@pulumi/gcp 6.44.0 → 6.45.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/alloydb/instance.d.ts +3 -0
- package/alloydb/instance.js +3 -0
- package/alloydb/instance.js.map +1 -1
- package/bigtable/gcpolicy.d.ts +58 -32
- package/bigtable/gcpolicy.js +45 -32
- package/bigtable/gcpolicy.js.map +1 -1
- package/bigtable/instance.d.ts +6 -3
- package/bigtable/instance.js.map +1 -1
- package/certificateauthority/authority.d.ts +3 -2
- package/certificateauthority/authority.js +3 -2
- package/certificateauthority/authority.js.map +1 -1
- package/certificateauthority/certificate.d.ts +12 -5
- package/certificateauthority/certificate.js +12 -5
- package/certificateauthority/certificate.js.map +1 -1
- package/cloudrunv2/index.d.ts +6 -0
- package/cloudrunv2/index.js +27 -0
- package/cloudrunv2/index.js.map +1 -0
- package/cloudrunv2/job.d.ts +501 -0
- package/cloudrunv2/job.js +321 -0
- package/cloudrunv2/job.js.map +1 -0
- package/cloudrunv2/service.d.ts +574 -0
- package/cloudrunv2/service.js +334 -0
- package/cloudrunv2/service.js.map +1 -0
- package/compute/backendService.d.ts +19 -0
- package/compute/backendService.js +19 -0
- package/compute/backendService.js.map +1 -1
- package/compute/forwardingRule.d.ts +21 -30
- package/compute/forwardingRule.js.map +1 -1
- package/compute/instanceGroupManager.d.ts +27 -0
- package/compute/instanceGroupManager.js +2 -0
- package/compute/instanceGroupManager.js.map +1 -1
- package/compute/regionInstanceGroupManager.d.ts +27 -0
- package/compute/regionInstanceGroupManager.js +2 -0
- package/compute/regionInstanceGroupManager.js.map +1 -1
- package/compute/routerInterface.d.ts +52 -31
- package/compute/routerInterface.js +4 -0
- package/compute/routerInterface.js.map +1 -1
- package/compute/securityPolicy.d.ts +83 -0
- package/compute/securityPolicy.js +73 -0
- package/compute/securityPolicy.js.map +1 -1
- package/config/vars.d.ts +3 -0
- package/config/vars.js +18 -0
- package/config/vars.js.map +1 -1
- package/container/cluster.d.ts +7 -4
- package/container/cluster.js.map +1 -1
- package/container/nodePool.d.ts +9 -6
- package/container/nodePool.js.map +1 -1
- package/datafusion/instance.d.ts +97 -5
- package/datafusion/instance.js +52 -5
- package/datafusion/instance.js.map +1 -1
- package/dataproc/metastoreService.d.ts +49 -0
- package/dataproc/metastoreService.js +34 -0
- package/dataproc/metastoreService.js.map +1 -1
- package/datastream/privateConnection.d.ts +16 -0
- package/datastream/privateConnection.js +4 -0
- package/datastream/privateConnection.js.map +1 -1
- package/eventarc/googleChannelConfig.d.ts +142 -0
- package/eventarc/googleChannelConfig.js +110 -0
- package/eventarc/googleChannelConfig.js.map +1 -0
- package/eventarc/index.d.ts +3 -0
- package/eventarc/index.js +6 -1
- package/eventarc/index.js.map +1 -1
- package/firebase/getAndroidApp.d.ts +36 -0
- package/firebase/getAndroidApp.js +22 -0
- package/firebase/getAndroidApp.js.map +1 -0
- package/firebase/index.d.ts +6 -0
- package/firebase/index.js +9 -1
- package/firebase/index.js.map +1 -1
- package/firebase/storageBucket.d.ts +109 -0
- package/firebase/storageBucket.js +91 -0
- package/firebase/storageBucket.js.map +1 -0
- package/gkebackup/backupPlan.d.ts +403 -0
- package/gkebackup/backupPlan.js +259 -0
- package/gkebackup/backupPlan.js.map +1 -0
- package/gkebackup/index.d.ts +3 -0
- package/gkebackup/index.js +22 -0
- package/gkebackup/index.js.map +1 -0
- package/gkehub/featureMembership.d.ts +1 -0
- package/gkehub/featureMembership.js +1 -0
- package/gkehub/featureMembership.js.map +1 -1
- package/iam/index.d.ts +3 -0
- package/iam/index.js +6 -1
- package/iam/index.js.map +1 -1
- package/iam/workforcePoolProvider.d.ts +510 -0
- package/iam/workforcePoolProvider.js +213 -0
- package/iam/workforcePoolProvider.js.map +1 -0
- package/index.d.ts +3 -1
- package/index.js +6 -2
- package/index.js.map +1 -1
- package/logging/billingAccountBucketConfig.d.ts +20 -0
- package/logging/billingAccountBucketConfig.js +2 -0
- package/logging/billingAccountBucketConfig.js.map +1 -1
- package/logging/folderBucketConfig.d.ts +20 -0
- package/logging/folderBucketConfig.js +2 -0
- package/logging/folderBucketConfig.js.map +1 -1
- package/logging/getProjectCmekSettings.d.ts +97 -0
- package/logging/getProjectCmekSettings.js +43 -0
- package/logging/getProjectCmekSettings.js.map +1 -0
- package/logging/index.d.ts +3 -0
- package/logging/index.js +4 -1
- package/logging/index.js.map +1 -1
- package/logging/organizationBucketConfig.d.ts +20 -0
- package/logging/organizationBucketConfig.js +2 -0
- package/logging/organizationBucketConfig.js.map +1 -1
- package/logging/projectBucketConfig.d.ts +48 -2
- package/logging/projectBucketConfig.js +34 -0
- package/logging/projectBucketConfig.js.map +1 -1
- package/networkservices/edgeCacheOrigin.d.ts +55 -1
- package/networkservices/edgeCacheOrigin.js +26 -1
- package/networkservices/edgeCacheOrigin.js.map +1 -1
- package/package.json +2 -2
- package/package.json.dev +2 -2
- package/provider.d.ts +6 -0
- package/provider.js +3 -0
- package/provider.js.map +1 -1
- package/securitycenter/index.d.ts +9 -0
- package/securitycenter/index.js +16 -1
- package/securitycenter/index.js.map +1 -1
- package/securitycenter/instanceIamBinding.d.ts +239 -0
- package/securitycenter/instanceIamBinding.js +218 -0
- package/securitycenter/instanceIamBinding.js.map +1 -0
- package/securitycenter/instanceIamMember.d.ts +239 -0
- package/securitycenter/instanceIamMember.js +218 -0
- package/securitycenter/instanceIamMember.js.map +1 -0
- package/securitycenter/instanceIamPolicy.d.ts +231 -0
- package/securitycenter/instanceIamPolicy.js +211 -0
- package/securitycenter/instanceIamPolicy.js.map +1 -0
- package/sql/database.d.ts +41 -0
- package/sql/database.js +22 -0
- package/sql/database.js.map +1 -1
- package/storage/bucket.d.ts +29 -7
- package/storage/bucket.js +18 -6
- package/storage/bucket.js.map +1 -1
- package/storage/getBucket.d.ts +1 -0
- package/storage/getBucket.js.map +1 -1
- package/types/input.d.ts +1544 -98
- package/types/output.d.ts +1559 -94
- package/vertex/aiFeatureStoreEntityTypeIamBinding.d.ts +119 -0
- package/vertex/aiFeatureStoreEntityTypeIamBinding.js +96 -0
- package/vertex/aiFeatureStoreEntityTypeIamBinding.js.map +1 -0
- package/vertex/aiFeatureStoreEntityTypeIamMember.d.ts +119 -0
- package/vertex/aiFeatureStoreEntityTypeIamMember.js +96 -0
- package/vertex/aiFeatureStoreEntityTypeIamMember.js.map +1 -0
- package/vertex/aiFeatureStoreEntityTypeIamPolicy.d.ts +108 -0
- package/vertex/aiFeatureStoreEntityTypeIamPolicy.js +89 -0
- package/vertex/aiFeatureStoreEntityTypeIamPolicy.js.map +1 -0
- package/vertex/aiFeatureStoreIamBinding.d.ts +53 -43
- package/vertex/aiFeatureStoreIamBinding.js +11 -37
- package/vertex/aiFeatureStoreIamBinding.js.map +1 -1
- package/vertex/aiFeatureStoreIamMember.d.ts +53 -43
- package/vertex/aiFeatureStoreIamMember.js +11 -37
- package/vertex/aiFeatureStoreIamMember.js.map +1 -1
- package/vertex/aiFeatureStoreIamPolicy.d.ts +50 -43
- package/vertex/aiFeatureStoreIamPolicy.js +11 -37
- package/vertex/aiFeatureStoreIamPolicy.js.map +1 -1
- package/vertex/aiIndex.d.ts +314 -0
- package/vertex/aiIndex.js +188 -0
- package/vertex/aiIndex.js.map +1 -0
- package/vertex/aiTensorboard.d.ts +242 -0
- package/vertex/aiTensorboard.js +146 -0
- package/vertex/aiTensorboard.js.map +1 -0
- package/vertex/index.d.ts +15 -0
- package/vertex/index.js +26 -1
- package/vertex/index.js.map +1 -1
package/types/output.d.ts
CHANGED
|
@@ -8113,7 +8113,7 @@ export declare namespace cloudrun {
|
|
|
8113
8113
|
}
|
|
8114
8114
|
interface ServiceTemplateSpecContainerPort {
|
|
8115
8115
|
/**
|
|
8116
|
-
* Port number the container listens on. This must be a valid port number
|
|
8116
|
+
* Port number the container listens on. This must be a valid port number (between 1 and 65535). Defaults to "8080".
|
|
8117
8117
|
*/
|
|
8118
8118
|
containerPort?: number;
|
|
8119
8119
|
/**
|
|
@@ -8330,6 +8330,819 @@ export declare namespace cloudrun {
|
|
|
8330
8330
|
url: string;
|
|
8331
8331
|
}
|
|
8332
8332
|
}
|
|
8333
|
+
export declare namespace cloudrunv2 {
|
|
8334
|
+
interface JobBinaryAuthorization {
|
|
8335
|
+
/**
|
|
8336
|
+
* If present, indicates to use Breakglass using this justification. If useDefault is False, then it must be empty. For more information on breakglass, see https://cloud.google.com/binary-authorization/docs/using-breakglass
|
|
8337
|
+
*/
|
|
8338
|
+
breakglassJustification?: string;
|
|
8339
|
+
/**
|
|
8340
|
+
* If True, indicates to use the default project's binary authorization policy. If False, binary authorization will be disabled.
|
|
8341
|
+
*/
|
|
8342
|
+
useDefault?: boolean;
|
|
8343
|
+
}
|
|
8344
|
+
interface JobCondition {
|
|
8345
|
+
executionReason: string;
|
|
8346
|
+
lastTransitionTime: string;
|
|
8347
|
+
message: string;
|
|
8348
|
+
reason: string;
|
|
8349
|
+
revisionReason: string;
|
|
8350
|
+
severity: string;
|
|
8351
|
+
state: string;
|
|
8352
|
+
type: string;
|
|
8353
|
+
}
|
|
8354
|
+
interface JobLatestCreatedExecution {
|
|
8355
|
+
completionTime: string;
|
|
8356
|
+
createTime: string;
|
|
8357
|
+
/**
|
|
8358
|
+
* Volume's name.
|
|
8359
|
+
*/
|
|
8360
|
+
name: string;
|
|
8361
|
+
}
|
|
8362
|
+
interface JobTemplate {
|
|
8363
|
+
/**
|
|
8364
|
+
* KRM-style labels for the resource. User-provided labels are shared with Google's billing system, so they can be used to filter, or break down billing charges by team, component, environment, state, etc. For more information, visit https://cloud.google.com/resource-manager/docs/creating-managing-labels or https://cloud.google.com/run/docs/configuring/labels Cloud Run will populate some labels with 'run.googleapis.com' or 'serving.knative.dev' namespaces. Those labels are read-only, and user changes will not be preserved.
|
|
8365
|
+
*/
|
|
8366
|
+
labels?: {
|
|
8367
|
+
[key: string]: string;
|
|
8368
|
+
};
|
|
8369
|
+
/**
|
|
8370
|
+
* Specifies the maximum desired number of tasks the execution should run at given time. Must be <= taskCount. When the job is run, if this field is 0 or unset, the maximum possible value will be used for that execution. The actual number of tasks running in steady state will be less than this number when there are fewer tasks waiting to be completed remaining, i.e. when the work left to do is less than max parallelism.
|
|
8371
|
+
*/
|
|
8372
|
+
parallelism: number;
|
|
8373
|
+
/**
|
|
8374
|
+
* Specifies the desired number of tasks the execution should run. Setting to 1 means that parallelism is limited to 1 and the success of that task signals the success of the execution. More info: https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/
|
|
8375
|
+
*/
|
|
8376
|
+
taskCount: number;
|
|
8377
|
+
/**
|
|
8378
|
+
* Describes the task(s) that will be created when executing an execution
|
|
8379
|
+
* Structure is documented below.
|
|
8380
|
+
*/
|
|
8381
|
+
template: outputs.cloudrunv2.JobTemplateTemplate;
|
|
8382
|
+
}
|
|
8383
|
+
interface JobTemplateTemplate {
|
|
8384
|
+
/**
|
|
8385
|
+
* Holds the single container that defines the unit of execution for this task.
|
|
8386
|
+
* Structure is documented below.
|
|
8387
|
+
*/
|
|
8388
|
+
containers: outputs.cloudrunv2.JobTemplateTemplateContainer[];
|
|
8389
|
+
/**
|
|
8390
|
+
* A reference to a customer managed encryption key (CMEK) to use to encrypt this container image. For more information, go to https://cloud.google.com/run/docs/securing/using-cmek
|
|
8391
|
+
*/
|
|
8392
|
+
encryptionKey?: string;
|
|
8393
|
+
/**
|
|
8394
|
+
* The execution environment being used to host this Task.
|
|
8395
|
+
* Possible values are `EXECUTION_ENVIRONMENT_GEN1` and `EXECUTION_ENVIRONMENT_GEN2`.
|
|
8396
|
+
*/
|
|
8397
|
+
executionEnvironment: string;
|
|
8398
|
+
/**
|
|
8399
|
+
* Number of retries allowed per Task, before marking this Task failed.
|
|
8400
|
+
*/
|
|
8401
|
+
maxRetries: number;
|
|
8402
|
+
/**
|
|
8403
|
+
* Email address of the IAM service account associated with the Task of a Job. The service account represents the identity of the running task, and determines what permissions the task has. If not provided, the task will use the project's default service account.
|
|
8404
|
+
*/
|
|
8405
|
+
serviceAccount: string;
|
|
8406
|
+
/**
|
|
8407
|
+
* Max allowed time duration the Task may be active before the system will actively try to mark it failed and kill associated containers. This applies per attempt of a task, meaning each retry can run for the full timeout.
|
|
8408
|
+
* A duration in seconds with up to nine fractional digits, ending with 's'. Example: "3.5s".
|
|
8409
|
+
*/
|
|
8410
|
+
timeout: string;
|
|
8411
|
+
/**
|
|
8412
|
+
* A list of Volumes to make available to containers.
|
|
8413
|
+
* Structure is documented below.
|
|
8414
|
+
*/
|
|
8415
|
+
volumes?: outputs.cloudrunv2.JobTemplateTemplateVolume[];
|
|
8416
|
+
/**
|
|
8417
|
+
* VPC Access configuration to use for this Task. For more information, visit https://cloud.google.com/run/docs/configuring/connecting-vpc.
|
|
8418
|
+
* Structure is documented below.
|
|
8419
|
+
*/
|
|
8420
|
+
vpcAccess?: outputs.cloudrunv2.JobTemplateTemplateVpcAccess;
|
|
8421
|
+
}
|
|
8422
|
+
interface JobTemplateTemplateContainer {
|
|
8423
|
+
/**
|
|
8424
|
+
* Arguments to the entrypoint. The docker image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. The $(VAR_NAME) syntax can be escaped with a double $$, ie: $$(VAR_NAME). Escaped references will never be expanded, regardless of whether the variable exists or not. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
|
|
8425
|
+
*/
|
|
8426
|
+
args?: string[];
|
|
8427
|
+
/**
|
|
8428
|
+
* Entrypoint array. Not executed within a shell. The docker image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. The $(VAR_NAME) syntax can be escaped with a double $$, ie: $$(VAR_NAME). Escaped references will never be expanded, regardless of whether the variable exists or not. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
|
|
8429
|
+
*/
|
|
8430
|
+
commands?: string[];
|
|
8431
|
+
/**
|
|
8432
|
+
* List of environment variables to set in the container.
|
|
8433
|
+
* Structure is documented below.
|
|
8434
|
+
*/
|
|
8435
|
+
envs?: outputs.cloudrunv2.JobTemplateTemplateContainerEnv[];
|
|
8436
|
+
/**
|
|
8437
|
+
* URL of the Container image in Google Container Registry or Google Artifact Registry. More info: https://kubernetes.io/docs/concepts/containers/images
|
|
8438
|
+
*/
|
|
8439
|
+
image: string;
|
|
8440
|
+
/**
|
|
8441
|
+
* Periodic probe of container liveness. Container will be restarted if the probe fails. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
|
|
8442
|
+
* Structure is documented below.
|
|
8443
|
+
*/
|
|
8444
|
+
livenessProbe?: outputs.cloudrunv2.JobTemplateTemplateContainerLivenessProbe;
|
|
8445
|
+
/**
|
|
8446
|
+
* Volume's name.
|
|
8447
|
+
*/
|
|
8448
|
+
name?: string;
|
|
8449
|
+
/**
|
|
8450
|
+
* List of ports to expose from the container. Only a single port can be specified. The specified ports must be listening on all interfaces (0.0.0.0) within the container to be accessible.
|
|
8451
|
+
* If omitted, a port number will be chosen and passed to the container through the PORT environment variable for the container to listen on
|
|
8452
|
+
* Structure is documented below.
|
|
8453
|
+
*/
|
|
8454
|
+
ports?: outputs.cloudrunv2.JobTemplateTemplateContainerPort[];
|
|
8455
|
+
/**
|
|
8456
|
+
* Compute Resource requirements by this container. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources
|
|
8457
|
+
* Structure is documented below.
|
|
8458
|
+
*/
|
|
8459
|
+
resources: outputs.cloudrunv2.JobTemplateTemplateContainerResources;
|
|
8460
|
+
/**
|
|
8461
|
+
* Startup probe of application within the container. All other probes are disabled if a startup probe is provided, until it succeeds. Container will not be added to service endpoints if the probe fails. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
|
|
8462
|
+
* Structure is documented below.
