As of January 1, 2020 this library no longer supports Python 2 on the latest released version. Library versions released prior to that date will continue to be available. For more information please visit Python 2 support on Google Cloud.

Types for Google Cloud Container v1beta1 API

class google.cloud.container_v1beta1.types.AcceleratorConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

AcceleratorConfig represents a Hardware Accelerator request.

accelerator_count

The number of the accelerator cards exposed to an instance.

Type

int

accelerator_type

The accelerator type resource name. List of supported accelerators here

Type

str

gpu_partition_size

Size of partitions to create on the GPU. Valid values are described in the NVIDIA mig user guide.

Type

str

max_time_shared_clients_per_gpu

The number of time-shared GPU resources to expose for each physical GPU.

Type

int

gpu_sharing_config

The configuration for GPU sharing options.

This field is a member of oneof _gpu_sharing_config.

Type

google.cloud.container_v1beta1.types.GPUSharingConfig

gpu_driver_installation_config

The configuration for auto installation of GPU driver.

This field is a member of oneof _gpu_driver_installation_config.

Type

google.cloud.container_v1beta1.types.GPUDriverInstallationConfig

class google.cloud.container_v1beta1.types.AdditionalNodeNetworkConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

AdditionalNodeNetworkConfig is the configuration for additional node networks within the NodeNetworkConfig message

network

Name of the VPC where the additional interface belongs

Type

str

subnetwork

Name of the subnetwork where the additional interface belongs

Type

str

class google.cloud.container_v1beta1.types.AdditionalPodNetworkConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

AdditionalPodNetworkConfig is the configuration for additional pod networks within the NodeNetworkConfig message

subnetwork

Name of the subnetwork where the additional pod network belongs

Type

str

secondary_pod_range

The name of the secondary range on the subnet which provides IP address for this pod range

Type

str

max_pods_per_node

The maximum number of pods per node which use this pod network

This field is a member of oneof _max_pods_per_node.

Type

google.cloud.container_v1beta1.types.MaxPodsConstraint

class google.cloud.container_v1beta1.types.AdditionalPodRangesConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

AdditionalPodRangesConfig is the configuration for additional pod secondary ranges supporting the ClusterUpdate message.

pod_range_names

Name for pod secondary ipv4 range which has the actual range defined ahead.

Type

MutableSequence[str]

pod_range_info

Output only. [Output only] Information for additional pod range.

Type

MutableSequence[google.cloud.container_v1beta1.types.RangeInfo]

class google.cloud.container_v1beta1.types.AddonsConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for the addons that can be automatically spun up in the cluster, enabling additional functionality.

http_load_balancing

Configuration for the HTTP (L7) load balancing controller addon, which makes it easy to set up HTTP load balancers for services in a cluster.

Type

google.cloud.container_v1beta1.types.HttpLoadBalancing

horizontal_pod_autoscaling

Configuration for the horizontal pod autoscaling feature, which increases or decreases the number of replica pods a replication controller has based on the resource usage of the existing pods.

Type

google.cloud.container_v1beta1.types.HorizontalPodAutoscaling

kubernetes_dashboard

Configuration for the Kubernetes Dashboard. This addon is deprecated, and will be disabled in 1.15. It is recommended to use the Cloud Console to manage and monitor your Kubernetes clusters, workloads and applications. For more information, see:

https://cloud.google.com/kubernetes-engine/docs/concepts/dashboards

Type

google.cloud.container_v1beta1.types.KubernetesDashboard

network_policy_config

Configuration for NetworkPolicy. This only tracks whether the addon is enabled or not on the Master, it does not track whether network policy is enabled for the nodes.

Type

google.cloud.container_v1beta1.types.NetworkPolicyConfig

istio_config

Configuration for Istio, an open platform to connect, manage, and secure microservices.

Type

google.cloud.container_v1beta1.types.IstioConfig

cloud_run_config

Configuration for the Cloud Run addon. The IstioConfig addon must be enabled in order to enable Cloud Run addon. This option can only be enabled at cluster creation time.

Type

google.cloud.container_v1beta1.types.CloudRunConfig

dns_cache_config

Configuration for NodeLocalDNS, a dns cache running on cluster nodes

Type

google.cloud.container_v1beta1.types.DnsCacheConfig

config_connector_config

Configuration for the ConfigConnector add-on, a Kubernetes extension to manage hosted GCP services through the Kubernetes API

Type

google.cloud.container_v1beta1.types.ConfigConnectorConfig

gce_persistent_disk_csi_driver_config

Configuration for the Compute Engine Persistent Disk CSI driver.

Type

google.cloud.container_v1beta1.types.GcePersistentDiskCsiDriverConfig

kalm_config

Configuration for the KALM addon, which manages the lifecycle of k8s applications.

Type

google.cloud.container_v1beta1.types.KalmConfig

gcp_filestore_csi_driver_config

Configuration for the GCP Filestore CSI driver.

Type

google.cloud.container_v1beta1.types.GcpFilestoreCsiDriverConfig

gke_backup_agent_config

Configuration for the Backup for GKE agent addon.

Type

google.cloud.container_v1beta1.types.GkeBackupAgentConfig

gcs_fuse_csi_driver_config

Configuration for the Cloud Storage Fuse CSI driver.

Type

google.cloud.container_v1beta1.types.GcsFuseCsiDriverConfig

class google.cloud.container_v1beta1.types.AdvancedDatapathObservabilityConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

AdvancedDatapathObservabilityConfig specifies configuration of observability features of advanced datapath.

enable_metrics

Expose flow metrics on nodes

Type

bool

relay_mode

Method used to make Relay available

Type

google.cloud.container_v1beta1.types.AdvancedDatapathObservabilityConfig.RelayMode

class RelayMode(value)[source]

Bases: proto.enums.Enum

Supported Relay modes

Values:
RELAY_MODE_UNSPECIFIED (0):

Default value. This shouldn’t be used.

DISABLED (1):

disabled

INTERNAL_VPC_LB (3):

exposed via internal load balancer

EXTERNAL_LB (4):

exposed via external load balancer

class google.cloud.container_v1beta1.types.AdvancedMachineFeatures(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Specifies options for controlling advanced machine features.

threads_per_core

The number of threads per physical core. To disable simultaneous multithreading (SMT) set this to 1. If unset, the maximum number of threads supported per core by the underlying processor is assumed.

This field is a member of oneof _threads_per_core.

Type

int

class google.cloud.container_v1beta1.types.AuthenticatorGroupsConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for returning group information from authenticators.

enabled

Whether this cluster should return group membership lookups during authentication using a group of security groups.

Type

bool

security_group

The name of the security group-of-groups to be used. Only relevant if enabled = true.

Type

str

class google.cloud.container_v1beta1.types.AutoUpgradeOptions(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

AutoUpgradeOptions defines the set of options for the user to control how the Auto Upgrades will proceed.

auto_upgrade_start_time

[Output only] This field is set when upgrades are about to commence with the approximate start time for the upgrades, in RFC3339 text format.

Type

str

description

[Output only] This field is set when upgrades are about to commence with the description of the upgrade.

Type

str

class google.cloud.container_v1beta1.types.Autopilot(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Autopilot is the configuration for Autopilot settings on the cluster.

enabled

Enable Autopilot

Type

bool

workload_policy_config

Workload policy configuration for Autopilot.

Type

google.cloud.container_v1beta1.types.WorkloadPolicyConfig

class google.cloud.container_v1beta1.types.AutopilotCompatibilityIssue(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

AutopilotCompatibilityIssue contains information about a specific compatibility issue with Autopilot mode.

last_observation

The last time when this issue was observed.

Type

google.protobuf.timestamp_pb2.Timestamp

constraint_type

The constraint type of the issue.

Type

str

incompatibility_type

The incompatibility type of this issue.

Type

google.cloud.container_v1beta1.types.AutopilotCompatibilityIssue.IssueType

subjects

The name of the resources which are subject to this issue.

Type

MutableSequence[str]

documentation_url

A URL to a public documnetation, which addresses resolving this issue.

Type

str

description

The description of the issue.

Type

str

class IssueType(value)[source]

Bases: proto.enums.Enum

The type of the reported issue.

Values:
UNSPECIFIED (0):

Default value, should not be used.

INCOMPATIBILITY (1):

Indicates that the issue is a known incompatibility between the cluster and Autopilot mode.

ADDITIONAL_CONFIG_REQUIRED (2):

Indicates the issue is an incompatibility if customers take no further action to resolve.

PASSED_WITH_OPTIONAL_CONFIG (3):

Indicates the issue is not an incompatibility, but depending on the workloads business logic, there is a potential that they won’t work on Autopilot.

class google.cloud.container_v1beta1.types.AutoprovisioningNodePoolDefaults(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

AutoprovisioningNodePoolDefaults contains defaults for a node pool created by NAP.

oauth_scopes

The set of Google API scopes to be made available on all of the node VMs under the “default” service account.

The following scopes are recommended, but not required, and by default are not included:

  • https://www.googleapis.com/auth/compute is required for mounting persistent storage on your nodes.

  • https://www.googleapis.com/auth/devstorage.read_only is required for communicating with gcr.io (the Google Container Registry).

If unspecified, no scopes are added, unless Cloud Logging or Cloud Monitoring are enabled, in which case their required scopes will be added.

Type

MutableSequence[str]

service_account

The Google Cloud Platform Service Account to be used by the node VMs. Specify the email address of the Service Account; otherwise, if no Service Account is specified, the “default” service account is used.

Type

str

upgrade_settings

Upgrade settings control disruption and speed of the upgrade.

Type

google.cloud.container_v1beta1.types.NodePool.UpgradeSettings

management

NodeManagement configuration for this NodePool.

Type

google.cloud.container_v1beta1.types.NodeManagement

min_cpu_platform

Deprecated. Minimum CPU platform to be used for NAP created node pools. The instance may be scheduled on the specified or newer CPU platform. Applicable values are the friendly names of CPU platforms, such as minCpuPlatform: Intel Haswell or minCpuPlatform: Intel Sandy Bridge. For more information, read how to specify min CPU platform. This field is deprecated, min_cpu_platform should be specified using cloud.google.com/requested-min-cpu-platform label selector on the pod. To unset the min cpu platform field pass “automatic” as field value.

Type

str

disk_size_gb

Size of the disk attached to each node, specified in GB. The smallest allowed disk size is 10GB.

If unspecified, the default disk size is 100GB.

Type

int

disk_type

Type of the disk attached to each node (e.g. ‘pd-standard’, ‘pd-ssd’ or ‘pd-balanced’)

If unspecified, the default disk type is ‘pd-standard’

Type

str

shielded_instance_config

Shielded Instance options.

Type

google.cloud.container_v1beta1.types.ShieldedInstanceConfig

boot_disk_kms_key

The Customer Managed Encryption Key used to encrypt the boot disk attached to each node in the node pool. This should be of the form projects/[KEY_PROJECT_ID]/locations/[LOCATION]/keyRings/[RING_NAME]/cryptoKeys/[KEY_NAME]. For more information about protecting resources with Cloud KMS Keys please see: https://cloud.google.com/compute/docs/disks/customer-managed-encryption

Type

str

image_type

The image type to use for NAP created node. Please see https://cloud.google.com/kubernetes-engine/docs/concepts/node-images for available image types.

Type

str

insecure_kubelet_readonly_port_enabled

Enable or disable Kubelet read only port.

This field is a member of oneof _insecure_kubelet_readonly_port_enabled.

Type

bool

class google.cloud.container_v1beta1.types.BestEffortProvisioning(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Best effort provisioning.

enabled

When this is enabled, cluster/node pool creations will ignore non-fatal errors like stockout to best provision as many nodes as possible right now and eventually bring up all target number of nodes

Type

bool

min_provision_nodes

Minimum number of nodes to be provisioned to be considered as succeeded, and the rest of nodes will be provisioned gradually and eventually when stockout issue has been resolved.

Type

int

class google.cloud.container_v1beta1.types.BinaryAuthorization(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for Binary Authorization.

enabled

This field is deprecated. Leave this unset and instead configure BinaryAuthorization using evaluation_mode. If evaluation_mode is set to anything other than EVALUATION_MODE_UNSPECIFIED, this field is ignored.

Type

bool

evaluation_mode

Mode of operation for binauthz policy evaluation. If unspecified, defaults to DISABLED.

Type

google.cloud.container_v1beta1.types.BinaryAuthorization.EvaluationMode

policy_bindings

Optional. Binauthz policies that apply to this cluster.

Type

MutableSequence[google.cloud.container_v1beta1.types.BinaryAuthorization.PolicyBinding]

class EvaluationMode(value)[source]

Bases: proto.enums.Enum

Binary Authorization mode of operation.

Values:
EVALUATION_MODE_UNSPECIFIED (0):

Default value

DISABLED (1):

Disable BinaryAuthorization

PROJECT_SINGLETON_POLICY_ENFORCE (2):

Enforce Kubernetes admission requests with BinaryAuthorization using the project’s singleton policy. This is equivalent to setting the enabled boolean to true.

POLICY_BINDINGS (5):

Use Binary Authorization with the policies specified in policy_bindings.

POLICY_BINDINGS_AND_PROJECT_SINGLETON_POLICY_ENFORCE (6):

Use Binary Authorization with the policies specified in policy_bindings, and also with the project’s singleton policy in enforcement mode.

class PolicyBinding(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Binauthz policy that applies to this cluster.

name

The relative resource name of the binauthz platform policy to audit. GKE platform policies have the following format: projects/{project_number}/platforms/gke/policies/{policy_id}.

This field is a member of oneof _name.

Type

str

class google.cloud.container_v1beta1.types.BlueGreenSettings(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Settings for blue-green upgrade.

standard_rollout_policy

Standard policy for the blue-green upgrade.

This field is a member of oneof rollout_policy.

Type

google.cloud.container_v1beta1.types.BlueGreenSettings.StandardRolloutPolicy

node_pool_soak_duration

Time needed after draining entire blue pool. After this period, blue pool will be cleaned up.

This field is a member of oneof _node_pool_soak_duration.

Type

google.protobuf.duration_pb2.Duration

class StandardRolloutPolicy(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Standard rollout policy is the default policy for blue-green.

This message has oneof fields (mutually exclusive fields). For each oneof, at most one member field can be set at the same time. Setting any member of the oneof automatically clears all other members.

batch_percentage

Percentage of the blue pool nodes to drain in a batch. The range of this field should be (0.0, 1.0].

This field is a member of oneof update_batch_size.

Type

float

batch_node_count

Number of blue nodes to drain in a batch.

This field is a member of oneof update_batch_size.

Type

int

batch_soak_duration

Soak time after each batch gets drained. Default to zero.

This field is a member of oneof _batch_soak_duration.

Type

google.protobuf.duration_pb2.Duration

class google.cloud.container_v1beta1.types.CancelOperationRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

CancelOperationRequest cancels a single operation.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the operation resides. This field has been deprecated and replaced by the name field.

Type

str

operation_id

Required. Deprecated. The server-assigned name of the operation. This field has been deprecated and replaced by the name field.

Type

str

name

The name (project, location, operation id) of the operation to cancel. Specified in the format projects/*/locations/*/operations/*.

Type

str

class google.cloud.container_v1beta1.types.CheckAutopilotCompatibilityRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

CheckAutopilotCompatibilityRequest requests getting the blockers for the given operation in the cluster.

name

The name (project, location, cluster) of the cluster to retrieve. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.CheckAutopilotCompatibilityResponse(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

CheckAutopilotCompatibilityResponse has a list of compatibility issues.

issues

The list of issues for the given operation.

Type

MutableSequence[google.cloud.container_v1beta1.types.AutopilotCompatibilityIssue]

summary

The summary of the autopilot compatibility response.

Type

str

class google.cloud.container_v1beta1.types.ClientCertificateConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for client certificates on the cluster.

issue_client_certificate

Issue a client certificate.

Type

bool

class google.cloud.container_v1beta1.types.CloudRunConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration options for the Cloud Run feature.

disabled

Whether Cloud Run addon is enabled for this cluster.

Type

bool

load_balancer_type

Which load balancer type is installed for Cloud Run.

Type

google.cloud.container_v1beta1.types.CloudRunConfig.LoadBalancerType

class LoadBalancerType(value)[source]

Bases: proto.enums.Enum

Load balancer type of ingress service of Cloud Run.

Values:
LOAD_BALANCER_TYPE_UNSPECIFIED (0):

Load balancer type for Cloud Run is unspecified.

LOAD_BALANCER_TYPE_EXTERNAL (1):

Install external load balancer for Cloud Run.

LOAD_BALANCER_TYPE_INTERNAL (2):

Install internal load balancer for Cloud Run.

class google.cloud.container_v1beta1.types.Cluster(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

A Google Kubernetes Engine cluster.

name

The name of this cluster. The name must be unique within this project and location (e.g. zone or region), and can be up to 40 characters with the following restrictions:

  • Lowercase letters, numbers, and hyphens only.

  • Must start with a letter.

  • Must end with a number or a letter.

Type

str

description

An optional description of this cluster.

Type

str

initial_node_count

The number of nodes to create in this cluster. You must ensure that your Compute Engine resource quota is sufficient for this number of instances. You must also have available firewall and routes quota. For requests, this field should only be used in lieu of a “node_pool” object, since this configuration (along with the “node_config”) will be used to create a “NodePool” object with an auto-generated name. Do not use this and a node_pool at the same time.

This field is deprecated, use node_pool.initial_node_count instead.

Type

int

node_config

Parameters used in creating the cluster’s nodes. For requests, this field should only be used in lieu of a “node_pool” object, since this configuration (along with the “initial_node_count”) will be used to create a “NodePool” object with an auto-generated name. Do not use this and a node_pool at the same time. For responses, this field will be populated with the node configuration of the first node pool. (For configuration of each node pool, see node_pool.config)

If unspecified, the defaults are used. This field is deprecated, use node_pool.config instead.

Type

google.cloud.container_v1beta1.types.NodeConfig

master_auth

The authentication information for accessing the master endpoint. If unspecified, the defaults are used: For clusters before v1.12, if master_auth is unspecified, username will be set to “admin”, a random password will be generated, and a client certificate will be issued.

Type

google.cloud.container_v1beta1.types.MasterAuth

logging_service

The logging service the cluster should use to write logs. Currently available options:

  • logging.googleapis.com/kubernetes - The Cloud Logging service with a Kubernetes-native resource model

  • logging.googleapis.com - The legacy Cloud Logging service (no longer available as of GKE 1.15).

  • none - no logs will be exported from the cluster.

If left as an empty string,logging.googleapis.com/kubernetes will be used for GKE 1.14+ or logging.googleapis.com for earlier versions.

Type

str

monitoring_service

The monitoring service the cluster should use to write metrics. Currently available options:

  • “monitoring.googleapis.com/kubernetes” - The Cloud Monitoring service with a Kubernetes-native resource model

  • monitoring.googleapis.com - The legacy Cloud Monitoring service (no longer available as of GKE 1.15).

  • none - No metrics will be exported from the cluster.

If left as an empty string,monitoring.googleapis.com/kubernetes will be used for GKE 1.14+ or monitoring.googleapis.com for earlier versions.

Type

str

network

The name of the Google Compute Engine network to which the cluster is connected. If left unspecified, the default network will be used. On output this shows the network ID instead of the name.

Type

str

cluster_ipv4_cidr

The IP address range of the container pods in this cluster, in CIDR notation (e.g. 10.96.0.0/14). Leave blank to have one automatically chosen or specify a /14 block in 10.0.0.0/8.

Type

str

addons_config

Configurations for the various addons available to run in the cluster.

Type

google.cloud.container_v1beta1.types.AddonsConfig

subnetwork

The name of the Google Compute Engine subnetwork to which the cluster is connected. On output this shows the subnetwork ID instead of the name.

Type

str

node_pools

The node pools associated with this cluster. This field should not be set if “node_config” or “initial_node_count” are specified.

Type

MutableSequence[google.cloud.container_v1beta1.types.NodePool]

locations

The list of Google Compute Engine zones in which the cluster’s nodes should be located.

This field provides a default value if NodePool.Locations are not specified during node pool creation.

Warning: changing cluster locations will update the NodePool.Locations of all node pools and will result in nodes being added and/or removed.

Type

MutableSequence[str]

enable_kubernetes_alpha

Kubernetes alpha features are enabled on this cluster. This includes alpha API groups (e.g. v1beta1) and features that may not be production ready in the kubernetes version of the master and nodes. The cluster has no SLA for uptime and master/node upgrades are disabled. Alpha enabled clusters are automatically deleted thirty days after creation.

Type

bool

enable_k8s_beta_apis

Kubernetes open source beta apis enabled on the cluster. Only beta apis.

Type

google.cloud.container_v1beta1.types.K8sBetaAPIConfig

resource_labels

The resource labels for the cluster to use to annotate any related Google Compute Engine resources.

