From 1de53df7004066bc266643477881502fc9b2a6db Mon Sep 17 00:00:00 2001 From: Shuxian Cai Date: Fri, 6 Jan 2023 00:48:11 +0000 Subject: [PATCH] Update for version 1.99.0 --- ...beta1_accesscontextmanageraccesslevel.yaml | 2 +- ...eta1_accesscontextmanageraccesspolicy.yaml | 2 +- ..._accesscontextmanagerserviceperimeter.yaml | 2 +- crds/apigee_v1beta1_apigeeenvironment.yaml | 2 +- crds/apigee_v1beta1_apigeeorganization.yaml | 2 +- ...ry_v1beta1_artifactregistryrepository.yaml | 2 +- crds/bigquery_v1beta1_bigquerydataset.yaml | 2 +- crds/bigquery_v1beta1_bigqueryjob.yaml | 2 +- crds/bigquery_v1beta1_bigquerytable.yaml | 2 +- crds/bigtable_v1beta1_bigtableappprofile.yaml | 2 +- crds/bigtable_v1beta1_bigtablegcpolicy.yaml | 26 +- crds/bigtable_v1beta1_bigtableinstance.yaml | 2 +- crds/bigtable_v1beta1_bigtabletable.yaml | 9 +- ...gbudgets_v1beta1_billingbudgetsbudget.yaml | 2 +- ...n_v1beta1_binaryauthorizationattestor.yaml | 2 +- ...ion_v1beta1_binaryauthorizationpolicy.yaml | 2 +- .../cloudbuild_v1beta1_cloudbuildtrigger.yaml | 9 +- ...ctions_v1beta1_cloudfunctionsfunction.yaml | 2 +- ...udidentity_v1beta1_cloudidentitygroup.yaml | 14 +- ...ntity_v1beta1_cloudidentitymembership.yaml | 2 +- ...udscheduler_v1beta1_cloudschedulerjob.yaml | 2 +- crds/compute_v1beta1_computeaddress.yaml | 2 +- .../compute_v1beta1_computebackendbucket.yaml | 2 +- ...compute_v1beta1_computebackendservice.yaml | 9 +- crds/compute_v1beta1_computedisk.yaml | 2 +- ...ute_v1beta1_computeexternalvpngateway.yaml | 2 +- crds/compute_v1beta1_computefirewall.yaml | 2 +- ...compute_v1beta1_computefirewallpolicy.yaml | 2 +- ...eta1_computefirewallpolicyassociation.yaml | 2 +- ...ute_v1beta1_computefirewallpolicyrule.yaml | 2 +- ...compute_v1beta1_computeforwardingrule.yaml | 2 +- crds/compute_v1beta1_computehealthcheck.yaml | 2 +- ...ompute_v1beta1_computehttphealthcheck.yaml | 2 +- ...mpute_v1beta1_computehttpshealthcheck.yaml | 2 +- crds/compute_v1beta1_computeimage.yaml | 2 +- crds/compute_v1beta1_computeinstance.yaml | 2 +- .../compute_v1beta1_computeinstancegroup.yaml | 2 +- ...e_v1beta1_computeinstancegroupmanager.yaml | 2 +- ...mpute_v1beta1_computeinstancetemplate.yaml | 2 +- ...v1beta1_computeinterconnectattachment.yaml | 2 +- crds/compute_v1beta1_computenetwork.yaml | 2 +- ...e_v1beta1_computenetworkendpointgroup.yaml | 2 +- ...compute_v1beta1_computenetworkpeering.yaml | 2 +- crds/compute_v1beta1_computenodegroup.yaml | 2 +- crds/compute_v1beta1_computenodetemplate.yaml | 2 +- ...ompute_v1beta1_computepacketmirroring.yaml | 2 +- ...ompute_v1beta1_computeprojectmetadata.yaml | 2 +- ...ta1_computeregionnetworkendpointgroup.yaml | 2 +- crds/compute_v1beta1_computereservation.yaml | 2 +- ...compute_v1beta1_computeresourcepolicy.yaml | 2 +- crds/compute_v1beta1_computeroute.yaml | 2 +- crds/compute_v1beta1_computerouter.yaml | 2 +- ...ompute_v1beta1_computerouterinterface.yaml | 90 +- crds/compute_v1beta1_computerouternat.yaml | 2 +- crds/compute_v1beta1_computerouterpeer.yaml | 2 +- ...compute_v1beta1_computesecuritypolicy.yaml | 222 +- ...pute_v1beta1_computeserviceattachment.yaml | 2 +- ...e_v1beta1_computesharedvpchostproject.yaml | 2 +- ...1beta1_computesharedvpcserviceproject.yaml | 2 +- crds/compute_v1beta1_computesnapshot.yaml | 2 +- ...compute_v1beta1_computesslcertificate.yaml | 2 +- crds/compute_v1beta1_computesslpolicy.yaml | 2 +- crds/compute_v1beta1_computesubnetwork.yaml | 4 +- ...ompute_v1beta1_computetargetgrpcproxy.yaml | 2 +- ...ompute_v1beta1_computetargethttpproxy.yaml | 2 +- ...mpute_v1beta1_computetargethttpsproxy.yaml | 2 +- ...compute_v1beta1_computetargetinstance.yaml | 2 +- crds/compute_v1beta1_computetargetpool.yaml | 2 +- ...compute_v1beta1_computetargetsslproxy.yaml | 6 +- ...compute_v1beta1_computetargettcpproxy.yaml | 2 +- ...mpute_v1beta1_computetargetvpngateway.yaml | 2 +- crds/compute_v1beta1_computeurlmap.yaml | 187 +- crds/compute_v1beta1_computevpngateway.yaml | 2 +- crds/compute_v1beta1_computevpntunnel.yaml | 2 +- ...ller_v1beta1_configcontrollerinstance.yaml | 2 +- crds/container_v1beta1_containercluster.yaml | 170 +- crds/container_v1beta1_containernodepool.yaml | 49 +- ...nalysis_v1beta1_containeranalysisnote.yaml | 2 +- ...acatalog_v1beta1_datacatalogpolicytag.yaml | 208 ++ ...tacatalog_v1beta1_datacatalogtaxonomy.yaml | 2 +- ...aflow_v1beta1_dataflowflextemplatejob.yaml | 2 +- crds/dataflow_v1beta1_dataflowjob.yaml | 2 +- ...datafusion_v1beta1_datafusioninstance.yaml | 2 +- ...roc_v1beta1_dataprocautoscalingpolicy.yaml | 2 +- crds/dataproc_v1beta1_dataproccluster.yaml | 2 +- ...proc_v1beta1_dataprocworkflowtemplate.yaml | 2 +- crds/dlp_v1beta1_dlpdeidentifytemplate.yaml | 2 +- crds/dlp_v1beta1_dlpinspecttemplate.yaml | 2 +- crds/dlp_v1beta1_dlpjobtrigger.yaml | 2 +- crds/dlp_v1beta1_dlpstoredinfotype.yaml | 2 +- crds/dns_v1beta1_dnsmanagedzone.yaml | 43 +- crds/dns_v1beta1_dnspolicy.yaml | 2 +- crds/dns_v1beta1_dnsrecordset.yaml | 2 +- crds/eventarc_v1beta1_eventarctrigger.yaml | 2 +- crds/filestore_v1beta1_filestorebackup.yaml | 2 +- crds/filestore_v1beta1_filestoreinstance.yaml | 2 +- crds/firestore_v1beta1_firestoreindex.yaml | 2 +- ...ameservices_v1beta1_gameservicesrealm.yaml | 2 +- crds/gkehub_v1beta1_gkehubfeature.yaml | 2 +- ...kehub_v1beta1_gkehubfeaturemembership.yaml | 58 +- crds/gkehub_v1beta1_gkehubmembership.yaml | 2 +- crds/iam_v1beta1_iamauditconfig.yaml | 2 +- crds/iam_v1beta1_iamcustomrole.yaml | 2 +- crds/iam_v1beta1_iampartialpolicy.yaml | 2 +- crds/iam_v1beta1_iampolicy.yaml | 2 +- crds/iam_v1beta1_iampolicymember.yaml | 2 +- crds/iam_v1beta1_iamserviceaccount.yaml | 2 +- crds/iam_v1beta1_iamserviceaccountkey.yaml | 2 +- crds/iam_v1beta1_iamworkforcepool.yaml | 2 +- .../iam_v1beta1_iamworkforcepoolprovider.yaml | 2 +- crds/iam_v1beta1_iamworkloadidentitypool.yaml | 2 +- ...beta1_iamworkloadidentitypoolprovider.yaml | 2 +- crds/iap_v1beta1_iapbrand.yaml | 2 +- ...p_v1beta1_iapidentityawareproxyclient.yaml | 2 +- ...atform_v1beta1_identityplatformconfig.yaml | 2 +- ...1beta1_identityplatformoauthidpconfig.yaml | 2 +- ...atform_v1beta1_identityplatformtenant.yaml | 2 +- ..._identityplatformtenantoauthidpconfig.yaml | 2 +- crds/kms_v1beta1_kmscryptokey.yaml | 2 +- crds/kms_v1beta1_kmskeyring.yaml | 2 +- crds/logging_v1beta1_logginglogbucket.yaml | 2 +- crds/logging_v1beta1_logginglogexclusion.yaml | 2 +- crds/logging_v1beta1_logginglogmetric.yaml | 2 +- crds/logging_v1beta1_logginglogsink.yaml | 2 +- crds/logging_v1beta1_logginglogview.yaml | 2 +- crds/memcache_v1beta1_memcacheinstance.yaml | 2 +- ...itoring_v1beta1_monitoringalertpolicy.yaml | 2 +- ...onitoring_v1beta1_monitoringdashboard.yaml | 2 +- crds/monitoring_v1beta1_monitoringgroup.yaml | 2 +- ...ng_v1beta1_monitoringmetricdescriptor.yaml | 2 +- ...ng_v1beta1_monitoringmonitoredproject.yaml | 2 +- ...v1beta1_monitoringnotificationchannel.yaml | 2 +- .../monitoring_v1beta1_monitoringservice.yaml | 2 +- ...beta1_monitoringservicelevelobjective.yaml | 2 +- ...g_v1beta1_monitoringuptimecheckconfig.yaml | 2 +- ...tivity_v1beta1_networkconnectivityhub.yaml | 2 +- ...vity_v1beta1_networkconnectivityspoke.yaml | 2 +- ...a1_networksecurityauthorizationpolicy.yaml | 2 +- ...1beta1_networksecurityclienttlspolicy.yaml | 2 +- ...1beta1_networksecurityservertlspolicy.yaml | 2 +- ...v1beta1_networkservicesendpointpolicy.yaml | 2 +- ...rvices_v1beta1_networkservicesgateway.yaml | 31 +- ...ices_v1beta1_networkservicesgrpcroute.yaml | 2 +- ...ices_v1beta1_networkserviceshttproute.yaml | 2 +- ...kservices_v1beta1_networkservicesmesh.yaml | 2 +- ...vices_v1beta1_networkservicestcproute.yaml | 2 +- ...vices_v1beta1_networkservicestlsroute.yaml | 2 +- .../osconfig_v1beta1_osconfigguestpolicy.yaml | 2 +- ...ig_v1beta1_osconfigospolicyassignment.yaml | 6 +- crds/privateca_v1beta1_privatecacapool.yaml | 2 +- ...rivateca_v1beta1_privatecacertificate.yaml | 2 +- ...v1beta1_privatecacertificateauthority.yaml | 2 +- ..._v1beta1_privatecacertificatetemplate.yaml | 2 +- crds/pubsub_v1beta1_pubsubschema.yaml | 2 +- crds/pubsub_v1beta1_pubsubsubscription.yaml | 2 +- crds/pubsub_v1beta1_pubsubtopic.yaml | 2 +- ...rprise_v1beta1_recaptchaenterprisekey.yaml | 2 +- crds/redis_v1beta1_redisinstance.yaml | 4 +- crds/resourcemanager_v1beta1_folder.yaml | 2 +- crds/resourcemanager_v1beta1_project.yaml | 2 +- ...cemanager_v1beta1_resourcemanagerlien.yaml | 2 +- ...manager_v1beta1_resourcemanagerpolicy.yaml | 2 +- crds/run_v1beta1_runservice.yaml | 2 +- ...etmanager_v1beta1_secretmanagersecret.yaml | 2 +- ...er_v1beta1_secretmanagersecretversion.yaml | 2 +- ...tory_v1beta1_servicedirectoryendpoint.yaml | 2 +- ...ory_v1beta1_servicedirectorynamespace.yaml | 2 +- ...ctory_v1beta1_servicedirectoryservice.yaml | 2 +- ...g_v1beta1_servicenetworkingconnection.yaml | 2 +- crds/serviceusage_v1beta1_service.yaml | 2 +- ...urcerepo_v1beta1_sourcereporepository.yaml | 2 +- crds/spanner_v1beta1_spannerdatabase.yaml | 2 +- crds/spanner_v1beta1_spannerinstance.yaml | 2 +- crds/sql_v1beta1_sqldatabase.yaml | 9 +- crds/sql_v1beta1_sqlinstance.yaml | 34 +- crds/sql_v1beta1_sqlsslcert.yaml | 2 +- crds/sql_v1beta1_sqluser.yaml | 2 +- crds/storage_v1beta1_storagebucket.yaml | 16 +- ...ge_v1beta1_storagebucketaccesscontrol.yaml | 2 +- ...ta1_storagedefaultobjectaccesscontrol.yaml | 2 +- crds/storage_v1beta1_storagenotification.yaml | 2 +- ...getransfer_v1beta1_storagetransferjob.yaml | 2 +- crds/tags_v1beta1_tagstagkey.yaml | 177 ++ crds/tags_v1beta1_tagstagvalue.yaml | 187 ++ .../vpcaccess_v1beta1_vpcaccessconnector.yaml | 2 +- .../0-cnrm-system.yaml | 98 +- .../install-bundle-gcp-identity/crds.yaml | 2334 ++++++++++++----- .../0-cnrm-system.yaml | 96 +- .../install-bundle-namespaced/crds.yaml | 2334 ++++++++++++----- .../per-namespace-components.yaml | 18 +- .../0-cnrm-system.yaml | 98 +- .../crds.yaml | 2334 ++++++++++++----- .../bigtable_v1beta1_bigtableinstance.yaml | 27 - .../bigtable_v1beta1_bigtableinstance.yaml | 27 - .../compute_v1beta1_computenetwork.yaml | 21 - ...ller_v1beta1_configcontrollerinstance.yaml | 33 - .../container_v1beta1_containercluster.yaml | 26 - .../gkehub_v1beta1_gkehubfeature.yaml | 25 - ...kehub_v1beta1_gkehubfeaturemembership.yaml | 50 - .../gkehub_v1beta1_gkehubmembership.yaml | 30 - .../resourcemanager_v1beta1_project.yaml | 26 - .../serviceusage_v1beta1_service.yaml | 43 - .../iam_v1beta1_iamauditconfig.yaml | 29 - .../iam_v1beta1_iamserviceaccount.yaml | 18 - .../pubsub_v1beta1_pubsubsubscription.yaml | 29 - .../pubsub_v1beta1_pubsubtopic.yaml | 23 - 206 files changed, 6970 insertions(+), 2641 deletions(-) create mode 100644 crds/datacatalog_v1beta1_datacatalogpolicytag.yaml create mode 100644 crds/tags_v1beta1_tagstagkey.yaml create mode 100644 crds/tags_v1beta1_tagstagvalue.yaml delete mode 100644 samples/resources/bigtableinstance/bigtable_v1beta1_bigtableinstance.yaml delete mode 100644 samples/resources/bigtableinstance/replicated-intance/bigtable_v1beta1_bigtableinstance.yaml delete mode 100644 samples/resources/configcontrollerinstance/compute_v1beta1_computenetwork.yaml delete mode 100644 samples/resources/configcontrollerinstance/configcontroller_v1beta1_configcontrollerinstance.yaml delete mode 100644 samples/resources/gkehubfeaturemembership/container_v1beta1_containercluster.yaml delete mode 100644 samples/resources/gkehubfeaturemembership/gkehub_v1beta1_gkehubfeature.yaml delete mode 100644 samples/resources/gkehubfeaturemembership/gkehub_v1beta1_gkehubfeaturemembership.yaml delete mode 100644 samples/resources/gkehubfeaturemembership/gkehub_v1beta1_gkehubmembership.yaml delete mode 100644 samples/resources/gkehubfeaturemembership/resourcemanager_v1beta1_project.yaml delete mode 100644 samples/resources/gkehubfeaturemembership/serviceusage_v1beta1_service.yaml delete mode 100644 samples/resources/iamauditconfig/iam_v1beta1_iamauditconfig.yaml delete mode 100644 samples/resources/iamauditconfig/iam_v1beta1_iamserviceaccount.yaml delete mode 100644 samples/resources/pubsubsubscription/pubsub_v1beta1_pubsubsubscription.yaml delete mode 100644 samples/resources/pubsubsubscription/pubsub_v1beta1_pubsubtopic.yaml diff --git a/crds/accesscontextmanager_v1beta1_accesscontextmanageraccesslevel.yaml b/crds/accesscontextmanager_v1beta1_accesscontextmanageraccesslevel.yaml index 19e3a8390a..af8e0fddc8 100644 --- a/crds/accesscontextmanager_v1beta1_accesscontextmanageraccesslevel.yaml +++ b/crds/accesscontextmanager_v1beta1_accesscontextmanageraccesslevel.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/accesscontextmanager_v1beta1_accesscontextmanageraccesspolicy.yaml b/crds/accesscontextmanager_v1beta1_accesscontextmanageraccesspolicy.yaml index 098fdc8f71..5e67fb8c01 100644 --- a/crds/accesscontextmanager_v1beta1_accesscontextmanageraccesspolicy.yaml +++ b/crds/accesscontextmanager_v1beta1_accesscontextmanageraccesspolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/accesscontextmanager_v1beta1_accesscontextmanagerserviceperimeter.yaml b/crds/accesscontextmanager_v1beta1_accesscontextmanagerserviceperimeter.yaml index 2a5315a841..2b6469b1cb 100644 --- a/crds/accesscontextmanager_v1beta1_accesscontextmanagerserviceperimeter.yaml +++ b/crds/accesscontextmanager_v1beta1_accesscontextmanagerserviceperimeter.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/apigee_v1beta1_apigeeenvironment.yaml b/crds/apigee_v1beta1_apigeeenvironment.yaml index 0b33998185..9cd7995ac8 100644 --- a/crds/apigee_v1beta1_apigeeenvironment.yaml +++ b/crds/apigee_v1beta1_apigeeenvironment.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/apigee_v1beta1_apigeeorganization.yaml b/crds/apigee_v1beta1_apigeeorganization.yaml index 049ad6b95a..a725d28004 100644 --- a/crds/apigee_v1beta1_apigeeorganization.yaml +++ b/crds/apigee_v1beta1_apigeeorganization.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/artifactregistry_v1beta1_artifactregistryrepository.yaml b/crds/artifactregistry_v1beta1_artifactregistryrepository.yaml index 1daf3de0eb..c0dca9af26 100644 --- a/crds/artifactregistry_v1beta1_artifactregistryrepository.yaml +++ b/crds/artifactregistry_v1beta1_artifactregistryrepository.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/bigquery_v1beta1_bigquerydataset.yaml b/crds/bigquery_v1beta1_bigquerydataset.yaml index f5bee9af96..b0d5c6bb2e 100644 --- a/crds/bigquery_v1beta1_bigquerydataset.yaml +++ b/crds/bigquery_v1beta1_bigquerydataset.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/bigquery_v1beta1_bigqueryjob.yaml b/crds/bigquery_v1beta1_bigqueryjob.yaml index 2e8f11e56b..19b9782235 100644 --- a/crds/bigquery_v1beta1_bigqueryjob.yaml +++ b/crds/bigquery_v1beta1_bigqueryjob.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/bigquery_v1beta1_bigquerytable.yaml b/crds/bigquery_v1beta1_bigquerytable.yaml index f3070c0866..9e8952dcf1 100644 --- a/crds/bigquery_v1beta1_bigquerytable.yaml +++ b/crds/bigquery_v1beta1_bigquerytable.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/bigtable_v1beta1_bigtableappprofile.yaml b/crds/bigtable_v1beta1_bigtableappprofile.yaml index ff17bd1872..40171551ab 100644 --- a/crds/bigtable_v1beta1_bigtableappprofile.yaml +++ b/crds/bigtable_v1beta1_bigtableappprofile.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/bigtable_v1beta1_bigtablegcpolicy.yaml b/crds/bigtable_v1beta1_bigtablegcpolicy.yaml index 234daf7535..ae6aecba29 100644 --- a/crds/bigtable_v1beta1_bigtablegcpolicy.yaml +++ b/crds/bigtable_v1beta1_bigtablegcpolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74,6 +74,12 @@ spec: columnFamily: description: Immutable. The name of the column family. type: string + deletionPolicy: + description: "The deletion policy for the GC policy. Setting ABANDON + allows the resource\n\t\t\t\tto be abandoned rather than deleted. + This is useful for GC policy as it cannot be deleted\n\t\t\t\tin + a replicated instance. Possible values are: \"ABANDON\"." + type: string gcRules: description: Serialized JSON string for garbage collection policy. Conflicts with "mode", "max_age" and "max_version". @@ -107,8 +113,10 @@ spec: type: string type: object maxAge: - description: Immutable. GC policy that applies to all cells older - than the given age. + description: 'Immutable. NOTE: ''gc_rules'' is more flexible, and + should be preferred over this field for new resources. This field + may be deprecated in the future. GC policy that applies to all cells + older than the given age.' items: properties: days: @@ -121,8 +129,10 @@ spec: type: object type: array maxVersion: - description: Immutable. GC policy that applies to all versions of - a cell except for the most recent. + description: 'Immutable. NOTE: ''gc_rules'' is more flexible, and + should be preferred over this field for new resources. This field + may be deprecated in the future. GC policy that applies to all versions + of a cell except for the most recent.' items: properties: number: @@ -134,8 +144,10 @@ spec: type: object type: array mode: - description: Immutable. If multiple policies are set, you should choose - between UNION OR INTERSECTION. + description: 'Immutable. NOTE: ''gc_rules'' is more flexible, and + should be preferred over this field for new resources. This field + may be deprecated in the future. If multiple policies are set, you + should choose between UNION OR INTERSECTION.' type: string tableRef: description: The name of the table. diff --git a/crds/bigtable_v1beta1_bigtableinstance.yaml b/crds/bigtable_v1beta1_bigtableinstance.yaml index b693e318f9..2d9b0c9ec9 100644 --- a/crds/bigtable_v1beta1_bigtableinstance.yaml +++ b/crds/bigtable_v1beta1_bigtableinstance.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/bigtable_v1beta1_bigtabletable.yaml b/crds/bigtable_v1beta1_bigtabletable.yaml index 3aa8f3045f..cb84e52ba4 100644 --- a/crds/bigtable_v1beta1_bigtabletable.yaml +++ b/crds/bigtable_v1beta1_bigtabletable.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -83,6 +83,13 @@ spec: - family type: object type: array + deletionProtection: + description: A field to make the table protected against data loss + i.e. when set to PROTECTED, deleting the table, the column families + in the table, and the instance containing the table would be prohibited. + If not provided, currently deletion protection will be set to UNPROTECTED + as it is the API default value. + type: string instanceRef: description: The name of the Bigtable instance. oneOf: diff --git a/crds/billingbudgets_v1beta1_billingbudgetsbudget.yaml b/crds/billingbudgets_v1beta1_billingbudgetsbudget.yaml index 90b30201e4..660956c21c 100644 --- a/crds/billingbudgets_v1beta1_billingbudgetsbudget.yaml +++ b/crds/billingbudgets_v1beta1_billingbudgetsbudget.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/binaryauthorization_v1beta1_binaryauthorizationattestor.yaml b/crds/binaryauthorization_v1beta1_binaryauthorizationattestor.yaml index 31f42d37a2..97e69b07e8 100644 --- a/crds/binaryauthorization_v1beta1_binaryauthorizationattestor.yaml +++ b/crds/binaryauthorization_v1beta1_binaryauthorizationattestor.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/binaryauthorization_v1beta1_binaryauthorizationpolicy.yaml b/crds/binaryauthorization_v1beta1_binaryauthorizationpolicy.yaml index 7c1d75e1df..598ca2594e 100644 --- a/crds/binaryauthorization_v1beta1_binaryauthorizationpolicy.yaml +++ b/crds/binaryauthorization_v1beta1_binaryauthorizationpolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/cloudbuild_v1beta1_cloudbuildtrigger.yaml b/crds/cloudbuild_v1beta1_cloudbuildtrigger.yaml index 72d1cfc9d7..badd60d126 100644 --- a/crds/cloudbuild_v1beta1_cloudbuildtrigger.yaml +++ b/crds/cloudbuild_v1beta1_cloudbuildtrigger.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -715,8 +715,9 @@ spec: repoType: description: "The type of the repo, since it may not be explicit from the repo field (e.g from a URL). \nValues can be UNKNOWN, - CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET Possible values: - [\"UNKNOWN\", \"CLOUD_SOURCE_REPOSITORIES\", \"GITHUB\", \"BITBUCKET\"]." + CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET_SERVER Possible + values: [\"UNKNOWN\", \"CLOUD_SOURCE_REPOSITORIES\", \"GITHUB\", + \"BITBUCKET_SERVER\"]." type: string revision: description: "The branch, tag, arbitrary ref, or SHA version of @@ -957,7 +958,7 @@ spec: repoType: description: |- The type of the repo, since it may not be explicit from the repo field (e.g from a URL). - Values can be UNKNOWN, CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET Possible values: ["UNKNOWN", "CLOUD_SOURCE_REPOSITORIES", "GITHUB", "BITBUCKET"]. + Values can be UNKNOWN, CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET_SERVER Possible values: ["UNKNOWN", "CLOUD_SOURCE_REPOSITORIES", "GITHUB", "BITBUCKET_SERVER"]. type: string uri: description: The URI of the repo (required). diff --git a/crds/cloudfunctions_v1beta1_cloudfunctionsfunction.yaml b/crds/cloudfunctions_v1beta1_cloudfunctionsfunction.yaml index dbb6e22209..01ff5260fb 100644 --- a/crds/cloudfunctions_v1beta1_cloudfunctionsfunction.yaml +++ b/crds/cloudfunctions_v1beta1_cloudfunctionsfunction.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/cloudidentity_v1beta1_cloudidentitygroup.yaml b/crds/cloudidentity_v1beta1_cloudidentitygroup.yaml index 8f3d08e93a..eef5dc3a18 100644 --- a/crds/cloudidentity_v1beta1_cloudidentitygroup.yaml +++ b/crds/cloudidentity_v1beta1_cloudidentitygroup.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -120,11 +120,15 @@ spec: additionalProperties: type: string description: |- - Immutable. The labels that apply to the Group. + One or more label entries that apply to the Group. Currently supported labels contain a key with an empty value. - Must not contain more than one entry. Must contain the entry - 'cloudidentity.googleapis.com/groups.discussion_forum': '' if the Group is a Google Group or - 'system/groups/external': '' if the Group is an external-identity-mapped group. + Google Groups are the default type of group and have a label with a key of cloudidentity.googleapis.com/groups.discussion_forum and an empty value. + + Existing Google Groups can have an additional label with a key of cloudidentity.googleapis.com/groups.security and an empty value added to them. This is an immutable change and the security label cannot be removed once added. + + Dynamic groups have a label with a key of cloudidentity.googleapis.com/groups.dynamic. + + Identity-mapped groups for Cloud Search have a label with a key of system/groups/external and an empty value. type: object parent: description: |- diff --git a/crds/cloudidentity_v1beta1_cloudidentitymembership.yaml b/crds/cloudidentity_v1beta1_cloudidentitymembership.yaml index b21a93c115..ba2a0e229f 100644 --- a/crds/cloudidentity_v1beta1_cloudidentitymembership.yaml +++ b/crds/cloudidentity_v1beta1_cloudidentitymembership.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/cloudscheduler_v1beta1_cloudschedulerjob.yaml b/crds/cloudscheduler_v1beta1_cloudschedulerjob.yaml index 82fbce1e1a..e968f75f9a 100644 --- a/crds/cloudscheduler_v1beta1_cloudschedulerjob.yaml +++ b/crds/cloudscheduler_v1beta1_cloudschedulerjob.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/compute_v1beta1_computeaddress.yaml b/crds/compute_v1beta1_computeaddress.yaml index 7cf7b474f1..09d03dd811 100644 --- a/crds/compute_v1beta1_computeaddress.yaml +++ b/crds/compute_v1beta1_computeaddress.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computebackendbucket.yaml b/crds/compute_v1beta1_computebackendbucket.yaml index de59e8bb27..df8fdea02e 100644 --- a/crds/compute_v1beta1_computebackendbucket.yaml +++ b/crds/compute_v1beta1_computebackendbucket.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computebackendservice.yaml b/crds/compute_v1beta1_computebackendservice.yaml index d206ce7c13..0eba4c07c9 100644 --- a/crds/compute_v1beta1_computebackendservice.yaml +++ b/crds/compute_v1beta1_computebackendservice.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -267,6 +267,13 @@ spec: description: If true requests to different hosts will be cached separately. type: boolean + includeHttpHeaders: + description: |- + Allows HTTP request headers (by name) to be used in the + cache key. + items: + type: string + type: array includeNamedCookies: description: Names of cookies to include in cache keys. items: diff --git a/crds/compute_v1beta1_computedisk.yaml b/crds/compute_v1beta1_computedisk.yaml index 42fc481b5b..6dc837edb5 100644 --- a/crds/compute_v1beta1_computedisk.yaml +++ b/crds/compute_v1beta1_computedisk.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computeexternalvpngateway.yaml b/crds/compute_v1beta1_computeexternalvpngateway.yaml index ab05431d81..46d722eb87 100644 --- a/crds/compute_v1beta1_computeexternalvpngateway.yaml +++ b/crds/compute_v1beta1_computeexternalvpngateway.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computefirewall.yaml b/crds/compute_v1beta1_computefirewall.yaml index 690cc2c41d..58463aad5e 100644 --- a/crds/compute_v1beta1_computefirewall.yaml +++ b/crds/compute_v1beta1_computefirewall.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computefirewallpolicy.yaml b/crds/compute_v1beta1_computefirewallpolicy.yaml index 434c6dd5f9..d18700d0c0 100644 --- a/crds/compute_v1beta1_computefirewallpolicy.yaml +++ b/crds/compute_v1beta1_computefirewallpolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/compute_v1beta1_computefirewallpolicyassociation.yaml b/crds/compute_v1beta1_computefirewallpolicyassociation.yaml index bb0631f21d..fb9f8c8a8e 100644 --- a/crds/compute_v1beta1_computefirewallpolicyassociation.yaml +++ b/crds/compute_v1beta1_computefirewallpolicyassociation.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/compute_v1beta1_computefirewallpolicyrule.yaml b/crds/compute_v1beta1_computefirewallpolicyrule.yaml index 67f5706d7b..8edef5d4b0 100644 --- a/crds/compute_v1beta1_computefirewallpolicyrule.yaml +++ b/crds/compute_v1beta1_computefirewallpolicyrule.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/compute_v1beta1_computeforwardingrule.yaml b/crds/compute_v1beta1_computeforwardingrule.yaml index b6d436ed2c..a0d7c6c2c7 100644 --- a/crds/compute_v1beta1_computeforwardingrule.yaml +++ b/crds/compute_v1beta1_computeforwardingrule.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computehealthcheck.yaml b/crds/compute_v1beta1_computehealthcheck.yaml index 2881aa6cee..16c699abb5 100644 --- a/crds/compute_v1beta1_computehealthcheck.yaml +++ b/crds/compute_v1beta1_computehealthcheck.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computehttphealthcheck.yaml b/crds/compute_v1beta1_computehttphealthcheck.yaml index 504659ed07..f8d5ddb150 100644 --- a/crds/compute_v1beta1_computehttphealthcheck.yaml +++ b/crds/compute_v1beta1_computehttphealthcheck.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computehttpshealthcheck.yaml b/crds/compute_v1beta1_computehttpshealthcheck.yaml index 5d509f145f..17524d29cd 100644 --- a/crds/compute_v1beta1_computehttpshealthcheck.yaml +++ b/crds/compute_v1beta1_computehttpshealthcheck.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computeimage.yaml b/crds/compute_v1beta1_computeimage.yaml index 3d9037cfbb..5606f22463 100644 --- a/crds/compute_v1beta1_computeimage.yaml +++ b/crds/compute_v1beta1_computeimage.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computeinstance.yaml b/crds/compute_v1beta1_computeinstance.yaml index 8e18eea01a..a08662d8bb 100644 --- a/crds/compute_v1beta1_computeinstance.yaml +++ b/crds/compute_v1beta1_computeinstance.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computeinstancegroup.yaml b/crds/compute_v1beta1_computeinstancegroup.yaml index e9e771f4a9..c72afb4671 100644 --- a/crds/compute_v1beta1_computeinstancegroup.yaml +++ b/crds/compute_v1beta1_computeinstancegroup.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computeinstancegroupmanager.yaml b/crds/compute_v1beta1_computeinstancegroupmanager.yaml index ec6d5b8bbf..93607a312b 100644 --- a/crds/compute_v1beta1_computeinstancegroupmanager.yaml +++ b/crds/compute_v1beta1_computeinstancegroupmanager.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/compute_v1beta1_computeinstancetemplate.yaml b/crds/compute_v1beta1_computeinstancetemplate.yaml index 7bc5a3e09d..d16822f8e4 100644 --- a/crds/compute_v1beta1_computeinstancetemplate.yaml +++ b/crds/compute_v1beta1_computeinstancetemplate.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computeinterconnectattachment.yaml b/crds/compute_v1beta1_computeinterconnectattachment.yaml index f5684e6664..ce982d3b11 100644 --- a/crds/compute_v1beta1_computeinterconnectattachment.yaml +++ b/crds/compute_v1beta1_computeinterconnectattachment.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computenetwork.yaml b/crds/compute_v1beta1_computenetwork.yaml index d289903ea8..7e15bc16c9 100644 --- a/crds/compute_v1beta1_computenetwork.yaml +++ b/crds/compute_v1beta1_computenetwork.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computenetworkendpointgroup.yaml b/crds/compute_v1beta1_computenetworkendpointgroup.yaml index 61bb62afe9..643b2007f4 100644 --- a/crds/compute_v1beta1_computenetworkendpointgroup.yaml +++ b/crds/compute_v1beta1_computenetworkendpointgroup.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computenetworkpeering.yaml b/crds/compute_v1beta1_computenetworkpeering.yaml index 6ab28db731..9c720550ab 100644 --- a/crds/compute_v1beta1_computenetworkpeering.yaml +++ b/crds/compute_v1beta1_computenetworkpeering.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computenodegroup.yaml b/crds/compute_v1beta1_computenodegroup.yaml index 1846478aab..a40db9855d 100644 --- a/crds/compute_v1beta1_computenodegroup.yaml +++ b/crds/compute_v1beta1_computenodegroup.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computenodetemplate.yaml b/crds/compute_v1beta1_computenodetemplate.yaml index 17742c28e4..59e3c9fcd0 100644 --- a/crds/compute_v1beta1_computenodetemplate.yaml +++ b/crds/compute_v1beta1_computenodetemplate.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computepacketmirroring.yaml b/crds/compute_v1beta1_computepacketmirroring.yaml index 563a72323f..939a750dd6 100644 --- a/crds/compute_v1beta1_computepacketmirroring.yaml +++ b/crds/compute_v1beta1_computepacketmirroring.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/compute_v1beta1_computeprojectmetadata.yaml b/crds/compute_v1beta1_computeprojectmetadata.yaml index 5d143cdd56..90cdfb4b37 100644 --- a/crds/compute_v1beta1_computeprojectmetadata.yaml +++ b/crds/compute_v1beta1_computeprojectmetadata.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computeregionnetworkendpointgroup.yaml b/crds/compute_v1beta1_computeregionnetworkendpointgroup.yaml index 630bbdc034..c27d77898e 100644 --- a/crds/compute_v1beta1_computeregionnetworkendpointgroup.yaml +++ b/crds/compute_v1beta1_computeregionnetworkendpointgroup.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computereservation.yaml b/crds/compute_v1beta1_computereservation.yaml index 0e1144f550..492ce894fa 100644 --- a/crds/compute_v1beta1_computereservation.yaml +++ b/crds/compute_v1beta1_computereservation.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computeresourcepolicy.yaml b/crds/compute_v1beta1_computeresourcepolicy.yaml index 26adf7ab27..dd34ccb852 100644 --- a/crds/compute_v1beta1_computeresourcepolicy.yaml +++ b/crds/compute_v1beta1_computeresourcepolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computeroute.yaml b/crds/compute_v1beta1_computeroute.yaml index 9f458c8b46..b316714c22 100644 --- a/crds/compute_v1beta1_computeroute.yaml +++ b/crds/compute_v1beta1_computeroute.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computerouter.yaml b/crds/compute_v1beta1_computerouter.yaml index 10e7ea7d18..6e354d7240 100644 --- a/crds/compute_v1beta1_computerouter.yaml +++ b/crds/compute_v1beta1_computerouter.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computerouterinterface.yaml b/crds/compute_v1beta1_computerouterinterface.yaml index 32ee794ba1..7f74abf636 100644 --- a/crds/compute_v1beta1_computerouterinterface.yaml +++ b/crds/compute_v1beta1_computerouterinterface.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -99,10 +99,65 @@ spec: type: string type: object ipRange: - description: Immutable. IP address and range of the interface. The - IP range must be in the RFC3927 link-local IP space. Changing this - forces a new interface to be created. + description: Immutable. The IP address and range of the interface. + The IP range must be in the RFC3927 link-local IP space. Changing + this forces a new interface to be created. type: string + privateIpAddressRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `address` field of a `ComputeAddress` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + redundantInterfaceRef: + description: The interface the BGP peer is associated with. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `ComputeRouterInterface` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object region: description: Immutable. The region this interface's router sits in. If not specified, the project region will be used. Changing this @@ -140,6 +195,33 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object + subnetworkRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeSubnetwork` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object vpnTunnelRef: oneOf: - not: diff --git a/crds/compute_v1beta1_computerouternat.yaml b/crds/compute_v1beta1_computerouternat.yaml index f7f1007ce3..dcf8578ac7 100644 --- a/crds/compute_v1beta1_computerouternat.yaml +++ b/crds/compute_v1beta1_computerouternat.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computerouterpeer.yaml b/crds/compute_v1beta1_computerouterpeer.yaml index 753a9d0603..73affc4e8d 100644 --- a/crds/compute_v1beta1_computerouterpeer.yaml +++ b/crds/compute_v1beta1_computerouterpeer.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computesecuritypolicy.yaml b/crds/compute_v1beta1_computesecuritypolicy.yaml index 996ef750f0..9d5e34e648 100644 --- a/crds/compute_v1beta1_computesecuritypolicy.yaml +++ b/crds/compute_v1beta1_computesecuritypolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -115,6 +115,49 @@ spec: description: An optional description of this security policy. Max size is 2048. type: string + recaptchaOptionsConfig: + description: reCAPTCHA configuration options to be applied for the + security policy. + properties: + redirectSiteKeyRef: + description: |- + Only `external` field is supported to configure the reference. + + A field to supply a reCAPTCHA site key to be used for all the rules + using the redirect action with the type of GOOGLE_RECAPTCHA under + the security policy. The specified site key needs to be created from + the reCAPTCHA API. The user is responsible for the validity of the + specified site key. If not specified, a Google-managed site key is + used. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `RecaptchaEnterpriseKey` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - redirectSiteKeyRef + type: object resourceID: description: Immutable. Optional. The name of the resource. Used for creation and acquisition. When unset, the value of `metadata.name` @@ -134,6 +177,27 @@ spec: description: An optional description of this rule. Max size is 64. type: string + headerAction: + description: Additional actions that are performed on headers. + properties: + requestHeadersToAdds: + description: The list of request headers to add or overwrite + if they're already present. + items: + properties: + headerName: + description: The name of the header to set. + type: string + headerValue: + description: The value to set the named header to. + type: string + required: + - headerName + type: object + type: array + required: + - requestHeadersToAdds + type: object match: description: A match condition that incoming traffic is evaluated against. If it evaluates to true, the corresponding action @@ -178,6 +242,162 @@ spec: src_ip_ranges field in config.' type: string type: object + preconfiguredWafConfig: + description: Preconfigured WAF configuration to be applied for + the rule. If the rule does not evaluate preconfigured WAF + rules, i.e., if evaluatePreconfiguredWaf() is not used, this + field will have no effect. + properties: + exclusion: + description: An exclusion to apply during preconfigured + WAF evaluation. + items: + properties: + requestCookie: + description: Request cookie whose value will be excluded + from inspection during preconfigured WAF evaluation. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + requestHeader: + description: Request header whose value will be excluded + from inspection during preconfigured WAF evaluation. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + requestQueryParam: + description: Request query parameter whose value will + be excluded from inspection during preconfigured + WAF evaluation. Note that the parameter can be + in the query string or in the POST body. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + requestUri: + description: Request URI from the request line to + be excluded from inspection during preconfigured + WAF evaluation. When specifying this field, the + query or fragment part should be excluded. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + targetRuleIds: + description: A list of target rule IDs under the WAF + rule set to apply the preconfigured WAF exclusion. + If omitted, it refers to all the rule IDs under + the WAF rule set. + items: + type: string + type: array + targetRuleSet: + description: Target WAF rule set to apply the preconfigured + WAF exclusion. + type: string + required: + - targetRuleSet + type: object + type: array + type: object preview: description: When set to true, the action specified above is not enforced. Stackdriver logs for requests that trigger a diff --git a/crds/compute_v1beta1_computeserviceattachment.yaml b/crds/compute_v1beta1_computeserviceattachment.yaml index 92c9cff12d..f2bb67ea91 100644 --- a/crds/compute_v1beta1_computeserviceattachment.yaml +++ b/crds/compute_v1beta1_computeserviceattachment.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/compute_v1beta1_computesharedvpchostproject.yaml b/crds/compute_v1beta1_computesharedvpchostproject.yaml index ccc36612af..4eb50adf5d 100644 --- a/crds/compute_v1beta1_computesharedvpchostproject.yaml +++ b/crds/compute_v1beta1_computesharedvpchostproject.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computesharedvpcserviceproject.yaml b/crds/compute_v1beta1_computesharedvpcserviceproject.yaml index f59516423b..7e183470fd 100644 --- a/crds/compute_v1beta1_computesharedvpcserviceproject.yaml +++ b/crds/compute_v1beta1_computesharedvpcserviceproject.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computesnapshot.yaml b/crds/compute_v1beta1_computesnapshot.yaml index d17624d9ae..fe54ec6115 100644 --- a/crds/compute_v1beta1_computesnapshot.yaml +++ b/crds/compute_v1beta1_computesnapshot.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computesslcertificate.yaml b/crds/compute_v1beta1_computesslcertificate.yaml index 67f44c3f61..10960e50f6 100644 --- a/crds/compute_v1beta1_computesslcertificate.yaml +++ b/crds/compute_v1beta1_computesslcertificate.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computesslpolicy.yaml b/crds/compute_v1beta1_computesslpolicy.yaml index 14812980db..b1f80b67cd 100644 --- a/crds/compute_v1beta1_computesslpolicy.yaml +++ b/crds/compute_v1beta1_computesslpolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computesubnetwork.yaml b/crds/compute_v1beta1_computesubnetwork.yaml index 53754aebfe..301c756422 100644 --- a/crds/compute_v1beta1_computesubnetwork.yaml +++ b/crds/compute_v1beta1_computesubnetwork.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -86,7 +86,7 @@ spec: type: string ipv6AccessType: description: |- - Immutable. The access type of IPv6 address this subnet holds. It's immutable and can only be specified during creation + The access type of IPv6 address this subnet holds. It's immutable and can only be specified during creation or the first time the subnet is updated into IPV4_IPV6 dual stack. If the ipv6_type is EXTERNAL then this subnet cannot enable direct path. Possible values: ["EXTERNAL", "INTERNAL"]. type: string diff --git a/crds/compute_v1beta1_computetargetgrpcproxy.yaml b/crds/compute_v1beta1_computetargetgrpcproxy.yaml index 81bf63a250..2e98ce7663 100644 --- a/crds/compute_v1beta1_computetargetgrpcproxy.yaml +++ b/crds/compute_v1beta1_computetargetgrpcproxy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computetargethttpproxy.yaml b/crds/compute_v1beta1_computetargethttpproxy.yaml index 2718c7bfab..8a29fb743d 100644 --- a/crds/compute_v1beta1_computetargethttpproxy.yaml +++ b/crds/compute_v1beta1_computetargethttpproxy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computetargethttpsproxy.yaml b/crds/compute_v1beta1_computetargethttpsproxy.yaml index e628990310..0437cca406 100644 --- a/crds/compute_v1beta1_computetargethttpsproxy.yaml +++ b/crds/compute_v1beta1_computetargethttpsproxy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computetargetinstance.yaml b/crds/compute_v1beta1_computetargetinstance.yaml index 019e8f719b..7062de2a67 100644 --- a/crds/compute_v1beta1_computetargetinstance.yaml +++ b/crds/compute_v1beta1_computetargetinstance.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computetargetpool.yaml b/crds/compute_v1beta1_computetargetpool.yaml index 8f098576e4..fb65c2a3d5 100644 --- a/crds/compute_v1beta1_computetargetpool.yaml +++ b/crds/compute_v1beta1_computetargetpool.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computetargetsslproxy.yaml b/crds/compute_v1beta1_computetargetsslproxy.yaml index 6d1681f508..3bda073ffe 100644 --- a/crds/compute_v1beta1_computetargetsslproxy.yaml +++ b/crds/compute_v1beta1_computetargetsslproxy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -101,12 +101,12 @@ spec: type: object certificateMapRef: description: |- + Only `external` field is supported to configure the reference. + A reference to the CertificateMap resource uri that identifies a certificate map associated with the given target proxy. This field can only be set for global target proxies. Accepted format is '//certificatemanager.googleapis.com/projects/{project}/locations/{location}/certificateMaps/{resourceName}'. - - Only `external` field is supported to configure the reference. oneOf: - not: required: diff --git a/crds/compute_v1beta1_computetargettcpproxy.yaml b/crds/compute_v1beta1_computetargettcpproxy.yaml index 83b7071e13..980261095f 100644 --- a/crds/compute_v1beta1_computetargettcpproxy.yaml +++ b/crds/compute_v1beta1_computetargettcpproxy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computetargetvpngateway.yaml b/crds/compute_v1beta1_computetargetvpngateway.yaml index 29991d0f8d..e2e242ceae 100644 --- a/crds/compute_v1beta1_computetargetvpngateway.yaml +++ b/crds/compute_v1beta1_computetargetvpngateway.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computeurlmap.yaml b/crds/compute_v1beta1_computeurlmap.yaml index 38303b4b8b..9ff329a75f 100644 --- a/crds/compute_v1beta1_computeurlmap.yaml +++ b/crds/compute_v1beta1_computeurlmap.