|
|
8463
|
+
*/
|
|
8464
|
+
startupProbe: outputs.cloudrunv2.JobTemplateTemplateContainerStartupProbe;
|
|
8465
|
+
/**
|
|
8466
|
+
* Volume to mount into the container's filesystem.
|
|
8467
|
+
* Structure is documented below.
|
|
8468
|
+
*/
|
|
8469
|
+
volumeMounts?: outputs.cloudrunv2.JobTemplateTemplateContainerVolumeMount[];
|
|
8470
|
+
/**
|
|
8471
|
+
* Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image.
|
|
8472
|
+
*/
|
|
8473
|
+
workingDir?: string;
|
|
8474
|
+
}
|
|
8475
|
+
interface JobTemplateTemplateContainerEnv {
|
|
8476
|
+
/**
|
|
8477
|
+
* Volume's name.
|
|
8478
|
+
*/
|
|
8479
|
+
name: string;
|
|
8480
|
+
/**
|
|
8481
|
+
* The header field value
|
|
8482
|
+
*/
|
|
8483
|
+
value?: string;
|
|
8484
|
+
/**
|
|
8485
|
+
* Source for the environment variable's value.
|
|
8486
|
+
* Structure is documented below.
|
|
8487
|
+
*/
|
|
8488
|
+
valueSource?: outputs.cloudrunv2.JobTemplateTemplateContainerEnvValueSource;
|
|
8489
|
+
}
|
|
8490
|
+
interface JobTemplateTemplateContainerEnvValueSource {
|
|
8491
|
+
/**
|
|
8492
|
+
* Selects a secret and a specific version from Cloud Secret Manager.
|
|
8493
|
+
* Structure is documented below.
|
|
8494
|
+
*/
|
|
8495
|
+
secretKeyRef?: outputs.cloudrunv2.JobTemplateTemplateContainerEnvValueSourceSecretKeyRef;
|
|
8496
|
+
}
|
|
8497
|
+
interface JobTemplateTemplateContainerEnvValueSourceSecretKeyRef {
|
|
8498
|
+
/**
|
|
8499
|
+
* The name of the secret in Cloud Secret Manager. Format: {secret} if the secret is in the same project. projects/{project}/secrets/{secret} if the secret is in a different project.
|
|
8500
|
+
*/
|
|
8501
|
+
secret: string;
|
|
8502
|
+
/**
|
|
8503
|
+
* The Cloud Secret Manager secret version. Can be 'latest' for the latest value or an integer for a specific version
|
|
8504
|
+
*/
|
|
8505
|
+
version: string;
|
|
8506
|
+
}
|
|
8507
|
+
interface JobTemplateTemplateContainerLivenessProbe {
|
|
8508
|
+
/**
|
|
8509
|
+
* Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
|
|
8510
|
+
*/
|
|
8511
|
+
failureThreshold?: number;
|
|
8512
|
+
/**
|
|
8513
|
+
* HTTPGet specifies the http request to perform. Exactly one of HTTPGet or TCPSocket must be specified.
|
|
8514
|
+
* Structure is documented below.
|
|
8515
|
+
*/
|
|
8516
|
+
httpGet?: outputs.cloudrunv2.JobTemplateTemplateContainerLivenessProbeHttpGet;
|
|
8517
|
+
/**
|
|
8518
|
+
* Number of seconds after the container has started before the probe is initiated. Defaults to 0 seconds. Minimum value is 0. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
|
|
8519
|
+
*/
|
|
8520
|
+
initialDelaySeconds?: number;
|
|
8521
|
+
/**
|
|
8522
|
+
* How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240. Must be greater or equal than timeoutSeconds
|
|
8523
|
+
*/
|
|
8524
|
+
periodSeconds?: number;
|
|
8525
|
+
/**
|
|
8526
|
+
* TCPSocket specifies an action involving a TCP port. Exactly one of HTTPGet or TCPSocket must be specified.
|
|
8527
|
+
* Structure is documented below.
|
|
8528
|
+
*/
|
|
8529
|
+
tcpSocket?: outputs.cloudrunv2.JobTemplateTemplateContainerLivenessProbeTcpSocket;
|
|
8530
|
+
/**
|
|
8531
|
+
* Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1. Maximum value is 3600. Must be smaller than periodSeconds. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
|
|
8532
|
+
*/
|
|
8533
|
+
timeoutSeconds?: number;
|
|
8534
|
+
}
|
|
8535
|
+
interface JobTemplateTemplateContainerLivenessProbeHttpGet {
|
|
8536
|
+
/**
|
|
8537
|
+
* Custom headers to set in the request. HTTP allows repeated headers.
|
|
8538
|
+
* Structure is documented below.
|
|
8539
|
+
*/
|
|
8540
|
+
httpHeaders?: outputs.cloudrunv2.JobTemplateTemplateContainerLivenessProbeHttpGetHttpHeader[];
|
|
8541
|
+
/**
|
|
8542
|
+
* The relative path of the secret in the container.
|
|
8543
|
+
*/
|
|
8544
|
+
path?: string;
|
|
8545
|
+
}
|
|
8546
|
+
interface JobTemplateTemplateContainerLivenessProbeHttpGetHttpHeader {
|
|
8547
|
+
/**
|
|
8548
|
+
* Volume's name.
|
|
8549
|
+
*/
|
|
8550
|
+
name: string;
|
|
8551
|
+
/**
|
|
8552
|
+
* The header field value
|
|
8553
|
+
*/
|
|
8554
|
+
value?: string;
|
|
8555
|
+
}
|
|
8556
|
+
interface JobTemplateTemplateContainerLivenessProbeTcpSocket {
|
|
8557
|
+
/**
|
|
8558
|
+
* Port number to access on the container. Must be in the range 1 to 65535. If not specified, defaults to 8080.
|
|
8559
|
+
*/
|
|
8560
|
+
port?: number;
|
|
8561
|
+
}
|
|
8562
|
+
interface JobTemplateTemplateContainerPort {
|
|
8563
|
+
/**
|
|
8564
|
+
* Port number the container listens on. This must be a valid TCP port number, 0 < containerPort < 65536.
|
|
8565
|
+
*/
|
|
8566
|
+
containerPort?: number;
|
|
8567
|
+
/**
|
|
8568
|
+
* Volume's name.
|
|
8569
|
+
*/
|
|
8570
|
+
name?: string;
|
|
8571
|
+
}
|
|
8572
|
+
interface JobTemplateTemplateContainerResources {
|
|
8573
|
+
/**
|
|
8574
|
+
* Only memory and CPU are supported. Note: The only supported values for CPU are '1', '2', '4', and '8'. Setting 4 CPU requires at least 2Gi of memory. The values of the map is string form of the 'quantity' k8s type: https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apimachinery/pkg/api/resource/quantity.go
|
|
8575
|
+
*/
|
|
8576
|
+
limits: {
|
|
8577
|
+
[key: string]: string;
|
|
8578
|
+
};
|
|
8579
|
+
}
|
|
8580
|
+
interface JobTemplateTemplateContainerStartupProbe {
|
|
8581
|
+
/**
|
|
8582
|
+
* Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
|
|
8583
|
+
*/
|
|
8584
|
+
failureThreshold?: number;
|
|
8585
|
+
/**
|
|
8586
|
+
* HTTPGet specifies the http request to perform. Exactly one of HTTPGet or TCPSocket must be specified.
|
|
8587
|
+
* Structure is documented below.
|
|
8588
|
+
*/
|
|
8589
|
+
httpGet?: outputs.cloudrunv2.JobTemplateTemplateContainerStartupProbeHttpGet;
|
|
8590
|
+
/**
|
|
8591
|
+
* Number of seconds after the container has started before the probe is initiated. Defaults to 0 seconds. Minimum value is 0. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
|
|
8592
|
+
*/
|
|
8593
|
+
initialDelaySeconds?: number;
|
|
8594
|
+
/**
|
|
8595
|
+
* How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240. Must be greater or equal than timeoutSeconds
|
|
8596
|
+
*/
|
|
8597
|
+
periodSeconds?: number;
|
|
8598
|
+
/**
|
|
8599
|
+
* TCPSocket specifies an action involving a TCP port. Exactly one of HTTPGet or TCPSocket must be specified.
|
|
8600
|
+
* Structure is documented below.
|
|
8601
|
+
*/
|
|
8602
|
+
tcpSocket?: outputs.cloudrunv2.JobTemplateTemplateContainerStartupProbeTcpSocket;
|
|
8603
|
+
/**
|
|
8604
|
+
* Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1. Maximum value is 3600. Must be smaller than periodSeconds. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
|
|
8605
|
+
*/
|
|
8606
|
+
timeoutSeconds?: number;
|
|
8607
|
+
}
|
|
8608
|
+
interface JobTemplateTemplateContainerStartupProbeHttpGet {
|
|
8609
|
+
/**
|
|
8610
|
+
* Custom headers to set in the request. HTTP allows repeated headers.
|
|
8611
|
+
* Structure is documented below.
|
|
8612
|
+
*/
|
|
8613
|
+
httpHeaders?: outputs.cloudrunv2.JobTemplateTemplateContainerStartupProbeHttpGetHttpHeader[];
|
|
8614
|
+
/**
|
|
8615
|
+
* The relative path of the secret in the container.
|
|
8616
|
+
*/
|
|
8617
|
+
path?: string;
|
|
8618
|
+
}
|
|
8619
|
+
interface JobTemplateTemplateContainerStartupProbeHttpGetHttpHeader {
|
|
8620
|
+
/**
|
|
8621
|
+
* Volume's name.
|
|
8622
|
+
*/
|
|
8623
|
+
name: string;
|
|
8624
|
+
/**
|
|
8625
|
+
* The header field value
|
|
8626
|
+
*/
|
|
8627
|
+
value?: string;
|
|
8628
|
+
}
|
|
8629
|
+
interface JobTemplateTemplateContainerStartupProbeTcpSocket {
|
|
8630
|
+
/**
|
|
8631
|
+
* Port number to access on the container. Must be in the range 1 to 65535. If not specified, defaults to 8080.
|
|
8632
|
+
*/
|
|
8633
|
+
port: number;
|
|
8634
|
+
}
|
|
8635
|
+
interface JobTemplateTemplateContainerVolumeMount {
|
|
8636
|
+
/**
|
|
8637
|
+
* Path within the container at which the volume should be mounted. Must not contain ':'. For Cloud SQL volumes, it can be left empty, or must otherwise be /cloudsql. All instances defined in the Volume will be available as /cloudsql/[instance]. For more information on Cloud SQL volumes, visit https://cloud.google.com/sql/docs/mysql/connect-run
|
|
8638
|
+
*/
|
|
8639
|
+
mountPath: string;
|
|
8640
|
+
/**
|
|
8641
|
+
* Volume's name.
|
|
8642
|
+
*/
|
|
8643
|
+
name: string;
|
|
8644
|
+
}
|
|
8645
|
+
interface JobTemplateTemplateVolume {
|
|
8646
|
+
/**
|
|
8647
|
+
* For Cloud SQL volumes, contains the specific instances that should be mounted. Visit https://cloud.google.com/sql/docs/mysql/connect-run for more information on how to connect Cloud SQL and Cloud Run.
|
|
8648
|
+
* Structure is documented below.
|
|
8649
|
+
*/
|
|
8650
|
+
cloudSqlInstance?: outputs.cloudrunv2.JobTemplateTemplateVolumeCloudSqlInstance;
|
|
8651
|
+
/**
|
|
8652
|
+
* Volume's name.
|
|
8653
|
+
*/
|
|
8654
|
+
name: string;
|
|
8655
|
+
/**
|
|
8656
|
+
* The name of the secret in Cloud Secret Manager. Format: {secret} if the secret is in the same project. projects/{project}/secrets/{secret} if the secret is in a different project.
|
|
8657
|
+
*/
|
|
8658
|
+
secret?: outputs.cloudrunv2.JobTemplateTemplateVolumeSecret;
|
|
8659
|
+
}
|
|
8660
|
+
interface JobTemplateTemplateVolumeCloudSqlInstance {
|
|
8661
|
+
/**
|
|
8662
|
+
* The Cloud SQL instance connection names, as can be found in https://console.cloud.google.com/sql/instances. Visit https://cloud.google.com/sql/docs/mysql/connect-run for more information on how to connect Cloud SQL and Cloud Run. Format: {project}:{location}:{instance}
|
|
8663
|
+
*/
|
|
8664
|
+
instances?: string[];
|
|
8665
|
+
}
|
|
8666
|
+
interface JobTemplateTemplateVolumeSecret {
|
|
8667
|
+
/**
|
|
8668
|
+
* Integer representation of mode bits to use on created files by default. Must be a value between 0000 and 0777 (octal), defaulting to 0444. Directories within the path are not affected by this setting.
|
|
8669
|
+
*/
|
|
8670
|
+
defaultMode?: number;
|
|
8671
|
+
/**
|
|
8672
|
+
* If unspecified, the volume will expose a file whose name is the secret, relative to VolumeMount.mount_path. If specified, the key will be used as the version to fetch from Cloud Secret Manager and the path will be the name of the file exposed in the volume. When items are defined, they must specify a path and a version.
|
|
8673
|
+
* Structure is documented below.
|
|
8674
|
+
*/
|
|
8675
|
+
items?: outputs.cloudrunv2.JobTemplateTemplateVolumeSecretItem[];
|
|
8676
|
+
/**
|
|
8677
|
+
* The name of the secret in Cloud Secret Manager. Format: {secret} if the secret is in the same project. projects/{project}/secrets/{secret} if the secret is in a different project.
|
|
8678
|
+
*/
|
|
8679
|
+
secret: string;
|
|
8680
|
+
}
|
|
8681
|
+
interface JobTemplateTemplateVolumeSecretItem {
|
|
8682
|
+
/**
|
|
8683
|
+
* Integer octal mode bits to use on this file, must be a value between 01 and 0777 (octal). If 0 or not set, the Volume's default mode will be used.
|
|
8684
|
+
*/
|
|
8685
|
+
mode: number;
|
|
8686
|
+
/**
|
|
8687
|
+
* The relative path of the secret in the container.
|
|
8688
|
+
*/
|
|
8689
|
+
path: string;
|
|
8690
|
+
/**
|
|
8691
|
+
* The Cloud Secret Manager secret version. Can be 'latest' for the latest value or an integer for a specific version
|
|
8692
|
+
*/
|
|
8693
|
+
version: string;
|
|
8694
|
+
}
|
|
8695
|
+
interface JobTemplateTemplateVpcAccess {
|
|
8696
|
+
/**
|
|
8697
|
+
* VPC Access connector name. Format: projects/{project}/locations/{location}/connectors/{connector}, where {project} can be project id or number.
|
|
8698
|
+
*/
|
|
8699
|
+
connector?: string;
|
|
8700
|
+
/**
|
|
8701
|
+
* Traffic VPC egress settings.
|
|
8702
|
+
* Possible values are `ALL_TRAFFIC` and `PRIVATE_RANGES_ONLY`.
|
|
8703
|
+
*/
|
|
8704
|
+
egress?: string;
|
|
8705
|
+
}
|
|
8706
|
+
interface JobTerminalCondition {
|
|
8707
|
+
executionReason: string;
|
|
8708
|
+
lastTransitionTime: string;
|
|
8709
|
+
message: string;
|
|
8710
|
+
reason: string;
|
|
8711
|
+
revisionReason: string;
|
|
8712
|
+
severity: string;
|
|
8713
|
+
state: string;
|
|
8714
|
+
type: string;
|
|
8715
|
+
}
|
|
8716
|
+
interface ServiceBinaryAuthorization {
|
|
8717
|
+
/**
|
|
8718
|
+
* If present, indicates to use Breakglass using this justification. If useDefault is False, then it must be empty. For more information on breakglass, see https://cloud.google.com/binary-authorization/docs/using-breakglass
|
|
8719
|
+
*/
|
|
8720
|
+
breakglassJustification?: string;
|
|
8721
|
+
/**
|
|
8722
|
+
* If True, indicates to use the default project's binary authorization policy. If False, binary authorization will be disabled.
|
|
8723
|
+
*/
|
|
8724
|
+
useDefault?: boolean;
|
|
8725
|
+
}
|
|
8726
|
+
interface ServiceCondition {
|
|
8727
|
+
executionReason: string;
|
|
8728
|
+
lastTransitionTime: string;
|
|
8729
|
+
message: string;
|
|
8730
|
+
reason: string;
|
|
8731
|
+
revisionReason: string;
|
|
8732
|
+
severity: string;
|
|
8733
|
+
state: string;
|
|
8734
|
+
/**
|
|
8735
|
+
* The allocation type for this traffic target.
|
|
8736
|
+
* Possible values are `TRAFFIC_TARGET_ALLOCATION_TYPE_LATEST` and `TRAFFIC_TARGET_ALLOCATION_TYPE_REVISION`.
|
|
8737
|
+
*/
|
|
8738
|
+
type: string;
|
|
8739
|
+
}
|
|
8740
|
+
interface ServiceTemplate {
|
|
8741
|
+
/**
|
|
8742
|
+
* Holds the single container that defines the unit of execution for this task.
|
|
8743
|
+
* Structure is documented below.
|
|
8744
|
+
*/
|
|
8745
|
+
containers?: outputs.cloudrunv2.ServiceTemplateContainer[];
|
|
8746
|
+
/**
|
|
8747
|
+
* A reference to a customer managed encryption key (CMEK) to use to encrypt this container image. For more information, go to https://cloud.google.com/run/docs/securing/using-cmek
|
|
8748
|
+
*/
|
|
8749
|
+
encryptionKey?: string;
|
|
8750
|
+
/**
|
|
8751
|
+
* The sandbox environment to host this Revision.
|
|
8752
|
+
* Possible values are `EXECUTION_ENVIRONMENT_GEN1` and `EXECUTION_ENVIRONMENT_GEN2`.
|
|
8753
|
+
*/
|
|
8754
|
+
executionEnvironment?: string;
|
|
8755
|
+
/**
|
|
8756
|
+
* Map of string keys and values that can be used to organize and categorize objects. User-provided labels are shared with Google's billing system, so they can be used to filter, or break down billing charges by team, component, environment, state, etc. For more information, visit https://cloud.google.com/resource-manager/docs/creating-managing-labels or https://cloud.google.com/run/docs/configuring/labels Cloud Run will populate some labels with 'run.googleapis.com' or 'serving.knative.dev' namespaces. Those labels are read-only, and user changes will not be preserved.
|
|
8757
|
+
*/
|
|
8758
|
+
labels?: {
|
|
8759
|
+
[key: string]: string;
|
|
8760
|
+
};
|
|
8761
|
+
/**
|
|
8762
|
+
* Sets the maximum number of requests that each serving instance can receive.
|
|
8763
|
+
*/
|
|
8764
|
+
maxInstanceRequestConcurrency: number;
|
|
8765
|
+
/**
|
|
8766
|
+
* Revision to which to send this portion of traffic, if traffic allocation is by revision.