Type

MutableMapping[str, str]

label_fingerprint

The fingerprint of the set of labels for this cluster.

Type

str

legacy_abac

Configuration for the legacy ABAC authorization mode.

Type

google.cloud.container_v1beta1.types.LegacyAbac

network_policy

Configuration options for the NetworkPolicy feature.

Type

google.cloud.container_v1beta1.types.NetworkPolicy

ip_allocation_policy

Configuration for cluster IP allocation.

Type

google.cloud.container_v1beta1.types.IPAllocationPolicy

master_authorized_networks_config

The configuration options for master authorized networks feature.

Type

google.cloud.container_v1beta1.types.MasterAuthorizedNetworksConfig

maintenance_policy

Configure the maintenance policy for this cluster.

Type

google.cloud.container_v1beta1.types.MaintenancePolicy

binary_authorization

Configuration for Binary Authorization.

Type

google.cloud.container_v1beta1.types.BinaryAuthorization

pod_security_policy_config

Configuration for the PodSecurityPolicy feature.

Type

google.cloud.container_v1beta1.types.PodSecurityPolicyConfig

autoscaling

Cluster-level autoscaling configuration.

Type

google.cloud.container_v1beta1.types.ClusterAutoscaling

network_config

Configuration for cluster networking.

Type

google.cloud.container_v1beta1.types.NetworkConfig

private_cluster

If this is a private cluster setup. Private clusters are clusters that, by default have no external IP addresses on the nodes and where nodes and the master communicate over private IP addresses. This field is deprecated, use private_cluster_config.enable_private_nodes instead.

Type

bool

master_ipv4_cidr_block

The IP prefix in CIDR notation to use for the hosted master network. This prefix will be used for assigning private IP addresses to the master or set of masters, as well as the ILB VIP. This field is deprecated, use private_cluster_config.master_ipv4_cidr_block instead.

Type

str

default_max_pods_constraint

The default constraint on the maximum number of pods that can be run simultaneously on a node in the node pool of this cluster. Only honored if cluster created with IP Alias support.

Type

google.cloud.container_v1beta1.types.MaxPodsConstraint

resource_usage_export_config

Configuration for exporting resource usages. Resource usage export is disabled when this config unspecified.

Type

google.cloud.container_v1beta1.types.ResourceUsageExportConfig

authenticator_groups_config

Configuration controlling RBAC group membership information.

Type

google.cloud.container_v1beta1.types.AuthenticatorGroupsConfig

private_cluster_config

Configuration for private cluster.

Type

google.cloud.container_v1beta1.types.PrivateClusterConfig

vertical_pod_autoscaling

Cluster-level Vertical Pod Autoscaling configuration.

Type

google.cloud.container_v1beta1.types.VerticalPodAutoscaling

shielded_nodes

Shielded Nodes configuration.

Type

google.cloud.container_v1beta1.types.ShieldedNodes

release_channel

Release channel configuration. If left unspecified on cluster creation and a version is specified, the cluster is enrolled in the most mature release channel where the version is available (first checking STABLE, then REGULAR, and finally RAPID). Otherwise, if no release channel configuration and no version is specified, the cluster is enrolled in the REGULAR channel with its default version.

Type

google.cloud.container_v1beta1.types.ReleaseChannel

workload_identity_config

Configuration for the use of Kubernetes Service Accounts in GCP IAM policies.

Type

google.cloud.container_v1beta1.types.WorkloadIdentityConfig

workload_certificates

Configuration for issuance of mTLS keys and certificates to Kubernetes pods.

Type

google.cloud.container_v1beta1.types.WorkloadCertificates

mesh_certificates

Configuration for issuance of mTLS keys and certificates to Kubernetes pods.

Type

google.cloud.container_v1beta1.types.MeshCertificates

workload_alts_config

Configuration for direct-path (via ALTS) with workload identity.

Type

google.cloud.container_v1beta1.types.WorkloadALTSConfig

cost_management_config

Configuration for the fine-grained cost management feature.

Type

google.cloud.container_v1beta1.types.CostManagementConfig

cluster_telemetry

Telemetry integration for the cluster.

Type

google.cloud.container_v1beta1.types.ClusterTelemetry

tpu_config

Configuration for Cloud TPU support;

Type

google.cloud.container_v1beta1.types.TpuConfig

notification_config

Notification configuration of the cluster.

Type

google.cloud.container_v1beta1.types.NotificationConfig

confidential_nodes

Configuration of Confidential Nodes. All the nodes in the cluster will be Confidential VM once enabled.

Type

google.cloud.container_v1beta1.types.ConfidentialNodes

identity_service_config

Configuration for Identity Service component.

Type

google.cloud.container_v1beta1.types.IdentityServiceConfig

[Output only] Server-defined URL for the resource.

Type

str

zone

[Output only] The name of the Google Compute Engine zone in which the cluster resides. This field is deprecated, use location instead.

Type

str

endpoint

[Output only] The IP address of this cluster’s master endpoint. The endpoint can be accessed from the internet at https://username:password@endpoint/.

See the masterAuth property of this resource for username and password information.

Type

str

initial_cluster_version

The initial Kubernetes version for this cluster. Valid versions are those found in validMasterVersions returned by getServerConfig. The version can be upgraded over time; such upgrades are reflected in currentMasterVersion and currentNodeVersion.

Users may specify either explicit versions offered by Kubernetes Engine or version aliases, which have the following behavior:

  • “latest”: picks the highest valid Kubernetes version

  • “1.X”: picks the highest valid patch+gke.N patch in the 1.X version

  • “1.X.Y”: picks the highest valid gke.N patch in the 1.X.Y version

  • “1.X.Y-gke.N”: picks an explicit Kubernetes version

  • “”,”-”: picks the default Kubernetes version

Type

str

current_master_version

[Output only] The current software version of the master endpoint.

Type

str

current_node_version

[Output only] Deprecated, use NodePool.version instead. The current version of the node software components. If they are currently at multiple versions because they’re in the process of being upgraded, this reflects the minimum version of all nodes.

Type

str

create_time

[Output only] The time the cluster was created, in RFC3339 text format.

Type

str

status

[Output only] The current status of this cluster.

Type

google.cloud.container_v1beta1.types.Cluster.Status

status_message

[Output only] Deprecated. Use conditions instead. Additional information about the current status of this cluster, if available.

Type

str

node_ipv4_cidr_size

[Output only] The size of the address space on each node for hosting containers. This is provisioned from within the container_ipv4_cidr range. This field will only be set when cluster is in route-based network mode.

Type

int

services_ipv4_cidr

[Output only] The IP address range of the Kubernetes services in this cluster, in CIDR notation (e.g. 1.2.3.4/29). Service addresses are typically put in the last /16 from the container CIDR.

Type

str

instance_group_urls

Deprecated. Use node_pools.instance_group_urls.

Type

MutableSequence[str]

current_node_count

[Output only] The number of nodes currently in the cluster. Deprecated. Call Kubernetes API directly to retrieve node information.

Type

int

expire_time

[Output only] The time the cluster will be automatically deleted in RFC3339 text format.

Type

str

location

[Output only] The name of the Google Compute Engine zone or region in which the cluster resides.

Type

str

enable_tpu

Enable the ability to use Cloud TPUs in this cluster. This field is deprecated, use tpu_config.enabled instead.

Type

bool

tpu_ipv4_cidr_block

[Output only] The IP address range of the Cloud TPUs in this cluster, in CIDR notation (e.g. 1.2.3.4/29).

Type

str

database_encryption

Configuration of etcd encryption.

Type

google.cloud.container_v1beta1.types.DatabaseEncryption

conditions

Which conditions caused the current cluster state.

Type

MutableSequence[google.cloud.container_v1beta1.types.StatusCondition]

master

Configuration for master components.

Type

google.cloud.container_v1beta1.types.Master

autopilot

Autopilot configuration for the cluster.

Type

google.cloud.container_v1beta1.types.Autopilot

id

Output only. Unique id for the cluster.

Type

str

node_pool_defaults

Default NodePool settings for the entire cluster. These settings are overridden if specified on the specific NodePool object.

This field is a member of oneof _node_pool_defaults.

Type

google.cloud.container_v1beta1.types.NodePoolDefaults

logging_config

Logging configuration for the cluster.

Type

google.cloud.container_v1beta1.types.LoggingConfig

monitoring_config

Monitoring configuration for the cluster.

Type

google.cloud.container_v1beta1.types.MonitoringConfig

node_pool_auto_config

Node pool configs that apply to all auto-provisioned node pools in autopilot clusters and node auto-provisioning enabled clusters.

Type

google.cloud.container_v1beta1.types.NodePoolAutoConfig

protect_config

Deprecated: Use SecurityPostureConfig instead. Enable/Disable Protect API features for the cluster.

This field is a member of oneof _protect_config.

Type

google.cloud.container_v1beta1.types.ProtectConfig

etag

This checksum is computed by the server based on the value of cluster fields, and may be sent on update requests to ensure the client has an up-to-date value before proceeding.

Type

str

fleet

Fleet information for the cluster.

Type

google.cloud.container_v1beta1.types.Fleet

security_posture_config

Enable/Disable Security Posture API features for the cluster.

Type

google.cloud.container_v1beta1.types.SecurityPostureConfig

class ResourceLabelsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Bases: proto.message.Message

class Status(value)[source]

Bases: proto.enums.Enum

The current status of the cluster.

Values:
STATUS_UNSPECIFIED (0):

Not set.

PROVISIONING (1):

The PROVISIONING state indicates the cluster is being created.

RUNNING (2):

The RUNNING state indicates the cluster has been created and is fully usable.

RECONCILING (3):

The RECONCILING state indicates that some work is actively being done on the cluster, such as upgrading the master or node software. Details can be found in the statusMessage field.

STOPPING (4):

The STOPPING state indicates the cluster is being deleted.

ERROR (5):

The ERROR state indicates the cluster may be unusable. Details can be found in the statusMessage field.

DEGRADED (6):

The DEGRADED state indicates the cluster requires user action to restore full functionality. Details can be found in the statusMessage field.

class google.cloud.container_v1beta1.types.ClusterAutoscaling(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ClusterAutoscaling contains global, per-cluster information required by Cluster Autoscaler to automatically adjust the size of the cluster and create/delete node pools based on the current needs.

enable_node_autoprovisioning

Enables automatic node pool creation and deletion.

Type

bool

resource_limits

Contains global constraints regarding minimum and maximum amount of resources in the cluster.

Type

MutableSequence[google.cloud.container_v1beta1.types.ResourceLimit]

autoscaling_profile

Defines autoscaling behaviour.

Type

google.cloud.container_v1beta1.types.ClusterAutoscaling.AutoscalingProfile

autoprovisioning_node_pool_defaults

AutoprovisioningNodePoolDefaults contains defaults for a node pool created by NAP.

Type

google.cloud.container_v1beta1.types.AutoprovisioningNodePoolDefaults

autoprovisioning_locations

The list of Google Compute Engine zones in which the NodePool’s nodes can be created by NAP.

Type

MutableSequence[str]

class AutoscalingProfile(value)[source]

Bases: proto.enums.Enum

Defines possible options for autoscaling_profile field.

Values:
PROFILE_UNSPECIFIED (0):

No change to autoscaling configuration.

OPTIMIZE_UTILIZATION (1):

Prioritize optimizing utilization of resources.

BALANCED (2):

Use default (balanced) autoscaling configuration.

class google.cloud.container_v1beta1.types.ClusterTelemetry(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Telemetry integration for the cluster.

type_

Type of the integration.

Type

google.cloud.container_v1beta1.types.ClusterTelemetry.Type

class Type(value)[source]

Bases: proto.enums.Enum

Type of the integration.

Values:
UNSPECIFIED (0):

Not set.

DISABLED (1):

Monitoring integration is disabled.

ENABLED (2):

Monitoring integration is enabled.

SYSTEM_ONLY (3):

Only system components are monitored and logged.

class google.cloud.container_v1beta1.types.ClusterUpdate(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ClusterUpdate describes an update to the cluster. Exactly one update can be applied to a cluster with each request, so at most one field can be provided.

desired_node_version

The Kubernetes version to change the nodes to (typically an upgrade).

Users may specify either explicit versions offered by Kubernetes Engine or version aliases, which have the following behavior:

  • “latest”: picks the highest valid Kubernetes version

  • “1.X”: picks the highest valid patch+gke.N patch in the 1.X version

  • “1.X.Y”: picks the highest valid gke.N patch in the 1.X.Y version

  • “1.X.Y-gke.N”: picks an explicit Kubernetes version

  • “-”: picks the Kubernetes master version

Type

str

desired_monitoring_service

The monitoring service the cluster should use to write metrics. Currently available options:

  • “monitoring.googleapis.com/kubernetes” - The Cloud Monitoring service with a Kubernetes-native resource model

  • monitoring.googleapis.com - The legacy Cloud Monitoring service (no longer available as of GKE 1.15).

  • none - No metrics will be exported from the cluster.

If left as an empty string,monitoring.googleapis.com/kubernetes will be used for GKE 1.14+ or monitoring.googleapis.com for earlier versions.

Type

str

desired_addons_config

Configurations for the various addons available to run in the cluster.

Type

google.cloud.container_v1beta1.types.AddonsConfig

desired_node_pool_id

The node pool to be upgraded. This field is mandatory if “desired_node_version”, “desired_image_family”, “desired_node_pool_autoscaling”, or “desired_workload_metadata_config” is specified and there is more than one node pool on the cluster.

Type

str

desired_image_type

The desired image type for the node pool. NOTE: Set the “desired_node_pool” field as well.

Type

str

desired_node_pool_autoscaling

Autoscaler configuration for the node pool specified in desired_node_pool_id. If there is only one pool in the cluster and desired_node_pool_id is not provided then the change applies to that single node pool.

Type

google.cloud.container_v1beta1.types.NodePoolAutoscaling

desired_locations

The desired list of Google Compute Engine zones in which the cluster’s nodes should be located.

This list must always include the cluster’s primary zone.

Warning: changing cluster locations will update the locations of all node pools and will result in nodes being added and/or removed.

Type

MutableSequence[str]

desired_master_authorized_networks_config

The desired configuration options for master authorized networks feature.

Type

google.cloud.container_v1beta1.types.MasterAuthorizedNetworksConfig

desired_pod_security_policy_config

The desired configuration options for the PodSecurityPolicy feature.

Type

google.cloud.container_v1beta1.types.PodSecurityPolicyConfig

desired_cluster_autoscaling

Cluster-level autoscaling configuration.

Type

google.cloud.container_v1beta1.types.ClusterAutoscaling

desired_binary_authorization

The desired configuration options for the Binary Authorization feature.

Type

google.cloud.container_v1beta1.types.BinaryAuthorization

desired_logging_service

The logging service the cluster should use to write logs. Currently available options:

  • logging.googleapis.com/kubernetes - The Cloud Logging service with a Kubernetes-native resource model

  • logging.googleapis.com - The legacy Cloud Logging service (no longer available as of GKE 1.15).

  • none - no logs will be exported from the cluster.

If left as an empty string,logging.googleapis.com/kubernetes will be used for GKE 1.14+ or logging.googleapis.com for earlier versions.

Type

str

desired_resource_usage_export_config

The desired configuration for exporting resource usage.

Type

google.cloud.container_v1beta1.types.ResourceUsageExportConfig

desired_vertical_pod_autoscaling

Cluster-level Vertical Pod Autoscaling configuration.

Type

google.cloud.container_v1beta1.types.VerticalPodAutoscaling

desired_private_cluster_config

The desired private cluster configuration.

Type

google.cloud.container_v1beta1.types.PrivateClusterConfig

desired_intra_node_visibility_config

The desired config of Intra-node visibility.

Type

google.cloud.container_v1beta1.types.IntraNodeVisibilityConfig

desired_default_snat_status

The desired status of whether to disable default sNAT for this cluster.

Type

google.cloud.container_v1beta1.types.DefaultSnatStatus

desired_cluster_telemetry

The desired telemetry integration for the cluster.

Type

google.cloud.container_v1beta1.types.ClusterTelemetry

desired_release_channel

The desired release channel configuration.

Type

google.cloud.container_v1beta1.types.ReleaseChannel

desired_tpu_config

The desired Cloud TPU configuration.

Type

google.cloud.container_v1beta1.types.TpuConfig

desired_l4ilb_subsetting_config

The desired L4 Internal Load Balancer Subsetting configuration.

Type

google.cloud.container_v1beta1.types.ILBSubsettingConfig

desired_datapath_provider

The desired datapath provider for the cluster.

Type

google.cloud.container_v1beta1.types.DatapathProvider

desired_private_ipv6_google_access

The desired state of IPv6 connectivity to Google Services.

Type

google.cloud.container_v1beta1.types.PrivateIPv6GoogleAccess

desired_notification_config

The desired notification configuration.

Type

google.cloud.container_v1beta1.types.NotificationConfig

desired_master_version

The Kubernetes version to change the master to. The only valid value is the latest supported version.

Users may specify either explicit versions offered by Kubernetes Engine or version aliases, which have the following behavior:

  • “latest”: picks the highest valid Kubernetes version

  • “1.X”: picks the highest valid patch+gke.N patch in the 1.X version

  • “1.X.Y”: picks the highest valid gke.N patch in the 1.X.Y version

  • “1.X.Y-gke.N”: picks an explicit Kubernetes version

  • “-”: picks the default Kubernetes version

Type

str

desired_gcfs_config

The desired GCFS config for the cluster.

Type

google.cloud.container_v1beta1.types.GcfsConfig

desired_database_encryption

Configuration of etcd encryption.

Type

google.cloud.container_v1beta1.types.DatabaseEncryption

desired_workload_identity_config

Configuration for Workload Identity.

Type

google.cloud.container_v1beta1.types.WorkloadIdentityConfig

desired_workload_certificates

Configuration for issuance of mTLS keys and certificates to Kubernetes pods.

Type

google.cloud.container_v1beta1.types.WorkloadCertificates

desired_mesh_certificates

Configuration for issuance of mTLS keys and certificates to Kubernetes pods.

Type

google.cloud.container_v1beta1.types.MeshCertificates

desired_workload_alts_config

Configuration for direct-path (via ALTS) with workload identity.

Type

google.cloud.container_v1beta1.types.WorkloadALTSConfig

desired_shielded_nodes

Configuration for Shielded Nodes.

Type

google.cloud.container_v1beta1.types.ShieldedNodes

desired_cost_management_config

The desired configuration for the fine-grained cost management feature.

Type

google.cloud.container_v1beta1.types.CostManagementConfig

desired_master

Configuration for master components.

Type

google.cloud.container_v1beta1.types.Master

desired_dns_config

DNSConfig contains clusterDNS config for this cluster.

Type

google.cloud.container_v1beta1.types.DNSConfig

desired_service_external_ips_config

ServiceExternalIPsConfig specifies the config for the use of Services with ExternalIPs field.

Type

google.cloud.container_v1beta1.types.ServiceExternalIPsConfig

desired_authenticator_groups_config

AuthenticatorGroupsConfig specifies the config for the cluster security groups settings.

Type

google.cloud.container_v1beta1.types.AuthenticatorGroupsConfig

desired_logging_config

The desired logging configuration.

Type

google.cloud.container_v1beta1.types.LoggingConfig

desired_monitoring_config

The desired monitoring configuration.

Type

google.cloud.container_v1beta1.types.MonitoringConfig

desired_identity_service_config

The desired Identity Service component configuration.

Type

google.cloud.container_v1beta1.types.IdentityServiceConfig

desired_enable_private_endpoint

Enable/Disable private endpoint for the cluster’s master.

This field is a member of oneof _desired_enable_private_endpoint.

Type

bool

desired_node_pool_auto_config_network_tags

The desired network tags that apply to all auto-provisioned node pools in autopilot clusters and node auto-provisioning enabled clusters.

Type

google.cloud.container_v1beta1.types.NetworkTags

desired_protect_config

Deprecated: Use DesiredSecurityPostureConfig instead. Enable/Disable Protect API features for the cluster.

This field is a member of oneof _desired_protect_config.

Type

google.cloud.container_v1beta1.types.ProtectConfig

desired_gateway_api_config

The desired config of Gateway API on this cluster.

Type

google.cloud.container_v1beta1.types.GatewayAPIConfig

etag

The current etag of the cluster. If an etag is provided and does not match the current etag of the cluster, update will be blocked and an ABORTED error will be returned.

Type

str

desired_node_pool_logging_config

The desired node pool logging configuration defaults for the cluster.

Type

google.cloud.container_v1beta1.types.NodePoolLoggingConfig

desired_fleet

The desired fleet configuration for the cluster.

Type

google.cloud.container_v1beta1.types.Fleet

desired_stack_type

The desired stack type of the cluster. If a stack type is provided and does not match the current stack type of the cluster, update will attempt to change the stack type to the new type.

