@pulumi/gcp 5.24.0 → 5.26.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (58) hide show
  1. package/cloudbuild/workerPool.d.ts +6 -6
  2. package/composer/environment.d.ts +0 -16
  3. package/composer/environment.js +0 -16
  4. package/composer/environment.js.map +1 -1
  5. package/compute/address.d.ts +9 -0
  6. package/compute/address.js.map +1 -1
  7. package/compute/backendService.d.ts +15 -9
  8. package/compute/backendService.js.map +1 -1
  9. package/compute/firewallPolicyRule.d.ts +3 -3
  10. package/compute/getInstance.d.ts +1 -1
  11. package/compute/getInstanceTemplate.d.ts +1 -1
  12. package/compute/globalForwardingRule.d.ts +120 -0
  13. package/compute/globalForwardingRule.js +120 -0
  14. package/compute/globalForwardingRule.js.map +1 -1
  15. package/compute/instance.d.ts +6 -6
  16. package/compute/instanceGroup.d.ts +3 -3
  17. package/compute/instanceGroupManager.d.ts +3 -3
  18. package/compute/instanceTemplate.d.ts +12 -12
  19. package/compute/regionBackendService.d.ts +30 -0
  20. package/compute/regionBackendService.js +30 -0
  21. package/compute/regionBackendService.js.map +1 -1
  22. package/compute/router.d.ts +9 -6
  23. package/compute/router.js.map +1 -1
  24. package/compute/securityPolicy.d.ts +5 -21
  25. package/compute/securityPolicy.js +0 -16
  26. package/compute/securityPolicy.js.map +1 -1
  27. package/container/cluster.d.ts +48 -68
  28. package/container/cluster.js +0 -18
  29. package/container/cluster.js.map +1 -1
  30. package/container/nodePool.d.ts +11 -11
  31. package/container/nodePool.js +2 -2
  32. package/dataflow/job.d.ts +1 -1
  33. package/dataflow/job.js +1 -1
  34. package/gkehub/featureMembership.d.ts +3 -3
  35. package/gkehub/membership.d.ts +1 -1
  36. package/gkehub/membership.js +1 -1
  37. package/healthcare/dicomStore.d.ts +9 -9
  38. package/kms/cryptoKeyIAMBinding.d.ts +3 -3
  39. package/kms/cryptoKeyIAMMember.d.ts +3 -3
  40. package/kms/keyRingIAMBinding.d.ts +3 -3
  41. package/kms/keyRingIAMMember.d.ts +3 -3
  42. package/notebooks/instance.d.ts +9 -3
  43. package/notebooks/instance.js.map +1 -1
  44. package/organizations/policy.d.ts +6 -3
  45. package/organizations/policy.js.map +1 -1
  46. package/package.json +2 -2
  47. package/package.json.dev +1 -1
  48. package/pubsub/schema.d.ts +23 -0
  49. package/pubsub/schema.js +23 -0
  50. package/pubsub/schema.js.map +1 -1
  51. package/sql/user.d.ts +1 -1
  52. package/sql/user.js +1 -1
  53. package/storage/bucket.d.ts +9 -9
  54. package/storage/bucketObject.d.ts +3 -3
  55. package/types/input.d.ts +86 -39
  56. package/types/output.d.ts +93 -42
  57. package/vpcaccess/connector.d.ts +9 -3
  58. package/vpcaccess/connector.js.map +1 -1
package/types/input.d.ts CHANGED
@@ -2993,7 +2993,7 @@ export declare namespace bigquery {
2993
2993
  * When set, configures hive partitioning
2994
2994
  * support. Not all storage formats support hive partitioning -- requesting hive
2995
2995
  * partitioning on an unsupported format will lead to an error, as will providing
2996
- * an invalid specification.
2996
+ * an invalid specification. Structure is documented below.
2997
2997
  */
2998
2998
  hivePartitioningOptions?: pulumi.Input<inputs.bigquery.TableExternalDataConfigurationHivePartitioningOptions>;
2999
2999
  /**
@@ -5822,6 +5822,10 @@ export declare namespace cloudrun {
5822
5822
  * TimeoutSeconds holds the max duration the instance is allowed for responding to a request.