|
|
8767
|
+
*/
|
|
8768
|
+
revision?: string;
|
|
8769
|
+
/**
|
|
8770
|
+
* Scaling settings for this Revision.
|
|
8771
|
+
* Structure is documented below.
|
|
8772
|
+
*/
|
|
8773
|
+
scaling: outputs.cloudrunv2.ServiceTemplateScaling;
|
|
8774
|
+
/**
|
|
8775
|
+
* Email address of the IAM service account associated with the revision of the service. The service account represents the identity of the running revision, and determines what permissions the revision has. If not provided, the revision will use the project's default service account.
|
|
8776
|
+
*/
|
|
8777
|
+
serviceAccount: string;
|
|
8778
|
+
/**
|
|
8779
|
+
* Max allowed time for an instance to respond to a request.
|
|
8780
|
+
* A duration in seconds with up to nine fractional digits, ending with 's'. Example: "3.5s".
|
|
8781
|
+
*/
|
|
8782
|
+
timeout: string;
|
|
8783
|
+
/**
|
|
8784
|
+
* A list of Volumes to make available to containers.
|
|
8785
|
+
* Structure is documented below.
|
|
8786
|
+
*/
|
|
8787
|
+
volumes?: outputs.cloudrunv2.ServiceTemplateVolume[];
|
|
8788
|
+
/**
|
|
8789
|
+
* VPC Access configuration to use for this Task. For more information, visit https://cloud.google.com/run/docs/configuring/connecting-vpc.
|
|
8790
|
+
* Structure is documented below.
|
|
8791
|
+
*/
|
|
8792
|
+
vpcAccess?: outputs.cloudrunv2.ServiceTemplateVpcAccess;
|
|
8793
|
+
}
|
|
8794
|
+
interface ServiceTemplateContainer {
|
|
8795
|
+
/**
|
|
8796
|
+
* Arguments to the entrypoint. The docker image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. The $(VAR_NAME) syntax can be escaped with a double $$, ie: $$(VAR_NAME). Escaped references will never be expanded, regardless of whether the variable exists or not. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
|
|
8797
|
+
*/
|
|
8798
|
+
args?: string[];
|
|
8799
|
+
/**
|
|
8800
|
+
* Entrypoint array. Not executed within a shell. The docker image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. The $(VAR_NAME) syntax can be escaped with a double $$, ie: $$(VAR_NAME). Escaped references will never be expanded, regardless of whether the variable exists or not. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
|
|
8801
|
+
*/
|
|
8802
|
+
commands?: string[];
|
|
8803
|
+
/**
|
|
8804
|
+
* List of environment variables to set in the container.
|
|
8805
|
+
* Structure is documented below.
|
|
8806
|
+
*/
|
|
8807
|
+
envs?: outputs.cloudrunv2.ServiceTemplateContainerEnv[];
|
|
8808
|
+
/**
|
|
8809
|
+
* URL of the Container image in Google Container Registry or Google Artifact Registry. More info: https://kubernetes.io/docs/concepts/containers/images
|
|
8810
|
+
*/
|
|
8811
|
+
image: string;
|
|
8812
|
+
/**
|
|
8813
|
+
* Periodic probe of container liveness. Container will be restarted if the probe fails. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
|
|
8814
|
+
* Structure is documented below.
|
|
8815
|
+
*/
|
|
8816
|
+
livenessProbe?: outputs.cloudrunv2.ServiceTemplateContainerLivenessProbe;
|
|
8817
|
+
/**
|
|
8818
|
+
* Volume's name.
|
|
8819
|
+
*/
|
|
8820
|
+
name?: string;
|
|
8821
|
+
/**
|
|
8822
|
+
* List of ports to expose from the container. Only a single port can be specified. The specified ports must be listening on all interfaces (0.0.0.0) within the container to be accessible.
|
|
8823
|
+
* If omitted, a port number will be chosen and passed to the container through the PORT environment variable for the container to listen on
|
|
8824
|
+
* Structure is documented below.
|
|
8825
|
+
*/
|
|
8826
|
+
ports: outputs.cloudrunv2.ServiceTemplateContainerPort[];
|
|
8827
|
+
/**
|
|
8828
|
+
* Compute Resource requirements by this container. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources
|
|
8829
|
+
* Structure is documented below.
|
|
8830
|
+
*/
|
|
8831
|
+
resources: outputs.cloudrunv2.ServiceTemplateContainerResources;
|
|
8832
|
+
/**
|
|
8833
|
+
* Startup probe of application within the container. All other probes are disabled if a startup probe is provided, until it succeeds. Container will not be added to service endpoints if the probe fails. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
|
|
8834
|
+
* Structure is documented below.
|
|
8835
|
+
*/
|
|
8836
|
+
startupProbe: outputs.cloudrunv2.ServiceTemplateContainerStartupProbe;
|
|
8837
|
+
/**
|
|
8838
|
+
* Volume to mount into the container's filesystem.
|
|
8839
|
+
* Structure is documented below.
|
|
8840
|
+
*/
|
|
8841
|
+
volumeMounts?: outputs.cloudrunv2.ServiceTemplateContainerVolumeMount[];
|
|
8842
|
+
/**
|
|
8843
|
+
* Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image.
|
|
8844
|
+
*/
|
|
8845
|
+
workingDir?: string;
|
|
8846
|
+
}
|
|
8847
|
+
interface ServiceTemplateContainerEnv {
|
|
8848
|
+
/**
|
|
8849
|
+
* Volume's name.
|
|
8850
|
+
*/
|
|
8851
|
+
name: string;
|
|
8852
|
+
/**
|
|
8853
|
+
* The header field value
|
|
8854
|
+
*/
|
|
8855
|
+
value?: string;
|
|
8856
|
+
/**
|
|
8857
|
+
* Source for the environment variable's value.
|
|
8858
|
+
* Structure is documented below.
|
|
8859
|
+
*/
|
|
8860
|
+
valueSource?: outputs.cloudrunv2.ServiceTemplateContainerEnvValueSource;
|
|
8861
|
+
}
|
|
8862
|
+
interface ServiceTemplateContainerEnvValueSource {
|
|
8863
|
+
/**
|
|
8864
|
+
* Selects a secret and a specific version from Cloud Secret Manager.
|
|
8865
|
+
* Structure is documented below.
|
|
8866
|
+
*/
|
|
8867
|
+
secretKeyRef?: outputs.cloudrunv2.ServiceTemplateContainerEnvValueSourceSecretKeyRef;
|
|
8868
|
+
}
|
|
8869
|
+
interface ServiceTemplateContainerEnvValueSourceSecretKeyRef {
|
|
8870
|
+
/**
|
|
8871
|
+
* The name of the secret in Cloud Secret Manager. Format: {secret} if the secret is in the same project. projects/{project}/secrets/{secret} if the secret is in a different project.
|
|
8872
|
+
*/
|
|
8873
|
+
secret: string;
|
|
8874
|
+
/**
|
|
8875
|
+
* The Cloud Secret Manager secret version. Can be 'latest' for the latest value or an integer for a specific version
|
|
8876
|
+
*/
|
|
8877
|
+
version?: string;
|
|
8878
|
+
}
|
|
8879
|
+
interface ServiceTemplateContainerLivenessProbe {
|
|
8880
|
+
/**
|
|
8881
|
+
* Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
|
|
8882
|
+
*/
|
|
8883
|
+
failureThreshold?: number;
|
|
8884
|
+
/**
|
|
8885
|
+
* HTTPGet specifies the http request to perform. Exactly one of HTTPGet or TCPSocket must be specified.
|
|
8886
|
+
* Structure is documented below.
|
|
8887
|
+
*/
|
|
8888
|
+
httpGet?: outputs.cloudrunv2.ServiceTemplateContainerLivenessProbeHttpGet;
|
|
8889
|
+
/**
|
|
8890
|
+
* Number of seconds after the container has started before the probe is initiated. Defaults to 0 seconds. Minimum value is 0. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
|
|
8891
|
+
*/
|
|
8892
|
+
initialDelaySeconds?: number;
|
|
8893
|
+
/**
|
|
8894
|
+
* How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240. Must be greater or equal than timeoutSeconds
|
|
8895
|
+
*/
|
|
8896
|
+
periodSeconds?: number;
|
|
8897
|
+
/**
|
|
8898
|
+
* TCPSocket specifies an action involving a TCP port. Exactly one of HTTPGet or TCPSocket must be specified.
|
|
8899
|
+
* Structure is documented below.
|
|
8900
|
+
*/
|
|
8901
|
+
tcpSocket?: outputs.cloudrunv2.ServiceTemplateContainerLivenessProbeTcpSocket;
|
|
8902
|
+
/**
|
|
8903
|
+
* Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1. Maximum value is 3600. Must be smaller than periodSeconds. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
|
|
8904
|
+
*/
|
|
8905
|
+
timeoutSeconds?: number;
|
|
8906
|
+
}
|
|
8907
|
+
interface ServiceTemplateContainerLivenessProbeHttpGet {
|
|
8908
|
+
/**
|
|
8909
|
+
* Custom headers to set in the request. HTTP allows repeated headers.
|
|
8910
|
+
* Structure is documented below.
|
|
8911
|
+
*/
|
|
8912
|
+
httpHeaders?: outputs.cloudrunv2.ServiceTemplateContainerLivenessProbeHttpGetHttpHeader[];
|
|
8913
|
+
/**
|
|
8914
|
+
* The relative path of the secret in the container.
|
|
8915
|
+
*/
|
|
8916
|
+
path?: string;
|
|
8917
|
+
}
|
|
8918
|
+
interface ServiceTemplateContainerLivenessProbeHttpGetHttpHeader {
|
|
8919
|
+
/**
|
|
8920
|
+
* Volume's name.
|
|
8921
|
+
*/
|
|
8922
|
+
name: string;
|
|
8923
|
+
/**
|
|
8924
|
+
* The header field value
|
|
8925
|
+
*/
|
|
8926
|
+
value?: string;
|
|
8927
|
+
}
|
|
8928
|
+
interface ServiceTemplateContainerLivenessProbeTcpSocket {
|
|
8929
|
+
/**
|
|
8930
|
+
* Port number to access on the container. Must be in the range 1 to 65535. If not specified, defaults to 8080.
|
|
8931
|
+
*/
|
|
8932
|
+
port?: number;
|
|
8933
|
+
}
|
|
8934
|
+
interface ServiceTemplateContainerPort {
|
|
8935
|
+
/**
|
|
8936
|
+
* Port number the container listens on. This must be a valid TCP port number, 0 < containerPort < 65536.
|
|
8937
|
+
*/
|
|
8938
|
+
containerPort?: number;
|
|
8939
|
+
/**
|
|
8940
|
+
* Volume's name.
|
|
8941
|
+
*/
|
|
8942
|
+
name: string;
|
|
8943
|
+
}
|
|
8944
|
+
interface ServiceTemplateContainerResources {
|
|
8945
|
+
/**
|
|
8946
|
+
* Determines whether CPU should be throttled or not outside of requests.
|
|
8947
|
+
*/
|
|
8948
|
+
cpuIdle?: boolean;
|
|
8949
|
+
/**
|
|
8950
|
+
* Only memory and CPU are supported. Note: The only supported values for CPU are '1', '2', '4', and '8'. Setting 4 CPU requires at least 2Gi of memory. The values of the map is string form of the 'quantity' k8s type: https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apimachinery/pkg/api/resource/quantity.go
|
|
8951
|
+
*/
|
|
8952
|
+
limits: {
|
|
8953
|
+
[key: string]: string;
|
|
8954
|
+
};
|
|
8955
|
+
}
|
|
8956
|
+
interface ServiceTemplateContainerStartupProbe {
|
|
8957
|
+
/**
|
|
8958
|
+
* Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
|
|
8959
|
+
*/
|
|
8960
|
+
failureThreshold?: number;
|
|
8961
|
+
/**
|
|
8962
|
+
* HTTPGet specifies the http request to perform. Exactly one of HTTPGet or TCPSocket must be specified.
|
|
8963
|
+
* Structure is documented below.
|
|
8964
|
+
*/
|
|
8965
|
+
httpGet?: outputs.cloudrunv2.ServiceTemplateContainerStartupProbeHttpGet;
|
|
8966
|
+
/**
|
|
8967
|
+
* Number of seconds after the container has started before the probe is initiated. Defaults to 0 seconds. Minimum value is 0. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
|
|
8968
|
+
*/
|
|
8969
|
+
initialDelaySeconds?: number;
|
|
8970
|
+
/**
|
|
8971
|
+
* How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240. Must be greater or equal than timeoutSeconds
|
|
8972
|
+
*/
|
|
8973
|
+
periodSeconds?: number;
|
|
8974
|
+
/**
|
|
8975
|
+
* TCPSocket specifies an action involving a TCP port. Exactly one of HTTPGet or TCPSocket must be specified.
|
|
8976
|
+
* Structure is documented below.
|
|
8977
|
+
*/
|
|
8978
|
+
tcpSocket?: outputs.cloudrunv2.ServiceTemplateContainerStartupProbeTcpSocket;
|
|
8979
|
+
/**
|
|
8980
|
+
* Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1. Maximum value is 3600. Must be smaller than periodSeconds. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
|
|
8981
|
+
*/
|
|
8982
|
+
timeoutSeconds?: number;
|
|
8983
|
+
}
|
|
8984
|
+
interface ServiceTemplateContainerStartupProbeHttpGet {
|
|
8985
|
+
/**
|
|
8986
|
+
* Custom headers to set in the request. HTTP allows repeated headers.
|
|
8987
|
+
* Structure is documented below.
|
|
8988
|
+
*/
|
|
8989
|
+
httpHeaders?: outputs.cloudrunv2.ServiceTemplateContainerStartupProbeHttpGetHttpHeader[];
|
|
8990
|
+
/**
|
|
8991
|
+
* The relative path of the secret in the container.
|
|
8992
|
+
*/
|
|
8993
|
+
path?: string;
|
|
8994
|
+
}
|
|
8995
|
+
interface ServiceTemplateContainerStartupProbeHttpGetHttpHeader {
|
|
8996
|
+
/**
|
|
8997
|
+
* Volume's name.
|
|
8998
|
+
*/
|
|
8999
|
+
name: string;
|
|
9000
|
+
/**
|
|
9001
|
+
* The header field value
|
|
9002
|
+
*/
|
|
9003
|
+
value?: string;
|
|
9004
|
+
}
|
|
9005
|
+
interface ServiceTemplateContainerStartupProbeTcpSocket {
|
|
9006
|
+
/**
|
|
9007
|
+
* Port number to access on the container. Must be in the range 1 to 65535. If not specified, defaults to 8080.
|
|
9008
|
+
*/
|
|
9009
|
+
port: number;
|
|
9010
|
+
}
|
|
9011
|
+
interface ServiceTemplateContainerVolumeMount {
|
|
9012
|
+
/**
|
|
9013
|
+
* Path within the container at which the volume should be mounted. Must not contain ':'. For Cloud SQL volumes, it can be left empty, or must otherwise be /cloudsql. All instances defined in the Volume will be available as /cloudsql/[instance]. For more information on Cloud SQL volumes, visit https://cloud.google.com/sql/docs/mysql/connect-run
|
|
9014
|
+
*/
|
|
9015
|
+
mountPath: string;
|
|
9016
|
+
/**
|
|
9017
|
+
* Volume's name.
|
|
9018
|
+
*/
|
|
9019
|
+
name: string;
|
|
9020
|
+
}
|
|
9021
|
+
interface ServiceTemplateScaling {
|
|
9022
|
+
/**
|
|
9023
|
+
* Maximum number of serving instances that this resource should have.
|
|
9024
|
+
*/
|
|
9025
|
+
maxInstanceCount?: number;
|
|
9026
|
+
/**
|
|
9027
|
+
* Minimum number of serving instances that this resource should have.
|
|
9028
|
+
*/
|
|
9029
|
+
minInstanceCount?: number;
|
|
9030
|
+
}
|
|
9031
|
+
interface ServiceTemplateVolume {
|
|
9032
|
+
/**
|
|
9033
|
+
* For Cloud SQL volumes, contains the specific instances that should be mounted. Visit https://cloud.google.com/sql/docs/mysql/connect-run for more information on how to connect Cloud SQL and Cloud Run.
|
|
9034
|
+
* Structure is documented below.
|
|
9035
|
+
*/
|
|
9036
|
+
cloudSqlInstance?: outputs.cloudrunv2.ServiceTemplateVolumeCloudSqlInstance;
|
|
9037
|
+
/**
|
|
9038
|
+
* Volume's name.
|
|
9039
|
+
*/
|
|
9040
|
+
name: string;
|
|
9041
|
+
/**
|
|
9042
|
+
* The name of the secret in Cloud Secret Manager. Format: {secret} if the secret is in the same project. projects/{project}/secrets/{secret} if the secret is in a different project.
|
|
9043
|
+
*/
|
|
9044
|
+
secret?: outputs.cloudrunv2.ServiceTemplateVolumeSecret;
|
|
9045
|
+
}
|
|
9046
|
+
interface ServiceTemplateVolumeCloudSqlInstance {
|
|
9047
|
+
/**
|
|
9048
|
+
* The Cloud SQL instance connection names, as can be found in https://console.cloud.google.com/sql/instances. Visit https://cloud.google.com/sql/docs/mysql/connect-run for more information on how to connect Cloud SQL and Cloud Run. Format: {project}:{location}:{instance}
|
|
9049
|
+
*/
|
|
9050
|
+
instances?: string[];
|
|
9051
|
+
}
|
|
9052
|
+
interface ServiceTemplateVolumeSecret {
|
|
9053
|
+
/**
|
|
9054
|
+
* Integer representation of mode bits to use on created files by default. Must be a value between 0000 and 0777 (octal), defaulting to 0444. Directories within the path are not affected by this setting.
|
|
9055
|
+
*/
|
|
9056
|
+
defaultMode?: number;
|
|
9057
|
+
/**
|
|
9058
|
+
* If unspecified, the volume will expose a file whose name is the secret, relative to VolumeMount.mount_path. If specified, the key will be used as the version to fetch from Cloud Secret Manager and the path will be the name of the file exposed in the volume. When items are defined, they must specify a path and a version.
|
|
9059
|
+
* Structure is documented below.
|
|
9060
|
+
*/
|
|
9061
|
+
items?: outputs.cloudrunv2.ServiceTemplateVolumeSecretItem[];
|
|
9062
|
+
/**
|
|
9063
|
+
* The name of the secret in Cloud Secret Manager. Format: {secret} if the secret is in the same project. projects/{project}/secrets/{secret} if the secret is in a different project.
|
|
9064
|
+
*/
|
|
9065
|
+
secret: string;
|
|
9066
|
+
}
|
|
9067
|
+
interface ServiceTemplateVolumeSecretItem {
|
|
9068
|
+
/**
|
|
9069
|
+
* Integer octal mode bits to use on this file, must be a value between 01 and 0777 (octal). If 0 or not set, the Volume's default mode will be used.
