStorageLocalSsdConfig:
907 description: Immutable. Parameters for the ephemeral storage filesystem.
908 If unspecified, ephemeral storage is backed by the boot disk.
909 properties:
910 localSsdCount:
911 description: Immutable. Number of local SSDs to use to back
912 ephemeral storage. Uses NVMe interfaces. Each local SSD
913 must be 375 or 3000 GB in size, and all local SSDs must
914 share the same size.
915 type: integer
916 required:
917 - localSsdCount
918 type: object
919 gcfsConfig:
920 description: Immutable. GCFS configuration for this node.
921 properties:
922 enabled:
923 description: Whether or not GCFS is enabled.
924 type: boolean
925 required:
926 - enabled
927 type: object
928 guestAccelerator:
929 description: Immutable. List of the type and count of accelerator
930 cards attached to the instance.
931 items:
932 properties:
933 count:
934 description: Immutable. The number of the accelerator cards
935 exposed to an instance.
936 type: integer
937 gpuPartitionSize:
938 description: Immutable. Size of partitions to create on
939 the GPU. Valid values are described in the NVIDIA mig
940 user guide (https://docs.nvidia.com/datacenter/tesla/mig-user-guide/#partitioning).
941 type: string
942 gpuSharingConfig:
943 description: Immutable. Configuration for GPU sharing.
944 properties:
945 gpuSharingStrategy:
946 description: Immutable. The type of GPU sharing strategy
947 to enable on the GPU node. Possible values are described
948 in the API package (https://pkg.go.dev/google.golang.org/api/container/v1#GPUSharingConfig).
949 type: string
950 maxSharedClientsPerGpu:
951 description: Immutable. The maximum number of containers
952 that can share a GPU.
953 type: integer
954 required:
955 - gpuSharingStrategy
956 - maxSharedClientsPerGpu
957 type: object
958 type:
959 description: Immutable. The accelerator type resource name.
960 type: string
961 required:
962 - count
963 - type
964 type: object
965 type: array
966 gvnic:
967 description: Immutable. Enable or disable gvnic in the node pool.
968 properties:
969 enabled:
970 description: Immutable. Whether or not gvnic is enabled.
971 type: boolean
972 required:
973 - enabled
974 type: object
975 imageType:
976 description: The image type to use for this node. Note that for
977 a given image type, the latest version of it will be used.
978 type: string
979 kubeletConfig:
980 description: Node kubelet configs.
981 properties:
982 cpuCfsQuota:
983 description: Enable CPU CFS quota enforcement for containers
984 that specify CPU limits.
985 type: boolean
986 cpuCfsQuotaPeriod:
987 description: Set the CPU CFS quota period value 'cpu.cfs_period_us'.
988 type: string
989 cpuManagerPolicy:
990 description: Control the CPU management policy on the node.
991 type: string
992 podPidsLimit:
993 description: Controls the maximum number of processes allowed
994 to run in a pod.
995 type: integer
996 required:
997 - cpuManagerPolicy
998 type: object
999 labels:
1000 additionalProperties:
1001 type: string
1002 description: Immutable. The map of Kubernetes labels (key/value
1003 pairs) to be applied to each node. These will added in addition
1004 to any default label(s) that Kubernetes may apply to the node.
1005 type: object
1006 linuxNodeConfig:
1007 description: Parameters that can be configured on Linux nodes.
1008 properties:
1009 sysctls:
1010 additionalProperties:
1011 type: string
1012 description: The Linux kernel parameters to be applied to
1013 the nodes and all pods running on the nodes.
1014 type: object
1015 required:
1016 - sysctls
1017 type: object
1018 localNvmeSsdBlockConfig:
1019 description: Immutable. Parameters for raw-block local NVMe SSDs.
1020 properties:
1021 localSsdCount:
1022 description: Immutable. Number of raw-block local NVMe SSD
1023 disks to be attached to the node. Each local SSD is 375
1024 GB in size.
1025 type: integer
1026 required:
1027 - localSsdCount
1028 type: object
1029 localSsdCount:
1030 description: Immutable. The number of local SSD disks to be attached
1031 to the node.
