1{
2 "auth": {
3 "oauth2": {
4 "scopes": {
5 "https://www.googleapis.com/auth/cloud-platform": {
6 "description": "See, edit, configure, and delete your Google Cloud data and see the email address for your Google Account."
7 }
8 }
9 }
10 },
11 "basePath": "",
12 "baseUrl": "https://networkservices.googleapis.com/",
13 "batchPath": "batch",
14 "canonicalName": "NetworkServices",
15 "description": "",
16 "discoveryVersion": "v1",
17 "documentationLink": "https://cloud.google.com/networking",
18 "fullyEncodeReservedExpansion": true,
19 "icons": {
20 "x16": "http://www.google.com/images/icons/product/search-16.gif",
21 "x32": "http://www.google.com/images/icons/product/search-32.gif"
22 },
23 "id": "networkservices:v1",
24 "kind": "discovery#restDescription",
25 "mtlsRootUrl": "https://networkservices.mtls.googleapis.com/",
26 "name": "networkservices",
27 "ownerDomain": "google.com",
28 "ownerName": "Google",
29 "parameters": {
30 "$.xgafv": {
31 "description": "V1 error format.",
32 "enum": [
33 "1",
34 "2"
35 ],
36 "enumDescriptions": [
37 "v1 error format",
38 "v2 error format"
39 ],
40 "location": "query",
41 "type": "string"
42 },
43 "access_token": {
44 "description": "OAuth access token.",
45 "location": "query",
46 "type": "string"
47 },
48 "alt": {
49 "default": "json",
50 "description": "Data format for response.",
51 "enum": [
52 "json",
53 "media",
54 "proto"
55 ],
56 "enumDescriptions": [
57 "Responses with Content-Type of application/json",
58 "Media download with context-dependent Content-Type",
59 "Responses with Content-Type of application/x-protobuf"
60 ],
61 "location": "query",
62 "type": "string"
63 },
64 "callback": {
65 "description": "JSONP",
66 "location": "query",
67 "type": "string"
68 },
69 "fields": {
70 "description": "Selector specifying which fields to include in a partial response.",
71 "location": "query",
72 "type": "string"
73 },
74 "key": {
75 "description": "API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token.",
76 "location": "query",
77 "type": "string"
78 },
79 "oauth_token": {
80 "description": "OAuth 2.0 token for the current user.",
81 "location": "query",
82 "type": "string"
83 },
84 "prettyPrint": {
85 "default": "true",
86 "description": "Returns response with indentations and line breaks.",
87 "location": "query",
88 "type": "boolean"
89 },
90 "quotaUser": {
91 "description": "Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters.",
92 "location": "query",
93 "type": "string"
94 },
95 "uploadType": {
96 "description": "Legacy upload protocol for media (e.g. \"media\", \"multipart\").",
97 "location": "query",
98 "type": "string"
99 },
100 "upload_protocol": {
101 "description": "Upload protocol for media (e.g. \"raw\", \"multipart\").",
102 "location": "query",
103 "type": "string"
104 }
105 },
106 "protocol": "rest",
107 "resources": {
108 "projects": {
109 "resources": {
110 "locations": {
111 "methods": {
112 "get": {
113 "description": "Gets information about a location.",
114 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}",
115 "httpMethod": "GET",
116 "id": "networkservices.projects.locations.get",
117 "parameterOrder": [
118 "name"
119 ],
120 "parameters": {
121 "name": {
122 "description": "Resource name for the location.",
123 "location": "path",
124 "pattern": "^projects/[^/]+/locations/[^/]+$",
125 "required": true,
126 "type": "string"
127 }
128 },
129 "path": "v1/{+name}",
130 "response": {
131 "$ref": "Location"
132 },
133 "scopes": [
134 "https://www.googleapis.com/auth/cloud-platform"
135 ]
136 },
137 "list": {
138 "description": "Lists information about the supported locations for this service.",
139 "flatPath": "v1/projects/{projectsId}/locations",
140 "httpMethod": "GET",
141 "id": "networkservices.projects.locations.list",
142 "parameterOrder": [
143 "name"
144 ],
145 "parameters": {
146 "filter": {
147 "description": "A filter to narrow down results to a preferred subset. The filtering language accepts strings like `\"displayName=tokyo\"`, and is documented in more detail in [AIP-160](https://google.aip.dev/160).",
148 "location": "query",
149 "type": "string"
150 },
151 "name": {
152 "description": "The resource that owns the locations collection, if applicable.",
153 "location": "path",
154 "pattern": "^projects/[^/]+$",
155 "required": true,
156 "type": "string"
157 },
158 "pageSize": {
159 "description": "The maximum number of results to return. If not set, the service selects a default.",
160 "format": "int32",
161 "location": "query",
162 "type": "integer"
163 },
164 "pageToken": {
165 "description": "A page token received from the `next_page_token` field in the response. Send that page token to receive the subsequent page.",
166 "location": "query",
167 "type": "string"
168 }
169 },
170 "path": "v1/{+name}/locations",
171 "response": {
172 "$ref": "ListLocationsResponse"
173 },
174 "scopes": [
175 "https://www.googleapis.com/auth/cloud-platform"
176 ]
177 }
178 },
179 "resources": {
180 "edgeCacheKeysets": {
181 "methods": {
182 "getIamPolicy": {
183 "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.",
184 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/edgeCacheKeysets/{edgeCacheKeysetsId}:getIamPolicy",
185 "httpMethod": "GET",
186 "id": "networkservices.projects.locations.edgeCacheKeysets.getIamPolicy",
187 "parameterOrder": [
188 "resource"
189 ],
190 "parameters": {
191 "options.requestedPolicyVersion": {
192 "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).",
193 "format": "int32",
194 "location": "query",
195 "type": "integer"
196 },
197 "resource": {
198 "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
199 "location": "path",
200 "pattern": "^projects/[^/]+/locations/[^/]+/edgeCacheKeysets/[^/]+$",
201 "required": true,
202 "type": "string"
203 }
204 },
205 "path": "v1/{+resource}:getIamPolicy",
206 "response": {
207 "$ref": "Policy"
208 },
209 "scopes": [
210 "https://www.googleapis.com/auth/cloud-platform"
211 ]
212 },
213 "setIamPolicy": {
214 "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.",
215 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/edgeCacheKeysets/{edgeCacheKeysetsId}:setIamPolicy",
216 "httpMethod": "POST",
217 "id": "networkservices.projects.locations.edgeCacheKeysets.setIamPolicy",
218 "parameterOrder": [
219 "resource"
220 ],
221 "parameters": {
222 "resource": {
223 "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
224 "location": "path",
225 "pattern": "^projects/[^/]+/locations/[^/]+/edgeCacheKeysets/[^/]+$",
226 "required": true,
227 "type": "string"
228 }
229 },
230 "path": "v1/{+resource}:setIamPolicy",
231 "request": {
232 "$ref": "SetIamPolicyRequest"
233 },
234 "response": {
235 "$ref": "Policy"
236 },
237 "scopes": [
238 "https://www.googleapis.com/auth/cloud-platform"
239 ]
240 },
241 "testIamPermissions": {
242 "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.",
243 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/edgeCacheKeysets/{edgeCacheKeysetsId}:testIamPermissions",
244 "httpMethod": "POST",
245 "id": "networkservices.projects.locations.edgeCacheKeysets.testIamPermissions",
246 "parameterOrder": [
247 "resource"
248 ],
249 "parameters": {
250 "resource": {
251 "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
252 "location": "path",
253 "pattern": "^projects/[^/]+/locations/[^/]+/edgeCacheKeysets/[^/]+$",
254 "required": true,
255 "type": "string"
256 }
257 },
258 "path": "v1/{+resource}:testIamPermissions",
259 "request": {
260 "$ref": "TestIamPermissionsRequest"
261 },
262 "response": {
263 "$ref": "TestIamPermissionsResponse"
264 },
265 "scopes": [
266 "https://www.googleapis.com/auth/cloud-platform"
267 ]
268 }
269 }
270 },
271 "edgeCacheOrigins": {
272 "methods": {
273 "getIamPolicy": {
274 "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.",
275 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/edgeCacheOrigins/{edgeCacheOriginsId}:getIamPolicy",
276 "httpMethod": "GET",
277 "id": "networkservices.projects.locations.edgeCacheOrigins.getIamPolicy",
278 "parameterOrder": [
279 "resource"
280 ],
281 "parameters": {
282 "options.requestedPolicyVersion": {
283 "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).",
284 "format": "int32",
285 "location": "query",
286 "type": "integer"
287 },
288 "resource": {
289 "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
290 "location": "path",
291 "pattern": "^projects/[^/]+/locations/[^/]+/edgeCacheOrigins/[^/]+$",
292 "required": true,
293 "type": "string"
294 }
295 },
296 "path": "v1/{+resource}:getIamPolicy",
297 "response": {
298 "$ref": "Policy"
299 },
300 "scopes": [
301 "https://www.googleapis.com/auth/cloud-platform"
302 ]
303 },
304 "setIamPolicy": {
305 "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.",
306 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/edgeCacheOrigins/{edgeCacheOriginsId}:setIamPolicy",
307 "httpMethod": "POST",
308 "id": "networkservices.projects.locations.edgeCacheOrigins.setIamPolicy",
309 "parameterOrder": [
310 "resource"
311 ],
312 "parameters": {
313 "resource": {
314 "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
315 "location": "path",
316 "pattern": "^projects/[^/]+/locations/[^/]+/edgeCacheOrigins/[^/]+$",
317 "required": true,
318 "type": "string"
319 }
320 },
321 "path": "v1/{+resource}:setIamPolicy",
322 "request": {
323 "$ref": "SetIamPolicyRequest"
324 },
325 "response": {
326 "$ref": "Policy"
327 },
328 "scopes": [
329 "https://www.googleapis.com/auth/cloud-platform"
330 ]
331 },
332 "testIamPermissions": {
333 "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.",
334 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/edgeCacheOrigins/{edgeCacheOriginsId}:testIamPermissions",
335 "httpMethod": "POST",
336 "id": "networkservices.projects.locations.edgeCacheOrigins.testIamPermissions",
337 "parameterOrder": [
338 "resource"
339 ],
340 "parameters": {
341 "resource": {
342 "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
343 "location": "path",
344 "pattern": "^projects/[^/]+/locations/[^/]+/edgeCacheOrigins/[^/]+$",
345 "required": true,
346 "type": "string"
347 }
348 },
349 "path": "v1/{+resource}:testIamPermissions",
350 "request": {
351 "$ref": "TestIamPermissionsRequest"
352 },
353 "response": {
354 "$ref": "TestIamPermissionsResponse"
355 },
356 "scopes": [
357 "https://www.googleapis.com/auth/cloud-platform"
358 ]
359 }
360 }
361 },
362 "edgeCacheServices": {
363 "methods": {
364 "getIamPolicy": {
365 "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.",
366 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/edgeCacheServices/{edgeCacheServicesId}:getIamPolicy",
367 "httpMethod": "GET",
368 "id": "networkservices.projects.locations.edgeCacheServices.getIamPolicy",
369 "parameterOrder": [
370 "resource"
371 ],
372 "parameters": {
373 "options.requestedPolicyVersion": {
374 "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).",
375 "format": "int32",
376 "location": "query",
377 "type": "integer"
378 },
379 "resource": {
380 "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
381 "location": "path",
382 "pattern": "^projects/[^/]+/locations/[^/]+/edgeCacheServices/[^/]+$",
383 "required": true,
384 "type": "string"
385 }
386 },
387 "path": "v1/{+resource}:getIamPolicy",
388 "response": {
389 "$ref": "Policy"
390 },
391 "scopes": [
392 "https://www.googleapis.com/auth/cloud-platform"
393 ]
394 },
395 "setIamPolicy": {
396 "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.",
397 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/edgeCacheServices/{edgeCacheServicesId}:setIamPolicy",
398 "httpMethod": "POST",
399 "id": "networkservices.projects.locations.edgeCacheServices.setIamPolicy",
400 "parameterOrder": [
401 "resource"
402 ],
403 "parameters": {
404 "resource": {
405 "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
406 "location": "path",
407 "pattern": "^projects/[^/]+/locations/[^/]+/edgeCacheServices/[^/]+$",
408 "required": true,
409 "type": "string"
410 }
411 },
412 "path": "v1/{+resource}:setIamPolicy",
413 "request": {
414 "$ref": "SetIamPolicyRequest"
415 },
416 "response": {
417 "$ref": "Policy"
418 },
419 "scopes": [
420 "https://www.googleapis.com/auth/cloud-platform"
421 ]
422 },
423 "testIamPermissions": {
424 "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.",
425 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/edgeCacheServices/{edgeCacheServicesId}:testIamPermissions",
426 "httpMethod": "POST",
427 "id": "networkservices.projects.locations.edgeCacheServices.testIamPermissions",
428 "parameterOrder": [
429 "resource"
430 ],
431 "parameters": {
432 "resource": {
433 "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
434 "location": "path",
435 "pattern": "^projects/[^/]+/locations/[^/]+/edgeCacheServices/[^/]+$",
436 "required": true,
437 "type": "string"
438 }
439 },
440 "path": "v1/{+resource}:testIamPermissions",
441 "request": {
442 "$ref": "TestIamPermissionsRequest"
443 },
444 "response": {
445 "$ref": "TestIamPermissionsResponse"
446 },
447 "scopes": [
448 "https://www.googleapis.com/auth/cloud-platform"
449 ]
450 }
451 }
452 },
453 "endpointPolicies": {
454 "methods": {
455 "create": {
456 "description": "Creates a new EndpointPolicy in a given project and location.",
457 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/endpointPolicies",
458 "httpMethod": "POST",
459 "id": "networkservices.projects.locations.endpointPolicies.create",
460 "parameterOrder": [
461 "parent"
462 ],
463 "parameters": {
464 "endpointPolicyId": {
465 "description": "Required. Short name of the EndpointPolicy resource to be created. E.g. \"CustomECS\".",
466 "location": "query",
467 "type": "string"
468 },
469 "parent": {
470 "description": "Required. The parent resource of the EndpointPolicy. Must be in the format `projects/*/locations/global`.",
471 "location": "path",
472 "pattern": "^projects/[^/]+/locations/[^/]+$",
473 "required": true,
474 "type": "string"
475 }
476 },
477 "path": "v1/{+parent}/endpointPolicies",
478 "request": {
479 "$ref": "EndpointPolicy"
480 },
481 "response": {
482 "$ref": "Operation"
483 },
484 "scopes": [
485 "https://www.googleapis.com/auth/cloud-platform"
486 ]
487 },
488 "delete": {
489 "description": "Deletes a single EndpointPolicy.",
490 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/endpointPolicies/{endpointPoliciesId}",
491 "httpMethod": "DELETE",
492 "id": "networkservices.projects.locations.endpointPolicies.delete",
493 "parameterOrder": [
494 "name"
495 ],
496 "parameters": {
497 "name": {
498 "description": "Required. A name of the EndpointPolicy to delete. Must be in the format `projects/*/locations/global/endpointPolicies/*`.",
499 "location": "path",
500 "pattern": "^projects/[^/]+/locations/[^/]+/endpointPolicies/[^/]+$",
501 "required": true,
502 "type": "string"
503 }
504 },
505 "path": "v1/{+name}",
506 "response": {
507 "$ref": "Operation"
508 },
509 "scopes": [
510 "https://www.googleapis.com/auth/cloud-platform"
511 ]
512 },
513 "get": {
514 "description": "Gets details of a single EndpointPolicy.",
515 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/endpointPolicies/{endpointPoliciesId}",
516 "httpMethod": "GET",
517 "id": "networkservices.projects.locations.endpointPolicies.get",
518 "parameterOrder": [
519 "name"
520 ],
521 "parameters": {
522 "name": {
523 "description": "Required. A name of the EndpointPolicy to get. Must be in the format `projects/*/locations/global/endpointPolicies/*`.",
524 "location": "path",
525 "pattern": "^projects/[^/]+/locations/[^/]+/endpointPolicies/[^/]+$",
526 "required": true,
527 "type": "string"
528 }
529 },
530 "path": "v1/{+name}",
531 "response": {
532 "$ref": "EndpointPolicy"
533 },
534 "scopes": [
535 "https://www.googleapis.com/auth/cloud-platform"
536 ]
537 },
538 "getIamPolicy": {
539 "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.",
540 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/endpointPolicies/{endpointPoliciesId}:getIamPolicy",
541 "httpMethod": "GET",
542 "id": "networkservices.projects.locations.endpointPolicies.getIamPolicy",
543 "parameterOrder": [
544 "resource"
545 ],
546 "parameters": {
547 "options.requestedPolicyVersion": {
548 "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).",
549 "format": "int32",
550 "location": "query",
551 "type": "integer"
552 },
553 "resource": {
554 "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
555 "location": "path",
556 "pattern": "^projects/[^/]+/locations/[^/]+/endpointPolicies/[^/]+$",
557 "required": true,
558 "type": "string"
559 }
560 },
561 "path": "v1/{+resource}:getIamPolicy",
562 "response": {
563 "$ref": "Policy"
564 },
565 "scopes": [
566 "https://www.googleapis.com/auth/cloud-platform"
567 ]
568 },
569 "list": {
570 "description": "Lists EndpointPolicies in a given project and location.",
571 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/endpointPolicies",
572 "httpMethod": "GET",
573 "id": "networkservices.projects.locations.endpointPolicies.list",
574 "parameterOrder": [
575 "parent"
576 ],
577 "parameters": {
578 "pageSize": {
579 "description": "Maximum number of EndpointPolicies to return per call.",
580 "format": "int32",
581 "location": "query",
582 "type": "integer"
583 },
584 "pageToken": {
585 "description": "The value returned by the last `ListEndpointPoliciesResponse` Indicates that this is a continuation of a prior `ListEndpointPolicies` call, and that the system should return the next page of data.",
586 "location": "query",
587 "type": "string"
588 },
589 "parent": {
590 "description": "Required. The project and location from which the EndpointPolicies should be listed, specified in the format `projects/*/locations/global`.",
591 "location": "path",
592 "pattern": "^projects/[^/]+/locations/[^/]+$",
593 "required": true,
594 "type": "string"
595 }
596 },
597 "path": "v1/{+parent}/endpointPolicies",
598 "response": {
599 "$ref": "ListEndpointPoliciesResponse"
600 },
601 "scopes": [
602 "https://www.googleapis.com/auth/cloud-platform"
603 ]
604 },
605 "patch": {
606 "description": "Updates the parameters of a single EndpointPolicy.",
607 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/endpointPolicies/{endpointPoliciesId}",
608 "httpMethod": "PATCH",
609 "id": "networkservices.projects.locations.endpointPolicies.patch",
610 "parameterOrder": [
611 "name"
612 ],
613 "parameters": {
614 "name": {
615 "description": "Required. Name of the EndpointPolicy resource. It matches pattern `projects/{project}/locations/global/endpointPolicies/{endpoint_policy}`.",
616 "location": "path",
617 "pattern": "^projects/[^/]+/locations/[^/]+/endpointPolicies/[^/]+$",
618 "required": true,
619 "type": "string"
620 },
621 "updateMask": {
622 "description": "Optional. Field mask is used to specify the fields to be overwritten in the EndpointPolicy resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field will be overwritten if it is in the mask. If the user does not provide a mask then all fields will be overwritten.",
623 "format": "google-fieldmask",
624 "location": "query",
625 "type": "string"
626 }
627 },
628 "path": "v1/{+name}",
629 "request": {
630 "$ref": "EndpointPolicy"
631 },
632 "response": {
633 "$ref": "Operation"
634 },
635 "scopes": [
636 "https://www.googleapis.com/auth/cloud-platform"
637 ]
638 },
639 "setIamPolicy": {
640 "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.",
641 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/endpointPolicies/{endpointPoliciesId}:setIamPolicy",
642 "httpMethod": "POST",
643 "id": "networkservices.projects.locations.endpointPolicies.setIamPolicy",
644 "parameterOrder": [
645 "resource"
646 ],
647 "parameters": {
648 "resource": {
649 "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
650 "location": "path",
651 "pattern": "^projects/[^/]+/locations/[^/]+/endpointPolicies/[^/]+$",
652 "required": true,
653 "type": "string"
654 }
655 },
656 "path": "v1/{+resource}:setIamPolicy",
657 "request": {
658 "$ref": "SetIamPolicyRequest"
659 },
660 "response": {
661 "$ref": "Policy"
662 },
663 "scopes": [
664 "https://www.googleapis.com/auth/cloud-platform"
665 ]
666 },
667 "testIamPermissions": {
668 "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.",
669 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/endpointPolicies/{endpointPoliciesId}:testIamPermissions",
670 "httpMethod": "POST",
671 "id": "networkservices.projects.locations.endpointPolicies.testIamPermissions",
672 "parameterOrder": [
673 "resource"
674 ],
675 "parameters": {
676 "resource": {
677 "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
678 "location": "path",
679 "pattern": "^projects/[^/]+/locations/[^/]+/endpointPolicies/[^/]+$",
680 "required": true,
681 "type": "string"
682 }
683 },
684 "path": "v1/{+resource}:testIamPermissions",
685 "request": {
686 "$ref": "TestIamPermissionsRequest"
687 },
688 "response": {
689 "$ref": "TestIamPermissionsResponse"
690 },
691 "scopes": [
692 "https://www.googleapis.com/auth/cloud-platform"
693 ]
694 }
695 }
696 },
697 "gateways": {
698 "methods": {
699 "create": {
700 "description": "Creates a new Gateway in a given project and location.",
701 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/gateways",
702 "httpMethod": "POST",
703 "id": "networkservices.projects.locations.gateways.create",
704 "parameterOrder": [
705 "parent"
706 ],
707 "parameters": {
708 "gatewayId": {
709 "description": "Required. Short name of the Gateway resource to be created.",
710 "location": "query",
711 "type": "string"
712 },
713 "parent": {
714 "description": "Required. The parent resource of the Gateway. Must be in the format `projects/*/locations/*`.",
715 "location": "path",
716 "pattern": "^projects/[^/]+/locations/[^/]+$",
717 "required": true,
718 "type": "string"
719 }
720 },
721 "path": "v1/{+parent}/gateways",
722 "request": {
723 "$ref": "Gateway"
724 },
725 "response": {
726 "$ref": "Operation"
727 },
728 "scopes": [
729 "https://www.googleapis.com/auth/cloud-platform"
730 ]
731 },
732 "delete": {
733 "description": "Deletes a single Gateway.",
734 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/gateways/{gatewaysId}",
735 "httpMethod": "DELETE",
736 "id": "networkservices.projects.locations.gateways.delete",
737 "parameterOrder": [
738 "name"
739 ],
740 "parameters": {
741 "name": {
742 "description": "Required. A name of the Gateway to delete. Must be in the format `projects/*/locations/*/gateways/*`.",
743 "location": "path",
744 "pattern": "^projects/[^/]+/locations/[^/]+/gateways/[^/]+$",
745 "required": true,
746 "type": "string"
747 }
748 },
749 "path": "v1/{+name}",
750 "response": {
751 "$ref": "Operation"
752 },
753 "scopes": [
754 "https://www.googleapis.com/auth/cloud-platform"
755 ]
756 },
757 "get": {
758 "description": "Gets details of a single Gateway.",
759 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/gateways/{gatewaysId}",
760 "httpMethod": "GET",
761 "id": "networkservices.projects.locations.gateways.get",
762 "parameterOrder": [
763 "name"
764 ],
765 "parameters": {
766 "name": {
767 "description": "Required. A name of the Gateway to get. Must be in the format `projects/*/locations/*/gateways/*`.",
768 "location": "path",
769 "pattern": "^projects/[^/]+/locations/[^/]+/gateways/[^/]+$",
770 "required": true,
771 "type": "string"
772 }
773 },
774 "path": "v1/{+name}",
775 "response": {
776 "$ref": "Gateway"
777 },
778 "scopes": [
779 "https://www.googleapis.com/auth/cloud-platform"
780 ]
781 },
782 "getIamPolicy": {
783 "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.",
784 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/gateways/{gatewaysId}:getIamPolicy",
785 "httpMethod": "GET",
786 "id": "networkservices.projects.locations.gateways.getIamPolicy",
787 "parameterOrder": [
788 "resource"
789 ],
790 "parameters": {
791 "options.requestedPolicyVersion": {
792 "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).",
793 "format": "int32",
794 "location": "query",
795 "type": "integer"
796 },
797 "resource": {
798 "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
799 "location": "path",
800 "pattern": "^projects/[^/]+/locations/[^/]+/gateways/[^/]+$",
801 "required": true,
802 "type": "string"
803 }
804 },
805 "path": "v1/{+resource}:getIamPolicy",
806 "response": {
807 "$ref": "Policy"
808 },
809 "scopes": [
810 "https://www.googleapis.com/auth/cloud-platform"
811 ]
812 },
813 "list": {
814 "description": "Lists Gateways in a given project and location.",
815 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/gateways",
816 "httpMethod": "GET",
817 "id": "networkservices.projects.locations.gateways.list",
818 "parameterOrder": [
819 "parent"
820 ],
821 "parameters": {
822 "pageSize": {
823 "description": "Maximum number of Gateways to return per call.",
824 "format": "int32",
825 "location": "query",
826 "type": "integer"