|
|
9070
|
+
*/
|
|
9071
|
+
mode: number;
|
|
9072
|
+
/**
|
|
9073
|
+
* The relative path of the secret in the container.
|
|
9074
|
+
*/
|
|
9075
|
+
path: string;
|
|
9076
|
+
/**
|
|
9077
|
+
* The Cloud Secret Manager secret version. Can be 'latest' for the latest value or an integer for a specific version
|
|
9078
|
+
*/
|
|
9079
|
+
version?: string;
|
|
9080
|
+
}
|
|
9081
|
+
interface ServiceTemplateVpcAccess {
|
|
9082
|
+
/**
|
|
9083
|
+
* VPC Access connector name. Format: projects/{project}/locations/{location}/connectors/{connector}, where {project} can be project id or number.
|
|
9084
|
+
*/
|
|
9085
|
+
connector?: string;
|
|
9086
|
+
/**
|
|
9087
|
+
* Traffic VPC egress settings.
|
|
9088
|
+
* Possible values are `ALL_TRAFFIC` and `PRIVATE_RANGES_ONLY`.
|
|
9089
|
+
*/
|
|
9090
|
+
egress?: string;
|
|
9091
|
+
}
|
|
9092
|
+
interface ServiceTerminalCondition {
|
|
9093
|
+
executionReason: string;
|
|
9094
|
+
lastTransitionTime: string;
|
|
9095
|
+
message: string;
|
|
9096
|
+
reason: string;
|
|
9097
|
+
revisionReason: string;
|
|
9098
|
+
severity: string;
|
|
9099
|
+
state: string;
|
|
9100
|
+
/**
|
|
9101
|
+
* The allocation type for this traffic target.
|
|
9102
|
+
* Possible values are `TRAFFIC_TARGET_ALLOCATION_TYPE_LATEST` and `TRAFFIC_TARGET_ALLOCATION_TYPE_REVISION`.
|
|
9103
|
+
*/
|
|
9104
|
+
type: string;
|
|
9105
|
+
}
|
|
9106
|
+
interface ServiceTraffic {
|
|
9107
|
+
/**
|
|
9108
|
+
* Specifies percent of the traffic to this Revision. This defaults to zero if unspecified.
|
|
9109
|
+
*/
|
|
9110
|
+
percent: number;
|
|
9111
|
+
/**
|
|
9112
|
+
* Revision to which to send this portion of traffic, if traffic allocation is by revision.
|
|
9113
|
+
*/
|
|
9114
|
+
revision?: string;
|
|
9115
|
+
/**
|
|
9116
|
+
* Indicates a string to be part of the URI to exclusively reference this target.
|
|
9117
|
+
*/
|
|
9118
|
+
tag?: string;
|
|
9119
|
+
/**
|
|
9120
|
+
* The allocation type for this traffic target.
|
|
9121
|
+
* Possible values are `TRAFFIC_TARGET_ALLOCATION_TYPE_LATEST` and `TRAFFIC_TARGET_ALLOCATION_TYPE_REVISION`.
|
|
9122
|
+
*/
|
|
9123
|
+
type?: string;
|
|
9124
|
+
}
|
|
9125
|
+
interface ServiceTrafficStatus {
|
|
9126
|
+
/**
|
|
9127
|
+
* Specifies percent of the traffic to this Revision. This defaults to zero if unspecified.
|
|
9128
|
+
*/
|
|
9129
|
+
percent: number;
|
|
9130
|
+
/**
|
|
9131
|
+
* Revision to which to send this portion of traffic, if traffic allocation is by revision.
|
|
9132
|
+
*/
|
|
9133
|
+
revision: string;
|
|
9134
|
+
/**
|
|
9135
|
+
* Indicates a string to be part of the URI to exclusively reference this target.
|
|
9136
|
+
*/
|
|
9137
|
+
tag: string;
|
|
9138
|
+
/**
|
|
9139
|
+
* The allocation type for this traffic target.
|
|
9140
|
+
* Possible values are `TRAFFIC_TARGET_ALLOCATION_TYPE_LATEST` and `TRAFFIC_TARGET_ALLOCATION_TYPE_REVISION`.
|
|
9141
|
+
*/
|
|
9142
|
+
type: string;
|
|
9143
|
+
uri: string;
|
|
9144
|
+
}
|
|
9145
|
+
}
|
|
8333
9146
|
export declare namespace cloudscheduler {
|
|
8334
9147
|
interface JobAppEngineHttpTarget {
|
|
8335
9148
|
/**
|
|
@@ -9555,6 +10368,11 @@ export declare namespace compute {
|
|
|
9555
10368
|
* If true requests to different hosts will be cached separately.
|
|
9556
10369
|
*/
|
|
9557
10370
|
includeHost?: boolean;
|
|
10371
|
+
/**
|
|
10372
|
+
* Allows HTTP request headers (by name) to be used in the
|
|
10373
|
+
* cache key.
|
|
10374
|
+
*/
|
|
10375
|
+
includeHttpHeaders?: string[];
|
|
9558
10376
|
/**
|
|
9559
10377
|
* Names of cookies to include in cache keys.
|
|
9560
10378
|
*/
|
|
@@ -10144,6 +10962,7 @@ export declare namespace compute {
|
|
|
10144
10962
|
}
|
|
10145
10963
|
interface GetBackendServiceCdnPolicyCacheKeyPolicy {
|
|
10146
10964
|
includeHost: boolean;
|
|
10965
|
+
includeHttpHeaders: string[];
|
|
10147
10966
|
includeNamedCookies: string[];
|
|
10148
10967
|
includeProtocol: boolean;
|
|
10149
10968
|
includeQueryString: boolean;
|
|
@@ -14283,6 +15102,21 @@ export declare namespace compute {
|
|
|
14283
15102
|
source: string;
|
|
14284
15103
|
}
|
|
14285
15104
|
interface RegionUrlMapDefaultRouteAction {
|
|
15105
|
+
/**
|
|
15106
|
+
* The specification for allowing client side cross-origin requests. Please see
|
|
15107
|
+
* [W3C Recommendation for Cross Origin Resource Sharing](https://www.w3.org/TR/cors/)
|
|
15108
|
+
* Structure is documented below.
|
|
15109
|
+
*/
|
|
15110
|
+
corsPolicy?: outputs.compute.RegionUrlMapDefaultRouteActionCorsPolicy;
|
|
15111
|
+
/**
|
|
15112
|
+
* The specification for fault injection introduced into traffic to test the resiliency of clients to backend service failure.
|
|
15113
|
+
* As part of fault injection, when clients send requests to a backend service, delays can be introduced by a load balancer on a percentage of requests before sending those requests to the backend service.
|
|
15114
|
+
* Similarly requests from clients can be aborted by the load balancer for a percentage of requests.
|
|
15115
|
+
* timeout and retryPolicy is ignored by clients that are configured with a faultInjectionPolicy if: 1. The traffic is generated by fault injection AND 2. The fault injection is not a delay fault injection.
|
|
15116
|
+
* Fault injection is not supported with the global external HTTP(S) load balancer (classic). To see which load balancers support fault injection, see Load balancing: [Routing and traffic management features](https://cloud.google.com/load-balancing/docs/features#routing-traffic-management).
|
|
15117
|
+
* Structure is documented below.
|
|
15118
|
+
*/
|
|
15119
|
+
faultInjectionPolicy?: outputs.compute.RegionUrlMapDefaultRouteActionFaultInjectionPolicy;
|
|
14286
15120
|
/**
|
|
14287
15121
|
* Specifies the policy on how requests intended for the route's backends are shadowed to a separate mirrored backend service.
|
|
14288
15122
|
* The load balancer does not wait for responses from the shadow service. Before sending traffic to the shadow service, the host / authority header is suffixed with -shadow.
|
|
@@ -14295,6 +15129,20 @@ export declare namespace compute {
|
|
|
14295
15129
|
* Structure is documented below.
|
|
14296
15130
|
*/
|
|
14297
15131
|
retryPolicy?: outputs.compute.RegionUrlMapDefaultRouteActionRetryPolicy;
|
|
15132
|
+
/**
|
|
15133
|
+
* Specifies the timeout for the selected route. Timeout is computed from the time the request has been fully processed (known as end-of-stream) up until the response has been processed. Timeout includes all retries.
|
|
15134
|
+
* If not specified, this field uses the largest timeout among all backend services associated with the route.
|
|
15135
|
+
* Not supported when the URL map is bound to a target gRPC proxy that has validateForProxyless field set to true.
|
|
15136
|
+
* Structure is documented below.
|
|
15137
|
+
*/
|
|
15138
|
+
timeout?: outputs.compute.RegionUrlMapDefaultRouteActionTimeout;
|
|
15139
|
+
/**
|
|
15140
|
+
* The spec to modify the URL of the request, before forwarding the request to the matched service.
|
|
15141
|
+
* urlRewrite is the only action supported in UrlMaps for external HTTP(S) load balancers.
|
|
15142
|
+
* Not supported when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true.
|
|
15143
|
+
* Structure is documented below.
|
|
15144
|
+
*/
|
|
15145
|
+
urlRewrite?: outputs.compute.RegionUrlMapDefaultRouteActionUrlRewrite;
|
|
14298
15146
|
/**
|
|
14299
15147
|
* A list of weighted backend services to send traffic to when a route match occurs. The weights determine the fraction of traffic that flows to their corresponding backend service. If all traffic needs to go to a single backend service, there must be one weightedBackendService with weight set to a non-zero number.
|
|
14300
15148
|
* After a backend service is identified and before forwarding the request to the backend service, advanced routing actions such as URL rewrites and header transformations are applied depending on additional settings specified in this HttpRouteAction.
|
|
@@ -14302,6 +15150,93 @@ export declare namespace compute {
|
|
|
14302
15150
|
*/
|
|
14303
15151
|
weightedBackendServices?: outputs.compute.RegionUrlMapDefaultRouteActionWeightedBackendService[];
|
|
14304
15152
|
}
|
|
15153
|
+
interface RegionUrlMapDefaultRouteActionCorsPolicy {
|
|
15154
|
+
/**
|
|
15155
|
+
* In response to a preflight request, setting this to true indicates that the actual request can include user credentials. This field translates to the Access-Control-Allow-Credentials header.
|
|
15156
|
+
* Default is false.
|
|
15157
|
+
*/
|
|
15158
|
+
allowCredentials?: boolean;
|
|
15159
|
+
/**
|
|
15160
|
+
* Specifies the content for the Access-Control-Allow-Headers header.
|
|
15161
|
+
*/
|
|
15162
|
+
allowHeaders?: string[];
|
|
15163
|
+
/**
|
|
15164
|
+
* Specifies the content for the Access-Control-Allow-Methods header.
|
|
15165
|
+
*/
|
|
15166
|
+
allowMethods?: string[];
|
|
15167
|
+
/**
|
|
15168
|
+
* Specifies the regualar expression patterns that match allowed origins. For regular expression grammar
|
|
15169
|
+
* please see en.cppreference.com/w/cpp/regex/ecmascript
|
|
15170
|
+
* An origin is allowed if it matches either an item in allowOrigins or an item in allowOriginRegexes.
|
|
15171
|
+
*/
|
|
15172
|
+
allowOriginRegexes?: string[];
|
|
15173
|
+
/**
|
|
15174
|
+
* Specifies the list of origins that will be allowed to do CORS requests.
|
|
15175
|
+
* An origin is allowed if it matches either an item in allowOrigins or an item in allowOriginRegexes.
|
|
15176
|
+
*/
|
|
15177
|
+
allowOrigins?: string[];
|
|
15178
|
+
/**
|
|
15179
|
+
* If true, the setting specifies the CORS policy is disabled. The default value of false, which indicates that the CORS policy is in effect.
|
|
15180
|
+
*/
|
|
15181
|
+
disabled?: boolean;
|
|
15182
|
+
/**
|
|
15183
|
+
* Specifies the content for the Access-Control-Expose-Headers header.
|
|
15184
|
+
*/
|
|
15185
|
+
exposeHeaders?: string[];
|
|
15186
|
+
/**
|
|
15187
|
+
* Specifies how long results of a preflight request can be cached in seconds.
|
|
15188
|
+
* This translates to the Access-Control-Max-Age header.
|
|
15189
|
+
*/
|
|
15190
|
+
maxAge?: number;
|
|
15191
|
+
}
|
|
15192
|
+
interface RegionUrlMapDefaultRouteActionFaultInjectionPolicy {
|
|
15193
|
+
/**
|
|
15194
|
+
* The specification for how client requests are aborted as part of fault injection.
|
|
15195
|
+
* Structure is documented below.
|
|
15196
|
+
*/
|
|
15197
|
+
abort?: outputs.compute.RegionUrlMapDefaultRouteActionFaultInjectionPolicyAbort;
|
|
15198
|
+
/**
|
|
15199
|
+
* The specification for how client requests are delayed as part of fault injection, before being sent to a backend service.
|
|
15200
|
+
* Structure is documented below.
|
|
15201
|
+
*/
|
|
15202
|
+
delay?: outputs.compute.RegionUrlMapDefaultRouteActionFaultInjectionPolicyDelay;
|
|
15203
|
+
}
|
|
15204
|
+
interface RegionUrlMapDefaultRouteActionFaultInjectionPolicyAbort {
|
|
15205
|
+
/**
|
|
15206
|
+
* The HTTP status code used to abort the request.
|
|
15207
|
+
* The value must be between 200 and 599 inclusive.
|
|
15208
|
+
*/
|
|
15209
|
+
httpStatus?: number;
|
|
15210
|
+
/**
|
|
15211
|
+
* The percentage of traffic (connections/operations/requests) which will be aborted as part of fault injection.
|
|
15212
|
+
* The value must be between 0.0 and 100.0 inclusive.
|
|
15213
|
+
*/
|
|
15214
|
+
percentage?: number;
|
|
15215
|
+
}
|
|
15216
|
+
interface RegionUrlMapDefaultRouteActionFaultInjectionPolicyDelay {
|
|
15217
|
+
/**
|
|
15218
|
+
* Specifies the value of the fixed delay interval.
|
|
15219
|
+
* Structure is documented below.
|
|
15220
|
+
*/
|
|
15221
|
+
fixedDelay?: outputs.compute.RegionUrlMapDefaultRouteActionFaultInjectionPolicyDelayFixedDelay;
|
|
15222
|
+
/**
|
|
15223
|
+
* The percentage of traffic (connections/operations/requests) which will be aborted as part of fault injection.
|
|
15224
|
+
* The value must be between 0.0 and 100.0 inclusive.
|
|
15225
|
+
*/
|
|
15226
|
+
percentage?: number;
|
|
15227
|
+
}
|
|
15228
|
+
interface RegionUrlMapDefaultRouteActionFaultInjectionPolicyDelayFixedDelay {
|
|
15229
|
+
/**
|
|
15230
|
+
* Span of time that's a fraction of a second at nanosecond resolution. Durations less than one second are
|
|
15231
|
+
* represented with a 0 seconds field and a positive nanos field. Must be from 0 to 999,999,999 inclusive.
|
|
15232
|
+
*/
|
|
15233
|
+
nanos?: number;
|
|
15234
|
+
/**
|
|
15235
|
+
* Span of time at a resolution of a second. Must be from 0 to 315,576,000,000 inclusive.
|
|
15236
|
+
* Note: these bounds are computed from: 60 sec/min * 60 min/hr * 24 hr/day * 365.25 days/year * 10000 years
|
|
15237
|
+
*/
|
|
15238
|
+
seconds?: string;
|
|
15239
|
+
}
|
|
14305
15240
|
interface RegionUrlMapDefaultRouteActionRequestMirrorPolicy {
|
|
14306
15241
|
/**
|
|
14307
15242
|
* The full or partial URL to the RegionBackendService resource being mirrored to.
|
|
@@ -14350,6 +15285,30 @@ export declare namespace compute {
|
|
|
14350
15285
|
*/
|
|
14351
15286
|
seconds?: string;
|
|
14352
15287
|
}
|
|
15288
|
+
interface RegionUrlMapDefaultRouteActionTimeout {
|
|
15289
|
+
/**
|
|
15290
|
+
* Span of time that's a fraction of a second at nanosecond resolution. Durations less than one second are
|
|
15291
|
+
* represented with a 0 seconds field and a positive nanos field. Must be from 0 to 999,999,999 inclusive.
|
|
15292
|
+
*/
|
|
15293
|
+
nanos?: number;
|
|
15294
|
+
/**
|
|
15295
|
+
* Span of time at a resolution of a second. Must be from 0 to 315,576,000,000 inclusive.
|
|
15296
|
+
* Note: these bounds are computed from: 60 sec/min * 60 min/hr * 24 hr/day * 365.25 days/year * 10000 years
|
|
15297
|
+
*/
|
|
15298
|
+
seconds?: string;
|
|
15299
|
+
}
|
|
15300
|
+
interface RegionUrlMapDefaultRouteActionUrlRewrite {
|
|
15301
|
+
/**
|
|
15302
|
+
* Before forwarding the request to the selected service, the request's host header is replaced with contents of hostRewrite.
|
|
15303
|
+
* The value must be from 1 to 255 characters.
|
|
15304
|
+
*/
|
|
15305
|
+
hostRewrite?: string;
|
|
15306
|
+
/**
|
|
15307
|
+
* Before forwarding the request to the selected backend service, the matching portion of the request's path is replaced by pathPrefixRewrite.
|
|
15308
|
+
* The value must be from 1 to 1024 characters.
|
|
15309
|
+
*/
|
|
15310
|
+
pathPrefixRewrite?: string;
|
|
15311
|
+
}
|
|
14353
15312
|
interface RegionUrlMapDefaultRouteActionWeightedBackendService {
|
|
14354
15313
|
/**
|
|
14355
15314
|
* The full or partial URL to the RegionBackendService resource being mirrored to.
|
|
@@ -14612,19 +15571,17 @@ export declare namespace compute {
|
|
|
14612
15571
|
}
|
|
14613
15572
|
interface RegionUrlMapPathMatcherPathRuleRouteAction {
|
|
14614
15573
|
/**
|
|
14615
|
-
* The specification for allowing client side cross-origin requests. Please see
|
|
14616
|
-
* Recommendation for Cross Origin Resource Sharing
|
|
15574
|
+
* The specification for allowing client side cross-origin requests. Please see
|
|
15575
|
+
* [W3C Recommendation for Cross Origin Resource Sharing](https://www.w3.org/TR/cors/)
|
|
14617
15576
|
* Structure is documented below.