1032 type: integer
1033 loggingVariant:
1034 description: Type of logging agent that is used as the default
1035 value for node pools in the cluster. Valid values include DEFAULT
1036 and MAX_THROUGHPUT.
1037 type: string
1038 machineType:
1039 description: Immutable. The name of a Google Compute Engine machine
1040 type.
1041 type: string
1042 metadata:
1043 additionalProperties:
1044 type: string
1045 description: Immutable. The metadata key/value pairs assigned
1046 to instances in the cluster.
1047 type: object
1048 minCpuPlatform:
1049 description: Immutable. Minimum CPU platform to be used by this
1050 instance. The instance may be scheduled on the specified or
1051 newer CPU platform.
1052 type: string
1053 nodeGroupRef:
1054 description: |-
1055 Immutable. Setting this field will assign instances
1056 of this pool to run on the specified node group. This is useful
1057 for running workloads on sole tenant nodes.
1058 properties:
1059 external:
1060 description: The external name of the referenced resource
1061 type: string
1062 kind:
1063 description: Kind of the referent.
1064 type: string
1065 name:
1066 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
1067 type: string
1068 namespace:
1069 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
1070 type: string
1071 type: object
1072 oauthScopes:
1073 description: Immutable. The set of Google API scopes to be made
1074 available on all of the node VMs.
1075 items:
1076 type: string
1077 type: array
1078 preemptible:
1079 description: Immutable. Whether the nodes are created as preemptible
1080 VM instances.
1081 type: boolean
1082 reservationAffinity:
1083 description: Immutable. The reservation affinity configuration
1084 for the node pool.
1085 properties:
1086 consumeReservationType:
1087 description: Immutable. Corresponds to the type of reservation
1088 consumption.
1089 type: string
1090 key:
1091 description: Immutable. The label key of a reservation resource.
1092 type: string
1093 values:
1094 description: Immutable. The label values of the reservation
1095 resource.
1096 items:
1097 type: string
1098 type: array
1099 required:
1100 - consumeReservationType
1101 type: object
1102 resourceLabels:
1103 additionalProperties:
1104 type: string
1105 description: The GCE resource labels (a map of key/value pairs)
1106 to be applied to the node pool.
1107 type: object
1108 sandboxConfig:
1109 description: Immutable. Sandbox configuration for this node.
1110 properties:
1111 sandboxType:
1112 description: Type of the sandbox to use for the node (e.g.
1113 'gvisor').
1114 type: string
1115 required:
1116 - sandboxType
1117 type: object
1118 serviceAccountRef:
1119 properties:
1120 external:
1121 description: The external name of the referenced resource
1122 type: string
1123 kind:
1124 description: Kind of the referent.
1125 type: string
1126 name:
1127 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
1128 type: string
1129 namespace:
1130 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
1131 type: string
1132 type: object
1133 shieldedInstanceConfig:
1134 description: Immutable. Shielded Instance options.
1135 properties:
1136 enableIntegrityMonitoring:
1137 description: Immutable. Defines whether the instance has integrity
1138 monitoring enabled.
1139 type: boolean
1140 enableSecureBoot:
1141 description: Immutable. Defines whether the instance has Secure
1142 Boot enabled.
1143 type: boolean
1144 type: object
1145 spot:
1146 description: Immutable. Whether the nodes are created as spot
1147 VM instances.
1148 type: boolean
1149 tags:
1150 description: The list of instance tags applied to all nodes.
1151 items:
1152 type: string
1153 type: array
1154 taint:
1155 description: Immutable. List of Kubernetes taints to be applied
1156 to each node.
1157 items:
1158 properties:
1159 effect:
1160 description: Immutable. Effect for taint.
1161 type: string
1162 key:
1163 description: Immutable. Key for taint.
1164 type: string
1165 value:
1166 description: Immutable. Value for taint.
1167 type: string
1168 required:
1169 - effect
1170 - key
1171 - value
1172 type: object
1173 type: array
1174 workloadMetadataConfig:
1175 description: Immutable. The workload metadata configuration for
1176 this node.
1177 properties:
1178 mode:
1179 description: Mode is the configuration for how to expose metadata
1180 to workloads running on the node.
