google-apis-gkehub_v1alpha 0.11.0 → 0.15.0

data/lib/google/apis/gkehub_v1alpha/classes.rb

@@ -22,6 +22,38 @@ module Google
   module Apis
     module GkehubV1alpha
       
+      # Spec for App Dev Experience Feature.
+      class AppDevExperienceFeatureSpec
+        include Google::Apis::Core::Hashable
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+        end
+      end
+      
+      # State for App Dev Exp Feature.
+      class AppDevExperienceFeatureState
+        include Google::Apis::Core::Hashable
+      
+        # Status specifies state for the subcomponent.
+        # Corresponds to the JSON property `networkingInstallSucceeded`
+        # @return [Google::Apis::GkehubV1alpha::Status]
+        attr_accessor :networking_install_succeeded
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @networking_install_succeeded = args[:networking_install_succeeded] if args.key?(:networking_install_succeeded)
+        end
+      end
+      
       # Specifies the audit configuration for a service. The configuration determines
       # which permission types are logged, and what identities, if any, are exempted
       # from logging. An AuditConfig must have one or more AuditLogConfigs. If there
@@ -93,7 +125,61 @@ module Google
         end
       end
       
-      # Associates `members` with a `role`.
+      # Authority encodes how Google will recognize identities from this Membership.
+      # See the workload identity documentation for more details: https://cloud.google.
+      # com/kubernetes-engine/docs/how-to/workload-identity
+      class Authority
+        include Google::Apis::Core::Hashable
+      
+        # Output only. An identity provider that reflects the `issuer` in the workload
+        # identity pool.
+        # Corresponds to the JSON property `identityProvider`
+        # @return [String]
+        attr_accessor :identity_provider
+      
+        # Optional. A JSON Web Token (JWT) issuer URI. `issuer` must start with `https://
+        # ` and be a valid URL with length <2000 characters. If set, then Google will
+        # allow valid OIDC tokens from this issuer to authenticate within the
+        # workload_identity_pool. OIDC discovery will be performed on this URI to
+        # validate tokens from the issuer. Clearing `issuer` disables Workload Identity.
+        # `issuer` cannot be directly modified; it must be cleared (and Workload
+        # Identity disabled) before using a new issuer (and re-enabling Workload
+        # Identity).
+        # Corresponds to the JSON property `issuer`
+        # @return [String]
+        attr_accessor :issuer
+      
+        # Optional. OIDC verification keys for this Membership in JWKS format (RFC 7517).
+        # When this field is set, OIDC discovery will NOT be performed on `issuer`, and
+        # instead OIDC tokens will be validated using this field.
+        # Corresponds to the JSON property `oidcJwks`
+        # NOTE: Values are automatically base64 encoded/decoded in the client library.
+        # @return [String]
+        attr_accessor :oidc_jwks
+      
+        # Output only. The name of the workload identity pool in which `issuer` will be
+        # recognized. There is a single Workload Identity Pool per Hub that is shared
+        # between all Memberships that belong to that Hub. For a Hub hosted in `
+        # PROJECT_ID`, the workload pool format is ``PROJECT_ID`.hub.id.goog`, although
+        # this is subject to change in newer versions of this API.
+        # Corresponds to the JSON property `workloadIdentityPool`
+        # @return [String]
+        attr_accessor :workload_identity_pool
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @identity_provider = args[:identity_provider] if args.key?(:identity_provider)
+          @issuer = args[:issuer] if args.key?(:issuer)
+          @oidc_jwks = args[:oidc_jwks] if args.key?(:oidc_jwks)
+          @workload_identity_pool = args[:workload_identity_pool] if args.key?(:workload_identity_pool)
+        end
+      end
+      
+      # Associates `members`, or principals, with a `role`.
       class Binding
         include Google::Apis::Core::Hashable
       
@@ -116,7 +202,7 @@ module Google
         # @return [Google::Apis::GkehubV1alpha::Expr]
         attr_accessor :condition
       
-        # Specifies the identities requesting access for a Cloud Platform resource. `
+        # Specifies the principals requesting access for a Cloud Platform resource. `
         # members` can have the following values: * `allUsers`: A special identifier
         # that represents anyone who is on the internet; with or without a Google
         # account. * `allAuthenticatedUsers`: A special identifier that represents
@@ -146,8 +232,8 @@ module Google
         # @return [Array<String>]
         attr_accessor :members
       
-        # Role that is assigned to `members`. For example, `roles/viewer`, `roles/editor`
-        # , or `roles/owner`.
+        # Role that is assigned to the list of `members`, or principals. For example, `
+        # roles/viewer`, `roles/editor`, or `roles/owner`.
         # Corresponds to the JSON property `role`
         # @return [String]
         attr_accessor :role
@@ -204,6 +290,11 @@ module Google
       class CommonFeatureSpec
         include Google::Apis::Core::Hashable
       
+        # Spec for App Dev Experience Feature.
+        # Corresponds to the JSON property `appdevexperience`
+        # @return [Google::Apis::GkehubV1alpha::AppDevExperienceFeatureSpec]
+        attr_accessor :appdevexperience
+      
         # **Cloud Audit Logging**: Spec for Audit Logging Allowlisting.
         # Corresponds to the JSON property `cloudauditlogging`
         # @return [Google::Apis::GkehubV1alpha::CloudAuditLoggingFeatureSpec]
@@ -221,6 +312,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @appdevexperience = args[:appdevexperience] if args.key?(:appdevexperience)
           @cloudauditlogging = args[:cloudauditlogging] if args.key?(:cloudauditlogging)
           @multiclusteringress = args[:multiclusteringress] if args.key?(:multiclusteringress)
         end
@@ -230,6 +322,11 @@ module Google
       class CommonFeatureState
         include Google::Apis::Core::Hashable
       