Type

google.cloud.container_v1beta1.types.StackType

additional_pod_ranges_config

The additional pod ranges to be added to the cluster. These pod ranges can be used by node pools to allocate pod IPs.

Type

google.cloud.container_v1beta1.types.AdditionalPodRangesConfig

removed_additional_pod_ranges_config

The additional pod ranges that are to be removed from the cluster. The pod ranges specified here must have been specified earlier in the ‘additional_pod_ranges_config’ argument.

Type

google.cloud.container_v1beta1.types.AdditionalPodRangesConfig

enable_k8s_beta_apis

Kubernetes open source beta apis enabled on the cluster. Only beta apis

Type

google.cloud.container_v1beta1.types.K8sBetaAPIConfig

desired_security_posture_config

Enable/Disable Security Posture API features for the cluster.

Type

google.cloud.container_v1beta1.types.SecurityPostureConfig

desired_network_performance_config

The desired network performance config.

Type

google.cloud.container_v1beta1.types.NetworkConfig.ClusterNetworkPerformanceConfig

desired_enable_fqdn_network_policy

Enable/Disable FQDN Network Policy for the cluster.

This field is a member of oneof _desired_enable_fqdn_network_policy.

Type

bool

desired_autopilot_workload_policy_config

The desired workload policy configuration for the autopilot cluster.

Type

google.cloud.container_v1beta1.types.WorkloadPolicyConfig

desired_k8s_beta_apis

Beta APIs enabled for cluster.

Type

google.cloud.container_v1beta1.types.K8sBetaAPIConfig

desired_host_maintenance_policy

HostMaintenancePolicy contains the desired maintenance policy for the Google Compute Engine hosts.

Type

google.cloud.container_v1beta1.types.HostMaintenancePolicy

class google.cloud.container_v1beta1.types.CompleteIPRotationRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

CompleteIPRotationRequest moves the cluster master back into single-IP mode.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster. This field has been deprecated and replaced by the name field.

Type

str

name

The name (project, location, cluster name) of the cluster to complete IP rotation. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.CompleteNodePoolUpgradeRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

CompleteNodePoolUpgradeRequest sets the name of target node pool to complete upgrade.

name

The name (project, location, cluster, node pool id) of the node pool to complete upgrade. Specified in the format projects/*/locations/*/clusters/*/nodePools/*.

Type

str

class google.cloud.container_v1beta1.types.ConfidentialNodes(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ConfidentialNodes is configuration for the confidential nodes feature, which makes nodes run on confidential VMs.

enabled

Whether Confidential Nodes feature is enabled.

Type

bool

class google.cloud.container_v1beta1.types.ConfigConnectorConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration options for the Config Connector add-on.

enabled

Whether Cloud Connector is enabled for this cluster.

Type

bool

class google.cloud.container_v1beta1.types.CostManagementConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for fine-grained cost management feature.

enabled

Whether the feature is enabled or not.

Type

bool

class google.cloud.container_v1beta1.types.CreateClusterRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

CreateClusterRequest creates a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the parent field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the parent field.

Type

str

cluster

Required. A cluster resource

Type

google.cloud.container_v1beta1.types.Cluster

parent

The parent (project and location) where the cluster will be created. Specified in the format projects/*/locations/*.

Type

str

class google.cloud.container_v1beta1.types.CreateNodePoolRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

CreateNodePoolRequest creates a node pool for a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the parent field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the parent field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster. This field has been deprecated and replaced by the parent field.

Type

str

node_pool

Required. The node pool to create.

Type

google.cloud.container_v1beta1.types.NodePool

parent

The parent (project, location, cluster name) where the node pool will be created. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.DNSConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

DNSConfig contains the desired set of options for configuring clusterDNS.

cluster_dns

cluster_dns indicates which in-cluster DNS provider should be used.

Type

google.cloud.container_v1beta1.types.DNSConfig.Provider

cluster_dns_scope

cluster_dns_scope indicates the scope of access to cluster DNS records.

Type

google.cloud.container_v1beta1.types.DNSConfig.DNSScope

cluster_dns_domain

cluster_dns_domain is the suffix used for all cluster service records.

Type

str

class DNSScope(value)[source]

Bases: proto.enums.Enum

DNSScope lists the various scopes of access to cluster DNS records.

Values:
DNS_SCOPE_UNSPECIFIED (0):

Default value, will be inferred as cluster scope.

CLUSTER_SCOPE (1):

DNS records are accessible from within the cluster.

VPC_SCOPE (2):

DNS records are accessible from within the VPC.

class Provider(value)[source]

Bases: proto.enums.Enum

Provider lists the various in-cluster DNS providers.

Values:
PROVIDER_UNSPECIFIED (0):

Default value

PLATFORM_DEFAULT (1):

Use GKE default DNS provider(kube-dns) for DNS resolution.

CLOUD_DNS (2):

Use CloudDNS for DNS resolution.

KUBE_DNS (3):

Use KubeDNS for DNS resolution.

class google.cloud.container_v1beta1.types.DailyMaintenanceWindow(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Time window specified for daily maintenance operations.

start_time

Time within the maintenance window to start the maintenance operations. It must be in format “HH:MM”, where HH : [00-23] and MM : [00-59] GMT.

Type

str

duration

[Output only] Duration of the time window, automatically chosen to be smallest possible in the given scenario.

Type

str

class google.cloud.container_v1beta1.types.DatabaseEncryption(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration of etcd encryption.

key_name

Name of CloudKMS key to use for the encryption of secrets in etcd. Ex. projects/my-project/locations/global/keyRings/my-ring/cryptoKeys/my-key

Type

str

state

The desired state of etcd encryption.

Type

google.cloud.container_v1beta1.types.DatabaseEncryption.State

class State(value)[source]

Bases: proto.enums.Enum

State of etcd encryption.

Values:
UNKNOWN (0):

Should never be set

ENCRYPTED (1):

Secrets in etcd are encrypted.

DECRYPTED (2):

Secrets in etcd are stored in plain text (at etcd level) - this is unrelated to Compute Engine level full disk encryption.

class google.cloud.container_v1beta1.types.DatapathProvider(value)[source]

Bases: proto.enums.Enum

The datapath provider selects the implementation of the Kubernetes networking model for service resolution and network policy enforcement.

Values:
DATAPATH_PROVIDER_UNSPECIFIED (0):

Default value.

LEGACY_DATAPATH (1):

Use the IPTables implementation based on kube-proxy.

ADVANCED_DATAPATH (2):

Use the eBPF based GKE Dataplane V2 with additional features. See the GKE Dataplane V2 documentation for more.

class google.cloud.container_v1beta1.types.DefaultSnatStatus(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

DefaultSnatStatus contains the desired state of whether default sNAT should be disabled on the cluster.

disabled

Disables cluster default sNAT rules.

Type

bool

class google.cloud.container_v1beta1.types.DeleteClusterRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

DeleteClusterRequest deletes a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to delete. This field has been deprecated and replaced by the name field.

Type

str

name

The name (project, location, cluster) of the cluster to delete. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.DeleteNodePoolRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

DeleteNodePoolRequest deletes a node pool for a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster. This field has been deprecated and replaced by the name field.

Type

str

node_pool_id

Required. Deprecated. The name of the node pool to delete. This field has been deprecated and replaced by the name field.

Type

str

name

The name (project, location, cluster, node pool id) of the node pool to delete. Specified in the format projects/*/locations/*/clusters/*/nodePools/*.

Type

str

class google.cloud.container_v1beta1.types.DnsCacheConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for NodeLocal DNSCache

enabled

Whether NodeLocal DNSCache is enabled for this cluster.

Type

bool

class google.cloud.container_v1beta1.types.EphemeralStorageConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

EphemeralStorageConfig contains configuration for the ephemeral storage filesystem.

local_ssd_count

Number of local SSDs to use to back ephemeral storage. Uses NVMe interfaces. Each local SSD is 375 GB in size. If zero, it means to disable using local SSDs as ephemeral storage.

Type

int

class google.cloud.container_v1beta1.types.EphemeralStorageLocalSsdConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

EphemeralStorageLocalSsdConfig contains configuration for the node ephemeral storage using Local SSDs.

local_ssd_count

Number of local SSDs to use to back ephemeral storage. Uses NVMe interfaces. Each local SSD is 375 GB in size. If zero, it means to disable using local SSDs as ephemeral storage. The limit for this value is dependent upon the maximum number of disks available on a machine per zone. See:

https://cloud.google.com/compute/docs/disks/local-ssd for more information.

Type

int

class google.cloud.container_v1beta1.types.FastSocket(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration of Fast Socket feature.

enabled

Whether Fast Socket features are enabled in the node pool.

Type

bool

class google.cloud.container_v1beta1.types.Fleet(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Fleet is the fleet configuration for the cluster.

project

The Fleet host project(project ID or project number) where this cluster will be registered to. This field cannot be changed after the cluster has been registered.

Type

str

membership

[Output only] The full resource name of the registered fleet membership of the cluster, in the format //gkehub.googleapis.com/projects/*/locations/*/memberships/*.

Type

str

pre_registered

[Output only] Whether the cluster has been registered through the fleet API.

Type

bool

class google.cloud.container_v1beta1.types.GPUDriverInstallationConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

GPUDriverInstallationConfig specifies the version of GPU driver to be auto installed.

gpu_driver_version

Mode for how the GPU driver is installed.

This field is a member of oneof _gpu_driver_version.

Type

google.cloud.container_v1beta1.types.GPUDriverInstallationConfig.GPUDriverVersion

class GPUDriverVersion(value)[source]

Bases: proto.enums.Enum

The GPU driver version to install.

Values:
GPU_DRIVER_VERSION_UNSPECIFIED (0):

Default value is to not install any GPU driver.

INSTALLATION_DISABLED (1):

Disable GPU driver auto installation and needs manual installation

DEFAULT (2):

“Default” GPU driver in COS and Ubuntu.

LATEST (3):

“Latest” GPU driver in COS.

class google.cloud.container_v1beta1.types.GPUSharingConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

GPUSharingConfig represents the GPU sharing configuration for Hardware Accelerators.

max_shared_clients_per_gpu

The max number of containers that can share a physical GPU.

Type

int

gpu_sharing_strategy

The type of GPU sharing strategy to enable on the GPU node.

This field is a member of oneof _gpu_sharing_strategy.

Type

google.cloud.container_v1beta1.types.GPUSharingConfig.GPUSharingStrategy

class GPUSharingStrategy(value)[source]

Bases: proto.enums.Enum

The type of GPU sharing strategy currently provided.

Values:
GPU_SHARING_STRATEGY_UNSPECIFIED (0):

Default value.

TIME_SHARING (1):

GPUs are time-shared between containers.

class google.cloud.container_v1beta1.types.GatewayAPIConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

GatewayAPIConfig contains the desired config of Gateway API on this cluster.

channel

The Gateway API release channel to use for Gateway API.

Type

google.cloud.container_v1beta1.types.GatewayAPIConfig.Channel

class Channel(value)[source]

Bases: proto.enums.Enum

Channel describes if/how Gateway API should be installed and implemented in a cluster.

Values:
CHANNEL_UNSPECIFIED (0):

Default value.

CHANNEL_DISABLED (1):

Gateway API support is disabled

CHANNEL_EXPERIMENTAL (3):

Gateway API support is enabled, experimental CRDs are installed

CHANNEL_STANDARD (4):

Gateway API support is enabled, standard CRDs are installed

class google.cloud.container_v1beta1.types.GcePersistentDiskCsiDriverConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for the Compute Engine PD CSI driver.

enabled

Whether the Compute Engine PD CSI driver is enabled for this cluster.

Type

bool

class google.cloud.container_v1beta1.types.GcfsConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

GcfsConfig contains configurations of Google Container File System.

enabled

Whether to use GCFS.

Type

bool

class google.cloud.container_v1beta1.types.GcpFilestoreCsiDriverConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for the GCP Filestore CSI driver.

enabled

Whether the GCP Filestore CSI driver is enabled for this cluster.

Type

bool

class google.cloud.container_v1beta1.types.GcsFuseCsiDriverConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for the Cloud Storage Fuse CSI driver.

enabled

Whether the Cloud Storage Fuse CSI driver is enabled for this cluster.

Type

bool

class google.cloud.container_v1beta1.types.GetClusterRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

GetClusterRequest gets the settings of a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to retrieve. This field has been deprecated and replaced by the name field.

Type

str

name

The name (project, location, cluster) of the cluster to retrieve. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.GetJSONWebKeysRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

GetJSONWebKeysRequest gets the public component of the keys used by the cluster to sign token requests. This will be the jwks_uri for the discover document returned by getOpenIDConfig. See the OpenID Connect Discovery 1.0 specification for details.

parent

The cluster (project, location, cluster name) to get keys for. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.GetJSONWebKeysResponse(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

GetJSONWebKeysResponse is a valid JSON Web Key Set as specififed in rfc 7517

keys

The public component of the keys used by the cluster to sign token requests.

Type

MutableSequence[google.cloud.container_v1beta1.types.Jwk]

class google.cloud.container_v1beta1.types.GetNodePoolRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

GetNodePoolRequest retrieves a node pool for a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster. This field has been deprecated and replaced by the name field.

Type

str

node_pool_id

Required. Deprecated. The name of the node pool. This field has been deprecated and replaced by the name field.

Type

str

name

The name (project, location, cluster, node pool id) of the node pool to get. Specified in the format projects/*/locations/*/clusters/*/nodePools/*.

Type

str

class google.cloud.container_v1beta1.types.GetOpenIDConfigRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

GetOpenIDConfigRequest gets the OIDC discovery document for the cluster. See the OpenID Connect Discovery 1.0 specification for details.

parent

The cluster (project, location, cluster name) to get the discovery document for. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.GetOpenIDConfigResponse(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

GetOpenIDConfigResponse is an OIDC discovery document for the cluster. See the OpenID Connect Discovery 1.0 specification for details.

issuer

OIDC Issuer.

Type

str

jwks_uri

JSON Web Key uri.

Type

str

response_types_supported

Supported response types.

Type

MutableSequence[str]

subject_types_supported

Supported subject types.

Type

MutableSequence[str]

id_token_signing_alg_values_supported

supported ID Token signing Algorithms.

Type

MutableSequence[str]

claims_supported

Supported claims.

Type

MutableSequence[str]

grant_types

Supported grant types.

Type

MutableSequence[str]

class google.cloud.container_v1beta1.types.GetOperationRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

GetOperationRequest gets a single operation.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

operation_id

Required. Deprecated. The server-assigned name of the operation. This field has been deprecated and replaced by the name field.

Type

str

name

The name (project, location, operation id) of the operation to get. Specified in the format projects/*/locations/*/operations/*.

Type

str

class google.cloud.container_v1beta1.types.GetServerConfigRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Gets the current Kubernetes Engine service configuration.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone to return operations for. This field has been deprecated and replaced by the name field.

Type

str

name

The name (project and location) of the server config to get, specified in the format projects/*/locations/*.

Type

str

class google.cloud.container_v1beta1.types.GkeBackupAgentConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for the Backup for GKE Agent.

enabled

Whether the Backup for GKE agent is enabled for this cluster.

Type

bool

class google.cloud.container_v1beta1.types.HorizontalPodAutoscaling(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration options for the horizontal pod autoscaling feature, which increases or decreases the number of replica pods a replication controller has based on the resource usage of the existing pods.

disabled

Whether the Horizontal Pod Autoscaling feature is enabled in the cluster. When enabled, it ensures that metrics are collected into Stackdriver Monitoring.

Type

bool

class google.cloud.container_v1beta1.types.HostMaintenancePolicy(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

HostMaintenancePolicy contains the maintenance policy for the hosts on which the GKE VMs run on.

maintenance_interval

Specifies the frequency of planned maintenance events.

This field is a member of oneof _maintenance_interval.

Type

google.cloud.container_v1beta1.types.HostMaintenancePolicy.MaintenanceInterval

class MaintenanceInterval(value)[source]

Bases: proto.enums.Enum

Allows selecting how infrastructure upgrades should be applied to the cluster or node pool.

Values:
MAINTENANCE_INTERVAL_UNSPECIFIED (0):

The maintenance interval is not explicitly specified.

AS_NEEDED (1):

Nodes are eligible to receive infrastructure and hypervisor updates as they become available. This may result in more maintenance operations (live migrations or terminations) for the node than the PERIODIC option.

PERIODIC (2):

Nodes receive infrastructure and hypervisor updates on a periodic basis, minimizing the number of maintenance operations (live migrations or terminations) on an individual VM. This may mean underlying VMs will take longer to receive an update than if it was configured for AS_NEEDED. Security updates will still be applied as soon as they are available.

class google.cloud.container_v1beta1.types.HttpLoadBalancing(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration options for the HTTP (L7) load balancing controller addon, which makes it easy to set up HTTP load balancers for services in a cluster.

disabled

Whether the HTTP Load Balancing controller is enabled in the cluster. When enabled, it runs a small pod in the cluster that manages the load balancers.

Type

bool

class google.cloud.container_v1beta1.types.ILBSubsettingConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ILBSubsettingConfig contains the desired config of L4 Internal LoadBalancer subsetting on this cluster.

enabled

Enables l4 ILB subsetting for this cluster

Type

bool

class google.cloud.container_v1beta1.types.IPAllocationPolicy(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for controlling how IPs are allocated in the cluster.

use_ip_aliases

Whether alias IPs will be used for pod IPs in the cluster. This is used in conjunction with use_routes. It cannot be true if use_routes is true. If both use_ip_aliases and use_routes are false, then the server picks the default IP allocation mode

Type

bool

create_subnetwork

Whether a new subnetwork will be created automatically for the cluster.

This field is only applicable when use_ip_aliases is true.

Type

bool

subnetwork_name

A custom subnetwork name to be used if create_subnetwork is true. If this field is empty, then an automatic name will be chosen for the new subnetwork.

Type

str

cluster_ipv4_cidr

This field is deprecated, use cluster_ipv4_cidr_block.

Type

str

node_ipv4_cidr

This field is deprecated, use node_ipv4_cidr_block.

Type

str

services_ipv4_cidr

This field is deprecated, use services_ipv4_cidr_block.

Type

str

cluster_secondary_range_name

The name of the secondary range to be used for the cluster CIDR block. The secondary range will be used for pod IP addresses. This must be an existing secondary range associated with the cluster subnetwork.

This field is only applicable with use_ip_aliases and create_subnetwork is false.

Type

str

services_secondary_range_name

The name of the secondary range to be used as for the services CIDR block. The secondary range will be used for service ClusterIPs. This must be an existing secondary range associated with the cluster subnetwork.

This field is only applicable with use_ip_aliases and create_subnetwork is false.

Type

str

cluster_ipv4_cidr_block

The IP address range for the cluster pod IPs. If this field is set, then cluster.cluster_ipv4_cidr must be left blank.

This field is only applicable when use_ip_aliases is true.

Set to blank to have a range chosen with the default size.

Set to /netmask (e.g. /14) to have a range chosen with a specific netmask.

Set to a CIDR notation (e.g. 10.96.0.0/14) from the RFC-1918 private networks (e.g. 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16) to pick a specific range to use.

Type

str

node_ipv4_cidr_block

The IP address range of the instance IPs in this cluster.

This is applicable only if create_subnetwork is true.

Set to blank to have a range chosen with the default size.

Set to /netmask (e.g. /14) to have a range chosen with a specific netmask.

Set to a CIDR notation (e.g. 10.96.0.0/14) from the RFC-1918 private networks (e.g. 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16) to pick a specific range to use.

Type

str

services_ipv4_cidr_block

The IP address range of the services IPs in this cluster. If blank, a range will be automatically chosen with the default size.

This field is only applicable when use_ip_aliases is true.

Set to blank to have a range chosen with the default size.

Set to /netmask (e.g. /14) to have a range chosen with a specific netmask.

Set to a CIDR notation (e.g. 10.96.0.0/14) from the RFC-1918 private networks (e.g. 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16) to pick a specific range to use.

Type

str

allow_route_overlap

If true, allow allocation of cluster CIDR ranges that overlap with certain kinds of network routes. By default we do not allow cluster CIDR ranges to intersect with any user declared routes. With allow_route_overlap == true, we allow overlapping with CIDR ranges that are larger than the cluster CIDR range.

If this field is set to true, then cluster and services CIDRs must be fully-specified (e.g. 10.96.0.0/14, but not /14), which means:

  1. When use_ip_aliases is true, cluster_ipv4_cidr_block and services_ipv4_cidr_block must be fully-specified.

  2. When use_ip_aliases is false, cluster.cluster_ipv4_cidr muse be fully-specified.

Type

bool

tpu_ipv4_cidr_block

The IP address range of the Cloud TPUs in this cluster. If unspecified, a range will be automatically chosen with the default size.