|
|
14618
15577
|
*/
|
|
14619
15578
|
corsPolicy?: outputs.compute.RegionUrlMapPathMatcherPathRuleRouteActionCorsPolicy;
|
|
14620
15579
|
/**
|
|
14621
|
-
* The specification for fault injection introduced into traffic to test the
|
|
14622
|
-
*
|
|
14623
|
-
*
|
|
14624
|
-
*
|
|
14625
|
-
*
|
|
14626
|
-
* Loadbalancer for a percentage of requests. timeout and retryPolicy will be
|
|
14627
|
-
* ignored by clients that are configured with a fault_injection_policy.
|
|
15580
|
+
* The specification for fault injection introduced into traffic to test the resiliency of clients to backend service failure.
|
|
15581
|
+
* As part of fault injection, when clients send requests to a backend service, delays can be introduced by a load balancer on a percentage of requests before sending those requests to the backend service.
|
|
15582
|
+
* Similarly requests from clients can be aborted by the load balancer for a percentage of requests.
|
|
15583
|
+
* timeout and retryPolicy is ignored by clients that are configured with a faultInjectionPolicy if: 1. The traffic is generated by fault injection AND 2. The fault injection is not a delay fault injection.
|
|
15584
|
+
* Fault injection is not supported with the global external HTTP(S) load balancer (classic). To see which load balancers support fault injection, see Load balancing: [Routing and traffic management features](https://cloud.google.com/load-balancing/docs/features#routing-traffic-management).
|
|
14628
15585
|
* Structure is documented below.
|
|
14629
15586
|
*/
|
|
14630
15587
|
faultInjectionPolicy?: outputs.compute.RegionUrlMapPathMatcherPathRuleRouteActionFaultInjectionPolicy;
|
|
@@ -14641,16 +15598,16 @@ export declare namespace compute {
|
|
|
14641
15598
|
*/
|
|
14642
15599
|
retryPolicy?: outputs.compute.RegionUrlMapPathMatcherPathRuleRouteActionRetryPolicy;
|
|
14643
15600
|
/**
|
|
14644
|
-
* Specifies the timeout for the selected route. Timeout is computed from the time
|
|
14645
|
-
*
|
|
14646
|
-
*
|
|
14647
|
-
* specified, the default value is 15 seconds.
|
|
15601
|
+
* Specifies the timeout for the selected route. Timeout is computed from the time the request has been fully processed (known as end-of-stream) up until the response has been processed. Timeout includes all retries.
|
|
15602
|
+
* If not specified, this field uses the largest timeout among all backend services associated with the route.
|
|
15603
|
+
* Not supported when the URL map is bound to a target gRPC proxy that has validateForProxyless field set to true.
|
|
14648
15604
|
* Structure is documented below.
|
|
14649
15605
|
*/
|
|
14650
15606
|
timeout?: outputs.compute.RegionUrlMapPathMatcherPathRuleRouteActionTimeout;
|
|
14651
15607
|
/**
|
|
14652
|
-
* The spec to modify the URL of the request,
|
|
14653
|
-
* the
|
|
15608
|
+
* The spec to modify the URL of the request, before forwarding the request to the matched service.
|
|
15609
|
+
* urlRewrite is the only action supported in UrlMaps for external HTTP(S) load balancers.
|
|
15610
|
+
* Not supported when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true.
|
|
14654
15611
|
* Structure is documented below.
|
|
14655
15612
|
*/
|
|
14656
15613
|
urlRewrite?: outputs.compute.RegionUrlMapPathMatcherPathRuleRouteActionUrlRewrite;
|
|
@@ -14663,9 +15620,8 @@ export declare namespace compute {
|
|
|
14663
15620
|
}
|
|
14664
15621
|
interface RegionUrlMapPathMatcherPathRuleRouteActionCorsPolicy {
|
|
14665
15622
|
/**
|
|
14666
|
-
* In response to a preflight request, setting this to true indicates that the
|
|
14667
|
-
*
|
|
14668
|
-
* Control-Allow-Credentials header. Defaults to false.
|
|
15623
|
+
* In response to a preflight request, setting this to true indicates that the actual request can include user credentials. This field translates to the Access-Control-Allow-Credentials header.
|
|
15624
|
+
* Default is false.
|
|
14669
15625
|
*/
|
|
14670
15626
|
allowCredentials?: boolean;
|
|
14671
15627
|
/**
|
|
@@ -14677,18 +15633,18 @@ export declare namespace compute {
|
|
|
14677
15633
|
*/
|
|
14678
15634
|
allowMethods?: string[];
|
|
14679
15635
|
/**
|
|
14680
|
-
* Specifies the
|
|
14681
|
-
*
|
|
14682
|
-
* An origin is allowed if it matches either allowOrigins or
|
|
15636
|
+
* Specifies the regualar expression patterns that match allowed origins. For regular expression grammar
|
|
15637
|
+
* please see en.cppreference.com/w/cpp/regex/ecmascript
|
|
15638
|
+
* An origin is allowed if it matches either an item in allowOrigins or an item in allowOriginRegexes.
|
|
14683
15639
|
*/
|
|
14684
15640
|
allowOriginRegexes?: string[];
|
|
14685
15641
|
/**
|
|
14686
|
-
* Specifies the list of origins that will be allowed to do CORS requests.
|
|
14687
|
-
* origin is allowed if it matches either allowOrigins or
|
|
15642
|
+
* Specifies the list of origins that will be allowed to do CORS requests.
|
|
15643
|
+
* An origin is allowed if it matches either an item in allowOrigins or an item in allowOriginRegexes.
|
|
14688
15644
|
*/
|
|
14689
15645
|
allowOrigins?: string[];
|
|
14690
15646
|
/**
|
|
14691
|
-
* If true, specifies the CORS policy is disabled.
|
|
15647
|
+
* If true, the setting specifies the CORS policy is disabled. The default value of false, which indicates that the CORS policy is in effect.
|
|
14692
15648
|
*/
|
|
14693
15649
|
disabled: boolean;
|
|
14694
15650
|
/**
|
|
@@ -14696,35 +15652,32 @@ export declare namespace compute {
|
|
|
14696
15652
|
*/
|
|
14697
15653
|
exposeHeaders?: string[];
|
|
14698
15654
|
/**
|
|
14699
|
-
* Specifies how long
|
|
14700
|
-
* translates to the
|
|
15655
|
+
* Specifies how long results of a preflight request can be cached in seconds.
|
|
15656
|
+
* This translates to the Access-Control-Max-Age header.
|
|
14701
15657
|
*/
|
|
14702
15658
|
maxAge?: number;
|
|
14703
15659
|
}
|
|
14704
15660
|
interface RegionUrlMapPathMatcherPathRuleRouteActionFaultInjectionPolicy {
|
|
14705
15661
|
/**
|
|
14706
|
-
* The specification for how client requests are aborted as part of fault
|
|
14707
|
-
* injection.
|
|
15662
|
+
* The specification for how client requests are aborted as part of fault injection.
|
|
14708
15663
|
* Structure is documented below.
|
|
14709
15664
|
*/
|
|
14710
15665
|
abort?: outputs.compute.RegionUrlMapPathMatcherPathRuleRouteActionFaultInjectionPolicyAbort;
|
|
14711
15666
|
/**
|
|
14712
|
-
* The specification for how client requests are delayed as part of fault
|
|
14713
|
-
* injection, before being sent to a backend service.
|
|
15667
|
+
* The specification for how client requests are delayed as part of fault injection, before being sent to a backend service.
|
|
14714
15668
|
* Structure is documented below.
|
|
14715
15669
|
*/
|
|
14716
15670
|
delay?: outputs.compute.RegionUrlMapPathMatcherPathRuleRouteActionFaultInjectionPolicyDelay;
|
|
14717
15671
|
}
|
|
14718
15672
|
interface RegionUrlMapPathMatcherPathRuleRouteActionFaultInjectionPolicyAbort {
|
|
14719
15673
|
/**
|
|
14720
|
-
* The HTTP status code used to abort the request.
|
|
14721
|
-
* and 599 inclusive.
|
|
15674
|
+
* The HTTP status code used to abort the request.
|
|
15675
|
+
* The value must be between 200 and 599 inclusive.
|
|
14722
15676
|
*/
|
|
14723
15677
|
httpStatus: number;
|
|
14724
15678
|
/**
|
|
14725
|
-
* The percentage of traffic (connections/operations/requests)
|
|
14726
|
-
*
|
|
14727
|
-
* 100.0 inclusive.
|
|
15679
|
+
* The percentage of traffic (connections/operations/requests) which will be aborted as part of fault injection.
|
|
15680
|
+
* The value must be between 0.0 and 100.0 inclusive.
|
|
14728
15681
|
*/
|
|
14729
15682
|
percentage: number;
|
|
14730
15683
|
}
|
|
@@ -14735,9 +15688,8 @@ export declare namespace compute {
|
|
|
14735
15688
|
*/
|
|
14736
15689
|
fixedDelay: outputs.compute.RegionUrlMapPathMatcherPathRuleRouteActionFaultInjectionPolicyDelayFixedDelay;
|
|
14737
15690
|
/**
|
|
14738
|
-
* The percentage of traffic (connections/operations/requests)
|
|
14739
|
-
*
|
|
14740
|
-
* 100.0 inclusive.
|
|
15691
|
+
* The percentage of traffic (connections/operations/requests) which will be aborted as part of fault injection.
|
|
15692
|
+
* The value must be between 0.0 and 100.0 inclusive.
|
|
14741
15693
|
*/
|
|
14742
15694
|
percentage: number;
|
|
14743
15695
|
}
|
|
@@ -14815,15 +15767,13 @@ export declare namespace compute {
|
|
|
14815
15767
|
}
|
|
14816
15768
|
interface RegionUrlMapPathMatcherPathRuleRouteActionUrlRewrite {
|
|
14817
15769
|
/**
|
|
14818
|
-
*
|
|
14819
|
-
*
|
|
14820
|
-
* 255 characters.
|
|
15770
|
+
* Before forwarding the request to the selected service, the request's host header is replaced with contents of hostRewrite.
|
|
15771
|
+
* The value must be from 1 to 255 characters.
|
|
14821
15772
|
*/
|
|
14822
15773
|
hostRewrite?: string;
|
|
14823
15774
|
/**
|
|
14824
|
-
*
|
|
14825
|
-
*
|
|
14826
|
-
* be between 1 and 1024 characters.
|
|
15775
|
+
* Before forwarding the request to the selected backend service, the matching portion of the request's path is replaced by pathPrefixRewrite.
|
|
15776
|
+
* The value must be from 1 to 1024 characters.
|
|
14827
15777
|
*/
|
|
14828
15778
|
pathPrefixRewrite?: string;
|
|
14829
15779
|
}
|
|
@@ -15229,19 +16179,17 @@ export declare namespace compute {
|
|
|
15229
16179
|
}
|
|
15230
16180
|
interface RegionUrlMapPathMatcherRouteRuleRouteAction {
|
|
15231
16181
|
/**
|
|
15232
|
-
* The specification for allowing client side cross-origin requests. Please see
|
|
15233
|
-
* Recommendation for Cross Origin Resource Sharing
|
|
16182
|
+
* The specification for allowing client side cross-origin requests. Please see
|
|
16183
|
+
* [W3C Recommendation for Cross Origin Resource Sharing](https://www.w3.org/TR/cors/)
|
|
15234
16184
|
* Structure is documented below.
|
|
15235
16185
|
*/
|
|
15236
16186
|
corsPolicy?: outputs.compute.RegionUrlMapPathMatcherRouteRuleRouteActionCorsPolicy;
|
|
15237
16187
|
/**
|
|
15238
|
-
* The specification for fault injection introduced into traffic to test the
|
|
15239
|
-
*
|
|
15240
|
-
*
|
|
15241
|
-
*
|
|
15242
|
-
*
|
|
15243
|
-
* Loadbalancer for a percentage of requests. timeout and retryPolicy will be
|
|
15244
|
-
* ignored by clients that are configured with a fault_injection_policy.
|
|
16188
|
+
* The specification for fault injection introduced into traffic to test the resiliency of clients to backend service failure.
|
|
16189
|
+
* As part of fault injection, when clients send requests to a backend service, delays can be introduced by a load balancer on a percentage of requests before sending those requests to the backend service.
|
|
16190
|
+
* Similarly requests from clients can be aborted by the load balancer for a percentage of requests.
|
|
16191
|
+
* timeout and retryPolicy is ignored by clients that are configured with a faultInjectionPolicy if: 1. The traffic is generated by fault injection AND 2. The fault injection is not a delay fault injection.
|
|
16192
|
+
* Fault injection is not supported with the global external HTTP(S) load balancer (classic). To see which load balancers support fault injection, see Load balancing: [Routing and traffic management features](https://cloud.google.com/load-balancing/docs/features#routing-traffic-management).
|
|
15245
16193
|
* Structure is documented below.
|
|
15246
16194
|
*/
|
|
15247
16195
|
faultInjectionPolicy?: outputs.compute.RegionUrlMapPathMatcherRouteRuleRouteActionFaultInjectionPolicy;
|
|
@@ -15258,16 +16206,16 @@ export declare namespace compute {
|
|
|
15258
16206
|
*/
|
|
15259
16207
|
retryPolicy?: outputs.compute.RegionUrlMapPathMatcherRouteRuleRouteActionRetryPolicy;
|
|
15260
16208
|
/**
|
|
15261
|
-
* Specifies the timeout for the selected route. Timeout is computed from the time
|
|
15262
|
-
*
|
|
15263
|
-
*
|
|
15264
|
-
* specified, the default value is 15 seconds.
|
|
16209
|
+
* Specifies the timeout for the selected route. Timeout is computed from the time the request has been fully processed (known as end-of-stream) up until the response has been processed. Timeout includes all retries.
|
|
16210
|
+
* If not specified, this field uses the largest timeout among all backend services associated with the route.
|
|
16211
|
+
* Not supported when the URL map is bound to a target gRPC proxy that has validateForProxyless field set to true.
|
|
15265
16212
|
* Structure is documented below.
|
|
15266
16213
|
*/
|
|
15267
16214
|
timeout?: outputs.compute.RegionUrlMapPathMatcherRouteRuleRouteActionTimeout;
|
|
15268
16215
|
/**
|
|
15269
|
-
* The spec to modify the URL of the request,
|
|
15270
|
-
* the
|
|
16216
|
+
* The spec to modify the URL of the request, before forwarding the request to the matched service.
|
|
16217
|
+
* urlRewrite is the only action supported in UrlMaps for external HTTP(S) load balancers.
|
|
16218
|
+
* Not supported when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true.
|
|
15271
16219
|
* Structure is documented below.
|
|
15272
16220
|
*/
|
|
15273
16221
|
urlRewrite?: outputs.compute.RegionUrlMapPathMatcherRouteRuleRouteActionUrlRewrite;
|
|
@@ -15280,9 +16228,8 @@ export declare namespace compute {
|
|
|
15280
16228
|
}
|
|
15281
16229
|
interface RegionUrlMapPathMatcherRouteRuleRouteActionCorsPolicy {
|
|
15282
16230
|
/**
|
|
15283
|
-
* In response to a preflight request, setting this to true indicates that the
|
|
15284
|
-
*
|
|
15285
|
-
* Control-Allow-Credentials header. Defaults to false.
|
|
16231
|
+
* In response to a preflight request, setting this to true indicates that the actual request can include user credentials. This field translates to the Access-Control-Allow-Credentials header.
|
|
16232
|
+
* Default is false.
|
|
15286
16233
|
*/
|
|
15287
16234
|
allowCredentials?: boolean;
|
|
15288
16235
|
/**
|
|
@@ -15294,18 +16241,18 @@ export declare namespace compute {
|
|
|
15294
16241
|
*/
|
|
15295
16242
|
allowMethods?: string[];
|
|
15296
16243
|
/**
|
|
15297
|
-
* Specifies the
|
|
15298
|
-
*
|
|
15299
|
-
* An origin is allowed if it matches either allowOrigins or
|
|
16244
|
+
* Specifies the regualar expression patterns that match allowed origins. For regular expression grammar
|
|
16245
|
+
* please see en.cppreference.com/w/cpp/regex/ecmascript
|
|
16246
|
+
* An origin is allowed if it matches either an item in allowOrigins or an item in allowOriginRegexes.
|
|
15300
16247
|
*/
|
|
15301
16248
|
allowOriginRegexes?: string[];
|
|
15302
16249
|
/**
|
|
15303
|
-
* Specifies the list of origins that will be allowed to do CORS requests.
|
|
15304
|
-
* origin is allowed if it matches either allowOrigins or
|
|
16250
|
+
* Specifies the list of origins that will be allowed to do CORS requests.
|
|
16251
|
+
* An origin is allowed if it matches either an item in allowOrigins or an item in allowOriginRegexes.
|
|
15305
16252
|
*/
|
|
15306
16253
|
allowOrigins?: string[];
|
|
15307
16254
|
/**
|
|
15308
|
-
* If true, specifies the CORS policy is disabled.
|
|
16255
|
+
* If true, the setting specifies the CORS policy is disabled. The default value of false, which indicates that the CORS policy is in effect.
|
|
15309
16256
|
*/
|
|
15310
16257
|
disabled?: boolean;
|
|
15311
16258
|
/**
|
|
@@ -15313,35 +16260,32 @@ export declare namespace compute {
|
|
|
15313
16260
|
*/
|
|
15314
16261
|
exposeHeaders?: string[];
|
|
15315
16262
|
/**
|
|
15316
|
-
* Specifies how long
|
|
15317
|
-
* translates to the
|
|
16263
|
+
* Specifies how long results of a preflight request can be cached in seconds.
|
|
16264
|
+
* This translates to the Access-Control-Max-Age header.
|
|
15318
16265
|
*/
|
|
15319
16266
|
maxAge?: number;
|
|
15320
16267
|
}
|
|
15321
16268
|
interface RegionUrlMapPathMatcherRouteRuleRouteActionFaultInjectionPolicy {
|
|
15322
16269
|
/**
|
|
15323
|
-
* The specification for how client requests are aborted as part of fault
|
|
15324
|
-
* injection.
|
|
16270
|
+
* The specification for how client requests are aborted as part of fault injection.
|
|
15325
16271
|
* Structure is documented below.
|
|
15326
16272
|
*/
|
|
15327
16273
|
abort?: outputs.compute.RegionUrlMapPathMatcherRouteRuleRouteActionFaultInjectionPolicyAbort;
|
|
15328
16274
|
/**
|
|
15329
|
-
* The specification for how client requests are delayed as part of fault
|
|
15330
|
-
* injection, before being sent to a backend service.
|
|
16275
|
+
* The specification for how client requests are delayed as part of fault injection, before being sent to a backend service.
|
|
15331
16276
|
* Structure is documented below.
|
|
15332
16277
|
*/
|
|
15333
16278
|
delay?: outputs.compute.RegionUrlMapPathMatcherRouteRuleRouteActionFaultInjectionPolicyDelay;
|
|
15334
16279
|
}
|
|
15335
16280
|
interface RegionUrlMapPathMatcherRouteRuleRouteActionFaultInjectionPolicyAbort {
|
|
15336
16281
|
/**
|
|
15337
|
-
* The HTTP status code used to abort the request.