5823
5823
  */
5824
5824
  timeoutSeconds?: pulumi.Input<number>;
5825
+ /**
5826
+ * Volume represents a named volume in a container.
5827
+ * Structure is documented below.
5828
+ */
5825
5829
  volumes?: pulumi.Input<pulumi.Input<inputs.cloudrun.ServiceTemplateSpecVolume>[]>;
5826
5830
  }
5827
5831
  interface ServiceTemplateSpecContainer {
@@ -5887,6 +5891,11 @@ export declare namespace cloudrun {
5887
5891
  * Structure is documented below.
5888
5892
  */
5889
5893
  resources?: pulumi.Input<inputs.cloudrun.ServiceTemplateSpecContainerResources>;
5894
+ /**
5895
+ * Volume to mount into the container's filesystem.
5896
+ * Only supports SecretVolumeSources.
5897
+ * Structure is documented below.
5898
+ */
5890
5899
  volumeMounts?: pulumi.Input<pulumi.Input<inputs.cloudrun.ServiceTemplateSpecContainerVolumeMount>[]>;
5891
5900
  /**
5892
5901
  * -
@@ -5915,6 +5924,10 @@ export declare namespace cloudrun {
5915
5924
  * Defaults to "".
5916
5925
  */
5917
5926
  value?: pulumi.Input<string>;
5927
+ /**
5928
+ * Source for the environment variable's value. Only supports secret_key_ref.
5929
+ * Structure is documented below.
5930
+ */
5918
5931
  valueFrom?: pulumi.Input<inputs.cloudrun.ServiceTemplateSpecContainerEnvValueFrom>;
5919
5932
  }
5920
5933
  interface ServiceTemplateSpecContainerEnvFrom {
@@ -6365,18 +6378,19 @@ export declare namespace composer {
6365
6378
  /**
6366
6379
  * The configuration settings for Cloud SQL instance used internally
6367
6380
  * by Apache Airflow software. This field is supported for Cloud
6368
- * Composer environments in versions composer-1.*.*-airflow-*.*.*.
6381
+ * Composer environments in versions composer-1.*.*-airflow-*.*.*. Structure is documented below.
6369
6382
  */
6370
6383
  databaseConfig?: pulumi.Input<inputs.composer.EnvironmentConfigDatabaseConfig>;
6371
6384
  /**
6372
6385
  * The encryption options for the Cloud Composer environment and its
6373
6386
  * dependencies. This field is supported for Cloud Composer environments in
6374
- * versions composer-1.*.*-airflow-*.*.*.
6387
+ * versions composer-1.*.*-airflow-*.*.*. Structure is documented below.
6375
6388
  */
6376
6389
  encryptionConfig?: pulumi.Input<inputs.composer.EnvironmentConfigEncryptionConfig>;
6390
+ environmentSize?: pulumi.Input<string>;
6377
6391
  gkeCluster?: pulumi.Input<string>;
6378
6392
  /**
6379
- * The configuration settings for Cloud Composer maintenance window.
6393
+ * The configuration settings for Cloud Composer maintenance window. Structure is documented below.
6380
6394
  */
6381
6395
  maintenanceWindow?: pulumi.Input<inputs.composer.EnvironmentConfigMaintenanceWindow>;
6382
6396
  /**
@@ -6401,9 +6415,15 @@ export declare namespace composer {
6401
6415
  /**
6402
6416
  * The configuration settings for the Airflow web server App Engine instance.
6403
6417
  * This field is supported for Cloud Composer environments in versions
6404
- * composer-1.*.*-airflow-*.*.*.
6418
+ * composer-1.*.*-airflow-*.*.*. Structure is documented below.
6405
6419
  */
6406
6420
  webServerConfig?: pulumi.Input<inputs.composer.EnvironmentConfigWebServerConfig>;
6421
+ /**
6422
+ * The network-level access control policy for the Airflow web server.
6423
+ * If unspecified, no network-level access restrictions will be applied.
6424
+ * This field is supported for Cloud Composer environments in versions
6425
+ * composer-1.*.*-airflow-*.*.*.
6426
+ */
6407
6427
  webServerNetworkAccessControl?: pulumi.Input<inputs.composer.EnvironmentConfigWebServerNetworkAccessControl>;
6408
6428
  /**
6409
6429
  * The Kubernetes workloads configuration for GKE cluster associated with the
@@ -6453,6 +6473,12 @@ export declare namespace composer {
6453
6473
  * for Cloud Composer environments in versions composer-1.*.*-airflow-*.*.*.