This field is only applicable when use_ip_aliases is true.

If unspecified, the range will use the default size.

Set to /netmask (e.g. /14) to have a range chosen with a specific netmask.

Set to a CIDR notation (e.g. 10.96.0.0/14) from the RFC-1918 private networks (e.g. 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16) to pick a specific range to use. This field is deprecated, use cluster.tpu_config.ipv4_cidr_block instead.

Type

str

use_routes

Whether routes will be used for pod IPs in the cluster. This is used in conjunction with use_ip_aliases. It cannot be true if use_ip_aliases is true. If both use_ip_aliases and use_routes are false, then the server picks the default IP allocation mode

Type

bool

stack_type

IP stack type

Type

google.cloud.container_v1beta1.types.IPAllocationPolicy.StackType

ipv6_access_type

The ipv6 access type (internal or external) when create_subnetwork is true

Type

google.cloud.container_v1beta1.types.IPAllocationPolicy.IPv6AccessType

pod_cidr_overprovision_config

[PRIVATE FIELD] Pod CIDR size overprovisioning config for the cluster.

Pod CIDR size per node depends on max_pods_per_node. By default, the value of max_pods_per_node is doubled and then rounded off to next power of 2 to get the size of pod CIDR block per node. Example: max_pods_per_node of 30 would result in 64 IPs (/26).

This config can disable the doubling of IPs (we still round off to next power of 2) Example: max_pods_per_node of 30 will result in 32 IPs (/27) when overprovisioning is disabled.

Type

google.cloud.container_v1beta1.types.PodCIDROverprovisionConfig

subnet_ipv6_cidr_block

Output only. [Output only] The subnet’s IPv6 CIDR block used by nodes and pods.

Type

str

services_ipv6_cidr_block

Output only. [Output only] The services IPv6 CIDR block for the cluster.

Type

str

additional_pod_ranges_config

Output only. [Output only] The additional pod ranges that are added to the cluster. These pod ranges can be used by new node pools to allocate pod IPs automatically. Once the range is removed it will not show up in IPAllocationPolicy.

Type

google.cloud.container_v1beta1.types.AdditionalPodRangesConfig

default_pod_ipv4_range_utilization

Output only. [Output only] The utilization of the cluster default IPv4 range for the pod. The ratio is Usage/[Total number of IPs in the secondary range], Usage=numNodesnumZonespodIPsPerNode.

Type

float

class IPv6AccessType(value)[source]

Bases: proto.enums.Enum

IPv6 access type

Values:
IPV6_ACCESS_TYPE_UNSPECIFIED (0):

Default value, will be defaulted as type external.

INTERNAL (1):

Access type internal (all v6 addresses are internal IPs)

EXTERNAL (2):

Access type external (all v6 addresses are external IPs)

class StackType(value)[source]

Bases: proto.enums.Enum

Possible values for IP stack type

Values:
STACK_TYPE_UNSPECIFIED (0):

By default, the clusters will be IPV4 only

IPV4 (1):

The value used if the cluster is a IPV4 only

IPV4_IPV6 (2):

The value used if the cluster is a dual stack cluster

class google.cloud.container_v1beta1.types.IdentityServiceConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

IdentityServiceConfig is configuration for Identity Service which allows customers to use external identity providers with the K8S API

enabled

Whether to enable the Identity Service component

Type

bool

class google.cloud.container_v1beta1.types.IntraNodeVisibilityConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

IntraNodeVisibilityConfig contains the desired config of the intra-node visibility on this cluster.

enabled

Enables intra node visibility for this cluster.

Type

bool

class google.cloud.container_v1beta1.types.IstioConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration options for Istio addon.

disabled

Whether Istio is enabled for this cluster.

Type

bool

auth

The specified Istio auth mode, either none, or mutual TLS.

Type

google.cloud.container_v1beta1.types.IstioConfig.IstioAuthMode

class IstioAuthMode(value)[source]

Bases: proto.enums.Enum

Istio auth mode, https://istio.io/docs/concepts/security/mutual-tls.html

Values:
AUTH_NONE (0):

auth not enabled

AUTH_MUTUAL_TLS (1):

auth mutual TLS enabled

class google.cloud.container_v1beta1.types.Jwk(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Jwk is a JSON Web Key as specified in RFC 7517

kty

Key Type.

Type

str

alg

Algorithm.

Type

str

use

Permitted uses for the public keys.

Type

str

kid

Key ID.

Type

str

n

Used for RSA keys.

Type

str

e

Used for RSA keys.

Type

str

x

Used for ECDSA keys.

Type

str

y

Used for ECDSA keys.

Type

str

crv

Used for ECDSA keys.

Type

str

class google.cloud.container_v1beta1.types.K8sBetaAPIConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Kubernetes open source beta apis enabled on the cluster.

enabled_apis

api name, e.g. storage.k8s.io/v1beta1/csistoragecapacities.

Type

MutableSequence[str]

class google.cloud.container_v1beta1.types.KalmConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration options for the KALM addon.

enabled

Whether KALM is enabled for this cluster.

Type

bool

class google.cloud.container_v1beta1.types.KubernetesDashboard(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for the Kubernetes Dashboard.

disabled

Whether the Kubernetes Dashboard is enabled for this cluster.

Type

bool

class google.cloud.container_v1beta1.types.LegacyAbac(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for the legacy Attribute Based Access Control authorization mode.

enabled

Whether the ABAC authorizer is enabled for this cluster. When enabled, identities in the system, including service accounts, nodes, and controllers, will have statically granted permissions beyond those provided by the RBAC configuration or IAM.

Type

bool

class google.cloud.container_v1beta1.types.LinuxNodeConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Parameters that can be configured on Linux nodes.

sysctls

The Linux kernel parameters to be applied to the nodes and all pods running on the nodes.

The following parameters are supported.

net.core.busy_poll net.core.busy_read net.core.netdev_max_backlog net.core.rmem_max net.core.wmem_default net.core.wmem_max net.core.optmem_max net.core.somaxconn net.ipv4.tcp_rmem net.ipv4.tcp_wmem net.ipv4.tcp_tw_reuse

Type

MutableMapping[str, str]

cgroup_mode

cgroup_mode specifies the cgroup mode to be used on the node.

Type

google.cloud.container_v1beta1.types.LinuxNodeConfig.CgroupMode

class CgroupMode(value)[source]

Bases: proto.enums.Enum

Possible cgroup modes that can be used.

Values:
CGROUP_MODE_UNSPECIFIED (0):

CGROUP_MODE_UNSPECIFIED is when unspecified cgroup configuration is used. The default for the GKE node OS image will be used.

CGROUP_MODE_V1 (1):

CGROUP_MODE_V1 specifies to use cgroupv1 for the cgroup configuration on the node image.

CGROUP_MODE_V2 (2):

CGROUP_MODE_V2 specifies to use cgroupv2 for the cgroup configuration on the node image.

class SysctlsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Bases: proto.message.Message

class google.cloud.container_v1beta1.types.ListClustersRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ListClustersRequest lists clusters.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the parent field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides, or “-” for all zones. This field has been deprecated and replaced by the parent field.

Type

str

parent

The parent (project and location) where the clusters will be listed. Specified in the format projects/*/locations/*. Location “-” matches all zones and all regions.

Type

str

class google.cloud.container_v1beta1.types.ListClustersResponse(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ListClustersResponse is the result of ListClustersRequest.

clusters

A list of clusters in the project in the specified zone, or across all ones.

Type

MutableSequence[google.cloud.container_v1beta1.types.Cluster]

missing_zones

If any zones are listed here, the list of clusters returned may be missing those zones.

Type

MutableSequence[str]

class google.cloud.container_v1beta1.types.ListLocationsRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ListLocationsRequest is used to request the locations that offer GKE.

parent

Required. Contains the name of the resource requested. Specified in the format projects/*.

Type

str

class google.cloud.container_v1beta1.types.ListLocationsResponse(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ListLocationsResponse returns the list of all GKE locations and their recommendation state.

locations

A full list of GKE locations.

Type

MutableSequence[google.cloud.container_v1beta1.types.Location]

next_page_token

Only return ListLocationsResponse that occur after the page_token. This value should be populated from the ListLocationsResponse.next_page_token if that response token was set (which happens when listing more Locations than fit in a single ListLocationsResponse).

Type

str

class google.cloud.container_v1beta1.types.ListNodePoolsRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ListNodePoolsRequest lists the node pool(s) for a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the parent field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the parent field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster. This field has been deprecated and replaced by the parent field.

Type

str

parent

The parent (project, location, cluster name) where the node pools will be listed. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.ListNodePoolsResponse(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ListNodePoolsResponse is the result of ListNodePoolsRequest.

node_pools

A list of node pools for a cluster.

Type

MutableSequence[google.cloud.container_v1beta1.types.NodePool]

class google.cloud.container_v1beta1.types.ListOperationsRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ListOperationsRequest lists operations.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the parent field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone to return operations for, or - for all zones. This field has been deprecated and replaced by the parent field.

Type

str

parent

The parent (project and location) where the operations will be listed. Specified in the format projects/*/locations/*. Location “-” matches all zones and all regions.

Type

str

class google.cloud.container_v1beta1.types.ListOperationsResponse(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ListOperationsResponse is the result of ListOperationsRequest.

operations

A list of operations in the project in the specified zone.

Type

MutableSequence[google.cloud.container_v1beta1.types.Operation]

missing_zones

If any zones are listed here, the list of operations returned may be missing the operations from those zones.

Type

MutableSequence[str]

class google.cloud.container_v1beta1.types.ListUsableSubnetworksRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ListUsableSubnetworksRequest requests the list of usable subnetworks. available to a user for creating clusters.

parent

Required. The parent project where subnetworks are usable. Specified in the format projects/*.

Type

str

filter

Filtering currently only supports equality on the networkProjectId and must be in the form: “networkProjectId=[PROJECTID]”, where networkProjectId is the project which owns the listed subnetworks. This defaults to the parent project ID.

Type

str

page_size

The max number of results per page that should be returned. If the number of available results is larger than page_size, a next_page_token is returned which can be used to get the next page of results in subsequent requests. Acceptable values are 0 to 500, inclusive. (Default: 500)

Type

int

page_token

Specifies a page token to use. Set this to the nextPageToken returned by previous list requests to get the next page of results.

Type

str

class google.cloud.container_v1beta1.types.ListUsableSubnetworksResponse(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ListUsableSubnetworksResponse is the response of ListUsableSubnetworksRequest.

subnetworks

A list of usable subnetworks in the specified network project.

Type

MutableSequence[google.cloud.container_v1beta1.types.UsableSubnetwork]

next_page_token

This token allows you to get the next page of results for list requests. If the number of results is larger than page_size, use the next_page_token as a value for the query parameter page_token in the next request. The value will become empty when there are no more pages.

Type

str

class google.cloud.container_v1beta1.types.LocalNvmeSsdBlockConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

LocalNvmeSsdBlockConfig contains configuration for using raw-block local NVMe SSDs

local_ssd_count

The number of raw-block local NVMe SSD disks to be attached to the node. Each local SSD is 375 GB in size. If zero, it means no raw-block local NVMe SSD disks to be attached to the node. The limit for this value is dependent upon the maximum number of disks available on a machine per zone. See:

https://cloud.google.com/compute/docs/disks/local-ssd for more information.

Type

int

class google.cloud.container_v1beta1.types.Location(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Location returns the location name, and if the location is recommended for GKE cluster scheduling.

type_

Contains the type of location this Location is for. Regional or Zonal.

Type

google.cloud.container_v1beta1.types.Location.LocationType

name

Contains the name of the resource requested. Specified in the format projects/*/locations/*.

Type

str

recommended

Whether the location is recommended for GKE cluster scheduling.

Type

bool

class LocationType(value)[source]

Bases: proto.enums.Enum

LocationType is the type of GKE location, regional or zonal.

Values:
LOCATION_TYPE_UNSPECIFIED (0):

LOCATION_TYPE_UNSPECIFIED means the location type was not determined.

ZONE (1):

A GKE Location where Zonal clusters can be created.

REGION (2):

A GKE Location where Regional clusters can be created.

class google.cloud.container_v1beta1.types.LoggingComponentConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

LoggingComponentConfig is cluster logging component configuration.

enable_components

Select components to collect logs. An empty set would disable all logging.

Type

MutableSequence[google.cloud.container_v1beta1.types.LoggingComponentConfig.Component]

class Component(value)[source]

Bases: proto.enums.Enum

GKE components exposing logs

Values:
COMPONENT_UNSPECIFIED (0):

Default value. This shouldn’t be used.

SYSTEM_COMPONENTS (1):

system components

WORKLOADS (2):

workloads

APISERVER (3):

kube-apiserver

SCHEDULER (4):

kube-scheduler

CONTROLLER_MANAGER (5):

kube-controller-manager

class google.cloud.container_v1beta1.types.LoggingConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

LoggingConfig is cluster logging configuration.

component_config

Logging components configuration

Type

google.cloud.container_v1beta1.types.LoggingComponentConfig

class google.cloud.container_v1beta1.types.LoggingVariantConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

LoggingVariantConfig specifies the behaviour of the logging component.

variant

Logging variant deployed on nodes.

Type

google.cloud.container_v1beta1.types.LoggingVariantConfig.Variant

class Variant(value)[source]

Bases: proto.enums.Enum

Logging component variants.

Values:
VARIANT_UNSPECIFIED (0):

Default value. This shouldn’t be used.

DEFAULT (1):

default logging variant.

MAX_THROUGHPUT (2):

maximum logging throughput variant.

class google.cloud.container_v1beta1.types.MaintenanceExclusionOptions(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Represents the Maintenance exclusion option.

scope

Scope specifies the upgrade scope which upgrades are blocked by the exclusion.

Type

google.cloud.container_v1beta1.types.MaintenanceExclusionOptions.Scope

class Scope(value)[source]

Bases: proto.enums.Enum

Scope of exclusion.

Values:
NO_UPGRADES (0):

NO_UPGRADES excludes all upgrades, including patch upgrades and minor upgrades across control planes and nodes. This is the default exclusion behavior.

NO_MINOR_UPGRADES (1):

NO_MINOR_UPGRADES excludes all minor upgrades for the cluster, only patches are allowed.

NO_MINOR_OR_NODE_UPGRADES (2):

NO_MINOR_OR_NODE_UPGRADES excludes all minor upgrades for the cluster, and also exclude all node pool upgrades. Only control plane patches are allowed.

class google.cloud.container_v1beta1.types.MaintenancePolicy(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

MaintenancePolicy defines the maintenance policy to be used for the cluster.

window

Specifies the maintenance window in which maintenance may be performed.

Type

google.cloud.container_v1beta1.types.MaintenanceWindow

resource_version

A hash identifying the version of this policy, so that updates to fields of the policy won’t accidentally undo intermediate changes (and so that users of the API unaware of some fields won’t accidentally remove other fields). Make a get() request to the cluster to get the current resource version and include it with requests to set the policy.

Type

str

class google.cloud.container_v1beta1.types.MaintenanceWindow(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

MaintenanceWindow defines the maintenance window to be used for the cluster.

This message has oneof fields (mutually exclusive fields). For each oneof, at most one member field can be set at the same time. Setting any member of the oneof automatically clears all other members.

daily_maintenance_window

DailyMaintenanceWindow specifies a daily maintenance operation window.

This field is a member of oneof policy.

Type

google.cloud.container_v1beta1.types.DailyMaintenanceWindow

recurring_window

RecurringWindow specifies some number of recurring time periods for maintenance to occur. The time windows may be overlapping. If no maintenance windows are set, maintenance can occur at any time.

This field is a member of oneof policy.

Type

google.cloud.container_v1beta1.types.RecurringTimeWindow

maintenance_exclusions

Exceptions to maintenance window. Non-emergency maintenance should not occur in these windows.

Type

MutableMapping[str, google.cloud.container_v1beta1.types.TimeWindow]

class MaintenanceExclusionsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Bases: proto.message.Message

class google.cloud.container_v1beta1.types.ManagedPrometheusConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ManagedPrometheusConfig defines the configuration for Google Cloud Managed Service for Prometheus.

enabled

Enable Managed Collection.

Type

bool

class google.cloud.container_v1beta1.types.Master(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Master is the configuration for components on master.

class google.cloud.container_v1beta1.types.MasterAuth(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

The authentication information for accessing the master endpoint. Authentication can be done using HTTP basic auth or using client certificates.

username

The username to use for HTTP basic authentication to the master endpoint. For clusters v1.6.0 and later, basic authentication can be disabled by leaving username unspecified (or setting it to the empty string).

Warning: basic authentication is deprecated, and will be removed in GKE control plane versions 1.19 and newer. For a list of recommended authentication methods, see:

https://cloud.google.com/kubernetes-engine/docs/how-to/api-server-authentication

Type

str

password

The password to use for HTTP basic authentication to the master endpoint. Because the master endpoint is open to the Internet, you should create a strong password. If a password is provided for cluster creation, username must be non-empty.

Warning: basic authentication is deprecated, and will be removed in GKE control plane versions 1.19 and newer. For a list of recommended authentication methods, see:

https://cloud.google.com/kubernetes-engine/docs/how-to/api-server-authentication

Type

str

client_certificate_config

Configuration for client certificate authentication on the cluster. For clusters before v1.12, if no configuration is specified, a client certificate is issued.

Type

google.cloud.container_v1beta1.types.ClientCertificateConfig

cluster_ca_certificate
Type

str

client_certificate

[Output only] Base64-encoded public certificate used by clients to authenticate to the cluster endpoint.

Type

str

client_key

[Output only] Base64-encoded private key used by clients to authenticate to the cluster endpoint.

Type

str

class google.cloud.container_v1beta1.types.MasterAuthorizedNetworksConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration options for the master authorized networks feature. Enabled master authorized networks will disallow all external traffic to access Kubernetes master through HTTPS except traffic from the given CIDR blocks, Google Compute Engine Public IPs and Google Prod IPs.

enabled

Whether or not master authorized networks is enabled.

Type

bool

cidr_blocks

cidr_blocks define up to 10 external networks that could access Kubernetes master through HTTPS.

Type

MutableSequence[google.cloud.container_v1beta1.types.MasterAuthorizedNetworksConfig.CidrBlock]

gcp_public_cidrs_access_enabled

Whether master is accessbile via Google Compute Engine Public IP addresses.

This field is a member of oneof _gcp_public_cidrs_access_enabled.

Type

bool

class CidrBlock(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

CidrBlock contains an optional name and one CIDR block.

display_name

display_name is an optional field for users to identify CIDR blocks.

Type

str

cidr_block

cidr_block must be specified in CIDR notation.

Type

str

class google.cloud.container_v1beta1.types.MaxPodsConstraint(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Constraints applied to pods.

max_pods_per_node

Constraint enforced on the max num of pods per node.

Type

int

class google.cloud.container_v1beta1.types.MeshCertificates(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for issuance of mTLS keys and certificates to Kubernetes pods.

enable_certificates

enable_certificates controls issuance of workload mTLS certificates.

If set, the GKE Workload Identity Certificates controller and node agent will be deployed in the cluster, which can then be configured by creating a WorkloadCertificateConfig Custom Resource.

Requires Workload Identity ([workload_pool][google.container.v1alpha1.WorkloadIdentityConfig.workload_pool] must be non-empty).

Type

google.protobuf.wrappers_pb2.BoolValue

class google.cloud.container_v1beta1.types.MonitoringComponentConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

MonitoringComponentConfig is cluster monitoring component configuration.

enable_components

Select components to collect metrics. An empty set would disable all monitoring.

Type

MutableSequence[google.cloud.container_v1beta1.types.MonitoringComponentConfig.Component]

class Component(value)[source]

Bases: proto.enums.Enum

GKE components exposing metrics

Values:
COMPONENT_UNSPECIFIED (0):

Default value. This shouldn’t be used.

SYSTEM_COMPONENTS (1):

system components

WORKLOADS (2):

Deprecated: Use Google Cloud Managed Service for Prometheus.

APISERVER (3):

kube-apiserver

SCHEDULER (4):

kube-scheduler

CONTROLLER_MANAGER (5):

kube-controller-manager

STORAGE (7):

Storage

HPA (8):

Horizontal Pod Autoscaling

POD (9):

Pod

DAEMONSET (10):

DaemonSet

DEPLOYMENT (11):

Deployment

STATEFULSET (12):

Statefulset

class google.cloud.container_v1beta1.types.MonitoringConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

MonitoringConfig is cluster monitoring configuration.

component_config

Monitoring components configuration

Type

google.cloud.container_v1beta1.types.MonitoringComponentConfig

managed_prometheus_config

Enable Google Cloud Managed Service for Prometheus in the cluster.

Type

google.cloud.container_v1beta1.types.ManagedPrometheusConfig

advanced_datapath_observability_config

Configuration of Advanced Datapath Observability features.