827 },
828 "pageToken": {
829 "description": "The value returned by the last `ListGatewaysResponse` Indicates that this is a continuation of a prior `ListGateways` call, and that the system should return the next page of data.",
830 "location": "query",
831 "type": "string"
832 },
833 "parent": {
834 "description": "Required. The project and location from which the Gateways should be listed, specified in the format `projects/*/locations/*`.",
835 "location": "path",
836 "pattern": "^projects/[^/]+/locations/[^/]+$",
837 "required": true,
838 "type": "string"
839 }
840 },
841 "path": "v1/{+parent}/gateways",
842 "response": {
843 "$ref": "ListGatewaysResponse"
844 },
845 "scopes": [
846 "https://www.googleapis.com/auth/cloud-platform"
847 ]
848 },
849 "patch": {
850 "description": "Updates the parameters of a single Gateway.",
851 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/gateways/{gatewaysId}",
852 "httpMethod": "PATCH",
853 "id": "networkservices.projects.locations.gateways.patch",
854 "parameterOrder": [
855 "name"
856 ],
857 "parameters": {
858 "name": {
859 "description": "Required. Name of the Gateway resource. It matches pattern `projects/*/locations/*/gateways/`.",
860 "location": "path",
861 "pattern": "^projects/[^/]+/locations/[^/]+/gateways/[^/]+$",
862 "required": true,
863 "type": "string"
864 },
865 "updateMask": {
866 "description": "Optional. Field mask is used to specify the fields to be overwritten in the Gateway resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field will be overwritten if it is in the mask. If the user does not provide a mask then all fields will be overwritten.",
867 "format": "google-fieldmask",
868 "location": "query",
869 "type": "string"
870 }
871 },
872 "path": "v1/{+name}",
873 "request": {
874 "$ref": "Gateway"
875 },
876 "response": {
877 "$ref": "Operation"
878 },
879 "scopes": [
880 "https://www.googleapis.com/auth/cloud-platform"
881 ]
882 },
883 "setIamPolicy": {
884 "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.",
885 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/gateways/{gatewaysId}:setIamPolicy",
886 "httpMethod": "POST",
887 "id": "networkservices.projects.locations.gateways.setIamPolicy",
888 "parameterOrder": [
889 "resource"
890 ],
891 "parameters": {
892 "resource": {
893 "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
894 "location": "path",
895 "pattern": "^projects/[^/]+/locations/[^/]+/gateways/[^/]+$",
896 "required": true,
897 "type": "string"
898 }
899 },
900 "path": "v1/{+resource}:setIamPolicy",
901 "request": {
902 "$ref": "SetIamPolicyRequest"
903 },
904 "response": {
905 "$ref": "Policy"
906 },
907 "scopes": [
908 "https://www.googleapis.com/auth/cloud-platform"
909 ]
910 },
911 "testIamPermissions": {
912 "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.",
913 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/gateways/{gatewaysId}:testIamPermissions",
914 "httpMethod": "POST",
915 "id": "networkservices.projects.locations.gateways.testIamPermissions",
916 "parameterOrder": [
917 "resource"
918 ],
919 "parameters": {
920 "resource": {
921 "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
922 "location": "path",
923 "pattern": "^projects/[^/]+/locations/[^/]+/gateways/[^/]+$",
924 "required": true,
925 "type": "string"
926 }
927 },
928 "path": "v1/{+resource}:testIamPermissions",
929 "request": {
930 "$ref": "TestIamPermissionsRequest"
931 },
932 "response": {
933 "$ref": "TestIamPermissionsResponse"
934 },
935 "scopes": [
936 "https://www.googleapis.com/auth/cloud-platform"
937 ]
938 }
939 }
940 },
941 "grpcRoutes": {
942 "methods": {
943 "create": {
944 "description": "Creates a new GrpcRoute in a given project and location.",
945 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/grpcRoutes",
946 "httpMethod": "POST",
947 "id": "networkservices.projects.locations.grpcRoutes.create",
948 "parameterOrder": [
949 "parent"
950 ],
951 "parameters": {
952 "grpcRouteId": {
953 "description": "Required. Short name of the GrpcRoute resource to be created.",
954 "location": "query",
955 "type": "string"
956 },
957 "parent": {
958 "description": "Required. The parent resource of the GrpcRoute. Must be in the format `projects/*/locations/global`.",
959 "location": "path",
960 "pattern": "^projects/[^/]+/locations/[^/]+$",
961 "required": true,
962 "type": "string"
963 }
964 },
965 "path": "v1/{+parent}/grpcRoutes",
966 "request": {
967 "$ref": "GrpcRoute"
968 },
969 "response": {
970 "$ref": "Operation"
971 },
972 "scopes": [
973 "https://www.googleapis.com/auth/cloud-platform"
974 ]
975 },
976 "delete": {
977 "description": "Deletes a single GrpcRoute.",
978 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/grpcRoutes/{grpcRoutesId}",
979 "httpMethod": "DELETE",
980 "id": "networkservices.projects.locations.grpcRoutes.delete",
981 "parameterOrder": [
982 "name"
983 ],
984 "parameters": {
985 "name": {
986 "description": "Required. A name of the GrpcRoute to delete. Must be in the format `projects/*/locations/global/grpcRoutes/*`.",
987 "location": "path",
988 "pattern": "^projects/[^/]+/locations/[^/]+/grpcRoutes/[^/]+$",
989 "required": true,
990 "type": "string"
991 }
992 },
993 "path": "v1/{+name}",
994 "response": {
995 "$ref": "Operation"
996 },
997 "scopes": [
998 "https://www.googleapis.com/auth/cloud-platform"
999 ]
1000 },
1001 "get": {
1002 "description": "Gets details of a single GrpcRoute.",
1003 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/grpcRoutes/{grpcRoutesId}",
1004 "httpMethod": "GET",
1005 "id": "networkservices.projects.locations.grpcRoutes.get",
1006 "parameterOrder": [
1007 "name"
1008 ],
1009 "parameters": {
1010 "name": {
1011 "description": "Required. A name of the GrpcRoute to get. Must be in the format `projects/*/locations/global/grpcRoutes/*`.",
1012 "location": "path",
1013 "pattern": "^projects/[^/]+/locations/[^/]+/grpcRoutes/[^/]+$",
1014 "required": true,
1015 "type": "string"
1016 }
1017 },
1018 "path": "v1/{+name}",
1019 "response": {
1020 "$ref": "GrpcRoute"
1021 },
1022 "scopes": [
1023 "https://www.googleapis.com/auth/cloud-platform"
1024 ]
1025 },
1026 "list": {
1027 "description": "Lists GrpcRoutes in a given project and location.",
1028 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/grpcRoutes",
1029 "httpMethod": "GET",
1030 "id": "networkservices.projects.locations.grpcRoutes.list",
1031 "parameterOrder": [
1032 "parent"
1033 ],
1034 "parameters": {
1035 "pageSize": {
1036 "description": "Maximum number of GrpcRoutes to return per call.",
1037 "format": "int32",
1038 "location": "query",
1039 "type": "integer"
1040 },
1041 "pageToken": {
1042 "description": "The value returned by the last `ListGrpcRoutesResponse` Indicates that this is a continuation of a prior `ListGrpcRoutes` call, and that the system should return the next page of data.",
1043 "location": "query",
1044 "type": "string"
1045 },
1046 "parent": {
1047 "description": "Required. The project and location from which the GrpcRoutes should be listed, specified in the format `projects/*/locations/global`.",
1048 "location": "path",
1049 "pattern": "^projects/[^/]+/locations/[^/]+$",
1050 "required": true,
1051 "type": "string"
1052 }
1053 },
1054 "path": "v1/{+parent}/grpcRoutes",
1055 "response": {
1056 "$ref": "ListGrpcRoutesResponse"
1057 },
1058 "scopes": [
1059 "https://www.googleapis.com/auth/cloud-platform"
1060 ]
1061 },
1062 "patch": {
1063 "description": "Updates the parameters of a single GrpcRoute.",
1064 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/grpcRoutes/{grpcRoutesId}",
1065 "httpMethod": "PATCH",
1066 "id": "networkservices.projects.locations.grpcRoutes.patch",
1067 "parameterOrder": [
1068 "name"
1069 ],
1070 "parameters": {
1071 "name": {
1072 "description": "Required. Name of the GrpcRoute resource. It matches pattern `projects/*/locations/global/grpcRoutes/`",
1073 "location": "path",
1074 "pattern": "^projects/[^/]+/locations/[^/]+/grpcRoutes/[^/]+$",
1075 "required": true,
1076 "type": "string"
1077 },
1078 "updateMask": {
1079 "description": "Optional. Field mask is used to specify the fields to be overwritten in the GrpcRoute resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field will be overwritten if it is in the mask. If the user does not provide a mask then all fields will be overwritten.",
1080 "format": "google-fieldmask",
1081 "location": "query",
1082 "type": "string"
1083 }
1084 },
1085 "path": "v1/{+name}",
1086 "request": {
1087 "$ref": "GrpcRoute"
1088 },
1089 "response": {
1090 "$ref": "Operation"
1091 },
1092 "scopes": [
1093 "https://www.googleapis.com/auth/cloud-platform"
1094 ]
1095 }
1096 }
1097 },
1098 "httpRoutes": {
1099 "methods": {
1100 "create": {
1101 "description": "Creates a new HttpRoute in a given project and location.",
1102 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/httpRoutes",
1103 "httpMethod": "POST",
1104 "id": "networkservices.projects.locations.httpRoutes.create",
1105 "parameterOrder": [
1106 "parent"
1107 ],
1108 "parameters": {
1109 "httpRouteId": {
1110 "description": "Required. Short name of the HttpRoute resource to be created.",
1111 "location": "query",
1112 "type": "string"
1113 },
1114 "parent": {
1115 "description": "Required. The parent resource of the HttpRoute. Must be in the format `projects/*/locations/global`.",
1116 "location": "path",
1117 "pattern": "^projects/[^/]+/locations/[^/]+$",
1118 "required": true,
1119 "type": "string"
1120 }
1121 },
1122 "path": "v1/{+parent}/httpRoutes",
1123 "request": {
1124 "$ref": "HttpRoute"
1125 },
1126 "response": {
1127 "$ref": "Operation"
1128 },
1129 "scopes": [
1130 "https://www.googleapis.com/auth/cloud-platform"
1131 ]
1132 },
1133 "delete": {
1134 "description": "Deletes a single HttpRoute.",
1135 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/httpRoutes/{httpRoutesId}",
1136 "httpMethod": "DELETE",
1137 "id": "networkservices.projects.locations.httpRoutes.delete",
1138 "parameterOrder": [
1139 "name"
1140 ],
1141 "parameters": {
1142 "name": {
1143 "description": "Required. A name of the HttpRoute to delete. Must be in the format `projects/*/locations/global/httpRoutes/*`.",
1144 "location": "path",
1145 "pattern": "^projects/[^/]+/locations/[^/]+/httpRoutes/[^/]+$",
1146 "required": true,
1147 "type": "string"
1148 }
1149 },
1150 "path": "v1/{+name}",
1151 "response": {
1152 "$ref": "Operation"
1153 },
1154 "scopes": [
1155 "https://www.googleapis.com/auth/cloud-platform"
1156 ]
1157 },
1158 "get": {
1159 "description": "Gets details of a single HttpRoute.",
1160 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/httpRoutes/{httpRoutesId}",
1161 "httpMethod": "GET",
1162 "id": "networkservices.projects.locations.httpRoutes.get",
1163 "parameterOrder": [
1164 "name"
1165 ],
1166 "parameters": {
1167 "name": {
1168 "description": "Required. A name of the HttpRoute to get. Must be in the format `projects/*/locations/global/httpRoutes/*`.",
1169 "location": "path",
1170 "pattern": "^projects/[^/]+/locations/[^/]+/httpRoutes/[^/]+$",
1171 "required": true,
1172 "type": "string"
1173 }
1174 },
1175 "path": "v1/{+name}",
1176 "response": {
1177 "$ref": "HttpRoute"
1178 },
1179 "scopes": [
1180 "https://www.googleapis.com/auth/cloud-platform"
1181 ]
1182 },
1183 "list": {
1184 "description": "Lists HttpRoute in a given project and location.",
1185 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/httpRoutes",
1186 "httpMethod": "GET",
1187 "id": "networkservices.projects.locations.httpRoutes.list",
1188 "parameterOrder": [
1189 "parent"
1190 ],
1191 "parameters": {
1192 "pageSize": {
1193 "description": "Maximum number of HttpRoutes to return per call.",
1194 "format": "int32",
1195 "location": "query",
1196 "type": "integer"
1197 },
1198 "pageToken": {
1199 "description": "The value returned by the last `ListHttpRoutesResponse` Indicates that this is a continuation of a prior `ListHttpRoutes` call, and that the system should return the next page of data.",
1200 "location": "query",
1201 "type": "string"
1202 },
1203 "parent": {
1204 "description": "Required. The project and location from which the HttpRoutes should be listed, specified in the format `projects/*/locations/global`.",
1205 "location": "path",
1206 "pattern": "^projects/[^/]+/locations/[^/]+$",
1207 "required": true,
1208 "type": "string"
1209 }
1210 },
1211 "path": "v1/{+parent}/httpRoutes",
1212 "response": {
1213 "$ref": "ListHttpRoutesResponse"
1214 },
1215 "scopes": [
1216 "https://www.googleapis.com/auth/cloud-platform"
1217 ]
1218 },
1219 "patch": {
1220 "description": "Updates the parameters of a single HttpRoute.",
1221 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/httpRoutes/{httpRoutesId}",
1222 "httpMethod": "PATCH",
1223 "id": "networkservices.projects.locations.httpRoutes.patch",
1224 "parameterOrder": [
1225 "name"
1226 ],
1227 "parameters": {
1228 "name": {
1229 "description": "Required. Name of the HttpRoute resource. It matches pattern `projects/*/locations/global/httpRoutes/http_route_name\u003e`.",
1230 "location": "path",
1231 "pattern": "^projects/[^/]+/locations/[^/]+/httpRoutes/[^/]+$",
1232 "required": true,
1233 "type": "string"
1234 },
1235 "updateMask": {
1236 "description": "Optional. Field mask is used to specify the fields to be overwritten in the HttpRoute resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field will be overwritten if it is in the mask. If the user does not provide a mask then all fields will be overwritten.",
1237 "format": "google-fieldmask",
1238 "location": "query",
1239 "type": "string"
1240 }
1241 },
1242 "path": "v1/{+name}",
1243 "request": {
1244 "$ref": "HttpRoute"
1245 },
1246 "response": {
1247 "$ref": "Operation"
1248 },
1249 "scopes": [
1250 "https://www.googleapis.com/auth/cloud-platform"
1251 ]
1252 }
1253 }
1254 },
1255 "lbRouteExtensions": {
1256 "methods": {
1257 "create": {
1258 "description": "Creates a new `LbRouteExtension` resource in a given project and location.",
1259 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/lbRouteExtensions",
1260 "httpMethod": "POST",
1261 "id": "networkservices.projects.locations.lbRouteExtensions.create",
1262 "parameterOrder": [
1263 "parent"
1264 ],
1265 "parameters": {
1266 "lbRouteExtensionId": {
1267 "description": "Required. User-provided ID of the `LbRouteExtension` resource to be created.",
1268 "location": "query",
1269 "type": "string"
1270 },
1271 "parent": {
1272 "description": "Required. The parent resource of the `LbRouteExtension` resource. Must be in the format `projects/{project}/locations/{location}`.",
1273 "location": "path",
1274 "pattern": "^projects/[^/]+/locations/[^/]+$",
1275 "required": true,
1276 "type": "string"
1277 },
1278 "requestId": {
1279 "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server can ignore the request if it has already been completed. The server guarantees that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, ignores the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).",
1280 "location": "query",
1281 "type": "string"
1282 }
1283 },
1284 "path": "v1/{+parent}/lbRouteExtensions",
1285 "request": {
1286 "$ref": "LbRouteExtension"
1287 },
1288 "response": {
1289 "$ref": "Operation"
1290 },
1291 "scopes": [
1292 "https://www.googleapis.com/auth/cloud-platform"
1293 ]
1294 },
1295 "delete": {
1296 "description": "Deletes the specified `LbRouteExtension` resource.",
1297 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/lbRouteExtensions/{lbRouteExtensionsId}",
1298 "httpMethod": "DELETE",
1299 "id": "networkservices.projects.locations.lbRouteExtensions.delete",
1300 "parameterOrder": [
1301 "name"
1302 ],
1303 "parameters": {
1304 "name": {
1305 "description": "Required. The name of the `LbRouteExtension` resource to delete. Must be in the format `projects/{project}/locations/{location}/lbRouteExtensions/{lb_route_extension}`.",
1306 "location": "path",
1307 "pattern": "^projects/[^/]+/locations/[^/]+/lbRouteExtensions/[^/]+$",
1308 "required": true,
1309 "type": "string"
1310 },
1311 "requestId": {
1312 "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server can ignore the request if it has already been completed. The server guarantees that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, ignores the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).",
1313 "location": "query",
1314 "type": "string"
1315 }
1316 },
1317 "path": "v1/{+name}",
1318 "response": {
1319 "$ref": "Operation"
1320 },
1321 "scopes": [
1322 "https://www.googleapis.com/auth/cloud-platform"
1323 ]
1324 },
1325 "get": {
1326 "description": "Gets details of the specified `LbRouteExtension` resource.",
1327 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/lbRouteExtensions/{lbRouteExtensionsId}",
1328 "httpMethod": "GET",
1329 "id": "networkservices.projects.locations.lbRouteExtensions.get",
1330 "parameterOrder": [
1331 "name"
1332 ],
1333 "parameters": {
1334 "name": {
1335 "description": "Required. A name of the `LbRouteExtension` resource to get. Must be in the format `projects/{project}/locations/{location}/lbRouteExtensions/{lb_route_extension}`.",
1336 "location": "path",
1337 "pattern": "^projects/[^/]+/locations/[^/]+/lbRouteExtensions/[^/]+$",
1338 "required": true,
1339 "type": "string"
1340 }
1341 },
1342 "path": "v1/{+name}",
1343 "response": {
1344 "$ref": "LbRouteExtension"
1345 },
1346 "scopes": [
1347 "https://www.googleapis.com/auth/cloud-platform"
1348 ]
1349 },
1350 "list": {
1351 "description": "Lists `LbRouteExtension` resources in a given project and location.",
1352 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/lbRouteExtensions",
1353 "httpMethod": "GET",
1354 "id": "networkservices.projects.locations.lbRouteExtensions.list",
1355 "parameterOrder": [
1356 "parent"
1357 ],
1358 "parameters": {
1359 "filter": {
1360 "description": "Optional. Filtering results.",
1361 "location": "query",
1362 "type": "string"
1363 },
1364 "orderBy": {
1365 "description": "Optional. Hint for how to order the results.",
1366 "location": "query",
1367 "type": "string"
1368 },
1369 "pageSize": {
1370 "description": "Optional. Requested page size. The server might return fewer items than requested. If unspecified, the server picks an appropriate default.",
1371 "format": "int32",
1372 "location": "query",
1373 "type": "integer"
1374 },
1375 "pageToken": {
1376 "description": "Optional. A token identifying a page of results that the server returns.",
1377 "location": "query",
1378 "type": "string"
1379 },
1380 "parent": {
1381 "description": "Required. The project and location from which the `LbRouteExtension` resources are listed, specified in the following format: `projects/{project}/locations/{location}`.",
1382 "location": "path",
1383 "pattern": "^projects/[^/]+/locations/[^/]+$",
1384 "required": true,
1385 "type": "string"
1386 }
1387 },
1388 "path": "v1/{+parent}/lbRouteExtensions",
1389 "response": {
1390 "$ref": "ListLbRouteExtensionsResponse"
1391 },
1392 "scopes": [
1393 "https://www.googleapis.com/auth/cloud-platform"
1394 ]
1395 },
1396 "patch": {
1397 "description": "Updates the parameters of the specified `LbRouteExtension` resource.",
1398 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/lbRouteExtensions/{lbRouteExtensionsId}",
1399 "httpMethod": "PATCH",
1400 "id": "networkservices.projects.locations.lbRouteExtensions.patch",
1401 "parameterOrder": [
1402 "name"
1403 ],
1404 "parameters": {
1405 "name": {
1406 "description": "Required. Identifier. Name of the `LbRouteExtension` resource in the following format: `projects/{project}/locations/{location}/lbRouteExtensions/{lb_route_extension}`.",
1407 "location": "path",
1408 "pattern": "^projects/[^/]+/locations/[^/]+/lbRouteExtensions/[^/]+$",
1409 "required": true,
1410 "type": "string"
1411 },
1412 "requestId": {
1413 "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server can ignore the request if it has already been completed. The server guarantees that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, ignores the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).",
1414 "location": "query",
1415 "type": "string"
1416 },
1417 "updateMask": {
1418 "description": "Optional. Used to specify the fields to be overwritten in the `LbRouteExtension` resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field is overwritten if it is in the mask. If the user does not specify a mask, then all fields are overwritten.",
1419 "format": "google-fieldmask",
1420 "location": "query",
1421 "type": "string"
1422 }
1423 },
1424 "path": "v1/{+name}",
1425 "request": {
1426 "$ref": "LbRouteExtension"
1427 },
1428 "response": {
1429 "$ref": "Operation"
1430 },
1431 "scopes": [
1432 "https://www.googleapis.com/auth/cloud-platform"
1433 ]
1434 }
1435 }
1436 },
1437 "lbTrafficExtensions": {
1438 "methods": {
1439 "create": {
1440 "description": "Creates a new `LbTrafficExtension` resource in a given project and location.",
1441 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/lbTrafficExtensions",
1442 "httpMethod": "POST",
1443 "id": "networkservices.projects.locations.lbTrafficExtensions.create",
1444 "parameterOrder": [
1445 "parent"
1446 ],
1447 "parameters": {
1448 "lbTrafficExtensionId": {
1449 "description": "Required. User-provided ID of the `LbTrafficExtension` resource to be created.",
1450 "location": "query",
1451 "type": "string"
1452 },
1453 "parent": {
1454 "description": "Required. The parent resource of the `LbTrafficExtension` resource. Must be in the format `projects/{project}/locations/{location}`.",
1455 "location": "path",
1456 "pattern": "^projects/[^/]+/locations/[^/]+$",
1457 "required": true,
1458 "type": "string"
1459 },
1460 "requestId": {
1461 "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server can ignore the request if it has already been completed. The server guarantees that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, ignores the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).",
1462 "location": "query",
1463 "type": "string"
1464 }
1465 },
1466 "path": "v1/{+parent}/lbTrafficExtensions",
1467 "request": {
1468 "$ref": "LbTrafficExtension"
1469 },
1470 "response": {
1471 "$ref": "Operation"
1472 },
1473 "scopes": [
1474 "https://www.googleapis.com/auth/cloud-platform"
1475 ]
1476 },
1477 "delete": {
1478 "description": "Deletes the specified `LbTrafficExtension` resource.",
1479 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/lbTrafficExtensions/{lbTrafficExtensionsId}",
1480 "httpMethod": "DELETE",
1481 "id": "networkservices.projects.locations.lbTrafficExtensions.delete",
1482 "parameterOrder": [
1483 "name"
1484 ],
1485 "parameters": {
1486 "name": {
1487 "description": "Required. The name of the `LbTrafficExtension` resource to delete. Must be in the format `projects/{project}/locations/{location}/lbTrafficExtensions/{lb_traffic_extension}`.",
1488 "location": "path",
1489 "pattern": "^projects/[^/]+/locations/[^/]+/lbTrafficExtensions/[^/]+$",
1490 "required": true,
1491 "type": "string"
1492 },
1493 "requestId": {
1494 "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server can ignore the request if it has already been completed. The server guarantees that for at least 60 minutes after the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, ignores the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).",
1495 "location": "query",
1496 "type": "string"
1497 }
1498 },
1499 "path": "v1/{+name}",
1500 "response": {
1501 "$ref": "Operation"
1502 },
1503 "scopes": [
1504 "https://www.googleapis.com/auth/cloud-platform"
1505 ]
1506 },
1507 "get": {
1508 "description": "Gets details of the specified `LbTrafficExtension` resource.",
1509 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/lbTrafficExtensions/{lbTrafficExtensionsId}",
1510 "httpMethod": "GET",
1511 "id": "networkservices.projects.locations.lbTrafficExtensions.get",
1512 "parameterOrder": [
1513 "name"
1514 ],
1515 "parameters": {
1516 "name": {
1517 "description": "Required. A name of the `LbTrafficExtension` resource to get. Must be in the format `projects/{project}/locations/{location}/lbTrafficExtensions/{lb_traffic_extension}`.",
1518 "location": "path",
1519 "pattern": "^projects/[^/]+/locations/[^/]+/lbTrafficExtensions/[^/]+$",
1520 "required": true,
1521 "type": "string"
1522 }
1523 },
1524 "path": "v1/{+name}",
1525 "response": {
1526 "$ref": "LbTrafficExtension"
1527 },
1528 "scopes": [
1529 "https://www.googleapis.com/auth/cloud-platform"
1530 ]
1531 },
1532 "list": {
1533 "description": "Lists `LbTrafficExtension` resources in a given project and location.",
1534 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/lbTrafficExtensions",
1535 "httpMethod": "GET",
1536 "id": "networkservices.projects.locations.lbTrafficExtensions.list",
1537 "parameterOrder": [
1538 "parent"