|
|
15338
|
-
* and 599 inclusive.
|
|
16282
|
+
* The HTTP status code used to abort the request.
|
|
16283
|
+
* The value must be between 200 and 599 inclusive.
|
|
15339
16284
|
*/
|
|
15340
16285
|
httpStatus?: number;
|
|
15341
16286
|
/**
|
|
15342
|
-
* The percentage of traffic (connections/operations/requests)
|
|
15343
|
-
*
|
|
15344
|
-
* 100.0 inclusive.
|
|
16287
|
+
* The percentage of traffic (connections/operations/requests) which will be aborted as part of fault injection.
|
|
16288
|
+
* The value must be between 0.0 and 100.0 inclusive.
|
|
15345
16289
|
*/
|
|
15346
16290
|
percentage?: number;
|
|
15347
16291
|
}
|
|
@@ -15352,9 +16296,8 @@ export declare namespace compute {
|
|
|
15352
16296
|
*/
|
|
15353
16297
|
fixedDelay?: outputs.compute.RegionUrlMapPathMatcherRouteRuleRouteActionFaultInjectionPolicyDelayFixedDelay;
|
|
15354
16298
|
/**
|
|
15355
|
-
* The percentage of traffic (connections/operations/requests)
|
|
15356
|
-
*
|
|
15357
|
-
* 100.0 inclusive.
|
|
16299
|
+
* The percentage of traffic (connections/operations/requests) which will be aborted as part of fault injection.
|
|
16300
|
+
* The value must be between 0.0 and 100.0 inclusive.
|
|
15358
16301
|
*/
|
|
15359
16302
|
percentage?: number;
|
|
15360
16303
|
}
|
|
@@ -15432,15 +16375,13 @@ export declare namespace compute {
|
|
|
15432
16375
|
}
|
|
15433
16376
|
interface RegionUrlMapPathMatcherRouteRuleRouteActionUrlRewrite {
|
|
15434
16377
|
/**
|
|
15435
|
-
*
|
|
15436
|
-
*
|
|
15437
|
-
* 255 characters.
|
|
16378
|
+
* Before forwarding the request to the selected service, the request's host header is replaced with contents of hostRewrite.
|
|
16379
|
+
* The value must be from 1 to 255 characters.
|
|
15438
16380
|
*/
|
|
15439
16381
|
hostRewrite?: string;
|
|
15440
16382
|
/**
|
|
15441
|
-
*
|
|
15442
|
-
*
|
|
15443
|
-
* be between 1 and 1024 characters.
|
|
16383
|
+
* Before forwarding the request to the selected backend service, the matching portion of the request's path is replaced by pathPrefixRewrite.
|
|
16384
|
+
* The value must be from 1 to 1024 characters.
|
|
15444
16385
|
*/
|
|
15445
16386
|
pathPrefixRewrite?: string;
|
|
15446
16387
|
}
|
|
@@ -16103,6 +17044,12 @@ export declare namespace compute {
|
|
|
16103
17044
|
*/
|
|
16104
17045
|
contentTypes: string[];
|
|
16105
17046
|
}
|
|
17047
|
+
interface SecurityPolicyRecaptchaOptionsConfig {
|
|
17048
|
+
/**
|
|
17049
|
+
* A field to supply a reCAPTCHA site key to be used for all the rules using the redirect action with the type of GOOGLE_RECAPTCHA under the security policy. The specified site key needs to be created from the reCAPTCHA API. The user is responsible for the validity of the specified site key. If not specified, a Google-managed site key is used.
|
|
17050
|
+
*/
|
|
17051
|
+
redirectSiteKey: string;
|
|
17052
|
+
}
|
|
16106
17053
|
interface SecurityPolicyRule {
|
|
16107
17054
|
/**
|
|
16108
17055
|
* Action to take when `match` matches the request. Valid values:
|
|
@@ -16117,6 +17064,10 @@ export declare namespace compute {
|
|
|
16117
17064
|
* An optional description of this rule. Max size is 64.
|
|
16118
17065
|
*/
|
|
16119
17066
|
description?: string;
|
|
17067
|
+
/**
|
|
17068
|
+
* Additional actions that are performed on headers. Structure is documented below.
|
|
17069
|
+
*/
|
|
17070
|
+
headerAction?: outputs.compute.SecurityPolicyRuleHeaderAction;
|
|
16120
17071
|
/**
|
|
16121
17072
|
* A match condition that incoming traffic is evaluated against.
|
|
16122
17073
|
* If it evaluates to true, the corresponding `action` is enforced. Structure is documented below.
|
|
@@ -16145,6 +17096,22 @@ export declare namespace compute {
|
|
|
16145
17096
|
*/
|
|
16146
17097
|
redirectOptions?: outputs.compute.SecurityPolicyRuleRedirectOptions;
|
|
16147
17098
|
}
|
|
17099
|
+
interface SecurityPolicyRuleHeaderAction {
|
|
17100
|
+
/**
|
|
17101
|
+
* The list of request headers to add or overwrite if they're already present. Structure is documented below.
|
|
17102
|
+
*/
|
|
17103
|
+
requestHeadersToAdds: outputs.compute.SecurityPolicyRuleHeaderActionRequestHeadersToAdd[];
|
|
17104
|
+
}
|
|
17105
|
+
interface SecurityPolicyRuleHeaderActionRequestHeadersToAdd {
|
|
17106
|
+
/**
|
|
17107
|
+
* The name of the header to set.
|
|
17108
|
+
*/
|
|
17109
|
+
headerName: string;
|
|
17110
|
+
/**
|
|
17111
|
+
* The value to set the named header to.
|
|
17112
|
+
*/
|
|
17113
|
+
headerValue?: string;
|
|
17114
|
+
}
|
|
16148
17115
|
interface SecurityPolicyRuleMatch {
|
|
16149
17116
|
/**
|
|
16150
17117
|
* The configuration options available when specifying `versionedExpr`.
|
|
@@ -16285,6 +17252,9 @@ export declare namespace compute {
|
|
|
16285
17252
|
* Valid options are "deny()" where valid values for status are 403, 404, 429, and 502.
|
|
16286
17253
|
*/
|
|
16287
17254
|
exceedAction: string;
|
|
17255
|
+
/**
|
|
17256
|
+
* Parameters defining the redirect action that is used as the exceed action. Cannot be specified if the exceed action is not redirect. Structure is documented below.
|
|
17257
|
+
*/
|
|
16288
17258
|
exceedRedirectOptions?: outputs.compute.SecurityPolicyRuleRateLimitOptionsExceedRedirectOptions;
|
|
16289
17259
|
/**
|
|
16290
17260
|
* Threshold at which to begin ratelimiting. Structure is documented below.
|
|
@@ -19365,6 +20335,11 @@ export declare namespace container {
|
|
|
19365
20335
|
* Kubernetes cluster master through HTTPS.
|
|
19366
20336
|
*/
|
|
19367
20337
|
cidrBlocks?: outputs.container.ClusterMasterAuthorizedNetworksConfigCidrBlock[];
|
|
20338
|
+
/**
|
|
20339
|
+
* Whether Kubernetes master is
|
|
20340
|
+
* accessible via Google Compute Engine Public IPs.
|
|
20341
|
+
*/
|
|
20342
|
+
gcpPublicCidrsAccessEnabled: boolean;
|
|
19368
20343
|
}
|
|
19369
20344
|
interface ClusterMasterAuthorizedNetworksConfigCidrBlock {
|
|
19370
20345
|
/**
|
|
@@ -19522,6 +20497,13 @@ export declare namespace container {
|
|
|
19522
20497
|
* The configuration of the desired reservation which instances could take capacity from. Structure is documented below.
|
|
19523
20498
|
*/
|
|
19524
20499
|
reservationAffinity?: outputs.container.ClusterNodeConfigReservationAffinity;
|
|
20500
|
+
/**
|
|
20501
|
+
* The GCP labels (key/value pairs) to be applied to each node. Refer [here](https://cloud.google.com/kubernetes-engine/docs/how-to/creating-managing-labels)
|
|
20502
|
+
* for how these labels are applied to clusters, node pools and nodes.
|
|
20503
|
+
*/
|
|
20504
|
+
resourceLabels?: {
|
|
20505
|
+
[key: string]: string;
|
|
20506
|
+
};
|
|
19525
20507
|
sandboxConfig?: outputs.container.ClusterNodeConfigSandboxConfig;
|
|
19526
20508
|
/**
|
|
19527
20509
|
* The service account to be used by the Node VMs.
|
|
@@ -19801,6 +20783,13 @@ export declare namespace container {
|
|
|
19801
20783
|
* Whether to create a new range for pod IPs in this node pool. Defaults are provided for `podRange` and `podIpv4CidrBlock` if they are not specified.
|
|
19802
20784
|
*/
|
|
19803
20785
|
createPodRange?: boolean;
|
|
20786
|
+
/**
|
|
20787
|
+
* Enables the private cluster feature,
|
|
20788
|
+
* creating a private endpoint on the cluster. In a private cluster, nodes only
|
|
20789
|
+
* have RFC 1918 private addresses and communicate with the master's private
|
|
20790
|
+
* endpoint via private networking.
|
|
20791
|
+
*/
|
|
20792
|
+
enablePrivateNodes: boolean;
|
|
19804
20793
|
/**
|
|
19805
20794
|
* The IP address range for pod IPs in this node pool. Only applicable if createPodRange is true. Set to blank to have a range chosen with the default size. Set to /netmask (e.g. /14) to have a range chosen with a specific netmask. Set to a CIDR notation (e.g. 10.96.0.0/14) to pick a specific range to use.
|
|
19806
20795
|
*/
|
|
@@ -19808,7 +20797,7 @@ export declare namespace container {
|
|
|
19808
20797
|
/**
|
|
19809
20798
|
* The ID of the secondary range for pod IPs. If `createPodRange` is true, this ID is used for the new range. If `createPodRange` is false, uses an existing secondary range with this ID.
|
|
19810
20799
|
*/
|
|
19811
|
-
podRange
|
|
20800
|
+
podRange?: string;
|
|
19812
20801
|
}
|
|
19813
20802
|
interface ClusterNodePoolNodeConfig {
|
|
19814
20803
|
/**
|
|
@@ -19921,6 +20910,13 @@ export declare namespace container {
|
|
|
19921
20910
|
* The configuration of the desired reservation which instances could take capacity from. Structure is documented below.
|
|
19922
20911
|
*/
|
|
19923
20912
|
reservationAffinity?: outputs.container.ClusterNodePoolNodeConfigReservationAffinity;
|
|
20913
|
+
/**
|
|
20914
|
+
* The GCP labels (key/value pairs) to be applied to each node. Refer [here](https://cloud.google.com/kubernetes-engine/docs/how-to/creating-managing-labels)
|
|
20915
|
+
* for how these labels are applied to clusters, node pools and nodes.
|
|
20916
|
+
*/
|
|
20917
|
+
resourceLabels?: {
|
|
20918
|
+
[key: string]: string;
|
|
20919
|
+
};
|
|
19924
20920
|
sandboxConfig?: outputs.container.ClusterNodePoolNodeConfigSandboxConfig;
|
|
19925
20921
|
/**
|
|
19926
20922
|
* The service account to be used by the Node VMs.
|
|
@@ -20156,7 +21152,7 @@ export declare namespace container {
|
|
|
20156
21152
|
* is disabled. When `false`, either endpoint can be used. This field only applies
|
|
20157
21153
|
* to private clusters, when `enablePrivateNodes` is `true`.
|
|
20158
21154
|
*/
|
|
20159
|
-
enablePrivateEndpoint
|
|
21155
|
+
enablePrivateEndpoint?: boolean;
|
|
20160
21156
|
/**
|
|
20161
21157
|
* Enables the private cluster feature,
|
|
20162
21158
|
* creating a private endpoint on the cluster. In a private cluster, nodes only
|
|
@@ -20188,6 +21184,10 @@ export declare namespace container {
|
|
|
20188
21184
|
* The internal IP address of this cluster's master endpoint.
|
|
20189
21185
|
*/
|
|
20190
21186
|
privateEndpoint: string;
|
|
21187
|
+
/**
|
|
21188
|
+
* Subnetwork in cluster's network where master's endpoint will be provisioned.
|
|
21189
|
+
*/
|
|
21190
|
+
privateEndpointSubnetwork?: string;
|
|
20191
21191
|
/**
|
|
20192
21192
|
* The external IP address of this cluster's master endpoint.
|
|
20193
21193
|
*/
|
|
@@ -20419,6 +21419,7 @@ export declare namespace container {
|
|
|
20419
21419
|
}
|
|
20420
21420
|
interface GetClusterMasterAuthorizedNetworksConfig {
|
|
20421
21421
|
cidrBlocks: outputs.container.GetClusterMasterAuthorizedNetworksConfigCidrBlock[];
|
|
21422
|
+
gcpPublicCidrsAccessEnabled: boolean;
|
|
20422
21423
|
}
|
|
20423
21424
|
interface GetClusterMasterAuthorizedNetworksConfigCidrBlock {
|
|
20424
21425
|
cidrBlock: string;
|
|
@@ -20463,6 +21464,9 @@ export declare namespace container {
|
|
|
20463
21464
|
oauthScopes: string[];
|
|
20464
21465
|
preemptible: boolean;
|
|
20465
21466
|
reservationAffinities: outputs.container.GetClusterNodeConfigReservationAffinity[];
|
|
21467
|
+
resourceLabels: {
|
|
21468
|
+
[key: string]: string;
|
|
21469
|
+
};
|
|
20466
21470
|
sandboxConfigs: outputs.container.GetClusterNodeConfigSandboxConfig[];
|
|
20467
21471
|
serviceAccount: string;
|
|
20468
21472
|
shieldedInstanceConfigs: outputs.container.GetClusterNodeConfigShieldedInstanceConfig[];
|
|
@@ -20569,6 +21573,7 @@ export declare namespace container {
|
|
|
20569
21573
|
}
|
|
20570
21574
|
interface GetClusterNodePoolNetworkConfig {
|
|
20571
21575
|
createPodRange: boolean;
|
|
21576
|
+
enablePrivateNodes: boolean;
|
|
20572
21577
|
podIpv4CidrBlock: string;
|
|
20573
21578
|
podRange: string;
|
|
20574
21579
|
}
|
|
@@ -20597,6 +21602,9 @@ export declare namespace container {
|
|
|
20597
21602
|
oauthScopes: string[];
|
|
20598
21603
|
preemptible: boolean;
|
|
20599
21604
|
reservationAffinities: outputs.container.GetClusterNodePoolNodeConfigReservationAffinity[];
|
|
21605
|
+
resourceLabels: {
|
|
21606
|
+
[key: string]: string;
|
|
21607
|
+
};
|
|
20600
21608
|
sandboxConfigs: outputs.container.GetClusterNodePoolNodeConfigSandboxConfig[];
|
|
20601
21609
|
serviceAccount: string;
|
|
20602
21610
|
shieldedInstanceConfigs: outputs.container.GetClusterNodePoolNodeConfigShieldedInstanceConfig[];
|
|
@@ -20693,6 +21701,7 @@ export declare namespace container {
|
|
|
20693
21701
|
masterIpv4CidrBlock: string;
|
|
20694
21702
|
peeringName: string;
|
|
20695
21703
|
privateEndpoint: string;
|
|
21704
|
+
privateEndpointSubnetwork: string;
|
|
20696
21705
|
publicEndpoint: string;
|
|
20697
21706
|
}
|
|
20698
21707
|
interface GetClusterPrivateClusterConfigMasterGlobalAccessConfig {
|
|
@@ -20766,9 +21775,22 @@ export declare namespace container {
|
|
|
20766
21775
|
autoUpgrade?: boolean;
|
|
20767
21776
|
}
|
|
20768
21777
|
interface NodePoolNetworkConfig {
|
|
21778
|
+
/**
|
|
21779
|
+
* Whether to create a new range for pod IPs in this node pool. Defaults are provided for `podRange` and `podIpv4CidrBlock` if they are not specified.
|
|
21780
|
+
*/
|
|
20769
21781
|
createPodRange?: boolean;
|
|
21782
|
+
/**
|
|
21783
|
+
* Whether nodes have internal IP addresses only.
|
|
21784
|
+
*/
|
|
21785
|
+
enablePrivateNodes: boolean;
|
|
21786
|
+
/**
|
|
21787
|
+
* The IP address range for pod IPs in this node pool. Only applicable if createPodRange is true. Set to blank to have a range chosen with the default size. Set to /netmask (e.g. /14) to have a range chosen with a specific netmask. Set to a CIDR notation (e.g. 10.96.0.0/14) to pick a specific range to use.
|
|
21788
|
+
*/
|
|
20770
21789
|
podIpv4CidrBlock: string;
|
|
20771
|
-
|
|
21790
|
+
/**
|
|
21791
|
+
* The ID of the secondary range for pod IPs. If `createPodRange` is true, this ID is used for the new range. If `createPodRange` is false, uses an existing secondary range with this ID.
|
|
21792
|
+
*/
|
|
21793
|
+
podRange?: string;
|
|
20772
21794
|
}
|
|
20773
21795
|
interface NodePoolNodeConfig {
|
|
20774
21796
|
bootDiskKmsKey?: string;
|
|
@@ -20795,6 +21817,9 @@ export declare namespace container {
|
|
|
20795
21817
|
oauthScopes: string[];
|
|
20796
21818
|
preemptible?: boolean;
|
|
20797
21819
|
reservationAffinity?: outputs.container.NodePoolNodeConfigReservationAffinity;
|
|
21820
|
+
resourceLabels?: {
|
|
21821
|
+
[key: string]: string;
|
|
21822
|
+
};
|
|
20798
21823
|
sandboxConfig?: outputs.container.NodePoolNodeConfigSandboxConfig;
|
|
20799
21824
|
serviceAccount: string;
|
|
20800
21825
|
shieldedInstanceConfig: outputs.container.NodePoolNodeConfigShieldedInstanceConfig;
|
|
@@ -21211,6 +22236,16 @@ export declare namespace datafusion {
|
|
|
21211
22236
|
*/
|
|
21212
22237
|
keyReference: string;
|
|
21213
22238
|
}
|
|
22239
|
+
interface InstanceEventPublishConfig {
|
|
22240
|
+
/**
|
|
22241
|
+
* Option to enable Event Publishing.
