@pulumi/gcp 5.25.0 → 6.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (209) hide show
  1. package/appengine/applicationUrlDispatchRules.d.ts +1 -1
  2. package/appengine/applicationUrlDispatchRules.js +1 -1
  3. package/appengine/engineSplitTraffic.d.ts +1 -1
  4. package/appengine/engineSplitTraffic.js +1 -1
  5. package/appengine/flexibleAppVersion.d.ts +4 -1
  6. package/appengine/flexibleAppVersion.js +4 -1
  7. package/appengine/flexibleAppVersion.js.map +1 -1
  8. package/appengine/serviceNetworkSettings.d.ts +1 -1
  9. package/appengine/serviceNetworkSettings.js +1 -1
  10. package/appengine/standardAppVersion.d.ts +3 -3
  11. package/appengine/standardAppVersion.js +4 -1
  12. package/appengine/standardAppVersion.js.map +1 -1
  13. package/bigquery/dataTransferConfig.d.ts +1 -0
  14. package/bigquery/dataTransferConfig.js +1 -0
  15. package/bigquery/dataTransferConfig.js.map +1 -1
  16. package/bigquery/job.d.ts +4 -1
  17. package/bigquery/job.js +4 -1
  18. package/bigquery/job.js.map +1 -1
  19. package/cloudbuild/trigger.d.ts +3 -0
  20. package/cloudbuild/trigger.js +3 -0
  21. package/cloudbuild/trigger.js.map +1 -1
  22. package/cloudbuild/workerPool.d.ts +6 -6
  23. package/cloudfunctions/function.d.ts +2 -2
  24. package/cloudfunctions/function.js +2 -2
  25. package/cloudfunctions/zMixins.d.ts +4 -0
  26. package/cloudfunctions/zMixins.js +1 -0
  27. package/cloudfunctions/zMixins.js.map +1 -1
  28. package/cloudrun/service.d.ts +1 -0
  29. package/cloudrun/service.js +1 -0
  30. package/cloudrun/service.js.map +1 -1
  31. package/composer/environment.d.ts +24 -134
  32. package/composer/environment.js +0 -95
  33. package/composer/environment.js.map +1 -1
  34. package/compute/address.d.ts +9 -0
  35. package/compute/address.js.map +1 -1
  36. package/compute/backendService.d.ts +15 -9
  37. package/compute/backendService.js.map +1 -1
  38. package/compute/firewall.d.ts +8 -4
  39. package/compute/firewall.js +1 -0
  40. package/compute/firewall.js.map +1 -1
  41. package/compute/firewallPolicyRule.d.ts +3 -3
  42. package/compute/getInstance.d.ts +1 -1
  43. package/compute/getInstanceTemplate.d.ts +1 -1
  44. package/compute/instance.d.ts +33 -36
  45. package/compute/instance.js.map +1 -1
  46. package/compute/instanceGroup.d.ts +3 -3
  47. package/compute/instanceGroupManager.d.ts +3 -3
  48. package/compute/instanceGroupNamedPort.d.ts +2 -2
  49. package/compute/instanceGroupNamedPort.js +2 -2
  50. package/compute/instanceTemplate.d.ts +10 -10
  51. package/compute/regionNetworkEndpointGroup.d.ts +2 -2
  52. package/compute/regionNetworkEndpointGroup.js +2 -2
  53. package/compute/router.d.ts +9 -6
  54. package/compute/router.js.map +1 -1
  55. package/compute/securityPolicy.d.ts +5 -21
  56. package/compute/securityPolicy.js +0 -16
  57. package/compute/securityPolicy.js.map +1 -1
  58. package/compute/snapshot.d.ts +0 -8
  59. package/compute/snapshot.js +0 -2
  60. package/compute/snapshot.js.map +1 -1
  61. package/config/vars.d.ts +0 -3
  62. package/config/vars.js +0 -18
  63. package/config/vars.js.map +1 -1
  64. package/container/cluster.d.ts +37 -47
  65. package/container/cluster.js +0 -2
  66. package/container/cluster.js.map +1 -1
  67. package/container/getCluster.d.ts +1 -4
  68. package/container/getCluster.js +1 -3
  69. package/container/getCluster.js.map +1 -1
  70. package/container/getEngineVersions.d.ts +0 -4
  71. package/container/getEngineVersions.js +0 -4
  72. package/container/getEngineVersions.js.map +1 -1
  73. package/container/nodePool.d.ts +19 -11
  74. package/container/nodePool.js +4 -2
  75. package/container/nodePool.js.map +1 -1
  76. package/containeranalysis/occurence.d.ts +2 -2
  77. package/containeranalysis/occurence.js +2 -2
  78. package/dataflow/job.d.ts +9 -3
  79. package/dataflow/job.js +9 -3
  80. package/dataflow/job.js.map +1 -1
  81. package/dataloss/preventionStoredInfoType.d.ts +4 -1
  82. package/dataloss/preventionStoredInfoType.js +4 -1
  83. package/dataloss/preventionStoredInfoType.js.map +1 -1
  84. package/gkehub/featureMembership.d.ts +3 -3
  85. package/gkehub/membership.d.ts +1 -1
  86. package/gkehub/membership.js +1 -1
  87. package/healthcare/dicomStore.d.ts +9 -9
  88. package/kms/cryptoKey.d.ts +0 -12
  89. package/kms/cryptoKey.js +0 -2
  90. package/kms/cryptoKey.js.map +1 -1
  91. package/kms/cryptoKeyIAMBinding.d.ts +3 -3
  92. package/kms/cryptoKeyIAMMember.d.ts +3 -3
  93. package/kms/getKMSCryptoKey.d.ts +3 -7
  94. package/kms/getKMSCryptoKey.js +1 -1
  95. package/kms/getKMSCryptoKey.js.map +1 -1
  96. package/kms/getKMSCryptoKeyVersion.d.ts +3 -3
  97. package/kms/getKMSCryptoKeyVersion.js +1 -1
  98. package/kms/getKMSKeyRing.d.ts +0 -4
  99. package/kms/getKMSKeyRing.js.map +1 -1
  100. package/kms/keyRing.d.ts +0 -12
  101. package/kms/keyRing.js +0 -2
  102. package/kms/keyRing.js.map +1 -1
  103. package/kms/keyRingIAMBinding.d.ts +3 -3
  104. package/kms/keyRingIAMMember.d.ts +3 -3
  105. package/logging/billingAccountSink.d.ts +2 -1
  106. package/logging/billingAccountSink.js +2 -1
  107. package/logging/billingAccountSink.js.map +1 -1
  108. package/logging/folderSink.d.ts +2 -1
  109. package/logging/folderSink.js +2 -1
  110. package/logging/folderSink.js.map +1 -1
  111. package/logging/organizationSink.d.ts +2 -1
  112. package/logging/organizationSink.js +2 -1
  113. package/logging/organizationSink.js.map +1 -1
  114. package/monitoring/getAppEngineService.d.ts +1 -1
  115. package/monitoring/getAppEngineService.js +1 -1
  116. package/networkservices/edgeCacheService.d.ts +8 -2
  117. package/networkservices/edgeCacheService.js +8 -2
  118. package/networkservices/edgeCacheService.js.map +1 -1
  119. package/notebooks/instance.d.ts +9 -7
  120. package/notebooks/instance.js +0 -4
  121. package/notebooks/instance.js.map +1 -1
  122. package/organizations/policy.d.ts +6 -3
  123. package/organizations/policy.js.map +1 -1
  124. package/organizations/project.d.ts +2 -2
  125. package/package.json +2 -2
  126. package/package.json.dev +1 -1
  127. package/projects/iamauditConfig.d.ts +7 -10
  128. package/projects/iamauditConfig.js +3 -0
  129. package/projects/iamauditConfig.js.map +1 -1
  130. package/projects/iambinding.d.ts +7 -10