1539 ],
1540 "parameters": {
1541 "filter": {
1542 "description": "Optional. Filtering results.",
1543 "location": "query",
1544 "type": "string"
1545 },
1546 "orderBy": {
1547 "description": "Optional. Hint for how to order the results.",
1548 "location": "query",
1549 "type": "string"
1550 },
1551 "pageSize": {
1552 "description": "Optional. Requested page size. The server might return fewer items than requested. If unspecified, the server picks an appropriate default.",
1553 "format": "int32",
1554 "location": "query",
1555 "type": "integer"
1556 },
1557 "pageToken": {
1558 "description": "Optional. A token identifying a page of results that the server returns.",
1559 "location": "query",
1560 "type": "string"
1561 },
1562 "parent": {
1563 "description": "Required. The project and location from which the `LbTrafficExtension` resources are listed, specified in the following format: `projects/{project}/locations/{location}`.",
1564 "location": "path",
1565 "pattern": "^projects/[^/]+/locations/[^/]+$",
1566 "required": true,
1567 "type": "string"
1568 }
1569 },
1570 "path": "v1/{+parent}/lbTrafficExtensions",
1571 "response": {
1572 "$ref": "ListLbTrafficExtensionsResponse"
1573 },
1574 "scopes": [
1575 "https://www.googleapis.com/auth/cloud-platform"
1576 ]
1577 },
1578 "patch": {
1579 "description": "Updates the parameters of the specified `LbTrafficExtension` resource.",
1580 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/lbTrafficExtensions/{lbTrafficExtensionsId}",
1581 "httpMethod": "PATCH",
1582 "id": "networkservices.projects.locations.lbTrafficExtensions.patch",
1583 "parameterOrder": [
1584 "name"
1585 ],
1586 "parameters": {
1587 "name": {
1588 "description": "Required. Identifier. Name of the `LbTrafficExtension` resource in the following format: `projects/{project}/locations/{location}/lbTrafficExtensions/{lb_traffic_extension}`.",
1589 "location": "path",
1590 "pattern": "^projects/[^/]+/locations/[^/]+/lbTrafficExtensions/[^/]+$",
1591 "required": true,
1592 "type": "string"
1593 },
1594 "requestId": {
1595 "description": "Optional. An optional request ID to identify requests. Specify a unique request ID so that if you must retry your request, the server can ignore the request if it has already been completed. The server guarantees that for at least 60 minutes since the first request. For example, consider a situation where you make an initial request and the request times out. If you make the request again with the same request ID, the server can check if original operation with the same request ID was received, and if so, ignores the second request. This prevents clients from accidentally creating duplicate commitments. The request ID must be a valid UUID with the exception that zero UUID is not supported (00000000-0000-0000-0000-000000000000).",
1596 "location": "query",
1597 "type": "string"
1598 },
1599 "updateMask": {
1600 "description": "Optional. Used to specify the fields to be overwritten in the `LbTrafficExtension` resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field is overwritten if it is in the mask. If the user does not specify a mask, then all fields are overwritten.",
1601 "format": "google-fieldmask",
1602 "location": "query",
1603 "type": "string"
1604 }
1605 },
1606 "path": "v1/{+name}",
1607 "request": {
1608 "$ref": "LbTrafficExtension"
1609 },
1610 "response": {
1611 "$ref": "Operation"
1612 },
1613 "scopes": [
1614 "https://www.googleapis.com/auth/cloud-platform"
1615 ]
1616 }
1617 }
1618 },
1619 "meshes": {
1620 "methods": {
1621 "create": {
1622 "description": "Creates a new Mesh in a given project and location.",
1623 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/meshes",
1624 "httpMethod": "POST",
1625 "id": "networkservices.projects.locations.meshes.create",
1626 "parameterOrder": [
1627 "parent"
1628 ],
1629 "parameters": {
1630 "meshId": {
1631 "description": "Required. Short name of the Mesh resource to be created.",
1632 "location": "query",
1633 "type": "string"
1634 },
1635 "parent": {
1636 "description": "Required. The parent resource of the Mesh. Must be in the format `projects/*/locations/global`.",
1637 "location": "path",
1638 "pattern": "^projects/[^/]+/locations/[^/]+$",
1639 "required": true,
1640 "type": "string"
1641 }
1642 },
1643 "path": "v1/{+parent}/meshes",
1644 "request": {
1645 "$ref": "Mesh"
1646 },
1647 "response": {
1648 "$ref": "Operation"
1649 },
1650 "scopes": [
1651 "https://www.googleapis.com/auth/cloud-platform"
1652 ]
1653 },
1654 "delete": {
1655 "description": "Deletes a single Mesh.",
1656 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/meshes/{meshesId}",
1657 "httpMethod": "DELETE",
1658 "id": "networkservices.projects.locations.meshes.delete",
1659 "parameterOrder": [
1660 "name"
1661 ],
1662 "parameters": {
1663 "name": {
1664 "description": "Required. A name of the Mesh to delete. Must be in the format `projects/*/locations/global/meshes/*`.",
1665 "location": "path",
1666 "pattern": "^projects/[^/]+/locations/[^/]+/meshes/[^/]+$",
1667 "required": true,
1668 "type": "string"
1669 }
1670 },
1671 "path": "v1/{+name}",
1672 "response": {
1673 "$ref": "Operation"
1674 },
1675 "scopes": [
1676 "https://www.googleapis.com/auth/cloud-platform"
1677 ]
1678 },
1679 "get": {
1680 "description": "Gets details of a single Mesh.",
1681 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/meshes/{meshesId}",
1682 "httpMethod": "GET",
1683 "id": "networkservices.projects.locations.meshes.get",
1684 "parameterOrder": [
1685 "name"
1686 ],
1687 "parameters": {
1688 "name": {
1689 "description": "Required. A name of the Mesh to get. Must be in the format `projects/*/locations/global/meshes/*`.",
1690 "location": "path",
1691 "pattern": "^projects/[^/]+/locations/[^/]+/meshes/[^/]+$",
1692 "required": true,
1693 "type": "string"
1694 }
1695 },
1696 "path": "v1/{+name}",
1697 "response": {
1698 "$ref": "Mesh"
1699 },
1700 "scopes": [
1701 "https://www.googleapis.com/auth/cloud-platform"
1702 ]
1703 },
1704 "getIamPolicy": {
1705 "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.",
1706 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/meshes/{meshesId}:getIamPolicy",
1707 "httpMethod": "GET",
1708 "id": "networkservices.projects.locations.meshes.getIamPolicy",
1709 "parameterOrder": [
1710 "resource"
1711 ],
1712 "parameters": {
1713 "options.requestedPolicyVersion": {
1714 "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).",
1715 "format": "int32",
1716 "location": "query",
1717 "type": "integer"
1718 },
1719 "resource": {
1720 "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
1721 "location": "path",
1722 "pattern": "^projects/[^/]+/locations/[^/]+/meshes/[^/]+$",
1723 "required": true,
1724 "type": "string"
1725 }
1726 },
1727 "path": "v1/{+resource}:getIamPolicy",
1728 "response": {
1729 "$ref": "Policy"
1730 },
1731 "scopes": [
1732 "https://www.googleapis.com/auth/cloud-platform"
1733 ]
1734 },
1735 "list": {
1736 "description": "Lists Meshes in a given project and location.",
1737 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/meshes",
1738 "httpMethod": "GET",
1739 "id": "networkservices.projects.locations.meshes.list",
1740 "parameterOrder": [
1741 "parent"
1742 ],
1743 "parameters": {
1744 "pageSize": {
1745 "description": "Maximum number of Meshes to return per call.",
1746 "format": "int32",
1747 "location": "query",
1748 "type": "integer"
1749 },
1750 "pageToken": {
1751 "description": "The value returned by the last `ListMeshesResponse` Indicates that this is a continuation of a prior `ListMeshes` call, and that the system should return the next page of data.",
1752 "location": "query",
1753 "type": "string"
1754 },
1755 "parent": {
1756 "description": "Required. The project and location from which the Meshes should be listed, specified in the format `projects/*/locations/global`.",
1757 "location": "path",
1758 "pattern": "^projects/[^/]+/locations/[^/]+$",
1759 "required": true,
1760 "type": "string"
1761 }
1762 },
1763 "path": "v1/{+parent}/meshes",
1764 "response": {
1765 "$ref": "ListMeshesResponse"
1766 },
1767 "scopes": [
1768 "https://www.googleapis.com/auth/cloud-platform"
1769 ]
1770 },
1771 "patch": {
1772 "description": "Updates the parameters of a single Mesh.",
1773 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/meshes/{meshesId}",
1774 "httpMethod": "PATCH",
1775 "id": "networkservices.projects.locations.meshes.patch",
1776 "parameterOrder": [
1777 "name"
1778 ],
1779 "parameters": {
1780 "name": {
1781 "description": "Required. Name of the Mesh resource. It matches pattern `projects/*/locations/global/meshes/`.",
1782 "location": "path",
1783 "pattern": "^projects/[^/]+/locations/[^/]+/meshes/[^/]+$",
1784 "required": true,
1785 "type": "string"
1786 },
1787 "updateMask": {
1788 "description": "Optional. Field mask is used to specify the fields to be overwritten in the Mesh resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field will be overwritten if it is in the mask. If the user does not provide a mask then all fields will be overwritten.",
1789 "format": "google-fieldmask",
1790 "location": "query",
1791 "type": "string"
1792 }
1793 },
1794 "path": "v1/{+name}",
1795 "request": {
1796 "$ref": "Mesh"
1797 },
1798 "response": {
1799 "$ref": "Operation"
1800 },
1801 "scopes": [
1802 "https://www.googleapis.com/auth/cloud-platform"
1803 ]
1804 },
1805 "setIamPolicy": {
1806 "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.",
1807 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/meshes/{meshesId}:setIamPolicy",
1808 "httpMethod": "POST",
1809 "id": "networkservices.projects.locations.meshes.setIamPolicy",
1810 "parameterOrder": [
1811 "resource"
1812 ],
1813 "parameters": {
1814 "resource": {
1815 "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
1816 "location": "path",
1817 "pattern": "^projects/[^/]+/locations/[^/]+/meshes/[^/]+$",
1818 "required": true,
1819 "type": "string"
1820 }
1821 },
1822 "path": "v1/{+resource}:setIamPolicy",
1823 "request": {
1824 "$ref": "SetIamPolicyRequest"
1825 },
1826 "response": {
1827 "$ref": "Policy"
1828 },
1829 "scopes": [
1830 "https://www.googleapis.com/auth/cloud-platform"
1831 ]
1832 },
1833 "testIamPermissions": {
1834 "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.",
1835 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/meshes/{meshesId}:testIamPermissions",
1836 "httpMethod": "POST",
1837 "id": "networkservices.projects.locations.meshes.testIamPermissions",
1838 "parameterOrder": [
1839 "resource"
1840 ],
1841 "parameters": {
1842 "resource": {
1843 "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
1844 "location": "path",
1845 "pattern": "^projects/[^/]+/locations/[^/]+/meshes/[^/]+$",
1846 "required": true,
1847 "type": "string"
1848 }
1849 },
1850 "path": "v1/{+resource}:testIamPermissions",
1851 "request": {
1852 "$ref": "TestIamPermissionsRequest"
1853 },
1854 "response": {
1855 "$ref": "TestIamPermissionsResponse"
1856 },
1857 "scopes": [
1858 "https://www.googleapis.com/auth/cloud-platform"
1859 ]
1860 }
1861 }
1862 },
1863 "operations": {
1864 "methods": {
1865 "cancel": {
1866 "description": "Starts asynchronous cancellation on a long-running operation. The server makes a best effort to cancel the operation, but success is not guaranteed. If the server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`. Clients can use Operations.GetOperation or other methods to check whether the cancellation succeeded or whether the operation completed despite cancellation. On successful cancellation, the operation is not deleted; instead, it becomes an operation with an Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.",
1867 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/operations/{operationsId}:cancel",
1868 "httpMethod": "POST",
1869 "id": "networkservices.projects.locations.operations.cancel",
1870 "parameterOrder": [
1871 "name"
1872 ],
1873 "parameters": {
1874 "name": {
1875 "description": "The name of the operation resource to be cancelled.",
1876 "location": "path",
1877 "pattern": "^projects/[^/]+/locations/[^/]+/operations/[^/]+$",
1878 "required": true,
1879 "type": "string"
1880 }
1881 },
1882 "path": "v1/{+name}:cancel",
1883 "request": {
1884 "$ref": "CancelOperationRequest"
1885 },
1886 "response": {
1887 "$ref": "Empty"
1888 },
1889 "scopes": [
1890 "https://www.googleapis.com/auth/cloud-platform"
1891 ]
1892 },
1893 "delete": {
1894 "description": "Deletes a long-running operation. This method indicates that the client is no longer interested in the operation result. It does not cancel the operation. If the server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`.",
1895 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/operations/{operationsId}",
1896 "httpMethod": "DELETE",
1897 "id": "networkservices.projects.locations.operations.delete",
1898 "parameterOrder": [
1899 "name"
1900 ],
1901 "parameters": {
1902 "name": {
1903 "description": "The name of the operation resource to be deleted.",
1904 "location": "path",
1905 "pattern": "^projects/[^/]+/locations/[^/]+/operations/[^/]+$",
1906 "required": true,
1907 "type": "string"
1908 }
1909 },
1910 "path": "v1/{+name}",
1911 "response": {
1912 "$ref": "Empty"
1913 },
1914 "scopes": [
1915 "https://www.googleapis.com/auth/cloud-platform"
1916 ]
1917 },
1918 "get": {
1919 "description": "Gets the latest state of a long-running operation. Clients can use this method to poll the operation result at intervals as recommended by the API service.",
1920 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/operations/{operationsId}",
1921 "httpMethod": "GET",
1922 "id": "networkservices.projects.locations.operations.get",
1923 "parameterOrder": [
1924 "name"
1925 ],
1926 "parameters": {
1927 "name": {
1928 "description": "The name of the operation resource.",
1929 "location": "path",
1930 "pattern": "^projects/[^/]+/locations/[^/]+/operations/[^/]+$",
1931 "required": true,
1932 "type": "string"
1933 }
1934 },
1935 "path": "v1/{+name}",
1936 "response": {
1937 "$ref": "Operation"
1938 },
1939 "scopes": [
1940 "https://www.googleapis.com/auth/cloud-platform"
1941 ]
1942 },
1943 "list": {
1944 "description": "Lists operations that match the specified filter in the request. If the server doesn't support this method, it returns `UNIMPLEMENTED`.",
1945 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/operations",
1946 "httpMethod": "GET",
1947 "id": "networkservices.projects.locations.operations.list",
1948 "parameterOrder": [
1949 "name"
1950 ],
1951 "parameters": {
1952 "filter": {
1953 "description": "The standard list filter.",
1954 "location": "query",
1955 "type": "string"
1956 },
1957 "name": {
1958 "description": "The name of the operation's parent resource.",
1959 "location": "path",
1960 "pattern": "^projects/[^/]+/locations/[^/]+$",
1961 "required": true,
1962 "type": "string"
1963 },
1964 "pageSize": {
1965 "description": "The standard list page size.",
1966 "format": "int32",
1967 "location": "query",
1968 "type": "integer"
1969 },
1970 "pageToken": {
1971 "description": "The standard list page token.",
1972 "location": "query",
1973 "type": "string"
1974 }
1975 },
1976 "path": "v1/{+name}/operations",
1977 "response": {
1978 "$ref": "ListOperationsResponse"
1979 },
1980 "scopes": [
1981 "https://www.googleapis.com/auth/cloud-platform"
1982 ]
1983 }
1984 }
1985 },
1986 "serviceBindings": {
1987 "methods": {
1988 "create": {
1989 "description": "Creates a new ServiceBinding in a given project and location.",
1990 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceBindings",
1991 "httpMethod": "POST",
1992 "id": "networkservices.projects.locations.serviceBindings.create",
1993 "parameterOrder": [
1994 "parent"
1995 ],
1996 "parameters": {
1997 "parent": {
1998 "description": "Required. The parent resource of the ServiceBinding. Must be in the format `projects/*/locations/global`.",
1999 "location": "path",
2000 "pattern": "^projects/[^/]+/locations/[^/]+$",
2001 "required": true,
2002 "type": "string"
2003 },
2004 "serviceBindingId": {
2005 "description": "Required. Short name of the ServiceBinding resource to be created.",
2006 "location": "query",
2007 "type": "string"
2008 }
2009 },
2010 "path": "v1/{+parent}/serviceBindings",
2011 "request": {
2012 "$ref": "ServiceBinding"
2013 },
2014 "response": {
2015 "$ref": "Operation"
2016 },
2017 "scopes": [
2018 "https://www.googleapis.com/auth/cloud-platform"
2019 ]
2020 },
2021 "delete": {
2022 "description": "Deletes a single ServiceBinding.",
2023 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceBindings/{serviceBindingsId}",
2024 "httpMethod": "DELETE",
2025 "id": "networkservices.projects.locations.serviceBindings.delete",
2026 "parameterOrder": [
2027 "name"
2028 ],
2029 "parameters": {
2030 "name": {
2031 "description": "Required. A name of the ServiceBinding to delete. Must be in the format `projects/*/locations/global/serviceBindings/*`.",
2032 "location": "path",
2033 "pattern": "^projects/[^/]+/locations/[^/]+/serviceBindings/[^/]+$",
2034 "required": true,
2035 "type": "string"
2036 }
2037 },
2038 "path": "v1/{+name}",
2039 "response": {
2040 "$ref": "Operation"
2041 },
2042 "scopes": [
2043 "https://www.googleapis.com/auth/cloud-platform"
2044 ]
2045 },
2046 "get": {
2047 "description": "Gets details of a single ServiceBinding.",
2048 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceBindings/{serviceBindingsId}",
2049 "httpMethod": "GET",
2050 "id": "networkservices.projects.locations.serviceBindings.get",
2051 "parameterOrder": [
2052 "name"
2053 ],
2054 "parameters": {
2055 "name": {
2056 "description": "Required. A name of the ServiceBinding to get. Must be in the format `projects/*/locations/global/serviceBindings/*`.",
2057 "location": "path",
2058 "pattern": "^projects/[^/]+/locations/[^/]+/serviceBindings/[^/]+$",
2059 "required": true,
2060 "type": "string"
2061 }
2062 },
2063 "path": "v1/{+name}",
2064 "response": {
2065 "$ref": "ServiceBinding"
2066 },
2067 "scopes": [
2068 "https://www.googleapis.com/auth/cloud-platform"
2069 ]
2070 },
2071 "getIamPolicy": {
2072 "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.",
2073 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceBindings/{serviceBindingsId}:getIamPolicy",
2074 "httpMethod": "GET",
2075 "id": "networkservices.projects.locations.serviceBindings.getIamPolicy",
2076 "parameterOrder": [
2077 "resource"
2078 ],
2079 "parameters": {
2080 "options.requestedPolicyVersion": {
2081 "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).",
2082 "format": "int32",
2083 "location": "query",
2084 "type": "integer"
2085 },
2086 "resource": {
2087 "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
2088 "location": "path",
2089 "pattern": "^projects/[^/]+/locations/[^/]+/serviceBindings/[^/]+$",
2090 "required": true,
2091 "type": "string"
2092 }
2093 },
2094 "path": "v1/{+resource}:getIamPolicy",
2095 "response": {
2096 "$ref": "Policy"
2097 },
2098 "scopes": [
2099 "https://www.googleapis.com/auth/cloud-platform"
2100 ]
2101 },
2102 "list": {
2103 "description": "Lists ServiceBinding in a given project and location.",
2104 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceBindings",
2105 "httpMethod": "GET",
2106 "id": "networkservices.projects.locations.serviceBindings.list",
2107 "parameterOrder": [
2108 "parent"
2109 ],
2110 "parameters": {
2111 "pageSize": {
2112 "description": "Maximum number of ServiceBindings to return per call.",
2113 "format": "int32",
2114 "location": "query",
2115 "type": "integer"
2116 },
2117 "pageToken": {
2118 "description": "The value returned by the last `ListServiceBindingsResponse` Indicates that this is a continuation of a prior `ListRouters` call, and that the system should return the next page of data.",
2119 "location": "query",
2120 "type": "string"
2121 },
2122 "parent": {
2123 "description": "Required. The project and location from which the ServiceBindings should be listed, specified in the format `projects/*/locations/global`.",
2124 "location": "path",
2125 "pattern": "^projects/[^/]+/locations/[^/]+$",
2126 "required": true,
2127 "type": "string"
2128 }
2129 },
2130 "path": "v1/{+parent}/serviceBindings",
2131 "response": {
2132 "$ref": "ListServiceBindingsResponse"
2133 },
2134 "scopes": [
2135 "https://www.googleapis.com/auth/cloud-platform"
2136 ]
2137 },
2138 "setIamPolicy": {
2139 "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.",
2140 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceBindings/{serviceBindingsId}:setIamPolicy",
2141 "httpMethod": "POST",
2142 "id": "networkservices.projects.locations.serviceBindings.setIamPolicy",
2143 "parameterOrder": [
2144 "resource"
2145 ],
2146 "parameters": {
2147 "resource": {
2148 "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
2149 "location": "path",
2150 "pattern": "^projects/[^/]+/locations/[^/]+/serviceBindings/[^/]+$",
2151 "required": true,
2152 "type": "string"
2153 }
2154 },
2155 "path": "v1/{+resource}:setIamPolicy",
2156 "request": {
2157 "$ref": "SetIamPolicyRequest"
2158 },
2159 "response": {
2160 "$ref": "Policy"
2161 },
2162 "scopes": [
2163 "https://www.googleapis.com/auth/cloud-platform"
2164 ]
2165 },
2166 "testIamPermissions": {
2167 "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.",
2168 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceBindings/{serviceBindingsId}:testIamPermissions",
2169 "httpMethod": "POST",
2170 "id": "networkservices.projects.locations.serviceBindings.testIamPermissions",
2171 "parameterOrder": [
2172 "resource"
2173 ],
2174 "parameters": {
2175 "resource": {
2176 "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
2177 "location": "path",
2178 "pattern": "^projects/[^/]+/locations/[^/]+/serviceBindings/[^/]+$",
2179 "required": true,
2180 "type": "string"
2181 }
2182 },
2183 "path": "v1/{+resource}:testIamPermissions",
2184 "request": {
2185 "$ref": "TestIamPermissionsRequest"
2186 },
2187 "response": {
2188 "$ref": "TestIamPermissionsResponse"
2189 },
2190 "scopes": [
2191 "https://www.googleapis.com/auth/cloud-platform"
2192 ]
2193 }
2194 }
2195 },
2196 "serviceLbPolicies": {
2197 "methods": {
2198 "create": {
2199 "description": "Creates a new ServiceLbPolicy in a given project and location.",
2200 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceLbPolicies",
2201 "httpMethod": "POST",
2202 "id": "networkservices.projects.locations.serviceLbPolicies.create",
2203 "parameterOrder": [
2204 "parent"
2205 ],
2206 "parameters": {
2207 "parent": {
2208 "description": "Required. The parent resource of the ServiceLbPolicy. Must be in the format `projects/{project}/locations/{location}`.",
2209 "location": "path",
2210 "pattern": "^projects/[^/]+/locations/[^/]+$",
2211 "required": true,
2212 "type": "string"
2213 },
2214 "serviceLbPolicyId": {
2215 "description": "Required. Short name of the ServiceLbPolicy resource to be created. E.g. for resource name `projects/{project}/locations/{location}/serviceLbPolicies/{service_lb_policy_name}`. the id is value of {service_lb_policy_name}",
2216 "location": "query",
2217 "type": "string"
2218 }
2219 },
2220 "path": "v1/{+parent}/serviceLbPolicies",
2221 "request": {
2222 "$ref": "ServiceLbPolicy"
2223 },
2224 "response": {
2225 "$ref": "Operation"
2226 },
2227 "scopes": [
2228 "https://www.googleapis.com/auth/cloud-platform"
2229 ]
2230 },
2231 "delete": {
2232 "description": "Deletes a single ServiceLbPolicy.",
2233 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceLbPolicies/{serviceLbPoliciesId}",
2234 "httpMethod": "DELETE",
2235 "id": "networkservices.projects.locations.serviceLbPolicies.delete",
2236 "parameterOrder": [
2237 "name"
2238 ],
2239 "parameters": {
2240 "name": {
2241 "description": "Required. A name of the ServiceLbPolicy to delete. Must be in the format `projects/{project}/locations/{location}/serviceLbPolicies/*`.",
2242 "location": "path",
2243 "pattern": "^projects/[^/]+/locations/[^/]+/serviceLbPolicies/[^/]+$",
2244 "required": true,
2245 "type": "string"
2246 }
2247 },
2248 "path": "v1/{+name}",
2249 "response": {
2250 "$ref": "Operation"
2251 },
2252 "scopes": [
2253 "https://www.googleapis.com/auth/cloud-platform"
2254 ]
2255 },
2256 "get": {
2257 "description": "Gets details of a single ServiceLbPolicy.",
2258 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceLbPolicies/{serviceLbPoliciesId}",
2259 "httpMethod": "GET",
2260 "id": "networkservices.projects.locations.serviceLbPolicies.get",
2261 "parameterOrder": [
2262 "name"
2263 ],
2264 "parameters": {
2265 "name": {
2266 "description": "Required. A name of the ServiceLbPolicy to get. Must be in the format `projects/{project}/locations/{location}/serviceLbPolicies/*`.",
2267 "location": "path",
2268 "pattern": "^projects/[^/]+/locations/[^/]+/serviceLbPolicies/[^/]+$",