+        # State for App Dev Exp Feature.
+        # Corresponds to the JSON property `appdevexperience`
+        # @return [Google::Apis::GkehubV1alpha::AppDevExperienceFeatureState]
+        attr_accessor :appdevexperience
+      
         # **Service Mesh**: State for the whole Hub, as analyzed by the Service Mesh Hub
         # Controller.
         # Corresponds to the JSON property `servicemesh`
@@ -249,6 +346,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @appdevexperience = args[:appdevexperience] if args.key?(:appdevexperience)
           @servicemesh = args[:servicemesh] if args.key?(:servicemesh)
           @state = args[:state] if args.key?(:state)
         end
@@ -322,15 +420,28 @@ module Google
       class ConfigManagementConfigSync
         include Google::Apis::Core::Hashable
       
+        # Enables the installation of ConfigSync. If set to true, ConfigSync resources
+        # will be created and the other ConfigSync fields will be applied if exist. If
+        # set to false, all other ConfigSync fields will be ignored, ConfigSync
+        # resources will be deleted. If omitted, ConfigSync resources will be managed
+        # depends on the presence of git field.
+        # Corresponds to the JSON property `enabled`
+        # @return [Boolean]
+        attr_accessor :enabled
+        alias_method :enabled?, :enabled
+      
         # Git repo configuration for a single cluster.
         # Corresponds to the JSON property `git`
         # @return [Google::Apis::GkehubV1alpha::ConfigManagementGitConfig]
         attr_accessor :git
       
-        # Specifies CPU and memory limits for containers, keyed by container name
-        # Corresponds to the JSON property `resourceRequirements`
-        # @return [Hash<String,Google::Apis::GkehubV1alpha::ConfigManagementContainerResourceRequirements>]
-        attr_accessor :resource_requirements
+        # Set to true to enable the Config Sync admission webhook to prevent drifts. If
+        # set to `false`, disables the Config Sync admission webhook and does not
+        # prevent drifts.
+        # Corresponds to the JSON property `preventDrift`
+        # @return [Boolean]
+        attr_accessor :prevent_drift
+        alias_method :prevent_drift?, :prevent_drift
       
         # Specifies whether the Config Sync Repo is in “hierarchical” or “unstructured”
         # mode.
@@ -344,8 +455,9 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @enabled = args[:enabled] if args.key?(:enabled)
           @git = args[:git] if args.key?(:git)
-          @resource_requirements = args[:resource_requirements] if args.key?(:resource_requirements)
+          @prevent_drift = args[:prevent_drift] if args.key?(:prevent_drift)
           @source_format = args[:source_format] if args.key?(:source_format)
         end
       end
@@ -491,42 +603,6 @@ module Google
         end
       end
       
-      # ResourceRequirements allows to override the CPU and memory resource
-      # requirements of a container.
-      class ConfigManagementContainerResourceRequirements
-        include Google::Apis::Core::Hashable
-      
-        # Name of the container
-        # Corresponds to the JSON property `containerName`
-        # @return [String]
-        attr_accessor :container_name
-      
-        # The view model of a single quantity, e.g. "800 MiB". Corresponds to https://
-        # github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apimachinery/
-        # pkg/api/resource/generated.proto
-        # Corresponds to the JSON property `cpuLimit`
-        # @return [Google::Apis::GkehubV1alpha::ConfigManagementQuantity]
-        attr_accessor :cpu_limit
-      
-        # The view model of a single quantity, e.g. "800 MiB". Corresponds to https://
-        # github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apimachinery/
-        # pkg/api/resource/generated.proto
-        # Corresponds to the JSON property `memoryLimit`
-        # @return [Google::Apis::GkehubV1alpha::ConfigManagementQuantity]
-        attr_accessor :memory_limit
-      
-        def initialize(**args)
-           update!(**args)
-        end
-      
-        # Update properties of this object
-        def update!(**args)
-          @container_name = args[:container_name] if args.key?(:container_name)
-          @cpu_limit = args[:cpu_limit] if args.key?(:cpu_limit)
-          @memory_limit = args[:memory_limit] if args.key?(:memory_limit)
-        end
-      end
-      
       # Model for a config file in the git repo with an associated Sync error
       class ConfigManagementErrorResource
         include Google::Apis::Core::Hashable
@@ -610,19 +686,15 @@ module Google
         # @return [String]
         attr_accessor :https_proxy
       
-        # Enable or disable the SSL certificate verification Default: false.
-        # Corresponds to the JSON property `noSslVerify`
-        # @return [Boolean]
-        attr_accessor :no_ssl_verify
-        alias_method :no_ssl_verify?, :no_ssl_verify
-      
         # The path within the Git repository that represents the top level of the repo
         # to sync. Default: the root directory of the repository.
         # Corresponds to the JSON property `policyDir`
         # @return [String]
         attr_accessor :policy_dir
       
-        # Type of secret configured for access to the Git repo.
+        # Type of secret configured for access to the Git repo. Must be one of ssh,
+        # cookiefile, gcenode, token, gcpserviceaccount or none. The validation of this
+        # is case-sensitive. Required.
         # Corresponds to the JSON property `secretType`
         # @return [String]
         attr_accessor :secret_type
@@ -632,11 +704,6 @@ module Google
         # @return [String]
         attr_accessor :sync_branch
       
-        # The depth of git commits synced by the git-sync container.
-        # Corresponds to the JSON property `syncDepth`
-        # @return [Fixnum]
-        attr_accessor :sync_depth
-      
         # The URL of the Git repository to use as the source of truth.
         # Corresponds to the JSON property `syncRepo`
         # @return [String]
@@ -660,11 +727,9 @@ module Google
         def update!(**args)
           @gcp_service_account_email = args[:gcp_service_account_email] if args.key?(:gcp_service_account_email)
           @https_proxy = args[:https_proxy] if args.key?(:https_proxy)
-          @no_ssl_verify = args[:no_ssl_verify] if args.key?(:no_ssl_verify)
           @policy_dir = args[:policy_dir] if args.key?(:policy_dir)
           @secret_type = args[:secret_type] if args.key?(:secret_type)
           @sync_branch = args[:sync_branch] if args.key?(:sync_branch)
-          @sync_depth = args[:sync_depth] if args.key?(:sync_depth)
           @sync_repo = args[:sync_repo] if args.key?(:sync_repo)
           @sync_rev = args[:sync_rev] if args.key?(:sync_rev)
           @sync_wait_secs = args[:sync_wait_secs] if args.key?(:sync_wait_secs)
@@ -1073,27 +1138,6 @@ module Google
         end
       end
       