6454
6474
  */
6455
6475
  diskSizeGb?: pulumi.Input<number>;
6476
+ /**
6477
+ * Deploys 'ip-masq-agent' daemon set in the GKE cluster and defines
6478
+ * nonMasqueradeCIDRs equals to pod IP range so IP masquerading is used for
6479
+ * all destination addresses, except between pods traffic.
6480
+ * See the [documentation](https://cloud.google.com/kubernetes-engine/docs/how-to/ip-masquerade-agent).
6481
+ */
6456
6482
  enableIpMasqAgent?: pulumi.Input<boolean>;
6457
6483
  /**
6458
6484
  * Configuration for controlling how IPs are allocated in the GKE cluster.
@@ -6521,7 +6547,7 @@ export declare namespace composer {
6521
6547
  * supported for Cloud Composer environments in versions
6522
6548
  * composer-1.*.*-airflow-*.*.*.
6523
6549
  */
6524
- zone: pulumi.Input<string>;
6550
+ zone?: pulumi.Input<string>;
6525
6551
  }
6526
6552
  interface EnvironmentConfigNodeConfigIpAllocationPolicy {
6527
6553
  /**
@@ -6583,6 +6609,10 @@ export declare namespace composer {
6583
6609
  * composer-1.*.*-airflow-*.*.*.
6584
6610
  */
6585
6611
  enablePrivateEndpoint?: pulumi.Input<boolean>;
6612
+ /**
6613
+ * When enabled, IPs from public (non-RFC1918) ranges can be used for
6614
+ * `ip_allocation_policy.cluster_ipv4_cidr_block` and `ip_allocation_policy.service_ipv4_cidr_block`.
6615
+ */
6586
6616
  enablePrivatelyUsedPublicIps?: pulumi.Input<boolean>;
6587
6617
  /**
6588
6618
  * The IP range in CIDR notation to use for the hosted master network. This range is used
@@ -7854,7 +7884,7 @@ export declare namespace compute {
7854
7884
  */
7855
7885
  destIpRanges?: pulumi.Input<pulumi.Input<string>[]>;
7856
7886
  /**
7857
- * Pairs of IP protocols and ports that the rule should match.
7887
+ * Pairs of IP protocols and ports that the rule should match. Structure is documented below.
7858
7888
  */
7859
7889
  layer4Configs: pulumi.Input<pulumi.Input<inputs.compute.FirewallPolicyRuleMatchLayer4Config>[]>;
7860
7890
  /**
@@ -12368,17 +12398,17 @@ export declare namespace compute {
12368
12398
  }
12369
12399
  interface SecurityPolicyAdaptiveProtectionConfig {
12370
12400
  /**
12371
- * ) Configuration for [Google Cloud Armor Adaptive Protection Layer 7 DDoS Defense](https://cloud.google.com/armor/docs/adaptive-protection-overview?hl=en). Structure is documented below.
12401
+ * Configuration for [Google Cloud Armor Adaptive Protection Layer 7 DDoS Defense](https://cloud.google.com/armor/docs/adaptive-protection-overview?hl=en). Structure is documented below.
12372
12402
  */
12373
12403
  layer7DdosDefenseConfig?: pulumi.Input<inputs.compute.SecurityPolicyAdaptiveProtectionConfigLayer7DdosDefenseConfig>;
12374
12404
  }
12375
12405
  interface SecurityPolicyAdaptiveProtectionConfigLayer7DdosDefenseConfig {
12376
12406
  /**
12377
- * ) If set to true, enables CAAP for L7 DDoS detection.
12407
+ * If set to true, enables CAAP for L7 DDoS detection.
12378
12408
  */
12379
12409
  enable?: pulumi.Input<boolean>;
12380
12410
  /**
12381
- * ) Rule visibility can be one of the following: STANDARD - opaque rules. (default) PREMIUM - transparent rules.
12411
+ * Rule visibility can be one of the following: STANDARD - opaque rules. (default) PREMIUM - transparent rules.
