From 9a723bf60a1e884c1f9806d774239e7c83152259 Mon Sep 17 00:00:00 2001 From: xiaoweim Date: Wed, 29 Jan 2025 20:49:16 +0000 Subject: [PATCH] Release 1.128.0 --- .../autopilot/kustomization.yaml | 2 +- .../standard/kustomization.yaml | 2 +- .../cluster/gcp-identity/0-cnrm-system.yaml | 98 +- .../workload-identity/0-cnrm-system.yaml | 98 +- .../configconnector/1.128.0}/crds.yaml | 7334 +++++++++++++---- .../namespaced/0-cnrm-system.yaml | 96 +- .../namespaced/per-namespace-components.yaml | 18 +- operator/autopilot-channels/stable | 2 +- .../cluster/gcp-identity/0-cnrm-system.yaml | 112 +- .../workload-identity/0-cnrm-system.yaml | 98 +- .../configconnector/1.128.0}/crds.yaml | 7334 +++++++++++++---- .../namespaced/0-cnrm-system.yaml | 96 +- .../namespaced/per-namespace-components.yaml | 18 +- operator/channels/stable | 2 +- operator/config/autopilot/kustomization.yaml | 2 +- operator/config/default/kustomization.yaml | 2 +- .../config/gke-addon/image_configmap.yaml | 10 +- version/VERSION | 2 +- 18 files changed, 12092 insertions(+), 3234 deletions(-) rename operator/autopilot-channels/packages/configconnector/{1.125.0 => 1.128.0}/cluster/gcp-identity/0-cnrm-system.yaml (95%) rename operator/autopilot-channels/packages/configconnector/{1.125.0 => 1.128.0}/cluster/workload-identity/0-cnrm-system.yaml (95%) rename operator/{channels/packages/configconnector/1.125.0 => autopilot-channels/packages/configconnector/1.128.0}/crds.yaml (96%) rename operator/autopilot-channels/packages/configconnector/{1.125.0 => 1.128.0}/namespaced/0-cnrm-system.yaml (95%) rename operator/autopilot-channels/packages/configconnector/{1.125.0 => 1.128.0}/namespaced/per-namespace-components.yaml (91%) rename operator/channels/packages/configconnector/{1.125.0 => 1.128.0}/cluster/gcp-identity/0-cnrm-system.yaml (94%) rename operator/channels/packages/configconnector/{1.125.0 => 1.128.0}/cluster/workload-identity/0-cnrm-system.yaml (95%) rename operator/{autopilot-channels/packages/configconnector/1.125.0 => channels/packages/configconnector/1.128.0}/crds.yaml (96%) rename operator/channels/packages/configconnector/{1.125.0 => 1.128.0}/namespaced/0-cnrm-system.yaml (95%) rename operator/channels/packages/configconnector/{1.125.0 => 1.128.0}/namespaced/per-namespace-components.yaml (93%) diff --git a/config/installbundle/release-manifests/autopilot/kustomization.yaml b/config/installbundle/release-manifests/autopilot/kustomization.yaml index df1020b747..284da3c470 100644 --- a/config/installbundle/release-manifests/autopilot/kustomization.yaml +++ b/config/installbundle/release-manifests/autopilot/kustomization.yaml @@ -16,7 +16,7 @@ namespace: configconnector-operator-system commonLabels: cnrm.cloud.google.com/operator-system: "true" commonAnnotations: - cnrm.cloud.google.com/operator-version: "1.127.0" + cnrm.cloud.google.com/operator-version: "1.128.0" resources: - crds.yaml - rbac.yaml diff --git a/config/installbundle/release-manifests/standard/kustomization.yaml b/config/installbundle/release-manifests/standard/kustomization.yaml index df1020b747..284da3c470 100644 --- a/config/installbundle/release-manifests/standard/kustomization.yaml +++ b/config/installbundle/release-manifests/standard/kustomization.yaml @@ -16,7 +16,7 @@ namespace: configconnector-operator-system commonLabels: cnrm.cloud.google.com/operator-system: "true" commonAnnotations: - cnrm.cloud.google.com/operator-version: "1.127.0" + cnrm.cloud.google.com/operator-version: "1.128.0" resources: - crds.yaml - rbac.yaml diff --git a/operator/autopilot-channels/packages/configconnector/1.125.0/cluster/gcp-identity/0-cnrm-system.yaml b/operator/autopilot-channels/packages/configconnector/1.128.0/cluster/gcp-identity/0-cnrm-system.yaml similarity index 95% rename from operator/autopilot-channels/packages/configconnector/1.125.0/cluster/gcp-identity/0-cnrm-system.yaml rename to operator/autopilot-channels/packages/configconnector/1.128.0/cluster/gcp-identity/0-cnrm-system.yaml index 4b5642700d..5b7c3abde5 100644 --- a/operator/autopilot-channels/packages/configconnector/1.125.0/cluster/gcp-identity/0-cnrm-system.yaml +++ b/operator/autopilot-channels/packages/configconnector/1.128.0/cluster/gcp-identity/0-cnrm-system.yaml @@ -2,7 +2,7 @@ apiVersion: v1 kind: Namespace metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-system @@ -11,7 +11,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-controller-manager @@ -21,7 +21,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -31,7 +31,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-resource-stats-recorder @@ -41,7 +41,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-manager @@ -51,7 +51,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-cnrm-system-role @@ -72,7 +72,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-cnrm-system-role @@ -93,7 +93,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -881,6 +881,18 @@ rules: - update - patch - delete +- apiGroups: + - memorystore.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch + - create + - update + - patch + - delete - apiGroups: - mlengine.cnrm.cloud.google.com resources: @@ -1306,7 +1318,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role @@ -1356,7 +1368,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-cluster-role @@ -1414,7 +1426,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-ns-role @@ -1439,7 +1451,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-role @@ -1469,7 +1481,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -1996,6 +2008,14 @@ rules: - get - list - watch +- apiGroups: + - memorystore.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch - apiGroups: - mlengine.cnrm.cloud.google.com resources: @@ -2281,7 +2301,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role @@ -2344,7 +2364,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role-binding @@ -2362,7 +2382,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role-binding @@ -2380,7 +2400,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-admin-binding @@ -2403,7 +2423,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-binding @@ -2420,7 +2440,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-binding @@ -2437,7 +2457,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-watcher-binding @@ -2454,7 +2474,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-binding @@ -2471,7 +2491,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-binding @@ -2488,7 +2508,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -2505,7 +2525,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 prometheus.io/port: "8888" prometheus.io/scrape: "true" labels: @@ -2527,7 +2547,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 prometheus.io/port: "48797" prometheus.io/scrape: "true" labels: @@ -2548,7 +2568,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -2566,7 +2586,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -2579,8 +2599,8 @@ spec: - /configconnector/recorder env: - name: CONFIG_CONNECTOR_VERSION - value: 1.125.0 - image: gcr.io/gke-release/cnrm/recorder:2fa0f72 + value: 1.128.0 + image: gcr.io/gke-release/cnrm/recorder:1.128.0 imagePullPolicy: Always name: recorder ports: @@ -2613,7 +2633,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -2628,7 +2648,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -2643,7 +2663,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: gcr.io/gke-release/cnrm/webhook:2fa0f72 + image: gcr.io/gke-release/cnrm/webhook:1.128.0 imagePullPolicy: Always name: webhook ports: @@ -2673,7 +2693,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/system: "true" @@ -2688,7 +2708,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/system: "true" @@ -2701,7 +2721,7 @@ spec: env: - name: GOOGLE_APPLICATION_CREDENTIALS value: /var/secrets/google/key.json - image: gcr.io/gke-release/cnrm/controller:2fa0f72 + image: gcr.io/gke-release/cnrm/controller:1.128.0 imagePullPolicy: Always name: manager ports: @@ -2738,7 +2758,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -2753,7 +2773,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -2761,7 +2781,7 @@ spec: containers: - command: - /configconnector/deletiondefender - image: gcr.io/gke-release/cnrm/deletiondefender:2fa0f72 + image: gcr.io/gke-release/cnrm/deletiondefender:1.128.0 imagePullPolicy: Always name: deletiondefender ports: @@ -2792,7 +2812,7 @@ kind: HorizontalPodAutoscaler metadata: annotations: autoscaling.alpha.kubernetes.io/metrics: '[{"type":"Resource","resource":{"name":"memory","targetAverageUtilization":70}}]' - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook diff --git a/operator/autopilot-channels/packages/configconnector/1.125.0/cluster/workload-identity/0-cnrm-system.yaml b/operator/autopilot-channels/packages/configconnector/1.128.0/cluster/workload-identity/0-cnrm-system.yaml similarity index 95% rename from operator/autopilot-channels/packages/configconnector/1.125.0/cluster/workload-identity/0-cnrm-system.yaml rename to operator/autopilot-channels/packages/configconnector/1.128.0/cluster/workload-identity/0-cnrm-system.yaml index af85e6f6a8..9a946a41d5 100644 --- a/operator/autopilot-channels/packages/configconnector/1.125.0/cluster/workload-identity/0-cnrm-system.yaml +++ b/operator/autopilot-channels/packages/configconnector/1.128.0/cluster/workload-identity/0-cnrm-system.yaml @@ -2,7 +2,7 @@ apiVersion: v1 kind: Namespace metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-system @@ -11,7 +11,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 iam.gke.io/gcp-service-account: cnrm-system@${PROJECT_ID?}.iam.gserviceaccount.com labels: cnrm.cloud.google.com/system: "true" @@ -22,7 +22,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -32,7 +32,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-resource-stats-recorder @@ -42,7 +42,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-manager @@ -52,7 +52,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-cnrm-system-role @@ -73,7 +73,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-cnrm-system-role @@ -94,7 +94,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -882,6 +882,18 @@ rules: - update - patch - delete +- apiGroups: + - memorystore.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch + - create + - update + - patch + - delete - apiGroups: - mlengine.cnrm.cloud.google.com resources: @@ -1307,7 +1319,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role @@ -1357,7 +1369,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-cluster-role @@ -1415,7 +1427,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-ns-role @@ -1440,7 +1452,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-role @@ -1470,7 +1482,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -1997,6 +2009,14 @@ rules: - get - list - watch +- apiGroups: + - memorystore.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch - apiGroups: - mlengine.cnrm.cloud.google.com resources: @@ -2282,7 +2302,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role @@ -2345,7 +2365,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role-binding @@ -2363,7 +2383,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role-binding @@ -2381,7 +2401,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-admin-binding @@ -2404,7 +2424,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-binding @@ -2421,7 +2441,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-binding @@ -2438,7 +2458,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-watcher-binding @@ -2455,7 +2475,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-binding @@ -2472,7 +2492,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-binding @@ -2489,7 +2509,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -2506,7 +2526,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 prometheus.io/port: "8888" prometheus.io/scrape: "true" labels: @@ -2528,7 +2548,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 prometheus.io/port: "48797" prometheus.io/scrape: "true" labels: @@ -2549,7 +2569,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -2567,7 +2587,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -2580,8 +2600,8 @@ spec: - /configconnector/recorder env: - name: CONFIG_CONNECTOR_VERSION - value: 1.125.0 - image: gcr.io/gke-release/cnrm/recorder:2fa0f72 + value: 1.128.0 + image: gcr.io/gke-release/cnrm/recorder:1.128.0 imagePullPolicy: Always name: recorder ports: @@ -2614,7 +2634,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -2629,7 +2649,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -2644,7 +2664,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: gcr.io/gke-release/cnrm/webhook:2fa0f72 + image: gcr.io/gke-release/cnrm/webhook:1.128.0 imagePullPolicy: Always name: webhook ports: @@ -2674,7 +2694,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/system: "true" @@ -2689,7 +2709,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/system: "true" @@ -2699,7 +2719,7 @@ spec: - --prometheus-scrape-endpoint=:8888 command: - /configconnector/manager - image: gcr.io/gke-release/cnrm/controller:2fa0f72 + image: gcr.io/gke-release/cnrm/controller:1.128.0 imagePullPolicy: Always name: manager ports: @@ -2729,7 +2749,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -2744,7 +2764,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -2752,7 +2772,7 @@ spec: containers: - command: - /configconnector/deletiondefender - image: gcr.io/gke-release/cnrm/deletiondefender:2fa0f72 + image: gcr.io/gke-release/cnrm/deletiondefender:1.128.0 imagePullPolicy: Always name: deletiondefender ports: @@ -2783,7 +2803,7 @@ kind: HorizontalPodAutoscaler metadata: annotations: autoscaling.alpha.kubernetes.io/metrics: '[{"type":"Resource","resource":{"name":"memory","targetAverageUtilization":70}}]' - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook diff --git a/operator/channels/packages/configconnector/1.125.0/crds.yaml b/operator/autopilot-channels/packages/configconnector/1.128.0/crds.yaml similarity index 96% rename from operator/channels/packages/configconnector/1.125.0/crds.yaml rename to operator/autopilot-channels/packages/configconnector/1.128.0/crds.yaml