1181 type: string
1182 nodeMetadata:
1183 description: DEPRECATED. Deprecated in favor of mode. NodeMetadata
1184 is the configuration for how to expose metadata to the workloads
1185 running on the node.
1186 type: string
1187 type: object
1188 type: object
1189 nodeLocations:
1190 description: The list of zones in which the cluster's nodes are located.
1191 Nodes must be in the region of their regional cluster or in the
1192 same region as their cluster's zone for zonal clusters. If this
1193 is specified for a zonal cluster, omit the cluster's zone.
1194 items:
1195 type: string
1196 type: array
1197 nodePoolAutoConfig:
1198 description: Node pool configs that apply to all auto-provisioned
1199 node pools in autopilot clusters and node auto-provisioning enabled
1200 clusters.
1201 properties:
1202 networkTags:
1203 description: Collection of Compute Engine network tags that can
1204 be applied to a node's underlying VM instance.
1205 properties:
1206 tags:
1207 description: List of network tags applied to auto-provisioned
1208 node pools.
1209 items:
1210 type: string
1211 type: array
1212 type: object
1213 type: object
1214 nodePoolDefaults:
1215 description: The default nodel pool settings for the entire cluster.
1216 properties:
1217 nodeConfigDefaults:
1218 description: Subset of NodeConfig message that has defaults.
1219 properties:
1220 gcfsConfig:
1221 description: GCFS configuration for this node.
1222 properties:
1223 enabled:
1224 description: Whether or not GCFS is enabled.
1225 type: boolean
1226 required:
1227 - enabled
1228 type: object
1229 loggingVariant:
1230 description: Type of logging agent that is used as the default
1231 value for node pools in the cluster. Valid values include
1232 DEFAULT and MAX_THROUGHPUT.
1233 type: string
1234 type: object
1235 type: object
1236 nodeVersion:
1237 type: string
1238 notificationConfig:
1239 description: The notification config for sending cluster upgrade notifications.
1240 properties:
1241 pubsub:
1242 description: Notification config for Cloud Pub/Sub.
1243 properties:
1244 enabled:
1245 description: Whether or not the notification config is enabled.
1246 type: boolean
1247 filter:
1248 description: Allows filtering to one or more specific event
1249 types. If event types are present, those and only those
1250 event types will be transmitted to the cluster. Other types
1251 will be skipped. If no filter is specified, or no event
1252 types are present, all event types will be sent.
1253 properties:
1254 eventType:
1255 description: Can be used to filter what notifications
1256 are sent. Valid values include include UPGRADE_AVAILABLE_EVENT,
1257 UPGRADE_EVENT and SECURITY_BULLETIN_EVENT.
1258 items:
1259 type: string
1260 type: array
1261 required:
1262 - eventType
1263 type: object
1264 topicRef:
1265 description: The PubSubTopic to send the notification to.
1266 properties:
1267 external:
1268 description: The external name of the referenced resource
1269 type: string
1270 kind:
1271 description: Kind of the referent.
1272 type: string
1273 name:
1274 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
1275 type: string
1276 namespace:
1277 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
1278 type: string
1279 type: object
1280 required:
1281 - enabled
1282 type: object
1283 required:
1284 - pubsub
1285 type: object
1286 podSecurityPolicyConfig:
1287 description: Configuration for the PodSecurityPolicy feature.
1288 properties:
1289 enabled:
1290 description: Enable the PodSecurityPolicy controller for this
1291 cluster. If enabled, pods must be valid under a PodSecurityPolicy
1292 to be created.
1293 type: boolean
1294 required:
1295 - enabled
1296 type: object
1297 privateClusterConfig:
1298 description: Configuration for private clusters, clusters with private
1299 nodes.
1300 properties:
1301 enablePrivateEndpoint:
1302 description: When true, the cluster's private endpoint is used
1303 as the cluster endpoint and access through the public endpoint
1304 is disabled. When false, either endpoint can be used. This field
1305 only applies to private clusters, when enable_private_nodes
1306 is true.