|
|
22242
|
+
*/
|
|
22243
|
+
enabled: boolean;
|
|
22244
|
+
/**
|
|
22245
|
+
* The resource name of the Pub/Sub topic. Format: projects/{projectId}/topics/{topic_id}
|
|
22246
|
+
*/
|
|
22247
|
+
topic: string;
|
|
22248
|
+
}
|
|
21214
22249
|
interface InstanceNetworkConfig {
|
|
21215
22250
|
/**
|
|
21216
22251
|
* The IP range in CIDR notation to use for the managed Data Fusion instance
|
|
@@ -23499,6 +24534,27 @@ export declare namespace dataproc {
|
|
|
23499
24534
|
*/
|
|
23500
24535
|
enabled: boolean;
|
|
23501
24536
|
}
|
|
24537
|
+
interface MetastoreServiceNetworkConfig {
|
|
24538
|
+
/**
|
|
24539
|
+
* The consumer-side network configuration for the Dataproc Metastore instance.
|
|
24540
|
+
* Structure is documented below.
|
|
24541
|
+
*/
|
|
24542
|
+
consumers: outputs.dataproc.MetastoreServiceNetworkConfigConsumer[];
|
|
24543
|
+
}
|
|
24544
|
+
interface MetastoreServiceNetworkConfigConsumer {
|
|
24545
|
+
/**
|
|
24546
|
+
* -
|
|
24547
|
+
* The URI of the endpoint used to access the metastore service.
|
|
24548
|
+
*/
|
|
24549
|
+
endpointUri: string;
|
|
24550
|
+
/**
|
|
24551
|
+
* The subnetwork of the customer project from which an IP address is reserved and used as the Dataproc Metastore service's endpoint.
|
|
24552
|
+
* It is accessible to hosts in the subnet and to all hosts in a subnet in the same region and same network.
|
|
24553
|
+
* There must be at least one IP address available in the subnet's primary range. The subnet is specified in the following form:
|
|
24554
|
+
* `projects/{projectNumber}/regions/{region_id}/subnetworks/{subnetwork_id}
|
|
24555
|
+
*/
|
|
24556
|
+
subnetwork: string;
|
|
24557
|
+
}
|
|
23502
24558
|
interface WorkflowTemplateJob {
|
|
23503
24559
|
/**
|
|
23504
24560
|
* Optional. Job is a Hadoop job.
|
|
@@ -24676,6 +25732,12 @@ export declare namespace datastream {
|
|
|
24676
25732
|
*/
|
|
24677
25733
|
privateConnection: string;
|
|
24678
25734
|
}
|
|
25735
|
+
interface PrivateConnectionError {
|
|
25736
|
+
details?: {
|
|
25737
|
+
[key: string]: string;
|
|
25738
|
+
};
|
|
25739
|
+
message?: string;
|
|
25740
|
+
}
|
|
24679
25741
|
interface PrivateConnectionVpcPeeringConfig {
|
|
24680
25742
|
/**
|
|
24681
25743
|
* A free subnet for peering. (CIDR of /29)
|
|
@@ -26369,6 +27431,111 @@ export declare namespace gameservices {
|
|
|
26369
27431
|
realms: string[];
|
|
26370
27432
|
}
|
|
26371
27433
|
}
|
|
27434
|
+
export declare namespace gkebackup {
|
|
27435
|
+
interface BackupPlanBackupConfig {
|
|
27436
|
+
/**
|
|
27437
|
+
* If True, include all namespaced resources.
|
|
27438
|
+
*/
|
|
27439
|
+
allNamespaces?: boolean;
|
|
27440
|
+
/**
|
|
27441
|
+
* This defines a customer managed encryption key that will be used to encrypt the "config"
|
|
27442
|
+
* portion (the Kubernetes resources) of Backups created via this plan.
|
|
27443
|
+
* Structure is documented below.
|
|
27444
|
+
*/
|
|
27445
|
+
encryptionKey?: outputs.gkebackup.BackupPlanBackupConfigEncryptionKey;
|
|
27446
|
+
/**
|
|
27447
|
+
* This flag specifies whether Kubernetes Secret resources should be included
|
|
27448
|
+
* when they fall into the scope of Backups.
|
|
27449
|
+
*/
|
|
27450
|
+
includeSecrets: boolean;
|
|
27451
|
+
/**
|
|
27452
|
+
* This flag specifies whether volume data should be backed up when PVCs are
|
|
27453
|
+
* included in the scope of a Backup.
|
|
27454
|
+
*/
|
|
27455
|
+
includeVolumeData: boolean;
|
|
27456
|
+
/**
|
|
27457
|
+
* A list of namespaced Kubernetes Resources.
|
|
27458
|
+
* Structure is documented below.
|
|
27459
|
+
*/
|
|
27460
|
+
selectedApplications?: outputs.gkebackup.BackupPlanBackupConfigSelectedApplications;
|
|
27461
|
+
/**
|
|
27462
|
+
* If set, include just the resources in the listed namespaces.
|
|
27463
|
+
* Structure is documented below.
|
|
27464
|
+
*/
|
|
27465
|
+
selectedNamespaces?: outputs.gkebackup.BackupPlanBackupConfigSelectedNamespaces;
|
|
27466
|
+
}
|
|
27467
|
+
interface BackupPlanBackupConfigEncryptionKey {
|
|
27468
|
+
/**
|
|
27469
|
+
* Google Cloud KMS encryption key. Format: projects/*/locations/*/keyRings/*/cryptoKeys/*
|
|
27470
|
+
*/
|
|
27471
|
+
gcpKmsEncryptionKey: string;
|
|
27472
|
+
}
|
|
27473
|
+
interface BackupPlanBackupConfigSelectedApplications {
|
|
27474
|
+
/**
|
|
27475
|
+
* A list of namespaced Kubernetes resources.
|
|
27476
|
+
* Structure is documented below.
|
|
27477
|
+
*/
|
|
27478
|
+
namespacedNames: outputs.gkebackup.BackupPlanBackupConfigSelectedApplicationsNamespacedName[];
|
|
27479
|
+
}
|
|
27480
|
+
interface BackupPlanBackupConfigSelectedApplicationsNamespacedName {
|
|
27481
|
+
/**
|
|
27482
|
+
* The name of a Kubernetes Resource.
|
|
27483
|
+
*/
|
|
27484
|
+
name: string;
|
|
27485
|
+
/**
|
|
27486
|
+
* The namespace of a Kubernetes Resource.
|
|
27487
|
+
*/
|
|
27488
|
+
namespace: string;
|
|
27489
|
+
}
|
|
27490
|
+
interface BackupPlanBackupConfigSelectedNamespaces {
|
|
27491
|
+
/**
|
|
27492
|
+
* A list of Kubernetes Namespaces.
|
|
27493
|
+
*/
|
|
27494
|
+
namespaces: string[];
|
|
27495
|
+
}
|
|
27496
|
+
interface BackupPlanBackupSchedule {
|
|
27497
|
+
/**
|
|
27498
|
+
* A standard cron string that defines a repeating schedule for
|
|
27499
|
+
* creating Backups via this BackupPlan.
|
|
27500
|
+
* If this is defined, then backupRetainDays must also be defined.
|
|
27501
|
+
*/
|
|
27502
|
+
cronSchedule?: string;
|
|
27503
|
+
/**
|
|
27504
|
+
* This flag denotes whether automatic Backup creation is paused for this BackupPlan.
|
|
27505
|
+
*/
|
|
27506
|
+
paused: boolean;
|
|
27507
|
+
}
|
|
27508
|
+
interface BackupPlanRetentionPolicy {
|
|
27509
|
+
/**
|
|
27510
|
+
* Minimum age for a Backup created via this BackupPlan (in days).
|
|
27511
|
+
* Must be an integer value between 0-90 (inclusive).
|
|
27512
|
+
* A Backup created under this BackupPlan will not be deletable
|
|
27513
|
+
* until it reaches Backup's (create time + backup_delete_lock_days).
|
|
27514
|
+
* Updating this field of a BackupPlan does not affect existing Backups.
|
|
27515
|
+
* Backups created after a successful update will inherit this new value.
|
|
27516
|
+
*/
|
|
27517
|
+
backupDeleteLockDays: number;
|
|
27518
|
+
/**
|
|
27519
|
+
* The default maximum age of a Backup created via this BackupPlan.
|
|
27520
|
+
* This field MUST be an integer value >= 0 and <= 365. If specified,
|
|
27521
|
+
* a Backup created under this BackupPlan will be automatically deleted
|
|
27522
|
+
* after its age reaches (createTime + backupRetainDays).
|
|
27523
|
+
* If not specified, Backups created under this BackupPlan will NOT be
|
|
27524
|
+
* subject to automatic deletion. Updating this field does NOT affect
|
|
27525
|
+
* existing Backups under it. Backups created AFTER a successful update
|
|
27526
|
+
* will automatically pick up the new value.
|
|
27527
|
+
* NOTE: backupRetainDays must be >= backupDeleteLockDays.
|
|
27528
|
+
* If cronSchedule is defined, then this must be <= 360 * the creation interval.]
|
|
27529
|
+
*/
|
|
27530
|
+
backupRetainDays: number;
|
|
27531
|
+
/**
|
|
27532
|
+
* This flag denotes whether the retention policy of this BackupPlan is locked.
|
|
27533
|
+
* If set to True, no further update is allowed on this policy, including
|
|
27534
|
+
* the locked field itself.
|
|
27535
|
+
*/
|
|
27536
|
+
locked: boolean;
|
|
27537
|
+
}
|
|
27538
|
+
}
|
|
26372
27539
|
export declare namespace gkehub {
|
|
26373
27540
|
interface FeatureMembershipConfigmanagement {
|
|
26374
27541
|
/**
|
|
@@ -26499,6 +27666,10 @@ export declare namespace gkehub {
|
|
|
26499
27666
|
backends: string[];
|
|
26500
27667
|
}
|
|
26501
27668
|
interface FeatureMembershipMesh {
|
|
27669
|
+
/**
|
|
27670
|
+
* Whether to automatically manage Service Mesh Control Plane. Can either be `AUTOMATIC` or `MANUAL`.
|
|
27671
|
+
*/
|
|
27672
|
+
controlPlane?: string;
|
|
26502
27673
|
/**
|
|
26503
27674
|
* Whether to automatically manage Service Mesh. Can either be `MANAGEMENT_AUTOMATIC` or `MANAGEMENT_MANUAL`.
|
|
26504
27675
|
*/
|
|
@@ -26841,6 +28012,34 @@ export declare namespace iam {
|
|
|
26841
28012
|
allowedAudiences: string[];
|
|
26842
28013
|
issuerUri: string;
|
|
26843
28014
|
}
|
|
28015
|
+
interface WorkforcePoolProviderOidc {
|
|
28016
|
+
/**
|
|
28017
|
+
* The client ID. Must match the audience claim of the JWT issued by the identity provider.
|
|
28018
|
+
*/
|
|
28019
|
+
clientId: string;
|
|
28020
|
+
/**
|
|
28021
|
+
* The OIDC issuer URI. Must be a valid URI using the 'https' scheme.
|
|
28022
|
+
*/
|
|
28023
|
+
issuerUri: string;
|
|
28024
|
+
}
|
|
28025
|
+
interface WorkforcePoolProviderSaml {
|
|
28026
|
+
/**
|
|
28027
|
+
* SAML Identity provider configuration metadata xml doc.
|
|
28028
|
+
* The xml document should comply with [SAML 2.0 specification](https://docs.oasis-open.org/security/saml/v2.0/saml-metadata-2.0-os.pdf).
|
|
28029
|
+
* The max size of the acceptable xml document will be bounded to 128k characters.
|
|
28030
|
+
* The metadata xml document should satisfy the following constraints:
|
|
28031
|
+
* 1) Must contain an Identity Provider Entity ID.
|
|
28032
|
+
* 2) Must contain at least one non-expired signing key certificate.
|
|
28033
|
+
* 3) For each signing key:
|
|
28034
|
+
* a) Valid from should be no more than 7 days from now.
|
|
28035
|
+
* b) Valid to should be no more than 10 years in the future.
|
|
28036
|
+
* 4) Up to 3 IdP signing keys are allowed in the metadata xml.
|
|
28037
|
+
* When updating the provider's metadata xml, at least one non-expired signing key
|
|
28038
|
+
* must overlap with the existing metadata. This requirement is skipped if there are
|
|
28039
|
+
* no non-expired signing keys present in the existing metadata.
|
|
28040
|
+
*/
|
|
28041
|
+
idpMetadataXml: string;
|
|
28042
|
+
}
|
|
26844
28043
|
interface WorkloadIdentityPoolProviderAws {
|
|
26845
28044
|
/**
|
|
26846
28045
|
* The AWS account ID.
|
|
@@ -27501,6 +28700,15 @@ export declare namespace kms {
|
|
|
27501
28700
|
}
|
|
27502
28701
|
}
|
|
27503
28702
|
export declare namespace logging {
|
|
28703
|
+
interface BillingAccountBucketConfigCmekSettings {
|
|
28704
|
+
kmsKeyName: string;
|
|
28705
|
+
kmsKeyVersionName: string;
|
|
28706
|
+
/**
|
|
28707
|
+
* The resource name of the bucket. For example: "projects/my-project-id/locations/my-location/buckets/my-bucket-id"
|
|
28708
|
+
*/
|
|
28709
|
+
name: string;
|
|
28710
|
+
serviceAccountId: string;
|
|
28711
|
+
}
|
|
27504
28712
|
interface BillingAccountSinkBigqueryOptions {
|
|
27505
28713
|
/**
|
|
27506
28714
|
* Whether to use [BigQuery's partition tables](https://cloud.google.com/bigquery/docs/partitioned-tables).
|
|
@@ -27529,6 +28737,15 @@ export declare namespace logging {
|
|
|
27529
28737
|
*/
|
|
27530
28738
|
name: string;
|
|
27531
28739
|
}
|
|
28740
|
+
interface FolderBucketConfigCmekSettings {
|
|
28741
|
+
kmsKeyName: string;
|
|
28742
|
+
kmsKeyVersionName: string;
|
|
28743
|
+
/**
|
|
28744
|
+
* The resource name of the bucket. For example: "folders/my-folder-id/locations/my-location/buckets/my-bucket-id"
|
|
28745
|
+
*/
|
|
28746
|
+
name: string;
|
|
28747
|
+
serviceAccountId: string;
|
|
28748
|
+
}
|
|
27532
28749
|
interface FolderSinkBigqueryOptions {
|
|
27533
28750
|
/**
|
|
27534
28751
|
* Whether to use [BigQuery's partition tables](https://cloud.google.com/bigquery/docs/partitioned-tables).
|
|
@@ -27662,6 +28879,15 @@ export declare namespace logging {
|
|
|
27662
28879
|
*/
|
|
27663
28880
|
valueType?: string;
|
|
27664
28881
|
}
|
|
28882
|
+
interface OrganizationBucketConfigCmekSettings {
|
|
28883
|
+
kmsKeyName: string;
|
|
28884
|
+
kmsKeyVersionName: string;
|
|
28885
|
+
/**
|
|
28886
|
+
* The resource name of the bucket. For example: "organizations/my-organization-id/locations/my-location/buckets/my-bucket-id"
|
|
28887
|
+
*/
|
|
28888
|
+
name: string;
|
|
28889
|
+
serviceAccountId: string;
|
|
28890
|
+
}
|
|
27665
28891
|
interface OrganizationSinkBigqueryOptions {
|
|
27666
28892
|
/**
|
|
27667
28893
|
* Whether to use [BigQuery's partition tables](https://cloud.google.com/bigquery/docs/partitioned-tables).
|
|
@@ -27690,6 +28916,36 @@ export declare namespace logging {
|
|
|
27690
28916
|
*/
|
|
27691
28917
|
name: string;
|
|
27692
28918
|
}
|
|
28919
|
+
interface ProjectBucketConfigCmekSettings {
|
|
28920
|
+
/**
|
|
28921
|
+
* The resource name for the configured Cloud KMS key.
|
|
28922
|
+
* KMS key name format:
|
|
28923
|
+
* `'projects/[PROJECT_ID]/locations/[LOCATION]/keyRings/[KEYRING]/cryptoKeys/[KEY]'`
|
|
28924
|
+
* To enable CMEK for the bucket, set this field to a valid kmsKeyName for which the associated service account has the required cloudkms.cryptoKeyEncrypterDecrypter roles assigned for the key.
|
|
28925
|
+
* The Cloud KMS key used by the bucket can be updated by changing the kmsKeyName to a new valid key name. Encryption operations that are in progress will be completed with the key that was in use when they started. Decryption operations will be completed using the key that was used at the time of encryption unless access to that key has been revoked.
|
|
28926
|
+
* See [Enabling CMEK for Logging Buckets](https://cloud.google.com/logging/docs/routing/managed-encryption-storage) for more information.
|
|
28927
|
+
*/
|
|
28928
|
+
kmsKeyName: string;
|
|
28929
|
+
/**
|
|
28930
|
+
* The CryptoKeyVersion resource name for the configured Cloud KMS key.
|
|
28931
|
+
* KMS key name format:
|
|
28932
|
+
* `'projects/[PROJECT_ID]/locations/[LOCATION]/keyRings/[KEYRING]/cryptoKeys/[KEY]/cryptoKeyVersions/[VERSION]'`
|
|
28933
|
+
* For example:
|
|
28934
|
+
* "projects/my-project/locations/us-central1/keyRings/my-ring/cryptoKeys/my-key/cryptoKeyVersions/1"
|
|
28935
|
+
* This is a read-only field used to convey the specific configured CryptoKeyVersion of kmsKey that has been configured. It will be populated in cases where the CMEK settings are bound to a single key version.
|
|
28936
|
+
*/
|
|
28937
|
+
kmsKeyVersionName: string;
|
|
28938
|
+
/**
|
|
28939
|
+
* The resource name of the CMEK settings.
|
|
28940
|
+
*/
|
|
28941
|
+
name: string;
|
|
28942
|
+
/**
|
|
28943
|
+
* The service account associated with a project for which CMEK will apply.
|
|
28944
|
+
* Before enabling CMEK for a logging bucket, you must first assign the cloudkms.cryptoKeyEncrypterDecrypter role to the service account associated with the project for which CMEK will apply. Use [v2.getCmekSettings](https://cloud.google.com/logging/docs/reference/v2/rest/v2/TopLevel/getCmekSettings#google.logging.v2.ConfigServiceV2.GetCmekSettings) to obtain the service account ID.
|
|
28945
|
+
* See [Enabling CMEK for Logging Buckets](https://cloud.google.com/logging/docs/routing/managed-encryption-storage) for more information.
|
|
28946
|
+
*/
|
|
28947
|
+
serviceAccountId: string;
|
|
28948
|
+
}
|
|
27693
28949
|
interface ProjectSinkBigqueryOptions {
|
|
27694
28950
|
/**
|
|
27695
28951
|
* Whether to use [BigQuery's partition tables](https://cloud.google.com/bigquery/docs/partitioned-tables).