index c9811fe825..827610657e 100644 --- a/operator/channels/packages/configconnector/1.125.0/crds.yaml +++ b/operator/autopilot-channels/packages/configconnector/1.128.0/crds.yaml @@ -1,22 +1,8 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -264,7 +250,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -650,7 +636,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -780,7 +766,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -949,7 +935,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -1262,7 +1248,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -2456,7 +2442,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -2895,7 +2881,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4366,7 +4352,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4380,6 +4366,7 @@ spec: categories: - gcp kind: AlloyDBInstance + listKind: AlloyDBInstanceList plural: alloydbinstances shortNames: - gcpalloydbinstance @@ -4404,28 +4391,25 @@ spec: jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime name: Status Age type: date - name: v1beta1 + name: v1alpha1 schema: openAPIV3Schema: + description: AlloyDBInstance is the Schema for the AlloyDBInstance API properties: apiVersion: - description: 'apiVersion defines the versioned schema of this representation + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: - description: 'kind is a string value representing the REST resource this + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: - oneOf: - - required: - - instanceType - - required: - - instanceTypeRef + description: AlloyDBInstanceSpec defines the desired state of AlloyDBInstance properties: annotations: additionalProperties: @@ -4435,14 +4419,16 @@ spec: type: object availabilityType: description: |- - 'Availability type of an Instance. Defaults to REGIONAL for both primary and read instances. - Note that primary and read instances can have different availability types. - Only READ_POOL instance supports ZONAL type. Users can't specify the zone for READ_POOL instance. - Zone is automatically chosen from the list of zones in the region specified. - Read pool of size 1 can only have zonal availability. Read pools with node count of 2 or more - can have regional availability (nodes are present in 2 or more zones in a region).' Possible values: ["AVAILABILITY_TYPE_UNSPECIFIED", "ZONAL", "REGIONAL"]. + Availability type of an Instance. If empty, defaults to REGIONAL for primary instances. + + For read pools, availabilityType is always UNSPECIFIED. Instances in the + read pools are evenly distributed across available zones within the region + (i.e. read pools with more than one node will have a node in at least two zones). + Possible values: ["AVAILABILITY_TYPE_UNSPECIFIED", "ZONAL", "REGIONAL"]. type: string clusterRef: + description: The AlloyDBInstance cluster that this resource belongs + to. oneOf: - not: required: @@ -4459,14 +4445,14 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of an `AlloyDBCluster` - resource.' + description: If provided must be in the format `projects/[projectId]/locations/[location]/clusters/[clusterId]`. type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The `metadata.name` field of a `AlloyDBCluster` resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The `metadata.namespace` field of a `AlloyDBCluster` + resource. type: string type: object databaseFlags: @@ -4490,14 +4476,15 @@ spec: instance, instance is created in a random zone with available capacity. type: string instanceType: - description: |- - We recommend that you use `instanceTypeRef` instead. - The type of the instance. Possible values: [PRIMARY, READ_POOL, SECONDARY] + description: 'Not recommended. We recommend that you use `instanceTypeRef` + instead. The type of the instance. Possible values: [PRIMARY, READ_POOL, + SECONDARY]' type: string instanceTypeRef: description: |- The type of instance. Possible values: ["PRIMARY", "READ_POOL", "SECONDARY"] + For PRIMARY and SECONDARY instances, set the value to refer to the name of the associated cluster. This is recommended because the instance type of primary and secondary instances is tied to the cluster type of the associated cluster. If the secondary cluster is promoted to primary cluster, then the associated secondary instance also becomes primary instance. @@ -4526,14 +4513,15 @@ spec: - external properties: external: - description: 'Allowed value: The `clusterType` field of an `AlloyDBCluster` - resource.' + description: 'The type of instance. Possible values: ["PRIMARY", + "READ_POOL", "SECONDARY"]' type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The `metadata.name` field of a `AlloyDBCluster` resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The `metadata.namespace` field of a `AlloyDBCluster` + resource. type: string type: object machineConfig: @@ -4542,30 +4530,32 @@ spec: properties: cpuCount: description: The number of CPU's in the VM instance. + format: int32 type: integer type: object networkConfig: description: Instance level network configuration. properties: authorizedExternalNetworks: - description: A list of external networks authorized to access - this instance. This field is only allowed to be set when 'enable_public_ip' - is set to true. + description: Optional. A list of external network authorized to + access this instance. This field is only allowed to be set when + 'enablePublicIp' is set to true. items: properties: cidrRange: - description: CIDR range for one authorized network of the + description: CIDR range for one authorzied network of the instance. type: string type: object type: array enableOutboundPublicIp: - description: Enabling outbound public ip for the instance. + description: Optional. Enabling an outbound public IP address + to support a database server sending requests out into the internet. type: boolean enablePublicIp: - description: Enabling public ip for the instance. If a user wishes - to disable this, please also clear the list of the authorized - external networks set on the same instance. + description: Optional. Enabling public ip for the instance. If + a user wishes to disable this, please also clear the list of + the authorized external networks set on the same instance. type: boolean type: object readPoolConfig: @@ -4575,21 +4565,23 @@ spec: nodeCount: description: Read capacity, i.e. number of nodes in a read pool instance. + format: int32 type: integer type: object resourceID: - description: Immutable. Optional. The instanceId of the resource. - Used for creation and acquisition. When unset, the value of `metadata.name` - is used as the default. + description: Optional. The instanceId of the resource. If not given, + the metadata.name will be used. type: string required: - clusterRef type: object status: + description: AlloyDBInstanceStatus defines the config connector machine + state of AlloyDBInstance properties: conditions: - description: Conditions represent the latest available observation - of the resource's current state. + description: Conditions represent the latest available observations + of