2269 "required": true,
2270 "type": "string"
2271 }
2272 },
2273 "path": "v1/{+name}",
2274 "response": {
2275 "$ref": "ServiceLbPolicy"
2276 },
2277 "scopes": [
2278 "https://www.googleapis.com/auth/cloud-platform"
2279 ]
2280 },
2281 "getIamPolicy": {
2282 "description": "Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set.",
2283 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceLbPolicies/{serviceLbPoliciesId}:getIamPolicy",
2284 "httpMethod": "GET",
2285 "id": "networkservices.projects.locations.serviceLbPolicies.getIamPolicy",
2286 "parameterOrder": [
2287 "resource"
2288 ],
2289 "parameters": {
2290 "options.requestedPolicyVersion": {
2291 "description": "Optional. The maximum policy version that will be used to format the policy. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional role bindings must specify version 3. Policies with no conditional role bindings may specify any valid value or leave the field unset. The policy in the response might use the policy version that you specified, or it might use a lower policy version. For example, if you specify version 3, but the policy has no conditional role bindings, the response uses version 1. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).",
2292 "format": "int32",
2293 "location": "query",
2294 "type": "integer"
2295 },
2296 "resource": {
2297 "description": "REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
2298 "location": "path",
2299 "pattern": "^projects/[^/]+/locations/[^/]+/serviceLbPolicies/[^/]+$",
2300 "required": true,
2301 "type": "string"
2302 }
2303 },
2304 "path": "v1/{+resource}:getIamPolicy",
2305 "response": {
2306 "$ref": "Policy"
2307 },
2308 "scopes": [
2309 "https://www.googleapis.com/auth/cloud-platform"
2310 ]
2311 },
2312 "list": {
2313 "description": "Lists ServiceLbPolicies in a given project and location.",
2314 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceLbPolicies",
2315 "httpMethod": "GET",
2316 "id": "networkservices.projects.locations.serviceLbPolicies.list",
2317 "parameterOrder": [
2318 "parent"
2319 ],
2320 "parameters": {
2321 "pageSize": {
2322 "description": "Maximum number of ServiceLbPolicies to return per call.",
2323 "format": "int32",
2324 "location": "query",
2325 "type": "integer"
2326 },
2327 "pageToken": {
2328 "description": "The value returned by the last `ListServiceLbPoliciesResponse` Indicates that this is a continuation of a prior `ListRouters` call, and that the system should return the next page of data.",
2329 "location": "query",
2330 "type": "string"
2331 },
2332 "parent": {
2333 "description": "Required. The project and location from which the ServiceLbPolicies should be listed, specified in the format `projects/{project}/locations/{location}`.",
2334 "location": "path",
2335 "pattern": "^projects/[^/]+/locations/[^/]+$",
2336 "required": true,
2337 "type": "string"
2338 }
2339 },
2340 "path": "v1/{+parent}/serviceLbPolicies",
2341 "response": {
2342 "$ref": "ListServiceLbPoliciesResponse"
2343 },
2344 "scopes": [
2345 "https://www.googleapis.com/auth/cloud-platform"
2346 ]
2347 },
2348 "patch": {
2349 "description": "Updates the parameters of a single ServiceLbPolicy.",
2350 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceLbPolicies/{serviceLbPoliciesId}",
2351 "httpMethod": "PATCH",
2352 "id": "networkservices.projects.locations.serviceLbPolicies.patch",
2353 "parameterOrder": [
2354 "name"
2355 ],
2356 "parameters": {
2357 "name": {
2358 "description": "Required. Name of the ServiceLbPolicy resource. It matches pattern `projects/{project}/locations/{location}/serviceLbPolicies/{service_lb_policy_name}`.",
2359 "location": "path",
2360 "pattern": "^projects/[^/]+/locations/[^/]+/serviceLbPolicies/[^/]+$",
2361 "required": true,
2362 "type": "string"
2363 },
2364 "updateMask": {
2365 "description": "Optional. Field mask is used to specify the fields to be overwritten in the ServiceLbPolicy resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field will be overwritten if it is in the mask. If the user does not provide a mask then all fields will be overwritten.",
2366 "format": "google-fieldmask",
2367 "location": "query",
2368 "type": "string"
2369 }
2370 },
2371 "path": "v1/{+name}",
2372 "request": {
2373 "$ref": "ServiceLbPolicy"
2374 },
2375 "response": {
2376 "$ref": "Operation"
2377 },
2378 "scopes": [
2379 "https://www.googleapis.com/auth/cloud-platform"
2380 ]
2381 },
2382 "setIamPolicy": {
2383 "description": "Sets the access control policy on the specified resource. Replaces any existing policy. Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` errors.",
2384 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceLbPolicies/{serviceLbPoliciesId}:setIamPolicy",
2385 "httpMethod": "POST",
2386 "id": "networkservices.projects.locations.serviceLbPolicies.setIamPolicy",
2387 "parameterOrder": [
2388 "resource"
2389 ],
2390 "parameters": {
2391 "resource": {
2392 "description": "REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
2393 "location": "path",
2394 "pattern": "^projects/[^/]+/locations/[^/]+/serviceLbPolicies/[^/]+$",
2395 "required": true,
2396 "type": "string"
2397 }
2398 },
2399 "path": "v1/{+resource}:setIamPolicy",
2400 "request": {
2401 "$ref": "SetIamPolicyRequest"
2402 },
2403 "response": {
2404 "$ref": "Policy"
2405 },
2406 "scopes": [
2407 "https://www.googleapis.com/auth/cloud-platform"
2408 ]
2409 },
2410 "testIamPermissions": {
2411 "description": "Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a `NOT_FOUND` error. Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may \"fail open\" without warning.",
2412 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/serviceLbPolicies/{serviceLbPoliciesId}:testIamPermissions",
2413 "httpMethod": "POST",
2414 "id": "networkservices.projects.locations.serviceLbPolicies.testIamPermissions",
2415 "parameterOrder": [
2416 "resource"
2417 ],
2418 "parameters": {
2419 "resource": {
2420 "description": "REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.",
2421 "location": "path",
2422 "pattern": "^projects/[^/]+/locations/[^/]+/serviceLbPolicies/[^/]+$",
2423 "required": true,
2424 "type": "string"
2425 }
2426 },
2427 "path": "v1/{+resource}:testIamPermissions",
2428 "request": {
2429 "$ref": "TestIamPermissionsRequest"
2430 },
2431 "response": {
2432 "$ref": "TestIamPermissionsResponse"
2433 },
2434 "scopes": [
2435 "https://www.googleapis.com/auth/cloud-platform"
2436 ]
2437 }
2438 }
2439 },
2440 "tcpRoutes": {
2441 "methods": {
2442 "create": {
2443 "description": "Creates a new TcpRoute in a given project and location.",
2444 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/tcpRoutes",
2445 "httpMethod": "POST",
2446 "id": "networkservices.projects.locations.tcpRoutes.create",
2447 "parameterOrder": [
2448 "parent"
2449 ],
2450 "parameters": {
2451 "parent": {
2452 "description": "Required. The parent resource of the TcpRoute. Must be in the format `projects/*/locations/global`.",
2453 "location": "path",
2454 "pattern": "^projects/[^/]+/locations/[^/]+$",
2455 "required": true,
2456 "type": "string"
2457 },
2458 "tcpRouteId": {
2459 "description": "Required. Short name of the TcpRoute resource to be created.",
2460 "location": "query",
2461 "type": "string"
2462 }
2463 },
2464 "path": "v1/{+parent}/tcpRoutes",
2465 "request": {
2466 "$ref": "TcpRoute"
2467 },
2468 "response": {
2469 "$ref": "Operation"
2470 },
2471 "scopes": [
2472 "https://www.googleapis.com/auth/cloud-platform"
2473 ]
2474 },
2475 "delete": {
2476 "description": "Deletes a single TcpRoute.",
2477 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/tcpRoutes/{tcpRoutesId}",
2478 "httpMethod": "DELETE",
2479 "id": "networkservices.projects.locations.tcpRoutes.delete",
2480 "parameterOrder": [
2481 "name"
2482 ],
2483 "parameters": {
2484 "name": {
2485 "description": "Required. A name of the TcpRoute to delete. Must be in the format `projects/*/locations/global/tcpRoutes/*`.",
2486 "location": "path",
2487 "pattern": "^projects/[^/]+/locations/[^/]+/tcpRoutes/[^/]+$",
2488 "required": true,
2489 "type": "string"
2490 }
2491 },
2492 "path": "v1/{+name}",
2493 "response": {
2494 "$ref": "Operation"
2495 },
2496 "scopes": [
2497 "https://www.googleapis.com/auth/cloud-platform"
2498 ]
2499 },
2500 "get": {
2501 "description": "Gets details of a single TcpRoute.",
2502 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/tcpRoutes/{tcpRoutesId}",
2503 "httpMethod": "GET",
2504 "id": "networkservices.projects.locations.tcpRoutes.get",
2505 "parameterOrder": [
2506 "name"
2507 ],
2508 "parameters": {
2509 "name": {
2510 "description": "Required. A name of the TcpRoute to get. Must be in the format `projects/*/locations/global/tcpRoutes/*`.",
2511 "location": "path",
2512 "pattern": "^projects/[^/]+/locations/[^/]+/tcpRoutes/[^/]+$",
2513 "required": true,
2514 "type": "string"
2515 }
2516 },
2517 "path": "v1/{+name}",
2518 "response": {
2519 "$ref": "TcpRoute"
2520 },
2521 "scopes": [
2522 "https://www.googleapis.com/auth/cloud-platform"
2523 ]
2524 },
2525 "list": {
2526 "description": "Lists TcpRoute in a given project and location.",
2527 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/tcpRoutes",
2528 "httpMethod": "GET",
2529 "id": "networkservices.projects.locations.tcpRoutes.list",
2530 "parameterOrder": [
2531 "parent"
2532 ],
2533 "parameters": {
2534 "pageSize": {
2535 "description": "Maximum number of TcpRoutes to return per call.",
2536 "format": "int32",
2537 "location": "query",
2538 "type": "integer"
2539 },
2540 "pageToken": {
2541 "description": "The value returned by the last `ListTcpRoutesResponse` Indicates that this is a continuation of a prior `ListTcpRoutes` call, and that the system should return the next page of data.",
2542 "location": "query",
2543 "type": "string"
2544 },
2545 "parent": {
2546 "description": "Required. The project and location from which the TcpRoutes should be listed, specified in the format `projects/*/locations/global`.",
2547 "location": "path",
2548 "pattern": "^projects/[^/]+/locations/[^/]+$",
2549 "required": true,
2550 "type": "string"
2551 }
2552 },
2553 "path": "v1/{+parent}/tcpRoutes",
2554 "response": {
2555 "$ref": "ListTcpRoutesResponse"
2556 },
2557 "scopes": [
2558 "https://www.googleapis.com/auth/cloud-platform"
2559 ]
2560 },
2561 "patch": {
2562 "description": "Updates the parameters of a single TcpRoute.",
2563 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/tcpRoutes/{tcpRoutesId}",
2564 "httpMethod": "PATCH",
2565 "id": "networkservices.projects.locations.tcpRoutes.patch",
2566 "parameterOrder": [
2567 "name"
2568 ],
2569 "parameters": {
2570 "name": {
2571 "description": "Required. Name of the TcpRoute resource. It matches pattern `projects/*/locations/global/tcpRoutes/tcp_route_name\u003e`.",
2572 "location": "path",
2573 "pattern": "^projects/[^/]+/locations/[^/]+/tcpRoutes/[^/]+$",
2574 "required": true,
2575 "type": "string"
2576 },
2577 "updateMask": {
2578 "description": "Optional. Field mask is used to specify the fields to be overwritten in the TcpRoute resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field will be overwritten if it is in the mask. If the user does not provide a mask then all fields will be overwritten.",
2579 "format": "google-fieldmask",
2580 "location": "query",
2581 "type": "string"
2582 }
2583 },
2584 "path": "v1/{+name}",
2585 "request": {
2586 "$ref": "TcpRoute"
2587 },
2588 "response": {
2589 "$ref": "Operation"
2590 },
2591 "scopes": [
2592 "https://www.googleapis.com/auth/cloud-platform"
2593 ]
2594 }
2595 }
2596 },
2597 "tlsRoutes": {
2598 "methods": {
2599 "create": {
2600 "description": "Creates a new TlsRoute in a given project and location.",
2601 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/tlsRoutes",
2602 "httpMethod": "POST",
2603 "id": "networkservices.projects.locations.tlsRoutes.create",
2604 "parameterOrder": [
2605 "parent"
2606 ],
2607 "parameters": {
2608 "parent": {
2609 "description": "Required. The parent resource of the TlsRoute. Must be in the format `projects/*/locations/global`.",
2610 "location": "path",
2611 "pattern": "^projects/[^/]+/locations/[^/]+$",
2612 "required": true,
2613 "type": "string"
2614 },
2615 "tlsRouteId": {
2616 "description": "Required. Short name of the TlsRoute resource to be created.",
2617 "location": "query",
2618 "type": "string"
2619 }
2620 },
2621 "path": "v1/{+parent}/tlsRoutes",
2622 "request": {
2623 "$ref": "TlsRoute"
2624 },
2625 "response": {
2626 "$ref": "Operation"
2627 },
2628 "scopes": [
2629 "https://www.googleapis.com/auth/cloud-platform"
2630 ]
2631 },
2632 "delete": {
2633 "description": "Deletes a single TlsRoute.",
2634 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/tlsRoutes/{tlsRoutesId}",
2635 "httpMethod": "DELETE",
2636 "id": "networkservices.projects.locations.tlsRoutes.delete",
2637 "parameterOrder": [
2638 "name"
2639 ],
2640 "parameters": {
2641 "name": {
2642 "description": "Required. A name of the TlsRoute to delete. Must be in the format `projects/*/locations/global/tlsRoutes/*`.",
2643 "location": "path",
2644 "pattern": "^projects/[^/]+/locations/[^/]+/tlsRoutes/[^/]+$",
2645 "required": true,
2646 "type": "string"
2647 }
2648 },
2649 "path": "v1/{+name}",
2650 "response": {
2651 "$ref": "Operation"
2652 },
2653 "scopes": [
2654 "https://www.googleapis.com/auth/cloud-platform"
2655 ]
2656 },
2657 "get": {
2658 "description": "Gets details of a single TlsRoute.",
2659 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/tlsRoutes/{tlsRoutesId}",
2660 "httpMethod": "GET",
2661 "id": "networkservices.projects.locations.tlsRoutes.get",
2662 "parameterOrder": [
2663 "name"
2664 ],
2665 "parameters": {
2666 "name": {
2667 "description": "Required. A name of the TlsRoute to get. Must be in the format `projects/*/locations/global/tlsRoutes/*`.",
2668 "location": "path",
2669 "pattern": "^projects/[^/]+/locations/[^/]+/tlsRoutes/[^/]+$",
2670 "required": true,
2671 "type": "string"
2672 }
2673 },
2674 "path": "v1/{+name}",
2675 "response": {
2676 "$ref": "TlsRoute"
2677 },
2678 "scopes": [
2679 "https://www.googleapis.com/auth/cloud-platform"
2680 ]
2681 },
2682 "list": {
2683 "description": "Lists TlsRoute in a given project and location.",
2684 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/tlsRoutes",
2685 "httpMethod": "GET",
2686 "id": "networkservices.projects.locations.tlsRoutes.list",
2687 "parameterOrder": [
2688 "parent"
2689 ],
2690 "parameters": {
2691 "pageSize": {
2692 "description": "Maximum number of TlsRoutes to return per call.",
2693 "format": "int32",
2694 "location": "query",
2695 "type": "integer"
2696 },
2697 "pageToken": {
2698 "description": "The value returned by the last `ListTlsRoutesResponse` Indicates that this is a continuation of a prior `ListTlsRoutes` call, and that the system should return the next page of data.",
2699 "location": "query",
2700 "type": "string"
2701 },
2702 "parent": {
2703 "description": "Required. The project and location from which the TlsRoutes should be listed, specified in the format `projects/*/locations/global`.",
2704 "location": "path",
2705 "pattern": "^projects/[^/]+/locations/[^/]+$",
2706 "required": true,
2707 "type": "string"
2708 }
2709 },
2710 "path": "v1/{+parent}/tlsRoutes",
2711 "response": {
2712 "$ref": "ListTlsRoutesResponse"
2713 },
2714 "scopes": [
2715 "https://www.googleapis.com/auth/cloud-platform"
2716 ]
2717 },
2718 "patch": {
2719 "description": "Updates the parameters of a single TlsRoute.",
2720 "flatPath": "v1/projects/{projectsId}/locations/{locationsId}/tlsRoutes/{tlsRoutesId}",
2721 "httpMethod": "PATCH",
2722 "id": "networkservices.projects.locations.tlsRoutes.patch",
2723 "parameterOrder": [
2724 "name"
2725 ],
2726 "parameters": {
2727 "name": {
2728 "description": "Required. Name of the TlsRoute resource. It matches pattern `projects/*/locations/global/tlsRoutes/tls_route_name\u003e`.",
2729 "location": "path",
2730 "pattern": "^projects/[^/]+/locations/[^/]+/tlsRoutes/[^/]+$",
2731 "required": true,
2732 "type": "string"
2733 },
2734 "updateMask": {
2735 "description": "Optional. Field mask is used to specify the fields to be overwritten in the TlsRoute resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field will be overwritten if it is in the mask. If the user does not provide a mask then all fields will be overwritten.",
2736 "format": "google-fieldmask",
2737 "location": "query",
2738 "type": "string"
2739 }
2740 },
2741 "path": "v1/{+name}",
2742 "request": {
2743 "$ref": "TlsRoute"
2744 },
2745 "response": {
2746 "$ref": "Operation"
2747 },
2748 "scopes": [
2749 "https://www.googleapis.com/auth/cloud-platform"
2750 ]
2751 }
2752 }
2753 }
2754 }
2755 }
2756 }
2757 }
2758 },
2759 "revision": "20240506",
2760 "rootUrl": "https://networkservices.googleapis.com/",
2761 "schemas": {
2762 "AuditConfig": {
2763 "description": "Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { \"audit_configs\": [ { \"service\": \"allServices\", \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\", \"exempted_members\": [ \"user:jose@example.com\" ] }, { \"log_type\": \"DATA_WRITE\" }, { \"log_type\": \"ADMIN_READ\" } ] }, { \"service\": \"sampleservice.googleapis.com\", \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\" }, { \"log_type\": \"DATA_WRITE\", \"exempted_members\": [ \"user:aliya@example.com\" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts `jose@example.com` from DATA_READ logging, and `aliya@example.com` from DATA_WRITE logging.",
2764 "id": "AuditConfig",
2765 "properties": {
2766 "auditLogConfigs": {
2767 "description": "The configuration for logging of each type of permission.",
2768 "items": {
2769 "$ref": "AuditLogConfig"
2770 },
2771 "type": "array"
2772 },
2773 "service": {
2774 "description": "Specifies a service that will be enabled for audit logging. For example, `storage.googleapis.com`, `cloudsql.googleapis.com`. `allServices` is a special value that covers all services.",
2775 "type": "string"
2776 }
2777 },
2778 "type": "object"
2779 },
2780 "AuditLogConfig": {
2781 "description": "Provides the configuration for logging a type of permissions. Example: { \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\", \"exempted_members\": [ \"user:jose@example.com\" ] }, { \"log_type\": \"DATA_WRITE\" } ] } This enables 'DATA_READ' and 'DATA_WRITE' logging, while exempting jose@example.com from DATA_READ logging.",
2782 "id": "AuditLogConfig",
2783 "properties": {
2784 "exemptedMembers": {
2785 "description": "Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.",
2786 "items": {
2787 "type": "string"
2788 },
2789 "type": "array"
2790 },
2791 "logType": {
2792 "description": "The log type that this config enables.",
2793 "enum": [
2794 "LOG_TYPE_UNSPECIFIED",
2795 "ADMIN_READ",
2796 "DATA_WRITE",
2797 "DATA_READ"
2798 ],
2799 "enumDescriptions": [
2800 "Default case. Should never be this.",
2801 "Admin reads. Example: CloudIAM getIamPolicy",
2802 "Data writes. Example: CloudSQL Users create",
2803 "Data reads. Example: CloudSQL Users list"
2804 ],
2805 "type": "string"
2806 }
2807 },
2808 "type": "object"
2809 },
2810 "Binding": {
2811 "description": "Associates `members`, or principals, with a `role`.",
2812 "id": "Binding",
2813 "properties": {
2814 "condition": {
2815 "$ref": "Expr",
2816 "description": "The condition that is associated with this binding. If the condition evaluates to `true`, then this binding applies to the current request. If the condition evaluates to `false`, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies)."
2817 },
2818 "members": {
2819 "description": "Specifies the principals requesting access for a Google Cloud resource. `members` can have the following values: * `allUsers`: A special identifier that represents anyone who is on the internet; with or without a Google account. * `allAuthenticatedUsers`: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * `user:{emailid}`: An email address that represents a specific Google account. For example, `alice@example.com` . * `serviceAccount:{emailid}`: An email address that represents a Google service account. For example, `my-other-app@appspot.gserviceaccount.com`. * `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An identifier for a [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts). For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. * `group:{emailid}`: An email address that represents a Google group. For example, `admins@example.com`. * `domain:{domain}`: The G Suite domain (primary) that represents all the users of that domain. For example, `google.com` or `example.com`. * `principal://iam.googleapis.com/locations/global/workforcePools/{pool_id}/subject/{subject_attribute_value}`: A single identity in a workforce identity pool. * `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/group/{group_id}`: All workforce identities in a group. * `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/attribute.{attribute_name}/{attribute_value}`: All workforce identities with a specific attribute value. * `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/*`: All identities in a workforce identity pool. * `principal://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/subject/{subject_attribute_value}`: A single identity in a workload identity pool. * `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/group/{group_id}`: A workload identity pool group. * `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/attribute.{attribute_name}/{attribute_value}`: All identities in a workload identity pool with a certain attribute. * `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/*`: All identities in a workload identity pool. * `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a user that has been recently deleted. For example, `alice@example.com?uid=123456789012345678901`. If the user is recovered, this value reverts to `user:{emailid}` and the recovered user retains the role in the binding. * `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If the service account is undeleted, this value reverts to `serviceAccount:{emailid}` and the undeleted service account retains the role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, `admins@example.com?uid=123456789012345678901`. If the group is recovered, this value reverts to `group:{emailid}` and the recovered group retains the role in the binding. * `deleted:principal://iam.googleapis.com/locations/global/workforcePools/{pool_id}/subject/{subject_attribute_value}`: Deleted single identity in a workforce identity pool. For example, `deleted:principal://iam.googleapis.com/locations/global/workforcePools/my-pool-id/subject/my-subject-attribute-value`.",
2820 "items": {
2821 "type": "string"
2822 },
2823 "type": "array"
2824 },
2825 "role": {
2826 "description": "Role that is assigned to the list of `members`, or principals. For example, `roles/viewer`, `roles/editor`, or `roles/owner`. For an overview of the IAM roles and permissions, see the [IAM documentation](https://cloud.google.com/iam/docs/roles-overview). For a list of the available pre-defined roles, see [here](https://cloud.google.com/iam/docs/understanding-roles).",
2827 "type": "string"
2828 }
2829 },
2830 "type": "object"
2831 },
2832 "CancelOperationRequest": {
2833 "description": "The request message for Operations.CancelOperation.",
2834 "id": "CancelOperationRequest",
2835 "properties": {},
2836 "type": "object"
2837 },
2838 "Empty": {
2839 "description": "A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); }",
2840 "id": "Empty",
2841 "properties": {},
2842 "type": "object"
2843 },
2844 "EndpointMatcher": {
2845 "description": "A definition of a matcher that selects endpoints to which the policies should be applied.",
2846 "id": "EndpointMatcher",
2847 "properties": {
2848 "metadataLabelMatcher": {
2849 "$ref": "EndpointMatcherMetadataLabelMatcher",
2850 "description": "The matcher is based on node metadata presented by xDS clients."
2851 }
2852 },
2853 "type": "object"
2854 },
2855 "EndpointMatcherMetadataLabelMatcher": {
2856 "description": "The matcher that is based on node metadata presented by xDS clients.",
2857 "id": "EndpointMatcherMetadataLabelMatcher",
2858 "properties": {
2859 "metadataLabelMatchCriteria": {
2860 "description": "Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), pick up the one with older creation time.",
2861 "enum": [
2862 "METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIED",
2863 "MATCH_ANY",
2864 "MATCH_ALL"
2865 ],
2866 "enumDescriptions": [
2867 "Default value. Should not be used.",
2868 "At least one of the Labels specified in the matcher should match the metadata presented by xDS client.",
2869 "The metadata presented by the xDS client should contain all of the labels specified here."