-      # The view model of a single quantity, e.g. "800 MiB". Corresponds to https://
-      # github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apimachinery/
-      # pkg/api/resource/generated.proto
-      class ConfigManagementQuantity
-        include Google::Apis::Core::Hashable
-      
-        # Stringified version of the quantity, e.g., "800 MiB".
-        # Corresponds to the JSON property `string`
-        # @return [String]
-        attr_accessor :string
-      
-        def initialize(**args)
-           update!(**args)
-        end
-      
-        # Update properties of this object
-        def update!(**args)
-          @string = args[:string] if args.key?(:string)
-        end
-      end
-      
       # An ACM created error representing a problem syncing configurations
       class ConfigManagementSyncError
         include Google::Apis::Core::Hashable
@@ -1184,6 +1228,33 @@ module Google
         end
       end
       
+      # ConnectAgentResource represents a Kubernetes resource manifest for Connect
+      # Agent deployment.
+      class ConnectAgentResource
+        include Google::Apis::Core::Hashable
+      
+        # YAML manifest of the resource.
+        # Corresponds to the JSON property `manifest`
+        # @return [String]
+        attr_accessor :manifest
+      
+        # TypeMeta is the type information needed for content unmarshalling of
+        # Kubernetes resources in the manifest.
+        # Corresponds to the JSON property `type`
+        # @return [Google::Apis::GkehubV1alpha::TypeMeta]
+        attr_accessor :type
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @manifest = args[:manifest] if args.key?(:manifest)
+          @type = args[:type] if args.key?(:type)
+        end
+      end
+      
       # A generic empty message that you can re-use to avoid defining duplicated empty
       # messages in your APIs. A typical example is to use it as the request or the
       # response type of an API method. For instance: service Foo ` rpc Bar(google.
@@ -1400,6 +1471,56 @@ module Google
         end
       end
       
+      # GenerateConnectManifestResponse contains manifest information for installing/
+      # upgrading a Connect agent.
+      class GenerateConnectManifestResponse
+        include Google::Apis::Core::Hashable
+      
+        # The ordered list of Kubernetes resources that need to be applied to the
+        # cluster for GKE Connect agent installation/upgrade.
+        # Corresponds to the JSON property `manifest`
+        # @return [Array<Google::Apis::GkehubV1alpha::ConnectAgentResource>]
+        attr_accessor :manifest
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @manifest = args[:manifest] if args.key?(:manifest)
+        end
+      end
+      
+      # GkeCluster contains information specific to GKE clusters.
+      class GkeCluster
+        include Google::Apis::Core::Hashable
+      
+        # Output only. If cluster_missing is set then it denotes that the GKE cluster no
+        # longer exists in the GKE Control Plane.
+        # Corresponds to the JSON property `clusterMissing`
+        # @return [Boolean]
+        attr_accessor :cluster_missing
+        alias_method :cluster_missing?, :cluster_missing
+      
+        # Immutable. Self-link of the GCP resource for the GKE cluster. For example: //
+        # container.googleapis.com/projects/my-project/locations/us-west1-a/clusters/my-
+        # cluster Zonal clusters are also supported.
+        # Corresponds to the JSON property `resourceLink`
+        # @return [String]
+        attr_accessor :resource_link
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @cluster_missing = args[:cluster_missing] if args.key?(:cluster_missing)
+          @resource_link = args[:resource_link] if args.key?(:resource_link)
+        end
+      end
+      
       # The `Status` type defines a logical error model that is suitable for different
       # programming environments, including REST APIs and RPC APIs. It is used by [
       # gRPC](https://github.com/grpc). Each `Status` message contains three pieces of
@@ -1611,6 +1732,150 @@ module Google
         end
       end
       