the object's current state. items: properties: lastTransitionTime: @@ -4616,6 +4608,10 @@ spec: createTime: description: Time the Instance was created in UTC. type: string + externalRef: + description: A unique specifier for the AlloyDBInstance resource in + GCP. + type: string ipAddress: description: The IP address for the Instance. This is the connection endpoint for an end-user application. @@ -4629,12 +4625,12 @@ spec: If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. + format: int64 type: integer outboundPublicIpAddresses: - description: |- - The outbound public IP addresses for the instance. This is available ONLY when - networkConfig.enableOutboundPublicIp is set to true. These IP addresses are used - for outbound connections. + description: The outbound public IP addresses for the instance. This + is available ONLY when networkConfig.enableOutboundPublicIp is set + to true. These IP addresses are used for outbound connections. items: type: string type: array @@ -4663,7 +4659,7 @@ spec: - spec type: object served: true - storage: false + storage: true subresources: status: {} - additionalPrinterColumns: @@ -4682,28 +4678,25 @@ spec: jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime name: Status Age type: date - name: v1alpha1 + name: v1beta1 schema: openAPIV3Schema: + description: AlloyDBInstance is the Schema for the AlloyDBInstance API properties: apiVersion: - description: 'apiVersion defines the versioned schema of this representation + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: - description: 'kind is a string value representing the REST resource this + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: - oneOf: - - required: - - instanceType - - required: - - instanceTypeRef + description: AlloyDBInstanceSpec defines the desired state of AlloyDBInstance properties: annotations: additionalProperties: @@ -4713,14 +4706,16 @@ spec: type: object availabilityType: description: |- - 'Availability type of an Instance. Defaults to REGIONAL for both primary and read instances. - Note that primary and read instances can have different availability types. - Only READ_POOL instance supports ZONAL type. Users can't specify the zone for READ_POOL instance. - Zone is automatically chosen from the list of zones in the region specified. - Read pool of size 1 can only have zonal availability. Read pools with node count of 2 or more - can have regional availability (nodes are present in 2 or more zones in a region).' Possible values: ["AVAILABILITY_TYPE_UNSPECIFIED", "ZONAL", "REGIONAL"]. + Availability type of an Instance. If empty, defaults to REGIONAL for primary instances. + + For read pools, availabilityType is always UNSPECIFIED. Instances in the + read pools are evenly distributed across available zones within the region + (i.e. read pools with more than one node will have a node in at least two zones). + Possible values: ["AVAILABILITY_TYPE_UNSPECIFIED", "ZONAL", "REGIONAL"]. type: string clusterRef: + description: The AlloyDBInstance cluster that this resource belongs + to. oneOf: - not: required: @@ -4737,14 +4732,14 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of an `AlloyDBCluster` - resource.' + description: If provided must be in the format `projects/[projectId]/locations/[location]/clusters/[clusterId]`. type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The `metadata.name` field of a `AlloyDBCluster` resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The `metadata.namespace` field of a `AlloyDBCluster` + resource. type: string type: object databaseFlags: @@ -4768,14 +4763,15 @@ spec: instance, instance is created in a random zone with available capacity. type: string instanceType: - description: |- - We recommend that you use `instanceTypeRef` instead. - The type of the instance. Possible values: [PRIMARY, READ_POOL, SECONDARY] + description: 'Not recommended. We recommend that you use `instanceTypeRef` + instead. The type of the instance. Possible values: [PRIMARY, READ_POOL, + SECONDARY]' type: string instanceTypeRef: description: |- The type of instance. Possible values: ["PRIMARY", "READ_POOL", "SECONDARY"] + For PRIMARY and SECONDARY instances, set the value to refer to the name of the associated cluster. This is recommended because the instance type of primary and secondary instances is tied to the cluster type of the associated cluster. If the secondary cluster is promoted to primary cluster, then the associated secondary instance also becomes primary instance. @@ -4804,14 +4800,15 @@ spec: - external properties: external: - description: 'Allowed value: The `clusterType` field of an `AlloyDBCluster` - resource.' + description: 'The type of instance. Possible values: ["PRIMARY", + "READ_POOL", "SECONDARY"]' type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The `metadata.name` field of a `AlloyDBCluster` resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The `metadata.namespace` field of a `AlloyDBCluster` + resource. type: string type: object machineConfig: @@ -4820,30 +4817,32 @@ spec: properties: cpuCount: description: The number of CPU's in the VM instance. + format: int32 type: integer type: object networkConfig: description: Instance level network configuration. properties: authorizedExternalNetworks: - description: A list of external networks authorized to access - this instance. This field is only allowed to be set when 'enable_public_ip' - is set to true. + description: Optional. A list of external network authorized to + access this instance. This field is only allowed to be set when + 'enablePublicIp' is set to true. items: properties: cidrRange: - description: CIDR range for one authorized network of the + description: CIDR range for one authorzied network of the instance. type: string type: object type: array enableOutboundPublicIp: - description: Enabling outbound public ip for the instance. + description: Optional. Enabling an outbound public IP address + to support a database server sending requests out into the internet. type: boolean enablePublicIp: - description: Enabling public ip for the instance. If a user wishes - to disable this, please also clear the list of the authorized - external networks set on the same instance. + description: Optional. Enabling public ip for the instance. If + a user wishes to disable this, please also clear the list of + the authorized external networks set on the same instance. type: boolean type: object readPoolConfig: @@ -4853,21 +4852,23 @@ spec: nodeCount: description: Read capacity, i.e. number of nodes in a read pool instance. + format: int32 type: integer type: object resourceID: - description: Immutable. Optional. The instanceId of the resource. - Used for creation and acquisition. When unset, the value of `metadata.name` - is used as the default. + description: Optional. The instanceId of the resource. If not given, + the metadata.name will be used. type: string required: - clusterRef type: object status: + description: AlloyDBInstanceStatus defines the config connector machine + state of