12382
12412
  */
12383
12413
  ruleVisibility?: pulumi.Input<string>;
12384
12414
  }
@@ -14716,16 +14746,10 @@ export declare namespace container {
14716
14746
  }
14717
14747
  interface ClusterDnsConfig {
14718
14748
  /**
14719
- * Which in-cluster DNS provider should be used. `PROVIDER_UNSPECIFIED` (default) or `PLATFORM_DEFAULT` or `CLOUD_DNS`.
14749
+ * Which in-cluster DNS provider shoul
14720
14750
  */
14721
14751
  clusterDns?: pulumi.Input<string>;
14722
- /**
14723
- * The suffix used for all cluster service records.
14724
- */
14725
14752
  clusterDnsDomain?: pulumi.Input<string>;
14726
- /**
14727
- * The scope of access to cluster DNS records. `DNS_SCOPE_UNSPECIFIED` (default) or `CLUSTER_SCOPE` or `VPC_SCOPE`.
14728
- */
14729
14753
  clusterDnsScope?: pulumi.Input<string>;
14730
14754
  }
14731
14755
  interface ClusterIpAllocationPolicy {
@@ -14761,8 +14785,7 @@ export declare namespace container {
14761
14785
  }
14762
14786
  interface ClusterLoggingConfig {
14763
14787
  /**
14764
- * The GKE components exposing logs. Only `SYSTEM_COMPONENTS`
14765
- * is supported.
14788
+ * The GKE components exposing logs. `SYSTEM_COMPONENTS` and in beta provider, both `SYSTEM_COMPONENTS` and `WORKLOADS` are supported.
14766
14789
  */
14767
14790
  enableComponents: pulumi.Input<pulumi.Input<string>[]>;
14768
14791
  }
@@ -14838,8 +14861,7 @@ export declare namespace container {
14838
14861
  }
14839
14862
  interface ClusterMonitoringConfig {
14840
14863
  /**
14841
- * The GKE components exposing logs. Only `SYSTEM_COMPONENTS`
14842
- * is supported.
14864
+ * The GKE components exposing logs. `SYSTEM_COMPONENTS` and in beta provider, both `SYSTEM_COMPONENTS` and `WORKLOADS` are supported.
14843
14865
  */
14844
14866
  enableComponents: pulumi.Input<pulumi.Input<string>[]>;
14845
14867
  }
@@ -14988,6 +15010,10 @@ export declare namespace container {
14988
15010
  * The number of the guest accelerator cards exposed to this instance.
14989
15011
  */
14990
15012
  count: pulumi.Input<number>;
15013
+ /**
15014
+ * Size of partitions to create on the GPU. Valid values are described in the NVIDIA mig [user guide](https://docs.nvidia.com/datacenter/tesla/mig-user-guide/#partitioning).
15015
+ */
15016
+ gpuPartitionSize?: pulumi.Input<string>;
14991
15017
  /**
14992
15018
  * The accelerator type resource to expose to this instance. E.g. `nvidia-tesla-k80`.
14993
15019
  */
@@ -15086,10 +15112,6 @@ export declare namespace container {
15086
15112
  * `removeDefaultNodePool` to `true`.
15087
15113
  */
15088
15114
  initialNodeCount?: pulumi.Input<number>;
15089
- /**
15090
- * List of instance group URLs which have been assigned
15091
- * to the cluster.
15092
- */
15093
15115
  instanceGroupUrls?: pulumi.Input<pulumi.Input<string>[]>;
15094
15116
  management?: pulumi.Input<inputs.container.ClusterNodePoolManagement>;
15095
15117
  maxPodsPerNode?: pulumi.Input<number>;
@@ -15100,8 +15122,8 @@ export declare namespace container {
15100
15122
  name?: pulumi.Input<string>;
15101
15123
  namePrefix?: pulumi.Input<string>;
15102
15124
  /**
15103
- * ) Configuration for
15104
- * [Adding Pod IP address ranges](https://cloud.google.com/kubernetes-engine/docs/how-to/multi-pod-cidr)) to the node pool.