  131. package/projects/iambinding.js +3 -0
  132. package/projects/iambinding.js.map +1 -1
  133. package/projects/iammember.d.ts +7 -10
  134. package/projects/iammember.js +3 -0
  135. package/projects/iammember.js.map +1 -1
  136. package/projects/iampolicy.d.ts +6 -9
  137. package/projects/iampolicy.js.map +1 -1
  138. package/provider.d.ts +0 -6
  139. package/provider.js +0 -3
  140. package/provider.js.map +1 -1
  141. package/pubsub/schema.d.ts +23 -0
  142. package/pubsub/schema.js +23 -0
  143. package/pubsub/schema.js.map +1 -1
  144. package/pubsub/subscription.d.ts +0 -12
  145. package/pubsub/subscription.js +0 -2
  146. package/pubsub/subscription.js.map +1 -1
  147. package/runtimeconfig/config.d.ts +0 -23
  148. package/runtimeconfig/config.js +0 -23
  149. package/runtimeconfig/config.js.map +1 -1
  150. package/runtimeconfig/configIamBinding.d.ts +0 -57
  151. package/runtimeconfig/configIamBinding.js +0 -57
  152. package/runtimeconfig/configIamBinding.js.map +1 -1
  153. package/runtimeconfig/configIamMember.d.ts +0 -57
  154. package/runtimeconfig/configIamMember.js +0 -57
  155. package/runtimeconfig/configIamMember.js.map +1 -1
  156. package/runtimeconfig/configIamPolicy.d.ts +0 -57
  157. package/runtimeconfig/configIamPolicy.js +0 -57
  158. package/runtimeconfig/configIamPolicy.js.map +1 -1
  159. package/runtimeconfig/getConfig.d.ts +0 -20
  160. package/runtimeconfig/getConfig.js +0 -20
  161. package/runtimeconfig/getConfig.js.map +1 -1
  162. package/runtimeconfig/getVariable.d.ts +0 -19
  163. package/runtimeconfig/getVariable.js +0 -19
  164. package/runtimeconfig/getVariable.js.map +1 -1
  165. package/runtimeconfig/variable.d.ts +0 -39
  166. package/runtimeconfig/variable.js +0 -39
  167. package/runtimeconfig/variable.js.map +1 -1
  168. package/spanner/database.d.ts +1 -0
  169. package/spanner/database.js +1 -0
  170. package/spanner/database.js.map +1 -1
  171. package/spanner/getInstance.d.ts +2 -14
  172. package/spanner/getInstance.js +0 -4
  173. package/spanner/getInstance.js.map +1 -1
  174. package/sql/database.d.ts +1 -0
  175. package/sql/database.js +1 -0
  176. package/sql/database.js.map +1 -1
  177. package/sql/databaseInstance.d.ts +26 -38
  178. package/sql/databaseInstance.js +4 -22
  179. package/sql/databaseInstance.js.map +1 -1
  180. package/sql/sslCert.d.ts +6 -3
  181. package/sql/sslCert.js +6 -3
  182. package/sql/sslCert.js.map +1 -1
  183. package/sql/user.d.ts +7 -4
  184. package/sql/user.js +7 -4
  185. package/sql/user.js.map +1 -1
  186. package/storage/bucket.d.ts +12 -30
  187. package/storage/bucket.js +3 -2
  188. package/storage/bucket.js.map +1 -1
  189. package/storage/bucketAccessControl.d.ts +1 -1
  190. package/storage/bucketAccessControl.js +1 -1
  191. package/storage/bucketObject.d.ts +3 -3
  192. package/storage/defaultObjectAccessControl.d.ts +1 -1
  193. package/storage/defaultObjectAccessControl.js +1 -1
  194. package/storage/getBucket.d.ts +0 -1
  195. package/storage/getBucket.js.map +1 -1
  196. package/storage/getProjectServiceAccount.d.ts +6 -3
  197. package/storage/getProjectServiceAccount.js +6 -3
  198. package/storage/getProjectServiceAccount.js.map +1 -1
  199. package/storage/notification.d.ts +1 -1
  200. package/storage/notification.js +1 -1
  201. package/storage/objectAccessControl.d.ts +1 -1
  202. package/storage/objectAccessControl.js +1 -1
  203. package/storage/transferJob.d.ts +1 -0
  204. package/storage/transferJob.js +1 -0
  205. package/storage/transferJob.js.map +1 -1
  206. package/types/input.d.ts +69 -393
  207. package/types/output.d.ts +76 -403
  208. package/vpcaccess/connector.d.ts +9 -3
  209. package/vpcaccess/connector.js.map +1 -1
package/types/input.d.ts CHANGED
@@ -2993,7 +2993,7 @@ export declare namespace bigquery {
2993
2993
  * When set, configures hive partitioning
2994
2994
  * support. Not all storage formats support hive partitioning -- requesting hive
2995
2995
  * partitioning on an unsupported format will lead to an error, as will providing
2996
- * an invalid specification.
2996
+ * an invalid specification. Structure is documented below.
2997
2997
  */
2998
2998
  hivePartitioningOptions?: pulumi.Input<inputs.bigquery.TableExternalDataConfigurationHivePartitioningOptions>;
2999
2999
  /**
@@ -5822,6 +5822,10 @@ export declare namespace cloudrun {
5822
5822
  * TimeoutSeconds holds the max duration the instance is allowed for responding to a request.
5823
5823
  */
5824
5824
  timeoutSeconds?: pulumi.Input<number>;
5825
+ /**
5826
+ * Volume represents a named volume in a container.
5827
+ * Structure is documented below.
5828
+ */
5825
5829
  volumes?: pulumi.Input<pulumi.Input<inputs.cloudrun.ServiceTemplateSpecVolume>[]>;
5826
5830
  }
5827
5831
  interface ServiceTemplateSpecContainer {
@@ -5887,6 +5891,11 @@ export declare namespace cloudrun {
5887
5891
  * Structure is documented below.
5888
5892
  */
5889
5893
  resources?: pulumi.Input<inputs.cloudrun.ServiceTemplateSpecContainerResources>;
5894
+ /**
5895
+ * Volume to mount into the container's filesystem.
5896
+ * Only supports SecretVolumeSources.
5897
+ * Structure is documented below.
5898
+ */
5890
5899
  volumeMounts?: pulumi.Input<pulumi.Input<inputs.cloudrun.ServiceTemplateSpecContainerVolumeMount>[]>;
5891
5900
  /**
5892
5901
  * -
@@ -5915,6 +5924,10 @@ export declare namespace cloudrun {
5915
5924
  * Defaults to "".
5916
5925
  */
5917
5926
  value?: pulumi.Input<string>;
5927
+ /**
5928
+ * Source for the environment variable's value. Only supports secret_key_ref.
5929
+ * Structure is documented below.
5930
+ */
5918
5931
  valueFrom?: pulumi.Input<inputs.cloudrun.ServiceTemplateSpecContainerEnvValueFrom>;
5919
5932
  }
5920
5933
  interface ServiceTemplateSpecContainerEnvFrom {
@@ -6362,392 +6375,103 @@ export declare namespace composer {
6362
6375
  interface EnvironmentConfig {
6363
6376
  airflowUri?: pulumi.Input<string>;
6364
6377
  dagGcsPrefix?: pulumi.Input<string>;
6365
- /**
6366
- * The configuration settings for Cloud SQL instance used internally
6367
- * by Apache Airflow software. This field is supported for Cloud
6368
- * Composer environments in versions composer-1.*.*-airflow-*.*.*.