AlloyDBInstance properties: conditions: - description: Conditions represent the latest available observation - of the resource's current state. + description: Conditions represent the latest available observations + of the object's current state. items: properties: lastTransitionTime: @@ -4894,6 +4895,10 @@ spec: createTime: description: Time the Instance was created in UTC. type: string + externalRef: + description: A unique specifier for the AlloyDBInstance resource in + GCP. + type: string ipAddress: description: The IP address for the Instance. This is the connection endpoint for an end-user application. @@ -4907,12 +4912,12 @@ spec: If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. + format: int64 type: integer outboundPublicIpAddresses: - description: |- - The outbound public IP addresses for the instance. This is available ONLY when - networkConfig.enableOutboundPublicIp is set to true. These IP addresses are used - for outbound connections. + description: The outbound public IP addresses for the instance. This + is available ONLY when networkConfig.enableOutboundPublicIp is set + to true. These IP addresses are used for outbound connections. items: type: string type: array @@ -4941,21 +4946,15 @@ spec: - spec type: object served: true - storage: true + storage: false subresources: status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -5151,7 +5150,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -5425,7 +5424,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -5584,7 +5583,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -5748,7 +5747,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -5921,7 +5920,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6065,7 +6064,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6195,13 +6194,11 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: alpha cnrm.cloud.google.com/system: "true" - cnrm.cloud.google.com/tf2crd: "true" name: apigeeenvgroups.apigee.cnrm.cloud.google.com spec: group: apigee.cnrm.cloud.google.com @@ -6209,6 +6206,7 @@ spec: categories: - gcp kind: ApigeeEnvgroup + listKind: ApigeeEnvgroupList plural: apigeeenvgroups shortNames: - gcpapigeeenvgroup @@ -6236,151 +6234,29 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: ApigeeEnvgroup is the Schema for the ApigeeEnvgroup API properties: apiVersion: - description: 'apiVersion defines the versioned schema of this representation + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: - description: 'kind is a string value representing the REST resource this + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: + description: ApigeeEnvgroupSpec defines the desired state of ApigeeEnvgroup properties: hostnames: - description: Hostnames of the environment group. + description: Host names for this environment group. items: type: string type: array - orgId: - description: |- - Immutable. The Apigee Organization associated with the Apigee environment group, - in the format 'organizations/{{org_name}}'. - type: string - resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. - type: string - required: - - orgId - type: object - status: - properties: - conditions: - description: Conditions represent the latest available observation - of the resource's current state. - items: - properties: - lastTransitionTime: - description: Last time the condition transitioned from one status - to another. - type: string - message: - description: Human-readable message indicating details about - last transition. - type: string - reason: - description: Unique, one-word, CamelCase reason for the condition's - last transition. - type: string - status: - description: Status is the status of the condition. Can be True, - False, Unknown. - type: string - type: - description: Type is the type of the condition. - type: string - type: object - type: array - observedGeneration: - description: ObservedGeneration is the generation of the resource - that was most recently observed by the Config Connector controller. - If this is equal to metadata.generation, then that means that the - current reported status reflects the most recent desired state of - the resource. - type: integer - type: object - required: - - spec - type: object - served: true - storage: true - subresources: - status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - cnrm.cloud.google.com/version: 1.125.0 - creationTimestamp: null - labels: - cnrm.cloud.google.com/dcl2crd: "true" - cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: stable - cnrm.cloud.google.com/system: "true" - name: apigeeenvironments.apigee.cnrm.cloud.google.com -spec: - group: apigee.cnrm.cloud.google.com - names: - categories: - - gcp - kind: ApigeeEnvironment - plural: apigeeenvironments - shortNames: - - gcpapigeeenvironment - - gcpapigeeenvironments - singular: apigeeenvironment - preserveUnknownFields: false - scope: Namespaced - versions: - - additionalPrinterColumns: - - jsonPath: .metadata.creationTimestamp - name: Age - type: date - - description: When 'True', the most recent reconcile of the resource succeeded - jsonPath: .status.conditions[?(@.type=='Ready')].status - name: Ready - type: string - - description: The reason for the value in 'Ready' - jsonPath: .status.conditions[?(@.type=='Ready')].reason - name: Status - type: string - - description: The last transition time for the value in 'Status' - jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime - name: Status Age - type: date - name: v1beta1 - schema: - openAPIV3Schema: - properties: - apiVersion: - description: 'apiVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' - type: string - kind: - description: 'kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' - type: string - metadata: - type: object - spec: - properties: - apigeeOrganizationRef: - description: Immutable. + organizationRef: oneOf: - not: required: @@ -6397,43 +6273,360 @@ spec: - external properties: external: - description: |- - The apigee organization for the resource - - Allowed value: The Google Cloud resource name of an `ApigeeOrganization` resource (format: `organizations/{{name}}`). + description: The ApigeeOrganization selfLink, when not managed + by Config Connector. type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The `name` field of an `ApigeeOrganization` resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The `namespace` field of an `ApigeeOrganization` + resource. type: string type: object - description: - description: Optional. Description of the environment. - type: string - displayName: - description: Optional. Display name for this environment. - type: string - properties: - additionalProperties: - type: string - description: Optional. Key-value pairs that may be used for customizing - the environment. - type: object resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. + description: The ApigeeEnvgroup name. If not given, the metadata.name + will be used. type: string required: - - apigeeOrganizationRef + - organizationRef type: object status: + description: ApigeeEnvgroupStatus defines the config