Type

google.cloud.container_v1beta1.types.AdvancedDatapathObservabilityConfig

class google.cloud.container_v1beta1.types.NetworkConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

NetworkConfig reports the relative names of network & subnetwork.

network

Output only. The relative name of the Google Compute Engine [network]`google.container.v1beta1.NetworkConfig.network <https://cloud.google.com/compute/docs/networks-and-firewalls#networks>`__ to which the cluster is connected. Example: projects/my-project/global/networks/my-network

Type

str

subnetwork

Output only. The relative name of the Google Compute Engine subnetwork to which the cluster is connected. Example: projects/my-project/regions/us-central1/subnetworks/my-subnet

Type

str

enable_intra_node_visibility

Whether Intra-node visibility is enabled for this cluster. This makes same node pod to pod traffic visible for VPC network.

Type

bool

default_snat_status

Whether the cluster disables default in-node sNAT rules. In-node sNAT rules will be disabled when default_snat_status is disabled. When disabled is set to false, default IP masquerade rules will be applied to the nodes to prevent sNAT on cluster internal traffic.

Type

google.cloud.container_v1beta1.types.DefaultSnatStatus

enable_l4ilb_subsetting

Whether L4ILB Subsetting is enabled for this cluster.

Type

bool

datapath_provider

The desired datapath provider for this cluster. By default, uses the IPTables-based kube-proxy implementation.

Type

google.cloud.container_v1beta1.types.DatapathProvider

private_ipv6_google_access

The desired state of IPv6 connectivity to Google Services. By default, no private IPv6 access to or from Google Services (all access will be via IPv4)

Type

google.cloud.container_v1beta1.types.PrivateIPv6GoogleAccess

dns_config

DNSConfig contains clusterDNS config for this cluster.

Type

google.cloud.container_v1beta1.types.DNSConfig

service_external_ips_config

ServiceExternalIPsConfig specifies if services with externalIPs field are blocked or not.

Type

google.cloud.container_v1beta1.types.ServiceExternalIPsConfig

gateway_api_config

GatewayAPIConfig contains the desired config of Gateway API on this cluster.

Type

google.cloud.container_v1beta1.types.GatewayAPIConfig

enable_multi_networking

Whether multi-networking is enabled for this cluster.

Type

bool

network_performance_config

Network bandwidth tier configuration.

Type

google.cloud.container_v1beta1.types.NetworkConfig.ClusterNetworkPerformanceConfig

enable_fqdn_network_policy

Whether FQDN Network Policy is enabled on this cluster.

This field is a member of oneof _enable_fqdn_network_policy.

Type

bool

class ClusterNetworkPerformanceConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration of all network bandwidth tiers

total_egress_bandwidth_tier

Specifies the total network bandwidth tier for the NodePool.

This field is a member of oneof _total_egress_bandwidth_tier.

Type

google.cloud.container_v1beta1.types.NetworkConfig.ClusterNetworkPerformanceConfig.Tier

class Tier(value)[source]

Bases: proto.enums.Enum

Node network tier

Values:
TIER_UNSPECIFIED (0):

Default value

TIER_1 (1):

Higher bandwidth, actual values based on VM size.

class google.cloud.container_v1beta1.types.NetworkPolicy(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration options for the NetworkPolicy feature. https://kubernetes.io/docs/concepts/services-networking/networkpolicies/

provider

The selected network policy provider.

Type

google.cloud.container_v1beta1.types.NetworkPolicy.Provider

enabled

Whether network policy is enabled on the cluster.

Type

bool

class Provider(value)[source]

Bases: proto.enums.Enum

Allowed Network Policy providers.

Values:
PROVIDER_UNSPECIFIED (0):

Not set

CALICO (1):

Tigera (Calico Felix).

class google.cloud.container_v1beta1.types.NetworkPolicyConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for NetworkPolicy. This only tracks whether the addon is enabled or not on the Master, it does not track whether network policy is enabled for the nodes.

disabled

Whether NetworkPolicy is enabled for this cluster.

Type

bool

class google.cloud.container_v1beta1.types.NetworkTags(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Collection of Compute Engine network tags that can be applied to a node’s underlying VM instance. (See tags field in `NodeConfig </kubernetes-engine/docs/reference/rest/v1/NodeConfig>`__).

tags

List of network tags.

Type

MutableSequence[str]

class google.cloud.container_v1beta1.types.NodeConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Parameters that describe the nodes in a cluster.

GKE Autopilot clusters do not recognize parameters in NodeConfig. Use [AutoprovisioningNodePoolDefaults][google.container.v1beta1.AutoprovisioningNodePoolDefaults] instead.

machine_type

The name of a Google Compute Engine machine type.

If unspecified, the default machine type is e2-medium.

Type

str

disk_size_gb

Size of the disk attached to each node, specified in GB. The smallest allowed disk size is 10GB.

If unspecified, the default disk size is 100GB.

Type

int

oauth_scopes

The set of Google API scopes to be made available on all of the node VMs under the “default” service account.

The following scopes are recommended, but not required, and by default are not included:

  • https://www.googleapis.com/auth/compute is required for mounting persistent storage on your nodes.

  • https://www.googleapis.com/auth/devstorage.read_only is required for communicating with gcr.io (the Google Container Registry).

If unspecified, no scopes are added, unless Cloud Logging or Cloud Monitoring are enabled, in which case their required scopes will be added.

Type

MutableSequence[str]

service_account

The Google Cloud Platform Service Account to be used by the node VMs. Specify the email address of the Service Account; otherwise, if no Service Account is specified, the “default” service account is used.

Type

str

metadata

The metadata key/value pairs assigned to instances in the cluster.

Keys must conform to the regexp [a-zA-Z0-9-_]+ and be less than 128 bytes in length. These are reflected as part of a URL in the metadata server. Additionally, to avoid ambiguity, keys must not conflict with any other metadata keys for the project or be one of the reserved keys:

  • “cluster-location”

  • “cluster-name”

  • “cluster-uid”

  • “configure-sh”

  • “containerd-configure-sh”

  • “enable-oslogin”

  • “gci-ensure-gke-docker”

  • “gci-metrics-enabled”

  • “gci-update-strategy”

  • “instance-template”

  • “kube-env”

  • “startup-script”

  • “user-data”

  • “disable-address-manager”

  • “windows-startup-script-ps1”

  • “common-psm1”

  • “k8s-node-setup-psm1”

  • “install-ssh-psm1”

  • “user-profile-psm1”

Values are free-form strings, and only have meaning as interpreted by the image running in the instance. The only restriction placed on them is that each value’s size must be less than or equal to 32 KB.

The total size of all keys and values must be less than 512 KB.

Type

MutableMapping[str, str]

image_type

The image type to use for this node. Note that for a given image type, the latest version of it will be used. Please see https://cloud.google.com/kubernetes-engine/docs/concepts/node-images for available image types.

Type

str

labels

The map of Kubernetes labels (key/value pairs) to be applied to each node. These will added in addition to any default label(s) that Kubernetes may apply to the node. In case of conflict in label keys, the applied set may differ depending on the Kubernetes version – it’s best to assume the behavior is undefined and conflicts should be avoided. For more information, including usage and the valid values, see:

https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/

Type

MutableMapping[str, str]

local_ssd_count

The number of local SSD disks to be attached to the node. The limit for this value is dependent upon the maximum number of disks available on a machine per zone. See:

https://cloud.google.com/compute/docs/disks/local-ssd for more information.

Type

int

tags

The list of instance tags applied to all nodes. Tags are used to identify valid sources or targets for network firewalls and are specified by the client during cluster or node pool creation. Each tag within the list must comply with RFC1035.

Type

MutableSequence[str]

preemptible

Whether the nodes are created as preemptible VM instances. See: https://cloud.google.com/compute/docs/instances/preemptible for more information about preemptible VM instances.

Type

bool

accelerators

A list of hardware accelerators to be attached to each node. See https://cloud.google.com/compute/docs/gpus for more information about support for GPUs.

Type

MutableSequence[google.cloud.container_v1beta1.types.AcceleratorConfig]

sandbox_config

Sandbox configuration for this node.

Type

google.cloud.container_v1beta1.types.SandboxConfig

node_group

Setting this field will assign instances of this pool to run on the specified node group. This is useful for running workloads on sole tenant nodes.

Type

str

reservation_affinity

The optional reservation affinity. Setting this field will apply the specified Zonal Compute Reservation to this node pool.

Type

google.cloud.container_v1beta1.types.ReservationAffinity

disk_type

Type of the disk attached to each node (e.g. ‘pd-standard’, ‘pd-ssd’ or ‘pd-balanced’)

If unspecified, the default disk type is ‘pd-standard’

Type

str

min_cpu_platform

Minimum CPU platform to be used by this instance. The instance may be scheduled on the specified or newer CPU platform. Applicable values are the friendly names of CPU platforms, such as minCpuPlatform: "Intel Haswell" or minCpuPlatform: "Intel Sandy Bridge". For more information, read how to specify min CPU platform.

Type

str

workload_metadata_config

The workload metadata configuration for this node.

Type

google.cloud.container_v1beta1.types.WorkloadMetadataConfig

taints

List of kubernetes taints to be applied to each node. For more information, including usage and the valid values, see:

https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/

Type

MutableSequence[google.cloud.container_v1beta1.types.NodeTaint]

boot_disk_kms_key

The Customer Managed Encryption Key used to encrypt the boot disk attached to each node in the node pool. This should be of the form projects/[KEY_PROJECT_ID]/locations/[LOCATION]/keyRings/[RING_NAME]/cryptoKeys/[KEY_NAME]. For more information about protecting resources with Cloud KMS Keys please see: https://cloud.google.com/compute/docs/disks/customer-managed-encryption

Type

str

shielded_instance_config

Shielded Instance options.

Type

google.cloud.container_v1beta1.types.ShieldedInstanceConfig

linux_node_config

Parameters that can be configured on Linux nodes.

Type

google.cloud.container_v1beta1.types.LinuxNodeConfig

kubelet_config

Node kubelet configs.

Type

google.cloud.container_v1beta1.types.NodeKubeletConfig

ephemeral_storage_config

Parameters for the ephemeral storage filesystem. If unspecified, ephemeral storage is backed by the boot disk.

Type

google.cloud.container_v1beta1.types.EphemeralStorageConfig

gcfs_config

GCFS (Google Container File System) configs.

Type

google.cloud.container_v1beta1.types.GcfsConfig

advanced_machine_features

Advanced features for the Compute Engine VM.

Type

google.cloud.container_v1beta1.types.AdvancedMachineFeatures

gvnic

Enable or disable gvnic on the node pool.

Type

google.cloud.container_v1beta1.types.VirtualNIC

spot

Spot flag for enabling Spot VM, which is a rebrand of the existing preemptible flag.

Type

bool

confidential_nodes

Confidential nodes config. All the nodes in the node pool will be Confidential VM once enabled.

Type

google.cloud.container_v1beta1.types.ConfidentialNodes

fast_socket

Enable or disable NCCL fast socket for the node pool.

This field is a member of oneof _fast_socket.

Type

google.cloud.container_v1beta1.types.FastSocket

resource_labels

The resource labels for the node pool to use to annotate any related Google Compute Engine resources.

Type

MutableMapping[str, str]

logging_config

Logging configuration.

Type

google.cloud.container_v1beta1.types.NodePoolLoggingConfig

windows_node_config

Parameters that can be configured on Windows nodes.

Type

google.cloud.container_v1beta1.types.WindowsNodeConfig

local_nvme_ssd_block_config

Parameters for using raw-block Local NVMe SSDs.

Type

google.cloud.container_v1beta1.types.LocalNvmeSsdBlockConfig

ephemeral_storage_local_ssd_config

Parameters for the node ephemeral storage using Local SSDs. If unspecified, ephemeral storage is backed by the boot disk. This field is functionally equivalent to the ephemeral_storage_config

Type

google.cloud.container_v1beta1.types.EphemeralStorageLocalSsdConfig

sole_tenant_config

Parameters for node pools to be backed by shared sole tenant node groups.

Type

google.cloud.container_v1beta1.types.SoleTenantConfig

host_maintenance_policy

HostMaintenancePolicy contains the desired maintenance policy for the Google Compute Engine hosts.

Type

google.cloud.container_v1beta1.types.HostMaintenancePolicy

enable_confidential_storage

Optional. Enable confidential storage on Hyperdisk. boot_disk_kms_key is required when enable_confidential_storage is true. This is only available for private preview.

Type

bool

class LabelsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Bases: proto.message.Message

class MetadataEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Bases: proto.message.Message

class ResourceLabelsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Bases: proto.message.Message

class google.cloud.container_v1beta1.types.NodeConfigDefaults(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Subset of NodeConfig message that has defaults.

gcfs_config

GCFS (Google Container File System, also known as Riptide) options.

Type

google.cloud.container_v1beta1.types.GcfsConfig

logging_config

Logging configuration for node pools.

Type

google.cloud.container_v1beta1.types.NodePoolLoggingConfig

host_maintenance_policy

HostMaintenancePolicy contains the desired maintenance policy for the Google Compute Engine hosts.

Type

google.cloud.container_v1beta1.types.HostMaintenancePolicy

class google.cloud.container_v1beta1.types.NodeKubeletConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Node kubelet configs.

cpu_manager_policy

Control the CPU management policy on the node. See https://kubernetes.io/docs/tasks/administer-cluster/cpu-management-policies/

The following values are allowed.

  • “none”: the default, which represents the existing scheduling behavior.

  • “static”: allows pods with certain resource characteristics to be granted increased CPU affinity and exclusivity on the node. The default value is ‘none’ if unspecified.

Type

str

cpu_cfs_quota

Enable CPU CFS quota enforcement for containers that specify CPU limits. This option is enabled by default which makes kubelet use CFS quota (https://www.kernel.org/doc/Documentation/scheduler/sched-bwc.txt) to enforce container CPU limits. Otherwise, CPU limits will not be enforced at all.

Disable this option to mitigate CPU throttling problems while still having your pods to be in Guaranteed QoS class by specifying the CPU limits.

The default value is ‘true’ if unspecified.

Type

google.protobuf.wrappers_pb2.BoolValue

cpu_cfs_quota_period

Set the CPU CFS quota period value ‘cpu.cfs_period_us’.

The string must be a sequence of decimal numbers, each with optional fraction and a unit suffix, such as “300ms”. Valid time units are “ns”, “us” (or “µs”), “ms”, “s”, “m”, “h”. The value must be a positive duration.

Type

str

pod_pids_limit

Set the Pod PID limits. See https://kubernetes.io/docs/concepts/policy/pid-limiting/#pod-pid-limits

Controls the maximum number of processes allowed to run in a pod. The value must be greater than or equal to 1024 and less than 4194304.

Type

int

insecure_kubelet_readonly_port_enabled

Enable or disable Kubelet read only port.

This field is a member of oneof _insecure_kubelet_readonly_port_enabled.

Type

bool

class google.cloud.container_v1beta1.types.NodeLabels(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Collection of node-level Kubernetes labels.

labels

Map of node label keys and node label values.

Type

MutableMapping[str, str]

class LabelsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Bases: proto.message.Message

class google.cloud.container_v1beta1.types.NodeManagement(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

NodeManagement defines the set of node management services turned on for the node pool.

auto_upgrade

Whether the nodes will be automatically upgraded.

Type

bool

auto_repair

Whether the nodes will be automatically repaired.

Type

bool

upgrade_options

Specifies the Auto Upgrade knobs for the node pool.

Type

google.cloud.container_v1beta1.types.AutoUpgradeOptions

class google.cloud.container_v1beta1.types.NodeNetworkConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Parameters for node pool-level network config.

create_pod_range

Input only. Whether to create a new range for pod IPs in this node pool. Defaults are provided for pod_range and pod_ipv4_cidr_block if they are not specified.

If neither create_pod_range or pod_range are specified, the cluster-level default (ip_allocation_policy.cluster_ipv4_cidr_block) is used.

Only applicable if ip_allocation_policy.use_ip_aliases is true.

This field cannot be changed after the node pool has been created.

Type

bool

pod_range

The ID of the secondary range for pod IPs. If create_pod_range is true, this ID is used for the new range. If create_pod_range is false, uses an existing secondary range with this ID.

Only applicable if ip_allocation_policy.use_ip_aliases is true.

This field cannot be changed after the node pool has been created.

Type

str

pod_ipv4_cidr_block

The IP address range for pod IPs in this node pool.

Only applicable if create_pod_range is true.

Set to blank to have a range chosen with the default size.

Set to /netmask (e.g. /14) to have a range chosen with a specific netmask.

Set to a CIDR notation (e.g. 10.96.0.0/14) to pick a specific range to use.

Only applicable if ip_allocation_policy.use_ip_aliases is true.

This field cannot be changed after the node pool has been created.

Type

str

enable_private_nodes

Whether nodes have internal IP addresses only. If enable_private_nodes is not specified, then the value is derived from [cluster.privateClusterConfig.enablePrivateNodes][google.container.v1beta1.PrivateClusterConfig.enablePrivateNodes]

This field is a member of oneof _enable_private_nodes.

Type

bool

network_performance_config

Network bandwidth tier configuration.

This field is a member of oneof _network_performance_config.

Type

google.cloud.container_v1beta1.types.NodeNetworkConfig.NetworkPerformanceConfig

pod_cidr_overprovision_config

[PRIVATE FIELD] Pod CIDR size overprovisioning config for the nodepool.

Pod CIDR size per node depends on max_pods_per_node. By default, the value of max_pods_per_node is rounded off to next power of 2 and we then double that to get the size of pod CIDR block per node. Example: max_pods_per_node of 30 would result in 64 IPs (/26).

This config can disable the doubling of IPs (we still round off to next power of 2) Example: max_pods_per_node of 30 will result in 32 IPs (/27) when overprovisioning is disabled.

Type

google.cloud.container_v1beta1.types.PodCIDROverprovisionConfig

additional_node_network_configs

We specify the additional node networks for this node pool using this list. Each node network corresponds to an additional interface

Type

MutableSequence[google.cloud.container_v1beta1.types.AdditionalNodeNetworkConfig]

additional_pod_network_configs

We specify the additional pod networks for this node pool using this list. Each pod network corresponds to an additional alias IP range for the node

Type

MutableSequence[google.cloud.container_v1beta1.types.AdditionalPodNetworkConfig]

pod_ipv4_range_utilization

Output only. [Output only] The utilization of the IPv4 range for the pod. The ratio is Usage/[Total number of IPs in the secondary range], Usage=numNodesnumZonespodIPsPerNode.

Type

float

class NetworkPerformanceConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration of all network bandwidth tiers

total_egress_bandwidth_tier

Specifies the total network bandwidth tier for the NodePool.

This field is a member of oneof _total_egress_bandwidth_tier.

Type

google.cloud.container_v1beta1.types.NodeNetworkConfig.NetworkPerformanceConfig.Tier

external_ip_egress_bandwidth_tier

Specifies the network bandwidth tier for the NodePool for traffic to external/public IP addresses.

This field is a member of oneof _external_ip_egress_bandwidth_tier.

Type

google.cloud.container_v1beta1.types.NodeNetworkConfig.NetworkPerformanceConfig.Tier

class Tier(value)[source]

Bases: proto.enums.Enum

Node network tier

Values:
TIER_UNSPECIFIED (0):

Default value

TIER_1 (1):

Higher bandwidth, actual values based on VM size.

class google.cloud.container_v1beta1.types.NodePool(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

NodePool contains the name and configuration for a cluster’s node pool. Node pools are a set of nodes (i.e. VM’s), with a common configuration and specification, under the control of the cluster master. They may have a set of Kubernetes labels applied to them, which may be used to reference them during pod scheduling. They may also be resized up or down, to accommodate the workload. These upgrade settings control the level of parallelism and the level of disruption caused by an upgrade.

maxUnavailable controls the number of nodes that can be simultaneously unavailable.

maxSurge controls the number of additional nodes that can be added to the node pool temporarily for the time of the upgrade to increase the number of available nodes.

(maxUnavailable + maxSurge) determines the level of parallelism (how many nodes are being upgraded at the same time).

Note: upgrades inevitably introduce some disruption since workloads need to be moved from old nodes to new, upgraded ones. Even if maxUnavailable=0, this holds true. (Disruption stays within the limits of PodDisruptionBudget, if it is configured.)

Consider a hypothetical node pool with 5 nodes having maxSurge=2, maxUnavailable=1. This means the upgrade process upgrades 3 nodes simultaneously. It creates 2 additional (upgraded) nodes, then it brings down 3 old (not yet upgraded) nodes at the same time. This ensures that there are always at least 4 nodes available.

name

The name of the node pool.

Type

str

config

The node configuration of the pool.