6369
- */
6370
6378
  databaseConfig?: pulumi.Input<inputs.composer.EnvironmentConfigDatabaseConfig>;
6371
- /**
6372
- * The encryption options for the Cloud Composer environment and its
6373
- * dependencies. This field is supported for Cloud Composer environments in
6374
- * versions composer-1.*.*-airflow-*.*.*.
6375
- */
6376
6379
  encryptionConfig?: pulumi.Input<inputs.composer.EnvironmentConfigEncryptionConfig>;
6380
+ environmentSize?: pulumi.Input<string>;
6377
6381
  gkeCluster?: pulumi.Input<string>;
6378
- /**
6379
- * The configuration settings for Cloud Composer maintenance window.
6380
- */
6381
6382
  maintenanceWindow?: pulumi.Input<inputs.composer.EnvironmentConfigMaintenanceWindow>;
6382
- /**
6383
- * The configuration used for the Kubernetes Engine cluster. Structure is documented below.
6384
- */
6385
6383
  nodeConfig?: pulumi.Input<inputs.composer.EnvironmentConfigNodeConfig>;
6386
- /**
6387
- * The number of nodes in the Kubernetes Engine cluster that
6388
- * will be used to run this environment. This field is
6389
- * supported for Cloud Composer environments in versions
6390
- * composer-1.*.*-airflow-*.*.*.
6391
- */
6392
6384
  nodeCount?: pulumi.Input<number>;
6393
- /**
6394
- * The configuration used for the Private IP Cloud Composer environment. Structure is documented below.
6395
- */
6396
6385
  privateEnvironmentConfig?: pulumi.Input<inputs.composer.EnvironmentConfigPrivateEnvironmentConfig>;
6397
- /**
6398
- * The configuration settings for software inside the environment. Structure is documented below.
6399
- */
6400
6386
  softwareConfig?: pulumi.Input<inputs.composer.EnvironmentConfigSoftwareConfig>;
6401
- /**
6402
- * The configuration settings for the Airflow web server App Engine instance.
6403
- * This field is supported for Cloud Composer environments in versions
6404
- * composer-1.*.*-airflow-*.*.*.
6405
- */
6406
6387
  webServerConfig?: pulumi.Input<inputs.composer.EnvironmentConfigWebServerConfig>;
6407
6388
  webServerNetworkAccessControl?: pulumi.Input<inputs.composer.EnvironmentConfigWebServerNetworkAccessControl>;
6408
- /**
6409
- * The Kubernetes workloads configuration for GKE cluster associated with the
6410
- * Cloud Composer environment. Supported for Cloud Composer environments in
6411
- * versions composer-2.*.*-airflow-*.*.* and newer.
6412
- */
6413
6389
  workloadsConfig?: pulumi.Input<inputs.composer.EnvironmentConfigWorkloadsConfig>;
6414
6390
  }
6415
6391
  interface EnvironmentConfigDatabaseConfig {
6416
- /**
6417
- * Machine type on which Airflow web server is running. It has to be one of: composer-n1-webserver-2,
6418
- * composer-n1-webserver-4 or composer-n1-webserver-8.
6419
- * Value custom is returned only in response, if Airflow web server parameters were
6420
- * manually changed to a non-standard values.
6421
- */
6422
6392
  machineType: pulumi.Input<string>;
6423
6393
  }
6424
6394
  interface EnvironmentConfigEncryptionConfig {
6425
- /**
6426
- * Customer-managed Encryption Key available through Google's Key Management Service. It must
6427
- * be the fully qualified resource name,
6428
- * i.e. projects/project-id/locations/location/keyRings/keyring/cryptoKeys/key. Cannot be updated.
6429
- */
6430
6395
  kmsKeyName: pulumi.Input<string>;
6431
6396
  }
6432
6397
  interface EnvironmentConfigMaintenanceWindow {
6433
- /**
6434
- * Maintenance window end time. It is used only to calculate the duration of the maintenance window.
6435
- * The value for end-time must be in the future, relative to 'start_time'.
6436
- */
6437
6398
  endTime: pulumi.Input<string>;
6438
- /**
6439
- * Maintenance window recurrence. Format is a subset of RFC-5545 (https://tools.ietf.org/html/rfc5545) 'RRULE'.
6440
- * The only allowed values for 'FREQ' field are 'FREQ=DAILY' and 'FREQ=WEEKLY;BYDAY=...'.
6441
- * Example values: 'FREQ=WEEKLY;BYDAY=TU,WE', 'FREQ=DAILY'.
6442
- */
6443
6399
  recurrence: pulumi.Input<string>;
6444
- /**
6445
- * Start time of the first recurrence of the maintenance window.
6446
- */
6447
6400
  startTime: pulumi.Input<string>;
6448
6401
  }
6449
6402
  interface EnvironmentConfigNodeConfig {
6450
- /**
6451
- * The disk size in GB used for node VMs. Minimum size is 20GB.
6452
- * If unspecified, defaults to 100GB. Cannot be updated. This field is supported
6453
- * for Cloud Composer environments in versions composer-1.*.*-airflow-*.*.*.
6454
- */
6455
6403
  diskSizeGb?: pulumi.Input<number>;
6456
6404
  enableIpMasqAgent?: pulumi.Input<boolean>;
6457
- /**
6458
- * Configuration for controlling how IPs are allocated in the GKE cluster.
6459
- * Structure is documented below.
6460
- * Cannot be updated.
6461
- */
6462
6405
  ipAllocationPolicy?: pulumi.Input<inputs.composer.EnvironmentConfigNodeConfigIpAllocationPolicy>;
6463
- /**
6464
- * Machine type on which Airflow web server is running. It has to be one of: composer-n1-webserver-2,
6465
- * composer-n1-webserver-4 or composer-n1-webserver-8.
6466
- * Value custom is returned only in response, if Airflow web server parameters were
6467
- * manually changed to a non-standard values.
6468
- */
6469
6406
  machineType?: pulumi.Input<string>;
6470
- /**
6471
- * The maximum pods per node in the GKE cluster allocated during environment
6472
- * creation. Lowering this value reduces IP address consumption by the Cloud
6473
- * Composer Kubernetes cluster. This value can only be set if the environment is VPC-Native.
6474
- * The range of possible values is 8-110, and the default is 32.
6475
- * Cannot be updated. This field is supported for Cloud Composer environments
6476
- * in versions composer-1.*.*-airflow-*.*.*.
6477
- */
6478
6407
  maxPodsPerNode?: pulumi.Input<number>;
6479
- /**
6480
- * The Compute Engine network to be used for machine
6481
- * communications, specified as a self-link, relative resource name
6482
- * (e.g. "projects/{project}/global/networks/{network}"), by name.
6483
- */
6484
6408
  network?: pulumi.Input<string>;
6485
- /**
6486
- * The set of Google API scopes to be made available on all node
6487
- * VMs. Cannot be updated. If empty, defaults to
6488
- * `["https://www.googleapis.com/auth/cloud-platform"]`. This field is
6489
- * supported for Cloud Composer environments in versions
6490
- * composer-1.*.*-airflow-*.*.*.
6491
- */
6492
6409
  oauthScopes?: pulumi.Input<pulumi.Input<string>[]>;
6493
- /**
6494
- * The Google Cloud Platform Service Account to be used by the
6495
- * node VMs. If a service account is not specified, the "default"
6496
- * Compute Engine service account is used. Cannot be updated. If given,
6497
- * note that the service account must have `roles/composer.worker`
6498
- * for any GCP resources created under the Cloud Composer Environment.