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73,12 +73,10 @@ spec: properties: defaultRouteAction: description: |- - defaultRouteAction takes effect when none of the hostRules match. The load balancer performs advanced routing actions - like URL rewrites, header transformations, etc. prior to forwarding the request to the selected backend. - If defaultRouteAction specifies any weightedBackendServices, defaultService must not be set. Conversely if defaultService - is set, defaultRouteAction cannot contain any weightedBackendServices. - + defaultRouteAction takes effect when none of the hostRules match. The load balancer performs advanced routing actions, such as URL rewrites and header transformations, before forwarding the request to the selected backend. If defaultRouteAction specifies any weightedBackendServices, defaultService must not be set. Conversely if defaultService is set, defaultRouteAction cannot contain any weightedBackendServices. Only one of defaultRouteAction or defaultUrlRedirect must be set. + URL maps for Classic external HTTP(S) load balancers only support the urlRewrite action within defaultRouteAction. + defaultRouteAction has no effect when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true. properties: corsPolicy: description: |- @@ -87,8 +85,8 @@ spec: properties: allowCredentials: description: |- - In response to a preflight request, setting this to true indicates that the actual request can include user credentials. - This translates to the Access-Control-Allow-Credentials header. + In response to a preflight request, setting this to true indicates that the actual request can include user credentials. This field translates to the Access-Control-Allow-Credentials header. + Default is false. type: boolean allowHeaders: description: Specifies the content for the Access-Control-Allow-Headers @@ -104,7 +102,7 @@ spec: type: array allowOriginRegexes: description: |- - Specifies the regular expression patterns that match allowed origins. For regular expression grammar + Specifies the regualar expression patterns that match allowed origins. For regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript An origin is allowed if it matches either an item in allowOrigins or an item in allowOriginRegexes. items: @@ -118,9 +116,9 @@ spec: type: string type: array disabled: - description: If true, specifies the CORS policy is disabled. - The default value is false, which indicates that the CORS - policy is in effect. + description: If true, the setting specifies the CORS policy + is disabled. The default value of false, which indicates + that the CORS policy is in effect. type: boolean exposeHeaders: description: Specifies the content for the Access-Control-Expose-Headers @@ -137,11 +135,10 @@ spec: faultInjectionPolicy: description: |- The specification for fault injection introduced into traffic to test the resiliency of clients to backend service failure. - As part of fault injection, when clients send requests to a backend service, delays can be introduced by Loadbalancer on a - percentage of requests before sending those request to the backend service. Similarly requests from clients can be aborted - by the Loadbalancer for a percentage of requests. - - timeout and retryPolicy will be ignored by clients that are configured with a faultInjectionPolicy. + As part of fault injection, when clients send requests to a backend service, delays can be introduced by a load balancer on a percentage of requests before sending those requests to the backend service. + Similarly requests from clients can be aborted by the load balancer for a percentage of requests. + timeout and retryPolicy is ignored by clients that are configured with a faultInjectionPolicy if: 1. The traffic is generated by fault injection AND 2. The fault injection is not a delay fault injection. + Fault injection is not supported with the global external HTTP(S) load balancer (classic). To see which load balancers support fault injection, see Load balancing: [Routing and traffic management features](https://cloud.google.com/load-balancing/docs/features#routing-traffic-management). properties: abort: description: The specification for how client requests are @@ -187,12 +184,17 @@ spec: requestMirrorPolicy: description: |- Specifies the policy on how requests intended for the route's backends are shadowed to a separate mirrored backend service. - Loadbalancer does not wait for responses from the shadow service. Prior to sending traffic to the shadow service, - the host / authority header is suffixed with -shadow. + The load balancer does not wait for responses from the shadow service. Before sending traffic to the shadow service, the host / authority header is suffixed with -shadow. + Not supported when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true. properties: backendServiceRef: - description: Required. The backend service resource being - mirrored to. + description: |- + The backend service resource being mirrored to. + The backend service configured for a mirroring policy must reference + backends that are of the same type as the original backend service + matched in the URL map. + Serverless NEG backends are not currently supported as a mirrored + backend service. oneOf: - not: required: @@ -209,8 +211,8 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `ComputeBackendService` - resource.' + description: 'Allowed value: The `selfLink` field of a + `ComputeBackendService` resource.' type: string name: description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' @@ -219,8 +221,6 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object - required: - - backendServiceRef type: object retryPolicy: description: Specifies the retry policy associated with this route. @@ -249,73 +249,62 @@ spec: type: object retryConditions: description: |- - Specfies one or more conditions when this retry rule applies. Valid values are: - - * 5xx: Loadbalancer will attempt a retry if the backend service responds with any 5xx response code, - or if the backend service does not respond at all, example: disconnects, reset, read timeout, - * connection failure, and refused streams. - * gateway-error: Similar to 5xx, but only applies to response codes 502, 503 or 504. - * connect-failure: Loadbalancer will retry on failures connecting to backend services, - for example due to connection timeouts. - * retriable-4xx: Loadbalancer will retry for retriable 4xx response codes. - Currently the only retriable error supported is 409. - * refused-stream:Loadbalancer will retry if the backend service resets the stream with a REFUSED_STREAM error code. - This reset type indicates that it is safe to retry. - * cancelled: Loadbalancer will retry if the gRPC status code in the response header is set to cancelled - * deadline-exceeded: Loadbalancer will retry if the gRPC status code in the response header is set to deadline-exceeded - * resource-exhausted: Loadbalancer will retry if the gRPC status code in the response header is set to resource-exhausted - * unavailable: Loadbalancer will retry if the gRPC status code in the response header is set to unavailable. + Specifies one or more conditions when this retry policy applies. + Valid values are listed below. Only the following codes are supported when the URL map is bound to target gRPC proxy that has validateForProxyless field set to true: cancelled, deadline-exceeded, internal, resource-exhausted, unavailable. + - 5xx : retry is attempted if the instance or endpoint responds with any 5xx response code, or if the instance or endpoint does not respond at all. For example, disconnects, reset, read timeout, connection failure, and refused streams. + - gateway-error : Similar to 5xx, but only applies to response codes 502, 503 or 504. + - connect-failure : a retry is attempted on failures connecting to the instance or endpoint. For example, connection timeouts. + - retriable-4xx : a retry is attempted if the instance or endpoint responds with a 4xx response code. The only error that you can retry is error code 409. + - refused-stream : a retry is attempted if the instance or endpoint resets the stream with a REFUSED_STREAM error code. This reset type indicates that it is safe to retry. + - cancelled : a retry is attempted if the gRPC status code in the response header is set to cancelled. + - deadline-exceeded : a retry is attempted if the gRPC status code in the response header is set to deadline-exceeded. + - internal : a retry is attempted if the gRPC status code in the response header is set to internal. + - resource-exhausted : a retry is attempted if the gRPC status code in the response header is set to resource-exhausted. + - unavailable : a retry is attempted if the gRPC status code in the response header is set to unavailable. items: type: string type: array type: object timeout: description: |- - Specifies the timeout for the selected route. Timeout is computed from the time the request has been - fully processed (i.e. end-of-stream) up until the response has been completely processed. Timeout includes all retries. - - If not specified, will use the largest timeout among all backend services associated with the route. + Specifies the timeout for the selected route. Timeout is computed from the time the request has been fully processed (known as end-of-stream) up until the response has been processed. Timeout includes all retries. + If not specified, this field uses the largest timeout among all backend services associated with the route. + Not supported when the URL map is bound to a target gRPC proxy that has validateForProxyless field set to true. properties: nanos: - description: |- - Span of time that's a fraction of a second at nanosecond resolution. Durations less than one second are represented - with a 0 seconds field and a positive nanos field. Must be from 0 to 999,999,999 inclusive. + description: Span of time that's a fraction of a second at + nanosecond resolution. Durations less than one second are + represented with a 0 seconds field and a positive nanos + field. Must be from 0 to 999,999,999 inclusive. type: integer seconds: - description: |- - Span of time at a resolution of a second. Must be from 0 to 315,576,000,000 inclusive. - Note: these bounds are computed from: 60 sec/min * 60 min/hr * 24 hr/day * 365.25 days/year * 10000 years. + description: 'Span of time at a resolution of a second. Must + be from 0 to 315,576,000,000 inclusive. Note: these bounds + are computed from: 60 sec/min * 60 min/hr * 24 hr/day * + 365.25 days/year * 10000 years.' type: string type: object urlRewrite: - description: The spec to modify the URL of the request, prior - to forwarding the request to the matched service. + description: |- + The spec to modify the URL of the request, before forwarding the request to the matched service. + urlRewrite is the only action supported in UrlMaps for external HTTP(S) load balancers. + Not supported when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true. properties: hostRewrite: description: |- - Prior to forwarding the request to the selected service, the request's host header is replaced - with contents of hostRewrite. - - The value must be between 1 and 255 characters. + Before forwarding the request to the selected service, the request's host header is replaced with contents of hostRewrite. + The value must be from 1 to 255 characters. type: string pathPrefixRewrite: description: |- - Prior to forwarding the request to the selected backend service, the matching portion of the - request's path is replaced by pathPrefixRewrite. - - The value must be between 1 and 1024 characters. + Before forwarding the request to the selected backend service, the matching portion of the request's path is replaced by pathPrefixRewrite. + The value must be from 1 to 1024 characters. type: string type: object weightedBackendServices: description: |- - A list of weighted backend services to send traffic to when a route match occurs. - The weights determine the fraction of traffic that flows to their corresponding backend service. - If all traffic needs to go to a single backend service, there must be one weightedBackendService - with weight set to a non 0 number. - - Once a backendService is identified and before forwarding the request to the backend service, - advanced routing actions like Url rewrites and header transformations are applied depending on - additional settings specified in this HttpRouteAction. + A list of weighted backend services to send traffic to when a route match occurs. The weights determine the fraction of traffic that flows to their corresponding backend service. If all traffic needs to go to a single backend service, there must be one weightedBackendService with weight set to a non-zero number. + After a backend service is identified and before forwarding the request to the backend service, advanced routing actions such as URL rewrites and header transformations are applied depending on additional settings specified in this HttpRouteAction. items: properties: backendServiceRef: @@ -340,8 +329,8 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `ComputeBackendService` - resource.' + description: 'Allowed value: The `selfLink` field of + a `ComputeBackendService` resource.' type: string name: description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' @@ -353,73 +342,67 @@ spec: type: object headerAction: description: |- - Specifies changes to request and response headers that need to take effect for - the selected backendService. - - headerAction specified here take effect before headerAction in the enclosing - HttpRouteRule, PathMatcher and UrlMap. + Specifies changes to request and response headers that need to take effect for the selected backendService. + headerAction specified here take effect before headerAction in the enclosing HttpRouteRule, PathMatcher and UrlMap. + headerAction is not supported for load balancers that have their loadBalancingScheme set to EXTERNAL. + Not supported when the URL map is bound to a target gRPC proxy that has validateForProxyless field set to true. properties: requestHeadersToAdd: - description: Headers to add to a matching request prior - to forwarding the request to the backendService. + description: Headers to add to a matching request before + forwarding the request to the backendService. items: properties: headerName: - description: The name of the header to add. + description: The name of the header. type: string headerValue: description: The value of the header to add. type: string replace: description: |- - If false, headerValue is appended to any values that already exist for the header. - If true, headerValue is set for the header, discarding any values that were set for that header. + If false, headerValue is appended to any values that already exist for the header. If true, headerValue is set for the header, discarding any values that were set for that header. + The default value is false. type: boolean type: object type: array requestHeadersToRemove: - description: |- - A list of header names for headers that need to be removed from the request prior to - forwarding the request to the backendService. + description: A list of header names for headers that + need to be removed from the request before forwarding + the request to the backendService. items: type: string type: array responseHeadersToAdd: - description: Headers to add the response prior to sending + description: Headers to add the response before sending the response back to the client. items: properties: headerName: - description: The name of the header to add. + description: The name of the header. type: string headerValue: description: The value of the header to add. type: string replace: description: |- - If false, headerValue is appended to any values that already exist for the header. - If true, headerValue is set for the header, discarding any values that were set for that header. + If false, headerValue is appended to any values that already exist for the header. If true, headerValue is set for the header, discarding any values that were set for that header. + The default value is false. type: boolean type: object type: array responseHeadersToRemove: - description: |- - A list of header names for headers that need to be removed from the response prior to sending the - response back to the client. + description: A list of header names for headers that + need to be removed from the response before sending + the response back to the client. items: type: string type: array type: object weight: description: |- - Specifies the fraction of traffic sent to backendService, computed as - weight / (sum of all weightedBackendService weights in routeAction) . - - The selection of a backend service is determined only for new traffic. Once a user's request - has been directed to a backendService, subsequent requests will be sent to the same backendService - as determined by the BackendService's session affinity policy. - - The value must be between 0 and 1000. + Specifies the fraction of traffic sent to a backend service, computed as weight / (sum of all weightedBackendService weights in routeAction) . + The selection of a backend service is determined only for new traffic. Once a user's request has been directed to a backend service, subsequent requests are sent to the same backend service as determined by the backend service's session affinity policy. + The value must be from 0 to 1000. type: integer type: object type: array @@ -810,8 +793,8 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of - a `ComputeBackendService` resource.' + description: 'Allowed value: The `selfLink` field + of a `ComputeBackendService` resource.' type: string name: description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' @@ -944,7 +927,7 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field + description: 'Allowed value: The `selfLink` field of a `ComputeBackendService` resource.' type: string name: diff --git a/crds/compute_v1beta1_computevpngateway.yaml b/crds/compute_v1beta1_computevpngateway.yaml index 2d54c18a5d..f09bb6f802 100644 --- a/crds/compute_v1beta1_computevpngateway.yaml +++ b/crds/compute_v1beta1_computevpngateway.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/compute_v1beta1_computevpntunnel.yaml b/crds/compute_v1beta1_computevpntunnel.yaml index 32dfbac492..fc23a6d8de 100644 --- a/crds/compute_v1beta1_computevpntunnel.yaml +++ b/crds/compute_v1beta1_computevpntunnel.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/configcontroller_v1beta1_configcontrollerinstance.yaml b/crds/configcontroller_v1beta1_configcontrollerinstance.yaml index 3e61f3798b..91940ac777 100644 --- a/crds/configcontroller_v1beta1_configcontrollerinstance.yaml +++ b/crds/configcontroller_v1beta1_configcontrollerinstance.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/container_v1beta1_containercluster.yaml b/crds/container_v1beta1_containercluster.yaml index b4c851e3df..3d141b45c8 100644 --- a/crds/container_v1beta1_containercluster.yaml +++ b/crds/container_v1beta1_containercluster.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -265,6 +265,40 @@ spec: description: The default image type used by NAP once a new node pool is being created. type: string + management: + description: NodeManagement configuration for this NodePool. + properties: + autoRepair: + description: Specifies whether the node auto-repair is + enabled for the node pool. If enabled, the nodes in + this node pool will be monitored and, if they fail health + checks too many times, an automatic repair action will + be triggered. + type: boolean + autoUpgrade: + description: Specifies whether node auto-upgrade is enabled + for the node pool. If enabled, node auto-upgrade helps + keep the nodes in your node pool up to date with the + latest release version of Kubernetes. + type: boolean + upgradeOptions: + description: Specifies the Auto Upgrade knobs for the + node pool. + items: + properties: + autoUpgradeStartTime: + description: This field is set when upgrades are + about to commence with the approximate start time + for the upgrades, in RFC3339 text format. + type: string + description: + description: This field is set when upgrades are + about to commence with the description of the + upgrade. + type: string + type: object + type: array + type: object minCpuPlatform: description: Minimum CPU platform to be used by this instance. The instance may be scheduled on the specified or newer @@ -304,6 +338,65 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object + shieldedInstanceConfig: + description: Shielded Instance options. + properties: + enableIntegrityMonitoring: + description: Defines whether the instance has integrity + monitoring enabled. + type: boolean + enableSecureBoot: + description: Defines whether the instance has Secure Boot + enabled. + type: boolean + type: object + upgradeSettings: + description: Specifies the upgrade settings for NAP created + node pools. + properties: + blueGreenSettings: + description: Settings for blue-green upgrade strategy. + properties: + nodePoolSoakDuration: + description: "Time needed after draining entire blue + pool. After this period, blue pool will be cleaned + up.\n\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tA duration + in seconds with up to nine fractional digits, ending + with 's'. Example: \"3.5s\"." + type: string + standardRolloutPolicy: + description: Standard policy for the blue-green upgrade. + properties: + batchNodeCount: + description: Number of blue nodes to drain in + a batch. + type: integer + batchPercentage: + description: Percentage of the bool pool nodes + to drain in a batch. The range of this field + should be (0.0, 1.0]. + type: number + batchSoakDuration: + description: "Soak time after each batch gets + drained.\n\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tA + duration in seconds with up to nine fractional + digits, ending with 's'. Example: \"3.5s\"." + type: string + type: object + type: object + maxSurge: + description: The maximum number of nodes that can be created + beyond the current size of the node pool during the + upgrade process. + type: integer + maxUnavailable: + description: The maximum number of nodes that can be simultaneously + unavailable during the upgrade process. + type: integer + strategy: + description: Update strategy of the node pool. + type: string + type: object type: object autoscalingProfile: description: Configuration options for the Autoscaling profile @@ -338,8 +431,6 @@ spec: - resourceType type: object type: array - required: - - enabled type: object clusterIpv4Cidr: description: Immutable. The IP address range of the Kubernetes pods @@ -470,6 +561,16 @@ spec: description: Immutable. Whether to enable Cloud TPU resources in this cluster. type: boolean + gatewayApiConfig: + description: Configuration for GKE Gateway API controller. + properties: + channel: + description: The Gateway API release channel to use for Gateway + API. + type: string + required: + - channel + type: object identityServiceConfig: description: Configuration for Identity Service which allows customers to use external identity providers with the K8S API. @@ -534,7 +635,8 @@ spec: properties: enableComponents: description: GKE components exposing logs. Valid values include - SYSTEM_COMPONENTS and WORKLOADS. + SYSTEM_COMPONENTS, APISERVER, CONTROLLER_MANAGER, SCHEDULER, + and WORKLOADS. items: type: string type: array @@ -703,6 +805,10 @@ spec: - cidrBlock type: object type: array + gcpPublicCidrsAccessEnabled: + description: Whether master is accessbile via Google Compute Engine + Public IP addresses. + type: boolean type: object meshCertificates: description: If set, and enable_certificates=true, the GKE Workload @@ -945,6 +1051,11 @@ spec: description: Immutable. The number of local SSD disks to be attached to the node. type: integer + loggingVariant: + description: Type of logging agent that is used as the default + value for node pools in the cluster. Valid values include DEFAULT + and MAX_THROUGHPUT. + type: string machineType: description: Immutable. The name of a Google Compute Engine machine type. @@ -1021,6 +1132,12 @@ spec: required: - consumeReservationType type: object + resourceLabels: + additionalProperties: + type: string + description: The GCE resource labels (a map of key/value pairs) + to be applied to the node pool. + type: object sandboxConfig: description: Immutable. Sandbox configuration for this node. properties: @@ -1154,6 +1271,11 @@ spec: required: - enabled type: object + loggingVariant: + description: Type of logging agent that is used as the default + value for node pools in the cluster. Valid values include + DEFAULT and MAX_THROUGHPUT. + type: string type: object type: object nodeVersion: @@ -1235,10 +1357,10 @@ spec: nodes. properties: enablePrivateEndpoint: - description: Immutable. When true, the cluster's private endpoint - is used as the cluster endpoint and access through the public - endpoint is disabled. When false, either endpoint can be used. - This field only applies to private clusters, when enable_private_nodes + description: When true, the cluster's private endpoint is used + as the cluster endpoint and access through the public endpoint + is disabled. When false, either endpoint can be used. This field + only applies to private clusters, when enable_private_nodes is true. type: boolean enablePrivateNodes: @@ -1274,12 +1396,40 @@ spec: description: The internal IP address of this cluster's master endpoint. type: string + privateEndpointSubnetworkRef: + description: |- + Immutable. Subnetwork in cluster's network where master's endpoint + will be provisioned. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeSubnetwork` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object publicEndpoint: description: The external IP address of this cluster's master endpoint. type: string - required: - - enablePrivateEndpoint type: object privateIpv6GoogleAccess: description: The desired state of IPv6 connectivity to Google Services. diff --git a/crds/container_v1beta1_containernodepool.yaml b/crds/container_v1beta1_containernodepool.yaml index fdd75059a1..9d9271c240 100644 --- a/crds/container_v1beta1_containernodepool.yaml +++ b/crds/container_v1beta1_containernodepool.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -167,6 +167,9 @@ spec: IPs in this node pool. Defaults are provided for pod_range and pod_ipv4_cidr_block if they are not specified. type: boolean + enablePrivateNodes: + description: Whether nodes have internal IP addresses only. + type: boolean podIpv4CidrBlock: description: Immutable. The IP address range for pod IPs in this node pool. Only applicable if create_pod_range is true. Set @@ -181,8 +184,6 @@ spec: range. If create_pod_range is false, uses an existing secondary range with this ID. type: string - required: - - podRange type: object nodeConfig: description: Immutable. The configuration of the nodepool. @@ -332,6 +333,11 @@ spec: description: Immutable. The number of local SSD disks to be attached to the node. type: integer + loggingVariant: + description: Type of logging agent that is used as the default + value for node pools in the cluster. Valid values include DEFAULT + and MAX_THROUGHPUT. + type: string machineType: description: Immutable. The name of a Google Compute Engine machine type. @@ -408,6 +414,12 @@ spec: required: - consumeReservationType type: object + resourceLabels: + additionalProperties: + type: string + description: The GCE resource labels (a map of key/value pairs) + to be applied to the node pool. + type: object sandboxConfig: description: Immutable. Sandbox configuration for this node. properties: @@ -533,6 +545,31 @@ spec: is the sum of max_surge and max_unavailable. The maximum number of nodes upgraded simultaneously is limited to 20. properties: + blueGreenSettings: + description: Settings for BlueGreen node pool upgrade. + properties: + nodePoolSoakDuration: + description: Time needed after draining entire blue pool. + After this period, blue pool will be cleaned up. + type: string + standardRolloutPolicy: + description: Standard rollout policy is the default policy + for blue-green. + properties: + batchNodeCount: + description: Number of blue nodes to drain in a batch. + type: integer + batchPercentage: + description: Percentage of the blue pool nodes to drain + in a batch. + type: number + batchSoakDuration: + description: Soak time after each batch gets drained. + type: string + type: object + required: + - standardRolloutPolicy + type: object maxSurge: description: The number of additional nodes that can be added to the node pool during an upgrade. Increasing max_surge raises @@ -545,9 +582,9 @@ spec: of nodes that can be upgraded in parallel. Can be set to 0 or greater. type: integer - required: - - maxSurge - - maxUnavailable + strategy: + description: Update strategy for the given nodepool. + type: string type: object version: type: string diff --git a/crds/containeranalysis_v1beta1_containeranalysisnote.yaml b/crds/containeranalysis_v1beta1_containeranalysisnote.yaml index 10a04678fd..1c863847ba 100644 --- a/crds/containeranalysis_v1beta1_containeranalysisnote.yaml +++ b/crds/containeranalysis_v1beta1_containeranalysisnote.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/datacatalog_v1beta1_datacatalogpolicytag.yaml b/crds/datacatalog_v1beta1_datacatalogpolicytag.yaml new file mode 100644 index 0000000000..fad62fb00b --- /dev/null +++ b/crds/datacatalog_v1beta1_datacatalogpolicytag.yaml @@ -0,0 +1,208 @@ +# Copyright 2020 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: datacatalogpolicytags.datacatalog.cnrm.cloud.google.com +spec: + group: datacatalog.cnrm.cloud.google.com + names: + categories: + - gcp + kind: DataCatalogPolicyTag + plural: datacatalogpolicytags + shortNames: + - gcpdatacatalogpolicytag + - gcpdatacatalogpolicytags + singular: datacatalogpolicytag + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + description: + description: |- + Description of this policy tag. It must: contain only unicode characters, tabs, + newlines, carriage returns and page breaks; and be at most 2000 bytes long when + encoded in UTF-8. If not set, defaults to an empty description. + If not set, defaults to an empty description. + type: string + displayName: + description: |- + User defined name of this policy tag. It must: be unique within the parent + taxonomy; contain only unicode letters, numbers, underscores, dashes and spaces; + not start or end with spaces; and be at most 200 bytes long when encoded in UTF-8. + type: string + parentPolicyTagRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `DataCatalogPolicyTag` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + taxonomyRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `DataCatalogTaxonomy` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - displayName + - taxonomyRef + type: object + status: + properties: + childPolicyTags: + description: Resource names of child policy tags of this policy tag. + items: + type: string + type: array + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + name: + description: |- + Resource name of this policy tag, whose format is: + "projects/{project}/locations/{region}/taxonomies/{taxonomy}/policyTags/{policytag}". + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] diff --git a/crds/datacatalog_v1beta1_datacatalogtaxonomy.yaml b/crds/datacatalog_v1beta1_datacatalogtaxonomy.yaml index 40b2e34b65..ff493e6578 100644 --- a/crds/datacatalog_v1beta1_datacatalogtaxonomy.yaml +++ b/crds/datacatalog_v1beta1_datacatalogtaxonomy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/dataflow_v1beta1_dataflowflextemplatejob.yaml b/crds/dataflow_v1beta1_dataflowflextemplatejob.yaml index e89b5c8278..18cac5feae 100644 --- a/crds/dataflow_v1beta1_dataflowflextemplatejob.yaml +++ b/crds/dataflow_v1beta1_dataflowflextemplatejob.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/dataflow_v1beta1_dataflowjob.yaml b/crds/dataflow_v1beta1_dataflowjob.yaml index 1fe1d31f97..02554095a2 100644 --- a/crds/dataflow_v1beta1_dataflowjob.yaml +++ b/crds/dataflow_v1beta1_dataflowjob.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/datafusion_v1beta1_datafusioninstance.yaml b/crds/datafusion_v1beta1_datafusioninstance.yaml index 1a72706533..abe3000087 100644 --- a/crds/datafusion_v1beta1_datafusioninstance.yaml +++ b/crds/datafusion_v1beta1_datafusioninstance.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/dataproc_v1beta1_dataprocautoscalingpolicy.yaml b/crds/dataproc_v1beta1_dataprocautoscalingpolicy.yaml index 298b52604c..13ced7eeb5 100644 --- a/crds/dataproc_v1beta1_dataprocautoscalingpolicy.yaml +++ b/crds/dataproc_v1beta1_dataprocautoscalingpolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/dataproc_v1beta1_dataproccluster.yaml b/crds/dataproc_v1beta1_dataproccluster.yaml index 44b075d1a0..7891b6f0be 100644 --- a/crds/dataproc_v1beta1_dataproccluster.yaml +++ b/crds/dataproc_v1beta1_dataproccluster.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/dataproc_v1beta1_dataprocworkflowtemplate.yaml b/crds/dataproc_v1beta1_dataprocworkflowtemplate.yaml index dc0b6e5eeb..67a5ca49a4 100644 --- a/crds/dataproc_v1beta1_dataprocworkflowtemplate.yaml +++ b/crds/dataproc_v1beta1_dataprocworkflowtemplate.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/dlp_v1beta1_dlpdeidentifytemplate.yaml b/crds/dlp_v1beta1_dlpdeidentifytemplate.yaml index 1e49f16b21..e691ec38ee 100644 --- a/crds/dlp_v1beta1_dlpdeidentifytemplate.yaml +++ b/crds/dlp_v1beta1_dlpdeidentifytemplate.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/dlp_v1beta1_dlpinspecttemplate.yaml b/crds/dlp_v1beta1_dlpinspecttemplate.yaml index 51029ccc9e..fba214b2bf 100644 --- a/crds/dlp_v1beta1_dlpinspecttemplate.yaml +++ b/crds/dlp_v1beta1_dlpinspecttemplate.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/dlp_v1beta1_dlpjobtrigger.yaml b/crds/dlp_v1beta1_dlpjobtrigger.yaml index cb58bc85cf..6f3c13bde3 100644 --- a/crds/dlp_v1beta1_dlpjobtrigger.yaml +++ b/crds/dlp_v1beta1_dlpjobtrigger.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/dlp_v1beta1_dlpstoredinfotype.yaml b/crds/dlp_v1beta1_dlpstoredinfotype.yaml index bb5b071758..a83c4ba72a 100644 --- a/crds/dlp_v1beta1_dlpstoredinfotype.yaml +++ b/crds/dlp_v1beta1_dlpstoredinfotype.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/dns_v1beta1_dnsmanagedzone.yaml b/crds/dns_v1beta1_dnsmanagedzone.yaml index 98d3b5c5d0..1adc8387ba 100644 --- a/crds/dns_v1beta1_dnsmanagedzone.yaml +++ b/crds/dns_v1beta1_dnsmanagedzone.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -211,6 +211,47 @@ spec: For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. properties: + gkeClusters: + description: The list of Google Kubernetes Engine clusters that + can see this zone. + items: + properties: + gkeClusterNameRef: + description: |- + The resource name of the cluster to bind this ManagedZone to. + This should be specified in the format like + 'projects/*/locations/*/clusters/*'. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of + a `ContainerCluster` resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: + https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - gkeClusterNameRef + type: object + type: array networks: items: properties: diff --git a/crds/dns_v1beta1_dnspolicy.yaml b/crds/dns_v1beta1_dnspolicy.yaml index b89d8bf318..b445c58e90 100644 --- a/crds/dns_v1beta1_dnspolicy.yaml +++ b/crds/dns_v1beta1_dnspolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/dns_v1beta1_dnsrecordset.yaml b/crds/dns_v1beta1_dnsrecordset.yaml index aa1d009db0..4db36a3293 100644 --- a/crds/dns_v1beta1_dnsrecordset.yaml +++ b/crds/dns_v1beta1_dnsrecordset.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/eventarc_v1beta1_eventarctrigger.yaml b/crds/eventarc_v1beta1_eventarctrigger.yaml index 66bd3b2ceb..b16e6fd98c 100644 --- a/crds/eventarc_v1beta1_eventarctrigger.yaml +++ b/crds/eventarc_v1beta1_eventarctrigger.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/filestore_v1beta1_filestorebackup.yaml b/crds/filestore_v1beta1_filestorebackup.yaml index 83454c10e1..a1692c08c6 100644 --- a/crds/filestore_v1beta1_filestorebackup.yaml +++ b/crds/filestore_v1beta1_filestorebackup.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/filestore_v1beta1_filestoreinstance.yaml b/crds/filestore_v1beta1_filestoreinstance.yaml index 7c8b04ad3b..0ba52ff788 100644 --- a/crds/filestore_v1beta1_filestoreinstance.yaml +++ b/crds/filestore_v1beta1_filestoreinstance.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/firestore_v1beta1_firestoreindex.yaml b/crds/firestore_v1beta1_firestoreindex.yaml index 3aece6c635..a821503134 100644 --- a/crds/firestore_v1beta1_firestoreindex.yaml +++ b/crds/firestore_v1beta1_firestoreindex.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/gameservices_v1beta1_gameservicesrealm.yaml b/crds/gameservices_v1beta1_gameservicesrealm.yaml index b8eac74e96..03449d5943 100644 --- a/crds/gameservices_v1beta1_gameservicesrealm.yaml +++ b/crds/gameservices_v1beta1_gameservicesrealm.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/gkehub_v1beta1_gkehubfeature.yaml b/crds/gkehub_v1beta1_gkehubfeature.yaml index d04fc42fff..99098befcb 100644 --- a/crds/gkehub_v1beta1_gkehubfeature.yaml +++ b/crds/gkehub_v1beta1_gkehubfeature.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/gkehub_v1beta1_gkehubfeaturemembership.yaml b/crds/gkehub_v1beta1_gkehubfeaturemembership.yaml index 9abc06ed45..fcd66e8f98 100644 --- a/crds/gkehub_v1beta1_gkehubfeaturemembership.yaml +++ b/crds/gkehub_v1beta1_gkehubfeaturemembership.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -148,6 +148,57 @@ spec: Default: 15.' type: string type: object + oci: + properties: + gcpServiceAccountRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: "The GCP Service Account Email used for + auth when secret_type is gcpserviceaccount. \n\nAllowed + value: The `email` field of an `IAMServiceAccount` + resource." + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: + https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + policyDir: + description: 'The absolute path of the directory that + contains the local resources. Default: the root directory + of the image.' + type: string + secretType: + description: Type of secret configured for access to the + OCI Image. Must be one of gcenode, gcpserviceaccount + or none. The validation of this is case-sensitive. + type: string + syncRepo: + description: The OCI image repository URL for the package + to sync from. e.g. LOCATION-docker.pkg.dev/PROJECT_ID/REPOSITORY_NAME/PACKAGE_NAME. + type: string + syncWaitSecs: + description: 'Period in seconds(int64 format) between + consecutive syncs. Default: 15.' + type: string + type: object preventDrift: description: Set to true to enable the Config Sync admission webhook to prevent drifts. If set to `false`, disables the @@ -296,6 +347,11 @@ spec: mesh: description: Manage Mesh Features properties: + controlPlane: + description: 'Whether to automatically manage Service Mesh control + planes. Possible values: CONTROL_PLANE_MANAGEMENT_UNSPECIFIED, + AUTOMATIC, MANUAL' + type: string management: description: 'Whether to automatically manage Service Mesh. Possible values: MANAGEMENT_UNSPECIFIED, MANAGEMENT_AUTOMATIC, MANAGEMENT_MANUAL' diff --git a/crds/gkehub_v1beta1_gkehubmembership.yaml b/crds/gkehub_v1beta1_gkehubmembership.yaml index 392f95fbfe..06310dbfd3 100644 --- a/crds/gkehub_v1beta1_gkehubmembership.yaml +++ b/crds/gkehub_v1beta1_gkehubmembership.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/iam_v1beta1_iamauditconfig.yaml b/crds/iam_v1beta1_iamauditconfig.yaml index 1fc720122d..3b353290f4 100644 --- a/crds/iam_v1beta1_iamauditconfig.yaml +++ b/crds/iam_v1beta1_iamauditconfig.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/iam_v1beta1_iamcustomrole.yaml b/crds/iam_v1beta1_iamcustomrole.yaml index c170d42f7b..7537dd7568 100644 --- a/crds/iam_v1beta1_iamcustomrole.yaml +++ b/crds/iam_v1beta1_iamcustomrole.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/iam_v1beta1_iampartialpolicy.yaml b/crds/iam_v1beta1_iampartialpolicy.yaml index 244a24bb35..c399e3a271 100644 --- a/crds/iam_v1beta1_iampartialpolicy.yaml +++ b/crds/iam_v1beta1_iampartialpolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/iam_v1beta1_iampolicy.yaml b/crds/iam_v1beta1_iampolicy.yaml index 0f8485cb2d..b0bf163c47 100644 --- a/crds/iam_v1beta1_iampolicy.yaml +++ b/crds/iam_v1beta1_iampolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/iam_v1beta1_iampolicymember.yaml b/crds/iam_v1beta1_iampolicymember.yaml index 9e558a85c9..c019898686 100644 --- a/crds/iam_v1beta1_iampolicymember.yaml +++ b/crds/iam_v1beta1_iampolicymember.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/iam_v1beta1_iamserviceaccount.yaml b/crds/iam_v1beta1_iamserviceaccount.yaml index 1ece9da940..87c40a2342 100644 --- a/crds/iam_v1beta1_iamserviceaccount.yaml +++ b/crds/iam_v1beta1_iamserviceaccount.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/iam_v1beta1_iamserviceaccountkey.yaml b/crds/iam_v1beta1_iamserviceaccountkey.yaml index 4231571a14..0bb44beeec 100644 --- a/crds/iam_v1beta1_iamserviceaccountkey.yaml +++ b/crds/iam_v1beta1_iamserviceaccountkey.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/iam_v1beta1_iamworkforcepool.yaml b/crds/iam_v1beta1_iamworkforcepool.yaml index 995eb98123..e85cbf5311 100644 --- a/crds/iam_v1beta1_iamworkforcepool.yaml +++ b/crds/iam_v1beta1_iamworkforcepool.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/iam_v1beta1_iamworkforcepoolprovider.yaml b/crds/iam_v1beta1_iamworkforcepoolprovider.yaml index f0b74ec426..bef38e8802 100644 --- a/crds/iam_v1beta1_iamworkforcepoolprovider.yaml +++ b/crds/iam_v1beta1_iamworkforcepoolprovider.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/iam_v1beta1_iamworkloadidentitypool.yaml b/crds/iam_v1beta1_iamworkloadidentitypool.yaml index f90b80e1e1..f10d318339 100644 --- a/crds/iam_v1beta1_iamworkloadidentitypool.yaml +++ b/crds/iam_v1beta1_iamworkloadidentitypool.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/iam_v1beta1_iamworkloadidentitypoolprovider.yaml b/crds/iam_v1beta1_iamworkloadidentitypoolprovider.yaml index c199f5bc9d..80e0fbd603 100644 --- a/crds/iam_v1beta1_iamworkloadidentitypoolprovider.yaml +++ b/crds/iam_v1beta1_iamworkloadidentitypoolprovider.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/iap_v1beta1_iapbrand.yaml b/crds/iap_v1beta1_iapbrand.yaml index a27a4f20df..72c3af3a17 100644 --- a/crds/iap_v1beta1_iapbrand.yaml +++ b/crds/iap_v1beta1_iapbrand.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/iap_v1beta1_iapidentityawareproxyclient.yaml b/crds/iap_v1beta1_iapidentityawareproxyclient.yaml index f18b8cd81e..2bcf098e60 100644 --- a/crds/iap_v1beta1_iapidentityawareproxyclient.yaml +++ b/crds/iap_v1beta1_iapidentityawareproxyclient.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/identityplatform_v1beta1_identityplatformconfig.yaml b/crds/identityplatform_v1beta1_identityplatformconfig.yaml index e276a48e9a..931a989809 100644 --- a/crds/identityplatform_v1beta1_identityplatformconfig.yaml +++ b/crds/identityplatform_v1beta1_identityplatformconfig.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/identityplatform_v1beta1_identityplatformoauthidpconfig.yaml b/crds/identityplatform_v1beta1_identityplatformoauthidpconfig.yaml index b490a8ad96..4028f31435 100644 --- a/crds/identityplatform_v1beta1_identityplatformoauthidpconfig.yaml +++ b/crds/identityplatform_v1beta1_identityplatformoauthidpconfig.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/identityplatform_v1beta1_identityplatformtenant.yaml b/crds/identityplatform_v1beta1_identityplatformtenant.yaml index 2a7b92700e..6cc2c5cf89 100644 --- a/crds/identityplatform_v1beta1_identityplatformtenant.yaml +++ b/crds/identityplatform_v1beta1_identityplatformtenant.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/identityplatform_v1beta1_identityplatformtenantoauthidpconfig.yaml b/crds/identityplatform_v1beta1_identityplatformtenantoauthidpconfig.yaml index bd600dc9f1..46b71c1f30 100644 --- a/crds/identityplatform_v1beta1_identityplatformtenantoauthidpconfig.yaml +++ b/crds/identityplatform_v1beta1_identityplatformtenantoauthidpconfig.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/kms_v1beta1_kmscryptokey.yaml b/crds/kms_v1beta1_kmscryptokey.yaml index e470e1fa3e..7426292087 100644 --- a/crds/kms_v1beta1_kmscryptokey.yaml +++ b/crds/kms_v1beta1_kmscryptokey.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/kms_v1beta1_kmskeyring.yaml b/crds/kms_v1beta1_kmskeyring.yaml index 04b91c2632..b2731a37e8 100644 --- a/crds/kms_v1beta1_kmskeyring.yaml +++ b/crds/kms_v1beta1_kmskeyring.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/logging_v1beta1_logginglogbucket.yaml b/crds/logging_v1beta1_logginglogbucket.yaml index 1e54e5c039..00d84e2a6c 100644 --- a/crds/logging_v1beta1_logginglogbucket.yaml +++ b/crds/logging_v1beta1_logginglogbucket.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/logging_v1beta1_logginglogexclusion.yaml b/crds/logging_v1beta1_logginglogexclusion.yaml index 800f528074..798a0c82fb 100644 --- a/crds/logging_v1beta1_logginglogexclusion.yaml +++ b/crds/logging_v1beta1_logginglogexclusion.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/logging_v1beta1_logginglogmetric.yaml b/crds/logging_v1beta1_logginglogmetric.yaml index 572141b1b5..24e7f770bb 100644 --- a/crds/logging_v1beta1_logginglogmetric.yaml +++ b/crds/logging_v1beta1_logginglogmetric.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/logging_v1beta1_logginglogsink.yaml b/crds/logging_v1beta1_logginglogsink.yaml index 2111c0c1d1..eff0db957a 100644 --- a/crds/logging_v1beta1_logginglogsink.yaml +++ b/crds/logging_v1beta1_logginglogsink.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/logging_v1beta1_logginglogview.yaml b/crds/logging_v1beta1_logginglogview.yaml index e4075eb986..f58256ce31 100644 --- a/crds/logging_v1beta1_logginglogview.yaml +++ b/crds/logging_v1beta1_logginglogview.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/memcache_v1beta1_memcacheinstance.yaml b/crds/memcache_v1beta1_memcacheinstance.yaml index f0b22da68f..718d740970 100644 --- a/crds/memcache_v1beta1_memcacheinstance.yaml +++ b/crds/memcache_v1beta1_memcacheinstance.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/monitoring_v1beta1_monitoringalertpolicy.yaml b/crds/monitoring_v1beta1_monitoringalertpolicy.yaml index 4121059414..6286e440b1 100644 --- a/crds/monitoring_v1beta1_monitoringalertpolicy.yaml +++ b/crds/monitoring_v1beta1_monitoringalertpolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/monitoring_v1beta1_monitoringdashboard.yaml b/crds/monitoring_v1beta1_monitoringdashboard.yaml index ac4ae6e48c..bfa3679991 100644 --- a/crds/monitoring_v1beta1_monitoringdashboard.yaml +++ b/crds/monitoring_v1beta1_monitoringdashboard.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/monitoring_v1beta1_monitoringgroup.yaml b/crds/monitoring_v1beta1_monitoringgroup.yaml index b214d936ea..313a13f801 100644 --- a/crds/monitoring_v1beta1_monitoringgroup.yaml +++ b/crds/monitoring_v1beta1_monitoringgroup.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/monitoring_v1beta1_monitoringmetricdescriptor.yaml b/crds/monitoring_v1beta1_monitoringmetricdescriptor.yaml index 95524898c1..f754c52c39 100644 --- a/crds/monitoring_v1beta1_monitoringmetricdescriptor.yaml +++ b/crds/monitoring_v1beta1_monitoringmetricdescriptor.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/monitoring_v1beta1_monitoringmonitoredproject.yaml b/crds/monitoring_v1beta1_monitoringmonitoredproject.yaml index 5f115aa700..09c10ea479 100644 --- a/crds/monitoring_v1beta1_monitoringmonitoredproject.yaml +++ b/crds/monitoring_v1beta1_monitoringmonitoredproject.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/monitoring_v1beta1_monitoringnotificationchannel.yaml b/crds/monitoring_v1beta1_monitoringnotificationchannel.yaml index 621735016a..974916103a 100644 --- a/crds/monitoring_v1beta1_monitoringnotificationchannel.yaml +++ b/crds/monitoring_v1beta1_monitoringnotificationchannel.