2870 ],
2871 "type": "string"
2872 },
2873 "metadataLabels": {
2874 "description": "The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).",
2875 "items": {
2876 "$ref": "EndpointMatcherMetadataLabelMatcherMetadataLabels"
2877 },
2878 "type": "array"
2879 }
2880 },
2881 "type": "object"
2882 },
2883 "EndpointMatcherMetadataLabelMatcherMetadataLabels": {
2884 "description": "Defines a name-pair value for a single label.",
2885 "id": "EndpointMatcherMetadataLabelMatcherMetadataLabels",
2886 "properties": {
2887 "labelName": {
2888 "description": "Required. Label name presented as key in xDS Node Metadata.",
2889 "type": "string"
2890 },
2891 "labelValue": {
2892 "description": "Required. Label value presented as value corresponding to the above key, in xDS Node Metadata.",
2893 "type": "string"
2894 }
2895 },
2896 "type": "object"
2897 },
2898 "EndpointPolicy": {
2899 "description": "EndpointPolicy is a resource that helps apply desired configuration on the endpoints that match specific criteria. For example, this resource can be used to apply \"authentication config\" an all endpoints that serve on port 8080.",
2900 "id": "EndpointPolicy",
2901 "properties": {
2902 "authorizationPolicy": {
2903 "description": "Optional. This field specifies the URL of AuthorizationPolicy resource that applies authorization policies to the inbound traffic at the matched endpoints. Refer to Authorization. If this field is not specified, authorization is disabled(no authz checks) for this endpoint.",
2904 "type": "string"
2905 },
2906 "clientTlsPolicy": {
2907 "description": "Optional. A URL referring to a ClientTlsPolicy resource. ClientTlsPolicy can be set to specify the authentication for traffic from the proxy to the actual endpoints. More specifically, it is applied to the outgoing traffic from the proxy to the endpoint. This is typically used for sidecar model where the proxy identifies itself as endpoint to the control plane, with the connection between sidecar and endpoint requiring authentication. If this field is not set, authentication is disabled(open). Applicable only when EndpointPolicyType is SIDECAR_PROXY.",
2908 "type": "string"
2909 },
2910 "createTime": {
2911 "description": "Output only. The timestamp when the resource was created.",
2912 "format": "google-datetime",
2913 "readOnly": true,
2914 "type": "string"
2915 },
2916 "description": {
2917 "description": "Optional. A free-text description of the resource. Max length 1024 characters.",
2918 "type": "string"
2919 },
2920 "endpointMatcher": {
2921 "$ref": "EndpointMatcher",
2922 "description": "Required. A matcher that selects endpoints to which the policies should be applied."
2923 },
2924 "labels": {
2925 "additionalProperties": {
2926 "type": "string"
2927 },
2928 "description": "Optional. Set of label tags associated with the EndpointPolicy resource.",
2929 "type": "object"
2930 },
2931 "name": {
2932 "description": "Required. Name of the EndpointPolicy resource. It matches pattern `projects/{project}/locations/global/endpointPolicies/{endpoint_policy}`.",
2933 "type": "string"
2934 },
2935 "serverTlsPolicy": {
2936 "description": "Optional. A URL referring to ServerTlsPolicy resource. ServerTlsPolicy is used to determine the authentication policy to be applied to terminate the inbound traffic at the identified backends. If this field is not set, authentication is disabled(open) for this endpoint.",
2937 "type": "string"
2938 },
2939 "trafficPortSelector": {
2940 "$ref": "TrafficPortSelector",
2941 "description": "Optional. Port selector for the (matched) endpoints. If no port selector is provided, the matched config is applied to all ports."
2942 },
2943 "type": {
2944 "description": "Required. The type of endpoint policy. This is primarily used to validate the configuration.",
2945 "enum": [
2946 "ENDPOINT_POLICY_TYPE_UNSPECIFIED",
2947 "SIDECAR_PROXY",
2948 "GRPC_SERVER"
2949 ],
2950 "enumDescriptions": [
2951 "Default value. Must not be used.",
2952 "Represents a proxy deployed as a sidecar.",
2953 "Represents a proxyless gRPC backend."
2954 ],
2955 "type": "string"
2956 },
2957 "updateTime": {
2958 "description": "Output only. The timestamp when the resource was updated.",
2959 "format": "google-datetime",
2960 "readOnly": true,
2961 "type": "string"
2962 }
2963 },
2964 "type": "object"
2965 },
2966 "Expr": {
2967 "description": "Represents a textual expression in the Common Expression Language (CEL) syntax. CEL is a C-like expression language. The syntax and semantics of CEL are documented at https://github.com/google/cel-spec. Example (Comparison): title: \"Summary size limit\" description: \"Determines if a summary is less than 100 chars\" expression: \"document.summary.size() \u003c 100\" Example (Equality): title: \"Requestor is owner\" description: \"Determines if requestor is the document owner\" expression: \"document.owner == request.auth.claims.email\" Example (Logic): title: \"Public documents\" description: \"Determine whether the document should be publicly visible\" expression: \"document.type != 'private' \u0026\u0026 document.type != 'internal'\" Example (Data Manipulation): title: \"Notification string\" description: \"Create a notification string with a timestamp.\" expression: \"'New message received at ' + string(document.create_time)\" The exact variables and functions that may be referenced within an expression are determined by the service that evaluates it. See the service documentation for additional information.",
2968 "id": "Expr",
2969 "properties": {
2970 "description": {
2971 "description": "Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.",
2972 "type": "string"
2973 },
2974 "expression": {
2975 "description": "Textual representation of an expression in Common Expression Language syntax.",
2976 "type": "string"
2977 },
2978 "location": {
2979 "description": "Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.",
2980 "type": "string"
2981 },
2982 "title": {
2983 "description": "Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.",
2984 "type": "string"
2985 }
2986 },
2987 "type": "object"
2988 },
2989 "ExtensionChain": {
2990 "description": "A single extension chain wrapper that contains the match conditions and extensions to execute.",
2991 "id": "ExtensionChain",
2992 "properties": {
2993 "extensions": {
2994 "description": "Required. A set of extensions to execute for the matching request. At least one extension is required. Up to 3 extensions can be defined for each extension chain for `LbTrafficExtension` resource. `LbRouteExtension` chains are limited to 1 extension per extension chain.",
2995 "items": {
2996 "$ref": "ExtensionChainExtension"
2997 },
2998 "type": "array"
2999 },
3000 "matchCondition": {
3001 "$ref": "ExtensionChainMatchCondition",
3002 "description": "Required. Conditions under which this chain is invoked for a request."
3003 },
3004 "name": {
3005 "description": "Required. The name for this extension chain. The name is logged as part of the HTTP request logs. The name must conform with RFC-1034, is restricted to lower-cased letters, numbers and hyphens, and can have a maximum length of 63 characters. Additionally, the first character must be a letter and the last a letter or a number.",
3006 "type": "string"
3007 }
3008 },
3009 "type": "object"
3010 },
3011 "ExtensionChainExtension": {
3012 "description": "A single extension in the chain to execute for the matching request.",
3013 "id": "ExtensionChainExtension",
3014 "properties": {
3015 "authority": {
3016 "description": "Optional. The `:authority` header in the gRPC request sent from Envoy to the extension service. Required for Callout extensions.",
3017 "type": "string"
3018 },
3019 "failOpen": {
3020 "description": "Optional. Determines how the proxy behaves if the call to the extension fails or times out. When set to `TRUE`, request or response processing continues without error. Any subsequent extensions in the extension chain are also executed. When set to `FALSE` or the default setting of `FALSE` is used, one of the following happens: * If response headers have not been delivered to the downstream client, a generic 500 error is returned to the client. The error response can be tailored by configuring a custom error response in the load balancer. * If response headers have been delivered, then the HTTP stream to the downstream client is reset.",
3021 "type": "boolean"
3022 },
3023 "forwardHeaders": {
3024 "description": "Optional. List of the HTTP headers to forward to the extension (from the client or backend). If omitted, all headers are sent. Each element is a string indicating the header name.",
3025 "items": {
3026 "type": "string"
3027 },
3028 "type": "array"
3029 },
3030 "name": {
3031 "description": "Required. The name for this extension. The name is logged as part of the HTTP request logs. The name must conform with RFC-1034, is restricted to lower-cased letters, numbers and hyphens, and can have a maximum length of 63 characters. Additionally, the first character must be a letter and the last a letter or a number.",
3032 "type": "string"
3033 },
3034 "service": {
3035 "description": "Required. The reference to the service that runs the extension. Currently only callout extensions are supported here. To configure a callout extension, `service` must be a fully-qualified reference to a [backend service](https://cloud.google.com/compute/docs/reference/rest/v1/backendServices) in the format: `https://www.googleapis.com/compute/v1/projects/{project}/regions/{region}/backendServices/{backendService}` or `https://www.googleapis.com/compute/v1/projects/{project}/global/backendServices/{backendService}`.",
3036 "type": "string"
3037 },
3038 "supportedEvents": {
3039 "description": "Optional. A set of events during request or response processing for which this extension is called. This field is required for the `LbTrafficExtension` resource. It's not relevant for the `LbRouteExtension` resource.",
3040 "items": {
3041 "enum": [
3042 "EVENT_TYPE_UNSPECIFIED",
3043 "REQUEST_HEADERS",
3044 "REQUEST_BODY",
3045 "RESPONSE_HEADERS",
3046 "RESPONSE_BODY",
3047 "REQUEST_TRAILERS",
3048 "RESPONSE_TRAILERS"
3049 ],
3050 "enumDescriptions": [
3051 "Unspecified value. Do not use.",
3052 "If included in `supported_events`, the extension is called when the HTTP request headers arrive.",
3053 "If included in `supported_events`, the extension is called when the HTTP request body arrives.",
3054 "If included in `supported_events`, the extension is called when the HTTP response headers arrive.",
3055 "If included in `supported_events`, the extension is called when the HTTP response body arrives.",
3056 "If included in `supported_events`, the extension is called when the HTTP request trailers arrives.",
3057 "If included in `supported_events`, the extension is called when the HTTP response trailers arrives."
3058 ],
3059 "type": "string"
3060 },
3061 "type": "array"
3062 },
3063 "timeout": {
3064 "description": "Optional. Specifies the timeout for each individual message on the stream. The timeout must be between 10-1000 milliseconds. Required for Callout extensions.",
3065 "format": "google-duration",
3066 "type": "string"
3067 }
3068 },
3069 "type": "object"
3070 },
3071 "ExtensionChainMatchCondition": {
3072 "description": "Conditions under which this chain is invoked for a request.",
3073 "id": "ExtensionChainMatchCondition",
3074 "properties": {
3075 "celExpression": {
3076 "description": "Required. A Common Expression Language (CEL) expression that is used to match requests for which the extension chain is executed. For more information, see [CEL matcher language reference](https://cloud.google.com/service-extensions/docs/cel-matcher-language-reference).",
3077 "type": "string"
3078 }
3079 },
3080 "type": "object"
3081 },
3082 "Gateway": {
3083 "description": "Gateway represents the configuration for a proxy, typically a load balancer. It captures the ip:port over which the services are exposed by the proxy, along with any policy configurations. Routes have reference to to Gateways to dictate how requests should be routed by this Gateway. Next id: 33",
3084 "id": "Gateway",
3085 "properties": {
3086 "addresses": {
3087 "description": "Optional. Zero or one IPv4 or IPv6 address on which the Gateway will receive the traffic. When no address is provided, an IP from the subnetwork is allocated This field only applies to gateways of type 'SECURE_WEB_GATEWAY'. Gateways of type 'OPEN_MESH' listen on 0.0.0.0 for IPv4 and :: for IPv6.",
3088 "items": {
3089 "type": "string"
3090 },
3091 "type": "array"
3092 },
3093 "certificateUrls": {
3094 "description": "Optional. A fully-qualified Certificates URL reference. The proxy presents a Certificate (selected based on SNI) when establishing a TLS connection. This feature only applies to gateways of type 'SECURE_WEB_GATEWAY'.",
3095 "items": {
3096 "type": "string"
3097 },
3098 "type": "array"
3099 },
3100 "createTime": {
3101 "description": "Output only. The timestamp when the resource was created.",
3102 "format": "google-datetime",
3103 "readOnly": true,
3104 "type": "string"
3105 },
3106 "description": {
3107 "description": "Optional. A free-text description of the resource. Max length 1024 characters.",
3108 "type": "string"
3109 },
3110 "envoyHeaders": {
3111 "description": "Optional. Determines if envoy will insert internal debug headers into upstream requests. Other Envoy headers may still be injected. By default, envoy will not insert any debug headers.",
3112 "enum": [
3113 "ENVOY_HEADERS_UNSPECIFIED",
3114 "NONE",
3115 "DEBUG_HEADERS"
3116 ],
3117 "enumDescriptions": [
3118 "Defaults to NONE.",
3119 "Suppress envoy debug headers.",
3120 "Envoy will insert default internal debug headers into upstream requests: x-envoy-attempt-count x-envoy-is-timeout-retry x-envoy-expected-rq-timeout-ms x-envoy-original-path x-envoy-upstream-stream-duration-ms"
3121 ],
3122 "type": "string"
3123 },
3124 "gatewaySecurityPolicy": {
3125 "description": "Optional. A fully-qualified GatewaySecurityPolicy URL reference. Defines how a server should apply security policy to inbound (VM to Proxy) initiated connections. For example: `projects/*/locations/*/gatewaySecurityPolicies/swg-policy`. This policy is specific to gateways of type 'SECURE_WEB_GATEWAY'.",
3126 "type": "string"
3127 },
3128 "ipVersion": {
3129 "description": "Optional. The IP Version that will be used by this gateway. Valid options are IPV4 or IPV6. Default is IPV4.",
3130 "enum": [
3131 "IP_VERSION_UNSPECIFIED",
3132 "IPV4",
3133 "IPV6"
3134 ],
3135 "enumDescriptions": [
3136 "The type when IP version is not specified. Defaults to IPV4.",
3137 "The type for IP version 4.",
3138 "The type for IP version 6."
3139 ],
3140 "type": "string"
3141 },
3142 "labels": {
3143 "additionalProperties": {
3144 "type": "string"
3145 },
3146 "description": "Optional. Set of label tags associated with the Gateway resource.",
3147 "type": "object"
3148 },
3149 "name": {
3150 "description": "Required. Name of the Gateway resource. It matches pattern `projects/*/locations/*/gateways/`.",
3151 "type": "string"
3152 },
3153 "network": {
3154 "description": "Optional. The relative resource name identifying the VPC network that is using this configuration. For example: `projects/*/global/networks/network-1`. Currently, this field is specific to gateways of type 'SECURE_WEB_GATEWAY'.",
3155 "type": "string"
3156 },
3157 "ports": {
3158 "description": "Required. One or more port numbers (1-65535), on which the Gateway will receive traffic. The proxy binds to the specified ports. Gateways of type 'SECURE_WEB_GATEWAY' are limited to 1 port. Gateways of type 'OPEN_MESH' listen on 0.0.0.0 for IPv4 and :: for IPv6 and support multiple ports.",
3159 "items": {
3160 "format": "int32",
3161 "type": "integer"
3162 },
3163 "type": "array"
3164 },
3165 "scope": {
3166 "description": "Optional. Scope determines how configuration across multiple Gateway instances are merged. The configuration for multiple Gateway instances with the same scope will be merged as presented as a single coniguration to the proxy/load balancer. Max length 64 characters. Scope should start with a letter and can only have letters, numbers, hyphens.",
3167 "type": "string"
3168 },
3169 "selfLink": {
3170 "description": "Output only. Server-defined URL of this resource",
3171 "readOnly": true,
3172 "type": "string"
3173 },
3174 "serverTlsPolicy": {
3175 "description": "Optional. A fully-qualified ServerTLSPolicy URL reference. Specifies how TLS traffic is terminated. If empty, TLS termination is disabled.",
3176 "type": "string"
3177 },
3178 "subnetwork": {
3179 "description": "Optional. The relative resource name identifying the subnetwork in which this SWG is allocated. For example: `projects/*/regions/us-central1/subnetworks/network-1` Currently, this field is specific to gateways of type 'SECURE_WEB_GATEWAY\".",
3180 "type": "string"
3181 },
3182 "type": {
3183 "description": "Immutable. The type of the customer managed gateway. This field is required. If unspecified, an error is returned.",
3184 "enum": [
3185 "TYPE_UNSPECIFIED",
3186 "OPEN_MESH",
3187 "SECURE_WEB_GATEWAY"
3188 ],
3189 "enumDescriptions": [
3190 "The type of the customer managed gateway is unspecified.",
3191 "The type of the customer managed gateway is TrafficDirector Open Mesh.",
3192 "The type of the customer managed gateway is SecureWebGateway (SWG)."
3193 ],
3194 "type": "string"
3195 },
3196 "updateTime": {
3197 "description": "Output only. The timestamp when the resource was updated.",
3198 "format": "google-datetime",
3199 "readOnly": true,
3200 "type": "string"
3201 }
3202 },
3203 "type": "object"
3204 },
3205 "GrpcRoute": {
3206 "description": "GrpcRoute is the resource defining how gRPC traffic routed by a Mesh or Gateway resource is routed.",
3207 "id": "GrpcRoute",
3208 "properties": {
3209 "createTime": {
3210 "description": "Output only. The timestamp when the resource was created.",
3211 "format": "google-datetime",
3212 "readOnly": true,
3213 "type": "string"
3214 },
3215 "description": {
3216 "description": "Optional. A free-text description of the resource. Max length 1024 characters.",
3217 "type": "string"
3218 },
3219 "gateways": {
3220 "description": "Optional. Gateways defines a list of gateways this GrpcRoute is attached to, as one of the routing rules to route the requests served by the gateway. Each gateway reference should match the pattern: `projects/*/locations/global/gateways/`",
3221 "items": {
3222 "type": "string"
3223 },
3224 "type": "array"
3225 },
3226 "hostnames": {
3227 "description": "Required. Service hostnames with an optional port for which this route describes traffic. Format: [:] Hostname is the fully qualified domain name of a network host. This matches the RFC 1123 definition of a hostname with 2 notable exceptions: - IPs are not allowed. - A hostname may be prefixed with a wildcard label (`*.`). The wildcard label must appear by itself as the first label. Hostname can be \"precise\" which is a domain name without the terminating dot of a network host (e.g. `foo.example.com`) or \"wildcard\", which is a domain name prefixed with a single wildcard label (e.g. `*.example.com`). Note that as per RFC1035 and RFC1123, a label must consist of lower case alphanumeric characters or '-', and must start and end with an alphanumeric character. No other punctuation is allowed. The routes associated with a Mesh or Gateway must have unique hostnames. If you attempt to attach multiple routes with conflicting hostnames, the configuration will be rejected. For example, while it is acceptable for routes for the hostnames `*.foo.bar.com` and `*.bar.com` to be associated with the same route, it is not possible to associate two routes both with `*.bar.com` or both with `bar.com`. If a port is specified, then gRPC clients must use the channel URI with the port to match this rule (i.e. \"xds:///service:123\"), otherwise they must supply the URI without a port (i.e. \"xds:///service\").",
3228 "items": {
3229 "type": "string"
3230 },
3231 "type": "array"
3232 },
3233 "labels": {
3234 "additionalProperties": {
3235 "type": "string"
3236 },
3237 "description": "Optional. Set of label tags associated with the GrpcRoute resource.",
3238 "type": "object"
3239 },
3240 "meshes": {
3241 "description": "Optional. Meshes defines a list of meshes this GrpcRoute is attached to, as one of the routing rules to route the requests served by the mesh. Each mesh reference should match the pattern: `projects/*/locations/global/meshes/`",
3242 "items": {
3243 "type": "string"
3244 },
3245 "type": "array"
3246 },
3247 "name": {
3248 "description": "Required. Name of the GrpcRoute resource. It matches pattern `projects/*/locations/global/grpcRoutes/`",
3249 "type": "string"
3250 },
3251 "rules": {
3252 "description": "Required. A list of detailed rules defining how to route traffic. Within a single GrpcRoute, the GrpcRoute.RouteAction associated with the first matching GrpcRoute.RouteRule will be executed. At least one rule must be supplied.",
3253 "items": {
3254 "$ref": "GrpcRouteRouteRule"
3255 },
3256 "type": "array"
3257 },
3258 "selfLink": {
3259 "description": "Output only. Server-defined URL of this resource",
3260 "readOnly": true,
3261 "type": "string"
3262 },
3263 "updateTime": {
3264 "description": "Output only. The timestamp when the resource was updated.",
3265 "format": "google-datetime",
3266 "readOnly": true,
3267 "type": "string"
3268 }
3269 },
3270 "type": "object"
3271 },
3272 "GrpcRouteDestination": {
3273 "description": "The destination to which traffic will be routed.",
3274 "id": "GrpcRouteDestination",
3275 "properties": {
3276 "serviceName": {
3277 "description": "Required. The URL of a destination service to which to route traffic. Must refer to either a BackendService or ServiceDirectoryService.",
3278 "type": "string"
3279 },
3280 "weight": {
3281 "description": "Optional. Specifies the proportion of requests forwarded to the backend referenced by the serviceName field. This is computed as: - weight/Sum(weights in this destination list). For non-zero values, there may be some epsilon from the exact proportion defined here depending on the precision an implementation supports. If only one serviceName is specified and it has a weight greater than 0, 100% of the traffic is forwarded to that backend. If weights are specified for any one service name, they need to be specified for all of them. If weights are unspecified for all services, then, traffic is distributed in equal proportions to all of them.",
3282 "format": "int32",
3283 "type": "integer"
3284 }
3285 },
3286 "type": "object"
3287 },
3288 "GrpcRouteFaultInjectionPolicy": {
3289 "description": "The specification for fault injection introduced into traffic to test the resiliency of clients to destination service failure. As part of fault injection, when clients send requests to a destination, delays can be introduced on a percentage of requests before sending those requests to the destination service. Similarly requests from clients can be aborted by for a percentage of requests.",
3290 "id": "GrpcRouteFaultInjectionPolicy",
3291 "properties": {
3292 "abort": {
3293 "$ref": "GrpcRouteFaultInjectionPolicyAbort",
3294 "description": "The specification for aborting to client requests."
3295 },
3296 "delay": {
3297 "$ref": "GrpcRouteFaultInjectionPolicyDelay",
3298 "description": "The specification for injecting delay to client requests."
3299 }
3300 },
3301 "type": "object"
3302 },
3303 "GrpcRouteFaultInjectionPolicyAbort": {
3304 "description": "Specification of how client requests are aborted as part of fault injection before being sent to a destination.",
3305 "id": "GrpcRouteFaultInjectionPolicyAbort",
3306 "properties": {
3307 "httpStatus": {
3308 "description": "The HTTP status code used to abort the request. The value must be between 200 and 599 inclusive.",
3309 "format": "int32",
3310 "type": "integer"
3311 },
3312 "percentage": {
3313 "description": "The percentage of traffic which will be aborted. The value must be between [0, 100]",
3314 "format": "int32",
3315 "type": "integer"
3316 }
3317 },
3318 "type": "object"
3319 },
3320 "GrpcRouteFaultInjectionPolicyDelay": {
3321 "description": "Specification of how client requests are delayed as part of fault injection before being sent to a destination.",
3322 "id": "GrpcRouteFaultInjectionPolicyDelay",
3323 "properties": {
3324 "fixedDelay": {
3325 "description": "Specify a fixed delay before forwarding the request.",
3326 "format": "google-duration",
3327 "type": "string"
3328 },
3329 "percentage": {
3330 "description": "The percentage of traffic on which delay will be injected. The value must be between [0, 100]",
3331 "format": "int32",
3332 "type": "integer"
3333 }
3334 },
3335 "type": "object"
3336 },
3337 "GrpcRouteHeaderMatch": {
3338 "description": "A match against a collection of headers.",
3339 "id": "GrpcRouteHeaderMatch",
3340 "properties": {
3341 "key": {
3342 "description": "Required. The key of the header.",
3343 "type": "string"
3344 },
3345 "type": {
3346 "description": "Optional. Specifies how to match against the value of the header. If not specified, a default value of EXACT is used.",
3347 "enum": [
3348 "TYPE_UNSPECIFIED",
3349 "EXACT",
3350 "REGULAR_EXPRESSION"
3351 ],
3352 "enumDescriptions": [
3353 "Unspecified.",
3354 "Will only match the exact value provided.",
3355 "Will match paths conforming to the prefix specified by value. RE2 syntax is supported."
3356 ],
3357 "type": "string"
3358 },
3359 "value": {
3360 "description": "Required. The value of the header.",
3361 "type": "string"
3362 }
3363 },
3364 "type": "object"
3365 },
3366 "GrpcRouteMethodMatch": {
3367 "description": "Specifies a match against a method.",
3368 "id": "GrpcRouteMethodMatch",
3369 "properties": {
3370 "caseSensitive": {
3371 "description": "Optional. Specifies that matches are case sensitive. The default value is true. case_sensitive must not be used with a type of REGULAR_EXPRESSION.",
3372 "type": "boolean"
3373 },
3374 "grpcMethod": {
3375 "description": "Required. Name of the method to match against. If unspecified, will match all methods.",
3376 "type": "string"
3377 },
3378 "grpcService": {
3379 "description": "Required. Name of the service to match against. If unspecified, will match all services.",
3380 "type": "string"
3381 },
3382 "type": {
3383 "description": "Optional. Specifies how to match against the name. If not specified, a default value of \"EXACT\" is used.",
3384 "enum": [
3385 "TYPE_UNSPECIFIED",
3386 "EXACT",
3387 "REGULAR_EXPRESSION"
3388 ],
3389 "enumDescriptions": [
3390 "Unspecified.",
3391 "Will only match the exact name provided.",
3392 "Will interpret grpc_method and grpc_service as regexes. RE2 syntax is supported."