6499
- */
6500
6410
  serviceAccount?: pulumi.Input<string>;
6501
- /**
6502
- * The Compute Engine subnetwork to be used for machine
6503
- * communications, , specified as a self-link, relative resource name (e.g.
6504
- * "projects/{project}/regions/{region}/subnetworks/{subnetwork}"), or by name. If subnetwork is provided,
6505
- * network must also be provided and the subnetwork must belong to the enclosing environment's project and region.
6506
- */
6507
6411
  subnetwork?: pulumi.Input<string>;
6508
- /**
6509
- * The list of instance tags applied to all node VMs. Tags are
6510
- * used to identify valid sources or targets for network
6511
- * firewalls. Each tag within the list must comply with RFC1035.
6512
- * Cannot be updated. This field is supported for Cloud Composer
6513
- * environments in versions composer-1.*.*-airflow-*.*.*.
6514
- */
6515
6412
  tags?: pulumi.Input<pulumi.Input<string>[]>;
6516
- /**
6517
- * The Compute Engine zone in which to deploy the VMs running the
6518
- * Apache Airflow software, specified as the zone name or
6519
- * relative resource name (e.g. "projects/{project}/zones/{zone}"). Must
6520
- * belong to the enclosing environment's project and region. This field is
6521
- * supported for Cloud Composer environments in versions
6522
- * composer-1.*.*-airflow-*.*.*.
6523
- */
6524
- zone: pulumi.Input<string>;
6413
+ zone?: pulumi.Input<string>;
6525
6414
  }
6526
6415
  interface EnvironmentConfigNodeConfigIpAllocationPolicy {
6527
- /**
6528
- * The IP address range used to allocate IP addresses to pods in the cluster.
6529
- * For Cloud Composer environments in versions composer-1.*.*-airflow-*.*.*,
6530
- * this field is applicable only when `useIpAliases` is true.
6531
- * Set to blank to have GKE choose a range with the default size.
6532
- * Set to /netmask (e.g. /14) to have GKE choose a range with a specific netmask.
6533
- * Set to a CIDR notation (e.g. 10.96.0.0/14) from the RFC-1918 private networks
6534
- * (e.g. 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16) to pick a specific range to use.
6535
- * Specify either `clusterSecondaryRangeName` or `clusterIpv4CidrBlock` but not both.
6536
- */
6537
6416
  clusterIpv4CidrBlock?: pulumi.Input<string>;
6538
- /**
6539
- * The name of the cluster's secondary range used to allocate IP addresses to pods.
6540
- * Specify either `clusterSecondaryRangeName` or `clusterIpv4CidrBlock` but not both.
6541
- * For Cloud Composer environments in versions composer-1.*.*-airflow-*.*.*,
6542
- * this field is applicable only when `useIpAliases` is true.
6543
- */
6544
6417
  clusterSecondaryRangeName?: pulumi.Input<string>;
6545
- /**
6546
- * The IP address range used to allocate IP addresses in this cluster.
6547
- * For Cloud Composer environments in versions composer-1.*.*-airflow-*.*.*,
6548
- * this field is applicable only when `useIpAliases` is true.
6549
- * Set to blank to have GKE choose a range with the default size.
6550
- * Set to /netmask (e.g. /14) to have GKE choose a range with a specific netmask.
6551
- * Set to a CIDR notation (e.g. 10.96.0.0/14) from the RFC-1918 private networks
6552
- * (e.g. 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16) to pick a specific range to use.
6553
- * Specify either `servicesSecondaryRangeName` or `servicesIpv4CidrBlock` but not both.
6554
- */
6555
6418
  servicesIpv4CidrBlock?: pulumi.Input<string>;
6556
- /**
6557
- * The name of the services' secondary range used to allocate IP addresses to the cluster.
6558
- * Specify either `servicesSecondaryRangeName` or `servicesIpv4CidrBlock` but not both.
6559
- * For Cloud Composer environments in versions composer-1.*.*-airflow-*.*.*,
6560
- * this field is applicable only when `useIpAliases` is true.
6561
- */
6562
6419
  servicesSecondaryRangeName?: pulumi.Input<string>;
6563
- /**
6564
- * Whether or not to enable Alias IPs in the GKE cluster. If true, a VPC-native cluster is created.
6565
- * Defaults to true if the `ipAllocationPolicy` block is present in config.
6566
- * This field is only supported for Cloud Composer environments in versions
6567
- * composer-1.*.*-airflow-*.*.*. Environments in newer versions always use
6568
- * VPC-native GKE clusters.
6569
- */
6570
- useIpAliases: pulumi.Input<boolean>;
6420
+ useIpAliases?: pulumi.Input<boolean>;
6571
6421
  }
6572
6422
  interface EnvironmentConfigPrivateEnvironmentConfig {
6573
6423
  cloudComposerNetworkIpv4CidrBlock?: pulumi.Input<string>;
6574
- /**
6575
- * The CIDR block from which IP range in tenant project will be reserved for Cloud SQL. Needs to be disjoint from `webServerIpv4CidrBlock`
6576
- */
6577
6424
  cloudSqlIpv4CidrBlock?: pulumi.Input<string>;
6578
- /**
6579
- * -
6580
- * If true, access to the public endpoint of the GKE cluster is denied.
6581
- * If this field is set to true, `ip_allocation_policy.use_ip_aliases` must
6582
- * be set to true for Cloud Composer environments in versions
6583
- * composer-1.*.*-airflow-*.*.*.
6584
- */
6585
6425
  enablePrivateEndpoint?: pulumi.Input<boolean>;
6586
6426
  enablePrivatelyUsedPublicIps?: pulumi.Input<boolean>;
6587
- /**
6588
- * The IP range in CIDR notation to use for the hosted master network. This range is used
6589
- * for assigning internal IP addresses to the cluster master or set of masters and to the
6590
- * internal load balancer virtual IP. This range must not overlap with any other ranges
6591
- * in use within the cluster's network.
6592
- * If left blank, the default value of is used. See [documentation](https://cloud.google.com/composer/docs/how-to/managing/configuring-private-ip#defaults) for default values per region.
6593
- */
6594
6427
  masterIpv4CidrBlock?: pulumi.Input<string>;
6595
- /**
6596
- * The CIDR block from which IP range for web server will be reserved. Needs to be disjoint from `masterIpv4CidrBlock` and `cloudSqlIpv4CidrBlock`. This field is supported for Cloud Composer environments in versions composer-1.*.*-airflow-*.*.*.
6597
- */
6598
6428
  webServerIpv4CidrBlock?: pulumi.Input<string>;
6599
6429
  }
6600
6430
  interface EnvironmentConfigSoftwareConfig {
6601
- /**
6602
- * -
6603
- * (Optional) Apache Airflow configuration properties to override. Property keys contain the section and property names,
6604
- * separated by a hyphen, for example "core-dags_are_paused_at_creation".
6605
- */
6606
6431
  airflowConfigOverrides?: pulumi.Input<{
6607
6432
  [key: string]: pulumi.Input<string>;
6608
6433
  }>;
6609
- /**
6610
- * Additional environment variables to provide to the Apache Airflow scheduler, worker, and webserver processes.
6611
- * Environment variable names must match the regular expression `[a-zA-Z_][a-zA-Z0-9_]*`.