1307 type: boolean
1308 enablePrivateNodes:
1309 description: Immutable. Enables the private cluster feature, creating
1310 a private endpoint on the cluster. In a private cluster, nodes
1311 only have RFC 1918 private addresses and communicate with the
1312 master's private endpoint via private networking.
1313 type: boolean
1314 masterGlobalAccessConfig:
1315 description: Controls cluster master global access settings.
1316 properties:
1317 enabled:
1318 description: Whether the cluster master is accessible globally
1319 or not.
1320 type: boolean
1321 required:
1322 - enabled
1323 type: object
1324 masterIpv4CidrBlock:
1325 description: Immutable. The IP range in CIDR notation to use for
1326 the hosted master network. This range will be used for assigning
1327 private IP addresses to the cluster master(s) and the ILB VIP.
1328 This range must not overlap with any other ranges in use within
1329 the cluster's network, and it must be a /28 subnet. See Private
1330 Cluster Limitations for more details. This field only applies
1331 to private clusters, when enable_private_nodes is true.
1332 type: string
1333 peeringName:
1334 description: The name of the peering between this cluster and
1335 the Google owned VPC.
1336 type: string
1337 privateEndpoint:
1338 description: The internal IP address of this cluster's master
1339 endpoint.
1340 type: string
1341 privateEndpointSubnetworkRef:
1342 description: |-
1343 Immutable. Subnetwork in cluster's network where master's endpoint
1344 will be provisioned.
1345 properties:
1346 external:
1347 description: The external name of the referenced resource
1348 type: string
1349 kind:
1350 description: Kind of the referent.
1351 type: string
1352 name:
1353 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
1354 type: string
1355 namespace:
1356 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
1357 type: string
1358 type: object
1359 publicEndpoint:
1360 description: The external IP address of this cluster's master
1361 endpoint.
1362 type: string
1363 type: object
1364 privateIpv6GoogleAccess:
1365 description: The desired state of IPv6 connectivity to Google Services.
1366 By default, no private IPv6 access to or from Google Services (all
1367 access will be via IPv4).
1368 type: string
1369 protectConfig:
1370 description: Enable/Disable Protect API features for the cluster.
1371 properties:
1372 workloadConfig:
1373 description: WorkloadConfig defines which actions are enabled
1374 for a cluster's workload configurations.
1375 properties:
1376 auditMode:
1377 description: Sets which mode of auditing should be used for
1378 the cluster's workloads. Accepted values are DISABLED, BASIC.
1379 type: string
1380 required:
1381 - auditMode
1382 type: object
1383 workloadVulnerabilityMode:
1384 description: Sets which mode to use for Protect workload vulnerability
1385 scanning feature. Accepted values are DISABLED, BASIC.
1386 type: string
1387 type: object
1388 releaseChannel:
1389 description: Configuration options for the Release channel feature,
1390 which provide more control over automatic upgrades of your GKE clusters.
1391 Note that removing this field from your config will not unenroll
1392 it. Instead, use the "UNSPECIFIED" channel.
1393 properties:
1394 channel:
1395 description: |-
1396 The selected release channel. Accepted values are:
1397 * UNSPECIFIED: Not set.
1398 * RAPID: Weekly upgrade cadence; Early testers and developers who requires new features.
1399 * REGULAR: Multiple per month upgrade cadence; Production users who need features not yet offered in the Stable channel.
1400 * STABLE: Every few months upgrade cadence; Production users who need stability above all else, and for whom frequent upgrades are too risky.
1401 type: string
1402 required:
1403 - channel
1404 type: object
1405 resourceID:
1406 description: Immutable. Optional. The name of the resource. Used for
1407 creation and acquisition. When unset, the value of `metadata.name`
1408 is used as the default.
1409 type: string
1410 resourceUsageExportConfig:
1411 description: Configuration for the ResourceUsageExportConfig feature.
1412 properties:
1413 bigqueryDestination:
1414 description: Parameters for using BigQuery as the destination
1415 of resource usage export.
1416 properties:
1417 datasetId:
1418 description: The ID of a BigQuery Dataset.
1419 type: string
1420 required:
1421 - datasetId
1422 type: object
1423 enableNetworkEgressMetering:
1424 description: Whether to enable network egress metering for this
1425 cluster. If enabled, a daemonset will be created in the cluster
1426 to meter network egress traffic.