15125
+ * Configuration for
15126
+ * [Adding Pod IP address ranges](https://cloud.google.com/kubernetes-engine/docs/how-to/multi-pod-cidr)) to the node pool. Structure is documented below
15105
15127
  */
15106
15128
  networkConfig?: pulumi.Input<inputs.container.ClusterNodePoolNetworkConfig>;
15107
15129
  /**
@@ -15133,15 +15155,15 @@ export declare namespace container {
15133
15155
  }
15134
15156
  interface ClusterNodePoolNetworkConfig {
15135
15157
  /**
15136
- * ) Whether to create a new range for pod IPs in this node pool. Defaults are provided for `podRange` and `podIpv4CidrBlock` if they are not specified.
15158
+ * Whether to create a new range for pod IPs in this node pool. Defaults are provided for `podRange` and `podIpv4CidrBlock` if they are not specified.
15137
15159
  */
15138
15160
  createPodRange?: pulumi.Input<boolean>;
15139
15161
  /**
15140
- * ) The IP address range for pod IPs in this node pool. Only applicable if createPodRange is true. Set to blank to have a range chosen with the default size. Set to /netmask (e.g. /14) to have a range chosen with a specific netmask. Set to a CIDR notation (e.g. 10.96.0.0/14) to pick a specific range to use.
15162
+ * The IP address range for pod IPs in this node pool. Only applicable if createPodRange is true. Set to blank to have a range chosen with the default size. Set to /netmask (e.g. /14) to have a range chosen with a specific netmask. Set to a CIDR notation (e.g. 10.96.0.0/14) to pick a specific range to use.
15141
15163
  */
15142
15164
  podIpv4CidrBlock?: pulumi.Input<string>;
15143
15165
  /**
15144
- * ) The ID of the secondary range for pod IPs. If `createPodRange` is true, this ID is used for the new range. If `createPodRange` is false, uses an existing secondary range with this ID.
15166
+ * The ID of the secondary range for pod IPs. If `createPodRange` is true, this ID is used for the new range. If `createPodRange` is false, uses an existing secondary range with this ID.
15145
15167
  */
15146
15168
  podRange: pulumi.Input<string>;
15147
15169
  }
@@ -15279,6 +15301,10 @@ export declare namespace container {
15279
15301
  * The number of the guest accelerator cards exposed to this instance.
15280
15302
  */
15281
15303
  count: pulumi.Input<number>;
15304
+ /**
15305
+ * Size of partitions to create on the GPU. Valid values are described in the NVIDIA mig [user guide](https://docs.nvidia.com/datacenter/tesla/mig-user-guide/#partitioning).
15306
+ */
15307
+ gpuPartitionSize?: pulumi.Input<string>;
15282
15308
  /**
15283
15309
  * The accelerator type resource to expose to this instance. E.g. `nvidia-tesla-k80`.
15284
15310
  */
@@ -15487,9 +15513,15 @@ export declare namespace container {
15487
15513
  }
15488
15514
  interface ClusterWorkloadIdentityConfig {
15489
15515
  /**
15490
- * Currently, the only supported identity namespace is the project's default.
15516
+ * - Currently, the only supported identity namespace is the project's default.
15517
+ *
15518
+ * @deprecated This field will be removed in a future major release as it has been deprecated in the API. Use `workload_pool` instead.
15519
+ */
15520
+ identityNamespace?: pulumi.Input<string>;
15521
+ /**
15522
+ * The workload pool to attach all Kubernetes service accounts to. Currently, the only supported identity namespace is the project of the cluster.
15491
15523
  */
15492
- identityNamespace: pulumi.Input<string>;
15524
+ workloadPool?: pulumi.Input<string>;
15493
15525
  }
15494
15526
  interface NodePoolAutoscaling {
15495
15527
  /**
@@ -15549,6 +15581,7 @@ export declare namespace container {
15549
15581
  }
15550
15582
  interface NodePoolNodeConfigGuestAccelerator {
15551
15583
  count: pulumi.Input<number>;
15584
+ gpuPartitionSize?: pulumi.Input<string>;
15552
15585
  type: pulumi.Input<string>;
15553
15586
  }
15554
15587
  interface NodePoolNodeConfigKubeletConfig {
@@ -17056,7 +17089,7 @@ export declare namespace dataproc {
17056
17089
  lifecycleConfig?: pulumi.Input<inputs.dataproc.ClusterClusterConfigLifecycleConfig>;
17057
17090
  /**
17058
17091
  * The Google Compute Engine config settings for the master instances
17059
- * in a cluster.. Structure defined below.