Type

google.cloud.container_v1beta1.types.NodeConfig

initial_node_count

The initial node count for the pool. You must ensure that your Compute Engine resource quota is sufficient for this number of instances. You must also have available firewall and routes quota.

Type

int

locations

The list of Google Compute Engine zones in which the NodePool’s nodes should be located.

If this value is unspecified during node pool creation, the Cluster.Locations value will be used, instead.

Warning: changing node pool locations will result in nodes being added and/or removed.

Type

MutableSequence[str]

network_config

Networking configuration for this NodePool. If specified, it overrides the cluster-level defaults.

Type

google.cloud.container_v1beta1.types.NodeNetworkConfig

[Output only] Server-defined URL for the resource.

Type

str

version

The version of Kubernetes running on this NodePool’s nodes. If unspecified, it defaults as described here.

Type

str

instance_group_urls

[Output only] The resource URLs of the managed instance groups associated with this node pool. During the node pool blue-green upgrade operation, the URLs contain both blue and green resources.

Type

MutableSequence[str]

status

[Output only] The status of the nodes in this pool instance.

Type

google.cloud.container_v1beta1.types.NodePool.Status

status_message

[Output only] Deprecated. Use conditions instead. Additional information about the current status of this node pool instance, if available.

Type

str

autoscaling

Autoscaler configuration for this NodePool. Autoscaler is enabled only if a valid configuration is present.

Type

google.cloud.container_v1beta1.types.NodePoolAutoscaling

management

NodeManagement configuration for this NodePool.

Type

google.cloud.container_v1beta1.types.NodeManagement

max_pods_constraint

The constraint on the maximum number of pods that can be run simultaneously on a node in the node pool.

Type

google.cloud.container_v1beta1.types.MaxPodsConstraint

conditions

Which conditions caused the current node pool state.

Type

MutableSequence[google.cloud.container_v1beta1.types.StatusCondition]

pod_ipv4_cidr_size

[Output only] The pod CIDR block size per node in this node pool.

Type

int

upgrade_settings

Upgrade settings control disruption and speed of the upgrade.

Type

google.cloud.container_v1beta1.types.NodePool.UpgradeSettings

placement_policy

Specifies the node placement policy.

Type

google.cloud.container_v1beta1.types.NodePool.PlacementPolicy

update_info

Output only. [Output only] Update info contains relevant information during a node pool update.

Type

google.cloud.container_v1beta1.types.NodePool.UpdateInfo

etag

This checksum is computed by the server based on the value of node pool fields, and may be sent on update requests to ensure the client has an up-to-date value before proceeding.

Type

str

best_effort_provisioning

Enable best effort provisioning for nodes

Type

google.cloud.container_v1beta1.types.BestEffortProvisioning

class PlacementPolicy(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

PlacementPolicy defines the placement policy used by the node pool.

type_

The type of placement.

Type

google.cloud.container_v1beta1.types.NodePool.PlacementPolicy.Type

tpu_topology

TPU placement topology for pod slice node pool. https://cloud.google.com/tpu/docs/types-topologies#tpu_topologies

Type

str

policy_name

If set, refers to the name of a custom resource policy supplied by the user. The resource policy must be in the same project and region as the node pool. If not found, InvalidArgument error is returned.

Type

str

class Type(value)[source]

Bases: proto.enums.Enum

Type defines the type of placement policy.

Values:
TYPE_UNSPECIFIED (0):

TYPE_UNSPECIFIED specifies no requirements on nodes placement.

COMPACT (1):

COMPACT specifies node placement in the same availability domain to ensure low communication latency.

class Status(value)[source]

Bases: proto.enums.Enum

The current status of the node pool instance.

Values:
STATUS_UNSPECIFIED (0):

Not set.

PROVISIONING (1):

The PROVISIONING state indicates the node pool is being created.

RUNNING (2):

The RUNNING state indicates the node pool has been created and is fully usable.

RUNNING_WITH_ERROR (3):

The RUNNING_WITH_ERROR state indicates the node pool has been created and is partially usable. Some error state has occurred and some functionality may be impaired. Customer may need to reissue a request or trigger a new update.

RECONCILING (4):

The RECONCILING state indicates that some work is actively being done on the node pool, such as upgrading node software. Details can be found in the statusMessage field.

STOPPING (5):

The STOPPING state indicates the node pool is being deleted.

ERROR (6):

The ERROR state indicates the node pool may be unusable. Details can be found in the statusMessage field.

class UpdateInfo(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

UpdateInfo contains resource (instance groups, etc), status and other intermediate information relevant to a node pool upgrade.

blue_green_info

Information of a blue-green upgrade.

Type

google.cloud.container_v1beta1.types.NodePool.UpdateInfo.BlueGreenInfo

class BlueGreenInfo(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Information relevant to blue-green upgrade.

phase

Current blue-green upgrade phase.

Type

google.cloud.container_v1beta1.types.NodePool.UpdateInfo.BlueGreenInfo.Phase

blue_instance_group_urls

The resource URLs of the [managed instance groups] (/compute/docs/instance-groups/creating-groups-of-managed-instances) associated with blue pool.

Type

MutableSequence[str]

green_instance_group_urls

The resource URLs of the [managed instance groups] (/compute/docs/instance-groups/creating-groups-of-managed-instances) associated with green pool.

Type

MutableSequence[str]

blue_pool_deletion_start_time

Time to start deleting blue pool to complete blue-green upgrade, in RFC3339 text format.

Type

str

green_pool_version

Version of green pool.

Type

str

class Phase(value)[source]

Bases: proto.enums.Enum

Phase represents the different stages blue-green upgrade is running in.

Values:
PHASE_UNSPECIFIED (0):

Unspecified phase.

UPDATE_STARTED (1):

blue-green upgrade has been initiated.

CREATING_GREEN_POOL (2):

Start creating green pool nodes.

CORDONING_BLUE_POOL (3):

Start cordoning blue pool nodes.

DRAINING_BLUE_POOL (4):

Start draining blue pool nodes.

NODE_POOL_SOAKING (5):

Start soaking time after draining entire blue pool.

DELETING_BLUE_POOL (6):

Start deleting blue nodes.

ROLLBACK_STARTED (7):

Rollback has been initiated.

class UpgradeSettings(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

These upgrade settings configure the upgrade strategy for the node pool. Use strategy to switch between the strategies applied to the node pool.

If the strategy is SURGE, use max_surge and max_unavailable to control the level of parallelism and the level of disruption caused by upgrade.

  1. maxSurge controls the number of additional nodes that can be added to the node pool temporarily for the time of the upgrade to increase the number of available nodes.

  2. maxUnavailable controls the number of nodes that can be simultaneously unavailable.

  3. (maxUnavailable + maxSurge) determines the level of parallelism (how many nodes are being upgraded at the same time).

If the strategy is BLUE_GREEN, use blue_green_settings to configure the blue-green upgrade related settings.

  1. standard_rollout_policy is the default policy. The policy is used to control the way blue pool gets drained. The draining is executed in the batch mode. The batch size could be specified as either percentage of the node pool size or the number of nodes. batch_soak_duration is the soak time after each batch gets drained.

  2. node_pool_soak_duration is the soak time after all blue nodes are drained. After this period, the blue pool nodes will be deleted.

max_surge

The maximum number of nodes that can be created beyond the current size of the node pool during the upgrade process.

Type

int

max_unavailable

The maximum number of nodes that can be simultaneously unavailable during the upgrade process. A node is considered available if its status is Ready.

Type

int

strategy

Update strategy of the node pool.

This field is a member of oneof _strategy.

Type

google.cloud.container_v1beta1.types.NodePoolUpdateStrategy

blue_green_settings

Settings for blue-green upgrade strategy.

This field is a member of oneof _blue_green_settings.

Type

google.cloud.container_v1beta1.types.BlueGreenSettings

class google.cloud.container_v1beta1.types.NodePoolAutoConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

node pool configs that apply to all auto-provisioned node pools in autopilot clusters and node auto-provisioning enabled clusters

network_tags

The list of instance tags applied to all nodes. Tags are used to identify valid sources or targets for network firewalls and are specified by the client during cluster creation. Each tag within the list must comply with RFC1035.

Type

google.cloud.container_v1beta1.types.NetworkTags

class google.cloud.container_v1beta1.types.NodePoolAutoscaling(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

NodePoolAutoscaling contains information required by cluster autoscaler to adjust the size of the node pool to the current cluster usage.

enabled

Is autoscaling enabled for this node pool.

Type

bool

min_node_count

Minimum number of nodes for one location in the NodePool. Must be >= 1 and <= max_node_count.

Type

int

max_node_count

Maximum number of nodes for one location in the NodePool. Must be >= min_node_count. There has to be enough quota to scale up the cluster.

Type

int

autoprovisioned

Can this node pool be deleted automatically.

Type

bool

location_policy

Location policy used when scaling up a nodepool.

Type

google.cloud.container_v1beta1.types.NodePoolAutoscaling.LocationPolicy

total_min_node_count

Minimum number of nodes in the node pool. Must be greater than 1 less than total_max_node_count. The total_*_node_count fields are mutually exclusive with the *_node_count fields.

Type

int

total_max_node_count

Maximum number of nodes in the node pool. Must be greater than total_min_node_count. There has to be enough quota to scale up the cluster. The total_*_node_count fields are mutually exclusive with the *_node_count fields.

Type

int

class LocationPolicy(value)[source]

Bases: proto.enums.Enum

Location policy specifies how zones are picked when scaling up the nodepool.

Values:
LOCATION_POLICY_UNSPECIFIED (0):

Not set.

BALANCED (1):

BALANCED is a best effort policy that aims to balance the sizes of different zones.

ANY (2):

ANY policy picks zones that have the highest capacity available.

class google.cloud.container_v1beta1.types.NodePoolDefaults(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Subset of Nodepool message that has defaults.

node_config_defaults

Subset of NodeConfig message that has defaults.

Type

google.cloud.container_v1beta1.types.NodeConfigDefaults

class google.cloud.container_v1beta1.types.NodePoolLoggingConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

NodePoolLoggingConfig specifies logging configuration for nodepools.

variant_config

Logging variant configuration.

Type

google.cloud.container_v1beta1.types.LoggingVariantConfig

class google.cloud.container_v1beta1.types.NodePoolUpdateStrategy(value)[source]

Bases: proto.enums.Enum

Strategy used for node pool update.

Values:
NODE_POOL_UPDATE_STRATEGY_UNSPECIFIED (0):

Default value if unset. GKE internally defaults the update strategy to SURGE for unspecified strategies.

BLUE_GREEN (2):

blue-green upgrade.

SURGE (3):

SURGE is the traditional way of upgrading a node pool. max_surge and max_unavailable determines the level of upgrade parallelism.

class google.cloud.container_v1beta1.types.NodeTaint(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Kubernetes taint is composed of three fields: key, value, and effect. Effect can only be one of three types: NoSchedule, PreferNoSchedule or NoExecute.

See here for more information, including usage and the valid values.

key

Key for taint.

Type

str

value

Value for taint.

Type

str

effect

Effect for taint.

Type

google.cloud.container_v1beta1.types.NodeTaint.Effect

class Effect(value)[source]

Bases: proto.enums.Enum

Possible values for Effect in taint.

Values:
EFFECT_UNSPECIFIED (0):

Not set

NO_SCHEDULE (1):

NoSchedule

PREFER_NO_SCHEDULE (2):

PreferNoSchedule

NO_EXECUTE (3):

NoExecute

class google.cloud.container_v1beta1.types.NodeTaints(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Collection of Kubernetes node taints.

taints

List of node taints.

Type

MutableSequence[google.cloud.container_v1beta1.types.NodeTaint]

class google.cloud.container_v1beta1.types.NotificationConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

NotificationConfig is the configuration of notifications.

pubsub

Notification config for Pub/Sub.

Type

google.cloud.container_v1beta1.types.NotificationConfig.PubSub

class EventType(value)[source]

Bases: proto.enums.Enum

Types of notifications currently supported. Can be used to filter what notifications are sent.

Values:
EVENT_TYPE_UNSPECIFIED (0):

Not set, will be ignored.

UPGRADE_AVAILABLE_EVENT (1):

Corresponds with UpgradeAvailableEvent.

UPGRADE_EVENT (2):

Corresponds with UpgradeEvent.

SECURITY_BULLETIN_EVENT (3):

Corresponds with SecurityBulletinEvent.

class Filter(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Allows filtering to one or more specific event types. If event types are present, those and only those event types will be transmitted to the cluster. Other types will be skipped. If no filter is specified, or no event types are present, all event types will be sent

event_type

Event types to allowlist.

Type

MutableSequence[google.cloud.container_v1beta1.types.NotificationConfig.EventType]

class PubSub(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Pub/Sub specific notification config.

enabled

Enable notifications for Pub/Sub.

Type

bool

topic

The desired Pub/Sub topic to which notifications will be sent by GKE. Format is projects/{project}/topics/{topic}.

Type

str

filter

Allows filtering to one or more specific event types. If no filter is specified, or if a filter is specified with no event types, all event types will be sent

Type

google.cloud.container_v1beta1.types.NotificationConfig.Filter

class google.cloud.container_v1beta1.types.Operation(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

This operation resource represents operations that may have happened or are happening on the cluster. All fields are output only.

name

The server-assigned ID for the operation.

Type

str

zone

The name of the Google Compute Engine zone in which the operation is taking place. This field is deprecated, use location instead.

Type

str

operation_type

The operation type.

Type

google.cloud.container_v1beta1.types.Operation.Type

status

The current status of the operation.

Type

google.cloud.container_v1beta1.types.Operation.Status

detail

Detailed operation progress, if available.

Type

str

status_message

Output only. If an error has occurred, a textual description of the error. Deprecated. Use field error instead.

Type

str

Server-defined URI for the operation. Example: https://container.googleapis.com/v1alpha1/projects/123/locations/us-central1/operations/operation-123.

Type

str

Server-defined URI for the target of the operation. The format of this is a URI to the resource being modified (such as a cluster, node pool, or node). For node pool repairs, there may be multiple nodes being repaired, but only one will be the target.

Examples:

https://container.googleapis.com/v1/projects/123/locations/us-central1/clusters/my-cluster

https://container.googleapis.com/v1/projects/123/zones/us-central1-c/clusters/my-cluster/nodePools/my-np

https://container.googleapis.com/v1/projects/123/zones/us-central1-c/clusters/my-cluster/nodePools/my-np/node/my-node

Type

str

location

[Output only] The name of the Google Compute Engine zone or region in which the cluster resides.

Type

str

start_time

[Output only] The time the operation started, in RFC3339 text format.

Type

str

end_time

[Output only] The time the operation completed, in RFC3339 text format.

Type

str

progress

Output only. [Output only] Progress information for an operation.

Type

google.cloud.container_v1beta1.types.OperationProgress

cluster_conditions

Which conditions caused the current cluster state. Deprecated. Use field error instead.

Type

MutableSequence[google.cloud.container_v1beta1.types.StatusCondition]

nodepool_conditions

Which conditions caused the current node pool state. Deprecated. Use field error instead.

Type

MutableSequence[google.cloud.container_v1beta1.types.StatusCondition]

error

The error result of the operation in case of failure.

Type

google.rpc.status_pb2.Status

class Status(value)[source]

Bases: proto.enums.Enum

Current status of the operation.

Values:
STATUS_UNSPECIFIED (0):

Not set.

PENDING (1):

The operation has been created.

RUNNING (2):

The operation is currently running.

DONE (3):

The operation is done, either cancelled or completed.

ABORTING (4):

The operation is aborting.

class Type(value)[source]

Bases: proto.enums.Enum

Operation type categorizes the operation.

Values:
TYPE_UNSPECIFIED (0):

Not set.

CREATE_CLUSTER (1):

The cluster is being created. The cluster should be assumed to be unusable until the operation finishes.

In the event of the operation failing, the cluster will enter the [ERROR state][Cluster.Status.ERROR] and eventually be deleted.

DELETE_CLUSTER (2):

The cluster is being deleted. The cluster should be assumed to be unusable as soon as this operation starts.

In the event of the operation failing, the cluster will enter the [ERROR state][Cluster.Status.ERROR] and the deletion will be automatically retried until completed.

UPGRADE_MASTER (3):

The [cluster version][google.container.v1beta1.ClusterUpdate.desired_master_version] is being updated. Note that this includes “upgrades” to the same version, which are simply a recreation. This also includes auto-upgrades. For more details, see documentation on cluster upgrades.

UPGRADE_NODES (4):

A node pool is being updated. Despite calling this an “upgrade”, this includes most forms of updates to node pools. This also includes auto-upgrades.

This operation sets the [progress][google.container.v1beta1.Operation.progress] field and may be [canceled][google.container.v1beta1.ClusterManager.CancelOperation].

The upgrade strategy depends on node pool configuration. The nodes are generally still usable during this operation.

REPAIR_CLUSTER (5):

A problem has been detected with the control plane and is being repaired. This operation type is initiated by GKE. For more details, see documentation on repairs.

UPDATE_CLUSTER (6):

The cluster is being updated. This is a broad category of operations and includes operations that only change metadata as well as those that must recreate the entire cluster. If the control plane must be recreated, this will cause temporary downtime for zonal clusters.

Some features require recreating the nodes as well. Those will be recreated as separate operations and the update may not be completely functional until the node pools recreations finish. Node recreations will generally follow maintenance policies.

Some GKE-initiated operations use this type. This includes certain types of auto-upgrades and incident mitigations.

CREATE_NODE_POOL (7):

A node pool is being created. The node pool should be assumed to be unusable until this operation finishes. In the event of an error, the node pool may be partially created.

If enabled, node autoprovisioning may have automatically initiated such operations.

DELETE_NODE_POOL (8):

The node pool is being deleted. The node pool should be assumed to be unusable as soon as this operation starts.

SET_NODE_POOL_MANAGEMENT (9):

The node pool’s [manamagent][google.container.v1beta1.NodePool.management] field is being updated. These operations only update metadata and may be concurrent with most other operations.

AUTO_REPAIR_NODES (10):

A problem has been detected with nodes and they are being repaired. This operation type is initiated by GKE, typically automatically. This operation may be concurrent with other operations and there may be multiple repairs occurring on the same node pool.

AUTO_UPGRADE_NODES (11):

Unused. Automatic node upgrade uses [UPGRADE_NODES][google.container.v1beta1.Operation.Type.UPGRADE_NODES].

SET_LABELS (12):

Unused. Updating labels uses [UPDATE_CLUSTER][google.container.v1beta1.Operation.Type.UPDATE_CLUSTER].

SET_MASTER_AUTH (13):

Unused. Updating master auth uses [UPDATE_CLUSTER][google.container.v1beta1.Operation.Type.UPDATE_CLUSTER].

SET_NODE_POOL_SIZE (14):

The node pool is being resized. With the exception of resizing to or from size zero, the node pool is generally usable during this operation.

SET_NETWORK_POLICY (15):

Unused. Updating network policy uses [UPDATE_CLUSTER][google.container.v1beta1.Operation.Type.UPDATE_CLUSTER].

SET_MAINTENANCE_POLICY (16):

Unused. Updating maintenance policy uses [UPDATE_CLUSTER][google.container.v1beta1.Operation.Type.UPDATE_CLUSTER].

RESIZE_CLUSTER (18):

The control plane is being resized. This operation type is initiated by GKE. These operations are often performed preemptively to ensure that the control plane has sufficient resources and is not typically an indication of issues. For more details, see documentation on resizes.

class google.cloud.container_v1beta1.types.OperationProgress(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Information about operation (or operation stage) progress.

name

A non-parameterized string describing an operation stage. Unset for single-stage operations.

Type

str

status

Status of an operation stage. Unset for single-stage operations.

Type

google.cloud.container_v1beta1.types.Operation.Status

metrics

Progress metric bundle, for example: metrics: [{name: “nodes done”, int_value: 15}, {name: “nodes total”, int_value: 32}] or metrics: [{name: “progress”, double_value: 0.56}, {name: “progress scale”, double_value: 1.0}]

Type

MutableSequence[google.cloud.container_v1beta1.types.OperationProgress.Metric]

stages

Substages of an operation or a stage.

Type

MutableSequence[google.cloud.container_v1beta1.types.OperationProgress]

class Metric(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Progress metric is (string, int|float|string) pair.

This message has oneof fields (mutually exclusive fields). For each oneof, at most one member field can be set at the same time. Setting any member of the oneof automatically clears all other members.

name

Required. Metric name, e.g., “nodes total”, “percent done”.

Type

str

int_value

For metrics with integer value.

This field is a member of oneof value.

Type

int

double_value

For metrics with floating point value.

This field is a member of oneof value.

Type

float

string_value

For metrics with custom values (ratios, visual progress, etc.).

This field is a member of oneof value.