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/monitoring_v1beta1_monitoringservice.yaml b/crds/monitoring_v1beta1_monitoringservice.yaml index 517e5c6bbe..e73722a4d3 100644 --- a/crds/monitoring_v1beta1_monitoringservice.yaml +++ b/crds/monitoring_v1beta1_monitoringservice.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/monitoring_v1beta1_monitoringservicelevelobjective.yaml b/crds/monitoring_v1beta1_monitoringservicelevelobjective.yaml index 158ed3850f..a3532f656a 100644 --- a/crds/monitoring_v1beta1_monitoringservicelevelobjective.yaml +++ b/crds/monitoring_v1beta1_monitoringservicelevelobjective.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/monitoring_v1beta1_monitoringuptimecheckconfig.yaml b/crds/monitoring_v1beta1_monitoringuptimecheckconfig.yaml index 330618c983..6a8f6e545e 100644 --- a/crds/monitoring_v1beta1_monitoringuptimecheckconfig.yaml +++ b/crds/monitoring_v1beta1_monitoringuptimecheckconfig.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/networkconnectivity_v1beta1_networkconnectivityhub.yaml b/crds/networkconnectivity_v1beta1_networkconnectivityhub.yaml index d3505c6697..78aee87a07 100644 --- a/crds/networkconnectivity_v1beta1_networkconnectivityhub.yaml +++ b/crds/networkconnectivity_v1beta1_networkconnectivityhub.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/networkconnectivity_v1beta1_networkconnectivityspoke.yaml b/crds/networkconnectivity_v1beta1_networkconnectivityspoke.yaml index 171bcaa376..75f0a31420 100644 --- a/crds/networkconnectivity_v1beta1_networkconnectivityspoke.yaml +++ b/crds/networkconnectivity_v1beta1_networkconnectivityspoke.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/networksecurity_v1beta1_networksecurityauthorizationpolicy.yaml b/crds/networksecurity_v1beta1_networksecurityauthorizationpolicy.yaml index 0c0d6097cb..e77dc920be 100644 --- a/crds/networksecurity_v1beta1_networksecurityauthorizationpolicy.yaml +++ b/crds/networksecurity_v1beta1_networksecurityauthorizationpolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/networksecurity_v1beta1_networksecurityclienttlspolicy.yaml b/crds/networksecurity_v1beta1_networksecurityclienttlspolicy.yaml index 3d9ec5a177..5d5d011fd3 100644 --- a/crds/networksecurity_v1beta1_networksecurityclienttlspolicy.yaml +++ b/crds/networksecurity_v1beta1_networksecurityclienttlspolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/networksecurity_v1beta1_networksecurityservertlspolicy.yaml b/crds/networksecurity_v1beta1_networksecurityservertlspolicy.yaml index 84a9846aab..caa03c82b4 100644 --- a/crds/networksecurity_v1beta1_networksecurityservertlspolicy.yaml +++ b/crds/networksecurity_v1beta1_networksecurityservertlspolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/networkservices_v1beta1_networkservicesendpointpolicy.yaml b/crds/networkservices_v1beta1_networkservicesendpointpolicy.yaml index 663624c447..6d4d443d61 100644 --- a/crds/networkservices_v1beta1_networkservicesendpointpolicy.yaml +++ b/crds/networkservices_v1beta1_networkservicesendpointpolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/networkservices_v1beta1_networkservicesgateway.yaml b/crds/networkservices_v1beta1_networkservicesgateway.yaml index e73f71533b..4eed100c4b 100644 --- a/crds/networkservices_v1beta1_networkservicesgateway.yaml +++ b/crds/networkservices_v1beta1_networkservicesgateway.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -79,35 +79,6 @@ spec: items: type: string type: array - authorizationPolicyRef: - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: |- - Optional. A fully-qualified AuthorizationPolicy URL reference. Specifies how traffic is authorized. If empty, authorization checks are disabled. - - Allowed value: The Google Cloud resource name of a `NetworkSecurityAuthorizationPolicy` resource (format: `projects/{{project}}/locations/{{location}}/authorizationPolicies/{{name}}`). - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' - type: string - namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' - type: string - type: object description: description: Optional. A free-text description of the resource. Max length 1024 characters. diff --git a/crds/networkservices_v1beta1_networkservicesgrpcroute.yaml b/crds/networkservices_v1beta1_networkservicesgrpcroute.yaml index 123718818f..d127843c74 100644 --- a/crds/networkservices_v1beta1_networkservicesgrpcroute.yaml +++ b/crds/networkservices_v1beta1_networkservicesgrpcroute.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/networkservices_v1beta1_networkserviceshttproute.yaml b/crds/networkservices_v1beta1_networkserviceshttproute.yaml index ab7462aa44..ffe1861980 100644 --- a/crds/networkservices_v1beta1_networkserviceshttproute.yaml +++ b/crds/networkservices_v1beta1_networkserviceshttproute.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/networkservices_v1beta1_networkservicesmesh.yaml b/crds/networkservices_v1beta1_networkservicesmesh.yaml index d7fb17e8fd..176d33df9d 100644 --- a/crds/networkservices_v1beta1_networkservicesmesh.yaml +++ b/crds/networkservices_v1beta1_networkservicesmesh.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/networkservices_v1beta1_networkservicestcproute.yaml b/crds/networkservices_v1beta1_networkservicestcproute.yaml index ade4118e36..4aebf66f7a 100644 --- a/crds/networkservices_v1beta1_networkservicestcproute.yaml +++ b/crds/networkservices_v1beta1_networkservicestcproute.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/networkservices_v1beta1_networkservicestlsroute.yaml b/crds/networkservices_v1beta1_networkservicestlsroute.yaml index 4c80f733af..d0e5ebbd0c 100644 --- a/crds/networkservices_v1beta1_networkservicestlsroute.yaml +++ b/crds/networkservices_v1beta1_networkservicestlsroute.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/osconfig_v1beta1_osconfigguestpolicy.yaml b/crds/osconfig_v1beta1_osconfigguestpolicy.yaml index f47325fb5b..a66e8c5f1f 100644 --- a/crds/osconfig_v1beta1_osconfigguestpolicy.yaml +++ b/crds/osconfig_v1beta1_osconfigguestpolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/osconfig_v1beta1_osconfigospolicyassignment.yaml b/crds/osconfig_v1beta1_osconfigospolicyassignment.yaml index c64fc1ad4e..75894ec174 100644 --- a/crds/osconfig_v1beta1_osconfigospolicyassignment.yaml +++ b/crds/osconfig_v1beta1_osconfigospolicyassignment.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -916,6 +916,10 @@ spec: - disruptionBudget - minWaitDuration type: object + skipAwaitRollout: + description: Set to true to skip awaiting rollout during resource + creation and update. + type: boolean required: - instanceFilter - location diff --git a/crds/privateca_v1beta1_privatecacapool.yaml b/crds/privateca_v1beta1_privatecacapool.yaml index e1a6cdf0af..fc3145e9d0 100644 --- a/crds/privateca_v1beta1_privatecacapool.yaml +++ b/crds/privateca_v1beta1_privatecacapool.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/privateca_v1beta1_privatecacertificate.yaml b/crds/privateca_v1beta1_privatecacertificate.yaml index 669cc0cb01..60eb11e568 100644 --- a/crds/privateca_v1beta1_privatecacertificate.yaml +++ b/crds/privateca_v1beta1_privatecacertificate.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/privateca_v1beta1_privatecacertificateauthority.yaml b/crds/privateca_v1beta1_privatecacertificateauthority.yaml index 027ddd6d5a..7b317f540f 100644 --- a/crds/privateca_v1beta1_privatecacertificateauthority.yaml +++ b/crds/privateca_v1beta1_privatecacertificateauthority.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/privateca_v1beta1_privatecacertificatetemplate.yaml b/crds/privateca_v1beta1_privatecacertificatetemplate.yaml index 0b05b947a6..a4f34ef018 100644 --- a/crds/privateca_v1beta1_privatecacertificatetemplate.yaml +++ b/crds/privateca_v1beta1_privatecacertificatetemplate.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/pubsub_v1beta1_pubsubschema.yaml b/crds/pubsub_v1beta1_pubsubschema.yaml index a52f0a9193..4e1dc308f8 100644 --- a/crds/pubsub_v1beta1_pubsubschema.yaml +++ b/crds/pubsub_v1beta1_pubsubschema.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/pubsub_v1beta1_pubsubsubscription.yaml b/crds/pubsub_v1beta1_pubsubsubscription.yaml index b06ffaa401..8500321583 100644 --- a/crds/pubsub_v1beta1_pubsubsubscription.yaml +++ b/crds/pubsub_v1beta1_pubsubsubscription.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/pubsub_v1beta1_pubsubtopic.yaml b/crds/pubsub_v1beta1_pubsubtopic.yaml index 88e56c53ee..ec312423c2 100644 --- a/crds/pubsub_v1beta1_pubsubtopic.yaml +++ b/crds/pubsub_v1beta1_pubsubtopic.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/recaptchaenterprise_v1beta1_recaptchaenterprisekey.yaml b/crds/recaptchaenterprise_v1beta1_recaptchaenterprisekey.yaml index 5c7d10f11b..dff7fac7fa 100644 --- a/crds/recaptchaenterprise_v1beta1_recaptchaenterprisekey.yaml +++ b/crds/recaptchaenterprise_v1beta1_recaptchaenterprisekey.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/redis_v1beta1_redisinstance.yaml b/crds/redis_v1beta1_redisinstance.yaml index 574dec0f5f..f45bb320ab 100644 --- a/crds/redis_v1beta1_redisinstance.yaml +++ b/crds/redis_v1beta1_redisinstance.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -269,7 +269,7 @@ spec: description: Redis memory size in GiB. type: integer persistenceConfig: - description: Maintenance policy for an instance. + description: Persistence configuration for an instance. properties: persistenceMode: description: "Optional. Controls whether Persistence features diff --git a/crds/resourcemanager_v1beta1_folder.yaml b/crds/resourcemanager_v1beta1_folder.yaml index 84ed4b8df8..cd4774a4a2 100644 --- a/crds/resourcemanager_v1beta1_folder.yaml +++ b/crds/resourcemanager_v1beta1_folder.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/resourcemanager_v1beta1_project.yaml b/crds/resourcemanager_v1beta1_project.yaml index 9932157d9d..4c1567fbbd 100644 --- a/crds/resourcemanager_v1beta1_project.yaml +++ b/crds/resourcemanager_v1beta1_project.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/resourcemanager_v1beta1_resourcemanagerlien.yaml b/crds/resourcemanager_v1beta1_resourcemanagerlien.yaml index 62f4af0714..3afcd1122e 100644 --- a/crds/resourcemanager_v1beta1_resourcemanagerlien.yaml +++ b/crds/resourcemanager_v1beta1_resourcemanagerlien.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/resourcemanager_v1beta1_resourcemanagerpolicy.yaml b/crds/resourcemanager_v1beta1_resourcemanagerpolicy.yaml index b631a73df4..c03173a103 100644 --- a/crds/resourcemanager_v1beta1_resourcemanagerpolicy.yaml +++ b/crds/resourcemanager_v1beta1_resourcemanagerpolicy.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/run_v1beta1_runservice.yaml b/crds/run_v1beta1_runservice.yaml index 264db4a2fe..8087496aa3 100644 --- a/crds/run_v1beta1_runservice.yaml +++ b/crds/run_v1beta1_runservice.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/crds/secretmanager_v1beta1_secretmanagersecret.yaml b/crds/secretmanager_v1beta1_secretmanagersecret.yaml index 505b7ff440..c0be55184c 100644 --- a/crds/secretmanager_v1beta1_secretmanagersecret.yaml +++ b/crds/secretmanager_v1beta1_secretmanagersecret.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/secretmanager_v1beta1_secretmanagersecretversion.yaml b/crds/secretmanager_v1beta1_secretmanagersecretversion.yaml index c30aadf073..f6a458e012 100644 --- a/crds/secretmanager_v1beta1_secretmanagersecretversion.yaml +++ b/crds/secretmanager_v1beta1_secretmanagersecretversion.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/servicedirectory_v1beta1_servicedirectoryendpoint.yaml b/crds/servicedirectory_v1beta1_servicedirectoryendpoint.yaml index 83d1915529..3816d36246 100644 --- a/crds/servicedirectory_v1beta1_servicedirectoryendpoint.yaml +++ b/crds/servicedirectory_v1beta1_servicedirectoryendpoint.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/servicedirectory_v1beta1_servicedirectorynamespace.yaml b/crds/servicedirectory_v1beta1_servicedirectorynamespace.yaml index 42e90c443a..93be46bf32 100644 --- a/crds/servicedirectory_v1beta1_servicedirectorynamespace.yaml +++ b/crds/servicedirectory_v1beta1_servicedirectorynamespace.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/servicedirectory_v1beta1_servicedirectoryservice.yaml b/crds/servicedirectory_v1beta1_servicedirectoryservice.yaml index 24b5860e39..35f93629d5 100644 --- a/crds/servicedirectory_v1beta1_servicedirectoryservice.yaml +++ b/crds/servicedirectory_v1beta1_servicedirectoryservice.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/servicenetworking_v1beta1_servicenetworkingconnection.yaml b/crds/servicenetworking_v1beta1_servicenetworkingconnection.yaml index 7f764436d2..d18972d3ba 100644 --- a/crds/servicenetworking_v1beta1_servicenetworkingconnection.yaml +++ b/crds/servicenetworking_v1beta1_servicenetworkingconnection.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/serviceusage_v1beta1_service.yaml b/crds/serviceusage_v1beta1_service.yaml index 75183241fa..473c60c7cd 100644 --- a/crds/serviceusage_v1beta1_service.yaml +++ b/crds/serviceusage_v1beta1_service.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/sourcerepo_v1beta1_sourcereporepository.yaml b/crds/sourcerepo_v1beta1_sourcereporepository.yaml index e28f7a4380..ada069771c 100644 --- a/crds/sourcerepo_v1beta1_sourcereporepository.yaml +++ b/crds/sourcerepo_v1beta1_sourcereporepository.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/spanner_v1beta1_spannerdatabase.yaml b/crds/spanner_v1beta1_spannerdatabase.yaml index f66d6483a3..5307492103 100644 --- a/crds/spanner_v1beta1_spannerdatabase.yaml +++ b/crds/spanner_v1beta1_spannerdatabase.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/spanner_v1beta1_spannerinstance.yaml b/crds/spanner_v1beta1_spannerinstance.yaml index 3966b59d9b..e3c59e331b 100644 --- a/crds/spanner_v1beta1_spannerinstance.yaml +++ b/crds/spanner_v1beta1_spannerinstance.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/sql_v1beta1_sqldatabase.yaml b/crds/sql_v1beta1_sqldatabase.yaml index cd636d46f6..7c1aceed84 100644 --- a/crds/sql_v1beta1_sqldatabase.yaml +++ b/crds/sql_v1beta1_sqldatabase.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -87,6 +87,13 @@ spec: for more details and supported values. Postgres databases only support a value of 'en_US.UTF8' at creation time. type: string + deletionPolicy: + description: "The deletion policy for the database. Setting ABANDON + allows the resource \nto be abandoned rather than deleted. This + is useful for Postgres, where databases cannot be \ndeleted from + the API if there are users other than cloudsqlsuperuser with access. + Possible \nvalues are: \"ABANDON\", \"DELETE\". Defaults to \"DELETE\"." + type: string instanceRef: description: The Cloud SQL instance. oneOf: diff --git a/crds/sql_v1beta1_sqlinstance.yaml b/crds/sql_v1beta1_sqlinstance.yaml index 26d97aadb2..f2fd8e5787 100644 --- a/crds/sql_v1beta1_sqlinstance.yaml +++ b/crds/sql_v1beta1_sqlinstance.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -344,6 +344,9 @@ spec: collation: description: Immutable. The name of server instance collation. type: string + connectorEnforcement: + description: Specifies if connections must use Cloud SQL connectors. + type: string crashSafeReplication: description: |- DEPRECATED. This property is only applicable to First Generation instances, and First Generation instances are now deprecated. see https://cloud.google.com/sql/docs/mysql/deprecation-notice for information on how to upgrade to Second Generation instances. @@ -363,6 +366,28 @@ spec: - value type: object type: array + denyMaintenancePeriod: + properties: + endDate: + description: End date before which maintenance will not take + place. The date is in format yyyy-mm-dd i.e., 2020-11-01, + or mm-dd, i.e., 11-01. + type: string + startDate: + description: Start date after which maintenance will not take + place. The date is in format yyyy-mm-dd i.e., 2020-11-01, + or mm-dd, i.e., 11-01. + type: string + time: + description: 'Time in UTC when the "deny maintenance period" + starts on start_date and ends on end_date. The time is in + format: HH:mm:SS, i.e., 00:00:00.' + type: string + required: + - endDate + - startDate + - time + type: object diskAutoresize: description: Enables auto-resizing of the storage size. Defaults to true. @@ -387,6 +412,11 @@ spec: queryInsightsEnabled: description: True if Query Insights feature is enabled. type: boolean + queryPlansPerMinute: + description: Number of query execution plans captured by Insights + per minute for all queries combined. Between 0 and 20. Default + to 5. + type: integer queryStringLength: description: Maximum query length stored in bytes. Between 256 and 4500. Default to 1024. @@ -569,7 +599,7 @@ spec: custom machine types. type: string timeZone: - description: Immutable. The timezone to be used by the database + description: Immutable. The time_zone to be used by the database engine (supported only for SQL Server), in SQL Server timezone format. type: string diff --git a/crds/sql_v1beta1_sqlsslcert.yaml b/crds/sql_v1beta1_sqlsslcert.yaml index 963b58b6dc..8f3fd18c75 100644 --- a/crds/sql_v1beta1_sqlsslcert.yaml +++ b/crds/sql_v1beta1_sqlsslcert.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/sql_v1beta1_sqluser.yaml b/crds/sql_v1beta1_sqluser.yaml index f212449c0f..6bba13c798 100644 --- a/crds/sql_v1beta1_sqluser.yaml +++ b/crds/sql_v1beta1_sqluser.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/storage_v1beta1_storagebucket.yaml b/crds/storage_v1beta1_storagebucket.yaml index 0ac33594b3..e46511a16a 100644 --- a/crds/storage_v1beta1_storagebucket.yaml +++ b/crds/storage_v1beta1_storagebucket.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -71,6 +71,17 @@ spec: type: object spec: properties: + autoclass: + description: Immutable. The bucket's autoclass configuration. + properties: + enabled: + description: Immutable. While set to true, autoclass automatically + transitions objects in your bucket to appropriate storage classes + based on each object's access pattern. + type: boolean + required: + - enabled + type: object bucketPolicyOnly: description: |- DEPRECATED. Please use the `uniformBucketLevelAccess` field as this field has been renamed by Google. The `uniformBucketLevelAccess` field will supersede this field. @@ -176,7 +187,8 @@ spec: type: string type: description: 'The type of the action of this Lifecycle Rule. - Supported values include: Delete and SetStorageClass.' + Supported values include: Delete, SetStorageClass and + AbortIncompleteMultipartUpload.' type: string required: - type diff --git a/crds/storage_v1beta1_storagebucketaccesscontrol.yaml b/crds/storage_v1beta1_storagebucketaccesscontrol.yaml index 05dae6a42e..8128dcccd7 100644 --- a/crds/storage_v1beta1_storagebucketaccesscontrol.yaml +++ b/crds/storage_v1beta1_storagebucketaccesscontrol.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/storage_v1beta1_storagedefaultobjectaccesscontrol.yaml b/crds/storage_v1beta1_storagedefaultobjectaccesscontrol.yaml index a762115f75..4aba561613 100644 --- a/crds/storage_v1beta1_storagedefaultobjectaccesscontrol.yaml +++ b/crds/storage_v1beta1_storagedefaultobjectaccesscontrol.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/storage_v1beta1_storagenotification.yaml b/crds/storage_v1beta1_storagenotification.yaml index c1d31d1f48..cec8c52d00 100644 --- a/crds/storage_v1beta1_storagenotification.yaml +++ b/crds/storage_v1beta1_storagenotification.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/storagetransfer_v1beta1_storagetransferjob.yaml b/crds/storagetransfer_v1beta1_storagetransferjob.yaml index 1202e25b88..5301382ec8 100644 --- a/crds/storagetransfer_v1beta1_storagetransferjob.yaml +++ b/crds/storagetransfer_v1beta1_storagetransferjob.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" diff --git a/crds/tags_v1beta1_tagstagkey.yaml b/crds/tags_v1beta1_tagstagkey.yaml new file mode 100644 index 0000000000..b8d1653b63 --- /dev/null +++ b/crds/tags_v1beta1_tagstagkey.yaml @@ -0,0 +1,177 @@ +# Copyright 2020 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: tagstagkeys.tags.cnrm.cloud.google.com +spec: + group: tags.cnrm.cloud.google.com + names: + categories: + - gcp + kind: TagsTagKey + plural: tagstagkeys + shortNames: + - gcptagstagkey + - gcptagstagkeys + singular: tagstagkey + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + description: + description: User-assigned description of the TagKey. Must not exceed + 256 characters. + type: string + parent: + description: Immutable. Input only. The resource name of the new TagKey's + parent. Must be of the form organizations/{org_id}. + type: string + purpose: + description: |- + Immutable. Optional. A purpose cannot be changed once set. + + A purpose denotes that this Tag is intended for use in policies of a specific policy engine, and will involve that policy engine in management operations involving this Tag. Possible values: ["GCE_FIREWALL"]. + type: string + purposeData: + additionalProperties: + type: string + description: |- + Immutable. Optional. Purpose data cannot be changed once set. + + Purpose data corresponds to the policy system that the tag is intended for. For example, the GCE_FIREWALL purpose expects data in the following format: 'network = "/"'. + type: object + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + shortName: + description: |- + Immutable. Input only. The user friendly name for a TagKey. The short name should be unique for TagKeys within the same tag namespace. + + The short name must be 1-63 characters, beginning and ending with an alphanumeric character ([a-z0-9A-Z]) with dashes (-), underscores (_), dots (.), and alphanumerics between. + type: string + required: + - parent + - shortName + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + createTime: + description: |- + Output only. Creation time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + name: + description: The generated numeric id for the TagKey. + type: string + namespacedName: + description: Output only. Namespaced name of the TagKey. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + updateTime: + description: |- + Output only. Update time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] diff --git a/crds/tags_v1beta1_tagstagvalue.yaml b/crds/tags_v1beta1_tagstagvalue.yaml new file mode 100644 index 0000000000..3c99758234 --- /dev/null +++ b/crds/tags_v1beta1_tagstagvalue.yaml @@ -0,0 +1,187 @@ +# Copyright 2020 Google LLC +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: tagstagvalues.tags.cnrm.cloud.google.com +spec: + group: tags.cnrm.cloud.google.com + names: + categories: + - gcp + kind: TagsTagValue + plural: tagstagvalues + shortNames: + - gcptagstagvalue + - gcptagstagvalues + singular: tagstagvalue + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + description: + description: User-assigned description of the TagValue. Must not exceed + 256 characters. + type: string + parentRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: string of the format `tagKeys/{{value}}`, + where {{value}} is the `name` field of a `TagsTagKey` resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + shortName: + description: |- + Immutable. Input only. User-assigned short name for TagValue. The short name should be unique for TagValues within the same parent TagKey. + + The short name must be 63 characters or less, beginning and ending with an alphanumeric character ([a-z0-9A-Z]) with dashes (-), underscores (_), dots (.), and alphanumerics between. + type: string + required: + - parentRef + - shortName + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + createTime: + description: |- + Output only. Creation time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + name: + description: The generated numeric id for the TagValue. + type: string + namespacedName: + description: Output only. Namespaced name of the TagValue. Will be + in the format {organizationId}/{tag_key_short_name}/{shortName}. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + updateTime: + description: |- + Output only. Update time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] diff --git a/crds/vpcaccess_v1beta1_vpcaccessconnector.yaml b/crds/vpcaccess_v1beta1_vpcaccessconnector.yaml index 9a0ec1b6d0..22fc44b09d 100644 --- a/crds/vpcaccess_v1beta1_vpcaccessconnector.yaml +++ b/crds/vpcaccess_v1beta1_vpcaccessconnector.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/install-bundles/install-bundle-gcp-identity/0-cnrm-system.yaml b/install-bundles/install-bundle-gcp-identity/0-cnrm-system.yaml index 31992b964d..ddffff5611 100644 --- a/install-bundles/install-bundle-gcp-identity/0-cnrm-system.yaml +++ b/install-bundles/install-bundle-gcp-identity/0-cnrm-system.yaml @@ -16,7 +16,7 @@ apiVersion: v1 kind: Namespace metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-system @@ -25,7 +25,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-controller-manager @@ -35,7 +35,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -45,7 +45,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-resource-stats-recorder @@ -55,7 +55,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-manager @@ -65,7 +65,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-cnrm-system-role @@ -86,7 +86,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-cnrm-system-role @@ -107,7 +107,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -739,6 +739,18 @@ rules: - update - patch - delete +- apiGroups: + - tags.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch + - create + - update + - patch + - delete - apiGroups: - vpcaccess.cnrm.cloud.google.com resources: @@ -756,7 +768,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role @@ -806,7 +818,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-cluster-role @@ -864,7 +876,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-ns-role @@ -889,7 +901,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-role @@ -919,7 +931,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -1342,6 +1354,14 @@ rules: - get - list - watch +- apiGroups: + - tags.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch - apiGroups: - vpcaccess.cnrm.cloud.google.com resources: @@ -1355,7 +1375,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role @@ -1418,7 +1438,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role-binding @@ -1436,7 +1456,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role-binding @@ -1454,7 +1474,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-admin-binding @@ -1477,7 +1497,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-binding @@ -1494,7 +1514,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-binding @@ -1511,7 +1531,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-watcher-binding @@ -1528,7 +1548,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-binding @@ -1545,7 +1565,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-binding @@ -1562,7 +1582,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -1579,7 +1599,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 prometheus.io/port: "8888" prometheus.io/scrape: "true" labels: @@ -1601,7 +1621,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 prometheus.io/port: "48797" prometheus.io/scrape: "true" labels: @@ -1622,7 +1642,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -1640,7 +1660,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -1653,8 +1673,8 @@ spec: - /configconnector/recorder env: - name: CONFIG_CONNECTOR_VERSION - value: 1.98.0 - image: gcr.io/cnrm-eap/recorder:7f098b4 + value: 1.99.0 + image: gcr.io/cnrm-eap/recorder:d3e87a9 imagePullPolicy: Always name: recorder ports: @@ -1688,7 +1708,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -1703,7 +1723,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -1716,7 +1736,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: gcr.io/cnrm-eap/webhook:7f098b4 + image: gcr.io/cnrm-eap/webhook:d3e87a9 imagePullPolicy: Always name: webhook ports: @@ -1746,7 +1766,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/system: "true" @@ -1761,7 +1781,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/system: "true" @@ -1774,7 +1794,7 @@ spec: env: - name: GOOGLE_APPLICATION_CREDENTIALS value: /var/secrets/google/key.json - image: gcr.io/cnrm-eap/controller:7f098b4 + image: gcr.io/cnrm-eap/controller:d3e87a9 imagePullPolicy: Always name: manager ports: @@ -1811,7 +1831,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -1826,7 +1846,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -1834,7 +1854,7 @@ spec: containers: - command: - /configconnector/deletiondefender - image: gcr.io/cnrm-eap/deletiondefender:7f098b4 + image: gcr.io/cnrm-eap/deletiondefender:d3e87a9 imagePullPolicy: Always name: deletiondefender ports: @@ -1865,7 +1885,7 @@ kind: HorizontalPodAutoscaler metadata: annotations: autoscaling.alpha.kubernetes.io/metrics: '[{"type":"Resource","resource":{"name":"memory","targetAverageUtilization":90}}]' - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook diff --git a/install-bundles/install-bundle-gcp-identity/crds.yaml b/install-bundles/install-bundle-gcp-identity/crds.yaml index cb0b6b91ad..703bcd5fb7 100644 --- a/install-bundles/install-bundle-gcp-identity/crds.yaml +++ b/install-bundles/install-bundle-gcp-identity/crds.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -402,7 +402,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -532,7 +532,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -1740,7 +1740,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -1915,7 +1915,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -2209,7 +2209,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -2400,7 +2400,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -2753,7 +2753,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -3594,7 +3594,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4053,7 +4053,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4230,7 +4230,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4289,6 +4289,12 @@ spec: columnFamily: description: Immutable. The name of the column family. type: string + deletionPolicy: + description: "The deletion policy for the GC policy. Setting ABANDON + allows the resource\n\t\t\t\tto be abandoned rather than deleted. + This is useful for GC policy as it cannot be deleted\n\t\t\t\tin + a replicated instance. Possible values are: \"ABANDON\"." + type: string gcRules: description: Serialized JSON string for garbage collection policy. Conflicts with "mode", "max_age" and "max_version". @@ -4322,8 +4328,10 @@ spec: type: string type: object maxAge: - description: Immutable. GC policy that applies to all cells older - than the given age. + description: 'Immutable. NOTE: ''gc_rules'' is more flexible, and + should be preferred over this field for new resources. This field + may be deprecated in the future. GC policy that applies to all cells + older than the given age.' items: properties: days: @@ -4336,8 +4344,10 @@ spec: type: object type: array maxVersion: - description: Immutable. GC policy that applies to all versions of - a cell except for the most recent. + description: 'Immutable. NOTE: ''gc_rules'' is more flexible, and + should be preferred over this field for new resources. This field + may be deprecated in the future. GC policy that applies to all versions + of a cell except for the most recent.' items: properties: number: @@ -4349,8 +4359,10 @@ spec: type: object type: array mode: - description: Immutable. If multiple policies are set, you should choose - between UNION OR INTERSECTION. + description: 'Immutable. NOTE: ''gc_rules'' is more flexible, and + should be preferred over this field for new resources. This field + may be deprecated in the future. If multiple policies are set, you + should choose between UNION OR INTERSECTION.' type: string tableRef: description: The name of the table. @@ -4439,7 +4451,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4665,7 +4677,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4733,6 +4745,13 @@ spec: - family type: object type: array + deletionProtection: + description: A field to make the table protected against data loss + i.e. when set to PROTECTED, deleting the table, the column families + in the table, and the instance containing the table would be prohibited. + If not provided, currently deletion protection will be set to UNPROTECTED + as it is the API default value. + type: string instanceRef: description: The name of the Bigtable instance. oneOf: @@ -4827,7 +4846,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -5286,7 +5305,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -5554,7 +5573,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -5979,7 +5998,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6679,8 +6698,9 @@ spec: repoType: description: "The type of the repo, since it may not be explicit from the repo field (e.g from a URL). \nValues can be UNKNOWN, - CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET Possible values: - [\"UNKNOWN\", \"CLOUD_SOURCE_REPOSITORIES\", \"GITHUB\", \"BITBUCKET\"]." + CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET_SERVER Possible + values: [\"UNKNOWN\", \"CLOUD_SOURCE_REPOSITORIES\", \"GITHUB\", + \"BITBUCKET_SERVER\"]." type: string revision: description: "The branch, tag, arbitrary ref, or SHA version of @@ -6921,7 +6941,7 @@ spec: repoType: description: |- The type of the repo, since it may not be explicit from the repo field (e.g from a URL). - Values can be UNKNOWN, CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET Possible values: ["UNKNOWN", "CLOUD_SOURCE_REPOSITORIES", "GITHUB", "BITBUCKET"]. + Values can be UNKNOWN, CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET_SERVER Possible values: ["UNKNOWN", "CLOUD_SOURCE_REPOSITORIES", "GITHUB", "BITBUCKET_SERVER"]. type: string uri: description: The URI of the repo (required). @@ -7109,7 +7129,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -7541,7 +7561,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -7646,11 +7666,15 @@ spec: additionalProperties: type: string description: |- - Immutable. The labels that apply to the Group. + One or more label entries that apply to the Group. Currently supported labels contain a key with an empty value. + + Google Groups are the default type of group and have a label with a key of cloudidentity.googleapis.com/groups.discussion_forum and an empty value. + + Existing Google Groups can have an additional label with a key of cloudidentity.googleapis.com/groups.security and an empty value added to them. This is an immutable change and the security label cannot be removed once added. - Must not contain more than one entry. Must contain the entry - 'cloudidentity.googleapis.com/groups.discussion_forum': '' if the Group is a Google Group or - 'system/groups/external': '' if the Group is an external-identity-mapped group. + Dynamic groups have a label with a key of cloudidentity.googleapis.com/groups.dynamic. + + Identity-mapped groups for Cloud Search have a label with a key of system/groups/external and an empty value. type: object parent: description: |- @@ -7735,7 +7759,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -8002,7 +8026,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -8540,7 +8564,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -8793,7 +8817,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9063,7 +9087,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9315,6 +9339,13 @@ spec: description: If true requests to different hosts will be cached separately. type: boolean + includeHttpHeaders: + description: |- + Allows HTTP request headers (by name) to be used in the + cache key. + items: + type: string + type: array includeNamedCookies: description: Names of cookies to include in cache keys. items: @@ -10183,7 +10214,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -10834,7 +10865,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -10980,7 +11011,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -11200,7 +11231,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -11392,7 +11423,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -11682,7 +11713,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12062,7 +12093,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12720,7 +12751,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -13184,7 +13215,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -13345,7 +13376,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -13506,7 +13537,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -13785,7 +13816,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -14564,7 +14595,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -14767,7 +14798,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -15706,7 +15737,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16454,7 +16485,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16780,7 +16811,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16990,7 +17021,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -17185,7 +17216,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -17352,7 +17383,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -17561,7 +17592,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -17742,7 +17773,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -18142,7 +18173,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18260,7 +18291,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18566,7 +18597,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18780,7 +18811,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19086,7 +19117,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19170,21 +19201,11 @@ spec: type: string type: object ipRange: - description: Immutable. IP address and range of the interface. The - IP range must be in the RFC3927 link-local IP space. Changing this - forces a new interface to be created. + description: Immutable. The IP address and range of the interface. + The IP range must be in the RFC3927 link-local IP space. Changing + this forces a new interface to be created. type: string - region: - description: Immutable. The region this interface's router sits in. - If not specified, the project region will be used. Changing this - forces a new interface to be created. - type: string - resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. - type: string - routerRef: + privateIpAddressRef: oneOf: - not: required: @@ -19201,7 +19222,7 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `ComputeRouter` + description: 'Allowed value: The `address` field of a `ComputeAddress` resource.' type: string name: @@ -19211,7 +19232,8 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object - vpnTunnelRef: + redundantInterfaceRef: + description: The interface the BGP peer is associated with. oneOf: - not: required: @@ -19228,7 +19250,7 @@ spec: - external properties: external: - description: 'Allowed value: The `selfLink` field of a `ComputeVPNTunnel` + description: 'Allowed value: The `name` field of a `ComputeRouterInterface` resource.' type: string name: @@ -19238,232 +19260,10 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object - required: - - region - - routerRef - type: object - status: - properties: - conditions: - description: Conditions represent the latest available observation - of the resource's current state. - items: - properties: - lastTransitionTime: - description: Last time the condition transitioned from one status - to another. - type: string - message: - description: Human-readable message indicating details about - last transition. - type: string - reason: - description: Unique, one-word, CamelCase reason for the condition's - last transition. - type: string - status: - description: Status is the status of the condition. Can be True, - False, Unknown. - type: string - type: - description: Type is the type of the condition. - type: string - type: object - type: array - observedGeneration: - description: ObservedGeneration is the generation of the resource - that was most recently observed by the Config Connector controller. - If this is equal to metadata.generation, then that means that the - current reported status reflects the most recent desired state of - the resource. - type: integer - type: object - required: - - spec - type: object - served: true - storage: true - subresources: - status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - cnrm.cloud.google.com/version: 1.98.0 - creationTimestamp: null - labels: - cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: stable - cnrm.cloud.google.com/system: "true" - cnrm.cloud.google.com/tf2crd: "true" - name: computerouternats.compute.cnrm.cloud.google.com -spec: - group: compute.cnrm.cloud.google.com - names: - categories: - - gcp - kind: ComputeRouterNAT - plural: computerouternats - shortNames: - - gcpcomputerouternat - - gcpcomputerouternats - singular: computerouternat - preserveUnknownFields: false - scope: Namespaced - versions: - - additionalPrinterColumns: - - jsonPath: .metadata.creationTimestamp - name: Age - type: date - - description: When 'True', the most recent reconcile of the resource succeeded - jsonPath: .status.conditions[?(@.type=='Ready')].status - name: Ready - type: string - - description: The reason for the value in 'Ready' - jsonPath: .status.conditions[?(@.type=='Ready')].reason - name: Status - type: string - - description: The last transition time for the value in 'Status' - jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime - name: Status Age - type: date - name: v1beta1 - schema: - openAPIV3Schema: - properties: - apiVersion: - description: 'apiVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' - type: string - kind: - description: 'kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' - type: string - metadata: - type: object - spec: - properties: - drainNatIps: - items: - description: |- - A list of IP resources to be drained. These IPs must be valid - static external IPs that have been assigned to the NAT. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: 'Allowed value: The `selfLink` field of a `ComputeAddress` - resource.' - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' - type: string - namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' - type: string - type: object - type: array - enableDynamicPortAllocation: - description: |- - Enable Dynamic Port Allocation. - If minPortsPerVm is set, minPortsPerVm must be set to a power of two greater than or equal to 32. - If minPortsPerVm is not set, a minimum of 32 ports will be allocated to a VM from this NAT config. - If maxPortsPerVm is set, maxPortsPerVm must be set to a power of two greater than minPortsPerVm. - If maxPortsPerVm is not set, a maximum of 65536 ports will be allocated to a VM from this NAT config. - - Mutually exclusive with enableEndpointIndependentMapping. - type: boolean - enableEndpointIndependentMapping: - description: |- - Specifies if endpoint independent mapping is enabled. This is enabled by default. For more information - see the [official documentation](https://cloud.google.com/nat/docs/overview#specs-rfcs). - type: boolean - icmpIdleTimeoutSec: - description: Timeout (in seconds) for ICMP connections. Defaults to - 30s if not set. - type: integer - logConfig: - description: Configuration for logging on NAT. - properties: - enable: - description: Indicates whether or not to export logs. - type: boolean - filter: - description: 'Specifies the desired filtering of logs on this - NAT. Possible values: ["ERRORS_ONLY", "TRANSLATIONS_ONLY", "ALL"].' - type: string - required: - - enable - - filter - type: object - maxPortsPerVm: - description: |- - Maximum number of ports allocated to a VM from this NAT. - This field can only be set when enableDynamicPortAllocation is enabled. - type: integer - minPortsPerVm: - description: Minimum number of ports allocated to a VM from this NAT. - type: integer - natIpAllocateOption: - description: |- - How external IPs should be allocated for this NAT. Valid values are - 'AUTO_ONLY' for only allowing NAT IPs allocated by Google Cloud - Platform, or 'MANUAL_ONLY' for only user-allocated NAT IP addresses. Possible values: ["MANUAL_ONLY", "AUTO_ONLY"]. - type: string - natIps: - items: - description: NAT IPs. Only valid if natIpAllocateOption is set to - MANUAL_ONLY. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: 'Allowed value: The `selfLink` field of a `ComputeAddress` - resource.' - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' - type: string - namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' - type: string - type: object - type: array region: - description: Immutable. Region where the router and NAT reside. + description: Immutable. The region this interface's router sits in. + If not specified, the project region will be used. Changing this + forces a new interface to be created. type: string resourceID: description: Immutable. Optional. The name of the resource. Used for @@ -19471,7 +19271,320 @@ spec: is used as the default. type: string routerRef: - description: The Cloud Router in which this NAT will be configured. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `ComputeRouter` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + subnetworkRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeSubnetwork` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + vpnTunnelRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeVPNTunnel` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - region + - routerRef + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: stable + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: computerouternats.compute.cnrm.cloud.google.com +spec: + group: compute.cnrm.cloud.google.com + names: + categories: + - gcp + kind: ComputeRouterNAT + plural: computerouternats + shortNames: + - gcpcomputerouternat + - gcpcomputerouternats + singular: computerouternat + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + drainNatIps: + items: + description: |- + A list of IP resources to be drained. These IPs must be valid + static external IPs that have been assigned to the NAT. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeAddress` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + type: array + enableDynamicPortAllocation: + description: |- + Enable Dynamic Port Allocation. + If minPortsPerVm is set, minPortsPerVm must be set to a power of two greater than or equal to 32. + If minPortsPerVm is not set, a minimum of 32 ports will be allocated to a VM from this NAT config. + If maxPortsPerVm is set, maxPortsPerVm must be set to a power of two greater than minPortsPerVm. + If maxPortsPerVm is not set, a maximum of 65536 ports will be allocated to a VM from this NAT config. + + Mutually exclusive with enableEndpointIndependentMapping. + type: boolean + enableEndpointIndependentMapping: + description: |- + Specifies if endpoint independent mapping is enabled. This is enabled by default. For more information + see the [official documentation](https://cloud.google.com/nat/docs/overview#specs-rfcs). + type: boolean + icmpIdleTimeoutSec: + description: Timeout (in seconds) for ICMP connections. Defaults to + 30s if not set. + type: integer + logConfig: + description: Configuration for logging on NAT. + properties: + enable: + description: Indicates whether or not to export logs. + type: boolean + filter: + description: 'Specifies the desired filtering of logs on this + NAT. Possible values: ["ERRORS_ONLY", "TRANSLATIONS_ONLY", "ALL"].' + type: string + required: + - enable + - filter + type: object + maxPortsPerVm: + description: |- + Maximum number of ports allocated to a VM from this NAT. + This field can only be set when enableDynamicPortAllocation is enabled. + type: integer + minPortsPerVm: + description: Minimum number of ports allocated to a VM from this NAT. + type: integer + natIpAllocateOption: + description: |- + How external IPs should be allocated for this NAT. Valid values are + 'AUTO_ONLY' for only allowing NAT IPs allocated by Google Cloud + Platform, or 'MANUAL_ONLY' for only user-allocated NAT IP addresses. Possible values: ["MANUAL_ONLY", "AUTO_ONLY"]. + type: string + natIps: + items: + description: NAT IPs. Only valid if natIpAllocateOption is set to + MANUAL_ONLY. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeAddress` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + type: array + region: + description: Immutable. Region where the router and NAT reside. + type: string + resourceID: + description: Immutable. Optional. The name of the resource. Used for + creation and acquisition. When unset, the value of `metadata.name` + is used as the default. + type: string + routerRef: + description: The Cloud Router in which this NAT will be configured. oneOf: - not: required: @@ -19748,7 +19861,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20054,7 +20167,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20278,7 +20391,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20557,7 +20670,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20657,6 +20770,49 @@ spec: description: An optional description of this security policy. Max size is 2048. type: string + recaptchaOptionsConfig: + description: reCAPTCHA configuration options to be applied for the + security policy. + properties: + redirectSiteKeyRef: + description: |- + Only `external` field is supported to configure the reference. + + A field to supply a reCAPTCHA site key to be used for all the rules + using the redirect action with the type of GOOGLE_RECAPTCHA under + the security policy. The specified site key needs to be created from + the reCAPTCHA API. The user is responsible for the validity of the + specified site key. If not specified, a Google-managed site key is + used. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `RecaptchaEnterpriseKey` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - redirectSiteKeyRef + type: object resourceID: description: Immutable. Optional. The name of the resource. Used for creation and acquisition. When unset, the value of `metadata.name` @@ -20676,6 +20832,27 @@ spec: description: An optional description of this rule. Max size is 64. type: string + headerAction: + description: Additional actions that are performed on headers. + properties: + requestHeadersToAdds: + description: The list of request headers to add or overwrite + if they're already present. + items: + properties: + headerName: + description: The name of the header to set. + type: string + headerValue: + description: The value to set the named header to. + type: string + required: + - headerName + type: object + type: array + required: + - requestHeadersToAdds + type: object match: description: A match condition that incoming traffic is evaluated against. If it evaluates to true, the corresponding action @@ -20720,6 +20897,162 @@ spec: src_ip_ranges field in config.' type: string type: object + preconfiguredWafConfig: + description: Preconfigured WAF configuration to be applied for + the rule. If the rule does not evaluate preconfigured WAF + rules, i.e., if evaluatePreconfiguredWaf() is not used, this + field will have no effect. + properties: + exclusion: + description: An exclusion to apply during preconfigured + WAF evaluation. + items: + properties: + requestCookie: + description: Request cookie whose value will be excluded + from inspection during preconfigured WAF evaluation. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + requestHeader: + description: Request header whose value will be excluded + from inspection during preconfigured WAF evaluation. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + requestQueryParam: + description: Request query parameter whose value will + be excluded from inspection during preconfigured + WAF evaluation. Note that the parameter can be + in the query string or in the POST body. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + requestUri: + description: Request URI from the request line to + be excluded from inspection during preconfigured + WAF evaluation. When specifying this field, the + query or fragment part should be excluded. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + targetRuleIds: + description: A list of target rule IDs under the WAF + rule set to apply the preconfigured WAF exclusion. + If omitted, it refers to all the rule IDs under + the WAF rule set. + items: + type: string + type: array + targetRuleSet: + description: Target WAF rule set to apply the preconfigured + WAF exclusion. + type: string + required: + - targetRuleSet + type: object + type: array + type: object preview: description: When set to true, the action specified above is not enforced. Stackdriver logs for requests that trigger a @@ -20913,7 +21246,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -21260,7 +21593,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21366,7 +21699,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21505,7 +21838,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21893,7 +22226,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22108,7 +22441,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22271,7 +22604,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22342,7 +22675,7 @@ spec: type: string ipv6AccessType: description: |- - Immutable. The access type of IPv6 address this subnet holds. It's immutable and can only be specified during creation + The access type of IPv6 address this subnet holds. It's immutable and can only be specified during creation or the first time the subnet is updated into IPV4_IPV6 dual stack. If the ipv6_type is EXTERNAL then this subnet cannot enable direct path. Possible values: ["EXTERNAL", "INTERNAL"]. type: string @@ -22559,7 +22892,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22737,7 +23070,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22907,7 +23240,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23184,7 +23517,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23380,7 +23713,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23606,7 +23939,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23692,12 +24025,12 @@ spec: type: object certificateMapRef: description: |- + Only `external` field is supported to configure the reference. + A reference to the CertificateMap resource uri that identifies a certificate map associated with the given target proxy. This field can only be set for global target proxies. Accepted format is '//certificatemanager.googleapis.com/projects/{project}/locations/{location}/certificateMaps/{resourceName}'. - - Only `external` field is supported to configure the reference. oneOf: - not: required: @@ -23867,7 +24200,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24034,7 +24367,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24195,7 +24528,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24253,12 +24586,10 @@ spec: properties: defaultRouteAction: description: |- - defaultRouteAction takes effect when none of the hostRules match. The load balancer performs advanced routing actions - like URL rewrites, header transformations, etc. prior to forwarding the request to the selected backend. - If defaultRouteAction specifies any weightedBackendServices, defaultService must not be set. Conversely if defaultService - is set, defaultRouteAction cannot contain any weightedBackendServices. - + defaultRouteAction takes effect when none of the hostRules match. The load balancer performs advanced routing actions, such as URL rewrites and header transformations, before forwarding the request to the selected backend. If defaultRouteAction specifies any weightedBackendServices, defaultService must not be set. Conversely if defaultService is set, defaultRouteAction cannot contain any weightedBackendServices. Only one of defaultRouteAction or defaultUrlRedirect must be set. + URL maps for Classic external HTTP(S) load balancers only support the urlRewrite action within defaultRouteAction. + defaultRouteAction has no effect when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true. properties: corsPolicy: description: |- @@ -24267,8 +24598,8 @@ spec: properties: allowCredentials: description: |- - In response to a preflight request, setting this to true indicates that the actual request can include user credentials. - This translates to the Access-Control-Allow-Credentials header. + In response to a preflight request, setting this to true indicates that the actual request can include user credentials. This field translates to the Access-Control-Allow-Credentials header. + Default is false. type: boolean allowHeaders: description: Specifies the content for the Access-Control-Allow-Headers @@ -24284,7 +24615,7 @@ spec: type: array allowOriginRegexes: description: |- - Specifies the regular expression patterns that match allowed origins. For regular expression grammar + Specifies the regualar expression patterns that match allowed origins. For regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript An origin is allowed if it matches either an item in allowOrigins or an item in allowOriginRegexes. items: @@ -24298,9 +24629,9 @@ spec: type: string type: array disabled: - description: If true, specifies the CORS policy is disabled. - The default value is false, which indicates that the CORS - policy is in effect. + description: If true, the setting specifies the CORS policy + is disabled. The default value of false, which indicates + that the CORS policy is in effect. type: boolean exposeHeaders: description: Specifies the content for the Access-Control-Expose-Headers @@ -24317,11 +24648,10 @@ spec: faultInjectionPolicy: description: |- The specification for fault injection introduced into traffic to test the resiliency of clients to backend service failure. - As part of fault injection, when clients send requests to a backend service, delays can be introduced by Loadbalancer on a - percentage of requests before sending those request to the backend service. Similarly requests from clients can be aborted - by the Loadbalancer for a percentage of requests. - - timeout and retryPolicy will be ignored by clients that are configured with a faultInjectionPolicy. + As part of fault injection, when clients send requests to a backend service, delays can be introduced by a load balancer on a percentage of requests before sending those requests to the backend service. + Similarly requests from clients can be aborted by the load balancer for a percentage of requests. + timeout and retryPolicy is ignored by clients that are configured with a faultInjectionPolicy if: 1. The traffic is generated by fault injection AND 2. The fault injection is not a delay fault injection. + Fault injection is not supported with the global external HTTP(S) load balancer (classic). To see which load balancers support fault injection, see Load balancing: [Routing and traffic management features](https://cloud.google.com/load-balancing/docs/features#routing-traffic-management). properties: abort: description: The specification for how client requests are @@ -24367,12 +24697,17 @@ spec: requestMirrorPolicy: description: |- Specifies the policy on how requests intended for the route's backends are shadowed to a separate mirrored backend service. - Loadbalancer does not wait for responses from the shadow service. Prior to sending traffic to the shadow service, - the host / authority header is suffixed with -shadow. + The load balancer does not wait for responses from the shadow service. Before sending traffic to the shadow service, the host / authority header is suffixed with -shadow. + Not supported when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true. properties: backendServiceRef: - description: Required. The backend service resource being - mirrored to. + description: |- + The backend service resource being mirrored to. + The backend service configured for a mirroring policy must reference + backends that are of the same type as the original backend service + matched in the URL map. + Serverless NEG backends are not currently supported as a mirrored + backend service. oneOf: - not: required: @@ -24389,8 +24724,8 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `ComputeBackendService` - resource.' + description: 'Allowed value: The `selfLink` field of a + `ComputeBackendService` resource.' type: string name: description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' @@ -24399,8 +24734,6 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object - required: - - backendServiceRef type: object retryPolicy: description: Specifies the retry policy associated with this route. @@ -24429,73 +24762,62 @@ spec: type: object retryConditions: description: |- - Specfies one or more conditions when this retry rule applies. Valid values are: - - * 5xx: Loadbalancer will attempt a retry if the backend service responds with any 5xx response code, - or if the backend service does not respond at all, example: disconnects, reset, read timeout, - * connection failure, and refused streams. - * gateway-error: Similar to 5xx, but only applies to response codes 502, 503 or 504. - * connect-failure: Loadbalancer will retry on failures connecting to backend services, - for example due to connection timeouts. - * retriable-4xx: Loadbalancer will retry for retriable 4xx response codes. - Currently the only retriable error supported is 409. - * refused-stream:Loadbalancer will retry if the backend service resets the stream with a REFUSED_STREAM error code. - This reset type indicates that it is safe to retry. - * cancelled: Loadbalancer will retry if the gRPC status code in the response header is set to cancelled - * deadline-exceeded: Loadbalancer will retry if the gRPC status code in the response header is set to deadline-exceeded - * resource-exhausted: Loadbalancer will retry if the gRPC status code in the response header is set to resource-exhausted - * unavailable: Loadbalancer will retry if the gRPC status code in the response header is set to unavailable. + Specifies one or more conditions when this retry policy applies. + Valid values are listed below. Only the following codes are supported when the URL map is bound to target gRPC proxy that has validateForProxyless field set to true: cancelled, deadline-exceeded, internal, resource-exhausted, unavailable. + - 5xx : retry is attempted if the instance or endpoint responds with any 5xx response code, or if the instance or endpoint does not respond at all. For example, disconnects, reset, read timeout, connection failure, and refused streams. + - gateway-error : Similar to 5xx, but only applies to response codes 502, 503 or 504. + - connect-failure : a retry is attempted on failures connecting to the instance or endpoint. For example, connection timeouts. + - retriable-4xx : a retry is attempted if the instance or endpoint responds with a 4xx response code. The only error that you can retry is error code 409. + - refused-stream : a retry is attempted if the instance or endpoint resets the stream with a REFUSED_STREAM error code. This reset type indicates that it is safe to retry. + - cancelled : a retry is attempted if the gRPC status code in the response header is set to cancelled. + - deadline-exceeded : a retry is attempted if the gRPC status code in the response header is set to deadline-exceeded. + - internal : a retry is attempted if the gRPC status code in the response header is set to internal. + - resource-exhausted : a retry is attempted if the gRPC status code in the response header is set to resource-exhausted. + - unavailable : a retry is attempted if the gRPC status code in the response header is set to unavailable. items: type: string type: array type: object timeout: description: |- - Specifies the timeout for the selected route. Timeout is computed from the time the request has been - fully processed (i.e. end-of-stream) up until the response has been completely processed. Timeout includes all retries. - - If not specified, will use the largest timeout among all backend services associated with the route. + Specifies the timeout for the selected route. Timeout is computed from the time the request has been fully processed (known as end-of-stream) up until the response has been processed. Timeout includes all retries. + If not specified, this field uses the largest timeout among all backend services associated with the route. + Not supported when the URL map is bound to a target gRPC proxy that has validateForProxyless field set to true. properties: nanos: - description: |- - Span of time that's a fraction of a second at nanosecond resolution. Durations less than one second are represented - with a 0 seconds field and a positive nanos field. Must be from 0 to 999,999,999 inclusive. + description: Span of time that's a fraction of a second at + nanosecond resolution. Durations less than one second are + represented with a 0 seconds field and a positive nanos + field. Must be from 0 to 999,999,999 inclusive. type: integer seconds: - description: |- - Span of time at a resolution of a second. Must be from 0 to 315,576,000,000 inclusive. - Note: these bounds are computed from: 60 sec/min * 60 min/hr * 24 hr/day * 365.25 days/year * 10000 years. + description: 'Span of time at a resolution of a second. Must + be from 0 to 315,576,000,000 inclusive. Note: these bounds + are computed from: 60 sec/min * 60 min/hr * 24 hr/day * + 365.25 days/year * 10000 years.' type: string type: object urlRewrite: - description: The spec to modify the URL of the request, prior - to forwarding the request to the matched service. + description: |- + The spec to modify the URL of the request, before forwarding the request to the matched service. + urlRewrite is the only action supported in UrlMaps for external HTTP(S) load balancers. + Not supported when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true. properties: hostRewrite: description: |- - Prior to forwarding the request to the selected service, the request's host header is replaced - with contents of hostRewrite. - - The value must be between 1 and 255 characters. + Before forwarding the request to the selected service, the request's host header is replaced with contents of hostRewrite. + The value must be from 1 to 255 characters. type: string pathPrefixRewrite: description: |- - Prior to forwarding the request to the selected backend service, the matching portion of the - request's path is replaced by pathPrefixRewrite. - - The value must be between 1 and 1024 characters. + Before forwarding the request to the selected backend service, the matching portion of the request's path is replaced by pathPrefixRewrite. + The value must be from 1 to 1024 characters. type: string type: object weightedBackendServices: description: |- - A list of weighted backend services to send traffic to when a route match occurs. - The weights determine the fraction of traffic that flows to their corresponding backend service. - If all traffic needs to go to a single backend service, there must be one weightedBackendService - with weight set to a non 0 number. - - Once a backendService is identified and before forwarding the request to the backend service, - advanced routing actions like Url rewrites and header transformations are applied depending on - additional settings specified in this HttpRouteAction. + A list of weighted backend services to send traffic to when a route match occurs. The weights determine the fraction of traffic that flows to their corresponding backend service. If all traffic needs to go to a single backend service, there must be one weightedBackendService with weight set to a non-zero number. + After a backend service is identified and before forwarding the request to the backend service, advanced routing actions such as URL rewrites and header transformations are applied depending on additional settings specified in this HttpRouteAction. items: properties: backendServiceRef: @@ -24520,8 +24842,8 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `ComputeBackendService` - resource.' + description: 'Allowed value: The `selfLink` field of + a `ComputeBackendService` resource.' type: string name: description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' @@ -24533,73 +24855,67 @@ spec: type: object headerAction: description: |- - Specifies changes to request and response headers that need to take effect for - the selected backendService. - - headerAction specified here take effect before headerAction in the enclosing - HttpRouteRule, PathMatcher and UrlMap. + Specifies changes to request and response headers that need to take effect for the selected backendService. + headerAction specified here take effect before headerAction in the enclosing HttpRouteRule, PathMatcher and UrlMap. + headerAction is not supported for load balancers that have their loadBalancingScheme set to EXTERNAL. + Not supported when the URL map is bound to a target gRPC proxy that has validateForProxyless field set to true. properties: requestHeadersToAdd: - description: Headers to add to a matching request prior - to forwarding the request to the backendService. + description: Headers to add to a matching request before + forwarding the request to the backendService. items: properties: headerName: - description: The name of the header to add. + description: The name of the header. type: string headerValue: description: The value of the header to add. type: string replace: description: |- - If false, headerValue is appended to any values that already exist for the header. - If true, headerValue is set for the header, discarding any values that were set for that header. + If false, headerValue is appended to any values that already exist for the header. If true, headerValue is set for the header, discarding any values that were set for that header. + The default value is false. type: boolean type: object type: array requestHeadersToRemove: - description: |- - A list of header names for headers that need to be removed from the request prior to - forwarding the request to the backendService. + description: A list of header names for headers that + need to be removed from the request before forwarding + the request to the backendService. items: type: string type: array responseHeadersToAdd: - description: Headers to add the response prior to sending + description: Headers to add the response before sending the response back to the client. items: properties: headerName: - description: The name of the header to add. + description: The name of the header. type: string headerValue: description: The value of the header to add. type: string replace: description: |- - If false, headerValue is appended to any values that already exist for the header. - If true, headerValue is set for the header, discarding any values that were set for that header. + If false, headerValue is appended to any values that already exist for the header. If true, headerValue is set for the header, discarding any values that were set for that header. + The default value is false. type: boolean type: object type: array responseHeadersToRemove: - description: |- - A list of header names for headers that need to be removed from the response prior to sending the - response back to the client. + description: A list of header names for headers that + need to be removed from the response before sending + the response back to the client. items: type: string type: array type: object weight: description: |- - Specifies the fraction of traffic sent to backendService, computed as - weight / (sum of all weightedBackendService weights in routeAction) . - - The selection of a backend service is determined only for new traffic. Once a user's request - has been directed to a backendService, subsequent requests will be sent to the same backendService - as determined by the BackendService's session affinity policy. - - The value must be between 0 and 1000. + Specifies the fraction of traffic sent to a backend service, computed as weight / (sum of all weightedBackendService weights in routeAction) . + The selection of a backend service is determined only for new traffic. Once a user's request has been directed to a backend service, subsequent requests are sent to the same backend service as determined by the backend service's session affinity policy. + The value must be from 0 to 1000. type: integer type: object type: array @@ -24990,8 +25306,8 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of - a `ComputeBackendService` resource.' + description: 'Allowed value: The `selfLink` field + of a `ComputeBackendService` resource.' type: string name: description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' @@ -25124,7 +25440,7 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field + description: 'Allowed value: The `selfLink` field of a `ComputeBackendService` resource.' type: string name: @@ -26906,7 +27222,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -27105,7 +27421,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -27477,7 +27793,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -27793,7 +28109,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -28382,7 +28698,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -28632,6 +28948,40 @@ spec: description: The default image type used by NAP once a new node pool is being created. type: string + management: + description: NodeManagement configuration for this NodePool. + properties: + autoRepair: + description: Specifies whether the node auto-repair is + enabled for the node pool. If enabled, the nodes in + this node pool will be monitored and, if they fail health + checks too many times, an automatic repair action will + be triggered. + type: boolean + autoUpgrade: + description: Specifies whether node auto-upgrade is enabled + for the node pool. If enabled, node auto-upgrade helps + keep the nodes in your node pool up to date with the + latest release version of Kubernetes. + type: boolean + upgradeOptions: + description: Specifies the Auto Upgrade knobs for the + node pool. + items: + properties: + autoUpgradeStartTime: + description: This field is set when upgrades are + about to commence with the approximate start time + for the upgrades, in RFC3339 text format. + type: string + description: + description: This field is set when upgrades are + about to commence with the description of the + upgrade. + type: string + type: object + type: array + type: object minCpuPlatform: description: Minimum CPU platform to be used by this instance. The instance may be scheduled on the specified or newer @@ -28671,6 +29021,65 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object + shieldedInstanceConfig: + description: Shielded Instance options. + properties: + enableIntegrityMonitoring: + description: Defines whether the instance has integrity + monitoring enabled. + type: boolean + enableSecureBoot: + description: Defines whether the instance has Secure Boot + enabled. + type: boolean + type: object + upgradeSettings: + description: Specifies the upgrade settings for NAP created + node pools. + properties: + blueGreenSettings: + description: Settings for blue-green upgrade strategy. + properties: + nodePoolSoakDuration: + description: "Time needed after draining entire blue + pool. After this period, blue pool will be cleaned + up.\n\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tA duration + in seconds with up to nine fractional digits, ending + with 's'. Example: \"3.5s\"." + type: string + standardRolloutPolicy: + description: Standard policy for the blue-green upgrade. + properties: + batchNodeCount: + description: Number of blue nodes to drain in + a batch. + type: integer + batchPercentage: + description: Percentage of the bool pool nodes + to drain in a batch. The range of this field + should be (0.0, 1.0]. + type: number + batchSoakDuration: + description: "Soak time after each batch gets + drained.\n\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tA + duration in seconds with up to nine fractional + digits, ending with 's'. Example: \"3.5s\"." + type: string + type: object + type: object + maxSurge: + description: The maximum number of nodes that can be created + beyond the current size of the node pool during the + upgrade process. + type: integer + maxUnavailable: + description: The maximum number of nodes that can be simultaneously + unavailable during the upgrade process. + type: integer + strategy: + description: Update strategy of the node pool. + type: string + type: object type: object autoscalingProfile: description: Configuration options for the Autoscaling profile @@ -28705,8 +29114,6 @@ spec: - resourceType type: object type: array - required: - - enabled type: object clusterIpv4Cidr: description: Immutable. The IP address range of the Kubernetes pods @@ -28837,6 +29244,16 @@ spec: description: Immutable. Whether to enable Cloud TPU resources in this cluster. type: boolean + gatewayApiConfig: + description: Configuration for GKE Gateway API controller. + properties: + channel: + description: The Gateway API release channel to use for Gateway + API. + type: string + required: + - channel + type: object identityServiceConfig: description: Configuration for Identity Service which allows customers to use external identity providers with the K8S API. @@ -28901,7 +29318,8 @@ spec: properties: enableComponents: description: GKE components exposing logs. Valid values include - SYSTEM_COMPONENTS and WORKLOADS. + SYSTEM_COMPONENTS, APISERVER, CONTROLLER_MANAGER, SCHEDULER, + and WORKLOADS. items: type: string type: array @@ -29070,6 +29488,10 @@ spec: - cidrBlock type: object type: array + gcpPublicCidrsAccessEnabled: + description: Whether master is accessbile via Google Compute Engine + Public IP addresses. + type: boolean type: object meshCertificates: description: If set, and enable_certificates=true, the GKE Workload @@ -29312,6 +29734,11 @@ spec: description: Immutable. The number of local SSD disks to be attached to the node. type: integer + loggingVariant: + description: Type of logging agent that is used as the default + value for node pools in the cluster. Valid values include DEFAULT + and MAX_THROUGHPUT. + type: string machineType: description: Immutable. The name of a Google Compute Engine machine type. @@ -29388,6 +29815,12 @@ spec: required: - consumeReservationType type: object + resourceLabels: + additionalProperties: + type: string + description: The GCE resource labels (a map of key/value pairs) + to be applied to the node pool. + type: object sandboxConfig: description: Immutable. Sandbox configuration for this node. properties: @@ -29521,6 +29954,11 @@ spec: required: - enabled type: object + loggingVariant: + description: Type of logging agent that is used as the default + value for node pools in the cluster. Valid values include + DEFAULT and MAX_THROUGHPUT. + type: string type: object type: object nodeVersion: @@ -29602,10 +30040,10 @@ spec: nodes. properties: enablePrivateEndpoint: - description: Immutable. When true, the cluster's private endpoint - is used as the cluster endpoint and access through the public - endpoint is disabled. When false, either endpoint can be used. - This field only applies to private clusters, when enable_private_nodes + description: When true, the cluster's private endpoint is used + as the cluster endpoint and access through the public endpoint + is disabled. When false, either endpoint can be used. This field + only applies to private clusters, when enable_private_nodes is true. type: boolean enablePrivateNodes: @@ -29641,12 +30079,40 @@ spec: description: The internal IP address of this cluster's master endpoint. type: string + privateEndpointSubnetworkRef: + description: |- + Immutable. Subnetwork in cluster's network where master's endpoint + will be provisioned. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeSubnetwork` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object publicEndpoint: description: The external IP address of this cluster's master endpoint. type: string - required: - - enablePrivateEndpoint type: object privateIpv6GoogleAccess: description: The desired state of IPv6 connectivity to Google Services. @@ -29847,7 +30313,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -29999,6 +30465,9 @@ spec: IPs in this node pool. Defaults are provided for pod_range and pod_ipv4_cidr_block if they are not specified. type: boolean + enablePrivateNodes: + description: Whether nodes have internal IP addresses only. + type: boolean podIpv4CidrBlock: description: Immutable. The IP address range for pod IPs in this node pool. Only applicable if create_pod_range is true. Set @@ -30013,8 +30482,6 @@ spec: range. If create_pod_range is false, uses an existing secondary range with this ID. type: string - required: - - podRange type: object nodeConfig: description: Immutable. The configuration of the nodepool. @@ -30164,6 +30631,11 @@ spec: description: Immutable. The number of local SSD disks to be attached to the node. type: integer + loggingVariant: + description: Type of logging agent that is used as the default + value for node pools in the cluster. Valid values include DEFAULT + and MAX_THROUGHPUT. + type: string machineType: description: Immutable. The name of a Google Compute Engine machine type. @@ -30240,6 +30712,12 @@ spec: required: - consumeReservationType type: object + resourceLabels: + additionalProperties: + type: string + description: The GCE resource labels (a map of key/value pairs) + to be applied to the node pool. + type: object sandboxConfig: description: Immutable. Sandbox configuration for this node. properties: @@ -30365,6 +30843,31 @@ spec: is the sum of max_surge and max_unavailable. The maximum number of nodes upgraded simultaneously is limited to 20. properties: + blueGreenSettings: + description: Settings for BlueGreen node pool upgrade. + properties: + nodePoolSoakDuration: + description: Time needed after draining entire blue pool. + After this period, blue pool will be cleaned up. + type: string + standardRolloutPolicy: + description: Standard rollout policy is the default policy + for blue-green. + properties: + batchNodeCount: + description: Number of blue nodes to drain in a batch. + type: integer + batchPercentage: + description: Percentage of the blue pool nodes to drain + in a batch. + type: number + batchSoakDuration: + description: Soak time after each batch gets drained. + type: string + type: object + required: + - standardRolloutPolicy + type: object maxSurge: description: The number of additional nodes that can be added to the node pool during an upgrade. Increasing max_surge raises @@ -30377,9 +30880,9 @@ spec: of nodes that can be upgraded in parallel. Can be set to 0 or greater. type: integer - required: - - maxSurge - - maxUnavailable + strategy: + description: Update strategy for the given nodepool. + type: string type: object version: type: string @@ -30455,7 +30958,203 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: datacatalogpolicytags.datacatalog.cnrm.cloud.google.com +spec: + group: datacatalog.cnrm.cloud.google.com + names: + categories: + - gcp + kind: DataCatalogPolicyTag + plural: datacatalogpolicytags + shortNames: + - gcpdatacatalogpolicytag + - gcpdatacatalogpolicytags + singular: datacatalogpolicytag + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + description: + description: |- + Description of this policy tag. It must: contain only unicode characters, tabs, + newlines, carriage returns and page breaks; and be at most 2000 bytes long when + encoded in UTF-8. If not set, defaults to an empty description. + If not set, defaults to an empty description. + type: string + displayName: + description: |- + User defined name of this policy tag. It must: be unique within the parent + taxonomy; contain only unicode letters, numbers, underscores, dashes and spaces; + not start or end with spaces; and be at most 200 bytes long when encoded in UTF-8. + type: string + parentPolicyTagRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `DataCatalogPolicyTag` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + taxonomyRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `DataCatalogTaxonomy` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - displayName + - taxonomyRef + type: object + status: + properties: + childPolicyTags: + description: Resource names of child policy tags of this policy tag. + items: + type: string + type: array + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + name: + description: |- + Resource name of this policy tag, whose format is: + "projects/{project}/locations/{region}/taxonomies/{taxonomy}/policyTags/{policytag}". + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -30629,7 +31328,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -30755,7 +31454,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -31041,7 +31740,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -31320,7 +32019,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -31615,7 +32314,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -33430,7 +34129,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -35372,7 +36071,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -39548,7 +40247,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -40160,7 +40859,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -41636,7 +42335,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -42007,7 +42706,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42203,6 +42902,47 @@ spec: For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. properties: + gkeClusters: + description: The list of Google Kubernetes Engine clusters that + can see this zone. + items: + properties: + gkeClusterNameRef: + description: |- + The resource name of the cluster to bind this ManagedZone to. + This should be specified in the format like + 'projects/*/locations/*/clusters/*'. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of + a `ContainerCluster` resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: + https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - gkeClusterNameRef + type: object + type: array networks: items: properties: @@ -42353,7 +43093,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42549,7 +43289,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42747,7 +43487,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -43236,7 +43976,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -43458,7 +44198,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -43787,7 +44527,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -43941,7 +44681,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -44154,7 +44894,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -44292,7 +45032,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -44425,6 +45165,57 @@ spec: Default: 15.' type: string type: object + oci: + properties: + gcpServiceAccountRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: "The GCP Service Account Email used for + auth when secret_type is gcpserviceaccount. \n\nAllowed + value: The `email` field of an `IAMServiceAccount` + resource." + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: + https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + policyDir: + description: 'The absolute path of the directory that + contains the local resources. Default: the root directory + of the image.' + type: string + secretType: + description: Type of secret configured for access to the + OCI Image. Must be one of gcenode, gcpserviceaccount + or none. The validation of this is case-sensitive. + type: string + syncRepo: + description: The OCI image repository URL for the package + to sync from. e.g. LOCATION-docker.pkg.dev/PROJECT_ID/REPOSITORY_NAME/PACKAGE_NAME. + type: string + syncWaitSecs: + description: 'Period in seconds(int64 format) between + consecutive syncs. Default: 15.' + type: string + type: object preventDrift: description: Set to true to enable the Config Sync admission webhook to prevent drifts. If set to `false`, disables the @@ -44573,6 +45364,11 @@ spec: mesh: description: Manage Mesh Features properties: + controlPlane: + description: 'Whether to automatically manage Service Mesh control + planes. Possible values: CONTROL_PLANE_MANAGEMENT_UNSPECIFIED, + AUTOMATIC, MANUAL' + type: string management: description: 'Whether to automatically manage Service Mesh. Possible values: MANAGEMENT_UNSPECIFIED, MANAGEMENT_AUTOMATIC, MANAGEMENT_MANUAL' @@ -44668,7 +45464,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -44908,7 +45704,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -45273,7 +46069,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45434,7 +46230,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45574,7 +46370,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45885,7 +46681,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46113,7 +46909,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46340,7 +47136,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46519,7 +47315,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46661,7 +47457,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -46913,7 +47709,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47094,7 +47890,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47390,7 +48186,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47557,7 +48353,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47683,7 +48479,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47837,7 +48633,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -48529,7 +49325,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -48712,7 +49508,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -48929,7 +49725,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -49082,7 +49878,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -49274,7 +50070,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -49400,7 +50196,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -49684,7 +50480,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -49959,7 +50755,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -50380,7 +51176,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -50784,7 +51580,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -51088,7 +51884,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -51425,7 +52221,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -52240,7 +53036,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -59122,7 +59918,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -59313,7 +60109,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -59608,7 +60404,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -59735,7 +60531,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -60036,7 +60832,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -60607,7 +61403,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -60766,7 +61562,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -61145,7 +61941,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -61327,7 +62123,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -61672,7 +62468,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -61930,7 +62726,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62159,7 +62955,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62403,7 +63199,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62724,7 +63520,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62788,35 +63584,6 @@ spec: items: type: string type: array - authorizationPolicyRef: - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: |- - Optional. A fully-qualified AuthorizationPolicy URL reference. Specifies how traffic is authorized. If empty, authorization checks are disabled. - - Allowed value: The Google Cloud resource name of a `NetworkSecurityAuthorizationPolicy` resource (format: `projects/{{project}}/locations/{{location}}/authorizationPolicies/{{name}}`). - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' - type: string - namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' - type: string - type: object description: description: Optional. A free-text description of the resource. Max length 1024 characters. @@ -62979,7 +63746,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -63446,7 +64213,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -64180,7 +64947,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -64356,7 +65123,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -64686,7 +65453,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -65007,7 +65774,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -65776,7 +66543,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -66677,6 +67444,10 @@ spec: - disruptionBudget - minWaitDuration type: object + skipAwaitRollout: + description: Set to true to skip awaiting rollout during resource + creation and update. + type: boolean required: - instanceFilter - location @@ -66774,7 +67545,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -67270,7 +68041,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -68268,7 +69039,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -69179,7 +69950,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -69595,7 +70366,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -69820,7 +70591,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -69976,7 +70747,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -70397,7 +71168,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -70614,7 +71385,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -70850,7 +71621,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -71104,7 +71875,7 @@ spec: description: Redis memory size in GiB. type: integer persistenceConfig: - description: Maintenance policy for an instance. + description: Persistence configuration for an instance. properties: persistenceMode: description: "Optional. Controls whether Persistence features @@ -71333,7 +72104,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -71511,7 +72282,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -71792,7 +72563,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -72674,7 +73445,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -72936,7 +73707,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73139,7 +73910,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73359,7 +74130,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73516,7 +74287,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73668,7 +74439,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73846,7 +74617,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73987,7 +74758,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74186,7 +74957,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74393,7 +75164,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74533,7 +75304,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74605,6 +75376,13 @@ spec: for more details and supported values. Postgres databases only support a value of 'en_US.UTF8' at creation time. type: string + deletionPolicy: + description: "The deletion policy for the database. Setting ABANDON + allows the resource \nto be abandoned rather than deleted. This + is useful for Postgres, where databases cannot be \ndeleted from + the API if there are users other than cloudsqlsuperuser with access. + Possible \nvalues are: \"ABANDON\", \"DELETE\". Defaults to \"DELETE\"." + type: string instanceRef: description: The Cloud SQL instance. oneOf: @@ -74697,7 +75475,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75026,6 +75804,9 @@ spec: collation: description: Immutable. The name of server instance collation. type: string + connectorEnforcement: + description: Specifies if connections must use Cloud SQL connectors. + type: string crashSafeReplication: description: |- DEPRECATED. This property is only applicable to First Generation instances, and First Generation instances are now deprecated. see https://cloud.google.com/sql/docs/mysql/deprecation-notice for information on how to upgrade to Second Generation instances. @@ -75045,6 +75826,28 @@ spec: - value type: object type: array + denyMaintenancePeriod: + properties: + endDate: + description: End date before which maintenance will not take + place. The date is in format yyyy-mm-dd i.e., 2020-11-01, + or mm-dd, i.e., 11-01. + type: string + startDate: + description: Start date after which maintenance will not take + place. The date is in format yyyy-mm-dd i.e., 2020-11-01, + or mm-dd, i.e., 11-01. + type: string + time: + description: 'Time in UTC when the "deny maintenance period" + starts on start_date and ends on end_date. The time is in + format: HH:mm:SS, i.e., 00:00:00.' + type: string + required: + - endDate + - startDate + - time + type: object diskAutoresize: description: Enables auto-resizing of the storage size. Defaults to true. @@ -75069,6 +75872,11 @@ spec: queryInsightsEnabled: description: True if Query Insights feature is enabled. type: boolean + queryPlansPerMinute: + description: Number of query execution plans captured by Insights + per minute for all queries combined. Between 0 and 20. Default + to 5. + type: integer queryStringLength: description: Maximum query length stored in bytes. Between 256 and 4500. Default to 1024. @@ -75251,7 +76059,7 @@ spec: custom machine types. type: string timeZone: - description: Immutable. The timezone to be used by the database + description: Immutable. The time_zone to be used by the database engine (supported only for SQL Server), in SQL Server timezone format. type: string @@ -75366,7 +76174,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75542,7 +76350,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75783,7 +76591,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75953,7 +76761,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76009,6 +76817,17 @@ spec: type: object spec: properties: + autoclass: + description: Immutable. The bucket's autoclass configuration. + properties: + enabled: + description: Immutable. While set to true, autoclass automatically + transitions objects in your bucket to appropriate storage classes + based on each object's access pattern. + type: boolean + required: + - enabled + type: object bucketPolicyOnly: description: |- DEPRECATED. Please use the `uniformBucketLevelAccess` field as this field has been renamed by Google. The `uniformBucketLevelAccess` field will supersede this field. @@ -76114,7 +76933,8 @@ spec: type: string type: description: 'The type of the action of this Lifecycle Rule. - Supported values include: Delete and SetStorageClass.' + Supported values include: Delete, SetStorageClass and + AbortIncompleteMultipartUpload.' type: string required: - type @@ -76315,7 +77135,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76501,7 +77321,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76704,7 +77524,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -77314,7 +78134,347 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: tagstagkeys.tags.cnrm.cloud.google.com +spec: + group: tags.cnrm.cloud.google.com + names: + categories: + - gcp + kind: TagsTagKey + plural: tagstagkeys + shortNames: + - gcptagstagkey + - gcptagstagkeys + singular: tagstagkey + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + description: + description: User-assigned description of the TagKey. Must not exceed + 256 characters. + type: string + parent: + description: Immutable. Input only. The resource name of the new TagKey's + parent. Must be of the form organizations/{org_id}. + type: string + purpose: + description: |- + Immutable. Optional. A purpose cannot be changed once set. + + A purpose denotes that this Tag is intended for use in policies of a specific policy engine, and will involve that policy engine in management operations involving this Tag. Possible values: ["GCE_FIREWALL"]. + type: string + purposeData: + additionalProperties: + type: string + description: |- + Immutable. Optional. Purpose data cannot be changed once set. + + Purpose data corresponds to the policy system that the tag is intended for. For example, the GCE_FIREWALL purpose expects data in the following format: 'network = "/"'. + type: object + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + shortName: + description: |- + Immutable. Input only. The user friendly name for a TagKey. The short name should be unique for TagKeys within the same tag namespace. + + The short name must be 1-63 characters, beginning and ending with an alphanumeric character ([a-z0-9A-Z]) with dashes (-), underscores (_), dots (.), and alphanumerics between. + type: string + required: + - parent + - shortName + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + createTime: + description: |- + Output only. Creation time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + name: + description: The generated numeric id for the TagKey. + type: string + namespacedName: + description: Output only. Namespaced name of the TagKey. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + updateTime: + description: |- + Output only. Update time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: tagstagvalues.tags.cnrm.cloud.google.com +spec: + group: tags.cnrm.cloud.google.com + names: + categories: + - gcp + kind: TagsTagValue + plural: tagstagvalues + shortNames: + - gcptagstagvalue + - gcptagstagvalues + singular: tagstagvalue + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + description: + description: User-assigned description of the TagValue. Must not exceed + 256 characters. + type: string + parentRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: string of the format `tagKeys/{{value}}`, + where {{value}} is the `name` field of a `TagsTagKey` resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + shortName: + description: |- + Immutable. Input only. User-assigned short name for TagValue. The short name should be unique for TagValues within the same parent TagKey. + + The short name must be 63 characters or less, beginning and ending with an alphanumeric character ([a-z0-9A-Z]) with dashes (-), underscores (_), dots (.), and alphanumerics between. + type: string + required: + - parentRef + - shortName + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + createTime: + description: |- + Output only. Creation time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + name: + description: The generated numeric id for the TagValue. + type: string + namespacedName: + description: Output only. Namespaced name of the TagValue. Will be + in the format {organizationId}/{tag_key_short_name}/{shortName}. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + updateTime: + description: |- + Output only. Update time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/install-bundles/install-bundle-namespaced/0-cnrm-system.yaml b/install-bundles/install-bundle-namespaced/0-cnrm-system.yaml index e0d10cb014..7de310d8f1 100644 --- a/install-bundles/install-bundle-namespaced/0-cnrm-system.yaml +++ b/install-bundles/install-bundle-namespaced/0-cnrm-system.yaml @@ -16,7 +16,7 @@ apiVersion: v1 kind: Namespace metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-system @@ -25,7 +25,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -35,7 +35,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-resource-stats-recorder @@ -45,7 +45,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-unmanaged-detector @@ -55,7 +55,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-manager @@ -65,7 +65,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-cnrm-system-role @@ -86,7 +86,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-cnrm-system-role @@ -107,7 +107,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -739,6 +739,18 @@ rules: - update - patch - delete +- apiGroups: + - tags.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch + - create + - update + - patch + - delete - apiGroups: - vpcaccess.cnrm.cloud.google.com resources: @@ -756,7 +768,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role @@ -806,7 +818,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-cluster-role @@ -864,7 +876,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-ns-role @@ -889,7 +901,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-role @@ -919,7 +931,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-unmanaged-detector-cluster-role @@ -950,7 +962,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -1373,6 +1385,14 @@ rules: - get - list - watch +- apiGroups: + - tags.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch - apiGroups: - vpcaccess.cnrm.cloud.google.com resources: @@ -1386,7 +1406,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role @@ -1449,7 +1469,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role-binding @@ -1467,7 +1487,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role-binding @@ -1485,7 +1505,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-admin-binding @@ -1508,7 +1528,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-binding @@ -1525,7 +1545,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-binding @@ -1542,7 +1562,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-unmanaged-detector-binding @@ -1559,7 +1579,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-binding @@ -1576,7 +1596,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -1593,7 +1613,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 prometheus.io/port: "48797" prometheus.io/scrape: "true" labels: @@ -1614,7 +1634,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -1632,7 +1652,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -1645,8 +1665,8 @@ spec: - /configconnector/recorder env: - name: CONFIG_CONNECTOR_VERSION - value: 1.98.0 - image: gcr.io/cnrm-eap/recorder:7f098b4 + value: 1.99.0 + image: gcr.io/cnrm-eap/recorder:d3e87a9 imagePullPolicy: Always name: recorder ports: @@ -1680,7 +1700,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -1695,7 +1715,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -1708,7 +1728,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: gcr.io/cnrm-eap/webhook:7f098b4 + image: gcr.io/cnrm-eap/webhook:d3e87a9 imagePullPolicy: Always name: webhook ports: @@ -1738,7 +1758,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -1753,7 +1773,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -1761,7 +1781,7 @@ spec: containers: - command: - /configconnector/deletiondefender - image: gcr.io/cnrm-eap/deletiondefender:7f098b4 + image: gcr.io/cnrm-eap/deletiondefender:d3e87a9 imagePullPolicy: Always name: deletiondefender ports: @@ -1791,7 +1811,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-unmanaged-detector cnrm.cloud.google.com/system: "true" @@ -1806,7 +1826,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-unmanaged-detector cnrm.cloud.google.com/system: "true" @@ -1814,7 +1834,7 @@ spec: containers: - command: - /configconnector/unmanageddetector - image: gcr.io/cnrm-eap/unmanageddetector:7f098b4 + image: gcr.io/cnrm-eap/unmanageddetector:d3e87a9 imagePullPolicy: Always name: unmanageddetector ports: @@ -1844,7 +1864,7 @@ kind: HorizontalPodAutoscaler metadata: annotations: autoscaling.alpha.kubernetes.io/metrics: '[{"type":"Resource","resource":{"name":"memory","targetAverageUtilization":90}}]' - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook diff --git a/install-bundles/install-bundle-namespaced/crds.yaml b/install-bundles/install-bundle-namespaced/crds.yaml index cb0b6b91ad..703bcd5fb7 100644 --- a/install-bundles/install-bundle-namespaced/crds.yaml +++ b/install-bundles/install-bundle-namespaced/crds.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -402,7 +402,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -532,7 +532,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -1740,7 +1740,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -1915,7 +1915,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -2209,7 +2209,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -2400,7 +2400,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -2753,7 +2753,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -3594,7 +3594,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4053,7 +4053,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4230,7 +4230,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4289,6 +4289,12 @@ spec: columnFamily: description: Immutable. The name of the column family. type: string + deletionPolicy: + description: "The deletion policy for the GC policy. Setting ABANDON + allows the resource\n\t\t\t\tto be abandoned rather than deleted. + This is useful for GC policy as it cannot be deleted\n\t\t\t\tin + a replicated instance. Possible values are: \"ABANDON\"." + type: string gcRules: description: Serialized JSON string for garbage collection policy. Conflicts with "mode", "max_age" and "max_version". @@ -4322,8 +4328,10 @@ spec: type: string type: object maxAge: - description: Immutable. GC policy that applies to all cells older - than the given age. + description: 'Immutable. NOTE: ''gc_rules'' is more flexible, and + should be preferred over this field for new resources. This field + may be deprecated in the future. GC policy that applies to all cells + older than the given age.' items: properties: days: @@ -4336,8 +4344,10 @@ spec: type: object type: array maxVersion: - description: Immutable. GC policy that applies to all versions of - a cell except for the most recent. + description: 'Immutable. NOTE: ''gc_rules'' is more flexible, and + should be preferred over this field for new resources. This field + may be deprecated in the future. GC policy that applies to all versions + of a cell except for the most recent.' items: properties: number: @@ -4349,8 +4359,10 @@ spec: type: object type: array mode: - description: Immutable. If multiple policies are set, you should choose - between UNION OR INTERSECTION. + description: 'Immutable. NOTE: ''gc_rules'' is more flexible, and + should be preferred over this field for new resources. This field + may be deprecated in the future. If multiple policies are set, you + should choose between UNION OR INTERSECTION.' type: string tableRef: description: The name of the table. @@ -4439,7 +4451,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4665,7 +4677,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4733,6 +4745,13 @@ spec: - family type: object type: array + deletionProtection: + description: A field to make the table protected against data loss + i.e. when set to PROTECTED, deleting the table, the column families + in the table, and the instance containing the table would be prohibited. + If not provided, currently deletion protection will be set to UNPROTECTED + as it is the API default value. + type: string instanceRef: description: The name of the Bigtable instance. oneOf: @@ -4827,7 +4846,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -5286,7 +5305,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -5554,7 +5573,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -5979,7 +5998,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6679,8 +6698,9 @@ spec: repoType: description: "The type of the repo, since it may not be explicit from the repo field (e.g from a URL). \nValues can be UNKNOWN, - CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET Possible values: - [\"UNKNOWN\", \"CLOUD_SOURCE_REPOSITORIES\", \"GITHUB\", \"BITBUCKET\"]." + CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET_SERVER Possible + values: [\"UNKNOWN\", \"CLOUD_SOURCE_REPOSITORIES\", \"GITHUB\", + \"BITBUCKET_SERVER\"]." type: string revision: description: "The branch, tag, arbitrary ref, or SHA version of @@ -6921,7 +6941,7 @@ spec: repoType: description: |- The type of the repo, since it may not be explicit from the repo field (e.g from a URL). - Values can be UNKNOWN, CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET Possible values: ["UNKNOWN", "CLOUD_SOURCE_REPOSITORIES", "GITHUB", "BITBUCKET"]. + Values can be UNKNOWN, CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET_SERVER Possible values: ["UNKNOWN", "CLOUD_SOURCE_REPOSITORIES", "GITHUB", "BITBUCKET_SERVER"]. type: string uri: description: The URI of the repo (required). @@ -7109,7 +7129,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -7541,7 +7561,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -7646,11 +7666,15 @@ spec: additionalProperties: type: string description: |- - Immutable. The labels that apply to the Group. + One or more label entries that apply to the Group. Currently supported labels contain a key with an empty value. + + Google Groups are the default type of group and have a label with a key of cloudidentity.googleapis.com/groups.discussion_forum and an empty value. + + Existing Google Groups can have an additional label with a key of cloudidentity.googleapis.com/groups.security and an empty value added to them. This is an immutable change and the security label cannot be removed once added. - Must not contain more than one entry. Must contain the entry - 'cloudidentity.googleapis.com/groups.discussion_forum': '' if the Group is a Google Group or - 'system/groups/external': '' if the Group is an external-identity-mapped group. + Dynamic groups have a label with a key of cloudidentity.googleapis.com/groups.dynamic. + + Identity-mapped groups for Cloud Search have a label with a key of system/groups/external and an empty value. type: object parent: description: |- @@ -7735,7 +7759,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -8002,7 +8026,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -8540,7 +8564,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -8793,7 +8817,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9063,7 +9087,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9315,6 +9339,13 @@ spec: description: If true requests to different hosts will be cached separately. type: boolean + includeHttpHeaders: + description: |- + Allows HTTP request headers (by name) to be used in the + cache key. + items: + type: string + type: array includeNamedCookies: description: Names of cookies to include in cache keys. items: @@ -10183,7 +10214,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -10834,7 +10865,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -10980,7 +11011,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -11200,7 +11231,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -11392,7 +11423,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -11682,7 +11713,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12062,7 +12093,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12720,7 +12751,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -13184,7 +13215,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -13345,7 +13376,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -13506,7 +13537,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -13785,7 +13816,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -14564,7 +14595,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -14767,7 +14798,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -15706,7 +15737,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16454,7 +16485,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16780,7 +16811,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16990,7 +17021,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -17185,7 +17216,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -17352,7 +17383,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -17561,7 +17592,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -17742,7 +17773,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -18142,7 +18173,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18260,7 +18291,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18566,7 +18597,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18780,7 +18811,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19086,7 +19117,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19170,21 +19201,11 @@ spec: type: string type: object ipRange: - description: Immutable. IP address and range of the interface. The - IP range must be in the RFC3927 link-local IP space. Changing this - forces a new interface to be created. + description: Immutable. The IP address and range of the interface. + The IP range must be in the RFC3927 link-local IP space. Changing + this forces a new interface to be created. type: string - region: - description: Immutable. The region this interface's router sits in. - If not specified, the project region will be used. Changing this - forces a new interface to be created. - type: string - resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. - type: string - routerRef: + privateIpAddressRef: oneOf: - not: required: @@ -19201,7 +19222,7 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `ComputeRouter` + description: 'Allowed value: The `address` field of a `ComputeAddress` resource.' type: string name: @@ -19211,7 +19232,8 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object - vpnTunnelRef: + redundantInterfaceRef: + description: The interface the BGP peer is associated with. oneOf: - not: required: @@ -19228,7 +19250,7 @@ spec: - external properties: external: - description: 'Allowed value: The `selfLink` field of a `ComputeVPNTunnel` + description: 'Allowed value: The `name` field of a `ComputeRouterInterface` resource.' type: string name: @@ -19238,232 +19260,10 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object - required: - - region - - routerRef - type: object - status: - properties: - conditions: - description: Conditions represent the latest available observation - of the resource's current state. - items: - properties: - lastTransitionTime: - description: Last time the condition transitioned from one status - to another. - type: string - message: - description: Human-readable message indicating details about - last transition. - type: string - reason: - description: Unique, one-word, CamelCase reason for the condition's - last transition. - type: string - status: - description: Status is the status of the condition. Can be True, - False, Unknown. - type: string - type: - description: Type is the type of the condition. - type: string - type: object - type: array - observedGeneration: - description: ObservedGeneration is the generation of the resource - that was most recently observed by the Config Connector controller. - If this is equal to metadata.generation, then that means that the - current reported status reflects the most recent desired state of - the resource. - type: integer - type: object - required: - - spec - type: object - served: true - storage: true - subresources: - status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - cnrm.cloud.google.com/version: 1.98.0 - creationTimestamp: null - labels: - cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: stable - cnrm.cloud.google.com/system: "true" - cnrm.cloud.google.com/tf2crd: "true" - name: computerouternats.compute.cnrm.cloud.google.com -spec: - group: compute.cnrm.cloud.google.com - names: - categories: - - gcp - kind: ComputeRouterNAT - plural: computerouternats - shortNames: - - gcpcomputerouternat - - gcpcomputerouternats - singular: computerouternat - preserveUnknownFields: false - scope: Namespaced - versions: - - additionalPrinterColumns: - - jsonPath: .metadata.creationTimestamp - name: Age - type: date - - description: When 'True', the most recent reconcile of the resource succeeded - jsonPath: .status.conditions[?(@.type=='Ready')].status - name: Ready - type: string - - description: The reason for the value in 'Ready' - jsonPath: .status.conditions[?(@.type=='Ready')].reason - name: Status - type: string - - description: The last transition time for the value in 'Status' - jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime - name: Status Age - type: date - name: v1beta1 - schema: - openAPIV3Schema: - properties: - apiVersion: - description: 'apiVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' - type: string - kind: - description: 'kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' - type: string - metadata: - type: object - spec: - properties: - drainNatIps: - items: - description: |- - A list of IP resources to be drained. These IPs must be valid - static external IPs that have been assigned to the NAT. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: 'Allowed value: The `selfLink` field of a `ComputeAddress` - resource.' - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' - type: string - namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' - type: string - type: object - type: array - enableDynamicPortAllocation: - description: |- - Enable Dynamic Port Allocation. - If minPortsPerVm is set, minPortsPerVm must be set to a power of two greater than or equal to 32. - If minPortsPerVm is not set, a minimum of 32 ports will be allocated to a VM from this NAT config. - If maxPortsPerVm is set, maxPortsPerVm must be set to a power of two greater than minPortsPerVm. - If maxPortsPerVm is not set, a maximum of 65536 ports will be allocated to a VM from this NAT config. - - Mutually exclusive with enableEndpointIndependentMapping. - type: boolean - enableEndpointIndependentMapping: - description: |- - Specifies if endpoint independent mapping is enabled. This is enabled by default. For more information - see the [official documentation](https://cloud.google.com/nat/docs/overview#specs-rfcs). - type: boolean - icmpIdleTimeoutSec: - description: Timeout (in seconds) for ICMP connections. Defaults to - 30s if not set. - type: integer - logConfig: - description: Configuration for logging on NAT. - properties: - enable: - description: Indicates whether or not to export logs. - type: boolean - filter: - description: 'Specifies the desired filtering of logs on this - NAT. Possible values: ["ERRORS_ONLY", "TRANSLATIONS_ONLY", "ALL"].' - type: string - required: - - enable - - filter - type: object - maxPortsPerVm: - description: |- - Maximum number of ports allocated to a VM from this NAT. - This field can only be set when enableDynamicPortAllocation is enabled. - type: integer - minPortsPerVm: - description: Minimum number of ports allocated to a VM from this NAT. - type: integer - natIpAllocateOption: - description: |- - How external IPs should be allocated for this NAT. Valid values are - 'AUTO_ONLY' for only allowing NAT IPs allocated by Google Cloud - Platform, or 'MANUAL_ONLY' for only user-allocated NAT IP addresses. Possible values: ["MANUAL_ONLY", "AUTO_ONLY"]. - type: string - natIps: - items: - description: NAT IPs. Only valid if natIpAllocateOption is set to - MANUAL_ONLY. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: 'Allowed value: The `selfLink` field of a `ComputeAddress` - resource.' - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' - type: string - namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' - type: string - type: object - type: array region: - description: Immutable. Region where the router and NAT reside. + description: Immutable. The region this interface's router sits in. + If not specified, the project region will be used. Changing this + forces a new interface to be created. type: string resourceID: description: Immutable. Optional. The name of the resource. Used for @@ -19471,7 +19271,320 @@ spec: is used as the default. type: string routerRef: - description: The Cloud Router in which this NAT will be configured. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `ComputeRouter` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + subnetworkRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeSubnetwork` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + vpnTunnelRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeVPNTunnel` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - region + - routerRef + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: stable + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: computerouternats.compute.cnrm.cloud.google.com +spec: + group: compute.cnrm.cloud.google.com + names: + categories: + - gcp + kind: ComputeRouterNAT + plural: computerouternats + shortNames: + - gcpcomputerouternat + - gcpcomputerouternats + singular: computerouternat + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + drainNatIps: + items: + description: |- + A list of IP resources to be drained. These IPs must be valid + static external IPs that have been assigned to the NAT. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeAddress` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + type: array + enableDynamicPortAllocation: + description: |- + Enable Dynamic Port Allocation. + If minPortsPerVm is set, minPortsPerVm must be set to a power of two greater than or equal to 32. + If minPortsPerVm is not set, a minimum of 32 ports will be allocated to a VM from this NAT config. + If maxPortsPerVm is set, maxPortsPerVm must be set to a power of two greater than minPortsPerVm. + If maxPortsPerVm is not set, a maximum of 65536 ports will be allocated to a VM from this NAT config. + + Mutually exclusive with enableEndpointIndependentMapping. + type: boolean + enableEndpointIndependentMapping: + description: |- + Specifies if endpoint independent mapping is enabled. This is enabled by default. For more information + see the [official documentation](https://cloud.google.com/nat/docs/overview#specs-rfcs). + type: boolean + icmpIdleTimeoutSec: + description: Timeout (in seconds) for ICMP connections. Defaults to + 30s if not set. + type: integer + logConfig: + description: Configuration for logging on NAT. + properties: + enable: + description: Indicates whether or not to export logs. + type: boolean + filter: + description: 'Specifies the desired filtering of logs on this + NAT. Possible values: ["ERRORS_ONLY", "TRANSLATIONS_ONLY", "ALL"].' + type: string + required: + - enable + - filter + type: object + maxPortsPerVm: + description: |- + Maximum number of ports allocated to a VM from this NAT. + This field can only be set when enableDynamicPortAllocation is enabled. + type: integer + minPortsPerVm: + description: Minimum number of ports allocated to a VM from this NAT. + type: integer + natIpAllocateOption: + description: |- + How external IPs should be allocated for this NAT. Valid values are + 'AUTO_ONLY' for only allowing NAT IPs allocated by Google Cloud + Platform, or 'MANUAL_ONLY' for only user-allocated NAT IP addresses. Possible values: ["MANUAL_ONLY", "AUTO_ONLY"]. + type: string + natIps: + items: + description: NAT IPs. Only valid if natIpAllocateOption is set to + MANUAL_ONLY. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeAddress` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + type: array + region: + description: Immutable. Region where the router and NAT reside. + type: string + resourceID: + description: Immutable. Optional. The name of the resource. Used for + creation and acquisition. When unset, the value of `metadata.name` + is used as the default. + type: string + routerRef: + description: The Cloud Router in which this NAT will be configured. oneOf: - not: required: @@ -19748,7 +19861,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20054,7 +20167,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20278,7 +20391,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20557,7 +20670,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20657,6 +20770,49 @@ spec: description: An optional description of this security policy. Max size is 2048. type: string + recaptchaOptionsConfig: + description: reCAPTCHA configuration options to be applied for the + security policy. + properties: + redirectSiteKeyRef: + description: |- + Only `external` field is supported to configure the reference. + + A field to supply a reCAPTCHA site key to be used for all the rules + using the redirect action with the type of GOOGLE_RECAPTCHA under + the security policy. The specified site key needs to be created from + the reCAPTCHA API. The user is responsible for the validity of the + specified site key. If not specified, a Google-managed site key is + used. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `RecaptchaEnterpriseKey` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - redirectSiteKeyRef + type: object resourceID: description: Immutable. Optional. The name of the resource. Used for creation and acquisition. When unset, the value of `metadata.name` @@ -20676,6 +20832,27 @@ spec: description: An optional description of this rule. Max size is 64. type: string + headerAction: + description: Additional actions that are performed on headers. + properties: + requestHeadersToAdds: + description: The list of request headers to add or overwrite + if they're already present. + items: + properties: + headerName: + description: The name of the header to set. + type: string + headerValue: + description: The value to set the named header to. + type: string + required: + - headerName + type: object + type: array + required: + - requestHeadersToAdds + type: object match: description: A match condition that incoming traffic is evaluated against. If it evaluates to true, the corresponding action @@ -20720,6 +20897,162 @@ spec: src_ip_ranges field in config.' type: string type: object + preconfiguredWafConfig: + description: Preconfigured WAF configuration to be applied for + the rule. If the rule does not evaluate preconfigured WAF + rules, i.e., if evaluatePreconfiguredWaf() is not used, this + field will have no effect. + properties: + exclusion: + description: An exclusion to apply during preconfigured + WAF evaluation. + items: + properties: + requestCookie: + description: Request cookie whose value will be excluded + from inspection during preconfigured WAF evaluation. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + requestHeader: + description: Request header whose value will be excluded + from inspection during preconfigured WAF evaluation. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + requestQueryParam: + description: Request query parameter whose value will + be excluded from inspection during preconfigured + WAF evaluation. Note that the parameter can be + in the query string or in the POST body. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + requestUri: + description: Request URI from the request line to + be excluded from inspection during preconfigured + WAF evaluation. When specifying this field, the + query or fragment part should be excluded. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + targetRuleIds: + description: A list of target rule IDs under the WAF + rule set to apply the preconfigured WAF exclusion. + If omitted, it refers to all the rule IDs under + the WAF rule set. + items: + type: string + type: array + targetRuleSet: + description: Target WAF rule set to apply the preconfigured + WAF exclusion. + type: string + required: + - targetRuleSet + type: object + type: array + type: object preview: description: When set to true, the action specified above is not enforced. Stackdriver logs for requests that trigger a @@ -20913,7 +21246,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -21260,7 +21593,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21366,7 +21699,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21505,7 +21838,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21893,7 +22226,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22108,7 +22441,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22271,7 +22604,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22342,7 +22675,7 @@ spec: type: string ipv6AccessType: description: |- - Immutable. The access type of IPv6 address this subnet holds. It's immutable and can only be specified during creation + The access type of IPv6 address this subnet holds. It's immutable and can only be specified during creation or the first time the subnet is updated into IPV4_IPV6 dual stack. If the ipv6_type is EXTERNAL then this subnet cannot enable direct path. Possible values: ["EXTERNAL", "INTERNAL"]. type: string @@ -22559,7 +22892,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22737,7 +23070,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22907,7 +23240,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23184,7 +23517,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23380,7 +23713,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23606,7 +23939,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23692,12 +24025,12 @@ spec: type: object certificateMapRef: description: |- + Only `external` field is supported to configure the reference. + A reference to the CertificateMap resource uri that identifies a certificate map associated with the given target proxy. This field can only be set for global target proxies. Accepted format is '//certificatemanager.googleapis.com/projects/{project}/locations/{location}/certificateMaps/{resourceName}'. - - Only `external` field is supported to configure the reference. oneOf: - not: required: @@ -23867,7 +24200,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24034,7 +24367,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24195,7 +24528,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24253,12 +24586,10 @@ spec: properties: defaultRouteAction: description: |- - defaultRouteAction takes effect when none of the hostRules match. The load balancer performs advanced routing actions - like URL rewrites, header transformations, etc. prior to forwarding the request to the selected backend. - If defaultRouteAction specifies any weightedBackendServices, defaultService must not be set. Conversely if defaultService - is set, defaultRouteAction cannot contain any weightedBackendServices. - + defaultRouteAction takes effect when none of the hostRules match. The load balancer performs advanced routing actions, such as URL rewrites and header transformations, before forwarding the request to the selected backend. If defaultRouteAction specifies any weightedBackendServices, defaultService must not be set. Conversely if defaultService is set, defaultRouteAction cannot contain any weightedBackendServices. Only one of defaultRouteAction or defaultUrlRedirect must be set. + URL maps for Classic external HTTP(S) load balancers only support the urlRewrite action within defaultRouteAction. + defaultRouteAction has no effect when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true. properties: corsPolicy: description: |- @@ -24267,8 +24598,8 @@ spec: properties: allowCredentials: description: |- - In response to a preflight request, setting this to true indicates that the actual request can include user credentials. - This translates to the Access-Control-Allow-Credentials header. + In response to a preflight request, setting this to true indicates that the actual request can include user credentials. This field translates to the Access-Control-Allow-Credentials header. + Default is false. type: boolean allowHeaders: description: Specifies the content for the Access-Control-Allow-Headers @@ -24284,7 +24615,7 @@ spec: type: array allowOriginRegexes: description: |- - Specifies the regular expression patterns that match allowed origins. For regular expression grammar + Specifies the regualar expression patterns that match allowed origins. For regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript An origin is allowed if it matches either an item in allowOrigins or an item in allowOriginRegexes. items: @@ -24298,9 +24629,9 @@ spec: type: string type: array disabled: - description: If true, specifies the CORS policy is disabled. - The default value is false, which indicates that the CORS - policy is in effect. + description: If true, the setting specifies the CORS policy + is disabled. The default value of false, which indicates + that the CORS policy is in effect. type: boolean exposeHeaders: description: Specifies the content for the Access-Control-Expose-Headers @@ -24317,11 +24648,10 @@ spec: faultInjectionPolicy: description: |- The specification for fault injection introduced into traffic to test the resiliency of clients to backend service failure. - As part of fault injection, when clients send requests to a backend service, delays can be introduced by Loadbalancer on a - percentage of requests before sending those request to the backend service. Similarly requests from clients can be aborted - by the Loadbalancer for a percentage of requests. - - timeout and retryPolicy will be ignored by clients that are configured with a faultInjectionPolicy. + As part of fault injection, when clients send requests to a backend service, delays can be introduced by a load balancer on a percentage of requests before sending those requests to the backend service. + Similarly requests from clients can be aborted by the load balancer for a percentage of requests. + timeout and retryPolicy is ignored by clients that are configured with a faultInjectionPolicy if: 1. The traffic is generated by fault injection AND 2. The fault injection is not a delay fault injection. + Fault injection is not supported with the global external HTTP(S) load balancer (classic). To see which load balancers support fault injection, see Load balancing: [Routing and traffic management features](https://cloud.google.com/load-balancing/docs/features#routing-traffic-management). properties: abort: description: The specification for how client requests are @@ -24367,12 +24697,17 @@ spec: requestMirrorPolicy: description: |- Specifies the policy on how requests intended for the route's backends are shadowed to a separate mirrored backend service. - Loadbalancer does not wait for responses from the shadow service. Prior to sending traffic to the shadow service, - the host / authority header is suffixed with -shadow. + The load balancer does not wait for responses from the shadow service. Before sending traffic to the shadow service, the host / authority header is suffixed with -shadow. + Not supported when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true. properties: backendServiceRef: - description: Required. The backend service resource being - mirrored to. + description: |- + The backend service resource being mirrored to. + The backend service configured for a mirroring policy must reference + backends that are of the same type as the original backend service + matched in the URL map. + Serverless NEG backends are not currently supported as a mirrored + backend service. oneOf: - not: required: @@ -24389,8 +24724,8 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `ComputeBackendService` - resource.' + description: 'Allowed value: The `selfLink` field of a + `ComputeBackendService` resource.' type: string name: description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' @@ -24399,8 +24734,6 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object - required: - - backendServiceRef type: object retryPolicy: description: Specifies the retry policy associated with this route. @@ -24429,73 +24762,62 @@ spec: type: object retryConditions: description: |- - Specfies one or more conditions when this retry rule applies. Valid values are: - - * 5xx: Loadbalancer will attempt a retry if the backend service responds with any 5xx response code, - or if the backend service does not respond at all, example: disconnects, reset, read timeout, - * connection failure, and refused streams. - * gateway-error: Similar to 5xx, but only applies to response codes 502, 503 or 504. - * connect-failure: Loadbalancer will retry on failures connecting to backend services, - for example due to connection timeouts. - * retriable-4xx: Loadbalancer will retry for retriable 4xx response codes. - Currently the only retriable error supported is 409. - * refused-stream:Loadbalancer will retry if the backend service resets the stream with a REFUSED_STREAM error code. - This reset type indicates that it is safe to retry. - * cancelled: Loadbalancer will retry if the gRPC status code in the response header is set to cancelled - * deadline-exceeded: Loadbalancer will retry if the gRPC status code in the response header is set to deadline-exceeded - * resource-exhausted: Loadbalancer will retry if the gRPC status code in the response header is set to resource-exhausted - * unavailable: Loadbalancer will retry if the gRPC status code in the response header is set to unavailable. + Specifies one or more conditions when this retry policy applies. + Valid values are listed below. Only the following codes are supported when the URL map is bound to target gRPC proxy that has validateForProxyless field set to true: cancelled, deadline-exceeded, internal, resource-exhausted, unavailable. + - 5xx : retry is attempted if the instance or endpoint responds with any 5xx response code, or if the instance or endpoint does not respond at all. For example, disconnects, reset, read timeout, connection failure, and refused streams. + - gateway-error : Similar to 5xx, but only applies to response codes 502, 503 or 504. + - connect-failure : a retry is attempted on failures connecting to the instance or endpoint. For example, connection timeouts. + - retriable-4xx : a retry is attempted if the instance or endpoint responds with a 4xx response code. The only error that you can retry is error code 409. + - refused-stream : a retry is attempted if the instance or endpoint resets the stream with a REFUSED_STREAM error code. This reset type indicates that it is safe to retry. + - cancelled : a retry is attempted if the gRPC status code in the response header is set to cancelled. + - deadline-exceeded : a retry is attempted if the gRPC status code in the response header is set to deadline-exceeded. + - internal : a retry is attempted if the gRPC status code in the response header is set to internal. + - resource-exhausted : a retry is attempted if the gRPC status code in the response header is set to resource-exhausted. + - unavailable : a retry is attempted if the gRPC status code in the response header is set to unavailable. items: type: string type: array type: object timeout: description: |- - Specifies the timeout for the selected route. Timeout is computed from the time the request has been - fully processed (i.e. end-of-stream) up until the response has been completely processed. Timeout includes all retries. - - If not specified, will use the largest timeout among all backend services associated with the route. + Specifies the timeout for the selected route. Timeout is computed from the time the request has been fully processed (known as end-of-stream) up until the response has been processed. Timeout includes all retries. + If not specified, this field uses the largest timeout among all backend services associated with the route. + Not supported when the URL map is bound to a target gRPC proxy that has validateForProxyless field set to true. properties: nanos: - description: |- - Span of time that's a fraction of a second at nanosecond resolution. Durations less than one second are represented - with a 0 seconds field and a positive nanos field. Must be from 0 to 999,999,999 inclusive. + description: Span of time that's a fraction of a second at + nanosecond resolution. Durations less than one second are + represented with a 0 seconds field and a positive nanos + field. Must be from 0 to 999,999,999 inclusive. type: integer seconds: - description: |- - Span of time at a resolution of a second. Must be from 0 to 315,576,000,000 inclusive. - Note: these bounds are computed from: 60 sec/min * 60 min/hr * 24 hr/day * 365.25 days/year * 10000 years. + description: 'Span of time at a resolution of a second. Must + be from 0 to 315,576,000,000 inclusive. Note: these bounds + are computed from: 60 sec/min * 60 min/hr * 24 hr/day * + 365.25 days/year * 10000 years.' type: string type: object urlRewrite: - description: The spec to modify the URL of the request, prior - to forwarding the request to the matched service. + description: |- + The spec to modify the URL of the request, before forwarding the request to the matched service. + urlRewrite is the only action supported in UrlMaps for external HTTP(S) load balancers. + Not supported when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true. properties: hostRewrite: description: |- - Prior to forwarding the request to the selected service, the request's host header is replaced - with contents of hostRewrite. - - The value must be between 1 and 255 characters. + Before forwarding the request to the selected service, the request's host header is replaced with contents of hostRewrite. + The value must be from 1 to 255 characters. type: string pathPrefixRewrite: description: |- - Prior to forwarding the request to the selected backend service, the matching portion of the - request's path is replaced by pathPrefixRewrite. - - The value must be between 1 and 1024 characters. + Before forwarding the request to the selected backend service, the matching portion of the request's path is replaced by pathPrefixRewrite. + The value must be from 1 to 1024 characters. type: string type: object weightedBackendServices: description: |- - A list of weighted backend services to send traffic to when a route match occurs. - The weights determine the fraction of traffic that flows to their corresponding backend service. - If all traffic needs to go to a single backend service, there must be one weightedBackendService - with weight set to a non 0 number. - - Once a backendService is identified and before forwarding the request to the backend service, - advanced routing actions like Url rewrites and header transformations are applied depending on - additional settings specified in this HttpRouteAction. + A list of weighted backend services to send traffic to when a route match occurs. The weights determine the fraction of traffic that flows to their corresponding backend service. If all traffic needs to go to a single backend service, there must be one weightedBackendService with weight set to a non-zero number. + After a backend service is identified and before forwarding the request to the backend service, advanced routing actions such as URL rewrites and header transformations are applied depending on additional settings specified in this HttpRouteAction. items: properties: backendServiceRef: @@ -24520,8 +24842,8 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `ComputeBackendService` - resource.' + description: 'Allowed value: The `selfLink` field of + a `ComputeBackendService` resource.' type: string name: description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' @@ -24533,73 +24855,67 @@ spec: type: object headerAction: description: |- - Specifies changes to request and response headers that need to take effect for - the selected backendService. - - headerAction specified here take effect before headerAction in the enclosing - HttpRouteRule, PathMatcher and UrlMap. + Specifies changes to request and response headers that need to take effect for the selected backendService. + headerAction specified here take effect before headerAction in the enclosing HttpRouteRule, PathMatcher and UrlMap. + headerAction is not supported for load balancers that have their loadBalancingScheme set to EXTERNAL. + Not supported when the URL map is bound to a target gRPC proxy that has validateForProxyless field set to true. properties: requestHeadersToAdd: - description: Headers to add to a matching request prior - to forwarding the request to the backendService. + description: Headers to add to a matching request before + forwarding the request to the backendService. items: properties: headerName: - description: The name of the header to add. + description: The name of the header. type: string headerValue: description: The value of the header to add. type: string replace: description: |- - If false, headerValue is appended to any values that already exist for the header. - If true, headerValue is set for the header, discarding any values that were set for that header. + If false, headerValue is appended to any values that already exist for the header. If true, headerValue is set for the header, discarding any values that were set for that header. + The default value is false. type: boolean type: object type: array requestHeadersToRemove: - description: |- - A list of header names for headers that need to be removed from the request prior to - forwarding the request to the backendService. + description: A list of header names for headers that + need to be removed from the request before forwarding + the request to the backendService. items: type: string type: array responseHeadersToAdd: - description: Headers to add the response prior to sending + description: Headers to add the response before sending the response back to the client. items: properties: headerName: - description: The name of the header to add. + description: The name of the header. type: string headerValue: description: The value of the header to add. type: string replace: description: |- - If false, headerValue is appended to any values that already exist for the header. - If true, headerValue is set for the header, discarding any values that were set for that header. + If false, headerValue is appended to any values that already exist for the header. If true, headerValue is set for the header, discarding any values that were set for that header. + The default value is false. type: boolean type: object type: array responseHeadersToRemove: - description: |- - A list of header names for headers that need to be removed from the response prior to sending the - response back to the client. + description: A list of header names for headers that + need to be removed from the response before sending + the response back to the client. items: type: string type: array type: object weight: description: |- - Specifies the fraction of traffic sent to backendService, computed as - weight / (sum of all weightedBackendService weights in routeAction) . - - The selection of a backend service is determined only for new traffic. Once a user's request - has been directed to a backendService, subsequent requests will be sent to the same backendService - as determined by the BackendService's session affinity policy. - - The value must be between 0 and 1000. + Specifies the fraction of traffic sent to a backend service, computed as weight / (sum of all weightedBackendService weights in routeAction) . + The selection of a backend service is determined only for new traffic. Once a user's request has been directed to a backend service, subsequent requests are sent to the same backend service as determined by the backend service's session affinity policy. + The value must be from 0 to 1000. type: integer type: object type: array @@ -24990,8 +25306,8 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of - a `ComputeBackendService` resource.' + description: 'Allowed value: The `selfLink` field + of a `ComputeBackendService` resource.' type: string name: description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' @@ -25124,7 +25440,7 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field + description: 'Allowed value: The `selfLink` field of a `ComputeBackendService` resource.' type: string name: @@ -26906,7 +27222,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -27105,7 +27421,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -27477,7 +27793,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -27793,7 +28109,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -28382,7 +28698,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -28632,6 +28948,40 @@ spec: description: The default image type used by NAP once a new node pool is being created. type: string + management: + description: NodeManagement configuration for this NodePool. + properties: + autoRepair: + description: Specifies whether the node auto-repair is + enabled for the node pool. If enabled, the nodes in + this node pool will be monitored and, if they fail health + checks too many times, an automatic repair action will + be triggered. + type: boolean + autoUpgrade: + description: Specifies whether node auto-upgrade is enabled + for the node pool. If enabled, node auto-upgrade helps + keep the nodes in your node pool up to date with the + latest release version of Kubernetes. + type: boolean + upgradeOptions: + description: Specifies the Auto Upgrade knobs for the + node pool. + items: + properties: + autoUpgradeStartTime: + description: This field is set when upgrades are + about to commence with the approximate start time + for the upgrades, in RFC3339 text format. + type: string + description: + description: This field is set when upgrades are + about to commence with the description of the + upgrade. + type: string + type: object + type: array + type: object minCpuPlatform: description: Minimum CPU platform to be used by this instance. The instance may be scheduled on the specified or newer @@ -28671,6 +29021,65 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object + shieldedInstanceConfig: + description: Shielded Instance options. + properties: + enableIntegrityMonitoring: + description: Defines whether the instance has integrity + monitoring enabled. + type: boolean + enableSecureBoot: + description: Defines whether the instance has Secure Boot + enabled. + type: boolean + type: object + upgradeSettings: + description: Specifies the upgrade settings for NAP created + node pools. + properties: + blueGreenSettings: + description: Settings for blue-green upgrade strategy. + properties: + nodePoolSoakDuration: + description: "Time needed after draining entire blue + pool. After this period, blue pool will be cleaned + up.\n\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tA duration + in seconds with up to nine fractional digits, ending + with 's'. Example: \"3.5s\"." + type: string + standardRolloutPolicy: + description: Standard policy for the blue-green upgrade. + properties: + batchNodeCount: + description: Number of blue nodes to drain in + a batch. + type: integer + batchPercentage: + description: Percentage of the bool pool nodes + to drain in a batch. The range of this field + should be (0.0, 1.0]. + type: number + batchSoakDuration: + description: "Soak time after each batch gets + drained.\n\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tA + duration in seconds with up to nine fractional + digits, ending with 's'. Example: \"3.5s\"." + type: string + type: object + type: object + maxSurge: + description: The maximum number of nodes that can be created + beyond the current size of the node pool during the + upgrade process. + type: integer + maxUnavailable: + description: The maximum number of nodes that can be simultaneously + unavailable during the upgrade process. + type: integer + strategy: + description: Update strategy of the node pool. + type: string + type: object type: object autoscalingProfile: description: Configuration options for the Autoscaling profile @@ -28705,8 +29114,6 @@ spec: - resourceType type: object type: array - required: - - enabled type: object clusterIpv4Cidr: description: Immutable. The IP address range of the Kubernetes pods @@ -28837,6 +29244,16 @@ spec: description: Immutable. Whether to enable Cloud TPU resources in this cluster. type: boolean + gatewayApiConfig: + description: Configuration for GKE Gateway API controller. + properties: + channel: + description: The Gateway API release channel to use for Gateway + API. + type: string + required: + - channel + type: object identityServiceConfig: description: Configuration for Identity Service which allows customers to use external identity providers with the K8S API. @@ -28901,7 +29318,8 @@ spec: properties: enableComponents: description: GKE components exposing logs. Valid values include - SYSTEM_COMPONENTS and WORKLOADS. + SYSTEM_COMPONENTS, APISERVER, CONTROLLER_MANAGER, SCHEDULER, + and WORKLOADS. items: type: string type: array @@ -29070,6 +29488,10 @@ spec: - cidrBlock type: object type: array + gcpPublicCidrsAccessEnabled: + description: Whether master is accessbile via Google Compute Engine + Public IP addresses. + type: boolean type: object meshCertificates: description: If set, and enable_certificates=true, the GKE Workload @@ -29312,6 +29734,11 @@ spec: description: Immutable. The number of local SSD disks to be attached to the node. type: integer + loggingVariant: + description: Type of logging agent that is used as the default + value for node pools in the cluster. Valid values include DEFAULT + and MAX_THROUGHPUT. + type: string machineType: description: Immutable. The name of a Google Compute Engine machine type. @@ -29388,6 +29815,12 @@ spec: required: - consumeReservationType type: object + resourceLabels: + additionalProperties: + type: string + description: The GCE resource labels (a map of key/value pairs) + to be applied to the node pool. + type: object sandboxConfig: description: Immutable. Sandbox configuration for this node. properties: @@ -29521,6 +29954,11 @@ spec: required: - enabled type: object + loggingVariant: + description: Type of logging agent that is used as the default + value for node pools in the cluster. Valid values include + DEFAULT and MAX_THROUGHPUT. + type: string type: object type: object nodeVersion: @@ -29602,10 +30040,10 @@ spec: nodes. properties: enablePrivateEndpoint: - description: Immutable. When true, the cluster's private endpoint - is used as the cluster endpoint and access through the public - endpoint is disabled. When false, either endpoint can be used. - This field only applies to private clusters, when enable_private_nodes + description: When true, the cluster's private endpoint is used + as the cluster endpoint and access through the public endpoint + is disabled. When false, either endpoint can be used. This field + only applies to private clusters, when enable_private_nodes is true. type: boolean enablePrivateNodes: @@ -29641,12 +30079,40 @@ spec: description: The internal IP address of this cluster's master endpoint. type: string + privateEndpointSubnetworkRef: + description: |- + Immutable. Subnetwork in cluster's network where master's endpoint + will be provisioned. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeSubnetwork` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object publicEndpoint: description: The external IP address of this cluster's master endpoint. type: string - required: - - enablePrivateEndpoint type: object privateIpv6GoogleAccess: description: The desired state of IPv6 connectivity to Google Services. @@ -29847,7 +30313,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -29999,6 +30465,9 @@ spec: IPs in this node pool. Defaults are provided for pod_range and pod_ipv4_cidr_block if they are not specified. type: boolean + enablePrivateNodes: + description: Whether nodes have internal IP addresses only. + type: boolean podIpv4CidrBlock: description: Immutable. The IP address range for pod IPs in this node pool. Only applicable if create_pod_range is true. Set @@ -30013,8 +30482,6 @@ spec: range. If create_pod_range is false, uses an existing secondary range with this ID. type: string - required: - - podRange type: object nodeConfig: description: Immutable. The configuration of the nodepool. @@ -30164,6 +30631,11 @@ spec: description: Immutable. The number of local SSD disks to be attached to the node. type: integer + loggingVariant: + description: Type of logging agent that is used as the default + value for node pools in the cluster. Valid values include DEFAULT + and MAX_THROUGHPUT. + type: string machineType: description: Immutable. The name of a Google Compute Engine machine type. @@ -30240,6 +30712,12 @@ spec: required: - consumeReservationType type: object + resourceLabels: + additionalProperties: + type: string + description: The GCE resource labels (a map of key/value pairs) + to be applied to the node pool. + type: object sandboxConfig: description: Immutable. Sandbox configuration for this node. properties: @@ -30365,6 +30843,31 @@ spec: is the sum of max_surge and max_unavailable. The maximum number of nodes upgraded simultaneously is limited to 20. properties: + blueGreenSettings: + description: Settings for BlueGreen node pool upgrade. + properties: + nodePoolSoakDuration: + description: Time needed after draining entire blue pool. + After this period, blue pool will be cleaned up. + type: string + standardRolloutPolicy: + description: Standard rollout policy is the default policy + for blue-green. + properties: + batchNodeCount: + description: Number of blue nodes to drain in a batch. + type: integer + batchPercentage: + description: Percentage of the blue pool nodes to drain + in a batch. + type: number + batchSoakDuration: + description: Soak time after each batch gets drained. + type: string + type: object + required: + - standardRolloutPolicy + type: object maxSurge: description: The number of additional nodes that can be added to the node pool during an upgrade. Increasing max_surge raises @@ -30377,9 +30880,9 @@ spec: of nodes that can be upgraded in parallel. Can be set to 0 or greater. type: integer - required: - - maxSurge - - maxUnavailable + strategy: + description: Update strategy for the given nodepool. + type: string type: object version: type: string @@ -30455,7 +30958,203 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: datacatalogpolicytags.datacatalog.cnrm.cloud.google.com +spec: + group: datacatalog.cnrm.cloud.google.com + names: + categories: + - gcp + kind: DataCatalogPolicyTag + plural: datacatalogpolicytags + shortNames: + - gcpdatacatalogpolicytag + - gcpdatacatalogpolicytags + singular: datacatalogpolicytag + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + description: + description: |- + Description of this policy tag. It must: contain only unicode characters, tabs, + newlines, carriage returns and page breaks; and be at most 2000 bytes long when + encoded in UTF-8. If not set, defaults to an empty description. + If not set, defaults to an empty description. + type: string + displayName: + description: |- + User defined name of this policy tag. It must: be unique within the parent + taxonomy; contain only unicode letters, numbers, underscores, dashes and spaces; + not start or end with spaces; and be at most 200 bytes long when encoded in UTF-8. + type: string + parentPolicyTagRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `DataCatalogPolicyTag` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + taxonomyRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `DataCatalogTaxonomy` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - displayName + - taxonomyRef + type: object + status: + properties: + childPolicyTags: + description: Resource names of child policy tags of this policy tag. + items: + type: string + type: array + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + name: + description: |- + Resource name of this policy tag, whose format is: + "projects/{project}/locations/{region}/taxonomies/{taxonomy}/policyTags/{policytag}". + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -30629,7 +31328,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -30755,7 +31454,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -31041,7 +31740,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -31320,7 +32019,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -31615,7 +32314,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -33430,7 +34129,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -35372,7 +36071,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -39548,7 +40247,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -40160,7 +40859,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -41636,7 +42335,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -42007,7 +42706,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42203,6 +42902,47 @@ spec: For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. properties: + gkeClusters: + description: The list of Google Kubernetes Engine clusters that + can see this zone. + items: + properties: + gkeClusterNameRef: + description: |- + The resource name of the cluster to bind this ManagedZone to. + This should be specified in the format like + 'projects/*/locations/*/clusters/*'. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of + a `ContainerCluster` resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: + https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - gkeClusterNameRef + type: object + type: array networks: items: properties: @@ -42353,7 +43093,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42549,7 +43289,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42747,7 +43487,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -43236,7 +43976,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -43458,7 +44198,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -43787,7 +44527,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -43941,7 +44681,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -44154,7 +44894,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -44292,7 +45032,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -44425,6 +45165,57 @@ spec: Default: 15.' type: string type: object + oci: + properties: + gcpServiceAccountRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: "The GCP Service Account Email used for + auth when secret_type is gcpserviceaccount. \n\nAllowed + value: The `email` field of an `IAMServiceAccount` + resource." + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: + https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + policyDir: + description: 'The absolute path of the directory that + contains the local resources. Default: the root directory + of the image.' + type: string + secretType: + description: Type of secret configured for access to the + OCI Image. Must be one of gcenode, gcpserviceaccount + or none. The validation of this is case-sensitive. + type: string + syncRepo: + description: The OCI image repository URL for the package + to sync from. e.g. LOCATION-docker.pkg.dev/PROJECT_ID/REPOSITORY_NAME/PACKAGE_NAME. + type: string + syncWaitSecs: + description: 'Period in seconds(int64 format) between + consecutive syncs. Default: 15.' + type: string + type: object preventDrift: description: Set to true to enable the Config Sync admission webhook to prevent drifts. If set to `false`, disables the @@ -44573,6 +45364,11 @@ spec: mesh: description: Manage Mesh Features properties: + controlPlane: + description: 'Whether to automatically manage Service Mesh control + planes. Possible values: CONTROL_PLANE_MANAGEMENT_UNSPECIFIED, + AUTOMATIC, MANUAL' + type: string management: description: 'Whether to automatically manage Service Mesh. Possible values: MANAGEMENT_UNSPECIFIED, MANAGEMENT_AUTOMATIC, MANAGEMENT_MANUAL' @@ -44668,7 +45464,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -44908,7 +45704,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -45273,7 +46069,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45434,7 +46230,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45574,7 +46370,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45885,7 +46681,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46113,7 +46909,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46340,7 +47136,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46519,7 +47315,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46661,7 +47457,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -46913,7 +47709,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47094,7 +47890,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47390,7 +48186,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47557,7 +48353,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47683,7 +48479,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47837,7 +48633,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -48529,7 +49325,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -48712,7 +49508,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -48929,7 +49725,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -49082,7 +49878,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -49274,7 +50070,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -49400,7 +50196,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -49684,7 +50480,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -49959,7 +50755,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -50380,7 +51176,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -50784,7 +51580,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -51088,7 +51884,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -51425,7 +52221,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -52240,7 +53036,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -59122,7 +59918,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -59313,7 +60109,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -59608,7 +60404,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -59735,7 +60531,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -60036,7 +60832,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -60607,7 +61403,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -60766,7 +61562,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -61145,7 +61941,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -61327,7 +62123,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -61672,7 +62468,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -61930,7 +62726,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62159,7 +62955,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62403,7 +63199,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62724,7 +63520,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62788,35 +63584,6 @@ spec: items: type: string type: array - authorizationPolicyRef: - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: |- - Optional. A fully-qualified AuthorizationPolicy URL reference. Specifies how traffic is authorized. If empty, authorization checks are disabled. - - Allowed value: The Google Cloud resource name of a `NetworkSecurityAuthorizationPolicy` resource (format: `projects/{{project}}/locations/{{location}}/authorizationPolicies/{{name}}`). - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' - type: string - namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' - type: string - type: object description: description: Optional. A free-text description of the resource. Max length 1024 characters. @@ -62979,7 +63746,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -63446,7 +64213,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -64180,7 +64947,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -64356,7 +65123,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -64686,7 +65453,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -65007,7 +65774,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -65776,7 +66543,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -66677,6 +67444,10 @@ spec: - disruptionBudget - minWaitDuration type: object + skipAwaitRollout: + description: Set to true to skip awaiting rollout during resource + creation and update. + type: boolean required: - instanceFilter - location @@ -66774,7 +67545,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -67270,7 +68041,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -68268,7 +69039,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -69179,7 +69950,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -69595,7 +70366,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -69820,7 +70591,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -69976,7 +70747,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -70397,7 +71168,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -70614,7 +71385,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -70850,7 +71621,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -71104,7 +71875,7 @@ spec: description: Redis memory size in GiB. type: integer persistenceConfig: - description: Maintenance policy for an instance. + description: Persistence configuration for an instance. properties: persistenceMode: description: "Optional. Controls whether Persistence features @@ -71333,7 +72104,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -71511,7 +72282,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -71792,7 +72563,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -72674,7 +73445,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -72936,7 +73707,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73139,7 +73910,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73359,7 +74130,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73516,7 +74287,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73668,7 +74439,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73846,7 +74617,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73987,7 +74758,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74186,7 +74957,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74393,7 +75164,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74533,7 +75304,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74605,6 +75376,13 @@ spec: for more details and supported values. Postgres databases only support a value of 'en_US.UTF8' at creation time. type: string + deletionPolicy: + description: "The deletion policy for the database. Setting ABANDON + allows the resource \nto be abandoned rather than deleted. This + is useful for Postgres, where databases cannot be \ndeleted from + the API if there are users other than cloudsqlsuperuser with access. + Possible \nvalues are: \"ABANDON\", \"DELETE\". Defaults to \"DELETE\"." + type: string instanceRef: description: The Cloud SQL instance. oneOf: @@ -74697,7 +75475,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75026,6 +75804,9 @@ spec: collation: description: Immutable. The name of server instance collation. type: string + connectorEnforcement: + description: Specifies if connections must use Cloud SQL connectors. + type: string crashSafeReplication: description: |- DEPRECATED. This property is only applicable to First Generation instances, and First Generation instances are now deprecated. see https://cloud.google.com/sql/docs/mysql/deprecation-notice for information on how to upgrade to Second Generation instances. @@ -75045,6 +75826,28 @@ spec: - value type: object type: array + denyMaintenancePeriod: + properties: + endDate: + description: End date before which maintenance will not take + place. The date is in format yyyy-mm-dd i.e., 2020-11-01, + or mm-dd, i.e., 11-01. + type: string + startDate: + description: Start date after which maintenance will not take + place. The date is in format yyyy-mm-dd i.e., 2020-11-01, + or mm-dd, i.e., 11-01. + type: string + time: + description: 'Time in UTC when the "deny maintenance period" + starts on start_date and ends on end_date. The time is in + format: HH:mm:SS, i.e., 00:00:00.' + type: string + required: + - endDate + - startDate + - time + type: object diskAutoresize: description: Enables auto-resizing of the storage size. Defaults to true. @@ -75069,6 +75872,11 @@ spec: queryInsightsEnabled: description: True if Query Insights feature is enabled. type: boolean + queryPlansPerMinute: + description: Number of query execution plans captured by Insights + per minute for all queries combined. Between 0 and 20. Default + to 5. + type: integer queryStringLength: description: Maximum query length stored in bytes. Between 256 and 4500. Default to 1024. @@ -75251,7 +76059,7 @@ spec: custom machine types. type: string timeZone: - description: Immutable. The timezone to be used by the database + description: Immutable. The time_zone to be used by the database engine (supported only for SQL Server), in SQL Server timezone format. type: string @@ -75366,7 +76174,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75542,7 +76350,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75783,7 +76591,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75953,7 +76761,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76009,6 +76817,17 @@ spec: type: object spec: properties: + autoclass: + description: Immutable. The bucket's autoclass configuration. + properties: + enabled: + description: Immutable. While set to true, autoclass automatically + transitions objects in your bucket to appropriate storage classes + based on each object's access pattern. + type: boolean + required: + - enabled + type: object bucketPolicyOnly: description: |- DEPRECATED. Please use the `uniformBucketLevelAccess` field as this field has been renamed by Google. The `uniformBucketLevelAccess` field will supersede this field. @@ -76114,7 +76933,8 @@ spec: type: string type: description: 'The type of the action of this Lifecycle Rule. - Supported values include: Delete and SetStorageClass.' + Supported values include: Delete, SetStorageClass and + AbortIncompleteMultipartUpload.' type: string required: - type @@ -76315,7 +77135,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76501,7 +77321,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76704,7 +77524,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -77314,7 +78134,347 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: tagstagkeys.tags.cnrm.cloud.google.com +spec: + group: tags.cnrm.cloud.google.com + names: + categories: + - gcp + kind: TagsTagKey + plural: tagstagkeys + shortNames: + - gcptagstagkey + - gcptagstagkeys + singular: tagstagkey + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + description: + description: User-assigned description of the TagKey. Must not exceed + 256 characters. + type: string + parent: + description: Immutable. Input only. The resource name of the new TagKey's + parent. Must be of the form organizations/{org_id}. + type: string + purpose: + description: |- + Immutable. Optional. A purpose cannot be changed once set. + + A purpose denotes that this Tag is intended for use in policies of a specific policy engine, and will involve that policy engine in management operations involving this Tag. Possible values: ["GCE_FIREWALL"]. + type: string + purposeData: + additionalProperties: + type: string + description: |- + Immutable. Optional. Purpose data cannot be changed once set. + + Purpose data corresponds to the policy system that the tag is intended for. For example, the GCE_FIREWALL purpose expects data in the following format: 'network = "/"'. + type: object + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + shortName: + description: |- + Immutable. Input only. The user friendly name for a TagKey. The short name should be unique for TagKeys within the same tag namespace. + + The short name must be 1-63 characters, beginning and ending with an alphanumeric character ([a-z0-9A-Z]) with dashes (-), underscores (_), dots (.), and alphanumerics between. + type: string + required: + - parent + - shortName + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + createTime: + description: |- + Output only. Creation time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + name: + description: The generated numeric id for the TagKey. + type: string + namespacedName: + description: Output only. Namespaced name of the TagKey. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + updateTime: + description: |- + Output only. Update time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: tagstagvalues.tags.cnrm.cloud.google.com +spec: + group: tags.cnrm.cloud.google.com + names: + categories: + - gcp + kind: TagsTagValue + plural: tagstagvalues + shortNames: + - gcptagstagvalue + - gcptagstagvalues + singular: tagstagvalue + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + description: + description: User-assigned description of the TagValue. Must not exceed + 256 characters. + type: string + parentRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: string of the format `tagKeys/{{value}}`, + where {{value}} is the `name` field of a `TagsTagKey` resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + shortName: + description: |- + Immutable. Input only. User-assigned short name for TagValue. The short name should be unique for TagValues within the same parent TagKey. + + The short name must be 63 characters or less, beginning and ending with an alphanumeric character ([a-z0-9A-Z]) with dashes (-), underscores (_), dots (.), and alphanumerics between. + type: string + required: + - parentRef + - shortName + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + createTime: + description: |- + Output only. Creation time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + name: + description: The generated numeric id for the TagValue. + type: string + namespacedName: + description: Output only. Namespaced name of the TagValue. Will be + in the format {organizationId}/{tag_key_short_name}/{shortName}. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + updateTime: + description: |- + Output only. Update time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/install-bundles/install-bundle-namespaced/per-namespace-components.yaml b/install-bundles/install-bundle-namespaced/per-namespace-components.yaml index 258809c1ee..cc1e86e82b 100644 --- a/install-bundles/install-bundle-namespaced/per-namespace-components.yaml +++ b/install-bundles/install-bundle-namespaced/per-namespace-components.yaml @@ -16,7 +16,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 iam.gke.io/gcp-service-account: cnrm-system-${NAMESPACE?}@${PROJECT_ID?}.iam.gserviceaccount.com labels: cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} @@ -28,7 +28,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} cnrm.cloud.google.com/system: "true" @@ -47,7 +47,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} cnrm.cloud.google.com/system: "true" @@ -66,7 +66,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} cnrm.cloud.google.com/system: "true" @@ -85,7 +85,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} cnrm.cloud.google.com/system: "true" @@ -103,7 +103,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 prometheus.io/port: "8888" prometheus.io/scrape: "true" labels: @@ -127,7 +127,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} @@ -144,7 +144,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} @@ -156,7 +156,7 @@ spec: - --prometheus-scrape-endpoint=:8888 command: - /configconnector/manager - image: gcr.io/cnrm-eap/controller:7f098b4 + image: gcr.io/cnrm-eap/controller:d3e87a9 imagePullPolicy: Always name: manager ports: diff --git a/install-bundles/install-bundle-workload-identity/0-cnrm-system.yaml b/install-bundles/install-bundle-workload-identity/0-cnrm-system.yaml index 77e36e3161..463f5ca0da 100644 --- a/install-bundles/install-bundle-workload-identity/0-cnrm-system.yaml +++ b/install-bundles/install-bundle-workload-identity/0-cnrm-system.yaml @@ -16,7 +16,7 @@ apiVersion: v1 kind: Namespace metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-system @@ -25,7 +25,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 iam.gke.io/gcp-service-account: cnrm-system@${PROJECT_ID?