17092
+ * in a cluster. Structure defined below.
17060
17093
  */
17061
17094
  masterConfig?: pulumi.Input<inputs.dataproc.ClusterClusterConfigMasterConfig>;
17062
17095
  /**
@@ -17100,7 +17133,7 @@ export declare namespace dataproc {
17100
17133
  tempBucket?: pulumi.Input<string>;
17101
17134
  /**
17102
17135
  * The Google Compute Engine config settings for the worker instances
17103
- * in a cluster.. Structure defined below.
17136
+ * in a cluster. Structure defined below.
17104
17137
  */
17105
17138
  workerConfig?: pulumi.Input<inputs.dataproc.ClusterClusterConfigWorkerConfig>;
17106
17139
  }
@@ -19683,6 +19716,13 @@ export declare namespace filestore {
19683
19716
  squashMode?: pulumi.Input<string>;
19684
19717
  }
19685
19718
  interface InstanceNetwork {
19719
+ /**
19720
+ * The network connect mode of the Filestore instance.
19721
+ * If not provided, the connect mode defaults to
19722
+ * DIRECT_PEERING.
19723
+ * Default value is `DIRECT_PEERING`.
19724
+ * Possible values are `DIRECT_PEERING` and `PRIVATE_SERVICE_ACCESS`.
19725
+ */
19686
19726
  connectMode?: pulumi.Input<string>;
19687
19727
  /**
19688
19728
  * -
@@ -19945,19 +19985,19 @@ export declare namespace gameservices {
19945
19985
  export declare namespace gkehub {
19946
19986
  interface FeatureMembershipConfigmanagement {
19947
19987
  /**
19948
- * Binauthz configuration for the cluster.
19988
+ * Binauthz configuration for the cluster. Structure is documented below.
19949
19989
  */
19950
19990
  binauthz?: pulumi.Input<inputs.gkehub.FeatureMembershipConfigmanagementBinauthz>;
19951
19991
  /**
19952
- * Config Sync configuration for the cluster.
19992
+ * Config Sync configuration for the cluster. Structure is documented below.
19953
19993
  */
19954
19994
  configSync?: pulumi.Input<inputs.gkehub.FeatureMembershipConfigmanagementConfigSync>;
19955
19995
  /**
19956
- * Hierarchy Controller configuration for the cluster.
19996
+ * Hierarchy Controller configuration for the cluster. Structure is documented below.
19957
19997
  */
19958
19998
  hierarchyController?: pulumi.Input<inputs.gkehub.FeatureMembershipConfigmanagementHierarchyController>;
19959
19999
  /**
19960
- * Policy Controller configuration for the cluster.
20000
+ * Policy Controller configuration for the cluster. Structure is documented below.
19961
20001
  */
19962
20002
  policyController?: pulumi.Input<inputs.gkehub.FeatureMembershipConfigmanagementPolicyController>;
19963
20003
  /**
@@ -19974,7 +20014,7 @@ export declare namespace gkehub {
19974
20014
  interface FeatureMembershipConfigmanagementConfigSync {
19975
20015
  /**
19976
20016
  * -
19977
- * (Optional)
20017
+ * (Optional) Structure is documented below.
19978
20018
  */
19979
20019
  git?: pulumi.Input<inputs.gkehub.FeatureMembershipConfigmanagementConfigSyncGit>;
19980
20020
  /**
@@ -25466,7 +25506,14 @@ export declare namespace vertex {
25466
25506
  }
25467
25507
  export declare namespace vpcaccess {
25468
25508
  interface ConnectorSubnet {
25509
+ /**
25510
+ * Subnet name (relative, not fully qualified). E.g. if the full subnet selfLink is
25511
+ * https://compute.googleapis.com/compute/v1/projects/{project}/regions/{region}/subnetworks/{subnetName} the correct input for this field would be {subnetName}"
25512
+ */
25469
25513
  name?: pulumi.Input<string>;
25514
+ /**
25515
+ * Project in which the subnet exists. If not set, this project is assumed to be the project for which the connector create request was issued.
25516
+ */
25470
25517
  projectId?: pulumi.Input<string>;
25471
25518
  }
25472
25519
  }