6612
- * They cannot specify Apache Airflow software configuration overrides (they cannot match the regular expression
6613
- * `AIRFLOW__[A-Z0-9_]+__[A-Z0-9_]+`), and they cannot match any of the following reserved names:
6614
- * ```typescript
6615
- * import * as pulumi from "@pulumi/pulumi";
6616
- * ```
6617
- */
6618
6434
  envVariables?: pulumi.Input<{
6619
6435
  [key: string]: pulumi.Input<string>;
6620
6436
  }>;
6621
- /**
6622
- * -
6623
- * The version of the software running in the environment. This encapsulates both the version of Cloud Composer
6624
- * functionality and the version of Apache Airflow. It must match the regular expression
6625
- * `composer-[0-9]+\.[0-9]+(\.[0-9]+)?-airflow-[0-9]+\.[0-9]+(\.[0-9]+.*)?`.
6626
- * The Cloud Composer portion of the version is a semantic version.
6627
- * The portion of the image version following 'airflow-' is an official Apache Airflow repository release name.
6628
- * See [documentation](https://cloud.google.com/composer/docs/reference/rest/v1beta1/projects.locations.environments#softwareconfig)
6629
- * for allowed release names.
6630
- */
6631
6437
  imageVersion?: pulumi.Input<string>;
6632
- /**
6633
- * Custom Python Package Index (PyPI) packages to be installed
6634
- * in the environment. Keys refer to the lowercase package name (e.g. "numpy"). Values are the lowercase extras and
6635
- * version specifier (e.g. "==1.12.0", "[devel,gcp_api]", "[devel]>=1.8.2, <1.9.2"). To specify a package without
6636
- * pinning it to a version specifier, use the empty string as the value.
6637
- */
6638
6438
  pypiPackages?: pulumi.Input<{
6639
6439
  [key: string]: pulumi.Input<string>;
6640
6440
  }>;
6641
- /**
6642
- * -
6643
- * The major version of Python used to run the Apache Airflow scheduler, worker, and webserver processes.
6644
- * Can be set to '2' or '3'. If not specified, the default is '2'. Cannot be
6645
- * updated. This field is supported for Cloud Composer environments in versions
6646
- * composer-1.*.*-airflow-*.*.*. Environments in newer versions always use
6647
- * Python major version 3.
6648
- */
6649
6441
  pythonVersion?: pulumi.Input<string>;
6650
- /**
6651
- * -
6652
- * The number of schedulers for Airflow. This field is supported for Cloud Composer environments in versions composer-1.*.*-airflow-2.*.*.`
6653
- */
6654
6442
  schedulerCount?: pulumi.Input<number>;
6655
6443
  }
6656
6444
  interface EnvironmentConfigWebServerConfig {
6657
- /**
6658
- * Machine type on which Airflow web server is running. It has to be one of: composer-n1-webserver-2,
6659
- * composer-n1-webserver-4 or composer-n1-webserver-8.
6660
- * Value custom is returned only in response, if Airflow web server parameters were
6661
- * manually changed to a non-standard values.
6662
- */
6663
6445
  machineType: pulumi.Input<string>;
6664
6446
  }
6665
6447
  interface EnvironmentConfigWebServerNetworkAccessControl {
6666
- /**
6667
- * -
6668
- * A collection of allowed IP ranges with descriptions. Structure is documented below.
6669
- */
6670
6448
  allowedIpRanges?: pulumi.Input<pulumi.Input<inputs.composer.EnvironmentConfigWebServerNetworkAccessControlAllowedIpRange>[]>;
6671
6449
  }
6672
6450
  interface EnvironmentConfigWebServerNetworkAccessControlAllowedIpRange {
6673
- /**
6674
- * A description of this ip range.
6675
- */
6676
6451
  description?: pulumi.Input<string>;
6677
- /**
6678
- * IP address or range, defined using CIDR notation, of requests that this rule applies to.
6679
- * Examples: `192.168.1.1` or `192.168.0.0/16` or `2001:db8::/32` or `2001:0db8:0000:0042:0000:8a2e:0370:7334`.
6680
- * IP range prefixes should be properly truncated. For example,
6681
- * `1.2.3.4/24` should be truncated to `1.2.3.0/24`. Similarly, for IPv6, `2001:db8::1/32` should be truncated to `2001:db8::/32`.
6682
- */
6683
6452
  value: pulumi.Input<string>;
6684
6453
  }
6685
6454
  interface EnvironmentConfigWorkloadsConfig {
6686
- /**
6687
- * Configuration for resources used by Airflow schedulers.
6688
- */
6689
6455
  scheduler?: pulumi.Input<inputs.composer.EnvironmentConfigWorkloadsConfigScheduler>;
6690
- /**
6691
- * Configuration for resources used by Airflow web server.
6692
- */
6693
6456
  webServer?: pulumi.Input<inputs.composer.EnvironmentConfigWorkloadsConfigWebServer>;
6694
- /**
6695
- * Configuration for resources used by Airflow workers.
6696
- */
6697
6457
  worker?: pulumi.Input<inputs.composer.EnvironmentConfigWorkloadsConfigWorker>;
6698
6458
  }
6699
6459
  interface EnvironmentConfigWorkloadsConfigScheduler {
6700
- /**
6701
- * The number of schedulers.
6702
- */
6703
6460
  count?: pulumi.Input<number>;
6704
- /**
6705
- * CPU request and limit for a single Airflow worker replica.
6706
- */
6707
6461
  cpu?: pulumi.Input<number>;
6708
- /**
6709
- * Memory (GB) request and limit for a single Airflow worker replica.
6710
- */
6711
6462
  memoryGb?: pulumi.Input<number>;
6712
- /**
6713
- * Storage (GB) request and limit for Airflow web server.
6714
- */
6715
6463
  storageGb?: pulumi.Input<number>;
6716
6464
  }
6717
6465
  interface EnvironmentConfigWorkloadsConfigWebServer {
6718
- /**
6719
- * CPU request and limit for a single Airflow worker replica.
6720
- */
6721
6466
  cpu?: pulumi.Input<number>;
6722
- /**
6723
- * Memory (GB) request and limit for a single Airflow worker replica.
6724
- */
6725
6467
  memoryGb?: pulumi.Input<number>;
6726
- /**
6727
- * Storage (GB) request and limit for Airflow web server.
6728
- */
6729
6468
  storageGb?: pulumi.Input<number>;
6730
6469
  }
6731
6470
  interface EnvironmentConfigWorkloadsConfigWorker {
6732
- /**
6733
- * CPU request and limit for a single Airflow worker replica.
6734
- */
6735
6471
  cpu?: pulumi.Input<number>;
6736
- /**
6737
- * Maximum number of workers for autoscaling.
6738
- */
6739
6472
  maxCount?: pulumi.Input<number>;
6740
- /**
6741
- * Memory (GB) request and limit for a single Airflow worker replica.
6742
- */
6743
6473
  memoryGb?: pulumi.Input<number>;
6744
- /**
6745
- * Minimum number of workers for autoscaling.
6746
- */
6747
6474
  minCount?: pulumi.Input<number>;
6748
- /**
6749
- * Storage (GB) request and limit for Airflow web server.
6750
- */
6751
6475
  storageGb?: pulumi.Input<number>;
6752
6476
  }
6753
6477
  }
@@ -7854,7 +7578,7 @@ export declare namespace compute {
7854
7578
  */
7855
7579
  destIpRanges?: pulumi.Input<pulumi.Input<string>[]>;
7856
7580
  /**
7857
- * Pairs of IP protocols and ports that the rule should match.
7581
+ * Pairs of IP protocols and ports that the rule should match. Structure is documented below.