+      # KubernetesMetadata provides informational metadata for Memberships
+      # representing Kubernetes clusters.
+      class KubernetesMetadata
+        include Google::Apis::Core::Hashable
+      
+        # Output only. Kubernetes API server version string as reported by `/version`.
+        # Corresponds to the JSON property `kubernetesApiServerVersion`
+        # @return [String]
+        attr_accessor :kubernetes_api_server_version
+      
+        # Output only. The total memory capacity as reported by the sum of all
+        # Kubernetes nodes resources, defined in MB.
+        # Corresponds to the JSON property `memoryMb`
+        # @return [Fixnum]
+        attr_accessor :memory_mb
+      
+        # Output only. Node count as reported by Kubernetes nodes resources.
+        # Corresponds to the JSON property `nodeCount`
+        # @return [Fixnum]
+        attr_accessor :node_count
+      
+        # Output only. Node providerID as reported by the first node in the list of
+        # nodes on the Kubernetes endpoint. On Kubernetes platforms that support zero-
+        # node clusters (like GKE-on-GCP), the node_count will be zero and the
+        # node_provider_id will be empty.
+        # Corresponds to the JSON property `nodeProviderId`
+        # @return [String]
+        attr_accessor :node_provider_id
+      
+        # Output only. The time at which these details were last updated. This
+        # update_time is different from the Membership-level update_time since
+        # EndpointDetails are updated internally for API consumers.
+        # Corresponds to the JSON property `updateTime`
+        # @return [String]
+        attr_accessor :update_time
+      
+        # Output only. vCPU count as reported by Kubernetes nodes resources.
+        # Corresponds to the JSON property `vcpuCount`
+        # @return [Fixnum]
+        attr_accessor :vcpu_count
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @kubernetes_api_server_version = args[:kubernetes_api_server_version] if args.key?(:kubernetes_api_server_version)
+          @memory_mb = args[:memory_mb] if args.key?(:memory_mb)
+          @node_count = args[:node_count] if args.key?(:node_count)
+          @node_provider_id = args[:node_provider_id] if args.key?(:node_provider_id)
+          @update_time = args[:update_time] if args.key?(:update_time)
+          @vcpu_count = args[:vcpu_count] if args.key?(:vcpu_count)
+        end
+      end
+      
+      # KubernetesResource contains the YAML manifests and configuration for
+      # Membership Kubernetes resources in the cluster. After CreateMembership or
+      # UpdateMembership, these resources should be re-applied in the cluster.
+      class KubernetesResource
+        include Google::Apis::Core::Hashable
+      
+        # Output only. The Kubernetes resources for installing the GKE Connect agent
+        # This field is only populated in the Membership returned from a successful long-
+        # running operation from CreateMembership or UpdateMembership. It is not
+        # populated during normal GetMembership or ListMemberships requests. To get the
+        # resource manifest after the initial registration, the caller should make a
+        # UpdateMembership call with an empty field mask.
+        # Corresponds to the JSON property `connectResources`
+        # @return [Array<Google::Apis::GkehubV1alpha::ResourceManifest>]
+        attr_accessor :connect_resources
+      
+        # Input only. The YAML representation of the Membership CR. This field is
+        # ignored for GKE clusters where Hub can read the CR directly. Callers should
+        # provide the CR that is currently present in the cluster during
+        # CreateMembership or UpdateMembership, or leave this field empty if none exists.
+        # The CR manifest is used to validate the cluster has not been registered with
+        # another Membership.
+        # Corresponds to the JSON property `membershipCrManifest`
+        # @return [String]
+        attr_accessor :membership_cr_manifest
+      
+        # Output only. Additional Kubernetes resources that need to be applied to the
+        # cluster after Membership creation, and after every update. This field is only
+        # populated in the Membership returned from a successful long-running operation
+        # from CreateMembership or UpdateMembership. It is not populated during normal
+        # GetMembership or ListMemberships requests. To get the resource manifest after
+        # the initial registration, the caller should make a UpdateMembership call with
+        # an empty field mask.
+        # Corresponds to the JSON property `membershipResources`
+        # @return [Array<Google::Apis::GkehubV1alpha::ResourceManifest>]
+        attr_accessor :membership_resources
+      
+        # ResourceOptions represent options for Kubernetes resource generation.
+        # Corresponds to the JSON property `resourceOptions`
+        # @return [Google::Apis::GkehubV1alpha::ResourceOptions]
+        attr_accessor :resource_options
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @connect_resources = args[:connect_resources] if args.key?(:connect_resources)
+          @membership_cr_manifest = args[:membership_cr_manifest] if args.key?(:membership_cr_manifest)
+          @membership_resources = args[:membership_resources] if args.key?(:membership_resources)
+          @resource_options = args[:resource_options] if args.key?(:resource_options)
+        end
+      end
+      
+      # Response message for the `GkeHub.ListAdminClusterMemberships` method.
+      class ListAdminClusterMembershipsResponse
+        include Google::Apis::Core::Hashable
+      
+        # The list of matching Memberships of admin clusters.
+        # Corresponds to the JSON property `adminClusterMemberships`
+        # @return [Array<Google::Apis::GkehubV1alpha::Membership>]
+        attr_accessor :admin_cluster_memberships
+      
+        # A token to request the next page of resources from the `
+        # ListAdminClusterMemberships` method. The value of an empty string means that
+        # there are no more resources to return.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        # List of locations that could not be reached while fetching this list.
+        # Corresponds to the JSON property `unreachable`
+        # @return [Array<String>]
+        attr_accessor :unreachable
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @admin_cluster_memberships = args[:admin_cluster_memberships] if args.key?(:admin_cluster_memberships)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+          @unreachable = args[:unreachable] if args.key?(:unreachable)
+        end
+      end
+      
       # Response message for the `GkeHub.ListFeatures` method.
       class ListFeaturesResponse
         include Google::Apis::Core::Hashable
@@ -1662,6 +1927,39 @@ module Google
         end
       end
       
+      # Response message for the `GkeHub.ListMemberships` method.
+      class ListMembershipsResponse
+        include Google::Apis::Core::Hashable
+      
+        # A token to request the next page of resources from the `ListMemberships`
+        # method. The value of an empty string means that there are no more resources to
+        # return.
+        # Corresponds to the JSON property `nextPageToken`
+        # @return [String]
+        attr_accessor :next_page_token
+      
+        # The list of matching Memberships.
+        # Corresponds to the JSON property `resources`
+        # @return [Array<Google::Apis::GkehubV1alpha::Membership>]
+        attr_accessor :resources
+      
+        # List of locations that could not be reached while fetching this list.
+        # Corresponds to the JSON property `unreachable`
+        # @return [Array<String>]
+        attr_accessor :unreachable
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @next_page_token = args[:next_page_token] if args.key?(:next_page_token)
+          @resources = args[:resources] if args.key?(:resources)
+          @unreachable = args[:unreachable] if args.key?(:unreachable)
+        end
+      end
+      
       # The response message for Operations.ListOperations.
       class ListOperationsResponse
         include Google::Apis::Core::Hashable
@@ -1734,6 +2032,156 @@ module Google
         end
       end
       