3393 ],
3394 "type": "string"
3395 }
3396 },
3397 "type": "object"
3398 },
3399 "GrpcRouteRetryPolicy": {
3400 "description": "The specifications for retries.",
3401 "id": "GrpcRouteRetryPolicy",
3402 "properties": {
3403 "numRetries": {
3404 "description": "Specifies the allowed number of retries. This number must be \u003e 0. If not specified, default to 1.",
3405 "format": "uint32",
3406 "type": "integer"
3407 },
3408 "retryConditions": {
3409 "description": "- connect-failure: Router will retry on failures connecting to Backend Services, for example due to connection timeouts. - refused-stream: Router will retry if the backend service resets the stream with a REFUSED_STREAM error code. This reset type indicates that it is safe to retry. - cancelled: Router will retry if the gRPC status code in the response header is set to cancelled - deadline-exceeded: Router will retry if the gRPC status code in the response header is set to deadline-exceeded - resource-exhausted: Router will retry if the gRPC status code in the response header is set to resource-exhausted - unavailable: Router will retry if the gRPC status code in the response header is set to unavailable",
3410 "items": {
3411 "type": "string"
3412 },
3413 "type": "array"
3414 }
3415 },
3416 "type": "object"
3417 },
3418 "GrpcRouteRouteAction": {
3419 "description": "Specifies how to route matched traffic.",
3420 "id": "GrpcRouteRouteAction",
3421 "properties": {
3422 "destinations": {
3423 "description": "Optional. The destination services to which traffic should be forwarded. If multiple destinations are specified, traffic will be split between Backend Service(s) according to the weight field of these destinations.",
3424 "items": {
3425 "$ref": "GrpcRouteDestination"
3426 },
3427 "type": "array"
3428 },
3429 "faultInjectionPolicy": {
3430 "$ref": "GrpcRouteFaultInjectionPolicy",
3431 "description": "Optional. The specification for fault injection introduced into traffic to test the resiliency of clients to destination service failure. As part of fault injection, when clients send requests to a destination, delays can be introduced on a percentage of requests before sending those requests to the destination service. Similarly requests from clients can be aborted by for a percentage of requests. timeout and retry_policy will be ignored by clients that are configured with a fault_injection_policy"
3432 },
3433 "idleTimeout": {
3434 "description": "Optional. Specifies the idle timeout for the selected route. The idle timeout is defined as the period in which there are no bytes sent or received on either the upstream or downstream connection. If not set, the default idle timeout is 1 hour. If set to 0s, the timeout will be disabled.",
3435 "format": "google-duration",
3436 "type": "string"
3437 },
3438 "retryPolicy": {
3439 "$ref": "GrpcRouteRetryPolicy",
3440 "description": "Optional. Specifies the retry policy associated with this route."
3441 },
3442 "statefulSessionAffinity": {
3443 "$ref": "GrpcRouteStatefulSessionAffinityPolicy",
3444 "description": "Optional. Specifies cookie-based stateful session affinity."
3445 },
3446 "timeout": {
3447 "description": "Optional. Specifies the timeout for selected route. Timeout is computed from the time the request has been fully processed (i.e. end of stream) up until the response has been completely processed. Timeout includes all retries.",
3448 "format": "google-duration",
3449 "type": "string"
3450 }
3451 },
3452 "type": "object"
3453 },
3454 "GrpcRouteRouteMatch": {
3455 "description": "Criteria for matching traffic. A RouteMatch will be considered to match when all supplied fields match.",
3456 "id": "GrpcRouteRouteMatch",
3457 "properties": {
3458 "headers": {
3459 "description": "Optional. Specifies a collection of headers to match.",
3460 "items": {
3461 "$ref": "GrpcRouteHeaderMatch"
3462 },
3463 "type": "array"
3464 },
3465 "method": {
3466 "$ref": "GrpcRouteMethodMatch",
3467 "description": "Optional. A gRPC method to match against. If this field is empty or omitted, will match all methods."
3468 }
3469 },
3470 "type": "object"
3471 },
3472 "GrpcRouteRouteRule": {
3473 "description": "Describes how to route traffic.",
3474 "id": "GrpcRouteRouteRule",
3475 "properties": {
3476 "action": {
3477 "$ref": "GrpcRouteRouteAction",
3478 "description": "Required. A detailed rule defining how to route traffic. This field is required."
3479 },
3480 "matches": {
3481 "description": "Optional. Matches define conditions used for matching the rule against incoming gRPC requests. Each match is independent, i.e. this rule will be matched if ANY one of the matches is satisfied. If no matches field is specified, this rule will unconditionally match traffic.",
3482 "items": {
3483 "$ref": "GrpcRouteRouteMatch"
3484 },
3485 "type": "array"
3486 }
3487 },
3488 "type": "object"
3489 },
3490 "GrpcRouteStatefulSessionAffinityPolicy": {
3491 "description": "The specification for cookie-based stateful session affinity where the date plane supplies a “session cookie” with the name \"GSSA\" which encodes a specific destination host and each request containing that cookie will be directed to that host as long as the destination host remains up and healthy. The gRPC proxyless mesh library or sidecar proxy will manage the session cookie but the client application code is responsible for copying the cookie from each RPC in the session to the next.",
3492 "id": "GrpcRouteStatefulSessionAffinityPolicy",
3493 "properties": {
3494 "cookieTtl": {
3495 "description": "Required. The cookie TTL value for the Set-Cookie header generated by the data plane. The lifetime of the cookie may be set to a value from 1 to 86400 seconds (24 hours) inclusive.",
3496 "format": "google-duration",
3497 "type": "string"
3498 }
3499 },
3500 "type": "object"
3501 },
3502 "HttpRoute": {
3503 "description": "HttpRoute is the resource defining how HTTP traffic should be routed by a Mesh or Gateway resource.",
3504 "id": "HttpRoute",
3505 "properties": {
3506 "createTime": {
3507 "description": "Output only. The timestamp when the resource was created.",
3508 "format": "google-datetime",
3509 "readOnly": true,
3510 "type": "string"
3511 },
3512 "description": {
3513 "description": "Optional. A free-text description of the resource. Max length 1024 characters.",
3514 "type": "string"
3515 },
3516 "gateways": {
3517 "description": "Optional. Gateways defines a list of gateways this HttpRoute is attached to, as one of the routing rules to route the requests served by the gateway. Each gateway reference should match the pattern: `projects/*/locations/global/gateways/`",
3518 "items": {
3519 "type": "string"
3520 },
3521 "type": "array"
3522 },
3523 "hostnames": {
3524 "description": "Required. Hostnames define a set of hosts that should match against the HTTP host header to select a HttpRoute to process the request. Hostname is the fully qualified domain name of a network host, as defined by RFC 1123 with the exception that: - IPs are not allowed. - A hostname may be prefixed with a wildcard label (`*.`). The wildcard label must appear by itself as the first label. Hostname can be \"precise\" which is a domain name without the terminating dot of a network host (e.g. `foo.example.com`) or \"wildcard\", which is a domain name prefixed with a single wildcard label (e.g. `*.example.com`). Note that as per RFC1035 and RFC1123, a label must consist of lower case alphanumeric characters or '-', and must start and end with an alphanumeric character. No other punctuation is allowed. The routes associated with a Mesh or Gateways must have unique hostnames. If you attempt to attach multiple routes with conflicting hostnames, the configuration will be rejected. For example, while it is acceptable for routes for the hostnames `*.foo.bar.com` and `*.bar.com` to be associated with the same Mesh (or Gateways under the same scope), it is not possible to associate two routes both with `*.bar.com` or both with `bar.com`.",
3525 "items": {
3526 "type": "string"
3527 },
3528 "type": "array"
3529 },
3530 "labels": {
3531 "additionalProperties": {
3532 "type": "string"
3533 },
3534 "description": "Optional. Set of label tags associated with the HttpRoute resource.",
3535 "type": "object"
3536 },
3537 "meshes": {
3538 "description": "Optional. Meshes defines a list of meshes this HttpRoute is attached to, as one of the routing rules to route the requests served by the mesh. Each mesh reference should match the pattern: `projects/*/locations/global/meshes/` The attached Mesh should be of a type SIDECAR",
3539 "items": {
3540 "type": "string"
3541 },
3542 "type": "array"
3543 },
3544 "name": {
3545 "description": "Required. Name of the HttpRoute resource. It matches pattern `projects/*/locations/global/httpRoutes/http_route_name\u003e`.",
3546 "type": "string"
3547 },
3548 "rules": {
3549 "description": "Required. Rules that define how traffic is routed and handled. Rules will be matched sequentially based on the RouteMatch specified for the rule.",
3550 "items": {
3551 "$ref": "HttpRouteRouteRule"
3552 },
3553 "type": "array"
3554 },
3555 "selfLink": {
3556 "description": "Output only. Server-defined URL of this resource",
3557 "readOnly": true,
3558 "type": "string"
3559 },
3560 "updateTime": {
3561 "description": "Output only. The timestamp when the resource was updated.",
3562 "format": "google-datetime",
3563 "readOnly": true,
3564 "type": "string"
3565 }
3566 },
3567 "type": "object"
3568 },
3569 "HttpRouteCorsPolicy": {
3570 "description": "The Specification for allowing client side cross-origin requests.",
3571 "id": "HttpRouteCorsPolicy",
3572 "properties": {
3573 "allowCredentials": {
3574 "description": "In response to a preflight request, setting this to true indicates that the actual request can include user credentials. This translates to the Access-Control-Allow-Credentials header. Default value is false.",
3575 "type": "boolean"
3576 },
3577 "allowHeaders": {
3578 "description": "Specifies the content for Access-Control-Allow-Headers header.",
3579 "items": {
3580 "type": "string"
3581 },
3582 "type": "array"
3583 },
3584 "allowMethods": {
3585 "description": "Specifies the content for Access-Control-Allow-Methods header.",
3586 "items": {
3587 "type": "string"
3588 },
3589 "type": "array"
3590 },
3591 "allowOriginRegexes": {
3592 "description": "Specifies the regular expression patterns that match allowed origins. For regular expression grammar, please see https://github.com/google/re2/wiki/Syntax.",
3593 "items": {
3594 "type": "string"
3595 },
3596 "type": "array"
3597 },
3598 "allowOrigins": {
3599 "description": "Specifies the list of origins that will be allowed to do CORS requests. An origin is allowed if it matches either an item in allow_origins or an item in allow_origin_regexes.",
3600 "items": {
3601 "type": "string"
3602 },
3603 "type": "array"
3604 },
3605 "disabled": {
3606 "description": "If true, the CORS policy is disabled. The default value is false, which indicates that the CORS policy is in effect.",
3607 "type": "boolean"
3608 },
3609 "exposeHeaders": {
3610 "description": "Specifies the content for Access-Control-Expose-Headers header.",
3611 "items": {
3612 "type": "string"
3613 },
3614 "type": "array"
3615 },
3616 "maxAge": {
3617 "description": "Specifies how long result of a preflight request can be cached in seconds. This translates to the Access-Control-Max-Age header.",
3618 "type": "string"
3619 }
3620 },
3621 "type": "object"
3622 },
3623 "HttpRouteDestination": {
3624 "description": "Specifications of a destination to which the request should be routed to.",
3625 "id": "HttpRouteDestination",
3626 "properties": {
3627 "requestHeaderModifier": {
3628 "$ref": "HttpRouteHeaderModifier",
3629 "description": "Optional. The specification for modifying the headers of a matching request prior to delivery of the request to the destination. If HeaderModifiers are set on both the Destination and the RouteAction, they will be merged. Conflicts between the two will not be resolved on the configuration."
3630 },
3631 "responseHeaderModifier": {
3632 "$ref": "HttpRouteHeaderModifier",
3633 "description": "Optional. The specification for modifying the headers of a response prior to sending the response back to the client. If HeaderModifiers are set on both the Destination and the RouteAction, they will be merged. Conflicts between the two will not be resolved on the configuration."
3634 },
3635 "serviceName": {
3636 "description": "The URL of a BackendService to route traffic to.",
3637 "type": "string"
3638 },
3639 "weight": {
3640 "description": "Specifies the proportion of requests forwarded to the backend referenced by the serviceName field. This is computed as: - weight/Sum(weights in this destination list). For non-zero values, there may be some epsilon from the exact proportion defined here depending on the precision an implementation supports. If only one serviceName is specified and it has a weight greater than 0, 100% of the traffic is forwarded to that backend. If weights are specified for any one service name, they need to be specified for all of them. If weights are unspecified for all services, then, traffic is distributed in equal proportions to all of them.",
3641 "format": "int32",
3642 "type": "integer"
3643 }
3644 },
3645 "type": "object"
3646 },
3647 "HttpRouteFaultInjectionPolicy": {
3648 "description": "The specification for fault injection introduced into traffic to test the resiliency of clients to destination service failure. As part of fault injection, when clients send requests to a destination, delays can be introduced by client proxy on a percentage of requests before sending those requests to the destination service. Similarly requests can be aborted by client proxy for a percentage of requests.",
3649 "id": "HttpRouteFaultInjectionPolicy",
3650 "properties": {
3651 "abort": {
3652 "$ref": "HttpRouteFaultInjectionPolicyAbort",
3653 "description": "The specification for aborting to client requests."
3654 },
3655 "delay": {
3656 "$ref": "HttpRouteFaultInjectionPolicyDelay",
3657 "description": "The specification for injecting delay to client requests."
3658 }
3659 },
3660 "type": "object"
3661 },
3662 "HttpRouteFaultInjectionPolicyAbort": {
3663 "description": "Specification of how client requests are aborted as part of fault injection before being sent to a destination.",
3664 "id": "HttpRouteFaultInjectionPolicyAbort",
3665 "properties": {
3666 "httpStatus": {
3667 "description": "The HTTP status code used to abort the request. The value must be between 200 and 599 inclusive.",
3668 "format": "int32",
3669 "type": "integer"
3670 },
3671 "percentage": {
3672 "description": "The percentage of traffic which will be aborted. The value must be between [0, 100]",
3673 "format": "int32",
3674 "type": "integer"
3675 }
3676 },
3677 "type": "object"
3678 },
3679 "HttpRouteFaultInjectionPolicyDelay": {
3680 "description": "Specification of how client requests are delayed as part of fault injection before being sent to a destination.",
3681 "id": "HttpRouteFaultInjectionPolicyDelay",
3682 "properties": {
3683 "fixedDelay": {
3684 "description": "Specify a fixed delay before forwarding the request.",
3685 "format": "google-duration",
3686 "type": "string"
3687 },
3688 "percentage": {
3689 "description": "The percentage of traffic on which delay will be injected. The value must be between [0, 100]",
3690 "format": "int32",
3691 "type": "integer"
3692 }
3693 },
3694 "type": "object"
3695 },
3696 "HttpRouteHeaderMatch": {
3697 "description": "Specifies how to select a route rule based on HTTP request headers.",
3698 "id": "HttpRouteHeaderMatch",
3699 "properties": {
3700 "exactMatch": {
3701 "description": "The value of the header should match exactly the content of exact_match.",
3702 "type": "string"
3703 },
3704 "header": {
3705 "description": "The name of the HTTP header to match against.",
3706 "type": "string"
3707 },
3708 "invertMatch": {
3709 "description": "If specified, the match result will be inverted before checking. Default value is set to false.",
3710 "type": "boolean"
3711 },
3712 "prefixMatch": {
3713 "description": "The value of the header must start with the contents of prefix_match.",
3714 "type": "string"
3715 },
3716 "presentMatch": {
3717 "description": "A header with header_name must exist. The match takes place whether or not the header has a value.",
3718 "type": "boolean"
3719 },
3720 "rangeMatch": {
3721 "$ref": "HttpRouteHeaderMatchIntegerRange",
3722 "description": "If specified, the rule will match if the request header value is within the range."
3723 },
3724 "regexMatch": {
3725 "description": "The value of the header must match the regular expression specified in regex_match. For regular expression grammar, please see: https://github.com/google/re2/wiki/Syntax",
3726 "type": "string"
3727 },
3728 "suffixMatch": {
3729 "description": "The value of the header must end with the contents of suffix_match.",
3730 "type": "string"
3731 }
3732 },
3733 "type": "object"
3734 },
3735 "HttpRouteHeaderMatchIntegerRange": {
3736 "description": "Represents an integer value range.",
3737 "id": "HttpRouteHeaderMatchIntegerRange",
3738 "properties": {
3739 "end": {
3740 "description": "End of the range (exclusive)",
3741 "format": "int32",
3742 "type": "integer"
3743 },
3744 "start": {
3745 "description": "Start of the range (inclusive)",
3746 "format": "int32",
3747 "type": "integer"
3748 }
3749 },
3750 "type": "object"
3751 },
3752 "HttpRouteHeaderModifier": {
3753 "description": "The specification for modifying HTTP header in HTTP request and HTTP response.",
3754 "id": "HttpRouteHeaderModifier",
3755 "properties": {
3756 "add": {
3757 "additionalProperties": {
3758 "type": "string"
3759 },
3760 "description": "Add the headers with given map where key is the name of the header, value is the value of the header.",
3761 "type": "object"
3762 },
3763 "remove": {
3764 "description": "Remove headers (matching by header names) specified in the list.",
3765 "items": {
3766 "type": "string"
3767 },
3768 "type": "array"
3769 },
3770 "set": {
3771 "additionalProperties": {
3772 "type": "string"
3773 },
3774 "description": "Completely overwrite/replace the headers with given map where key is the name of the header, value is the value of the header.",
3775 "type": "object"
3776 }
3777 },
3778 "type": "object"
3779 },
3780 "HttpRouteHttpDirectResponse": {
3781 "description": "Static HTTP response object to be returned.",
3782 "id": "HttpRouteHttpDirectResponse",
3783 "properties": {
3784 "bytesBody": {
3785 "description": "Optional. Response body as bytes. Maximum body size is 4096B.",
3786 "format": "byte",
3787 "type": "string"
3788 },
3789 "status": {
3790 "description": "Required. Status to return as part of HTTP Response. Must be a positive integer.",
3791 "format": "int32",
3792 "type": "integer"
3793 },
3794 "stringBody": {
3795 "description": "Optional. Response body as a string. Maximum body length is 1024 characters.",
3796 "type": "string"
3797 }
3798 },
3799 "type": "object"
3800 },
3801 "HttpRouteQueryParameterMatch": {
3802 "description": "Specifications to match a query parameter in the request.",
3803 "id": "HttpRouteQueryParameterMatch",
3804 "properties": {
3805 "exactMatch": {
3806 "description": "The value of the query parameter must exactly match the contents of exact_match. Only one of exact_match, regex_match, or present_match must be set.",
3807 "type": "string"
3808 },
3809 "presentMatch": {
3810 "description": "Specifies that the QueryParameterMatcher matches if request contains query parameter, irrespective of whether the parameter has a value or not. Only one of exact_match, regex_match, or present_match must be set.",
3811 "type": "boolean"
3812 },
3813 "queryParameter": {
3814 "description": "The name of the query parameter to match.",
3815 "type": "string"
3816 },
3817 "regexMatch": {
3818 "description": "The value of the query parameter must match the regular expression specified by regex_match. For regular expression grammar, please see https://github.com/google/re2/wiki/Syntax Only one of exact_match, regex_match, or present_match must be set.",
3819 "type": "string"
3820 }
3821 },
3822 "type": "object"
3823 },
3824 "HttpRouteRedirect": {
3825 "description": "The specification for redirecting traffic.",
3826 "id": "HttpRouteRedirect",
3827 "properties": {
3828 "hostRedirect": {
3829 "description": "The host that will be used in the redirect response instead of the one that was supplied in the request.",
3830 "type": "string"
3831 },
3832 "httpsRedirect": {
3833 "description": "If set to true, the URL scheme in the redirected request is set to https. If set to false, the URL scheme of the redirected request will remain the same as that of the request. The default is set to false.",
3834 "type": "boolean"
3835 },
3836 "pathRedirect": {
3837 "description": "The path that will be used in the redirect response instead of the one that was supplied in the request. path_redirect can not be supplied together with prefix_redirect. Supply one alone or neither. If neither is supplied, the path of the original request will be used for the redirect.",
3838 "type": "string"
3839 },
3840 "portRedirect": {
3841 "description": "The port that will be used in the redirected request instead of the one that was supplied in the request.",
3842 "format": "int32",
3843 "type": "integer"
3844 },
3845 "prefixRewrite": {
3846 "description": "Indicates that during redirection, the matched prefix (or path) should be swapped with this value. This option allows URLs be dynamically created based on the request.",
3847 "type": "string"
3848 },
3849 "responseCode": {
3850 "description": "The HTTP Status code to use for the redirect.",
3851 "enum": [
3852 "RESPONSE_CODE_UNSPECIFIED",
3853 "MOVED_PERMANENTLY_DEFAULT",
3854 "FOUND",
3855 "SEE_OTHER",
3856 "TEMPORARY_REDIRECT",
3857 "PERMANENT_REDIRECT"
3858 ],
3859 "enumDescriptions": [
3860 "Default value",
3861 "Corresponds to 301.",
3862 "Corresponds to 302.",
3863 "Corresponds to 303.",
3864 "Corresponds to 307. In this case, the request method will be retained.",
3865 "Corresponds to 308. In this case, the request method will be retained."
3866 ],
3867 "type": "string"
3868 },
3869 "stripQuery": {
3870 "description": "if set to true, any accompanying query portion of the original URL is removed prior to redirecting the request. If set to false, the query portion of the original URL is retained. The default is set to false.",
3871 "type": "boolean"
3872 }
3873 },
3874 "type": "object"
3875 },
3876 "HttpRouteRequestMirrorPolicy": {
3877 "description": "Specifies the policy on how requests are shadowed to a separate mirrored destination service. The proxy does not wait for responses from the shadow service. Prior to sending traffic to the shadow service, the host/authority header is suffixed with -shadow.",
3878 "id": "HttpRouteRequestMirrorPolicy",
3879 "properties": {
3880 "destination": {
3881 "$ref": "HttpRouteDestination",
3882 "description": "The destination the requests will be mirrored to. The weight of the destination will be ignored."
3883 },
3884 "mirrorPercent": {
3885 "description": "Optional. The percentage of requests to get mirrored to the desired destination.",
3886 "format": "float",
3887 "type": "number"
3888 }
3889 },
3890 "type": "object"
3891 },
3892 "HttpRouteRetryPolicy": {
3893 "description": "The specifications for retries.",
3894 "id": "HttpRouteRetryPolicy",
3895 "properties": {
3896 "numRetries": {
3897 "description": "Specifies the allowed number of retries. This number must be \u003e 0. If not specified, default to 1.",
3898 "format": "int32",
3899 "type": "integer"
3900 },
3901 "perTryTimeout": {
3902 "description": "Specifies a non-zero timeout per retry attempt.",
3903 "format": "google-duration",
3904 "type": "string"
3905 },
3906 "retryConditions": {
3907 "description": "Specifies one or more conditions when this retry policy applies. Valid values are: 5xx: Proxy will attempt a retry if the destination service responds with any 5xx response code, of if the destination service does not respond at all, example: disconnect, reset, read timeout, connection failure and refused streams. gateway-error: Similar to 5xx, but only applies to response codes 502, 503, 504. reset: Proxy will attempt a retry if the destination service does not respond at all (disconnect/reset/read timeout) connect-failure: Proxy will retry on failures connecting to destination for example due to connection timeouts. retriable-4xx: Proxy will retry fro retriable 4xx response codes. Currently the only retriable error supported is 409. refused-stream: Proxy will retry if the destination resets the stream with a REFUSED_STREAM error code. This reset type indicates that it is safe to retry.",
3908 "items": {
3909 "type": "string"
3910 },
3911 "type": "array"
3912 }
3913 },
3914 "type": "object"
3915 },
3916 "HttpRouteRouteAction": {
3917 "description": "The specifications for routing traffic and applying associated policies.",
3918 "id": "HttpRouteRouteAction",
3919 "properties": {
3920 "corsPolicy": {
3921 "$ref": "HttpRouteCorsPolicy",
3922 "description": "The specification for allowing client side cross-origin requests."
3923 },
3924 "destinations": {
3925 "description": "The destination to which traffic should be forwarded.",
3926 "items": {
3927 "$ref": "HttpRouteDestination"
3928 },
3929 "type": "array"
3930 },
3931 "directResponse": {
3932 "$ref": "HttpRouteHttpDirectResponse",
3933 "description": "Optional. Static HTTP Response object to be returned regardless of the request."
3934 },
3935 "faultInjectionPolicy": {
3936 "$ref": "HttpRouteFaultInjectionPolicy",
3937 "description": "The specification for fault injection introduced into traffic to test the resiliency of clients to backend service failure. As part of fault injection, when clients send requests to a backend service, delays can be introduced on a percentage of requests before sending those requests to the backend service. Similarly requests from clients can be aborted for a percentage of requests. timeout and retry_policy will be ignored by clients that are configured with a fault_injection_policy"
3938 },
3939 "idleTimeout": {
3940 "description": "Optional. Specifies the idle timeout for the selected route. The idle timeout is defined as the period in which there are no bytes sent or received on either the upstream or downstream connection. If not set, the default idle timeout is 1 hour. If set to 0s, the timeout will be disabled.",
3941 "format": "google-duration",
3942 "type": "string"
3943 },
3944 "redirect": {
3945 "$ref": "HttpRouteRedirect",
3946 "description": "If set, the request is directed as configured by this field."