7858
7582
  */
7859
7583
  layer4Configs: pulumi.Input<pulumi.Input<inputs.compute.FirewallPolicyRuleMatchLayer4Config>[]>;
7860
7584
  /**
@@ -8680,7 +8404,7 @@ export declare namespace compute {
8680
8404
  */
8681
8405
  maxUnavailablePercent?: pulumi.Input<number>;
8682
8406
  /**
8683
- * , Minimum number of seconds to wait for after a newly created instance becomes available. This value must be from range [0, 3600]
8407
+ * ), Minimum number of seconds to wait for after a newly created instance becomes available. This value must be from range [0, 3600]
8684
8408
  */
8685
8409
  minReadySec?: pulumi.Input<number>;
8686
8410
  /**
@@ -10698,7 +10422,7 @@ export declare namespace compute {
10698
10422
  */
10699
10423
  maxUnavailablePercent?: pulumi.Input<number>;
10700
10424
  /**
10701
- * , Minimum number of seconds to wait for after a newly created instance becomes available. This value must be from range [0, 3600]
10425
+ * ), Minimum number of seconds to wait for after a newly created instance becomes available. This value must be from range [0, 3600]
10702
10426
  */
10703
10427
  minReadySec?: pulumi.Input<number>;
10704
10428
  /**
@@ -12368,17 +12092,17 @@ export declare namespace compute {
12368
12092
  }
12369
12093
  interface SecurityPolicyAdaptiveProtectionConfig {
12370
12094
  /**
12371
- * ) Configuration for [Google Cloud Armor Adaptive Protection Layer 7 DDoS Defense](https://cloud.google.com/armor/docs/adaptive-protection-overview?hl=en). Structure is documented below.
12095
+ * Configuration for [Google Cloud Armor Adaptive Protection Layer 7 DDoS Defense](https://cloud.google.com/armor/docs/adaptive-protection-overview?hl=en). Structure is documented below.
12372
12096
  */
12373
12097
  layer7DdosDefenseConfig?: pulumi.Input<inputs.compute.SecurityPolicyAdaptiveProtectionConfigLayer7DdosDefenseConfig>;
12374
12098
  }
12375
12099
  interface SecurityPolicyAdaptiveProtectionConfigLayer7DdosDefenseConfig {
12376
12100
  /**
12377
- * ) If set to true, enables CAAP for L7 DDoS detection.
12101
+ * If set to true, enables CAAP for L7 DDoS detection.
12378
12102
  */
12379
12103
  enable?: pulumi.Input<boolean>;
12380
12104
  /**
12381
- * ) Rule visibility can be one of the following: STANDARD - opaque rules. (default) PREMIUM - transparent rules.
12105
+ * Rule visibility can be one of the following: STANDARD - opaque rules. (default) PREMIUM - transparent rules.
12382
12106
  */
12383
12107
  ruleVisibility?: pulumi.Input<string>;
12384
12108
  }
@@ -14761,8 +14485,7 @@ export declare namespace container {
14761
14485
  }
14762
14486
  interface ClusterLoggingConfig {
14763
14487
  /**
14764
- * The GKE components exposing logs. Only `SYSTEM_COMPONENTS`
14765
- * is supported.
14488
+ * The GKE components exposing logs. `SYSTEM_COMPONENTS` and in beta provider, both `SYSTEM_COMPONENTS` and `WORKLOADS` are supported.
14766
14489
  */
14767
14490
  enableComponents: pulumi.Input<pulumi.Input<string>[]>;
14768
14491
  }
@@ -14801,19 +14524,9 @@ export declare namespace container {
14801
14524
  /**
14802
14525
  * Whether client certificate authorization is enabled for this cluster. For example:
14803
14526
  */
14804
- clientCertificateConfig?: pulumi.Input<inputs.container.ClusterMasterAuthClientCertificateConfig>;
14527
+ clientCertificateConfig: pulumi.Input<inputs.container.ClusterMasterAuthClientCertificateConfig>;
14805
14528
  clientKey?: pulumi.Input<string>;
14806
14529
  clusterCaCertificate?: pulumi.Input<string>;
14807
- /**
14808
- * The password to use for HTTP basic authentication when accessing
14809
- * the Kubernetes master endpoint. This has been deprecated as of GKE 1.19.
14810
- */
14811
- password?: pulumi.Input<string>;
14812
- /**
14813
- * The username to use for HTTP basic authentication when accessing
14814
- * the Kubernetes master endpoint. If not present basic auth will be disabled. This has been deprecated as of GKE 1.19.
14815
- */
14816
- username?: pulumi.Input<string>;
14817
14530
  }
14818
14531
  interface ClusterMasterAuthClientCertificateConfig {
14819
14532
  issueClientCertificate: pulumi.Input<boolean>;
@@ -14838,8 +14551,7 @@ export declare namespace container {
14838
14551
  }
14839
14552
  interface ClusterMonitoringConfig {
14840
14553
  /**
14841
- * The GKE components exposing logs. Only `SYSTEM_COMPONENTS`
14842
- * is supported.
14554
+ * The GKE components exposing logs. `SYSTEM_COMPONENTS` and in beta provider, both `SYSTEM_COMPONENTS` and `WORKLOADS` are supported.
14843
14555
  */
14844
14556
  enableComponents: pulumi.Input<pulumi.Input<string>[]>;
14845
14557
  }
@@ -14988,6 +14700,10 @@ export declare namespace container {
14988
14700
  * The number of the guest accelerator cards exposed to this instance.
14989
14701
  */
14990
14702
  count: pulumi.Input<number>;
14703
+ /**
14704
+ * Size of partitions to create on the GPU. Valid values are described in the NVIDIA mig [user guide](https://docs.nvidia.com/datacenter/tesla/mig-user-guide/#partitioning).
14705
+ */
14706
+ gpuPartitionSize?: pulumi.Input<string>;
14991
14707
  /**
14992
14708
  * The accelerator type resource to expose to this instance. E.g. `nvidia-tesla-k80`.
14993
14709
  */
@@ -15062,18 +14778,7 @@ export declare namespace container {
15062
14778
  * * GCE_METADATA: Expose all Compute Engine metadata to pods.
15063
14779
  * * GKE_METADATA: Run the GKE Metadata Server on this node. The GKE Metadata Server exposes a metadata API to workloads that is compatible with the V1 Compute Metadata APIs exposed by the Compute Engine and App Engine Metadata Servers. This feature can only be enabled if [workload identity](https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity) is enabled at the cluster level.
15064
14780
  */
15065
- mode?: pulumi.Input<string>;
15066
- /**
15067
- * How to expose the node metadata to the workload running on the node. This is deprecated in favor of `mode`
15068
- * Accepted values are:
15069
- * * UNSPECIFIED: Not Set
15070
- * * SECURE: Prevent workloads not in hostNetwork from accessing certain VM metadata, specifically kube-env, which contains Kubelet credentials, and the instance identity token. See [Metadata Concealment](https://cloud.google.com/kubernetes-engine/docs/how-to/metadata-proxy) documentation.
15071
- * * EXPOSE: Expose all VM metadata to pods.
15072
- * * GKE_METADATA_SERVER: Enables [workload identity](https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity) on the node.
15073
- *
15074
- * @deprecated Deprecated in favor of mode.
15075
- */
15076
- nodeMetadata?: pulumi.Input<string>;
14781
+ mode: pulumi.Input<string>;
15077
14782
  }
15078
14783
  interface ClusterNodePool {
15079
14784
  autoscaling?: pulumi.Input<inputs.container.ClusterNodePoolAutoscaling>;
@@ -15086,11 +14791,8 @@ export declare namespace container {
15086
14791
  * `removeDefaultNodePool` to `true`.
15087
14792
  */
15088
14793
  initialNodeCount?: pulumi.Input<number>;
15089
- /**
15090
- * List of instance group URLs which have been assigned
15091
- * to the cluster.