|
|
@@ -29269,6 +30525,65 @@ export declare namespace networkservices {
|
|
|
29269
30525
|
*/
|
|
29270
30526
|
secretAccessKeyVersion: string;
|
|
29271
30527
|
}
|
|
30528
|
+
interface EdgeCacheOriginOriginOverrideAction {
|
|
30529
|
+
/**
|
|
30530
|
+
* The header actions, including adding and removing
|
|
30531
|
+
* headers, for request handled by this origin.
|
|
30532
|
+
* Structure is documented below.
|
|
30533
|
+
*/
|
|
30534
|
+
headerAction?: outputs.networkservices.EdgeCacheOriginOriginOverrideActionHeaderAction;
|
|
30535
|
+
/**
|
|
30536
|
+
* The URL rewrite configuration for request that are
|
|
30537
|
+
* handled by this origin.
|
|
30538
|
+
* Structure is documented below.
|
|
30539
|
+
*/
|
|
30540
|
+
urlRewrite?: outputs.networkservices.EdgeCacheOriginOriginOverrideActionUrlRewrite;
|
|
30541
|
+
}
|
|
30542
|
+
interface EdgeCacheOriginOriginOverrideActionHeaderAction {
|
|
30543
|
+
/**
|
|
30544
|
+
* Describes a header to add.
|
|
30545
|
+
* You may add a maximum of 5 request headers.
|
|
30546
|
+
* Structure is documented below.
|
|
30547
|
+
*/
|
|
30548
|
+
requestHeadersToAdds?: outputs.networkservices.EdgeCacheOriginOriginOverrideActionHeaderActionRequestHeadersToAdd[];
|
|
30549
|
+
}
|
|
30550
|
+
interface EdgeCacheOriginOriginOverrideActionHeaderActionRequestHeadersToAdd {
|
|
30551
|
+
/**
|
|
30552
|
+
* The name of the header to add.
|
|
30553
|
+
*/
|
|
30554
|
+
headerName: string;
|
|
30555
|
+
/**
|
|
30556
|
+
* The value of the header to add.
|
|
30557
|
+
*/
|
|
30558
|
+
headerValue: string;
|
|
30559
|
+
/**
|
|
30560
|
+
* Whether to replace all existing headers with the same name.
|
|
30561
|
+
* By default, added header values are appended
|
|
30562
|
+
* to the response or request headers with the
|
|
30563
|
+
* same field names. The added values are
|
|
30564
|
+
* separated by commas.
|
|
30565
|
+
* To overwrite existing values, set `replace` to `true`.
|
|
30566
|
+
*/
|
|
30567
|
+
replace?: boolean;
|
|
30568
|
+
}
|
|
30569
|
+
interface EdgeCacheOriginOriginOverrideActionUrlRewrite {
|
|
30570
|
+
/**
|
|
30571
|
+
* Prior to forwarding the request to the selected
|
|
30572
|
+
* origin, the request's host header is replaced with
|
|
30573
|
+
* contents of the hostRewrite.
|
|
30574
|
+
* This value must be between 1 and 255 characters.
|
|
30575
|
+
*/
|
|
30576
|
+
hostRewrite?: string;
|
|
30577
|
+
}
|
|
30578
|
+
interface EdgeCacheOriginOriginRedirect {
|
|
30579
|
+
/**
|
|
30580
|
+
* The set of redirect response codes that the CDN
|
|
30581
|
+
* follows. Values of
|
|
30582
|
+
* [RedirectConditions](https://cloud.google.com/media-cdn/docs/reference/rest/v1/projects.locations.edgeCacheOrigins#redirectconditions)
|
|
30583
|
+
* are accepted.
|
|
30584
|
+
*/
|
|
30585
|
+
redirectConditions?: string[];
|
|
30586
|
+
}
|
|
29272
30587
|
interface EdgeCacheOriginTimeout {
|
|
29273
30588
|
/**
|
|
29274
30589
|
* The maximum duration to wait for a single origin connection to be established, including DNS lookup, TLS handshake and TCP/QUIC connection establishment.
|
|
@@ -33113,6 +34428,22 @@ export declare namespace secretmanager {
|
|
|
33113
34428
|
}
|
|
33114
34429
|
}
|
|
33115
34430
|
export declare namespace securitycenter {
|
|
34431
|
+
interface InstanceIamBindingCondition {
|
|
34432
|
+
/**
|
|
34433
|
+
* An optional description of the instance.
|
|
34434
|
+
*/
|
|
34435
|
+
description?: string;
|
|
34436
|
+
expression: string;
|
|
34437
|
+
title: string;
|
|
34438
|
+
}
|
|
34439
|
+
interface InstanceIamMemberCondition {
|
|
34440
|
+
/**
|
|
34441
|
+
* An optional description of the instance.
|
|
34442
|
+
*/
|
|
34443
|
+
description?: string;
|
|
34444
|
+
expression: string;
|
|
34445
|
+
title: string;
|
|
34446
|
+
}
|
|
33116
34447
|
interface NotificationConfigStreamingConfig {
|
|
33117
34448
|
/**
|
|
33118
34449
|
* Expression that defines the filter to apply across create/update
|
|
@@ -33397,6 +34728,7 @@ export declare namespace sql {
|
|
|
33397
34728
|
*/
|
|
33398
34729
|
connectorEnforcement: string;
|
|
33399
34730
|
databaseFlags?: outputs.sql.DatabaseInstanceSettingsDatabaseFlag[];
|
|
34731
|
+
denyMaintenancePeriod?: outputs.sql.DatabaseInstanceSettingsDenyMaintenancePeriod;
|
|
33400
34732
|
/**
|
|
33401
34733
|
* Enables auto-resizing of the storage size. Defaults to `true`.
|
|
33402
34734
|
*/
|
|
@@ -33503,6 +34835,20 @@ export declare namespace sql {
|
|
|
33503
34835
|
*/
|
|
33504
34836
|
value: string;
|
|
33505
34837
|
}
|
|
34838
|
+
interface DatabaseInstanceSettingsDenyMaintenancePeriod {
|
|
34839
|
+
/**
|
|
34840
|
+
* "deny maintenance period" end date. If the year of the end date is empty, the year of the start date also must be empty. In this case, it means the no maintenance interval recurs every year. The date is in format yyyy-mm-dd i.e., 2020-11-01, or mm-dd, i.e., 11-01
|
|
34841
|
+
*/
|
|
34842
|
+
endDate: string;
|
|
34843
|
+
/**
|
|
34844
|
+
* "deny maintenance period" start date. If the year of the start date is empty, the year of the end date also must be empty. In this case, it means the deny maintenance period recurs every year. The date is in format yyyy-mm-dd i.e., 2020-11-01, or mm-dd, i.e., 11-01
|
|
34845
|
+
*/
|
|
34846
|
+
startDate: string;
|
|
34847
|
+
/**
|
|
34848
|
+
* Time in UTC when the "deny maintenance period" starts on startDate and ends on endDate. The time is in format: HH:mm:SS, i.e., 00:00:00
|
|
34849
|
+
*/
|
|
34850
|
+
time: string;
|
|
34851
|
+
}
|
|
33506
34852
|
interface DatabaseInstanceSettingsInsightsConfig {
|
|
33507
34853
|
/**
|
|
33508
34854
|
* True if Query Insights feature is enabled.
|
|
@@ -33706,6 +35052,7 @@ export declare namespace sql {
|
|
|
33706
35052
|
collation: string;
|
|
33707
35053
|
connectorEnforcement: string;
|
|
33708
35054
|
databaseFlags: outputs.sql.GetDatabaseInstanceSettingDatabaseFlag[];
|
|
35055
|
+
denyMaintenancePeriods: outputs.sql.GetDatabaseInstanceSettingDenyMaintenancePeriod[];
|
|
33709
35056
|
diskAutoresize: boolean;
|
|
33710
35057
|
diskAutoresizeLimit: number;
|
|
33711
35058
|
diskSize: number;
|
|
@@ -33747,6 +35094,11 @@ export declare namespace sql {
|
|
|
33747
35094
|
name: string;
|
|
33748
35095
|
value: string;
|
|
33749
35096
|
}
|
|
35097
|
+
interface GetDatabaseInstanceSettingDenyMaintenancePeriod {
|
|
35098
|
+
endDate: string;
|
|
35099
|
+
startDate: string;
|
|
35100
|
+
time: string;
|
|
35101
|
+
}
|
|
33750
35102
|
interface GetDatabaseInstanceSettingInsightsConfig {
|
|
33751
35103
|
queryInsightsEnabled: boolean;
|
|
33752
35104
|
queryPlansPerMinute: number;
|
|
@@ -33827,6 +35179,12 @@ export declare namespace sql {
|
|
|
33827
35179
|
}
|
|
33828
35180
|
}
|
|
33829
35181
|
export declare namespace storage {
|
|
35182
|
+
interface BucketAutoclass {
|
|
35183
|
+
/**
|
|
35184
|
+
* While set to `true`, autoclass automatically transitions objects in your bucket to appropriate storage classes based on each object's access pattern.
|
|
35185
|
+
*/
|
|
35186
|
+
enabled: boolean;
|
|
35187
|
+
}
|
|
33830
35188
|
interface BucketCor {
|
|
33831
35189
|
/**
|
|
33832
35190
|
* The value, in seconds, to return in the [Access-Control-Max-Age header](https://www.w3.org/TR/cors/#access-control-max-age-response-header) used in preflight responses.
|
|
@@ -33898,7 +35256,7 @@ export declare namespace storage {
|
|
|
33898
35256
|
*/
|
|
33899
35257
|
storageClass?: string;
|
|
33900
35258
|
/**
|
|
33901
|
-
* The type of the action of this Lifecycle Rule. Supported values include: `Delete` and `
|
|
35259
|
+
* The type of the action of this Lifecycle Rule. Supported values include: `Delete`, `SetStorageClass` and `AbortIncompleteMultipartUpload`.
|
|
33902
35260
|
*/
|
|
33903
35261
|
type: string;
|
|
33904
35262
|
}
|
|
@@ -33981,7 +35339,7 @@ export declare namespace storage {
|
|
|
33981
35339
|
}
|
|
33982
35340
|
interface BucketVersioning {
|
|
33983
35341
|
/**
|
|
33984
|
-
* While set to `true`,
|
|
35342
|
+
* While set to `true`, autoclass automatically transitions objects in your bucket to appropriate storage classes based on each object's access pattern.
|
|
33985
35343
|
*/
|
|
33986
35344
|
enabled: boolean;
|
|
33987
35345
|
}
|
|
@@ -34001,6 +35359,9 @@ export declare namespace storage {
|
|
|
34001
35359
|
projectNumber?: string;
|
|
34002
35360
|
team?: string;
|
|
34003
35361
|
}
|
|
35362
|
+
interface GetBucketAutoclass {
|
|
35363
|
+
enabled: boolean;
|
|
35364
|
+
}
|
|
34004
35365
|
interface GetBucketCor {
|
|
34005
35366
|
maxAgeSeconds: number;
|
|
34006
35367
|
methods: string[];
|
|
@@ -34406,6 +35767,16 @@ export declare namespace vertex {
|
|
|
34406
35767
|
*/
|
|
34407
35768
|
kmsKeyName: string;
|
|
34408
35769
|
}
|
|
35770
|
+
interface AiFeatureStoreEntityTypeIamBindingCondition {
|
|
35771
|
+
description?: string;
|
|
35772
|
+
expression: string;
|
|
35773
|
+
title: string;
|
|
35774
|
+
}
|
|
35775
|
+
interface AiFeatureStoreEntityTypeIamMemberCondition {
|
|
35776
|
+
description?: string;
|
|
35777
|
+
expression: string;
|
|
35778
|
+
title: string;
|
|
35779
|
+
}
|
|
34409
35780
|
interface AiFeatureStoreEntityTypeMonitoringConfig {
|
|
34410
35781
|
/**
|
|
34411
35782
|
* Threshold for categorical features of anomaly detection. This is shared by all types of Featurestore Monitoring for categorical features (i.e. Features with type (Feature.ValueType) BOOL or STRING).
|
|
@@ -34491,6 +35862,93 @@ export declare namespace vertex {
|
|
|
34491
35862
|
*/
|
|
34492
35863
|
fixedNodeCount: number;
|
|
34493
35864
|
}
|
|
35865
|
+
interface AiIndexDeployedIndex {
|
|
35866
|
+
deployedIndexId: string;
|
|
35867
|
+
indexEndpoint: string;
|
|
35868
|
+
}
|
|
35869
|
+
interface AiIndexIndexStat {
|
|
35870
|
+
shardsCount: number;
|
|
35871
|
+
vectorsCount: string;
|
|
35872
|
+
}
|
|
35873
|
+
interface AiIndexMetadata {
|
|
35874
|
+
/**
|
|
35875
|
+
* The configuration of the Matching Engine Index.
|
|
35876
|
+
* Structure is documented below.
|
|
35877
|
+
*/
|
|
35878
|
+
config?: outputs.vertex.AiIndexMetadataConfig;
|
|
35879
|
+
/**
|
|
35880
|
+
* Allows inserting, updating or deleting the contents of the Matching Engine Index.
|
|
35881
|
+
* The string must be a valid Cloud Storage directory path. If this
|
|
35882
|
+
* field is set when calling IndexService.UpdateIndex, then no other
|
|
35883
|
+
* Index field can be also updated as part of the same call.
|
|
35884
|
+
* The expected structure and format of the files this URI points to is
|
|
35885
|
+
* described at https://cloud.google.com/vertex-ai/docs/matching-engine/using-matching-engine#input-data-format
|
|
35886
|
+
*/
|
|
35887
|
+
contentsDeltaUri?: string;
|
|
35888
|
+
/**
|
|
35889
|
+
* If this field is set together with contentsDeltaUri when calling IndexService.UpdateIndex,
|
|
35890
|
+
* then existing content of the Index will be replaced by the data from the contentsDeltaUri.
|
|
35891
|
+
*/
|
|
35892
|
+
isCompleteOverwrite?: boolean;
|
|
35893
|
+
}
|
|
35894
|
+
interface AiIndexMetadataConfig {
|
|
35895
|
+
/**
|
|
35896
|
+
* The configuration with regard to the algorithms used for efficient search.
|
|
35897
|
+
* Structure is documented below.
|
|
35898
|
+
*/
|
|
35899
|
+
algorithmConfig?: outputs.vertex.AiIndexMetadataConfigAlgorithmConfig;
|
|
35900
|
+
/**
|
|
35901
|
+
* The default number of neighbors to find via approximate search before exact reordering is
|
|
35902
|
+
* performed. Exact reordering is a procedure where results returned by an
|
|
35903
|
+
* approximate search algorithm are reordered via a more expensive distance computation.
|
|
35904
|
+
* Required if tree-AH algorithm is used.
|
|
35905
|
+
*/
|
|
35906
|
+
approximateNeighborsCount?: number;
|
|
35907
|
+
/**
|
|
35908
|
+
* The number of dimensions of the input vectors.
|
|
35909
|
+
*/
|
|
35910
|
+
dimensions: number;
|
|
35911
|
+
/**
|
|
35912
|
+
* The distance measure used in nearest neighbor search. The value must be one of the followings:
|
|
35913
|
+
* * SQUARED_L2_DISTANCE: Euclidean (L_2) Distance
|
|
35914
|
+
* * L1_DISTANCE: Manhattan (L_1) Distance
|
|
35915
|
+
* * COSINE_DISTANCE: Cosine Distance. Defined as 1 - cosine similarity.
|
|
35916
|
+
* * DOT_PRODUCT_DISTANCE: Dot Product Distance. Defined as a negative of the dot product
|
|
35917
|
+
*/
|
|
35918
|
+
distanceMeasureType?: string;
|
|
35919
|
+
/**
|
|
35920
|
+
* Type of normalization to be carried out on each vector. The value must be one of the followings:
|
|
35921
|
+
* * UNIT_L2_NORM: Unit L2 normalization type
|
|
35922
|
+
* * NONE: No normalization type is specified.
|
|
35923
|
+
*/
|
|
35924
|
+
featureNormType?: string;
|
|
35925
|
+
}
|
|
35926
|
+
interface AiIndexMetadataConfigAlgorithmConfig {
|
|
35927
|
+
/**
|
|
35928
|
+
* Configuration options for using brute force search, which simply implements the
|
|
35929
|
+
* standard linear search in the database for each query.
|
|
35930
|
+
*/
|
|
35931
|
+
bruteForceConfig?: outputs.vertex.AiIndexMetadataConfigAlgorithmConfigBruteForceConfig;
|
|
35932
|
+
/**
|
|
35933
|
+
* Configuration options for using the tree-AH algorithm (Shallow tree + Asymmetric Hashing).
|
|
35934
|
+
* Please refer to this paper for more details: https://arxiv.org/abs/1908.10396
|
|
35935
|
+
* Structure is documented below.
|
|
35936
|
+
*/
|
|
35937
|
+
treeAhConfig?: outputs.vertex.AiIndexMetadataConfigAlgorithmConfigTreeAhConfig;
|
|
35938
|
+
}
|
|
35939
|
+
interface AiIndexMetadataConfigAlgorithmConfigBruteForceConfig {
|
|
35940
|
+
}
|
|
35941
|
+
interface AiIndexMetadataConfigAlgorithmConfigTreeAhConfig {
|
|
35942
|
+
/**
|
|
35943
|
+
* Number of embeddings on each leaf node. The default value is 1000 if not set.
|
|
35944
|
+
*/
|
|
35945
|
+
leafNodeEmbeddingCount?: number;
|
|
35946
|
+
/**
|
|
35947
|
+
* The default percentage of leaf nodes that any query may be searched. Must be in
|
|
35948
|
+
* range 1-100, inclusive. The default value is 10 (means 10%) if not set.
|
|
35949
|
+
*/
|
|
35950
|
+
leafNodesToSearchPercent?: number;
|
|
35951
|
+
}
|
|
34494
35952
|
interface AiMetadataStoreEncryptionSpec {
|
|
34495
35953
|
/**
|
|
34496
35954
|
* Required. The Cloud KMS resource identifier of the customer managed encryption key used to protect a resource.
|
|
@@ -34501,6 +35959,13 @@ export declare namespace vertex {
|
|
|
34501
35959
|
interface AiMetadataStoreState {
|
|
34502
35960
|
diskUtilizationBytes: string;
|
|
34503
35961
|
}
|
|
35962
|
+
interface AiTensorboardEncryptionSpec {
|
|
35963
|
+
/**
|
|
35964
|
+
* The Cloud KMS resource identifier of the customer managed encryption key used to protect a resource.
|
|
35965
|
+
* Has the form: projects/my-project/locations/my-region/keyRings/my-kr/cryptoKeys/my-key. The key needs to be in the same region as where the resource is created.
|
|
35966
|
+
*/
|
|
35967
|
+
kmsKeyName: string;
|
|
35968
|
+
}
|
|
34504
35969
|
}
|
|
34505
35970
|
export declare namespace vpcaccess {
|
|
34506
35971
|
interface ConnectorSubnet {
|