Type

str

class google.cloud.container_v1beta1.types.PodCIDROverprovisionConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

[PRIVATE FIELD] Config for pod CIDR size overprovisioning.

disable

Whether Pod CIDR overprovisioning is disabled. Note: Pod CIDR overprovisioning is enabled by default.

Type

bool

class google.cloud.container_v1beta1.types.PodSecurityPolicyConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for the PodSecurityPolicy feature.

enabled

Enable the PodSecurityPolicy controller for this cluster. If enabled, pods must be valid under a PodSecurityPolicy to be created.

Type

bool

class google.cloud.container_v1beta1.types.PrivateClusterConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration options for private clusters.

enable_private_nodes

Whether nodes have internal IP addresses only. If enabled, all nodes are given only RFC 1918 private addresses and communicate with the master via private networking.

Type

bool

enable_private_endpoint

Whether the master’s internal IP address is used as the cluster endpoint.

Type

bool

master_ipv4_cidr_block

The IP range in CIDR notation to use for the hosted master network. This range will be used for assigning internal IP addresses to the master or set of masters, as well as the ILB VIP. This range must not overlap with any other ranges in use within the cluster’s network.

Type

str

private_endpoint

Output only. The internal IP address of this cluster’s master endpoint.

Type

str

public_endpoint

Output only. The external IP address of this cluster’s master endpoint.

Type

str

peering_name

Output only. The peering name in the customer VPC used by this cluster.

Type

str

master_global_access_config

Controls master global access settings.

Type

google.cloud.container_v1beta1.types.PrivateClusterMasterGlobalAccessConfig

private_endpoint_subnetwork

Subnet to provision the master’s private endpoint during cluster creation. Specified in projects//regions//subnetworks/* format.

Type

str

class google.cloud.container_v1beta1.types.PrivateClusterMasterGlobalAccessConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for controlling master global access settings.

enabled

Whenever master is accessible globally or not.

Type

bool

class google.cloud.container_v1beta1.types.PrivateIPv6GoogleAccess(value)[source]

Bases: proto.enums.Enum

PrivateIPv6GoogleAccess controls whether and how the pods can communicate with Google Services through gRPC over IPv6.

Values:
PRIVATE_IPV6_GOOGLE_ACCESS_UNSPECIFIED (0):

Default value. Same as DISABLED

PRIVATE_IPV6_GOOGLE_ACCESS_DISABLED (1):

No private access to or from Google Services

PRIVATE_IPV6_GOOGLE_ACCESS_TO_GOOGLE (2):

Enables private IPv6 access to Google Services from GKE

PRIVATE_IPV6_GOOGLE_ACCESS_BIDIRECTIONAL (3):

Enables private IPv6 access to and from Google Services

class google.cloud.container_v1beta1.types.ProtectConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ProtectConfig defines the flags needed to enable/disable features for the Protect API.

workload_config

WorkloadConfig defines which actions are enabled for a cluster’s workload configurations.

This field is a member of oneof _workload_config.

Type

google.cloud.container_v1beta1.types.WorkloadConfig

workload_vulnerability_mode

Sets which mode to use for Protect workload vulnerability scanning feature.

This field is a member of oneof _workload_vulnerability_mode.

Type

google.cloud.container_v1beta1.types.ProtectConfig.WorkloadVulnerabilityMode

class WorkloadVulnerabilityMode(value)[source]

Bases: proto.enums.Enum

WorkloadVulnerabilityMode defines mode to perform vulnerability scanning.

Values:
WORKLOAD_VULNERABILITY_MODE_UNSPECIFIED (0):

Default value not specified.

DISABLED (1):

Disables Workload Vulnerability Scanning feature on the cluster.

BASIC (2):

Applies basic vulnerability scanning settings for cluster workloads.

class google.cloud.container_v1beta1.types.RangeInfo(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

RangeInfo contains the range name and the range utilization by this cluster.

range_name

Output only. [Output only] Name of a range.

Type

str

utilization

Output only. [Output only] The utilization of the range.

Type

float

class google.cloud.container_v1beta1.types.RecurringTimeWindow(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Represents an arbitrary window of time that recurs.

window

The window of the first recurrence.

Type

google.cloud.container_v1beta1.types.TimeWindow

recurrence

An RRULE (https://tools.ietf.org/html/rfc5545#section-3.8.5.3) for how this window reccurs. They go on for the span of time between the start and end time.

For example, to have something repeat every weekday, you’d use: FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR

To repeat some window daily (equivalent to the DailyMaintenanceWindow): FREQ=DAILY

For the first weekend of every month: FREQ=MONTHLY;BYSETPOS=1;BYDAY=SA,SU

This specifies how frequently the window starts. Eg, if you wanted to have a 9-5 UTC-4 window every weekday, you’d use something like:

start time = 2019-01-01T09:00:00-0400
end time = 2019-01-01T17:00:00-0400
recurrence = FREQ=WEEKLY;BYDAY=MO,TU,WE,TH,FR

Windows can span multiple days. Eg, to make the window encompass every weekend from midnight Saturday till the last minute of Sunday UTC:

start time = 2019-01-05T00:00:00Z
end time = 2019-01-07T23:59:00Z
recurrence = FREQ=WEEKLY;BYDAY=SA

Note the start and end time’s specific dates are largely arbitrary except to specify duration of the window and when it first starts. The FREQ values of HOURLY, MINUTELY, and SECONDLY are not supported.

Type

str

class google.cloud.container_v1beta1.types.ReleaseChannel(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ReleaseChannel indicates which release channel a cluster is subscribed to. Release channels are arranged in order of risk.

When a cluster is subscribed to a release channel, Google maintains both the master version and the node version. Node auto-upgrade defaults to true and cannot be disabled.

channel

channel specifies which release channel the cluster is subscribed to.

Type

google.cloud.container_v1beta1.types.ReleaseChannel.Channel

class Channel(value)[source]

Bases: proto.enums.Enum

Possible values for ‘channel’.

Values:
UNSPECIFIED (0):

No channel specified.

RAPID (1):

RAPID channel is offered on an early access basis for customers who want to test new releases.

WARNING: Versions available in the RAPID Channel may be subject to unresolved issues with no known workaround and are not subject to any SLAs.

REGULAR (2):

Clusters subscribed to REGULAR receive versions that are considered GA quality. REGULAR is intended for production users who want to take advantage of new features.

STABLE (3):

Clusters subscribed to STABLE receive versions that are known to be stable and reliable in production.

class google.cloud.container_v1beta1.types.ReservationAffinity(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ReservationAffinity is the configuration of desired reservation which instances could take capacity from.

consume_reservation_type

Corresponds to the type of reservation consumption.

Type

google.cloud.container_v1beta1.types.ReservationAffinity.Type

key

Corresponds to the label key of a reservation resource. To target a SPECIFIC_RESERVATION by name, specify “compute.googleapis.com/reservation-name” as the key and specify the name of your reservation as its value.

Type

str

values

Corresponds to the label value(s) of reservation resource(s).

Type

MutableSequence[str]

class Type(value)[source]

Bases: proto.enums.Enum

Indicates whether to consume capacity from a reservation or not.

Values:
UNSPECIFIED (0):

Default value. This should not be used.

NO_RESERVATION (1):

Do not consume from any reserved capacity.

ANY_RESERVATION (2):

Consume any reservation available.

SPECIFIC_RESERVATION (3):

Must consume from a specific reservation. Must specify key value fields for specifying the reservations.

class google.cloud.container_v1beta1.types.ResourceLabels(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Collection of GCP labels.

labels

Map of node label keys and node label values.

Type

MutableMapping[str, str]

class LabelsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Bases: proto.message.Message

class google.cloud.container_v1beta1.types.ResourceLimit(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Contains information about amount of some resource in the cluster. For memory, value should be in GB.

resource_type

Resource name “cpu”, “memory” or gpu-specific string.

Type

str

minimum

Minimum amount of the resource in the cluster.

Type

int

maximum

Maximum amount of the resource in the cluster.

Type

int

class google.cloud.container_v1beta1.types.ResourceUsageExportConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for exporting cluster resource usages.

bigquery_destination

Configuration to use BigQuery as usage export destination.

Type

google.cloud.container_v1beta1.types.ResourceUsageExportConfig.BigQueryDestination

enable_network_egress_metering

Whether to enable network egress metering for this cluster. If enabled, a daemonset will be created in the cluster to meter network egress traffic.

Type

bool

consumption_metering_config

Configuration to enable resource consumption metering.

Type

google.cloud.container_v1beta1.types.ResourceUsageExportConfig.ConsumptionMeteringConfig

class BigQueryDestination(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Parameters for using BigQuery as the destination of resource usage export.

dataset_id

The ID of a BigQuery Dataset.

Type

str

class ConsumptionMeteringConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Parameters for controlling consumption metering.

enabled

Whether to enable consumption metering for this cluster. If enabled, a second BigQuery table will be created to hold resource consumption records.

Type

bool

class google.cloud.container_v1beta1.types.RollbackNodePoolUpgradeRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

RollbackNodePoolUpgradeRequest rollbacks the previously Aborted or Failed NodePool upgrade. This will be an no-op if the last upgrade successfully completed.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to rollback. This field has been deprecated and replaced by the name field.

Type

str

node_pool_id

Required. Deprecated. The name of the node pool to rollback. This field has been deprecated and replaced by the name field.

Type

str

name

The name (project, location, cluster, node pool id) of the node poll to rollback upgrade. Specified in the format projects/*/locations/*/clusters/*/nodePools/*.

Type

str

respect_pdb

Option for rollback to ignore the PodDisruptionBudget. Default value is false.

Type

bool

class google.cloud.container_v1beta1.types.SandboxConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SandboxConfig contains configurations of the sandbox to use for the node.

sandbox_type

Type of the sandbox to use for the node (e.g. ‘gvisor’)

Type

str

type_

Type of the sandbox to use for the node.

Type

google.cloud.container_v1beta1.types.SandboxConfig.Type

class Type(value)[source]

Bases: proto.enums.Enum

Possible types of sandboxes.

Values:
UNSPECIFIED (0):

Default value. This should not be used.

GVISOR (1):

Run sandbox using gvisor.

class google.cloud.container_v1beta1.types.SecurityBulletinEvent(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SecurityBulletinEvent is a notification sent to customers when a security bulletin has been posted that they are vulnerable to.

resource_type_affected

The resource type (node/control plane) that has the vulnerability. Multiple notifications (1 notification per resource type) will be sent for a vulnerability that affects > 1 resource type.

Type

str

bulletin_id

The ID of the bulletin corresponding to the vulnerability.

Type

str

cve_ids

The CVEs associated with this bulletin.

Type

MutableSequence[str]

severity

The severity of this bulletin as it relates to GKE.

Type

str

bulletin_uri

The URI link to the bulletin on the website for more information.

Type

str

brief_description

A brief description of the bulletin. See the bulletin pointed to by the bulletin_uri field for an expanded description.

Type

str

affected_supported_minors

The GKE minor versions affected by this vulnerability.

Type

MutableSequence[str]

patched_versions

The GKE versions where this vulnerability is patched.

Type

MutableSequence[str]

suggested_upgrade_target

This represents a version selected from the patched_versions field that the cluster receiving this notification should most likely want to upgrade to based on its current version. Note that if this notification is being received by a given cluster, it means that this version is currently available as an upgrade target in that cluster’s location.

Type

str

manual_steps_required

If this field is specified, it means there are manual steps that the user must take to make their clusters safe.

Type

bool

class google.cloud.container_v1beta1.types.SecurityPostureConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SecurityPostureConfig defines the flags needed to enable/disable features for the Security Posture API.

mode

Sets which mode to use for Security Posture features.

This field is a member of oneof _mode.

Type

google.cloud.container_v1beta1.types.SecurityPostureConfig.Mode

vulnerability_mode

Sets which mode to use for vulnerability scanning.

This field is a member of oneof _vulnerability_mode.

Type

google.cloud.container_v1beta1.types.SecurityPostureConfig.VulnerabilityMode

class Mode(value)[source]

Bases: proto.enums.Enum

Mode defines enablement mode for GKE Security posture features.

Values:
MODE_UNSPECIFIED (0):

Default value not specified.

DISABLED (1):

Disables Security Posture features on the cluster.

BASIC (2):

Applies Security Posture features on the cluster.

class VulnerabilityMode(value)[source]

Bases: proto.enums.Enum

VulnerabilityMode defines enablement mode for vulnerability scanning.

Values:
VULNERABILITY_MODE_UNSPECIFIED (0):

Default value not specified.

VULNERABILITY_DISABLED (1):

Disables vulnerability scanning on the cluster.

VULNERABILITY_BASIC (2):

Applies basic vulnerability scanning on the cluster.

VULNERABILITY_ENTERPRISE (3):

Applies the Security Posture’s vulnerability on cluster Enterprise level features.

class google.cloud.container_v1beta1.types.ServerConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Kubernetes Engine service configuration.

default_cluster_version

Version of Kubernetes the service deploys by default.

Type

str

valid_node_versions

List of valid node upgrade target versions, in descending order.

Type

MutableSequence[str]

default_image_type

Default image type.

Type

str

valid_image_types

List of valid image types.

Type

MutableSequence[str]

valid_master_versions

List of valid master versions, in descending order.

Type

MutableSequence[str]

channels

List of release channel configurations.

Type

MutableSequence[google.cloud.container_v1beta1.types.ServerConfig.ReleaseChannelConfig]

windows_version_maps

Maps of Kubernetes version and supported Windows server versions.

Type

MutableMapping[str, google.cloud.container_v1beta1.types.WindowsVersions]

class ReleaseChannelConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

ReleaseChannelConfig exposes configuration for a release channel.

channel

The release channel this configuration applies to.

Type

google.cloud.container_v1beta1.types.ReleaseChannel.Channel

default_version

The default version for newly created clusters on the channel.

Type

str

available_versions

Deprecated. This field has been deprecated and replaced with the valid_versions field.

Type

MutableSequence[google.cloud.container_v1beta1.types.ServerConfig.ReleaseChannelConfig.AvailableVersion]

valid_versions

List of valid versions for the channel.

Type

MutableSequence[str]

class AvailableVersion(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Deprecated.

version

Kubernetes version.

Type

str

reason

Reason for availability.

Type

str

class WindowsVersionMapsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Bases: proto.message.Message

class google.cloud.container_v1beta1.types.ServiceExternalIPsConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Config to block services with externalIPs field.

enabled

Whether Services with ExternalIPs field are allowed or not.

Type

bool

class google.cloud.container_v1beta1.types.SetAddonsConfigRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetAddonsRequest sets the addons associated with the cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to upgrade. This field has been deprecated and replaced by the name field.

Type

str

addons_config

Required. The desired configurations for the various addons available to run in the cluster.

Type

google.cloud.container_v1beta1.types.AddonsConfig

name

The name (project, location, cluster) of the cluster to set addons. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.SetLabelsRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetLabelsRequest sets the Google Cloud Platform labels on a Google Container Engine cluster, which will in turn set them for Google Compute Engine resources used by that cluster

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster. This field has been deprecated and replaced by the name field.

Type

str

resource_labels

Required. The labels to set for that cluster.

Type

MutableMapping[str, str]

label_fingerprint

Required. The fingerprint of the previous set of labels for this resource, used to detect conflicts. The fingerprint is initially generated by Kubernetes Engine and changes after every request to modify or update labels. You must always provide an up-to-date fingerprint hash when updating or changing labels. Make a get() request to the resource to get the latest fingerprint.

Type

str

name

The name (project, location, cluster name) of the cluster to set labels. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class ResourceLabelsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Bases: proto.message.Message

class google.cloud.container_v1beta1.types.SetLegacyAbacRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetLegacyAbacRequest enables or disables the ABAC authorization mechanism for a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to update. This field has been deprecated and replaced by the name field.

Type

str

enabled

Required. Whether ABAC authorization will be enabled in the cluster.

Type

bool

name

The name (project, location, cluster name) of the cluster to set legacy abac. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.SetLocationsRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetLocationsRequest sets the locations of the cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to upgrade. This field has been deprecated and replaced by the name field.

Type

str

locations

Required. The desired list of Google Compute Engine zones in which the cluster’s nodes should be located. Changing the locations a cluster is in will result in nodes being either created or removed from the cluster, depending on whether locations are being added or removed.

This list must always include the cluster’s primary zone.

Type

MutableSequence[str]

name

The name (project, location, cluster) of the cluster to set locations. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.SetLoggingServiceRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetLoggingServiceRequest sets the logging service of a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to upgrade. This field has been deprecated and replaced by the name field.

Type

str

logging_service

Required. The logging service the cluster should use to write logs. Currently available options:

  • logging.googleapis.com/kubernetes - The Cloud Logging service with a Kubernetes-native resource model

  • logging.googleapis.com - The legacy Cloud Logging service (no longer available as of GKE 1.15).

  • none - no logs will be exported from the cluster.

If left as an empty string,logging.googleapis.com/kubernetes will be used for GKE 1.14+ or logging.googleapis.com for earlier versions.

Type

str

name

The name (project, location, cluster) of the cluster to set logging. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.SetMaintenancePolicyRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetMaintenancePolicyRequest sets the maintenance policy for a cluster.

project_id

Required. The Google Developers Console project ID or project number.

Type

str

zone

Required. The name of the Google Compute Engine zone in which the cluster resides.

Type

str

cluster_id

Required. The name of the cluster to update.

Type

str

maintenance_policy

Required. The maintenance policy to be set for the cluster. An empty field clears the existing maintenance policy.

Type

google.cloud.container_v1beta1.types.MaintenancePolicy

name

The name (project, location, cluster name) of the cluster to set maintenance policy. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.SetMasterAuthRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetMasterAuthRequest updates the admin password of a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to upgrade. This field has been deprecated and replaced by the name field.

Type

str

action

Required. The exact form of action to be taken on the master auth.

Type

google.cloud.container_v1beta1.types.SetMasterAuthRequest.Action

update

Required. A description of the update.

Type

google.cloud.container_v1beta1.types.MasterAuth

name

The name (project, location, cluster) of the cluster to set auth. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class Action(value)[source]

Bases: proto.enums.Enum

Operation type: what type update to perform.

Values:
UNKNOWN (0):

Operation is unknown and will error out.

SET_PASSWORD (1):

Set the password to a user generated value.

GENERATE_PASSWORD (2):

Generate a new password and set it to that.

SET_USERNAME (3):

Set the username. If an empty username is provided, basic authentication is disabled for the cluster. If a non-empty username is provided, basic authentication is enabled, with either a provided password or a generated one.

class google.cloud.container_v1beta1.types.SetMonitoringServiceRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetMonitoringServiceRequest sets the monitoring service of a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to upgrade. This field has been deprecated and replaced by the name field.

Type

str

monitoring_service

Required. The monitoring service the cluster should use to write metrics. Currently available options:

  • “monitoring.googleapis.com/kubernetes” - The Cloud Monitoring service with a Kubernetes-native resource model

  • monitoring.googleapis.com - The legacy Cloud Monitoring service (no longer available as of GKE 1.15).

  • none - No metrics will be exported from the cluster.

If left as an empty string,monitoring.googleapis.com/kubernetes will be used for GKE 1.14+ or monitoring.googleapis.com for earlier versions.

Type

str

name

The name (project, location, cluster) of the cluster to set monitoring. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.SetNetworkPolicyRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetNetworkPolicyRequest enables/disables network policy for a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster. This field has been deprecated and replaced by the name field.

Type

str

network_policy

Required. Configuration options for the NetworkPolicy feature.

Type

google.cloud.container_v1beta1.types.NetworkPolicy

name

The name (project, location, cluster name) of the cluster to set networking policy. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.SetNodePoolAutoscalingRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetNodePoolAutoscalingRequest sets the autoscaler settings of a node pool.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to upgrade. This field has been deprecated and replaced by the name field.

Type

str

node_pool_id

Required. Deprecated. The name of the node pool to upgrade. This field has been deprecated and replaced by the name field.

Type

str

autoscaling

Required. Autoscaling configuration for the node pool.

Type

google.cloud.container_v1beta1.types.NodePoolAutoscaling

name

The name (project, location, cluster, node pool) of the node pool to set autoscaler settings. Specified in the format projects/*/locations/*/clusters/*/nodePools/*.

Type

str

class google.cloud.container_v1beta1.types.SetNodePoolManagementRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetNodePoolManagementRequest sets the node management properties of a node pool.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to update. This field has been deprecated and replaced by the name field.

Type

str

node_pool_id

Required. Deprecated. The name of the node pool to update. This field has been deprecated and replaced by the name field.

Type

str

management

Required. NodeManagement configuration for the node pool.

Type

google.cloud.container_v1beta1.types.NodeManagement

name

The name (project, location, cluster, node pool id) of the node pool to set management properties. Specified in the format projects/*/locations/*/clusters/*/nodePools/*.