15092
- */
15093
14794
  instanceGroupUrls?: pulumi.Input<pulumi.Input<string>[]>;
14795
+ managedInstanceGroupUrls?: pulumi.Input<pulumi.Input<string>[]>;
15094
14796
  management?: pulumi.Input<inputs.container.ClusterNodePoolManagement>;
15095
14797
  maxPodsPerNode?: pulumi.Input<number>;
15096
14798
  /**
@@ -15100,8 +14802,8 @@ export declare namespace container {
15100
14802
  name?: pulumi.Input<string>;
15101
14803
  namePrefix?: pulumi.Input<string>;
15102
14804
  /**
15103
- * ) Configuration for
15104
- * [Adding Pod IP address ranges](https://cloud.google.com/kubernetes-engine/docs/how-to/multi-pod-cidr)) to the node pool.
14805
+ * Configuration for
14806
+ * [Adding Pod IP address ranges](https://cloud.google.com/kubernetes-engine/docs/how-to/multi-pod-cidr)) to the node pool. Structure is documented below
15105
14807
  */
15106
14808
  networkConfig?: pulumi.Input<inputs.container.ClusterNodePoolNetworkConfig>;
15107
14809
  /**
@@ -15133,15 +14835,15 @@ export declare namespace container {
15133
14835
  }
15134
14836
  interface ClusterNodePoolNetworkConfig {
15135
14837
  /**
15136
- * ) Whether to create a new range for pod IPs in this node pool. Defaults are provided for `podRange` and `podIpv4CidrBlock` if they are not specified.
14838
+ * Whether to create a new range for pod IPs in this node pool. Defaults are provided for `podRange` and `podIpv4CidrBlock` if they are not specified.
15137
14839
  */
15138
14840
  createPodRange?: pulumi.Input<boolean>;
15139
14841
  /**
15140
- * ) The IP address range for pod IPs in this node pool. Only applicable if createPodRange is true. Set to blank to have a range chosen with the default size. Set to /netmask (e.g. /14) to have a range chosen with a specific netmask. Set to a CIDR notation (e.g. 10.96.0.0/14) to pick a specific range to use.
14842
+ * The IP address range for pod IPs in this node pool. Only applicable if createPodRange is true. Set to blank to have a range chosen with the default size. Set to /netmask (e.g. /14) to have a range chosen with a specific netmask. Set to a CIDR notation (e.g. 10.96.0.0/14) to pick a specific range to use.
15141
14843
  */
15142
14844
  podIpv4CidrBlock?: pulumi.Input<string>;
15143
14845
  /**
15144
- * ) The ID of the secondary range for pod IPs. If `createPodRange` is true, this ID is used for the new range. If `createPodRange` is false, uses an existing secondary range with this ID.
14846
+ * The ID of the secondary range for pod IPs. If `createPodRange` is true, this ID is used for the new range. If `createPodRange` is false, uses an existing secondary range with this ID.
15145
14847
  */
15146
14848
  podRange: pulumi.Input<string>;
15147
14849
  }
@@ -15279,6 +14981,10 @@ export declare namespace container {
15279
14981
  * The number of the guest accelerator cards exposed to this instance.
15280
14982
  */
15281
14983
  count: pulumi.Input<number>;
14984
+ /**
14985
+ * Size of partitions to create on the GPU. Valid values are described in the NVIDIA mig [user guide](https://docs.nvidia.com/datacenter/tesla/mig-user-guide/#partitioning).
14986
+ */
14987
+ gpuPartitionSize?: pulumi.Input<string>;
15282
14988
  /**
15283
14989
  * The accelerator type resource to expose to this instance. E.g. `nvidia-tesla-k80`.
15284
14990
  */
@@ -15353,18 +15059,7 @@ export declare namespace container {
15353
15059
  * * GCE_METADATA: Expose all Compute Engine metadata to pods.
15354
15060
  * * GKE_METADATA: Run the GKE Metadata Server on this node. The GKE Metadata Server exposes a metadata API to workloads that is compatible with the V1 Compute Metadata APIs exposed by the Compute Engine and App Engine Metadata Servers. This feature can only be enabled if [workload identity](https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity) is enabled at the cluster level.
15355
15061
  */
15356
- mode?: pulumi.Input<string>;
15357
- /**
15358
- * How to expose the node metadata to the workload running on the node. This is deprecated in favor of `mode`
15359
- * Accepted values are:
15360
- * * UNSPECIFIED: Not Set
15361
- * * SECURE: Prevent workloads not in hostNetwork from accessing certain VM metadata, specifically kube-env, which contains Kubelet credentials, and the instance identity token. See [Metadata Concealment](https://cloud.google.com/kubernetes-engine/docs/how-to/metadata-proxy) documentation.
15362
- * * EXPOSE: Expose all VM metadata to pods.
15363
- * * GKE_METADATA_SERVER: Enables [workload identity](https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity) on the node.
15364
- *
15365
- * @deprecated Deprecated in favor of mode.
15366
- */
15367
- nodeMetadata?: pulumi.Input<string>;
15062
+ mode: pulumi.Input<string>;
15368
15063
  }
15369
15064
  interface ClusterNodePoolUpgradeSettings {
15370
15065
  maxSurge: pulumi.Input<number>;
@@ -15487,9 +15182,9 @@ export declare namespace container {
15487
15182
  }
15488
15183
  interface ClusterWorkloadIdentityConfig {
15489
15184
  /**
15490
- * Currently, the only supported identity namespace is the project's default.
15185
+ * The workload pool to attach all Kubernetes service accounts to. Currently, the only supported identity namespace is the project of the cluster.
15491
15186
  */
15492
- identityNamespace: pulumi.Input<string>;
15187
+ workloadPool?: pulumi.Input<string>;
15493
15188
  }
15494
15189
  interface NodePoolAutoscaling {
15495
15190
  /**
@@ -15549,6 +15244,7 @@ export declare namespace container {
15549
15244
  }
15550
15245
  interface NodePoolNodeConfigGuestAccelerator {
15551
15246
  count: pulumi.Input<number>;
15247
+ gpuPartitionSize?: pulumi.Input<string>;
15552
15248
  type: pulumi.Input<string>;
15553
15249
  }
15554
15250
  interface NodePoolNodeConfigKubeletConfig {
@@ -15574,11 +15270,7 @@ export declare namespace container {
15574
15270
  value: pulumi.Input<string>;
15575
15271
  }
15576
15272
  interface NodePoolNodeConfigWorkloadMetadataConfig {
15577
- mode?: pulumi.Input<string>;
15578
- /**
15579
- * @deprecated Deprecated in favor of mode.
15580
- */
15581
- nodeMetadata?: pulumi.Input<string>;
15273
+ mode: pulumi.Input<string>;
15582
15274
  }
15583
15275
  interface NodePoolUpgradeSettings {
15584
15276
  /**
@@ -17056,7 +16748,7 @@ export declare namespace dataproc {
17056
16748
  lifecycleConfig?: pulumi.Input<inputs.dataproc.ClusterClusterConfigLifecycleConfig>;
17057
16749
  /**
17058
16750
  * The Google Compute Engine config settings for the master instances
17059
- * in a cluster.. Structure defined below.
16751
+ * in a cluster. Structure defined below.
17060
16752
  */
17061
16753
  masterConfig?: pulumi.Input<inputs.dataproc.ClusterClusterConfigMasterConfig>;
17062
16754
  /**
@@ -17100,7 +16792,7 @@ export declare namespace dataproc {
17100
16792
  tempBucket?: pulumi.Input<string>;
17101
16793
  /**
17102
16794
  * The Google Compute Engine config settings for the worker instances
17103
- * in a cluster.. Structure defined below.
16795
+ * in a cluster. Structure defined below.