}.iam.gserviceaccount.com labels: cnrm.cloud.google.com/system: "true" @@ -36,7 +36,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -46,7 +46,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-resource-stats-recorder @@ -56,7 +56,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-manager @@ -66,7 +66,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-cnrm-system-role @@ -87,7 +87,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-cnrm-system-role @@ -108,7 +108,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -740,6 +740,18 @@ rules: - update - patch - delete +- apiGroups: + - tags.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch + - create + - update + - patch + - delete - apiGroups: - vpcaccess.cnrm.cloud.google.com resources: @@ -757,7 +769,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role @@ -807,7 +819,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-cluster-role @@ -865,7 +877,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-ns-role @@ -890,7 +902,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-role @@ -920,7 +932,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -1343,6 +1355,14 @@ rules: - get - list - watch +- apiGroups: + - tags.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch - apiGroups: - vpcaccess.cnrm.cloud.google.com resources: @@ -1356,7 +1376,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role @@ -1419,7 +1439,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role-binding @@ -1437,7 +1457,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role-binding @@ -1455,7 +1475,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-admin-binding @@ -1478,7 +1498,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-binding @@ -1495,7 +1515,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-binding @@ -1512,7 +1532,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-watcher-binding @@ -1529,7 +1549,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-binding @@ -1546,7 +1566,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-binding @@ -1563,7 +1583,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -1580,7 +1600,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 prometheus.io/port: "8888" prometheus.io/scrape: "true" labels: @@ -1602,7 +1622,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 prometheus.io/port: "48797" prometheus.io/scrape: "true" labels: @@ -1623,7 +1643,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -1641,7 +1661,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -1654,8 +1674,8 @@ spec: - /configconnector/recorder env: - name: CONFIG_CONNECTOR_VERSION - value: 1.98.0 - image: gcr.io/cnrm-eap/recorder:7f098b4 + value: 1.99.0 + image: gcr.io/cnrm-eap/recorder:d3e87a9 imagePullPolicy: Always name: recorder ports: @@ -1689,7 +1709,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -1704,7 +1724,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -1717,7 +1737,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: gcr.io/cnrm-eap/webhook:7f098b4 + image: gcr.io/cnrm-eap/webhook:d3e87a9 imagePullPolicy: Always name: webhook ports: @@ -1747,7 +1767,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/system: "true" @@ -1762,7 +1782,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/system: "true" @@ -1772,7 +1792,7 @@ spec: - --prometheus-scrape-endpoint=:8888 command: - /configconnector/manager - image: gcr.io/cnrm-eap/controller:7f098b4 + image: gcr.io/cnrm-eap/controller:d3e87a9 imagePullPolicy: Always name: manager ports: @@ -1802,7 +1822,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -1817,7 +1837,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -1825,7 +1845,7 @@ spec: containers: - command: - /configconnector/deletiondefender - image: gcr.io/cnrm-eap/deletiondefender:7f098b4 + image: gcr.io/cnrm-eap/deletiondefender:d3e87a9 imagePullPolicy: Always name: deletiondefender ports: @@ -1856,7 +1876,7 @@ kind: HorizontalPodAutoscaler metadata: annotations: autoscaling.alpha.kubernetes.io/metrics: '[{"type":"Resource","resource":{"name":"memory","targetAverageUtilization":90}}]' - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook diff --git a/install-bundles/install-bundle-workload-identity/crds.yaml b/install-bundles/install-bundle-workload-identity/crds.yaml index cb0b6b91ad..703bcd5fb7 100644 --- a/install-bundles/install-bundle-workload-identity/crds.yaml +++ b/install-bundles/install-bundle-workload-identity/crds.yaml @@ -16,7 +16,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -402,7 +402,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -532,7 +532,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -1740,7 +1740,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -1915,7 +1915,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -2209,7 +2209,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -2400,7 +2400,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -2753,7 +2753,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -3594,7 +3594,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4053,7 +4053,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4230,7 +4230,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4289,6 +4289,12 @@ spec: columnFamily: description: Immutable. The name of the column family. type: string + deletionPolicy: + description: "The deletion policy for the GC policy. Setting ABANDON + allows the resource\n\t\t\t\tto be abandoned rather than deleted. + This is useful for GC policy as it cannot be deleted\n\t\t\t\tin + a replicated instance. Possible values are: \"ABANDON\"." + type: string gcRules: description: Serialized JSON string for garbage collection policy. Conflicts with "mode", "max_age" and "max_version". @@ -4322,8 +4328,10 @@ spec: type: string type: object maxAge: - description: Immutable. GC policy that applies to all cells older - than the given age. + description: 'Immutable. NOTE: ''gc_rules'' is more flexible, and + should be preferred over this field for new resources. This field + may be deprecated in the future. GC policy that applies to all cells + older than the given age.' items: properties: days: @@ -4336,8 +4344,10 @@ spec: type: object type: array maxVersion: - description: Immutable. GC policy that applies to all versions of - a cell except for the most recent. + description: 'Immutable. NOTE: ''gc_rules'' is more flexible, and + should be preferred over this field for new resources. This field + may be deprecated in the future. GC policy that applies to all versions + of a cell except for the most recent.' items: properties: number: @@ -4349,8 +4359,10 @@ spec: type: object type: array mode: - description: Immutable. If multiple policies are set, you should choose - between UNION OR INTERSECTION. + description: 'Immutable. NOTE: ''gc_rules'' is more flexible, and + should be preferred over this field for new resources. This field + may be deprecated in the future. If multiple policies are set, you + should choose between UNION OR INTERSECTION.' type: string tableRef: description: The name of the table. @@ -4439,7 +4451,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4665,7 +4677,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4733,6 +4745,13 @@ spec: - family type: object type: array + deletionProtection: + description: A field to make the table protected against data loss + i.e. when set to PROTECTED, deleting the table, the column families + in the table, and the instance containing the table would be prohibited. + If not provided, currently deletion protection will be set to UNPROTECTED + as it is the API default value. + type: string instanceRef: description: The name of the Bigtable instance. oneOf: @@ -4827,7 +4846,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -5286,7 +5305,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -5554,7 +5573,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -5979,7 +5998,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6679,8 +6698,9 @@ spec: repoType: description: "The type of the repo, since it may not be explicit from the repo field (e.g from a URL). \nValues can be UNKNOWN, - CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET Possible values: - [\"UNKNOWN\", \"CLOUD_SOURCE_REPOSITORIES\", \"GITHUB\", \"BITBUCKET\"]." + CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET_SERVER Possible + values: [\"UNKNOWN\", \"CLOUD_SOURCE_REPOSITORIES\", \"GITHUB\", + \"BITBUCKET_SERVER\"]." type: string revision: description: "The branch, tag, arbitrary ref, or SHA version of @@ -6921,7 +6941,7 @@ spec: repoType: description: |- The type of the repo, since it may not be explicit from the repo field (e.g from a URL). - Values can be UNKNOWN, CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET Possible values: ["UNKNOWN", "CLOUD_SOURCE_REPOSITORIES", "GITHUB", "BITBUCKET"]. + Values can be UNKNOWN, CLOUD_SOURCE_REPOSITORIES, GITHUB, BITBUCKET_SERVER Possible values: ["UNKNOWN", "CLOUD_SOURCE_REPOSITORIES", "GITHUB", "BITBUCKET_SERVER"]. type: string uri: description: The URI of the repo (required). @@ -7109,7 +7129,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -7541,7 +7561,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -7646,11 +7666,15 @@ spec: additionalProperties: type: string description: |- - Immutable. The labels that apply to the Group. + One or more label entries that apply to the Group. Currently supported labels contain a key with an empty value. + + Google Groups are the default type of group and have a label with a key of cloudidentity.googleapis.com/groups.discussion_forum and an empty value. + + Existing Google Groups can have an additional label with a key of cloudidentity.googleapis.com/groups.security and an empty value added to them. This is an immutable change and the security label cannot be removed once added. - Must not contain more than one entry. Must contain the entry - 'cloudidentity.googleapis.com/groups.discussion_forum': '' if the Group is a Google Group or - 'system/groups/external': '' if the Group is an external-identity-mapped group. + Dynamic groups have a label with a key of cloudidentity.googleapis.com/groups.dynamic. + + Identity-mapped groups for Cloud Search have a label with a key of system/groups/external and an empty value. type: object parent: description: |- @@ -7735,7 +7759,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -8002,7 +8026,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -8540,7 +8564,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -8793,7 +8817,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9063,7 +9087,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9315,6 +9339,13 @@ spec: description: If true requests to different hosts will be cached separately. type: boolean + includeHttpHeaders: + description: |- + Allows HTTP request headers (by name) to be used in the + cache key. + items: + type: string + type: array includeNamedCookies: description: Names of cookies to include in cache keys. items: @@ -10183,7 +10214,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -10834,7 +10865,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -10980,7 +11011,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -11200,7 +11231,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -11392,7 +11423,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -11682,7 +11713,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12062,7 +12093,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12720,7 +12751,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -13184,7 +13215,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -13345,7 +13376,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -13506,7 +13537,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -13785,7 +13816,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -14564,7 +14595,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -14767,7 +14798,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -15706,7 +15737,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16454,7 +16485,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16780,7 +16811,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16990,7 +17021,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -17185,7 +17216,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -17352,7 +17383,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -17561,7 +17592,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -17742,7 +17773,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -18142,7 +18173,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18260,7 +18291,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18566,7 +18597,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18780,7 +18811,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19086,7 +19117,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19170,21 +19201,11 @@ spec: type: string type: object ipRange: - description: Immutable. IP address and range of the interface. The - IP range must be in the RFC3927 link-local IP space. Changing this - forces a new interface to be created. + description: Immutable. The IP address and range of the interface. + The IP range must be in the RFC3927 link-local IP space. Changing + this forces a new interface to be created. type: string - region: - description: Immutable. The region this interface's router sits in. - If not specified, the project region will be used. Changing this - forces a new interface to be created. - type: string - resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. - type: string - routerRef: + privateIpAddressRef: oneOf: - not: required: @@ -19201,7 +19222,7 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `ComputeRouter` + description: 'Allowed value: The `address` field of a `ComputeAddress` resource.' type: string name: @@ -19211,7 +19232,8 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object - vpnTunnelRef: + redundantInterfaceRef: + description: The interface the BGP peer is associated with. oneOf: - not: required: @@ -19228,7 +19250,7 @@ spec: - external properties: external: - description: 'Allowed value: The `selfLink` field of a `ComputeVPNTunnel` + description: 'Allowed value: The `name` field of a `ComputeRouterInterface` resource.' type: string name: @@ -19238,232 +19260,10 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object - required: - - region - - routerRef - type: object - status: - properties: - conditions: - description: Conditions represent the latest available observation - of the resource's current state. - items: - properties: - lastTransitionTime: - description: Last time the condition transitioned from one status - to another. - type: string - message: - description: Human-readable message indicating details about - last transition. - type: string - reason: - description: Unique, one-word, CamelCase reason for the condition's - last transition. - type: string - status: - description: Status is the status of the condition. Can be True, - False, Unknown. - type: string - type: - description: Type is the type of the condition. - type: string - type: object - type: array - observedGeneration: - description: ObservedGeneration is the generation of the resource - that was most recently observed by the Config Connector controller. - If this is equal to metadata.generation, then that means that the - current reported status reflects the most recent desired state of - the resource. - type: integer - type: object - required: - - spec - type: object - served: true - storage: true - subresources: - status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - cnrm.cloud.google.com/version: 1.98.0 - creationTimestamp: null - labels: - cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: stable - cnrm.cloud.google.com/system: "true" - cnrm.cloud.google.com/tf2crd: "true" - name: computerouternats.compute.cnrm.cloud.google.com -spec: - group: compute.cnrm.cloud.google.com - names: - categories: - - gcp - kind: ComputeRouterNAT - plural: computerouternats - shortNames: - - gcpcomputerouternat - - gcpcomputerouternats - singular: computerouternat - preserveUnknownFields: false - scope: Namespaced - versions: - - additionalPrinterColumns: - - jsonPath: .metadata.creationTimestamp - name: Age - type: date - - description: When 'True', the most recent reconcile of the resource succeeded - jsonPath: .status.conditions[?(@.type=='Ready')].status - name: Ready - type: string - - description: The reason for the value in 'Ready' - jsonPath: .status.conditions[?(@.type=='Ready')].reason - name: Status - type: string - - description: The last transition time for the value in 'Status' - jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime - name: Status Age - type: date - name: v1beta1 - schema: - openAPIV3Schema: - properties: - apiVersion: - description: 'apiVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' - type: string - kind: - description: 'kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' - type: string - metadata: - type: object - spec: - properties: - drainNatIps: - items: - description: |- - A list of IP resources to be drained. These IPs must be valid - static external IPs that have been assigned to the NAT. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: 'Allowed value: The `selfLink` field of a `ComputeAddress` - resource.' - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' - type: string - namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' - type: string - type: object - type: array - enableDynamicPortAllocation: - description: |- - Enable Dynamic Port Allocation. - If minPortsPerVm is set, minPortsPerVm must be set to a power of two greater than or equal to 32. - If minPortsPerVm is not set, a minimum of 32 ports will be allocated to a VM from this NAT config. - If maxPortsPerVm is set, maxPortsPerVm must be set to a power of two greater than minPortsPerVm. - If maxPortsPerVm is not set, a maximum of 65536 ports will be allocated to a VM from this NAT config. - - Mutually exclusive with enableEndpointIndependentMapping. - type: boolean - enableEndpointIndependentMapping: - description: |- - Specifies if endpoint independent mapping is enabled. This is enabled by default. For more information - see the [official documentation](https://cloud.google.com/nat/docs/overview#specs-rfcs). - type: boolean - icmpIdleTimeoutSec: - description: Timeout (in seconds) for ICMP connections. Defaults to - 30s if not set. - type: integer - logConfig: - description: Configuration for logging on NAT. - properties: - enable: - description: Indicates whether or not to export logs. - type: boolean - filter: - description: 'Specifies the desired filtering of logs on this - NAT. Possible values: ["ERRORS_ONLY", "TRANSLATIONS_ONLY", "ALL"].' - type: string - required: - - enable - - filter - type: object - maxPortsPerVm: - description: |- - Maximum number of ports allocated to a VM from this NAT. - This field can only be set when enableDynamicPortAllocation is enabled. - type: integer - minPortsPerVm: - description: Minimum number of ports allocated to a VM from this NAT. - type: integer - natIpAllocateOption: - description: |- - How external IPs should be allocated for this NAT. Valid values are - 'AUTO_ONLY' for only allowing NAT IPs allocated by Google Cloud - Platform, or 'MANUAL_ONLY' for only user-allocated NAT IP addresses. Possible values: ["MANUAL_ONLY", "AUTO_ONLY"]. - type: string - natIps: - items: - description: NAT IPs. Only valid if natIpAllocateOption is set to - MANUAL_ONLY. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: 'Allowed value: The `selfLink` field of a `ComputeAddress` - resource.' - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' - type: string - namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' - type: string - type: object - type: array region: - description: Immutable. Region where the router and NAT reside. + description: Immutable. The region this interface's router sits in. + If not specified, the project region will be used. Changing this + forces a new interface to be created. type: string resourceID: description: Immutable. Optional. The name of the resource. Used for @@ -19471,7 +19271,320 @@ spec: is used as the default. type: string routerRef: - description: The Cloud Router in which this NAT will be configured. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `ComputeRouter` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + subnetworkRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeSubnetwork` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + vpnTunnelRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeVPNTunnel` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - region + - routerRef + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: stable + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: computerouternats.compute.cnrm.cloud.google.com +spec: + group: compute.cnrm.cloud.google.com + names: + categories: + - gcp + kind: ComputeRouterNAT + plural: computerouternats + shortNames: + - gcpcomputerouternat + - gcpcomputerouternats + singular: computerouternat + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + drainNatIps: + items: + description: |- + A list of IP resources to be drained. These IPs must be valid + static external IPs that have been assigned to the NAT. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeAddress` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + type: array + enableDynamicPortAllocation: + description: |- + Enable Dynamic Port Allocation. + If minPortsPerVm is set, minPortsPerVm must be set to a power of two greater than or equal to 32. + If minPortsPerVm is not set, a minimum of 32 ports will be allocated to a VM from this NAT config. + If maxPortsPerVm is set, maxPortsPerVm must be set to a power of two greater than minPortsPerVm. + If maxPortsPerVm is not set, a maximum of 65536 ports will be allocated to a VM from this NAT config. + + Mutually exclusive with enableEndpointIndependentMapping. + type: boolean + enableEndpointIndependentMapping: + description: |- + Specifies if endpoint independent mapping is enabled. This is enabled by default. For more information + see the [official documentation](https://cloud.google.com/nat/docs/overview#specs-rfcs). + type: boolean + icmpIdleTimeoutSec: + description: Timeout (in seconds) for ICMP connections. Defaults to + 30s if not set. + type: integer + logConfig: + description: Configuration for logging on NAT. + properties: + enable: + description: Indicates whether or not to export logs. + type: boolean + filter: + description: 'Specifies the desired filtering of logs on this + NAT. Possible values: ["ERRORS_ONLY", "TRANSLATIONS_ONLY", "ALL"].' + type: string + required: + - enable + - filter + type: object + maxPortsPerVm: + description: |- + Maximum number of ports allocated to a VM from this NAT. + This field can only be set when enableDynamicPortAllocation is enabled. + type: integer + minPortsPerVm: + description: Minimum number of ports allocated to a VM from this NAT. + type: integer + natIpAllocateOption: + description: |- + How external IPs should be allocated for this NAT. Valid values are + 'AUTO_ONLY' for only allowing NAT IPs allocated by Google Cloud + Platform, or 'MANUAL_ONLY' for only user-allocated NAT IP addresses. Possible values: ["MANUAL_ONLY", "AUTO_ONLY"]. + type: string + natIps: + items: + description: NAT IPs. Only valid if natIpAllocateOption is set to + MANUAL_ONLY. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeAddress` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + type: array + region: + description: Immutable. Region where the router and NAT reside. + type: string + resourceID: + description: Immutable. Optional. The name of the resource. Used for + creation and acquisition. When unset, the value of `metadata.name` + is used as the default. + type: string + routerRef: + description: The Cloud Router in which this NAT will be configured. oneOf: - not: required: @@ -19748,7 +19861,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20054,7 +20167,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20278,7 +20391,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20557,7 +20670,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20657,6 +20770,49 @@ spec: description: An optional description of this security policy. Max size is 2048. type: string + recaptchaOptionsConfig: + description: reCAPTCHA configuration options to be applied for the + security policy. + properties: + redirectSiteKeyRef: + description: |- + Only `external` field is supported to configure the reference. + + A field to supply a reCAPTCHA site key to be used for all the rules + using the redirect action with the type of GOOGLE_RECAPTCHA under + the security policy. The specified site key needs to be created from + the reCAPTCHA API. The user is responsible for the validity of the + specified site key. If not specified, a Google-managed site key is + used. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `RecaptchaEnterpriseKey` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - redirectSiteKeyRef + type: object resourceID: description: Immutable. Optional. The name of the resource. Used for creation and acquisition. When unset, the value of `metadata.name` @@ -20676,6 +20832,27 @@ spec: description: An optional description of this rule. Max size is 64. type: string + headerAction: + description: Additional actions that are performed on headers. + properties: + requestHeadersToAdds: + description: The list of request headers to add or overwrite + if they're already present. + items: + properties: + headerName: + description: The name of the header to set. + type: string + headerValue: + description: The value to set the named header to. + type: string + required: + - headerName + type: object + type: array + required: + - requestHeadersToAdds + type: object match: description: A match condition that incoming traffic is evaluated against. If it evaluates to true, the corresponding action @@ -20720,6 +20897,162 @@ spec: src_ip_ranges field in config.' type: string type: object + preconfiguredWafConfig: + description: Preconfigured WAF configuration to be applied for + the rule. If the rule does not evaluate preconfigured WAF + rules, i.e., if evaluatePreconfiguredWaf() is not used, this + field will have no effect. + properties: + exclusion: + description: An exclusion to apply during preconfigured + WAF evaluation. + items: + properties: + requestCookie: + description: Request cookie whose value will be excluded + from inspection during preconfigured WAF evaluation. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + requestHeader: + description: Request header whose value will be excluded + from inspection during preconfigured WAF evaluation. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + requestQueryParam: + description: Request query parameter whose value will + be excluded from inspection during preconfigured + WAF evaluation. Note that the parameter can be + in the query string or in the POST body. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + requestUri: + description: Request URI from the request line to + be excluded from inspection during preconfigured + WAF evaluation. When specifying this field, the + query or fragment part should be excluded. + items: + properties: + operator: + description: 'You can specify an exact match + or a partial match by using a field operator + and a field value. Available options: EQUALS: + The operator matches if the field value equals + the specified value. STARTS_WITH: The operator + matches if the field value starts with the + specified value. ENDS_WITH: The operator matches + if the field value ends with the specified + value. CONTAINS: The operator matches if the + field value contains the specified value. + EQUALS_ANY: The operator matches if the field + value is any value.' + type: string + value: + description: A request field matching the specified + value will be excluded from inspection during + preconfigured WAF evaluation. The field value + must be given if the field operator is not + EQUALS_ANY, and cannot be given if the field + operator is EQUALS_ANY. + type: string + required: + - operator + type: object + type: array + targetRuleIds: + description: A list of target rule IDs under the WAF + rule set to apply the preconfigured WAF exclusion. + If omitted, it refers to all the rule IDs under + the WAF rule set. + items: + type: string + type: array + targetRuleSet: + description: Target WAF rule set to apply the preconfigured + WAF exclusion. + type: string + required: + - targetRuleSet + type: object + type: array + type: object preview: description: When set to true, the action specified above is not enforced. Stackdriver logs for requests that trigger a @@ -20913,7 +21246,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -21260,7 +21593,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21366,7 +21699,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21505,7 +21838,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21893,7 +22226,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22108,7 +22441,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22271,7 +22604,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22342,7 +22675,7 @@ spec: type: string ipv6AccessType: description: |- - Immutable. The access type of IPv6 address this subnet holds. It's immutable and can only be specified during creation + The access type of IPv6 address this subnet holds. It's immutable and can only be specified during creation or the first time the subnet is updated into IPV4_IPV6 dual stack. If the ipv6_type is EXTERNAL then this subnet cannot enable direct path. Possible values: ["EXTERNAL", "INTERNAL"]. type: string @@ -22559,7 +22892,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22737,7 +23070,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22907,7 +23240,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23184,7 +23517,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23380,7 +23713,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23606,7 +23939,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23692,12 +24025,12 @@ spec: type: object certificateMapRef: description: |- + Only `external` field is supported to configure the reference. + A reference to the CertificateMap resource uri that identifies a certificate map associated with the given target proxy. This field can only be set for global target proxies. Accepted format is '//certificatemanager.googleapis.com/projects/{project}/locations/{location}/certificateMaps/{resourceName}'. - - Only `external` field is supported to configure the reference. oneOf: - not: required: @@ -23867,7 +24200,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24034,7 +24367,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24195,7 +24528,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24253,12 +24586,10 @@ spec: properties: defaultRouteAction: description: |- - defaultRouteAction takes effect when none of the hostRules match. The load balancer performs advanced routing actions - like URL rewrites, header transformations, etc. prior to forwarding the request to the selected backend. - If defaultRouteAction specifies any weightedBackendServices, defaultService must not be set. Conversely if defaultService - is set, defaultRouteAction cannot contain any weightedBackendServices. - + defaultRouteAction takes effect when none of the hostRules match. The load balancer performs advanced routing actions, such as URL rewrites and header transformations, before forwarding the request to the selected backend. If defaultRouteAction specifies any weightedBackendServices, defaultService must not be set. Conversely if defaultService is set, defaultRouteAction cannot contain any weightedBackendServices. Only one of defaultRouteAction or defaultUrlRedirect must be set. + URL maps for Classic external HTTP(S) load balancers only support the urlRewrite action within defaultRouteAction. + defaultRouteAction has no effect when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true. properties: corsPolicy: description: |- @@ -24267,8 +24598,8 @@ spec: properties: allowCredentials: description: |- - In response to a preflight request, setting this to true indicates that the actual request can include user credentials. - This translates to the Access-Control-Allow-Credentials header. + In response to a preflight request, setting this to true indicates that the actual request can include user credentials. This field translates to the Access-Control-Allow-Credentials header. + Default is false. type: boolean allowHeaders: description: Specifies the content for the Access-Control-Allow-Headers @@ -24284,7 +24615,7 @@ spec: type: array allowOriginRegexes: description: |- - Specifies the regular expression patterns that match allowed origins. For regular expression grammar + Specifies the regualar expression patterns that match allowed origins. For regular expression grammar please see en.cppreference.com/w/cpp/regex/ecmascript An origin is allowed if it matches either an item in allowOrigins or an item in allowOriginRegexes. items: @@ -24298,9 +24629,9 @@ spec: type: string type: array disabled: - description: If true, specifies the CORS policy is disabled. - The default value is false, which indicates that the CORS - policy is in effect. + description: If true, the setting specifies the CORS policy + is disabled. The default value of false, which indicates + that the CORS policy is in effect. type: boolean exposeHeaders: description: Specifies the content for the Access-Control-Expose-Headers @@ -24317,11 +24648,10 @@ spec: faultInjectionPolicy: description: |- The specification for fault injection introduced into traffic to test the resiliency of clients to backend service failure. - As part of fault injection, when clients send requests to a backend service, delays can be introduced by Loadbalancer on a - percentage of requests before sending those request to the backend service. Similarly requests from clients can be aborted - by the Loadbalancer for a percentage of requests. - - timeout and retryPolicy will be ignored by clients that are configured with a faultInjectionPolicy. + As part of fault injection, when clients send requests to a backend service, delays can be introduced by a load balancer on a percentage of requests before sending those requests to the backend service. + Similarly requests from clients can be aborted by the load balancer for a percentage of requests. + timeout and retryPolicy is ignored by clients that are configured with a faultInjectionPolicy if: 1. The traffic is generated by fault injection AND 2. The fault injection is not a delay fault injection. + Fault injection is not supported with the global external HTTP(S) load balancer (classic). To see which load balancers support fault injection, see Load balancing: [Routing and traffic management features](https://cloud.google.com/load-balancing/docs/features#routing-traffic-management). properties: abort: description: The specification for how client requests are @@ -24367,12 +24697,17 @@ spec: requestMirrorPolicy: description: |- Specifies the policy on how requests intended for the route's backends are shadowed to a separate mirrored backend service. - Loadbalancer does not wait for responses from the shadow service. Prior to sending traffic to the shadow service, - the host / authority header is suffixed with -shadow. + The load balancer does not wait for responses from the shadow service. Before sending traffic to the shadow service, the host / authority header is suffixed with -shadow. + Not supported when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true. properties: backendServiceRef: - description: Required. The backend service resource being - mirrored to. + description: |- + The backend service resource being mirrored to. + The backend service configured for a mirroring policy must reference + backends that are of the same type as the original backend service + matched in the URL map. + Serverless NEG backends are not currently supported as a mirrored + backend service. oneOf: - not: required: @@ -24389,8 +24724,8 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `ComputeBackendService` - resource.' + description: 'Allowed value: The `selfLink` field of a + `ComputeBackendService` resource.' type: string name: description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' @@ -24399,8 +24734,6 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object - required: - - backendServiceRef type: object retryPolicy: description: Specifies the retry policy associated with this route. @@ -24429,73 +24762,62 @@ spec: type: object retryConditions: description: |- - Specfies one or more conditions when this retry rule applies. Valid values are: - - * 5xx: Loadbalancer will attempt a retry if the backend service responds with any 5xx response code, - or if the backend service does not respond at all, example: disconnects, reset, read timeout, - * connection failure, and refused streams. - * gateway-error: Similar to 5xx, but only applies to response codes 502, 503 or 504. - * connect-failure: Loadbalancer will retry on failures connecting to backend services, - for example due to connection timeouts. - * retriable-4xx: Loadbalancer will retry for retriable 4xx response codes. - Currently the only retriable error supported is 409. - * refused-stream:Loadbalancer will retry if the backend service resets the stream with a REFUSED_STREAM error code. - This reset type indicates that it is safe to retry. - * cancelled: Loadbalancer will retry if the gRPC status code in the response header is set to cancelled - * deadline-exceeded: Loadbalancer will retry if the gRPC status code in the response header is set to deadline-exceeded - * resource-exhausted: Loadbalancer will retry if the gRPC status code in the response header is set to resource-exhausted - * unavailable: Loadbalancer will retry if the gRPC status code in the response header is set to unavailable. + Specifies one or more conditions when this retry policy applies. + Valid values are listed below. Only the following codes are supported when the URL map is bound to target gRPC proxy that has validateForProxyless field set to true: cancelled, deadline-exceeded, internal, resource-exhausted, unavailable. + - 5xx : retry is attempted if the instance or endpoint responds with any 5xx response code, or if the instance or endpoint does not respond at all. For example, disconnects, reset, read timeout, connection failure, and refused streams. + - gateway-error : Similar to 5xx, but only applies to response codes 502, 503 or 504. + - connect-failure : a retry is attempted on failures connecting to the instance or endpoint. For example, connection timeouts. + - retriable-4xx : a retry is attempted if the instance or endpoint responds with a 4xx response code. The only error that you can retry is error code 409. + - refused-stream : a retry is attempted if the instance or endpoint resets the stream with a REFUSED_STREAM error code. This reset type indicates that it is safe to retry. + - cancelled : a retry is attempted if the gRPC status code in the response header is set to cancelled. + - deadline-exceeded : a retry is attempted if the gRPC status code in the response header is set to deadline-exceeded. + - internal : a retry is attempted if the gRPC status code in the response header is set to internal. + - resource-exhausted : a retry is attempted if the gRPC status code in the response header is set to resource-exhausted. + - unavailable : a retry is attempted if the gRPC status code in the response header is set to unavailable. items: type: string type: array type: object timeout: description: |- - Specifies the timeout for the selected route. Timeout is computed from the time the request has been - fully processed (i.e. end-of-stream) up until the response has been completely processed. Timeout includes all retries. - - If not specified, will use the largest timeout among all backend services associated with the route. + Specifies the timeout for the selected route. Timeout is computed from the time the request has been fully processed (known as end-of-stream) up until the response has been processed. Timeout includes all retries. + If not specified, this field uses the largest timeout among all backend services associated with the route. + Not supported when the URL map is bound to a target gRPC proxy that has validateForProxyless field set to true. properties: nanos: - description: |- - Span of time that's a fraction of a second at nanosecond resolution. Durations less than one second are represented - with a 0 seconds field and a positive nanos field. Must be from 0 to 999,999,999 inclusive. + description: Span of time that's a fraction of a second at + nanosecond resolution. Durations less than one second are + represented with a 0 seconds field and a positive nanos + field. Must be from 0 to 999,999,999 inclusive. type: integer seconds: - description: |- - Span of time at a resolution of a second. Must be from 0 to 315,576,000,000 inclusive. - Note: these bounds are computed from: 60 sec/min * 60 min/hr * 24 hr/day * 365.25 days/year * 10000 years. + description: 'Span of time at a resolution of a second. Must + be from 0 to 315,576,000,000 inclusive. Note: these bounds + are computed from: 60 sec/min * 60 min/hr * 24 hr/day * + 365.25 days/year * 10000 years.' type: string type: object urlRewrite: - description: The spec to modify the URL of the request, prior - to forwarding the request to the matched service. + description: |- + The spec to modify the URL of the request, before forwarding the request to the matched service. + urlRewrite is the only action supported in UrlMaps for external HTTP(S) load balancers. + Not supported when the URL map is bound to a target gRPC proxy that has the validateForProxyless field set to true. properties: hostRewrite: description: |- - Prior to forwarding the request to the selected service, the request's host header is replaced - with contents of hostRewrite. - - The value must be between 1 and 255 characters. + Before forwarding the request to the selected service, the request's host header is replaced with contents of hostRewrite. + The value must be from 1 to 255 characters. type: string pathPrefixRewrite: description: |- - Prior to forwarding the request to the selected backend service, the matching portion of the - request's path is replaced by pathPrefixRewrite. - - The value must be between 1 and 1024 characters. + Before forwarding the request to the selected backend service, the matching portion of the request's path is replaced by pathPrefixRewrite. + The value must be from 1 to 1024 characters. type: string type: object weightedBackendServices: description: |- - A list of weighted backend services to send traffic to when a route match occurs. - The weights determine the fraction of traffic that flows to their corresponding backend service. - If all traffic needs to go to a single backend service, there must be one weightedBackendService - with weight set to a non 0 number. - - Once a backendService is identified and before forwarding the request to the backend service, - advanced routing actions like Url rewrites and header transformations are applied depending on - additional settings specified in this HttpRouteAction. + A list of weighted backend services to send traffic to when a route match occurs. The weights determine the fraction of traffic that flows to their corresponding backend service. If all traffic needs to go to a single backend service, there must be one weightedBackendService with weight set to a non-zero number. + After a backend service is identified and before forwarding the request to the backend service, advanced routing actions such as URL rewrites and header transformations are applied depending on additional settings specified in this HttpRouteAction. items: properties: backendServiceRef: @@ -24520,8 +24842,8 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `ComputeBackendService` - resource.' + description: 'Allowed value: The `selfLink` field of + a `ComputeBackendService` resource.' type: string name: description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' @@ -24533,73 +24855,67 @@ spec: type: object headerAction: description: |- - Specifies changes to request and response headers that need to take effect for - the selected backendService. - - headerAction specified here take effect before headerAction in the enclosing - HttpRouteRule, PathMatcher and UrlMap. + Specifies changes to request and response headers that need to take effect for the selected backendService. + headerAction specified here take effect before headerAction in the enclosing HttpRouteRule, PathMatcher and UrlMap. + headerAction is not supported for load balancers that have their loadBalancingScheme set to EXTERNAL. + Not supported when the URL map is bound to a target gRPC proxy that has validateForProxyless field set to true. properties: requestHeadersToAdd: - description: Headers to add to a matching request prior - to forwarding the request to the backendService. + description: Headers to add to a matching request before + forwarding the request to the backendService. items: properties: headerName: - description: The name of the header to add. + description: The name of the header. type: string headerValue: description: The value of the header to add. type: string replace: description: |- - If false, headerValue is appended to any values that already exist for the header. - If true, headerValue is set for the header, discarding any values that were set for that header. + If false, headerValue is appended to any values that already exist for the header. If true, headerValue is set for the header, discarding any values that were set for that header. + The default value is false. type: boolean type: object type: array requestHeadersToRemove: - description: |- - A list of header names for headers that need to be removed from the request prior to - forwarding the request to the backendService. + description: A list of header names for headers that + need to be removed from the request before forwarding + the request to the backendService. items: type: string type: array responseHeadersToAdd: - description: Headers to add the response prior to sending + description: Headers to add the response before sending the response back to the client. items: properties: headerName: - description: The name of the header to add. + description: The name of the header. type: string headerValue: description: The value of the header to add. type: string replace: description: |- - If false, headerValue is appended to any values that already exist for the header. - If true, headerValue is set for the header, discarding any values that were set for that header. + If false, headerValue is appended to any values that already exist for the header. If true, headerValue is set for the header, discarding any values that were set for that header. + The default value is false. type: boolean type: object type: array responseHeadersToRemove: - description: |- - A list of header names for headers that need to be removed from the response prior to sending the - response back to the client. + description: A list of header names for headers that + need to be removed from the response before sending + the response back to the client. items: type: string type: array type: object weight: description: |- - Specifies the fraction of traffic sent to backendService, computed as - weight / (sum of all weightedBackendService weights in routeAction) . - - The selection of a backend service is determined only for new traffic. Once a user's request - has been directed to a backendService, subsequent requests will be sent to the same backendService - as determined by the BackendService's session affinity policy. - - The value must be between 0 and 1000. + Specifies the fraction of traffic sent to a backend service, computed as weight / (sum of all weightedBackendService weights in routeAction) . + The selection of a backend service is determined only for new traffic. Once a user's request has been directed to a backend service, subsequent requests are sent to the same backend service as determined by the backend service's session affinity policy. + The value must be from 0 to 1000. type: integer type: object type: array @@ -24990,8 +25306,8 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of - a `ComputeBackendService` resource.' + description: 'Allowed value: The `selfLink` field + of a `ComputeBackendService` resource.' type: string name: description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' @@ -25124,7 +25440,7 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field + description: 'Allowed value: The `selfLink` field of a `ComputeBackendService` resource.' type: string name: @@ -26906,7 +27222,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -27105,7 +27421,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -27477,7 +27793,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -27793,7 +28109,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -28382,7 +28698,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -28632,6 +28948,40 @@ spec: description: The default image type used by NAP once a new node pool is being created. type: string + management: + description: NodeManagement configuration for this NodePool. + properties: + autoRepair: + description: Specifies whether the node auto-repair is + enabled for the node pool. If enabled, the nodes in + this node pool will be monitored and, if they fail health + checks too many times, an automatic repair action will + be triggered. + type: boolean + autoUpgrade: + description: Specifies whether node auto-upgrade is enabled + for the node pool. If enabled, node auto-upgrade helps + keep the nodes in your node pool up to date with the + latest release version of Kubernetes. + type: boolean + upgradeOptions: + description: Specifies the Auto Upgrade knobs for the + node pool. + items: + properties: + autoUpgradeStartTime: + description: This field is set when upgrades are + about to commence with the approximate start time + for the upgrades, in RFC3339 text format. + type: string + description: + description: This field is set when upgrades are + about to commence with the description of the + upgrade. + type: string + type: object + type: array + type: object minCpuPlatform: description: Minimum CPU platform to be used by this instance. The instance may be scheduled on the specified or newer @@ -28671,6 +29021,65 @@ spec: description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' type: string type: object + shieldedInstanceConfig: + description: Shielded Instance options. + properties: + enableIntegrityMonitoring: + description: Defines whether the instance has integrity + monitoring enabled. + type: boolean + enableSecureBoot: + description: Defines whether the instance has Secure Boot + enabled. + type: boolean + type: object + upgradeSettings: + description: Specifies the upgrade settings for NAP created + node pools. + properties: + blueGreenSettings: + description: Settings for blue-green upgrade strategy. + properties: + nodePoolSoakDuration: + description: "Time needed after draining entire blue + pool. After this period, blue pool will be cleaned + up.