+      # Membership contains information about a member cluster.
+      class Membership
+        include Google::Apis::Core::Hashable
+      
+        # Authority encodes how Google will recognize identities from this Membership.
+        # See the workload identity documentation for more details: https://cloud.google.
+        # com/kubernetes-engine/docs/how-to/workload-identity
+        # Corresponds to the JSON property `authority`
+        # @return [Google::Apis::GkehubV1alpha::Authority]
+        attr_accessor :authority
+      
+        # Output only. When the Membership was created.
+        # Corresponds to the JSON property `createTime`
+        # @return [String]
+        attr_accessor :create_time
+      
+        # Output only. When the Membership was deleted.
+        # Corresponds to the JSON property `deleteTime`
+        # @return [String]
+        attr_accessor :delete_time
+      
+        # Output only. Description of this membership, limited to 63 characters. Must
+        # match the regex: `a-zA-Z0-9*` This field is present for legacy purposes.
+        # Corresponds to the JSON property `description`
+        # @return [String]
+        attr_accessor :description
+      
+        # MembershipEndpoint contains information needed to contact a Kubernetes API,
+        # endpoint and any additional Kubernetes metadata.
+        # Corresponds to the JSON property `endpoint`
+        # @return [Google::Apis::GkehubV1alpha::MembershipEndpoint]
+        attr_accessor :endpoint
+      
+        # Optional. An externally-generated and managed ID for this Membership. This ID
+        # may be modified after creation, but this is not recommended. The ID must match
+        # the regex: `a-zA-Z0-9*` If this Membership represents a Kubernetes cluster,
+        # this value should be set to the UID of the `kube-system` namespace object.
+        # Corresponds to the JSON property `externalId`
+        # @return [String]
+        attr_accessor :external_id
+      
+        # Optional. GCP labels for this membership.
+        # Corresponds to the JSON property `labels`
+        # @return [Hash<String,String>]
+        attr_accessor :labels
+      
+        # Output only. For clusters using Connect, the timestamp of the most recent
+        # connection established with Google Cloud. This time is updated every several
+        # minutes, not continuously. For clusters that do not use GKE Connect, or that
+        # have never connected successfully, this field will be unset.
+        # Corresponds to the JSON property `lastConnectionTime`
+        # @return [String]
+        attr_accessor :last_connection_time
+      
+        # Output only. The full, unique name of this Membership resource in the format `
+        # projects/*/locations/*/memberships/`membership_id``, set during creation. `
+        # membership_id` must be a valid RFC 1123 compliant DNS label: 1. At most 63
+        # characters in length 2. It must consist of lower case alphanumeric characters
+        # or `-` 3. It must start and end with an alphanumeric character Which can be
+        # expressed as the regex: `[a-z0-9]([-a-z0-9]*[a-z0-9])?`, with a maximum length
+        # of 63 characters.
+        # Corresponds to the JSON property `name`
+        # @return [String]
+        attr_accessor :name
+      
+        # MembershipState describes the state of a Membership resource.
+        # Corresponds to the JSON property `state`
+        # @return [Google::Apis::GkehubV1alpha::MembershipState]
+        attr_accessor :state
+      
+        # Output only. Google-generated UUID for this resource. This is unique across
+        # all Membership resources. If a Membership resource is deleted and another
+        # resource with the same name is created, it gets a different unique_id.
+        # Corresponds to the JSON property `uniqueId`
+        # @return [String]
+        attr_accessor :unique_id
+      
+        # Output only. When the Membership was last updated.
+        # Corresponds to the JSON property `updateTime`
+        # @return [String]
+        attr_accessor :update_time
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @authority = args[:authority] if args.key?(:authority)
+          @create_time = args[:create_time] if args.key?(:create_time)
+          @delete_time = args[:delete_time] if args.key?(:delete_time)
+          @description = args[:description] if args.key?(:description)
+          @endpoint = args[:endpoint] if args.key?(:endpoint)
+          @external_id = args[:external_id] if args.key?(:external_id)
+          @labels = args[:labels] if args.key?(:labels)
+          @last_connection_time = args[:last_connection_time] if args.key?(:last_connection_time)
+          @name = args[:name] if args.key?(:name)
+          @state = args[:state] if args.key?(:state)
+          @unique_id = args[:unique_id] if args.key?(:unique_id)
+          @update_time = args[:update_time] if args.key?(:update_time)
+        end
+      end
+      
+      # MembershipEndpoint contains information needed to contact a Kubernetes API,
+      # endpoint and any additional Kubernetes metadata.
+      class MembershipEndpoint
+        include Google::Apis::Core::Hashable
+      
+        # GkeCluster contains information specific to GKE clusters.
+        # Corresponds to the JSON property `gkeCluster`
+        # @return [Google::Apis::GkehubV1alpha::GkeCluster]
+        attr_accessor :gke_cluster
+      
+        # KubernetesMetadata provides informational metadata for Memberships
+        # representing Kubernetes clusters.
+        # Corresponds to the JSON property `kubernetesMetadata`
+        # @return [Google::Apis::GkehubV1alpha::KubernetesMetadata]
+        attr_accessor :kubernetes_metadata
+      
+        # KubernetesResource contains the YAML manifests and configuration for
+        # Membership Kubernetes resources in the cluster. After CreateMembership or
+        # UpdateMembership, these resources should be re-applied in the cluster.
+        # Corresponds to the JSON property `kubernetesResource`
+        # @return [Google::Apis::GkehubV1alpha::KubernetesResource]
+        attr_accessor :kubernetes_resource
+      
+        # MultiCloudCluster contains information specific to GKE Multi-Cloud clusters.
+        # Corresponds to the JSON property `multiCloudCluster`
+        # @return [Google::Apis::GkehubV1alpha::MultiCloudCluster]
+        attr_accessor :multi_cloud_cluster
+      
+        # OnPremCluster contains information specific to GKE On-Prem clusters.
+        # Corresponds to the JSON property `onPremCluster`
+        # @return [Google::Apis::GkehubV1alpha::OnPremCluster]
+        attr_accessor :on_prem_cluster
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @gke_cluster = args[:gke_cluster] if args.key?(:gke_cluster)
+          @kubernetes_metadata = args[:kubernetes_metadata] if args.key?(:kubernetes_metadata)
+          @kubernetes_resource = args[:kubernetes_resource] if args.key?(:kubernetes_resource)
+          @multi_cloud_cluster = args[:multi_cloud_cluster] if args.key?(:multi_cloud_cluster)
+          @on_prem_cluster = args[:on_prem_cluster] if args.key?(:on_prem_cluster)
+        end
+      end
+      
       # MembershipFeatureSpec contains configuration information for a single
       # Membership.
       class MembershipFeatureSpec
@@ -1750,6 +2198,11 @@ module Google
         # @return [Google::Apis::GkehubV1alpha::IdentityServiceMembershipSpec]
         attr_accessor :identityservice
       