17104
16796
  */
17105
16797
  workerConfig?: pulumi.Input<inputs.dataproc.ClusterClusterConfigWorkerConfig>;
17106
16798
  }
@@ -19683,6 +19375,13 @@ export declare namespace filestore {
19683
19375
  squashMode?: pulumi.Input<string>;
19684
19376
  }
19685
19377
  interface InstanceNetwork {
19378
+ /**
19379
+ * The network connect mode of the Filestore instance.
19380
+ * If not provided, the connect mode defaults to
19381
+ * DIRECT_PEERING.
19382
+ * Default value is `DIRECT_PEERING`.
19383
+ * Possible values are `DIRECT_PEERING` and `PRIVATE_SERVICE_ACCESS`.
19384
+ */
19686
19385
  connectMode?: pulumi.Input<string>;
19687
19386
  /**
19688
19387
  * -
@@ -19945,19 +19644,19 @@ export declare namespace gameservices {
19945
19644
  export declare namespace gkehub {
19946
19645
  interface FeatureMembershipConfigmanagement {
19947
19646
  /**
19948
- * Binauthz configuration for the cluster.
19647
+ * Binauthz configuration for the cluster. Structure is documented below.
19949
19648
  */
19950
19649
  binauthz?: pulumi.Input<inputs.gkehub.FeatureMembershipConfigmanagementBinauthz>;
19951
19650
  /**
19952
- * Config Sync configuration for the cluster.
19651
+ * Config Sync configuration for the cluster. Structure is documented below.
19953
19652
  */
19954
19653
  configSync?: pulumi.Input<inputs.gkehub.FeatureMembershipConfigmanagementConfigSync>;
19955
19654
  /**
19956
- * Hierarchy Controller configuration for the cluster.
19655
+ * Hierarchy Controller configuration for the cluster. Structure is documented below.
19957
19656
  */
19958
19657
  hierarchyController?: pulumi.Input<inputs.gkehub.FeatureMembershipConfigmanagementHierarchyController>;
19959
19658
  /**
19960
- * Policy Controller configuration for the cluster.
19659
+ * Policy Controller configuration for the cluster. Structure is documented below.
19961
19660
  */
19962
19661
  policyController?: pulumi.Input<inputs.gkehub.FeatureMembershipConfigmanagementPolicyController>;
19963
19662
  /**
@@ -19974,7 +19673,7 @@ export declare namespace gkehub {
19974
19673
  interface FeatureMembershipConfigmanagementConfigSync {
19975
19674
  /**
19976
19675
  * -
19977
- * (Optional)
19676
+ * (Optional) Structure is documented below.
19978
19677
  */
19979
19678
  git?: pulumi.Input<inputs.gkehub.FeatureMembershipConfigmanagementConfigSyncGit>;
19980
19679
  /**
@@ -20755,9 +20454,7 @@ export declare namespace kms {
20755
20454
  */
20756
20455
  algorithm: pulumi.Input<string>;
20757
20456
  /**
20758
- * The protection level to use when creating a version based on this template.
20759
- * Default value is `SOFTWARE`.
20760
- * Possible values are `SOFTWARE` and `HSM`.
20457
+ * The protection level to use when creating a version based on this template. Possible values include "SOFTWARE", "HSM", "EXTERNAL". Defaults to "SOFTWARE".
20761
20458
  */
20762
20459
  protectionLevel?: pulumi.Input<string>;
20763
20460
  }
@@ -24822,15 +24519,6 @@ export declare namespace sql {
24822
24519
  * active. Can be either `ALWAYS`, `NEVER` or `ON_DEMAND`.
24823
24520
  */
24824
24521
  activationPolicy?: pulumi.Input<string>;
24825
- /**
24826
- * This property is only applicable to First Generation instances.
24827
- * First Generation instances are now deprecated, see [here](https://cloud.google.com/sql/docs/mysql/upgrade-2nd-gen)
24828
- * for information on how to upgrade to Second Generation instances.
24829
- * A list of Google App Engine (GAE) project names that are allowed to access this instance.
24830
- *
24831
- * @deprecated This property is only applicable to First Generation instances, and First Generation instances are now deprecated.
24832
- */
24833
- authorizedGaeApplications?: pulumi.Input<pulumi.Input<string>[]>;
24834
24522
  /**
24835
24523
  * The availability type of the Cloud SQL
24836
24524
  * instance, high availability (`REGIONAL`) or single zone (`ZONAL`).' For MySQL
@@ -24843,19 +24531,9 @@ export declare namespace sql {
24843
24531
  * The name of server instance collation.
24844
24532
  */
24845
24533
  collation?: pulumi.Input<string>;
24846
- /**
24847
- * This property is only applicable to First Generation instances.
24848
- * First Generation instances are now deprecated, see [here](https://cloud.google.com/sql/docs/mysql/upgrade-2nd-gen)
24849
- * for information on how to upgrade to Second Generation instances.
24850
- * Specific to read instances, indicates
24851
- * when crash-safe replication flags are enabled.
24852
- *
24853
- * @deprecated This property is only applicable to First Generation instances, and First Generation instances are now deprecated.
24854
- */
24855
- crashSafeReplication?: pulumi.Input<boolean>;
24856
24534
  databaseFlags?: pulumi.Input<pulumi.Input<inputs.sql.DatabaseInstanceSettingsDatabaseFlag>[]>;
24857
24535
  /**
24858
- * Configuration to increase storage size automatically. Note that future `pulumi apply` calls will attempt to resize the disk to the value specified in `diskSize` - if this is set, do not set `diskSize`.
24536
+ * Configuration to increase storage size automatically. Note that future apply calls will attempt to resize the disk to the value specified in `diskSize` - if this is set, do not set `diskSize`.
24859
24537
  */
24860
24538
  diskAutoresize?: pulumi.Input<boolean>;
24861
24539
  diskAutoresizeLimit?: pulumi.Input<number>;
@@ -24875,15 +24553,6 @@ export declare namespace sql {
24875
24553
  * Pricing plan for this instance, can only be `PER_USE`.
24876
24554
  */
24877
24555
  pricingPlan?: pulumi.Input<string>;
24878
- /**
24879
- * This property is only applicable to First Generation instances.
24880
- * First Generation instances are now deprecated, see [here](https://cloud.google.com/sql/docs/mysql/upgrade-2nd-gen)
24881
- * for information on how to upgrade to Second Generation instances.
24882
- * Replication type for this instance, can be one of `ASYNCHRONOUS` or `SYNCHRONOUS`.
24883
- *
24884
- * @deprecated This property is only applicable to First Generation instances, and First Generation instances are now deprecated.
24885
- */
24886
- replicationType?: pulumi.Input<string>;
24887
24556
  /**
24888
24557
  * The machine type to use. See [tiers](https://cloud.google.com/sql/docs/admin-api/v1beta4/tiers)
24889
24558
  * for more details and supported versions. Postgres supports only shared-core machine types,
@@ -25466,7 +25135,14 @@ export declare namespace vertex {
25466
25135
  }
25467
25136
  export declare namespace vpcaccess {
25468
25137
  interface ConnectorSubnet {
25138
+ /**
25139
+ * Subnet name (relative, not fully qualified). E.g. if the full subnet selfLink is
25140
+ * https://compute.googleapis.com/compute/v1/projects/{project}/regions/{region}/subnetworks/{subnetName} the correct input for this field would be {subnetName}"
25141
+ */
25469
25142
  name?: pulumi.Input<string>;
25143
+ /**
25144
+ * Project in which the subnet exists. If not set, this project is assumed to be the project for which the connector create request was issued.
25145
+ */
25470
25146
  projectId?: pulumi.Input<string>;
25471
25147
  }
25472
25148
  }