3947 },
3948 "requestHeaderModifier": {
3949 "$ref": "HttpRouteHeaderModifier",
3950 "description": "The specification for modifying the headers of a matching request prior to delivery of the request to the destination. If HeaderModifiers are set on both the Destination and the RouteAction, they will be merged. Conflicts between the two will not be resolved on the configuration."
3951 },
3952 "requestMirrorPolicy": {
3953 "$ref": "HttpRouteRequestMirrorPolicy",
3954 "description": "Specifies the policy on how requests intended for the routes destination are shadowed to a separate mirrored destination. Proxy will not wait for the shadow destination to respond before returning the response. Prior to sending traffic to the shadow service, the host/authority header is suffixed with -shadow."
3955 },
3956 "responseHeaderModifier": {
3957 "$ref": "HttpRouteHeaderModifier",
3958 "description": "The specification for modifying the headers of a response prior to sending the response back to the client. If HeaderModifiers are set on both the Destination and the RouteAction, they will be merged. Conflicts between the two will not be resolved on the configuration."
3959 },
3960 "retryPolicy": {
3961 "$ref": "HttpRouteRetryPolicy",
3962 "description": "Specifies the retry policy associated with this route."
3963 },
3964 "statefulSessionAffinity": {
3965 "$ref": "HttpRouteStatefulSessionAffinityPolicy",
3966 "description": "Optional. Specifies cookie-based stateful session affinity."
3967 },
3968 "timeout": {
3969 "description": "Specifies the timeout for selected route. Timeout is computed from the time the request has been fully processed (i.e. end of stream) up until the response has been completely processed. Timeout includes all retries.",
3970 "format": "google-duration",
3971 "type": "string"
3972 },
3973 "urlRewrite": {
3974 "$ref": "HttpRouteURLRewrite",
3975 "description": "The specification for rewrite URL before forwarding requests to the destination."
3976 }
3977 },
3978 "type": "object"
3979 },
3980 "HttpRouteRouteMatch": {
3981 "description": "RouteMatch defines specifications used to match requests. If multiple match types are set, this RouteMatch will match if ALL type of matches are matched.",
3982 "id": "HttpRouteRouteMatch",
3983 "properties": {
3984 "fullPathMatch": {
3985 "description": "The HTTP request path value should exactly match this value. Only one of full_path_match, prefix_match, or regex_match should be used.",
3986 "type": "string"
3987 },
3988 "headers": {
3989 "description": "Specifies a list of HTTP request headers to match against. ALL of the supplied headers must be matched.",
3990 "items": {
3991 "$ref": "HttpRouteHeaderMatch"
3992 },
3993 "type": "array"
3994 },
3995 "ignoreCase": {
3996 "description": "Specifies if prefix_match and full_path_match matches are case sensitive. The default value is false.",
3997 "type": "boolean"
3998 },
3999 "prefixMatch": {
4000 "description": "The HTTP request path value must begin with specified prefix_match. prefix_match must begin with a /. Only one of full_path_match, prefix_match, or regex_match should be used.",
4001 "type": "string"
4002 },
4003 "queryParameters": {
4004 "description": "Specifies a list of query parameters to match against. ALL of the query parameters must be matched.",
4005 "items": {
4006 "$ref": "HttpRouteQueryParameterMatch"
4007 },
4008 "type": "array"
4009 },
4010 "regexMatch": {
4011 "description": "The HTTP request path value must satisfy the regular expression specified by regex_match after removing any query parameters and anchor supplied with the original URL. For regular expression grammar, please see https://github.com/google/re2/wiki/Syntax Only one of full_path_match, prefix_match, or regex_match should be used.",
4012 "type": "string"
4013 }
4014 },
4015 "type": "object"
4016 },
4017 "HttpRouteRouteRule": {
4018 "description": "Specifies how to match traffic and how to route traffic when traffic is matched.",
4019 "id": "HttpRouteRouteRule",
4020 "properties": {
4021 "action": {
4022 "$ref": "HttpRouteRouteAction",
4023 "description": "The detailed rule defining how to route matched traffic."
4024 },
4025 "matches": {
4026 "description": "A list of matches define conditions used for matching the rule against incoming HTTP requests. Each match is independent, i.e. this rule will be matched if ANY one of the matches is satisfied. If no matches field is specified, this rule will unconditionally match traffic. If a default rule is desired to be configured, add a rule with no matches specified to the end of the rules list.",
4027 "items": {
4028 "$ref": "HttpRouteRouteMatch"
4029 },
4030 "type": "array"
4031 }
4032 },
4033 "type": "object"
4034 },
4035 "HttpRouteStatefulSessionAffinityPolicy": {
4036 "description": "The specification for cookie-based stateful session affinity where the date plane supplies a “session cookie” with the name \"GSSA\" which encodes a specific destination host and each request containing that cookie will be directed to that host as long as the destination host remains up and healthy. The gRPC proxyless mesh library or sidecar proxy will manage the session cookie but the client application code is responsible for copying the cookie from each RPC in the session to the next.",
4037 "id": "HttpRouteStatefulSessionAffinityPolicy",
4038 "properties": {
4039 "cookieTtl": {
4040 "description": "Required. The cookie TTL value for the Set-Cookie header generated by the data plane. The lifetime of the cookie may be set to a value from 1 to 86400 seconds (24 hours) inclusive.",
4041 "format": "google-duration",
4042 "type": "string"
4043 }
4044 },
4045 "type": "object"
4046 },
4047 "HttpRouteURLRewrite": {
4048 "description": "The specification for modifying the URL of the request, prior to forwarding the request to the destination.",
4049 "id": "HttpRouteURLRewrite",
4050 "properties": {
4051 "hostRewrite": {
4052 "description": "Prior to forwarding the request to the selected destination, the requests host header is replaced by this value.",
4053 "type": "string"
4054 },
4055 "pathPrefixRewrite": {
4056 "description": "Prior to forwarding the request to the selected destination, the matching portion of the requests path is replaced by this value.",
4057 "type": "string"
4058 }
4059 },
4060 "type": "object"
4061 },
4062 "LbRouteExtension": {
4063 "description": "`LbRouteExtension` is a resource that lets you control where traffic is routed to for a given request.",
4064 "id": "LbRouteExtension",
4065 "properties": {
4066 "createTime": {
4067 "description": "Output only. The timestamp when the resource was created.",
4068 "format": "google-datetime",
4069 "readOnly": true,
4070 "type": "string"
4071 },
4072 "description": {
4073 "description": "Optional. A human-readable description of the resource.",
4074 "type": "string"
4075 },
4076 "extensionChains": {
4077 "description": "Required. A set of ordered extension chains that contain the match conditions and extensions to execute. Match conditions for each extension chain are evaluated in sequence for a given request. The first extension chain that has a condition that matches the request is executed. Any subsequent extension chains do not execute. Limited to 5 extension chains per resource.",
4078 "items": {
4079 "$ref": "ExtensionChain"
4080 },
4081 "type": "array"
4082 },
4083 "forwardingRules": {
4084 "description": "Required. A list of references to the forwarding rules to which this service extension is attached to. At least one forwarding rule is required. There can be only one `LbRouteExtension` resource per forwarding rule.",
4085 "items": {
4086 "type": "string"
4087 },
4088 "type": "array"
4089 },
4090 "labels": {
4091 "additionalProperties": {
4092 "type": "string"
4093 },
4094 "description": "Optional. Set of labels associated with the `LbRouteExtension` resource. The format must comply with [the requirements for labels](https://cloud.google.com/compute/docs/labeling-resources#requirements) for Google Cloud resources.",
4095 "type": "object"
4096 },
4097 "loadBalancingScheme": {
4098 "description": "Required. All backend services and forwarding rules referenced by this extension must share the same load balancing scheme. Supported values: `INTERNAL_MANAGED`, `EXTERNAL_MANAGED`. For more information, refer to [Choosing a load balancer](https://cloud.google.com/load-balancing/docs/backend-service).",
4099 "enum": [
4100 "LOAD_BALANCING_SCHEME_UNSPECIFIED",
4101 "INTERNAL_MANAGED",
4102 "EXTERNAL_MANAGED"
4103 ],
4104 "enumDescriptions": [
4105 "Default value. Do not use.",
4106 "Signifies that this is used for Internal HTTP(S) Load Balancing.",
4107 "Signifies that this is used for External Managed HTTP(S) Load Balancing."
4108 ],
4109 "type": "string"
4110 },
4111 "name": {
4112 "description": "Required. Identifier. Name of the `LbRouteExtension` resource in the following format: `projects/{project}/locations/{location}/lbRouteExtensions/{lb_route_extension}`.",
4113 "type": "string"
4114 },
4115 "updateTime": {
4116 "description": "Output only. The timestamp when the resource was updated.",
4117 "format": "google-datetime",
4118 "readOnly": true,
4119 "type": "string"
4120 }
4121 },
4122 "type": "object"
4123 },
4124 "LbTrafficExtension": {
4125 "description": "`LbTrafficExtension` is a resource that lets the extension service modify the headers and payloads of both requests and responses without impacting the choice of backend services or any other security policies associated with the backend service.",
4126 "id": "LbTrafficExtension",
4127 "properties": {
4128 "createTime": {
4129 "description": "Output only. The timestamp when the resource was created.",
4130 "format": "google-datetime",
4131 "readOnly": true,
4132 "type": "string"
4133 },
4134 "description": {
4135 "description": "Optional. A human-readable description of the resource.",
4136 "type": "string"
4137 },
4138 "extensionChains": {
4139 "description": "Required. A set of ordered extension chains that contain the match conditions and extensions to execute. Match conditions for each extension chain are evaluated in sequence for a given request. The first extension chain that has a condition that matches the request is executed. Any subsequent extension chains do not execute. Limited to 5 extension chains per resource.",
4140 "items": {
4141 "$ref": "ExtensionChain"
4142 },
4143 "type": "array"
4144 },
4145 "forwardingRules": {
4146 "description": "Required. A list of references to the forwarding rules to which this service extension is attached to. At least one forwarding rule is required. There can be only one `LBTrafficExtension` resource per forwarding rule.",
4147 "items": {
4148 "type": "string"
4149 },
4150 "type": "array"
4151 },
4152 "labels": {
4153 "additionalProperties": {
4154 "type": "string"
4155 },
4156 "description": "Optional. Set of labels associated with the `LbTrafficExtension` resource. The format must comply with [the requirements for labels](https://cloud.google.com/compute/docs/labeling-resources#requirements) for Google Cloud resources.",
4157 "type": "object"
4158 },
4159 "loadBalancingScheme": {
4160 "description": "Required. All backend services and forwarding rules referenced by this extension must share the same load balancing scheme. Supported values: `INTERNAL_MANAGED`, `EXTERNAL_MANAGED`. For more information, refer to [Choosing a load balancer](https://cloud.google.com/load-balancing/docs/backend-service).",
4161 "enum": [
4162 "LOAD_BALANCING_SCHEME_UNSPECIFIED",
4163 "INTERNAL_MANAGED",
4164 "EXTERNAL_MANAGED"
4165 ],
4166 "enumDescriptions": [
4167 "Default value. Do not use.",
4168 "Signifies that this is used for Internal HTTP(S) Load Balancing.",
4169 "Signifies that this is used for External Managed HTTP(S) Load Balancing."
4170 ],
4171 "type": "string"
4172 },
4173 "name": {
4174 "description": "Required. Identifier. Name of the `LbTrafficExtension` resource in the following format: `projects/{project}/locations/{location}/lbTrafficExtensions/{lb_traffic_extension}`.",
4175 "type": "string"
4176 },
4177 "updateTime": {
4178 "description": "Output only. The timestamp when the resource was updated.",
4179 "format": "google-datetime",
4180 "readOnly": true,
4181 "type": "string"
4182 }
4183 },
4184 "type": "object"
4185 },
4186 "ListEndpointPoliciesResponse": {
4187 "description": "Response returned by the ListEndpointPolicies method.",
4188 "id": "ListEndpointPoliciesResponse",
4189 "properties": {
4190 "endpointPolicies": {
4191 "description": "List of EndpointPolicy resources.",
4192 "items": {
4193 "$ref": "EndpointPolicy"
4194 },
4195 "type": "array"
4196 },
4197 "nextPageToken": {
4198 "description": "If there might be more results than those appearing in this response, then `next_page_token` is included. To get the next set of results, call this method again using the value of `next_page_token` as `page_token`.",
4199 "type": "string"
4200 }
4201 },
4202 "type": "object"
4203 },
4204 "ListGatewaysResponse": {
4205 "description": "Response returned by the ListGateways method.",
4206 "id": "ListGatewaysResponse",
4207 "properties": {
4208 "gateways": {
4209 "description": "List of Gateway resources.",
4210 "items": {
4211 "$ref": "Gateway"
4212 },
4213 "type": "array"
4214 },
4215 "nextPageToken": {
4216 "description": "If there might be more results than those appearing in this response, then `next_page_token` is included. To get the next set of results, call this method again using the value of `next_page_token` as `page_token`.",
4217 "type": "string"
4218 },
4219 "unreachable": {
4220 "description": "Locations that could not be reached.",
4221 "items": {
4222 "type": "string"
4223 },
4224 "type": "array"
4225 }
4226 },
4227 "type": "object"
4228 },
4229 "ListGrpcRoutesResponse": {
4230 "description": "Response returned by the ListGrpcRoutes method.",
4231 "id": "ListGrpcRoutesResponse",
4232 "properties": {
4233 "grpcRoutes": {
4234 "description": "List of GrpcRoute resources.",
4235 "items": {
4236 "$ref": "GrpcRoute"
4237 },
4238 "type": "array"
4239 },
4240 "nextPageToken": {
4241 "description": "If there might be more results than those appearing in this response, then `next_page_token` is included. To get the next set of results, call this method again using the value of `next_page_token` as `page_token`.",
4242 "type": "string"
4243 }
4244 },
4245 "type": "object"
4246 },
4247 "ListHttpRoutesResponse": {
4248 "description": "Response returned by the ListHttpRoutes method.",
4249 "id": "ListHttpRoutesResponse",
4250 "properties": {
4251 "httpRoutes": {
4252 "description": "List of HttpRoute resources.",
4253 "items": {
4254 "$ref": "HttpRoute"
4255 },
4256 "type": "array"
4257 },
4258 "nextPageToken": {
4259 "description": "If there might be more results than those appearing in this response, then `next_page_token` is included. To get the next set of results, call this method again using the value of `next_page_token` as `page_token`.",
4260 "type": "string"
4261 }
4262 },
4263 "type": "object"
4264 },
4265 "ListLbRouteExtensionsResponse": {
4266 "description": "Message for response to listing `LbRouteExtension` resources.",
4267 "id": "ListLbRouteExtensionsResponse",
4268 "properties": {
4269 "lbRouteExtensions": {
4270 "description": "The list of `LbRouteExtension` resources.",
4271 "items": {
4272 "$ref": "LbRouteExtension"
4273 },
4274 "type": "array"
4275 },
4276 "nextPageToken": {
4277 "description": "A token identifying a page of results that the server returns.",
4278 "type": "string"
4279 },
4280 "unreachable": {
4281 "description": "Locations that could not be reached.",
4282 "items": {
4283 "type": "string"
4284 },
4285 "type": "array"
4286 }
4287 },
4288 "type": "object"
4289 },
4290 "ListLbTrafficExtensionsResponse": {
4291 "description": "Message for response to listing `LbTrafficExtension` resources.",
4292 "id": "ListLbTrafficExtensionsResponse",
4293 "properties": {
4294 "lbTrafficExtensions": {
4295 "description": "The list of `LbTrafficExtension` resources.",
4296 "items": {
4297 "$ref": "LbTrafficExtension"
4298 },
4299 "type": "array"
4300 },
4301 "nextPageToken": {
4302 "description": "A token identifying a page of results that the server returns.",
4303 "type": "string"
4304 },
4305 "unreachable": {
4306 "description": "Locations that could not be reached.",
4307 "items": {
4308 "type": "string"
4309 },
4310 "type": "array"
4311 }
4312 },
4313 "type": "object"
4314 },
4315 "ListLocationsResponse": {
4316 "description": "The response message for Locations.ListLocations.",
4317 "id": "ListLocationsResponse",
4318 "properties": {
4319 "locations": {
4320 "description": "A list of locations that matches the specified filter in the request.",
4321 "items": {
4322 "$ref": "Location"
4323 },
4324 "type": "array"
4325 },
4326 "nextPageToken": {
4327 "description": "The standard List next-page token.",
4328 "type": "string"
4329 }
4330 },
4331 "type": "object"
4332 },
4333 "ListMeshesResponse": {
4334 "description": "Response returned by the ListMeshes method.",
4335 "id": "ListMeshesResponse",
4336 "properties": {
4337 "meshes": {
4338 "description": "List of Mesh resources.",
4339 "items": {
4340 "$ref": "Mesh"
4341 },
4342 "type": "array"
4343 },
4344 "nextPageToken": {
4345 "description": "If there might be more results than those appearing in this response, then `next_page_token` is included. To get the next set of results, call this method again using the value of `next_page_token` as `page_token`.",
4346 "type": "string"
4347 }
4348 },
4349 "type": "object"
4350 },
4351 "ListOperationsResponse": {
4352 "description": "The response message for Operations.ListOperations.",
4353 "id": "ListOperationsResponse",
4354 "properties": {
4355 "nextPageToken": {
4356 "description": "The standard List next-page token.",
4357 "type": "string"
4358 },
4359 "operations": {
4360 "description": "A list of operations that matches the specified filter in the request.",
4361 "items": {
4362 "$ref": "Operation"
4363 },
4364 "type": "array"
4365 }
4366 },
4367 "type": "object"
4368 },
4369 "ListServiceBindingsResponse": {
4370 "description": "Response returned by the ListServiceBindings method.",
4371 "id": "ListServiceBindingsResponse",
4372 "properties": {
4373 "nextPageToken": {
4374 "description": "If there might be more results than those appearing in this response, then `next_page_token` is included. To get the next set of results, call this method again using the value of `next_page_token` as `page_token`.",
4375 "type": "string"
4376 },
4377 "serviceBindings": {
4378 "description": "List of ServiceBinding resources.",
4379 "items": {
4380 "$ref": "ServiceBinding"
4381 },
4382 "type": "array"
4383 }
4384 },
4385 "type": "object"
4386 },
4387 "ListServiceLbPoliciesResponse": {
4388 "description": "Response returned by the ListServiceLbPolicies method.",
4389 "id": "ListServiceLbPoliciesResponse",
4390 "properties": {
4391 "nextPageToken": {
4392 "description": "If there might be more results than those appearing in this response, then `next_page_token` is included. To get the next set of results, call this method again using the value of `next_page_token` as `page_token`.",
4393 "type": "string"
4394 },
4395 "serviceLbPolicies": {
4396 "description": "List of ServiceLbPolicy resources.",
4397 "items": {
4398 "$ref": "ServiceLbPolicy"
4399 },
4400 "type": "array"
4401 }
4402 },
4403 "type": "object"
4404 },
4405 "ListTcpRoutesResponse": {
4406 "description": "Response returned by the ListTcpRoutes method.",
4407 "id": "ListTcpRoutesResponse",
4408 "properties": {
4409 "nextPageToken": {
4410 "description": "If there might be more results than those appearing in this response, then `next_page_token` is included. To get the next set of results, call this method again using the value of `next_page_token` as `page_token`.",
4411 "type": "string"
4412 },
4413 "tcpRoutes": {
4414 "description": "List of TcpRoute resources.",
4415 "items": {
4416 "$ref": "TcpRoute"
4417 },
4418 "type": "array"
4419 }
4420 },
4421 "type": "object"
4422 },
4423 "ListTlsRoutesResponse": {
4424 "description": "Response returned by the ListTlsRoutes method.",
4425 "id": "ListTlsRoutesResponse",
4426 "properties": {
4427 "nextPageToken": {
4428 "description": "If there might be more results than those appearing in this response, then `next_page_token` is included. To get the next set of results, call this method again using the value of `next_page_token` as `page_token`.",
4429 "type": "string"
4430 },
4431 "tlsRoutes": {
4432 "description": "List of TlsRoute resources.",
4433 "items": {
4434 "$ref": "TlsRoute"
4435 },
4436 "type": "array"
4437 }
4438 },
4439 "type": "object"
4440 },
4441 "Location": {
4442 "description": "A resource that represents a Google Cloud location.",
4443 "id": "Location",
4444 "properties": {
4445 "displayName": {
4446 "description": "The friendly name for this location, typically a nearby city name. For example, \"Tokyo\".",
4447 "type": "string"
4448 },
4449 "labels": {
4450 "additionalProperties": {
4451 "type": "string"
4452 },
4453 "description": "Cross-service attributes for the location. For example {\"cloud.googleapis.com/region\": \"us-east1\"}",
4454 "type": "object"
4455 },
4456 "locationId": {
4457 "description": "The canonical id for this location. For example: `\"us-east1\"`.",
4458 "type": "string"
4459 },
4460 "metadata": {
4461 "additionalProperties": {
4462 "description": "Properties of the object. Contains field @type with type URL.",
4463 "type": "any"
4464 },
4465 "description": "Service-specific metadata. For example the available capacity at the given location.",
4466 "type": "object"
4467 },
4468 "name": {
4469 "description": "Resource name for the location, which may vary between implementations. For example: `\"projects/example-project/locations/us-east1\"`",
4470 "type": "string"
4471 }
4472 },
4473 "type": "object"
4474 },
4475 "Mesh": {
4476 "description": "Mesh represents a logical configuration grouping for workload to workload communication within a service mesh. Routes that point to mesh dictate how requests are routed within this logical mesh boundary.",
4477 "id": "Mesh",
4478 "properties": {
4479 "createTime": {
4480 "description": "Output only. The timestamp when the resource was created.",
4481 "format": "google-datetime",
4482 "readOnly": true,
4483 "type": "string"
4484 },
4485 "description": {
4486 "description": "Optional. A free-text description of the resource. Max length 1024 characters.",
4487 "type": "string"
4488 },
4489 "envoyHeaders": {
4490 "description": "Optional. Determines if envoy will insert internal debug headers into upstream requests. Other Envoy headers may still be injected. By default, envoy will not insert any debug headers.",
4491 "enum": [
4492 "ENVOY_HEADERS_UNSPECIFIED",
4493 "NONE",
4494 "DEBUG_HEADERS"
4495 ],
4496 "enumDescriptions": [
4497 "Defaults to NONE.",
4498 "Suppress envoy debug headers.",
4499 "Envoy will insert default internal debug headers into upstream requests: x-envoy-attempt-count x-envoy-is-timeout-retry x-envoy-expected-rq-timeout-ms x-envoy-original-path x-envoy-upstream-stream-duration-ms"
4500 ],
4501 "type": "string"
4502 },
4503 "interceptionPort": {
4504 "description": "Optional. If set to a valid TCP port (1-65535), instructs the SIDECAR proxy to listen on the specified port of localhost (127.0.0.1) address. The SIDECAR proxy will expect all traffic to be redirected to this port regardless of its actual ip:port destination. If unset, a port '15001' is used as the interception port. This is applicable only for sidecar proxy deployments.",
4505 "format": "int32",
4506 "type": "integer"
4507 },
4508 "labels": {
4509 "additionalProperties": {
4510 "type": "string"
4511 },
4512 "description": "Optional. Set of label tags associated with the Mesh resource.",
4513 "type": "object"
4514 },
4515 "name": {
4516 "description": "Required. Name of the Mesh resource. It matches pattern `projects/*/locations/global/meshes/`.",
4517 "type": "string"
4518 },
4519 "selfLink": {
4520 "description": "Output only. Server-defined URL of this resource",
4521 "readOnly": true,
4522 "type": "string"
4523 },
4524 "updateTime": {
4525 "description": "Output only. The timestamp when the resource was updated.",
4526 "format": "google-datetime",
4527 "readOnly": true,
4528 "type": "string"
4529 }
4530 },
4531 "type": "object"
4532 },
4533 "Operation": {
4534 "description": "This resource represents a long-running operation that is the result of a network API call.",
4535 "id": "Operation",
4536 "properties": {
4537 "done": {
4538 "description": "If the value is `false`, it means the operation is still in progress. If `true`, the operation is completed, and either `error` or `response` is available.",
4539 "type": "boolean"
4540 },
4541 "error": {
4542 "$ref": "Status",
4543 "description": "The error result of the operation in case of failure or cancellation."