1427 type: boolean
1428 enableResourceConsumptionMetering:
1429 description: Whether to enable resource consumption metering on
1430 this cluster. When enabled, a table will be created in the resource
1431 export BigQuery dataset to store resource consumption data.
1432 The resulting table can be joined with the resource usage table
1433 or with BigQuery billing export. Defaults to true.
1434 type: boolean
1435 required:
1436 - bigqueryDestination
1437 type: object
1438 serviceExternalIpsConfig:
1439 description: If set, and enabled=true, services with external ips
1440 field will not be blocked.
1441 properties:
1442 enabled:
1443 description: When enabled, services with exterenal ips specified
1444 will be allowed.
1445 type: boolean
1446 required:
1447 - enabled
1448 type: object
1449 subnetworkRef:
1450 properties:
1451 external:
1452 description: The external name of the referenced resource
1453 type: string
1454 kind:
1455 description: Kind of the referent.
1456 type: string
1457 name:
1458 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
1459 type: string
1460 namespace:
1461 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
1462 type: string
1463 type: object
1464 verticalPodAutoscaling:
1465 description: Vertical Pod Autoscaling automatically adjusts the resources
1466 of pods controlled by it.
1467 properties:
1468 enabled:
1469 description: Enables vertical pod autoscaling.
1470 type: boolean
1471 required:
1472 - enabled
1473 type: object
1474 workloadIdentityConfig:
1475 description: Configuration for the use of Kubernetes Service Accounts
1476 in GCP IAM policies.
1477 properties:
1478 identityNamespace:
1479 description: |-
1480 DEPRECATED. This field will be removed in a future major release as it has been deprecated in the API. Use `workloadPool` instead; `workloadPool` field will supersede this field.
1481 Enables workload identity.
1482 type: string
1483 workloadPool:
1484 description: The workload pool to attach all Kubernetes service
1485 accounts to.
1486 type: string
1487 type: object
1488 required:
1489 - location
1490 type: object
1491 status:
1492 properties:
1493 conditions:
1494 description: |-
1495 Conditions represent the latest available observations of the
1496 ContainerCluster's current state.
1497 items:
1498 properties:
1499 lastTransitionTime:
1500 description: Last time the condition transitioned from one status
1501 to another.
1502 type: string
1503 message:
1504 description: Human-readable message indicating details about
1505 last transition.
1506 type: string
1507 reason:
1508 description: |-
1509 Unique, one-word, CamelCase reason for the condition's last
1510 transition.
1511 type: string
1512 status:
1513 description: Status is the status of the condition. Can be True,
1514 False, Unknown.
1515 type: string
1516 type:
1517 description: Type is the type of the condition.
1518 type: string
1519 type: object
1520 type: array
1521 endpoint:
1522 description: The IP address of this cluster's Kubernetes master.
1523 type: string
1524 labelFingerprint:
1525 description: The fingerprint of the set of labels for this cluster.
1526 type: string
1527 masterVersion:
1528 description: The current version of the master in the cluster. This
1529 may be different than the min_master_version set in the config if
1530 the master has been updated by GKE.
1531 type: string
1532 observedGeneration:
1533 description: ObservedGeneration is the generation of the resource
1534 that was most recently observed by the Config Connector controller.
1535 If this is equal to metadata.generation, then that means that the
1536 current reported status reflects the most recent desired state of
1537 the resource.
1538 type: integer
1539 operation:
1540 type: string
1541 selfLink:
1542 description: Server-defined URL for the resource.
1543 type: string
1544 servicesIpv4Cidr:
1545 description: The IP address range of the Kubernetes services in this
1546 cluster, in CIDR notation (e.g. 1.2.3.4/29). Service addresses are
1547 typically put in the last /16 from the container CIDR.
1548 type: string
1549 tpuIpv4CidrBlock:
1550 description: The IP address range of the Cloud TPUs in this cluster,
1551 in CIDR notation (e.g. 1.2.3.4/29).
1552 type: string
1553 type: object
1554 type: object
1555 served: true
1556 storage: true
View as plain text