+        # **Service Mesh**: Spec for a single Membership for the servicemesh feature
+        # Corresponds to the JSON property `mesh`
+        # @return [Google::Apis::GkehubV1alpha::ServiceMeshMembershipSpec]
+        attr_accessor :mesh
+      
         def initialize(**args)
            update!(**args)
         end
@@ -1758,6 +2211,7 @@ module Google
         def update!(**args)
           @configmanagement = args[:configmanagement] if args.key?(:configmanagement)
           @identityservice = args[:identityservice] if args.key?(:identityservice)
+          @mesh = args[:mesh] if args.key?(:mesh)
         end
       end
       
@@ -1766,6 +2220,11 @@ module Google
       class MembershipFeatureState
         include Google::Apis::Core::Hashable
       
+        # State for App Dev Exp Feature.
+        # Corresponds to the JSON property `appdevexperience`
+        # @return [Google::Apis::GkehubV1alpha::AppDevExperienceFeatureState]
+        attr_accessor :appdevexperience
+      
         # **Anthos Config Management**: State for a single cluster.
         # Corresponds to the JSON property `configmanagement`
         # @return [Google::Apis::GkehubV1alpha::ConfigManagementMembershipState]
@@ -1800,6 +2259,7 @@ module Google
       
         # Update properties of this object
         def update!(**args)
+          @appdevexperience = args[:appdevexperience] if args.key?(:appdevexperience)
           @configmanagement = args[:configmanagement] if args.key?(:configmanagement)
           @identityservice = args[:identityservice] if args.key?(:identityservice)
           @metering = args[:metering] if args.key?(:metering)
@@ -1808,6 +2268,25 @@ module Google
         end
       end
       
+      # MembershipState describes the state of a Membership resource.
+      class MembershipState
+        include Google::Apis::Core::Hashable
+      
+        # Output only. The current state of the Membership resource.
+        # Corresponds to the JSON property `code`
+        # @return [String]
+        attr_accessor :code
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @code = args[:code] if args.key?(:code)
+        end
+      end
+      
       # **Metering**: Per-Membership Feature State.
       class MeteringMembershipState
         include Google::Apis::Core::Hashable
@@ -1835,6 +2314,36 @@ module Google
         end
       end
       
+      # MultiCloudCluster contains information specific to GKE Multi-Cloud clusters.
+      class MultiCloudCluster
+        include Google::Apis::Core::Hashable
+      
+        # Output only. If cluster_missing is set then it denotes that API(gkemulticloud.
+        # googleapis.com) resource for this GKE Multi-Cloud cluster no longer exists.
+        # Corresponds to the JSON property `clusterMissing`
+        # @return [Boolean]
+        attr_accessor :cluster_missing
+        alias_method :cluster_missing?, :cluster_missing
+      
+        # Immutable. Self-link of the GCP resource for the GKE Multi-Cloud cluster. For
+        # example: //gkemulticloud.googleapis.com/projects/my-project/locations/us-west1-
+        # a/awsClusters/my-cluster //gkemulticloud.googleapis.com/projects/my-project/
+        # locations/us-west1-a/azureClusters/my-cluster
+        # Corresponds to the JSON property `resourceLink`
+        # @return [String]
+        attr_accessor :resource_link
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @cluster_missing = args[:cluster_missing] if args.key?(:cluster_missing)
+          @resource_link = args[:resource_link] if args.key?(:resource_link)
+        end
+      end
+      
       # **Multi-cluster Ingress**: The configuration for the MultiClusterIngress
       # feature.
       class MultiClusterIngressFeatureSpec
@@ -1863,6 +2372,43 @@ module Google
         end
       end
       
+      # OnPremCluster contains information specific to GKE On-Prem clusters.
+      class OnPremCluster
+        include Google::Apis::Core::Hashable
+      
+        # Immutable. Whether the cluster is an admin cluster.
+        # Corresponds to the JSON property `adminCluster`
+        # @return [Boolean]
+        attr_accessor :admin_cluster
+        alias_method :admin_cluster?, :admin_cluster
+      
+        # Output only. If cluster_missing is set then it denotes that API(gkeonprem.
+        # googleapis.com) resource for this GKE On-Prem cluster no longer exists.
+        # Corresponds to the JSON property `clusterMissing`
+        # @return [Boolean]
+        attr_accessor :cluster_missing
+        alias_method :cluster_missing?, :cluster_missing
+      
+        # Immutable. Self-link of the GCP resource for the GKE On-Prem cluster. For
+        # example: //gkeonprem.googleapis.com/projects/my-project/locations/us-west1-a/
+        # vmwareClusters/my-cluster //gkeonprem.googleapis.com/projects/my-project/
+        # locations/us-west1-a/bareMetalClusters/my-cluster
+        # Corresponds to the JSON property `resourceLink`
+        # @return [String]
+        attr_accessor :resource_link
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @admin_cluster = args[:admin_cluster] if args.key?(:admin_cluster)
+          @cluster_missing = args[:cluster_missing] if args.key?(:cluster_missing)
+          @resource_link = args[:resource_link] if args.key?(:resource_link)
+        end
+      end
+      
       # This resource represents a long-running operation that is the result of a
       # network API call.
       class Operation
@@ -1986,31 +2532,31 @@ module Google
       