\n\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tA duration + in seconds with up to nine fractional digits, ending + with 's'. Example: \"3.5s\"." + type: string + standardRolloutPolicy: + description: Standard policy for the blue-green upgrade. + properties: + batchNodeCount: + description: Number of blue nodes to drain in + a batch. + type: integer + batchPercentage: + description: Percentage of the bool pool nodes + to drain in a batch. The range of this field + should be (0.0, 1.0]. + type: number + batchSoakDuration: + description: "Soak time after each batch gets + drained.\n\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tA + duration in seconds with up to nine fractional + digits, ending with 's'. Example: \"3.5s\"." + type: string + type: object + type: object + maxSurge: + description: The maximum number of nodes that can be created + beyond the current size of the node pool during the + upgrade process. + type: integer + maxUnavailable: + description: The maximum number of nodes that can be simultaneously + unavailable during the upgrade process. + type: integer + strategy: + description: Update strategy of the node pool. + type: string + type: object type: object autoscalingProfile: description: Configuration options for the Autoscaling profile @@ -28705,8 +29114,6 @@ spec: - resourceType type: object type: array - required: - - enabled type: object clusterIpv4Cidr: description: Immutable. The IP address range of the Kubernetes pods @@ -28837,6 +29244,16 @@ spec: description: Immutable. Whether to enable Cloud TPU resources in this cluster. type: boolean + gatewayApiConfig: + description: Configuration for GKE Gateway API controller. + properties: + channel: + description: The Gateway API release channel to use for Gateway + API. + type: string + required: + - channel + type: object identityServiceConfig: description: Configuration for Identity Service which allows customers to use external identity providers with the K8S API. @@ -28901,7 +29318,8 @@ spec: properties: enableComponents: description: GKE components exposing logs. Valid values include - SYSTEM_COMPONENTS and WORKLOADS. + SYSTEM_COMPONENTS, APISERVER, CONTROLLER_MANAGER, SCHEDULER, + and WORKLOADS. items: type: string type: array @@ -29070,6 +29488,10 @@ spec: - cidrBlock type: object type: array + gcpPublicCidrsAccessEnabled: + description: Whether master is accessbile via Google Compute Engine + Public IP addresses. + type: boolean type: object meshCertificates: description: If set, and enable_certificates=true, the GKE Workload @@ -29312,6 +29734,11 @@ spec: description: Immutable. The number of local SSD disks to be attached to the node. type: integer + loggingVariant: + description: Type of logging agent that is used as the default + value for node pools in the cluster. Valid values include DEFAULT + and MAX_THROUGHPUT. + type: string machineType: description: Immutable. The name of a Google Compute Engine machine type. @@ -29388,6 +29815,12 @@ spec: required: - consumeReservationType type: object + resourceLabels: + additionalProperties: + type: string + description: The GCE resource labels (a map of key/value pairs) + to be applied to the node pool. + type: object sandboxConfig: description: Immutable. Sandbox configuration for this node. properties: @@ -29521,6 +29954,11 @@ spec: required: - enabled type: object + loggingVariant: + description: Type of logging agent that is used as the default + value for node pools in the cluster. Valid values include + DEFAULT and MAX_THROUGHPUT. + type: string type: object type: object nodeVersion: @@ -29602,10 +30040,10 @@ spec: nodes. properties: enablePrivateEndpoint: - description: Immutable. When true, the cluster's private endpoint - is used as the cluster endpoint and access through the public - endpoint is disabled. When false, either endpoint can be used. - This field only applies to private clusters, when enable_private_nodes + description: When true, the cluster's private endpoint is used + as the cluster endpoint and access through the public endpoint + is disabled. When false, either endpoint can be used. This field + only applies to private clusters, when enable_private_nodes is true. type: boolean enablePrivateNodes: @@ -29641,12 +30079,40 @@ spec: description: The internal IP address of this cluster's master endpoint. type: string + privateEndpointSubnetworkRef: + description: |- + Immutable. Subnetwork in cluster's network where master's endpoint + will be provisioned. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of a `ComputeSubnetwork` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object publicEndpoint: description: The external IP address of this cluster's master endpoint. type: string - required: - - enablePrivateEndpoint type: object privateIpv6GoogleAccess: description: The desired state of IPv6 connectivity to Google Services. @@ -29847,7 +30313,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -29999,6 +30465,9 @@ spec: IPs in this node pool. Defaults are provided for pod_range and pod_ipv4_cidr_block if they are not specified. type: boolean + enablePrivateNodes: + description: Whether nodes have internal IP addresses only. + type: boolean podIpv4CidrBlock: description: Immutable. The IP address range for pod IPs in this node pool. Only applicable if create_pod_range is true. Set @@ -30013,8 +30482,6 @@ spec: range. If create_pod_range is false, uses an existing secondary range with this ID. type: string - required: - - podRange type: object nodeConfig: description: Immutable. The configuration of the nodepool. @@ -30164,6 +30631,11 @@ spec: description: Immutable. The number of local SSD disks to be attached to the node. type: integer + loggingVariant: + description: Type of logging agent that is used as the default + value for node pools in the cluster. Valid values include DEFAULT + and MAX_THROUGHPUT. + type: string machineType: description: Immutable. The name of a Google Compute Engine machine type. @@ -30240,6 +30712,12 @@ spec: required: - consumeReservationType type: object + resourceLabels: + additionalProperties: + type: string + description: The GCE resource labels (a map of key/value pairs) + to be applied to the node pool. + type: object sandboxConfig: description: Immutable. Sandbox configuration for this node. properties: @@ -30365,6 +30843,31 @@ spec: is the sum of max_surge and max_unavailable. The maximum number of nodes upgraded simultaneously is limited to 20. properties: + blueGreenSettings: + description: Settings for BlueGreen node pool upgrade. + properties: + nodePoolSoakDuration: + description: Time needed after draining entire blue pool. + After this period, blue pool will be cleaned up. + type: string + standardRolloutPolicy: + description: Standard rollout policy is the default policy + for blue-green. + properties: + batchNodeCount: + description: Number of blue nodes to drain in a batch. + type: integer + batchPercentage: + description: Percentage of the blue pool nodes to drain + in a batch. + type: number + batchSoakDuration: + description: Soak time after each batch gets drained. + type: string + type: object + required: + - standardRolloutPolicy + type: object maxSurge: description: The number of additional nodes that can be added to the node pool during an upgrade. Increasing max_surge raises @@ -30377,9 +30880,9 @@ spec: of nodes that can be upgraded in parallel. Can be set to 0 or greater. type: integer - required: - - maxSurge - - maxUnavailable + strategy: + description: Update strategy for the given nodepool. + type: string type: object version: type: string @@ -30455,7 +30958,203 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: datacatalogpolicytags.datacatalog.cnrm.cloud.google.com +spec: + group: datacatalog.cnrm.cloud.google.com + names: + categories: + - gcp + kind: DataCatalogPolicyTag + plural: datacatalogpolicytags + shortNames: + - gcpdatacatalogpolicytag + - gcpdatacatalogpolicytags + singular: datacatalogpolicytag + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + description: + description: |- + Description of this policy tag. It must: contain only unicode characters, tabs, + newlines, carriage returns and page breaks; and be at most 2000 bytes long when + encoded in UTF-8. If not set, defaults to an empty description. + If not set, defaults to an empty description. + type: string + displayName: + description: |- + User defined name of this policy tag. It must: be unique within the parent + taxonomy; contain only unicode letters, numbers, underscores, dashes and spaces; + not start or end with spaces; and be at most 200 bytes long when encoded in UTF-8. + type: string + parentPolicyTagRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `DataCatalogPolicyTag` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + taxonomyRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `DataCatalogTaxonomy` + resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - displayName + - taxonomyRef + type: object + status: + properties: + childPolicyTags: + description: Resource names of child policy tags of this policy tag. + items: + type: string + type: array + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + name: + description: |- + Resource name of this policy tag, whose format is: + "projects/{project}/locations/{region}/taxonomies/{taxonomy}/policyTags/{policytag}". + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -30629,7 +31328,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -30755,7 +31454,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -31041,7 +31740,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -31320,7 +32019,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -31615,7 +32314,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -33430,7 +34129,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -35372,7 +36071,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -39548,7 +40247,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -40160,7 +40859,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -41636,7 +42335,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -42007,7 +42706,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42203,6 +42902,47 @@ spec: For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. properties: + gkeClusters: + description: The list of Google Kubernetes Engine clusters that + can see this zone. + items: + properties: + gkeClusterNameRef: + description: |- + The resource name of the cluster to bind this ManagedZone to. + This should be specified in the format like + 'projects/*/locations/*/clusters/*'. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `selfLink` field of + a `ContainerCluster` resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: + https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + required: + - gkeClusterNameRef + type: object + type: array networks: items: properties: @@ -42353,7 +43093,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42549,7 +43289,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42747,7 +43487,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -43236,7 +43976,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -43458,7 +44198,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -43787,7 +44527,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -43941,7 +44681,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -44154,7 +44894,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -44292,7 +45032,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -44425,6 +45165,57 @@ spec: Default: 15.' type: string type: object + oci: + properties: + gcpServiceAccountRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: "The GCP Service Account Email used for + auth when secret_type is gcpserviceaccount. \n\nAllowed + value: The `email` field of an `IAMServiceAccount` + resource." + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: + https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + policyDir: + description: 'The absolute path of the directory that + contains the local resources. Default: the root directory + of the image.' + type: string + secretType: + description: Type of secret configured for access to the + OCI Image. Must be one of gcenode, gcpserviceaccount + or none. The validation of this is case-sensitive. + type: string + syncRepo: + description: The OCI image repository URL for the package + to sync from. e.g. LOCATION-docker.pkg.dev/PROJECT_ID/REPOSITORY_NAME/PACKAGE_NAME. + type: string + syncWaitSecs: + description: 'Period in seconds(int64 format) between + consecutive syncs. Default: 15.' + type: string + type: object preventDrift: description: Set to true to enable the Config Sync admission webhook to prevent drifts. If set to `false`, disables the @@ -44573,6 +45364,11 @@ spec: mesh: description: Manage Mesh Features properties: + controlPlane: + description: 'Whether to automatically manage Service Mesh control + planes. Possible values: CONTROL_PLANE_MANAGEMENT_UNSPECIFIED, + AUTOMATIC, MANUAL' + type: string management: description: 'Whether to automatically manage Service Mesh. Possible values: MANAGEMENT_UNSPECIFIED, MANAGEMENT_AUTOMATIC, MANAGEMENT_MANUAL' @@ -44668,7 +45464,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -44908,7 +45704,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -45273,7 +46069,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45434,7 +46230,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45574,7 +46370,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45885,7 +46681,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46113,7 +46909,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46340,7 +47136,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46519,7 +47315,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46661,7 +47457,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -46913,7 +47709,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47094,7 +47890,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47390,7 +48186,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47557,7 +48353,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47683,7 +48479,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -47837,7 +48633,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -48529,7 +49325,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -48712,7 +49508,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -48929,7 +49725,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -49082,7 +49878,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -49274,7 +50070,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -49400,7 +50196,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -49684,7 +50480,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -49959,7 +50755,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -50380,7 +51176,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -50784,7 +51580,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -51088,7 +51884,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -51425,7 +52221,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -52240,7 +53036,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -59122,7 +59918,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -59313,7 +60109,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -59608,7 +60404,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -59735,7 +60531,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -60036,7 +60832,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -60607,7 +61403,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -60766,7 +61562,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -61145,7 +61941,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -61327,7 +62123,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -61672,7 +62468,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -61930,7 +62726,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62159,7 +62955,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62403,7 +63199,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62724,7 +63520,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62788,35 +63584,6 @@ spec: items: type: string type: array - authorizationPolicyRef: - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: |- - Optional. A fully-qualified AuthorizationPolicy URL reference. Specifies how traffic is authorized. If empty, authorization checks are disabled. - - Allowed value: The Google Cloud resource name of a `NetworkSecurityAuthorizationPolicy` resource (format: `projects/{{project}}/locations/{{location}}/authorizationPolicies/{{name}}`). - type: string - name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' - type: string - namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' - type: string - type: object description: description: Optional. A free-text description of the resource. Max length 1024 characters. @@ -62979,7 +63746,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -63446,7 +64213,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -64180,7 +64947,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -64356,7 +65123,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -64686,7 +65453,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -65007,7 +65774,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -65776,7 +66543,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -66677,6 +67444,10 @@ spec: - disruptionBudget - minWaitDuration type: object + skipAwaitRollout: + description: Set to true to skip awaiting rollout during resource + creation and update. + type: boolean required: - instanceFilter - location @@ -66774,7 +67545,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -67270,7 +68041,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -68268,7 +69039,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -69179,7 +69950,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -69595,7 +70366,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -69820,7 +70591,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -69976,7 +70747,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -70397,7 +71168,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -70614,7 +71385,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -70850,7 +71621,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -71104,7 +71875,7 @@ spec: description: Redis memory size in GiB. type: integer persistenceConfig: - description: Maintenance policy for an instance. + description: Persistence configuration for an instance. properties: persistenceMode: description: "Optional. Controls whether Persistence features @@ -71333,7 +72104,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -71511,7 +72282,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -71792,7 +72563,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -72674,7 +73445,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -72936,7 +73707,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73139,7 +73910,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73359,7 +74130,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73516,7 +74287,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73668,7 +74439,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73846,7 +74617,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -73987,7 +74758,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74186,7 +74957,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74393,7 +75164,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74533,7 +75304,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74605,6 +75376,13 @@ spec: for more details and supported values. Postgres databases only support a value of 'en_US.UTF8' at creation time. type: string + deletionPolicy: + description: "The deletion policy for the database. Setting ABANDON + allows the resource \nto be abandoned rather than deleted. This + is useful for Postgres, where databases cannot be \ndeleted from + the API if there are users other than cloudsqlsuperuser with access. + Possible \nvalues are: \"ABANDON\", \"DELETE\". Defaults to \"DELETE\"." + type: string instanceRef: description: The Cloud SQL instance. oneOf: @@ -74697,7 +75475,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75026,6 +75804,9 @@ spec: collation: description: Immutable. The name of server instance collation. type: string + connectorEnforcement: + description: Specifies if connections must use Cloud SQL connectors. + type: string crashSafeReplication: description: |- DEPRECATED. This property is only applicable to First Generation instances, and First Generation instances are now deprecated. see https://cloud.google.com/sql/docs/mysql/deprecation-notice for information on how to upgrade to Second Generation instances. @@ -75045,6 +75826,28 @@ spec: - value type: object type: array + denyMaintenancePeriod: + properties: + endDate: + description: End date before which maintenance will not take + place. The date is in format yyyy-mm-dd i.e., 2020-11-01, + or mm-dd, i.e., 11-01. + type: string + startDate: + description: Start date after which maintenance will not take + place. The date is in format yyyy-mm-dd i.e., 2020-11-01, + or mm-dd, i.e., 11-01. + type: string + time: + description: 'Time in UTC when the "deny maintenance period" + starts on start_date and ends on end_date. The time is in + format: HH:mm:SS, i.e., 00:00:00.' + type: string + required: + - endDate + - startDate + - time + type: object diskAutoresize: description: Enables auto-resizing of the storage size. Defaults to true. @@ -75069,6 +75872,11 @@ spec: queryInsightsEnabled: description: True if Query Insights feature is enabled. type: boolean + queryPlansPerMinute: + description: Number of query execution plans captured by Insights + per minute for all queries combined. Between 0 and 20. Default + to 5. + type: integer queryStringLength: description: Maximum query length stored in bytes. Between 256 and 4500. Default to 1024. @@ -75251,7 +76059,7 @@ spec: custom machine types. type: string timeZone: - description: Immutable. The timezone to be used by the database + description: Immutable. The time_zone to be used by the database engine (supported only for SQL Server), in SQL Server timezone format. type: string @@ -75366,7 +76174,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75542,7 +76350,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75783,7 +76591,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75953,7 +76761,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76009,6 +76817,17 @@ spec: type: object spec: properties: + autoclass: + description: Immutable. The bucket's autoclass configuration. + properties: + enabled: + description: Immutable. While set to true, autoclass automatically + transitions objects in your bucket to appropriate storage classes + based on each object's access pattern. + type: boolean + required: + - enabled + type: object bucketPolicyOnly: description: |- DEPRECATED. Please use the `uniformBucketLevelAccess` field as this field has been renamed by Google. The `uniformBucketLevelAccess` field will supersede this field. @@ -76114,7 +76933,8 @@ spec: type: string type: description: 'The type of the action of this Lifecycle Rule. - Supported values include: Delete and SetStorageClass.' + Supported values include: Delete, SetStorageClass and + AbortIncompleteMultipartUpload.' type: string required: - type @@ -76315,7 +77135,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76501,7 +77321,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76704,7 +77524,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -77314,7 +78134,347 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.98.0 + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: tagstagkeys.tags.cnrm.cloud.google.com +spec: + group: tags.cnrm.cloud.google.com + names: + categories: + - gcp + kind: TagsTagKey + plural: tagstagkeys + shortNames: + - gcptagstagkey + - gcptagstagkeys + singular: tagstagkey + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + description: + description: User-assigned description of the TagKey. Must not exceed + 256 characters. + type: string + parent: + description: Immutable. Input only. The resource name of the new TagKey's + parent. Must be of the form organizations/{org_id}. + type: string + purpose: + description: |- + Immutable. Optional. A purpose cannot be changed once set. + + A purpose denotes that this Tag is intended for use in policies of a specific policy engine, and will involve that policy engine in management operations involving this Tag. Possible values: ["GCE_FIREWALL"]. + type: string + purposeData: + additionalProperties: + type: string + description: |- + Immutable. Optional. Purpose data cannot be changed once set. + + Purpose data corresponds to the policy system that the tag is intended for. For example, the GCE_FIREWALL purpose expects data in the following format: 'network = "/"'. + type: object + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + shortName: + description: |- + Immutable. Input only. The user friendly name for a TagKey. The short name should be unique for TagKeys within the same tag namespace. + + The short name must be 1-63 characters, beginning and ending with an alphanumeric character ([a-z0-9A-Z]) with dashes (-), underscores (_), dots (.), and alphanumerics between. + type: string + required: + - parent + - shortName + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + createTime: + description: |- + Output only. Creation time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + name: + description: The generated numeric id for the TagKey. + type: string + namespacedName: + description: Output only. Namespaced name of the TagKey. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + updateTime: + description: |- + Output only. Update time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: tagstagvalues.tags.cnrm.cloud.google.com +spec: + group: tags.cnrm.cloud.google.com + names: + categories: + - gcp + kind: TagsTagValue + plural: tagstagvalues + shortNames: + - gcptagstagvalue + - gcptagstagvalues + singular: tagstagvalue + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + description: + description: User-assigned description of the TagValue. Must not exceed + 256 characters. + type: string + parentRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: string of the format `tagKeys/{{value}}`, + where {{value}} is the `name` field of a `TagsTagKey` resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + shortName: + description: |- + Immutable. Input only. User-assigned short name for TagValue. The short name should be unique for TagValues within the same parent TagKey. + + The short name must be 63 characters or less, beginning and ending with an alphanumeric character ([a-z0-9A-Z]) with dashes (-), underscores (_), dots (.), and alphanumerics between. + type: string + required: + - parentRef + - shortName + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + createTime: + description: |- + Output only. Creation time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + name: + description: The generated numeric id for the TagValue. + type: string + namespacedName: + description: Output only. Namespaced name of the TagValue. Will be + in the format {organizationId}/{tag_key_short_name}/{shortName}. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + type: integer + updateTime: + description: |- + Output only. Update time. + + A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z". + type: string + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: [] + storedVersions: [] +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.99.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" diff --git a/samples/resources/bigtableinstance/bigtable_v1beta1_bigtableinstance.yaml b/samples/resources/bigtableinstance/bigtable_v1beta1_bigtableinstance.yaml deleted file mode 100644 index 088a4a9fb3..0000000000 --- a/samples/resources/bigtableinstance/bigtable_v1beta1_bigtableinstance.yaml +++ /dev/null @@ -1,27 +0,0 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: bigtable.cnrm.cloud.google.com/v1beta1 -kind: BigtableInstance -metadata: - name: bigtableinstance-sample -spec: - displayName: BigtableSample - cluster: - - clusterId: bigtableinstance-dep1 - zone: us-central1-a - numNodes: 3 - - clusterId: bigtableinstance-dep2 - zone: us-west1-a - numNodes: 3 \ No newline at end of file diff --git a/samples/resources/bigtableinstance/replicated-intance/bigtable_v1beta1_bigtableinstance.yaml b/samples/resources/bigtableinstance/replicated-intance/bigtable_v1beta1_bigtableinstance.yaml deleted file mode 100644 index 088a4a9fb3..0000000000 --- a/samples/resources/bigtableinstance/replicated-intance/bigtable_v1beta1_bigtableinstance.yaml +++ /dev/null @@ -1,27 +0,0 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: bigtable.cnrm.cloud.google.com/v1beta1 -kind: BigtableInstance -metadata: - name: bigtableinstance-sample -spec: - displayName: BigtableSample - cluster: - - clusterId: bigtableinstance-dep1 - zone: us-central1-a - numNodes: 3 - - clusterId: bigtableinstance-dep2 - zone: us-west1-a - numNodes: 3 \ No newline at end of file diff --git a/samples/resources/configcontrollerinstance/compute_v1beta1_computenetwork.yaml b/samples/resources/configcontrollerinstance/compute_v1beta1_computenetwork.yaml deleted file mode 100644 index 4e98cda3e7..0000000000 --- a/samples/resources/configcontrollerinstance/compute_v1beta1_computenetwork.yaml +++ /dev/null @@ -1,21 +0,0 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: compute.cnrm.cloud.google.com/v1beta1 -kind: ComputeNetwork -metadata: - name: configcontrollerinstance-dep -spec: - routingMode: REGIONAL - autoCreateSubnetworks: true diff --git a/samples/resources/configcontrollerinstance/configcontroller_v1beta1_configcontrollerinstance.yaml b/samples/resources/configcontrollerinstance/configcontroller_v1beta1_configcontrollerinstance.yaml deleted file mode 100644 index 98beb80d74..0000000000 --- a/samples/resources/configcontrollerinstance/configcontroller_v1beta1_configcontrollerinstance.yaml +++ /dev/null @@ -1,33 +0,0 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: configcontroller.cnrm.cloud.google.com/v1beta1 -kind: ConfigControllerInstance -metadata: - labels: - label-one: "value-one" - # The maximum allowed length for the name of a ConfigControllerInstance is 24. - name: ccinstance-sample -spec: - projectRef: - # Replace ${PROJECT_ID?} with your project ID - external: "projects/${PROJECT_ID?}" - location: us-central1 - managementConfig: - standardManagementConfig: - networkRef: - name: configcontrollerinstance-dep - masterIPv4CidrBlock: 172.16.123.64/28 - clusterCidrBlock: /20 - servicesCidrBlock: /24 diff --git a/samples/resources/gkehubfeaturemembership/container_v1beta1_containercluster.yaml b/samples/resources/gkehubfeaturemembership/container_v1beta1_containercluster.yaml deleted file mode 100644 index b72e3fac59..0000000000 --- a/samples/resources/gkehubfeaturemembership/container_v1beta1_containercluster.yaml +++ /dev/null @@ -1,26 +0,0 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: container.cnrm.cloud.google.com/v1beta1 -kind: ContainerCluster -metadata: - annotations: - cnrm.cloud.google.com/project-id: gkehubfeaturemembership-dep - name: gkehubfeaturemembership-dep -spec: - location: us-central1-a - initialNodeCount: 1 - workloadIdentityConfig: - # Workload Identity supports only a single namespace based on your project name. - workloadPool: gkehubfeaturemembership-dep.svc.id.goog diff --git a/samples/resources/gkehubfeaturemembership/gkehub_v1beta1_gkehubfeature.yaml b/samples/resources/gkehubfeaturemembership/gkehub_v1beta1_gkehubfeature.yaml deleted file mode 100644 index 324497fc0b..0000000000 --- a/samples/resources/gkehubfeaturemembership/gkehub_v1beta1_gkehubfeature.yaml +++ /dev/null @@ -1,25 +0,0 @@ -# Copyright 2021 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: gkehub.cnrm.cloud.google.com/v1beta1 -kind: GKEHubFeature -metadata: - name: gkehubfeaturemembership-dep -spec: - projectRef: - name: gkehubfeaturemembership-dep - location: global - # The resourceID must be "configmanagement" if you want to use Anthos config - # management feature. - resourceID: configmanagement diff --git a/samples/resources/gkehubfeaturemembership/gkehub_v1beta1_gkehubfeaturemembership.yaml b/samples/resources/gkehubfeaturemembership/gkehub_v1beta1_gkehubfeaturemembership.yaml deleted file mode 100644 index 1b9cd12220..0000000000 --- a/samples/resources/gkehubfeaturemembership/gkehub_v1beta1_gkehubfeaturemembership.yaml +++ /dev/null @@ -1,50 +0,0 @@ -# Copyright 2021 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: gkehub.cnrm.cloud.google.com/v1beta1 -kind: GKEHubFeatureMembership -metadata: - name: gkehubfeaturemembership-sample -spec: - projectRef: - name: gkehubfeaturemembership-dep - location: global - membershipRef: - name: gkehubfeaturemembership-dep - featureRef: - name: gkehubfeaturemembership-dep - configmanagement: - configSync: - sourceFormat: unstructured - git: - syncRepo: "https://github.com/GoogleCloudPlatform/cloud-foundation-toolkit" - syncBranch: "master" - policyDir: "config-connector" - syncWaitSecs: "20" - syncRev: "HEAD" - secretType: "none" - policyController: - enabled: true - exemptableNamespaces: - - "test-namespace" - referentialRulesEnabled: true - logDeniesEnabled: true - templateLibraryInstalled: true - auditIntervalSeconds: "20" - binauthz: - enabled: true - hierarchyController: - enabled: true - enablePodTreeLabels: true - enableHierarchicalResourceQuota: true diff --git a/samples/resources/gkehubfeaturemembership/gkehub_v1beta1_gkehubmembership.yaml b/samples/resources/gkehubfeaturemembership/gkehub_v1beta1_gkehubmembership.yaml deleted file mode 100644 index 2ffbc1823c..0000000000 --- a/samples/resources/gkehubfeaturemembership/gkehub_v1beta1_gkehubmembership.yaml +++ /dev/null @@ -1,30 +0,0 @@ -# Copyright 2021 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: gkehub.cnrm.cloud.google.com/v1beta1 -kind: GKEHubMembership -metadata: - annotations: - cnrm.cloud.google.com/project-id: gkehubfeaturemembership-dep - name: gkehubfeaturemembership-dep -spec: - location: global - authority: - # Issuer must contain a link to a valid JWT issuer. Your ContainerCluster is one. - issuer: https://container.googleapis.com/v1/projects/gkehubfeaturemembership-dep/locations/us-central1-a/clusters/gkehubfeaturemembership-dep - description: A sample GKE Hub membership - endpoint: - gkeCluster: - resourceRef: - name: gkehubfeaturemembership-dep diff --git a/samples/resources/gkehubfeaturemembership/resourcemanager_v1beta1_project.yaml b/samples/resources/gkehubfeaturemembership/resourcemanager_v1beta1_project.yaml deleted file mode 100644 index 2da6c080a0..0000000000 --- a/samples/resources/gkehubfeaturemembership/resourcemanager_v1beta1_project.yaml +++ /dev/null @@ -1,26 +0,0 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: resourcemanager.cnrm.cloud.google.com/v1beta1 -kind: Project -metadata: - name: gkehubfeaturemembership-dep -spec: - name: Config Connector Sample - organizationRef: - # Replace "${ORG_ID?}" with the numeric ID for your organization - external: "${ORG_ID?}" - billingAccountRef: - # Replace "${BILLING_ACCOUNT_ID?}" with the numeric ID for your billing account - external: "${BILLING_ACCOUNT_ID?}" diff --git a/samples/resources/gkehubfeaturemembership/serviceusage_v1beta1_service.yaml b/samples/resources/gkehubfeaturemembership/serviceusage_v1beta1_service.yaml deleted file mode 100644 index fc50c87713..0000000000 --- a/samples/resources/gkehubfeaturemembership/serviceusage_v1beta1_service.yaml +++ /dev/null @@ -1,43 +0,0 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: serviceusage.cnrm.cloud.google.com/v1beta1 -kind: Service -metadata: - annotations: - cnrm.cloud.google.com/project-id: gkehubfeaturemembership-dep - cnrm.cloud.google.com/disable-dependent-services: "false" - name: gkehubfeaturemembership-dep-1 -spec: - resourceID: container.googleapis.com ---- -apiVersion: serviceusage.cnrm.cloud.google.com/v1beta1 -kind: Service -metadata: - annotations: - cnrm.cloud.google.com/project-id: gkehubfeaturemembership-dep - cnrm.cloud.google.com/disable-dependent-services: "false" - name: gkehubfeaturemembership-dep-2 -spec: - resourceID: gkehub.googleapis.com ---- -apiVersion: serviceusage.cnrm.cloud.google.com/v1beta1 -kind: Service -metadata: - annotations: - cnrm.cloud.google.com/project-id: gkehubfeaturemembership-dep - cnrm.cloud.google.com/disable-dependent-services: "false" - name: gkehubfeaturemembership-dep-3 -spec: - resourceID: anthosconfigmanagement.googleapis.com diff --git a/samples/resources/iamauditconfig/iam_v1beta1_iamauditconfig.yaml b/samples/resources/iamauditconfig/iam_v1beta1_iamauditconfig.yaml deleted file mode 100644 index b24afb8e94..0000000000 --- a/samples/resources/iamauditconfig/iam_v1beta1_iamauditconfig.yaml +++ /dev/null @@ -1,29 +0,0 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -# Replace ${PROJECT_ID?} below with your desired project ID. -apiVersion: iam.cnrm.cloud.google.com/v1beta1 -kind: IAMAuditConfig -metadata: - name: iamauditconfig-sample -spec: - service: allServices - auditLogConfigs: - - logType: DATA_WRITE - - logType: DATA_READ - exemptedMembers: - - serviceAccount:iamauditconfig-dep@${PROJECT_ID?}.iam.gserviceaccount.com - resourceRef: - kind: Project - external: projects/${PROJECT_ID?} diff --git a/samples/resources/iamauditconfig/iam_v1beta1_iamserviceaccount.yaml b/samples/resources/iamauditconfig/iam_v1beta1_iamserviceaccount.yaml deleted file mode 100644 index fdd1eda7c6..0000000000 --- a/samples/resources/iamauditconfig/iam_v1beta1_iamserviceaccount.yaml +++ /dev/null @@ -1,18 +0,0 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: iam.cnrm.cloud.google.com/v1beta1 -kind: IAMServiceAccount -metadata: - name: iamauditconfig-dep \ No newline at end of file diff --git a/samples/resources/pubsubsubscription/pubsub_v1beta1_pubsubsubscription.yaml b/samples/resources/pubsubsubscription/pubsub_v1beta1_pubsubsubscription.yaml deleted file mode 100644 index d7ae3ad15c..0000000000 --- a/samples/resources/pubsubsubscription/pubsub_v1beta1_pubsubsubscription.yaml +++ /dev/null @@ -1,29 +0,0 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: pubsub.cnrm.cloud.google.com/v1beta1 -kind: PubSubSubscription -metadata: - labels: - label-one: "value-one" - name: pubsubsubscription-sample -spec: - ackDeadlineSeconds: 15 - messageRetentionDuration: 86400s - retainAckedMessages: false - topicRef: - name: pubsubsubscription-dep - deadLetterPolicy: - deadLetterTopicRef: - name: pubsubsubscription-dep2 diff --git a/samples/resources/pubsubsubscription/pubsub_v1beta1_pubsubtopic.yaml b/samples/resources/pubsubsubscription/pubsub_v1beta1_pubsubtopic.yaml deleted file mode 100644 index a9529f5117..0000000000 --- a/samples/resources/pubsubsubscription/pubsub_v1beta1_pubsubtopic.yaml +++ /dev/null @@ -1,23 +0,0 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - -apiVersion: pubsub.cnrm.cloud.google.com/v1beta1 -kind: PubSubTopic -metadata: - name: pubsubsubscription-dep ---- -apiVersion: pubsub.cnrm.cloud.google.com/v1beta1 -kind: PubSubTopic -metadata: - name: pubsubsubscription-dep2