Type

str

class google.cloud.container_v1beta1.types.SetNodePoolSizeRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetNodePoolSizeRequest sets the size of a node pool.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to update. This field has been deprecated and replaced by the name field.

Type

str

node_pool_id

Required. Deprecated. The name of the node pool to update. This field has been deprecated and replaced by the name field.

Type

str

node_count

Required. The desired node count for the pool.

Type

int

name

The name (project, location, cluster, node pool id) of the node pool to set size. Specified in the format projects/*/locations/*/clusters/*/nodePools/*.

Type

str

class google.cloud.container_v1beta1.types.ShieldedInstanceConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

A set of Shielded Instance options.

enable_secure_boot

Defines whether the instance has Secure Boot enabled. Secure Boot helps ensure that the system only runs authentic software by verifying the digital signature of all boot components, and halting the boot process if signature verification fails.

Type

bool

enable_integrity_monitoring

Defines whether the instance has integrity monitoring enabled. Enables monitoring and attestation of the boot integrity of the instance. The attestation is performed against the integrity policy baseline. This baseline is initially derived from the implicitly trusted boot image when the instance is created.

Type

bool

class google.cloud.container_v1beta1.types.ShieldedNodes(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration of Shielded Nodes feature.

enabled

Whether Shielded Nodes features are enabled on all nodes in this cluster.

Type

bool

class google.cloud.container_v1beta1.types.SoleTenantConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SoleTenantConfig contains the NodeAffinities to specify what shared sole tenant node groups should back the node pool.

node_affinities

NodeAffinities used to match to a shared sole tenant node group.

Type

MutableSequence[google.cloud.container_v1beta1.types.SoleTenantConfig.NodeAffinity]

class NodeAffinity(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Specifies the NodeAffinity key, values, and affinity operator according to shared sole tenant node group affinities.

key

Key for NodeAffinity.

Type

str

operator

Operator for NodeAffinity.

Type

google.cloud.container_v1beta1.types.SoleTenantConfig.NodeAffinity.Operator

values

Values for NodeAffinity.

Type

MutableSequence[str]

class Operator(value)[source]

Bases: proto.enums.Enum

Operator allows user to specify affinity or anti-affinity for the given key values.

Values:
OPERATOR_UNSPECIFIED (0):

Invalid or unspecified affinity operator.

IN (1):

Affinity operator.

NOT_IN (2):

Anti-affinity operator.

class google.cloud.container_v1beta1.types.StackType(value)[source]

Bases: proto.enums.Enum

Possible values for IP stack type

Values:
STACK_TYPE_UNSPECIFIED (0):

By default, the clusters will be IPV4 only

IPV4 (1):

The value used if the cluster is a IPV4 only

IPV4_IPV6 (2):

The value used if the cluster is a dual stack cluster

class google.cloud.container_v1beta1.types.StartIPRotationRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

StartIPRotationRequest creates a new IP for the cluster and then performs a node upgrade on each node pool to point to the new IP.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster. This field has been deprecated and replaced by the name field.

Type

str

name

The name (project, location, cluster name) of the cluster to start IP rotation. Specified in the format projects/*/locations/*/clusters/*.

Type

str

rotate_credentials

Whether to rotate credentials during IP rotation.

Type

bool

class google.cloud.container_v1beta1.types.StatusCondition(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

StatusCondition describes why a cluster or a node pool has a certain status (e.g., ERROR or DEGRADED).

code

Machine-friendly representation of the condition Deprecated. Use canonical_code instead.

Type

google.cloud.container_v1beta1.types.StatusCondition.Code

message

Human-friendly representation of the condition

Type

str

canonical_code

Canonical code of the condition.

Type

google.rpc.code_pb2.Code

class Code(value)[source]

Bases: proto.enums.Enum

Code for each condition

Values:
UNKNOWN (0):

UNKNOWN indicates a generic condition.

GCE_STOCKOUT (1):

GCE_STOCKOUT indicates that Google Compute Engine resources are temporarily unavailable.

GKE_SERVICE_ACCOUNT_DELETED (2):

GKE_SERVICE_ACCOUNT_DELETED indicates that the user deleted their robot service account.

GCE_QUOTA_EXCEEDED (3):

Google Compute Engine quota was exceeded.

SET_BY_OPERATOR (4):

Cluster state was manually changed by an SRE due to a system logic error.

CLOUD_KMS_KEY_ERROR (7):

Unable to perform an encrypt operation against the CloudKMS key used for etcd level encryption.

CA_EXPIRING (9):

Cluster CA is expiring soon. More codes TBA

class google.cloud.container_v1beta1.types.TimeWindow(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Represents an arbitrary window of time.

maintenance_exclusion_options

MaintenanceExclusionOptions provides maintenance exclusion related options.

This field is a member of oneof options.

Type

google.cloud.container_v1beta1.types.MaintenanceExclusionOptions

start_time

The time that the window first starts.

Type

google.protobuf.timestamp_pb2.Timestamp

end_time

The time that the window ends. The end time should take place after the start time.

Type

google.protobuf.timestamp_pb2.Timestamp

class google.cloud.container_v1beta1.types.TpuConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for Cloud TPU.

enabled

Whether Cloud TPU integration is enabled or not.

Type

bool

use_service_networking

Whether to use service networking for Cloud TPU or not.

Type

bool

ipv4_cidr_block

IPv4 CIDR block reserved for Cloud TPU in the VPC.

Type

str

class google.cloud.container_v1beta1.types.UpdateClusterRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

UpdateClusterRequest updates the settings of a cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to upgrade. This field has been deprecated and replaced by the name field.

Type

str

update

Required. A description of the update.

Type

google.cloud.container_v1beta1.types.ClusterUpdate

name

The name (project, location, cluster) of the cluster to update. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.UpdateMasterRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

UpdateMasterRequest updates the master of the cluster.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to upgrade. This field has been deprecated and replaced by the name field.

Type

str

master_version

Required. The Kubernetes version to change the master to. Users may specify either explicit versions offered by Kubernetes Engine or version aliases, which have the following behavior:

  • “latest”: picks the highest valid Kubernetes version

  • “1.X”: picks the highest valid patch+gke.N patch in the 1.X version

  • “1.X.Y”: picks the highest valid gke.N patch in the 1.X.Y version

  • “1.X.Y-gke.N”: picks an explicit Kubernetes version

  • “-”: picks the default Kubernetes version

Type

str

name

The name (project, location, cluster) of the cluster to update. Specified in the format projects/*/locations/*/clusters/*.

Type

str

class google.cloud.container_v1beta1.types.UpdateNodePoolRequest(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

SetNodePoolVersionRequest updates the version of a node pool.

project_id

Required. Deprecated. The Google Developers Console project ID or project number. This field has been deprecated and replaced by the name field.

Type

str

zone

Required. Deprecated. The name of the Google Compute Engine zone in which the cluster resides. This field has been deprecated and replaced by the name field.

Type

str

cluster_id

Required. Deprecated. The name of the cluster to upgrade. This field has been deprecated and replaced by the name field.

Type

str

node_pool_id

Required. Deprecated. The name of the node pool to upgrade. This field has been deprecated and replaced by the name field.

Type

str

node_version

Required. The Kubernetes version to change the nodes to (typically an upgrade).

Users may specify either explicit versions offered by Kubernetes Engine or version aliases, which have the following behavior:

  • “latest”: picks the highest valid Kubernetes version

  • “1.X”: picks the highest valid patch+gke.N patch in the 1.X version

  • “1.X.Y”: picks the highest valid gke.N patch in the 1.X.Y version

  • “1.X.Y-gke.N”: picks an explicit Kubernetes version

  • “-”: picks the Kubernetes master version

Type

str

image_type

Required. The desired image type for the node pool. Please see https://cloud.google.com/kubernetes-engine/docs/concepts/node-images for available image types.

Type

str

locations

The desired list of Google Compute Engine zones in which the node pool’s nodes should be located. Changing the locations for a node pool will result in nodes being either created or removed from the node pool, depending on whether locations are being added or removed.

Type

MutableSequence[str]

workload_metadata_config

The desired workload metadata config for the node pool.

Type

google.cloud.container_v1beta1.types.WorkloadMetadataConfig

name

The name (project, location, cluster, node pool) of the node pool to update. Specified in the format projects/*/locations/*/clusters/*/nodePools/*.

Type

str

upgrade_settings

Upgrade settings control disruption and speed of the upgrade.

Type

google.cloud.container_v1beta1.types.NodePool.UpgradeSettings

tags

The desired network tags to be applied to all nodes in the node pool. If this field is not present, the tags will not be changed. Otherwise, the existing network tags will be replaced with the provided tags.

Type

google.cloud.container_v1beta1.types.NetworkTags

taints

The desired node taints to be applied to all nodes in the node pool. If this field is not present, the taints will not be changed. Otherwise, the existing node taints will be replaced with the provided taints.

Type

google.cloud.container_v1beta1.types.NodeTaints

labels

The desired node labels to be applied to all nodes in the node pool. If this field is not present, the labels will not be changed. Otherwise, the existing node labels will be replaced with the provided labels.

Type

google.cloud.container_v1beta1.types.NodeLabels

linux_node_config

Parameters that can be configured on Linux nodes.

Type

google.cloud.container_v1beta1.types.LinuxNodeConfig

kubelet_config

Node kubelet configs.

Type

google.cloud.container_v1beta1.types.NodeKubeletConfig

node_network_config

Node network config.

Type

google.cloud.container_v1beta1.types.NodeNetworkConfig

gcfs_config

GCFS config.

Type

google.cloud.container_v1beta1.types.GcfsConfig

confidential_nodes

Confidential nodes config. All the nodes in the node pool will be Confidential VM once enabled.

Type

google.cloud.container_v1beta1.types.ConfidentialNodes

gvnic

Enable or disable gvnic on the node pool.

Type

google.cloud.container_v1beta1.types.VirtualNIC

etag

The current etag of the node pool. If an etag is provided and does not match the current etag of the node pool, update will be blocked and an ABORTED error will be returned.

Type

str

fast_socket

Enable or disable NCCL fast socket for the node pool.

Type

google.cloud.container_v1beta1.types.FastSocket

logging_config

Logging configuration.

Type

google.cloud.container_v1beta1.types.NodePoolLoggingConfig

resource_labels

The resource labels for the node pool to use to annotate any related Google Compute Engine resources.

Type

google.cloud.container_v1beta1.types.ResourceLabels

windows_node_config

Parameters that can be configured on Windows nodes.

Type

google.cloud.container_v1beta1.types.WindowsNodeConfig

machine_type

Optional. The desired machine type for nodes in the node pool. Initiates an upgrade operation that migrates the nodes in the node pool to the specified machine type.

Type

str

disk_type

Optional. The desired disk type for nodes in the node pool. Initiates an upgrade operation that migrates the nodes in the node pool to the specified disk type.

Type

str

disk_size_gb

Optional. The desired disk size for nodes in the node pool. Initiates an upgrade operation that migrates the nodes in the node pool to the specified disk size.

Type

int

class google.cloud.container_v1beta1.types.UpgradeAvailableEvent(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

UpgradeAvailableEvent is a notification sent to customers when a new available version is released.

version

The release version available for upgrade.

Type

str

resource_type

The resource type of the release version.

Type

google.cloud.container_v1beta1.types.UpgradeResourceType

release_channel

The release channel of the version. If empty, it means a non-channel release.

Type

google.cloud.container_v1beta1.types.ReleaseChannel

resource

Optional relative path to the resource. For example, the relative path of the node pool.

Type

str

windows_versions

Windows node versions info.

Type

google.cloud.container_v1beta1.types.WindowsVersions

class google.cloud.container_v1beta1.types.UpgradeEvent(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

UpgradeEvent is a notification sent to customers by the cluster server when a resource is upgrading.

resource_type

The resource type that is upgrading.

Type

google.cloud.container_v1beta1.types.UpgradeResourceType

operation

The operation associated with this upgrade.

Type

str

operation_start_time

The time when the operation was started.

Type

google.protobuf.timestamp_pb2.Timestamp

current_version

The current version before the upgrade.

Type

str

target_version

The target version for the upgrade.

Type

str

resource

Optional relative path to the resource. For example in node pool upgrades, the relative path of the node pool.

Type

str

class google.cloud.container_v1beta1.types.UpgradeResourceType(value)[source]

Bases: proto.enums.Enum

UpgradeResourceType is the resource type that is upgrading. It is used in upgrade notifications.

Values:
UPGRADE_RESOURCE_TYPE_UNSPECIFIED (0):

Default value. This shouldn’t be used.

MASTER (1):

Master / control plane

NODE_POOL (2):

Node pool

class google.cloud.container_v1beta1.types.UsableSubnetwork(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

UsableSubnetwork resource returns the subnetwork name, its associated network and the primary CIDR range.

subnetwork

Subnetwork Name. Example: projects/my-project/regions/us-central1/subnetworks/my-subnet

Type

str

network

Network Name. Example: projects/my-project/global/networks/my-network

Type

str

ip_cidr_range

The range of internal addresses that are owned by this subnetwork.

Type

str

secondary_ip_ranges

Secondary IP ranges.

Type

MutableSequence[google.cloud.container_v1beta1.types.UsableSubnetworkSecondaryRange]

status_message

A human readable status message representing the reasons for cases where the caller cannot use the secondary ranges under the subnet. For example if the secondary_ip_ranges is empty due to a permission issue, an insufficient permission message will be given by status_message.

Type

str

class google.cloud.container_v1beta1.types.UsableSubnetworkSecondaryRange(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Secondary IP range of a usable subnetwork.

range_name

The name associated with this subnetwork secondary range, used when adding an alias IP range to a VM instance.

Type

str

ip_cidr_range

The range of IP addresses belonging to this subnetwork secondary range.

Type

str

status

This field is to determine the status of the secondary range programmably.

Type

google.cloud.container_v1beta1.types.UsableSubnetworkSecondaryRange.Status

class Status(value)[source]

Bases: proto.enums.Enum

Status shows the current usage of a secondary IP range.

Values:
UNKNOWN (0):

UNKNOWN is the zero value of the Status enum. It’s not a valid status.

UNUSED (1):

UNUSED denotes that this range is unclaimed by any cluster.

IN_USE_SERVICE (2):

IN_USE_SERVICE denotes that this range is claimed by a cluster for services. It cannot be used for other clusters.

IN_USE_SHAREABLE_POD (3):

IN_USE_SHAREABLE_POD denotes this range was created by the network admin and is currently claimed by a cluster for pods. It can only be used by other clusters as a pod range.

IN_USE_MANAGED_POD (4):

IN_USE_MANAGED_POD denotes this range was created by GKE and is claimed for pods. It cannot be used for other clusters.

class google.cloud.container_v1beta1.types.VerticalPodAutoscaling(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

VerticalPodAutoscaling contains global, per-cluster information required by Vertical Pod Autoscaler to automatically adjust the resources of pods controlled by it.

enabled

Enables vertical pod autoscaling.

Type

bool

class google.cloud.container_v1beta1.types.VirtualNIC(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration of gVNIC feature.

enabled

Whether gVNIC features are enabled in the node pool.

Type

bool

class google.cloud.container_v1beta1.types.WindowsNodeConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Parameters that can be configured on Windows nodes. Windows Node Config that define the parameters that will be used to configure the Windows node pool settings

os_version

OSVersion specifies the Windows node config to be used on the node

Type

google.cloud.container_v1beta1.types.WindowsNodeConfig.OSVersion

class OSVersion(value)[source]

Bases: proto.enums.Enum

Possible OS version that can be used.

Values:
OS_VERSION_UNSPECIFIED (0):

When OSVersion is not specified

OS_VERSION_LTSC2019 (1):

LTSC2019 specifies to use LTSC2019 as the Windows Servercore Base Image

OS_VERSION_LTSC2022 (2):

LTSC2022 specifies to use LTSC2022 as the Windows Servercore Base Image

class google.cloud.container_v1beta1.types.WindowsVersions(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Windows server versions.

windows_versions

List of Windows server versions.

Type

MutableSequence[google.cloud.container_v1beta1.types.WindowsVersions.WindowsVersion]

class WindowsVersion(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Windows server version.

image_type

Windows server image type

Type

str

os_version

Windows server build number

Type

str

support_end_date

Mainstream support end date

Type

google.type.date_pb2.Date

class google.cloud.container_v1beta1.types.WorkloadALTSConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for direct-path (via ALTS) with workload identity.

enable_alts

enable_alts controls whether the alts handshaker should be enabled or not for direct-path.

Requires Workload Identity ([workload_pool][google.container.v1beta1.WorkloadIdentityConfig.workload_pool] must be non-empty).

Type

google.protobuf.wrappers_pb2.BoolValue

class google.cloud.container_v1beta1.types.WorkloadCertificates(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for issuance of mTLS keys and certificates to Kubernetes pods.

enable_certificates

enable_certificates controls issuance of workload mTLS certificates.

If set, the GKE Workload Identity Certificates controller and node agent will be deployed in the cluster, which can then be configured by creating a WorkloadCertificateConfig Custom Resource.

Requires Workload Identity ([workload_pool][google.container.v1beta1.WorkloadIdentityConfig.workload_pool] must be non-empty).

Type

google.protobuf.wrappers_pb2.BoolValue

class google.cloud.container_v1beta1.types.WorkloadConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

WorkloadConfig defines the flags to enable or disable the workload configurations for the cluster.

audit_mode

Sets which mode of auditing should be used for the cluster’s workloads.

This field is a member of oneof _audit_mode.

Type

google.cloud.container_v1beta1.types.WorkloadConfig.Mode

class Mode(value)[source]

Bases: proto.enums.Enum

Mode defines how to audit the workload configs.

Values:
MODE_UNSPECIFIED (0):

Default value meaning that no mode has been specified.

DISABLED (1):

This disables Workload Configuration auditing on the cluster, meaning that nothing is surfaced.

BASIC (4):

Applies the default set of policy auditing to a cluster’s workloads.

BASELINE (2):

Surfaces configurations that are not in line with the Pod Security Standard Baseline policy.

RESTRICTED (3):

Surfaces configurations that are not in line with the Pod Security Standard Restricted policy.

class google.cloud.container_v1beta1.types.WorkloadIdentityConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

Configuration for the use of Kubernetes Service Accounts in GCP IAM policies.

identity_namespace

IAM Identity Namespace to attach all Kubernetes Service Accounts to.

Type

str

workload_pool

The workload pool to attach all Kubernetes service accounts to.

Type

str

identity_provider

identity provider is the third party identity provider.

Type

str

class google.cloud.container_v1beta1.types.WorkloadMetadataConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

WorkloadMetadataConfig defines the metadata configuration to expose to workloads on the node pool.

node_metadata

NodeMetadata is the configuration for how to expose metadata to the workloads running on the node.

Type

google.cloud.container_v1beta1.types.WorkloadMetadataConfig.NodeMetadata

mode

Mode is the configuration for how to expose metadata to workloads running on the node pool.

Type

google.cloud.container_v1beta1.types.WorkloadMetadataConfig.Mode

class Mode(value)[source]

Bases: proto.enums.Enum

Mode is the configuration for how to expose metadata to workloads running on the node.

Values:
MODE_UNSPECIFIED (0):

Not set.

GCE_METADATA (1):

Expose all Compute Engine metadata to pods.

GKE_METADATA (2):

Run the GKE Metadata Server on this node. The GKE Metadata Server exposes a metadata API to workloads that is compatible with the V1 Compute Metadata APIs exposed by the Compute Engine and App Engine Metadata Servers. This feature can only be enabled if Workload Identity is enabled at the cluster level.

class NodeMetadata(value)[source]

Bases: proto.enums.Enum

NodeMetadata is the configuration for if and how to expose the node metadata to the workload running on the node.

Values:
UNSPECIFIED (0):

Not set.

SECURE (1):

Prevent workloads not in hostNetwork from accessing certain VM metadata, specifically kube-env, which contains Kubelet credentials, and the instance identity token.

Metadata concealment is a temporary security solution available while the bootstrapping process for cluster nodes is being redesigned with significant security improvements. This feature is scheduled to be deprecated in the future and later removed.

EXPOSE (2):

Expose all VM metadata to pods.

GKE_METADATA_SERVER (3):

Run the GKE Metadata Server on this node. The GKE Metadata Server exposes a metadata API to workloads that is compatible with the V1 Compute Metadata APIs exposed by the Compute Engine and App Engine Metadata Servers. This feature can only be enabled if Workload Identity is enabled at the cluster level.

class google.cloud.container_v1beta1.types.WorkloadPolicyConfig(mapping=None, *, ignore_unknown_fields=False, **kwargs)[source]

Bases: proto.message.Message

WorkloadPolicyConfig is the configuration of workload policy for autopilot clusters.

allow_net_admin

If true, workloads can use NET_ADMIN capability.

This field is a member of oneof _allow_net_admin.

Type

bool