4544 },
4545 "metadata": {
4546 "additionalProperties": {
4547 "description": "Properties of the object. Contains field @type with type URL.",
4548 "type": "any"
4549 },
4550 "description": "Service-specific metadata associated with the operation. It typically contains progress information and common metadata such as create time. Some services might not provide such metadata. Any method that returns a long-running operation should document the metadata type, if any.",
4551 "type": "object"
4552 },
4553 "name": {
4554 "description": "The server-assigned name, which is only unique within the same service that originally returns it. If you use the default HTTP mapping, the `name` should be a resource name ending with `operations/{unique_id}`.",
4555 "type": "string"
4556 },
4557 "response": {
4558 "additionalProperties": {
4559 "description": "Properties of the object. Contains field @type with type URL.",
4560 "type": "any"
4561 },
4562 "description": "The normal, successful response of the operation. If the original method returns no data on success, such as `Delete`, the response is `google.protobuf.Empty`. If the original method is standard `Get`/`Create`/`Update`, the response should be the resource. For other methods, the response should have the type `XxxResponse`, where `Xxx` is the original method name. For example, if the original method name is `TakeSnapshot()`, the inferred response type is `TakeSnapshotResponse`.",
4563 "type": "object"
4564 }
4565 },
4566 "type": "object"
4567 },
4568 "OperationMetadata": {
4569 "description": "Represents the metadata of the long-running operation.",
4570 "id": "OperationMetadata",
4571 "properties": {
4572 "apiVersion": {
4573 "description": "Output only. API version used to start the operation.",
4574 "readOnly": true,
4575 "type": "string"
4576 },
4577 "createTime": {
4578 "description": "Output only. The time the operation was created.",
4579 "format": "google-datetime",
4580 "readOnly": true,
4581 "type": "string"
4582 },
4583 "endTime": {
4584 "description": "Output only. The time the operation finished running.",
4585 "format": "google-datetime",
4586 "readOnly": true,
4587 "type": "string"
4588 },
4589 "requestedCancellation": {
4590 "description": "Output only. Identifies whether the user has requested cancellation of the operation. Operations that have successfully been cancelled have Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.",
4591 "readOnly": true,
4592 "type": "boolean"
4593 },
4594 "statusMessage": {
4595 "description": "Output only. Human-readable status of the operation, if any.",
4596 "readOnly": true,
4597 "type": "string"
4598 },
4599 "target": {
4600 "description": "Output only. Server-defined resource path for the target of the operation.",
4601 "readOnly": true,
4602 "type": "string"
4603 },
4604 "verb": {
4605 "description": "Output only. Name of the verb executed by the operation.",
4606 "readOnly": true,
4607 "type": "string"
4608 }
4609 },
4610 "type": "object"
4611 },
4612 "Policy": {
4613 "description": "An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources. A `Policy` is a collection of `bindings`. A `binding` binds one or more `members`, or principals, to a single `role`. Principals can be user accounts, service accounts, Google groups, and domains (such as G Suite). A `role` is a named list of permissions; each `role` can be an IAM predefined role or a user-created custom role. For some types of Google Cloud resources, a `binding` can also specify a `condition`, which is a logical expression that allows access to a resource only if the expression evaluates to `true`. A condition can add constraints based on attributes of the request, the resource, or both. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies). **JSON example:** ``` { \"bindings\": [ { \"role\": \"roles/resourcemanager.organizationAdmin\", \"members\": [ \"user:mike@example.com\", \"group:admins@example.com\", \"domain:google.com\", \"serviceAccount:my-project-id@appspot.gserviceaccount.com\" ] }, { \"role\": \"roles/resourcemanager.organizationViewer\", \"members\": [ \"user:eve@example.com\" ], \"condition\": { \"title\": \"expirable access\", \"description\": \"Does not grant access after Sep 2020\", \"expression\": \"request.time \u003c timestamp('2020-10-01T00:00:00.000Z')\", } } ], \"etag\": \"BwWWja0YfJA=\", \"version\": 3 } ``` **YAML example:** ``` bindings: - members: - user:mike@example.com - group:admins@example.com - domain:google.com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/resourcemanager.organizationAdmin - members: - user:eve@example.com role: roles/resourcemanager.organizationViewer condition: title: expirable access description: Does not grant access after Sep 2020 expression: request.time \u003c timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 ``` For a description of IAM and its features, see the [IAM documentation](https://cloud.google.com/iam/docs/).",
4614 "id": "Policy",
4615 "properties": {
4616 "auditConfigs": {
4617 "description": "Specifies cloud audit logging configuration for this policy.",
4618 "items": {
4619 "$ref": "AuditConfig"
4620 },
4621 "type": "array"
4622 },
4623 "bindings": {
4624 "description": "Associates a list of `members`, or principals, with a `role`. Optionally, may specify a `condition` that determines how and when the `bindings` are applied. Each of the `bindings` must contain at least one principal. The `bindings` in a `Policy` can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the `bindings` grant 50 different roles to `user:alice@example.com`, and not to any other principal, then you can add another 1,450 principals to the `bindings` in the `Policy`.",
4625 "items": {
4626 "$ref": "Binding"
4627 },
4628 "type": "array"
4629 },
4630 "etag": {
4631 "description": "`etag` is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An `etag` is returned in the response to `getIamPolicy`, and systems are expected to put that etag in the request to `setIamPolicy` to ensure that their change will be applied to the same version of the policy. **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost.",
4632 "format": "byte",
4633 "type": "string"
4634 },
4635 "version": {
4636 "description": "Specifies the format of the policy. Valid values are `0`, `1`, and `3`. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version `3`. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions **Important:** If you use IAM Conditions, you must include the `etag` field whenever you call `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a version `3` policy with a version `1` policy, and all of the conditions in the version `3` policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).",
4637 "format": "int32",
4638 "type": "integer"
4639 }
4640 },
4641 "type": "object"
4642 },
4643 "ServiceBinding": {
4644 "description": "ServiceBinding is the resource that defines a Service Directory Service to be used in a BackendService resource.",
4645 "id": "ServiceBinding",
4646 "properties": {
4647 "createTime": {
4648 "description": "Output only. The timestamp when the resource was created.",
4649 "format": "google-datetime",
4650 "readOnly": true,
4651 "type": "string"
4652 },
4653 "description": {
4654 "description": "Optional. A free-text description of the resource. Max length 1024 characters.",
4655 "type": "string"
4656 },
4657 "labels": {
4658 "additionalProperties": {
4659 "type": "string"
4660 },
4661 "description": "Optional. Set of label tags associated with the ServiceBinding resource.",
4662 "type": "object"
4663 },
4664 "name": {
4665 "description": "Required. Name of the ServiceBinding resource. It matches pattern `projects/*/locations/global/serviceBindings/service_binding_name`.",
4666 "type": "string"
4667 },
4668 "service": {
4669 "description": "Required. The full Service Directory Service name of the format projects/*/locations/*/namespaces/*/services/*",
4670 "type": "string"
4671 },
4672 "serviceId": {
4673 "description": "Output only. The unique identifier of the Service Directory Service against which the Service Binding resource is validated. This is populated when the Service Binding resource is used in another resource (like Backend Service). This is of the UUID4 format.",
4674 "readOnly": true,
4675 "type": "string"
4676 },
4677 "updateTime": {
4678 "description": "Output only. The timestamp when the resource was updated.",
4679 "format": "google-datetime",
4680 "readOnly": true,
4681 "type": "string"
4682 }
4683 },
4684 "type": "object"
4685 },
4686 "ServiceLbPolicy": {
4687 "description": "ServiceLbPolicy holds global load balancing and traffic distribution configuration that can be applied to a BackendService.",
4688 "id": "ServiceLbPolicy",
4689 "properties": {
4690 "autoCapacityDrain": {
4691 "$ref": "ServiceLbPolicyAutoCapacityDrain",
4692 "description": "Optional. Configuration to automatically move traffic away for unhealthy IG/NEG for the associated Backend Service."
4693 },
4694 "createTime": {
4695 "description": "Output only. The timestamp when this resource was created.",
4696 "format": "google-datetime",
4697 "readOnly": true,
4698 "type": "string"
4699 },
4700 "description": {
4701 "description": "Optional. A free-text description of the resource. Max length 1024 characters.",
4702 "type": "string"
4703 },
4704 "failoverConfig": {
4705 "$ref": "ServiceLbPolicyFailoverConfig",
4706 "description": "Optional. Configuration related to health based failover."
4707 },
4708 "labels": {
4709 "additionalProperties": {
4710 "type": "string"
4711 },
4712 "description": "Optional. Set of label tags associated with the ServiceLbPolicy resource.",
4713 "type": "object"
4714 },
4715 "loadBalancingAlgorithm": {
4716 "description": "Optional. The type of load balancing algorithm to be used. The default behavior is WATERFALL_BY_REGION.",
4717 "enum": [
4718 "LOAD_BALANCING_ALGORITHM_UNSPECIFIED",
4719 "SPRAY_TO_WORLD",
4720 "SPRAY_TO_REGION",
4721 "WATERFALL_BY_REGION",
4722 "WATERFALL_BY_ZONE"
4723 ],
4724 "enumDescriptions": [
4725 "The type of the loadbalancing algorithm is unspecified.",
4726 "Balance traffic across all backends across the world proportionally based on capacity.",
4727 "Direct traffic to the nearest region with endpoints and capacity before spilling over to other regions and spread the traffic from each client to all the MIGs/NEGs in a region.",
4728 "Direct traffic to the nearest region with endpoints and capacity before spilling over to other regions. All MIGs/NEGs within a region are evenly loaded but each client might not spread the traffic to all the MIGs/NEGs in the region.",
4729 "Attempt to keep traffic in a single zone closest to the client, before spilling over to other zones."
4730 ],
4731 "type": "string"
4732 },
4733 "name": {
4734 "description": "Required. Name of the ServiceLbPolicy resource. It matches pattern `projects/{project}/locations/{location}/serviceLbPolicies/{service_lb_policy_name}`.",
4735 "type": "string"
4736 },
4737 "updateTime": {
4738 "description": "Output only. The timestamp when this resource was last updated.",
4739 "format": "google-datetime",
4740 "readOnly": true,
4741 "type": "string"
4742 }
4743 },
4744 "type": "object"
4745 },
4746 "ServiceLbPolicyAutoCapacityDrain": {
4747 "description": "Option to specify if an unhealthy IG/NEG should be considered for global load balancing and traffic routing.",
4748 "id": "ServiceLbPolicyAutoCapacityDrain",
4749 "properties": {
4750 "enable": {
4751 "description": "Optional. If set to 'True', an unhealthy IG/NEG will be set as drained. - An IG/NEG is considered unhealthy if less than 25% of the instances/endpoints in the IG/NEG are healthy. - This option will never result in draining more than 50% of the configured IGs/NEGs for the Backend Service.",
4752 "type": "boolean"
4753 }
4754 },
4755 "type": "object"
4756 },
4757 "ServiceLbPolicyFailoverConfig": {
4758 "description": "Option to specify health based failover behavior. This is not related to Network load balancer FailoverPolicy.",
4759 "id": "ServiceLbPolicyFailoverConfig",
4760 "properties": {
4761 "failoverHealthThreshold": {
4762 "description": "Optional. The percentage threshold that a load balancer will begin to send traffic to failover backends. If the percentage of endpoints in a MIG/NEG is smaller than this value, traffic would be sent to failover backends if possible. This field should be set to a value between 1 and 99. The default value is 50 for Global external HTTP(S) load balancer (classic) and Proxyless service mesh, and 70 for others.",
4763 "format": "int32",
4764 "type": "integer"
4765 }
4766 },
4767 "type": "object"
4768 },
4769 "SetIamPolicyRequest": {
4770 "description": "Request message for `SetIamPolicy` method.",
4771 "id": "SetIamPolicyRequest",
4772 "properties": {
4773 "policy": {
4774 "$ref": "Policy",
4775 "description": "REQUIRED: The complete policy to be applied to the `resource`. The size of the policy is limited to a few 10s of KB. An empty policy is a valid policy but certain Google Cloud services (such as Projects) might reject them."
4776 },
4777 "updateMask": {
4778 "description": "OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only the fields in the mask will be modified. If no mask is provided, the following default mask is used: `paths: \"bindings, etag\"`",
4779 "format": "google-fieldmask",
4780 "type": "string"
4781 }
4782 },
4783 "type": "object"
4784 },
4785 "Status": {
4786 "description": "The `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. It is used by [gRPC](https://github.com/grpc). Each `Status` message contains three pieces of data: error code, error message, and error details. You can find out more about this error model and how to work with it in the [API Design Guide](https://cloud.google.com/apis/design/errors).",
4787 "id": "Status",
4788 "properties": {
4789 "code": {
4790 "description": "The status code, which should be an enum value of google.rpc.Code.",
4791 "format": "int32",
4792 "type": "integer"
4793 },
4794 "details": {
4795 "description": "A list of messages that carry the error details. There is a common set of message types for APIs to use.",
4796 "items": {
4797 "additionalProperties": {
4798 "description": "Properties of the object. Contains field @type with type URL.",
4799 "type": "any"
4800 },
4801 "type": "object"
4802 },
4803 "type": "array"
4804 },
4805 "message": {
4806 "description": "A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.",
4807 "type": "string"
4808 }
4809 },
4810 "type": "object"
4811 },
4812 "TcpRoute": {
4813 "description": "TcpRoute is the resource defining how TCP traffic should be routed by a Mesh/Gateway resource.",
4814 "id": "TcpRoute",
4815 "properties": {
4816 "createTime": {
4817 "description": "Output only. The timestamp when the resource was created.",
4818 "format": "google-datetime",
4819 "readOnly": true,
4820 "type": "string"
4821 },
4822 "description": {
4823 "description": "Optional. A free-text description of the resource. Max length 1024 characters.",
4824 "type": "string"
4825 },
4826 "gateways": {
4827 "description": "Optional. Gateways defines a list of gateways this TcpRoute is attached to, as one of the routing rules to route the requests served by the gateway. Each gateway reference should match the pattern: `projects/*/locations/global/gateways/`",
4828 "items": {
4829 "type": "string"
4830 },
4831 "type": "array"
4832 },
4833 "labels": {
4834 "additionalProperties": {
4835 "type": "string"
4836 },
4837 "description": "Optional. Set of label tags associated with the TcpRoute resource.",
4838 "type": "object"
4839 },
4840 "meshes": {
4841 "description": "Optional. Meshes defines a list of meshes this TcpRoute is attached to, as one of the routing rules to route the requests served by the mesh. Each mesh reference should match the pattern: `projects/*/locations/global/meshes/` The attached Mesh should be of a type SIDECAR",
4842 "items": {
4843 "type": "string"
4844 },
4845 "type": "array"
4846 },
4847 "name": {
4848 "description": "Required. Name of the TcpRoute resource. It matches pattern `projects/*/locations/global/tcpRoutes/tcp_route_name\u003e`.",
4849 "type": "string"
4850 },
4851 "rules": {
4852 "description": "Required. Rules that define how traffic is routed and handled. At least one RouteRule must be supplied. If there are multiple rules then the action taken will be the first rule to match.",
4853 "items": {
4854 "$ref": "TcpRouteRouteRule"
4855 },
4856 "type": "array"
4857 },
4858 "selfLink": {
4859 "description": "Output only. Server-defined URL of this resource",
4860 "readOnly": true,
4861 "type": "string"
4862 },
4863 "updateTime": {
4864 "description": "Output only. The timestamp when the resource was updated.",
4865 "format": "google-datetime",
4866 "readOnly": true,
4867 "type": "string"
4868 }
4869 },
4870 "type": "object"
4871 },
4872 "TcpRouteRouteAction": {
4873 "description": "The specifications for routing traffic and applying associated policies.",
4874 "id": "TcpRouteRouteAction",
4875 "properties": {
4876 "destinations": {
4877 "description": "Optional. The destination services to which traffic should be forwarded. At least one destination service is required. Only one of route destination or original destination can be set.",
4878 "items": {
4879 "$ref": "TcpRouteRouteDestination"
4880 },
4881 "type": "array"
4882 },
4883 "idleTimeout": {
4884 "description": "Optional. Specifies the idle timeout for the selected route. The idle timeout is defined as the period in which there are no bytes sent or received on either the upstream or downstream connection. If not set, the default idle timeout is 30 seconds. If set to 0s, the timeout will be disabled.",
4885 "format": "google-duration",
4886 "type": "string"
4887 },
4888 "originalDestination": {
4889 "description": "Optional. If true, Router will use the destination IP and port of the original connection as the destination of the request. Default is false. Only one of route destinations or original destination can be set.",
4890 "type": "boolean"
4891 }
4892 },
4893 "type": "object"
4894 },
4895 "TcpRouteRouteDestination": {
4896 "description": "Describe the destination for traffic to be routed to.",
4897 "id": "TcpRouteRouteDestination",
4898 "properties": {
4899 "serviceName": {
4900 "description": "Required. The URL of a BackendService to route traffic to.",
4901 "type": "string"
4902 },
4903 "weight": {
4904 "description": "Optional. Specifies the proportion of requests forwarded to the backend referenced by the serviceName field. This is computed as: - weight/Sum(weights in this destination list). For non-zero values, there may be some epsilon from the exact proportion defined here depending on the precision an implementation supports. If only one serviceName is specified and it has a weight greater than 0, 100% of the traffic is forwarded to that backend. If weights are specified for any one service name, they need to be specified for all of them. If weights are unspecified for all services, then, traffic is distributed in equal proportions to all of them.",
4905 "format": "int32",
4906 "type": "integer"
4907 }
4908 },
4909 "type": "object"
4910 },
4911 "TcpRouteRouteMatch": {
4912 "description": "RouteMatch defines the predicate used to match requests to a given action. Multiple match types are \"OR\"ed for evaluation. If no routeMatch field is specified, this rule will unconditionally match traffic.",
4913 "id": "TcpRouteRouteMatch",
4914 "properties": {
4915 "address": {
4916 "description": "Required. Must be specified in the CIDR range format. A CIDR range consists of an IP Address and a prefix length to construct the subnet mask. By default, the prefix length is 32 (i.e. matches a single IP address). Only IPV4 addresses are supported. Examples: \"10.0.0.1\" - matches against this exact IP address. \"10.0.0.0/8\" - matches against any IP address within the 10.0.0.0 subnet and 255.255.255.0 mask. \"0.0.0.0/0\" - matches against any IP address'.",
4917 "type": "string"
4918 },
4919 "port": {
4920 "description": "Required. Specifies the destination port to match against.",
4921 "type": "string"
4922 }
4923 },
4924 "type": "object"
4925 },
4926 "TcpRouteRouteRule": {
4927 "description": "Specifies how to match traffic and how to route traffic when traffic is matched.",
4928 "id": "TcpRouteRouteRule",
4929 "properties": {
4930 "action": {
4931 "$ref": "TcpRouteRouteAction",
4932 "description": "Required. The detailed rule defining how to route matched traffic."
4933 },
4934 "matches": {
4935 "description": "Optional. RouteMatch defines the predicate used to match requests to a given action. Multiple match types are \"OR\"ed for evaluation. If no routeMatch field is specified, this rule will unconditionally match traffic.",
4936 "items": {
4937 "$ref": "TcpRouteRouteMatch"
4938 },
4939 "type": "array"
4940 }
4941 },
4942 "type": "object"
4943 },
4944 "TestIamPermissionsRequest": {
4945 "description": "Request message for `TestIamPermissions` method.",
4946 "id": "TestIamPermissionsRequest",
4947 "properties": {
4948 "permissions": {
4949 "description": "The set of permissions to check for the `resource`. Permissions with wildcards (such as `*` or `storage.*`) are not allowed. For more information see [IAM Overview](https://cloud.google.com/iam/docs/overview#permissions).",
4950 "items": {
4951 "type": "string"
4952 },
4953 "type": "array"
4954 }
4955 },
4956 "type": "object"
4957 },
4958 "TestIamPermissionsResponse": {
4959 "description": "Response message for `TestIamPermissions` method.",
4960 "id": "TestIamPermissionsResponse",
4961 "properties": {
4962 "permissions": {
4963 "description": "A subset of `TestPermissionsRequest.permissions` that the caller is allowed.",
4964 "items": {
4965 "type": "string"
4966 },
4967 "type": "array"
4968 }
4969 },
4970 "type": "object"
4971 },
4972 "TlsRoute": {
4973 "description": "TlsRoute defines how traffic should be routed based on SNI and other matching L3 attributes.",
4974 "id": "TlsRoute",
4975 "properties": {
4976 "createTime": {
4977 "description": "Output only. The timestamp when the resource was created.",
4978 "format": "google-datetime",
4979 "readOnly": true,
4980 "type": "string"
4981 },
4982 "description": {
4983 "description": "Optional. A free-text description of the resource. Max length 1024 characters.",
4984 "type": "string"
4985 },
4986 "gateways": {
4987 "description": "Optional. Gateways defines a list of gateways this TlsRoute is attached to, as one of the routing rules to route the requests served by the gateway. Each gateway reference should match the pattern: `projects/*/locations/global/gateways/`",
4988 "items": {
4989 "type": "string"
4990 },
4991 "type": "array"
4992 },
4993 "labels": {
4994 "additionalProperties": {
4995 "type": "string"
4996 },
4997 "description": "Optional. Set of label tags associated with the TlsRoute resource.",
4998 "type": "object"
4999 },
5000 "meshes": {
5001 "description": "Optional. Meshes defines a list of meshes this TlsRoute is attached to, as one of the routing rules to route the requests served by the mesh. Each mesh reference should match the pattern: `projects/*/locations/global/meshes/` The attached Mesh should be of a type SIDECAR",
5002 "items": {
5003 "type": "string"
5004 },
5005 "type": "array"
5006 },
5007 "name": {
5008 "description": "Required. Name of the TlsRoute resource. It matches pattern `projects/*/locations/global/tlsRoutes/tls_route_name\u003e`.",
5009 "type": "string"
5010 },
5011 "rules": {
5012 "description": "Required. Rules that define how traffic is routed and handled. At least one RouteRule must be supplied. If there are multiple rules then the action taken will be the first rule to match.",
5013 "items": {
5014 "$ref": "TlsRouteRouteRule"
5015 },
5016 "type": "array"
5017 },
5018 "selfLink": {
5019 "description": "Output only. Server-defined URL of this resource",
5020 "readOnly": true,
5021 "type": "string"
5022 },
5023 "updateTime": {
5024 "description": "Output only. The timestamp when the resource was updated.",
5025 "format": "google-datetime",
5026 "readOnly": true,
5027 "type": "string"
5028 }
5029 },
5030 "type": "object"
5031 },
5032 "TlsRouteRouteAction": {
5033 "description": "The specifications for routing traffic and applying associated policies.",
5034 "id": "TlsRouteRouteAction",
5035 "properties": {
5036 "destinations": {
5037 "description": "Required. The destination services to which traffic should be forwarded. At least one destination service is required.",
5038 "items": {
5039 "$ref": "TlsRouteRouteDestination"
5040 },
5041 "type": "array"
5042 },
5043 "idleTimeout": {
5044 "description": "Optional. Specifies the idle timeout for the selected route. The idle timeout is defined as the period in which there are no bytes sent or received on either the upstream or downstream connection. If not set, the default idle timeout is 1 hour. If set to 0s, the timeout will be disabled.",
5045 "format": "google-duration",
5046 "type": "string"
5047 }
5048 },
5049 "type": "object"
5050 },
5051 "TlsRouteRouteDestination": {
5052 "description": "Describe the destination for traffic to be routed to.",
5053 "id": "TlsRouteRouteDestination",
5054 "properties": {
5055 "serviceName": {
5056 "description": "Required. The URL of a BackendService to route traffic to.",
5057 "type": "string"
5058 },
5059 "weight": {
5060 "description": "Optional. Specifies the proportion of requests forwareded to the backend referenced by the service_name field. This is computed as: - weight/Sum(weights in destinations) Weights in all destinations does not need to sum up to 100.",
5061 "format": "int32",
5062 "type": "integer"
5063 }
5064 },
5065 "type": "object"
5066 },
5067 "TlsRouteRouteMatch": {
5068 "description": "RouteMatch defines the predicate used to match requests to a given action. Multiple match types are \"AND\"ed for evaluation. If no routeMatch field is specified, this rule will unconditionally match traffic.",
5069 "id": "TlsRouteRouteMatch",
5070 "properties": {
5071 "alpn": {
5072 "description": "Optional. ALPN (Application-Layer Protocol Negotiation) to match against. Examples: \"http/1.1\", \"h2\". At least one of sni_host and alpn is required. Up to 5 alpns across all matches can be set.",
5073 "items": {
5074 "type": "string"
5075 },
5076 "type": "array"
5077 },
5078 "sniHost": {
5079 "description": "Optional. SNI (server name indicator) to match against. SNI will be matched against all wildcard domains, i.e. `www.example.com` will be first matched against `www.example.com`, then `*.example.com`, then `*.com.` Partial wildcards are not supported, and values like *w.example.com are invalid. At least one of sni_host and alpn is required. Up to 100 sni hosts across all matches can be set.",
5080 "items": {
5081 "type": "string"
5082 },
5083 "type": "array"
5084 }
5085 },
5086 "type": "object"
5087 },
5088 "TlsRouteRouteRule": {
5089 "description": "Specifies how to match traffic and how to route traffic when traffic is matched.",
5090 "id": "TlsRouteRouteRule",
5091 "properties": {
5092 "action": {
5093 "$ref": "TlsRouteRouteAction",
5094 "description": "Required. The detailed rule defining how to route matched traffic."
5095 },
5096 "matches": {
5097 "description": "Required. RouteMatch defines the predicate used to match requests to a given action. Multiple match types are \"OR\"ed for evaluation.",
5098 "items": {
5099 "$ref": "TlsRouteRouteMatch"
5100 },
5101 "type": "array"
5102 }
5103 },
5104 "type": "object"
5105 },
5106 "TrafficPortSelector": {
5107 "description": "Specification of a port-based selector.",
5108 "id": "TrafficPortSelector",
5109 "properties": {
5110 "ports": {
5111 "description": "Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.",
5112 "items": {
5113 "type": "string"
5114 },
5115 "type": "array"
5116 }
5117 },
5118 "type": "object"
5119 }
5120 },
5121 "servicePath": "",
5122 "title": "Network Services API",
5123 "version": "v1",
5124 "version_module": true
5125}View as plain text