       # An Identity and Access Management (IAM) policy, which specifies access
       # controls for Google Cloud resources. A `Policy` is a collection of `bindings`.
-      # A `binding` binds one or more `members` to a single `role`. Members can be
-      # user accounts, service accounts, Google groups, and domains (such as G Suite).
-      # A `role` is a named list of permissions; each `role` can be an IAM predefined
-      # role or a user-created custom role. For some types of Google Cloud resources,
-      # a `binding` can also specify a `condition`, which is a logical expression that
-      # allows access to a resource only if the expression evaluates to `true`. A
-      # condition can add constraints based on attributes of the request, the resource,
-      # or both. To learn which resources support conditions in their IAM policies,
-      # see the [IAM documentation](https://cloud.google.com/iam/help/conditions/
-      # resource-policies). **JSON example:** ` "bindings": [ ` "role": "roles/
-      # resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "
-      # group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@
-      # appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager.
-      # organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` "
-      # title": "expirable access", "description": "Does not grant access after Sep
-      # 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", `
-      # ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:** bindings: -
-      # members: - user:mike@example.com - group:admins@example.com - domain:google.
-      # com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/
-      # resourcemanager.organizationAdmin - members: - user:eve@example.com role:
-      # roles/resourcemanager.organizationViewer condition: title: expirable access
-      # description: Does not grant access after Sep 2020 expression: request.time <
-      # timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 For a
-      # description of IAM and its features, see the [IAM documentation](https://cloud.
-      # google.com/iam/docs/).
+      # A `binding` binds one or more `members`, or principals, to a single `role`.
+      # Principals can be user accounts, service accounts, Google groups, and domains (
+      # such as G Suite). A `role` is a named list of permissions; each `role` can be
+      # an IAM predefined role or a user-created custom role. For some types of Google
+      # Cloud resources, a `binding` can also specify a `condition`, which is a
+      # logical expression that allows access to a resource only if the expression
+      # evaluates to `true`. A condition can add constraints based on attributes of
+      # the request, the resource, or both. To learn which resources support
+      # conditions in their IAM policies, see the [IAM documentation](https://cloud.
+      # google.com/iam/help/conditions/resource-policies). **JSON example:** ` "
+      # bindings": [ ` "role": "roles/resourcemanager.organizationAdmin", "members": [
+      # "user:mike@example.com", "group:admins@example.com", "domain:google.com", "
+      # serviceAccount:my-project-id@appspot.gserviceaccount.com" ] `, ` "role": "
+      # roles/resourcemanager.organizationViewer", "members": [ "user:eve@example.com"
+      # ], "condition": ` "title": "expirable access", "description": "Does not grant
+      # access after Sep 2020", "expression": "request.time < timestamp('2020-10-01T00:
+      # 00:00.000Z')", ` ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:**
+      # bindings: - members: - user:mike@example.com - group:admins@example.com -
+      # domain:google.com - serviceAccount:my-project-id@appspot.gserviceaccount.com
+      # role: roles/resourcemanager.organizationAdmin - members: - user:eve@example.
+      # com role: roles/resourcemanager.organizationViewer condition: title: expirable
+      # access description: Does not grant access after Sep 2020 expression: request.
+      # time < timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 For
+      # a description of IAM and its features, see the [IAM documentation](https://
+      # cloud.google.com/iam/docs/).
       class Policy
         include Google::Apis::Core::Hashable
       
@@ -2019,9 +2565,14 @@ module Google
         # @return [Array<Google::Apis::GkehubV1alpha::AuditConfig>]
         attr_accessor :audit_configs
       
-        # Associates a list of `members` to a `role`. Optionally, may specify a `
-        # condition` that determines how and when the `bindings` are applied. Each of
-        # the `bindings` must contain at least one member.
+        # Associates a list of `members`, or principals, with a `role`. Optionally, may
+        # specify a `condition` that determines how and when the `bindings` are applied.
+        # Each of the `bindings` must contain at least one principal. The `bindings` in
+        # a `Policy` can refer to up to 1,500 principals; up to 250 of these principals
+        # can be Google groups. Each occurrence of a principal counts towards these
+        # limits. For example, if the `bindings` grant 50 different roles to `user:alice@
+        # example.com`, and not to any other principal, then you can add another 1,450
+        # principals to the `bindings` in the `Policy`.
         # Corresponds to the JSON property `bindings`
         # @return [Array<Google::Apis::GkehubV1alpha::Binding>]
         attr_accessor :bindings
@@ -2074,6 +2625,65 @@ module Google
         end
       end
       
+      # ResourceManifest represents a single Kubernetes resource to be applied to the
+      # cluster.
+      class ResourceManifest
+        include Google::Apis::Core::Hashable
+      
+        # Whether the resource provided in the manifest is `cluster_scoped`. If unset,
+        # the manifest is assumed to be namespace scoped. This field is used for REST
+        # mapping when applying the resource in a cluster.
+        # Corresponds to the JSON property `clusterScoped`
+        # @return [Boolean]
+        attr_accessor :cluster_scoped
+        alias_method :cluster_scoped?, :cluster_scoped
+      
+        # YAML manifest of the resource.
+        # Corresponds to the JSON property `manifest`
+        # @return [String]
+        attr_accessor :manifest
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @cluster_scoped = args[:cluster_scoped] if args.key?(:cluster_scoped)
+          @manifest = args[:manifest] if args.key?(:manifest)
+        end
+      end
+      
+      # ResourceOptions represent options for Kubernetes resource generation.
+      class ResourceOptions
+        include Google::Apis::Core::Hashable
+      
+        # Optional. The Connect agent version to use for connect_resources. Defaults to
+        # the latest GKE Connect version. The version must be a currently supported
+        # version, obsolete versions will be rejected.
+        # Corresponds to the JSON property `connectVersion`
+        # @return [String]
+        attr_accessor :connect_version
+      
+        # Optional. Use `apiextensions/v1beta1` instead of `apiextensions/v1` for
+        # CustomResourceDefinition resources. This option should be set for clusters
+        # with Kubernetes apiserver versions <1.16.
+        # Corresponds to the JSON property `v1beta1Crd`
+        # @return [Boolean]
+        attr_accessor :v1beta1_crd
+        alias_method :v1beta1_crd?, :v1beta1_crd
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @connect_version = args[:connect_version] if args.key?(:connect_version)
+          @v1beta1_crd = args[:v1beta1_crd] if args.key?(:v1beta1_crd)
+        end
+      end
+      
       # AnalysisMessage is a single message produced by an analyzer, and it used to
       # communicate to the end user about the state of their Service Mesh
       # configuration.
@@ -2176,6 +2786,19 @@ module Google
         end
       end
       
+      # **Service Mesh**: Spec for a single Membership for the servicemesh feature
+      class ServiceMeshMembershipSpec
+        include Google::Apis::Core::Hashable
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+        end
+      end
+      
       # **Service Mesh**: State for a single Membership, as analyzed by the Service
       # Mesh Hub Controller.
       class ServiceMeshMembershipState
@@ -2235,31 +2858,31 @@ module Google
       
         # An Identity and Access Management (IAM) policy, which specifies access
         # controls for Google Cloud resources. A `Policy` is a collection of `bindings`.
-        # A `binding` binds one or more `members` to a single `role`. Members can be
-        # user accounts, service accounts, Google groups, and domains (such as G Suite).
-        # A `role` is a named list of permissions; each `role` can be an IAM predefined
-        # role or a user-created custom role. For some types of Google Cloud resources,
-        # a `binding` can also specify a `condition`, which is a logical expression that
-        # allows access to a resource only if the expression evaluates to `true`. A
-        # condition can add constraints based on attributes of the request, the resource,
-        # or both. To learn which resources support conditions in their IAM policies,
-        # see the [IAM documentation](https://cloud.google.com/iam/help/conditions/
-        # resource-policies). **JSON example:** ` "bindings": [ ` "role": "roles/
-        # resourcemanager.organizationAdmin", "members": [ "user:mike@example.com", "
-        # group:admins@example.com", "domain:google.com", "serviceAccount:my-project-id@
-        # appspot.gserviceaccount.com" ] `, ` "role": "roles/resourcemanager.
-        # organizationViewer", "members": [ "user:eve@example.com" ], "condition": ` "
-        # title": "expirable access", "description": "Does not grant access after Sep
-        # 2020", "expression": "request.time < timestamp('2020-10-01T00:00:00.000Z')", `
-        # ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:** bindings: -
-        # members: - user:mike@example.com - group:admins@example.com - domain:google.
-        # com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/
-        # resourcemanager.organizationAdmin - members: - user:eve@example.com role:
-        # roles/resourcemanager.organizationViewer condition: title: expirable access
-        # description: Does not grant access after Sep 2020 expression: request.time <
-        # timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 For a
-        # description of IAM and its features, see the [IAM documentation](https://cloud.
-        # google.com/iam/docs/).
+        # A `binding` binds one or more `members`, or principals, to a single `role`.
+        # Principals can be user accounts, service accounts, Google groups, and domains (
+        # such as G Suite). A `role` is a named list of permissions; each `role` can be
+        # an IAM predefined role or a user-created custom role. For some types of Google
+        # Cloud resources, a `binding` can also specify a `condition`, which is a
+        # logical expression that allows access to a resource only if the expression
+        # evaluates to `true`. A condition can add constraints based on attributes of
+        # the request, the resource, or both. To learn which resources support
+        # conditions in their IAM policies, see the [IAM documentation](https://cloud.
+        # google.com/iam/help/conditions/resource-policies). **JSON example:** ` "
+        # bindings": [ ` "role": "roles/resourcemanager.organizationAdmin", "members": [
+        # "user:mike@example.com", "group:admins@example.com", "domain:google.com", "
+        # serviceAccount:my-project-id@appspot.gserviceaccount.com" ] `, ` "role": "
+        # roles/resourcemanager.organizationViewer", "members": [ "user:eve@example.com"
+        # ], "condition": ` "title": "expirable access", "description": "Does not grant
+        # access after Sep 2020", "expression": "request.time < timestamp('2020-10-01T00:
+        # 00:00.000Z')", ` ` ], "etag": "BwWWja0YfJA=", "version": 3 ` **YAML example:**
+        # bindings: - members: - user:mike@example.com - group:admins@example.com -
+        # domain:google.com - serviceAccount:my-project-id@appspot.gserviceaccount.com
+        # role: roles/resourcemanager.organizationAdmin - members: - user:eve@example.
+        # com role: roles/resourcemanager.organizationViewer condition: title: expirable
+        # access description: Does not grant access after Sep 2020 expression: request.
+        # time < timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 For
+        # a description of IAM and its features, see the [IAM documentation](https://
+        # cloud.google.com/iam/docs/).
         # Corresponds to the JSON property `policy`
         # @return [Google::Apis::GkehubV1alpha::Policy]
         attr_accessor :policy
@@ -2282,6 +2905,31 @@ module Google
         end
       end
       
+      # Status specifies state for the subcomponent.
+      class Status
+        include Google::Apis::Core::Hashable
+      
+        # Code specifies AppDevExperienceFeature's subcomponent ready state.
+        # Corresponds to the JSON property `code`
+        # @return [String]
+        attr_accessor :code
+      
+        # Description is populated if Code is Failed, explaining why it has failed.
+        # Corresponds to the JSON property `description`
+        # @return [String]
+        attr_accessor :description
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @code = args[:code] if args.key?(:code)
+          @description = args[:description] if args.key?(:description)
+        end
+      end
+      
       # Request message for `TestIamPermissions` method.
       class TestIamPermissionsRequest
         include Google::Apis::Core::Hashable
@@ -2321,6 +2969,32 @@ module Google
           @permissions = args[:permissions] if args.key?(:permissions)
         end
       end
+      
+      # TypeMeta is the type information needed for content unmarshalling of
+      # Kubernetes resources in the manifest.
+      class TypeMeta
+        include Google::Apis::Core::Hashable
+      
+        # APIVersion of the resource (e.g. v1).
+        # Corresponds to the JSON property `apiVersion`
+        # @return [String]
+        attr_accessor :api_version
+      
+        # Kind of the resource (e.g. Deployment).
+        # Corresponds to the JSON property `kind`
+        # @return [String]
+        attr_accessor :kind
+      
+        def initialize(**args)
+           update!(**args)
+        end
+      
+        # Update properties of this object
+        def update!(**args)
+          @api_version = args[:api_version] if args.key?(:api_version)
+          @kind = args[:kind] if args.key?(:kind)
+        end
+      end
     end
   end
 end