connector machine + state of ApigeeEnvgroup properties: conditions: - description: Conditions represent the latest available observation - of the resource's current state. + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the ApigeeEnvgroup resource in + GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + createdAt: + description: Output only. The time at which the environment group + was created as milliseconds since epoch. + format: int64 + type: integer + lastModifiedAt: + description: Output only. The time at which the environment group + was last updated as milliseconds since epoch. + format: int64 + type: integer + name: + description: ID of the environment group. + type: string + state: + description: Output only. State of the environment group. Values + other than ACTIVE means the resource is not ready to use. + type: string + type: object + type: object + required: + - spec + type: object + served: true + storage: false + subresources: + status: {} + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + description: ApigeeEnvgroup is the Schema for the ApigeeEnvgroup API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: ApigeeEnvgroupSpec defines the desired state of ApigeeEnvgroup + properties: + hostnames: + description: Host names for this environment group. + items: + type: string + type: array + organizationRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The ApigeeOrganization selfLink, when not managed + by Config Connector. + type: string + name: + description: The `name` field of an `ApigeeOrganization` resource. + type: string + namespace: + description: The `namespace` field of an `ApigeeOrganization` + resource. + type: string + type: object + resourceID: + description: The ApigeeEnvgroup name. If not given, the metadata.name + will be used. + type: string + required: + - organizationRef + type: object + status: + description: ApigeeEnvgroupStatus defines the config connector machine + state of ApigeeEnvgroup + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the ApigeeEnvgroup resource in + GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + createdAt: + description: Output only. The time at which the environment group + was created as milliseconds since epoch. + format: int64 + type: integer + lastModifiedAt: + description: Output only. The time at which the environment group + was last updated as milliseconds since epoch. + format: int64 + type: integer + name: + description: ID of the environment group. + type: string + state: + description: Output only. State of the environment group. Values + other than ACTIVE means the resource is not ready to use. + type: string + type: object + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/dcl2crd: "true" + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: stable + cnrm.cloud.google.com/system: "true" + name: apigeeenvironments.apigee.cnrm.cloud.google.com +spec: + group: apigee.cnrm.cloud.google.com + names: + categories: + - gcp + kind: ApigeeEnvironment + plural: apigeeenvironments + shortNames: + - gcpapigeeenvironment + - gcpapigeeenvironments + singular: apigeeenvironment + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + apigeeOrganizationRef: + description: Immutable. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: |- + The apigee organization for the resource + + Allowed value: The Google Cloud resource name of an `ApigeeOrganization` resource (format: `organizations/{{name}}`). + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + description: + description: Optional. Description of the environment. + type: string + displayName: + description: Optional. Display name for this environment. + type: string + properties: + additionalProperties: + type: string + description: Optional. Key-value pairs that may be used for customizing + the environment. + type: object + resourceID: + description: Immutable. Optional. The name of the resource. Used for + creation and acquisition. When unset, the value of `metadata.name` + is used as the default. + type: string + required: + - apigeeOrganizationRef + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. items: properties: lastTransitionTime: @@ -6498,7 +6691,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6628,7 +6821,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6804,7 +6997,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6933,7 +7126,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -7227,7 +7420,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -7362,7 +7555,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -7614,7 +7807,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -7789,7 +7982,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -7922,7 +8115,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -8623,7 +8816,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -8773,7 +8966,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9224,7 +9417,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9591,7 +9784,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9793,7 +9986,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9964,7 +10157,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -10144,7 +10337,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -10159,6 +10352,9 @@ spec: kind: BigQueryAnalyticsHubDataExchange listKind: BigQueryAnalyticsHubDataExchangeList plural: bigqueryanalyticshubdataexchanges + shortNames: + - gcpbigqueryanalyticshubdataexchange + - gcpbigqueryanalyticshubdataexchanges singular: bigqueryanalyticshubdataexchange preserveUnknownFields: false scope: Namespaced @@ -10508,7 +10704,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -10522,6 +10718,9 @@ spec: kind: BigQueryAnalyticsHubListing listKind: BigQueryAnalyticsHubListingList plural: bigqueryanalyticshublistings + shortNames: + - gcpbigqueryanalyticshublisting + - gcpbigqueryanalyticshublistings singular: bigqueryanalyticshublisting preserveUnknownFields: false scope: Namespaced @@ -10571,6 +10770,9 @@ spec: type: string type: array dataExchangeRef: + description: BigQueryAnalyticsHubDataExchangeRef defines the resource + reference to BigQueryAnalyticsHubDataExchange, which "External" + field holds the GCP identifier for the KRM object. oneOf: - not: required: @@ -10587,14 +10789,15 @@ spec: - external properties: external: - description: The DataExchange selfLink, when not managed by Config - Connector. + description: A reference to an externally managed BigQueryAnalyticsHubDataExchange + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/dataexchanges/{{dataexchangeID}}". type: string name: - description: The `name` field of a `DataExchange` resource. + description: The name of a BigQueryAnalyticsHubDataExchange resource. type: string namespace: - description: The `namespace` field of a `DataExchange` resource. + description: The namespace of a BigQueryAnalyticsHubDataExchange + resource. type: string type: object dataProvider: @@ -10733,27 +10936,15 @@ spec: properties: enabled: description: Optional. If true, enable restricted export. - properties: - value: - description: The bool value. - type: boolean - type: object + type: boolean restrictDirectTableAccess: description: Optional. If true, restrict direct table access (read api/tabledata.list) on linked table. - properties: - value: - description: The bool value. - type: boolean - type: object + type: boolean restrictQueryResult: description: Optional. If true, restrict export of query result derived from restricted linked dataset table. - properties: - value: - description: The bool value. - type: boolean - type: object + type: boolean type: object selectedResources: description: Optional. Resources in this dataset that are @@ -10762,10 +10953,37 @@ spec: for data clean room exchanges. items: properties: - table: - description: 'Optional. Format: For table: `projects/{projectId}/datasets/{datasetId}/tables/{tableId}` + tableRef: + description: 'Optional. A reference to a BigQueryTable. + Format: `projects/{projectId}/datasets/{datasetId}/tables/{tableId}` Example:"projects/test_project/datasets/test_dataset/tables/test_table"' - type: string + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: If provided must be in the format `projects/{projectId}/datasets/{datasetId}/tables/{tableId}`. + type: string + name: + description: The `metadata.name` field of a `BigQueryTable` + resource. + type: string + namespace: + description: The `metadata.namespace` field of a + `BigQueryTable` resource. + type: string + type: object type: object type: array required: @@ -10832,35 +11050,9 @@ spec: type: object type: object served: true - storage: true + storage: false subresources: status: {} ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - cnrm.cloud.google.com/version: 1.125.0 - creationTimestamp: null - labels: - cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/system: "true" - name: bigqueryconnectionconnections.bigqueryconnection.cnrm.cloud.google.com -spec: - group: bigqueryconnection.cnrm.cloud.google.com - names: - categories: - - gcp - kind: BigQueryConnectionConnection - listKind: BigQueryConnectionConnectionList - plural: bigqueryconnectionconnections - shortNames: - - gcpbigqueryconnectionconnection - - gcpbigqueryconnectionconnections - singular: bigqueryconnectionconnection - preserveUnknownFields: false - scope: Namespaced - versions: - additionalPrinterColumns: - jsonPath: .metadata.creationTimestamp name: Age @@ -10877,10 +11069,10 @@ spec: jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime name: Status Age type: date - name: v1alpha1 + name: v1beta1 schema: openAPIV3Schema: - description: BigQueryConnectionConnection is the Schema for the BigQueryConnectionConnection + description: BigQueryAnalyticsHubListing is the Schema for the BigQueryAnalyticsHubListing API properties: apiVersion: @@ -10896,220 +11088,574 @@ spec: metadata: type: object spec: - description: BigQueryConnectionConnectionSpec defines the desired state - to connect BigQuery to external resources + description: BigQueryAnalyticsHubListingSpec defines the desired state + of BigQueryAnalyticsHubDataExchangeListing properties: - aws: - description: Amazon Web Services (AWS) properties. - properties: - accessRole: - description: Authentication using Google owned service account - to assume into customer's AWS IAM Role. - properties: - iamRoleID: - description: The user’s AWS IAM Role that trusts the Google-owned - AWS IAM user Connection. - type: string + categories: + description: Optional. Categories of the listing. Up to two categories + are allowed. + items: + type: string + type: array + dataExchangeRef: + description: BigQueryAnalyticsHubDataExchangeRef defines the resource + reference to BigQueryAnalyticsHubDataExchange, which "External" + field holds the GCP identifier for the KRM object. + oneOf: + - not: required: - - iamRoleID - type: object - required: - - accessRole - type: object - azure: - description: Azure properties. + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external properties: - customerTenantID: - description: The id of customer's directory that host the data. + external: + description: A reference to an externally managed BigQueryAnalyticsHubDataExchange + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/dataexchanges/{{dataexchangeID}}". type: string - federatedApplicationClientID: - description: The client ID of the user's Azure Active Directory - Application used for a federated connection. + name: + description: The name of a BigQueryAnalyticsHubDataExchange resource. type: string - required: - - customerTenantID - type: object - cloudResource: - description: Use Cloud Resource properties. - type: object - cloudSQL: - description: Cloud SQL properties. - properties: - credential: - description: Cloud SQL credential. - properties: - secretRef: - description: The Kubernetes Secret object that stores the - "username" and "password" information. The Secret type has - to be `kubernetes.io/basic-auth`. - properties: - name: - description: The `metadata.name` field of a Kubernetes - `Secret` - type: string - namespace: - description: The `metadata.namespace` field of a Kubernetes - `Secret`. - type: string - required: - - name - type: object - type: object - databaseRef: - description: Reference to the SQL Database. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: The SQL Database name, when not managed by Config - Connector. - type: string - name: - description: The `name` field of a `SQLDatabase` resource. - type: string - namespace: - description: The `namespace` field of a `SQLDatabase` resource. - type: string - type: object - instanceRef: - description: Reference to the Cloud SQL instance ID. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: The SQLInstance selfLink, when not managed by - Config Connector. - type: string - name: - description: The `name` field of a `SQLInstance` resource. - type: string - namespace: - description: The `namespace` field of a `SQLInstance` resource. - type: string - type: object - type: - description: Type of the Cloud SQL database. + namespace: + description: The namespace of a BigQueryAnalyticsHubDataExchange + resource. type: string - required: - - credential - - databaseRef - - instanceRef - - type type: object - cloudSpanner: - description: Cloud Spanner properties. + dataProvider: + description: Optional. Details of the data provider who owns the source + data. properties: - databaseRef: - description: Reference to a spanner database ID. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: The Spanner Database selfLink, when not managed - by Config Connector. - type: string - name: - description: The `name` field of a `SpannerDatabase` resource. - type: string - namespace: - description: The `namespace` field of a `SpannerDatabase` - resource. - type: string - type: object - databaseRole: - description: |- - Optional. Cloud Spanner database role for fine-grained access control. - The Cloud Spanner admin should have provisioned the database role with - appropriate permissions, such as `SELECT` and `INSERT`. Other users should - only use roles provided by their Cloud Spanner admins. - - For more details, see [About fine-grained access control] - (https://cloud.google.com/spanner/docs/fgac-about). - - REQUIRES: The database role name must start with a letter, and can only - contain letters, numbers, and underscores. + name: + description: Optional. Name of the data provider. + type: string + primaryContact: + description: 'Optional. Email or URL of the data provider. Max + Length: 1000 bytes.' type: string - maxParallelism: - description: |- - Allows setting max parallelism per query when executing on Spanner - independent compute resources. If unspecified, default values of - parallelism are chosen that are dependent on the Cloud Spanner instance - configuration. - - REQUIRES: `use_parallelism` must be set. - REQUIRES: Either `use_data_boost` or `use_serverless_analytics` must be - set. - format: int32 - type: integer - useDataBoost: - description: |- - If set, the request will be executed via Spanner independent compute - resources. - REQUIRES: `use_parallelism` must be set. - - NOTE: `use_serverless_analytics` will be deprecated. Prefer - `use_data_boost` over `use_serverless_analytics`. - type: boolean - useParallelism: - description: If parallelism should be used when reading from Cloud - Spanner - type: boolean - useServerlessAnalytics: - description: 'If the serverless analytics service should be used - to read data from Cloud Spanner. Note: `use_parallelism` must - be set when using serverless analytics.' - type: boolean - required: - - databaseRef type: object description: - description: User provided description. + description: 'Optional. Short description of the listing. The description + must contain only Unicode characters or tabs (HT), new lines (LF), + carriage returns (CR), and page breaks (FF). Default value is an + empty string. Max length: 2000 bytes.' type: string - friendlyName: - description: User provided display name for the connection. + discoveryType: + description: Optional. Type of discovery of the listing on the discovery + page. + type: string + displayName: + description: 'Required. Human-readable display name of the listing. + The display name must contain only Unicode letters, numbers (0-9), + underscores (_), dashes (-), spaces ( ), ampersands (&) and can''t + start or end with spaces. Default value is an empty string. Max + length: 63 bytes.' + type: string + documentation: + description: Optional. Documentation describing the listing. type: string location: - description: Immutable. + description: Immutable. The name of the location this data exchange. + type: string + primaryContact: + description: 'Optional. Email or URL of the primary point of contact + of the listing. Max Length: 1000 bytes.' type: string - x-kubernetes-validations: - - message: Location field is immutable - rule: self == oldSelf + projectRef: + description: The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + publisher: + description: Optional. Details of the publisher who owns the listing + and who can share the source data. + properties: + name: + description: Optional. Name of the listing publisher. + type: string + primaryContact: + description: 'Optional. Email or URL of the listing publisher. + Max Length: 1000 bytes.' + type: string + type: object + requestAccess: + description: 'Optional. Email or URL of the request access of the + listing. Subscribers can use this reference to request access. Max + Length: 1000 bytes.' + type: string + resourceID: + description: Immutable. The BigQueryAnalyticsHubDataExchangeListing + name. If not given, the metadata.name will be used. + type: string + x-kubernetes-validations: + - message: ResourceID field is immutable + rule: self == oldSelf + source: + properties: + bigQueryDatasetSource: + description: One of the following fields must be set. + properties: + datasetRef: + description: Resource name of the dataset source for this + listing. e.g. `projects/myproject/datasets/123` + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: If provided must be in the format `projects/[project_id]/datasets/[dataset_id]`. + type: string + name: + description: The `metadata.name` field of a `BigQueryDataset` + resource. + type: string + namespace: + description: The `metadata.namespace` field of a `BigQueryDataset` + resource. + type: string + type: object + restrictedExportPolicy: + description: Optional. If set, restricted export policy will + be propagated and enforced on the linked dataset. + properties: + enabled: + description: Optional. If true, enable restricted export. + type: boolean + restrictDirectTableAccess: + description: Optional. If true, restrict direct table + access (read api/tabledata.list) on linked table. + type: boolean + restrictQueryResult: + description: Optional. If true, restrict export of query + result derived from restricted linked dataset table. + type: boolean + type: object + selectedResources: + description: Optional. Resources in this dataset that are + selectively shared. If this field is empty, then the entire + dataset (all resources) are shared. This field is only valid + for data clean room exchanges. + items: + properties: + tableRef: + description: 'Optional. A reference to a BigQueryTable. + Format: `projects/{projectId}/datasets/{datasetId}/tables/{tableId}` + Example:"projects/test_project/datasets/test_dataset/tables/test_table"' + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: If provided must be in the format `projects/{projectId}/datasets/{datasetId}/tables/{tableId}`. + type: string + name: + description: The `metadata.name` field of a `BigQueryTable` + resource. + type: string + namespace: + description: The `metadata.namespace` field of a + `BigQueryTable` resource. + type: string + type: object + type: object + type: array + required: + - datasetRef + type: object + type: object + required: + - dataExchangeRef + - displayName + - location + - projectRef + - source + type: object + status: + description: BigQueryAnalyticsHubListingStatus defines the config connector + machine state of BigQueryAnalyticsHubDataExchangeListing + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the BigQueryAnalyticsHubDataExchangeListing + resource in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + state: + description: Output only. Current state of the listing. + type: string + type: object + type: object + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/system: "true" + name: bigqueryconnectionconnections.bigqueryconnection.cnrm.cloud.google.com +spec: + group: bigqueryconnection.cnrm.cloud.google.com + names: + categories: + - gcp + kind: BigQueryConnectionConnection + listKind: BigQueryConnectionConnectionList + plural: bigqueryconnectionconnections + shortNames: + - gcpbigqueryconnectionconnection + - gcpbigqueryconnectionconnections + singular: bigqueryconnectionconnection + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: BigQueryConnectionConnection is the Schema for the BigQueryConnectionConnection + API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: BigQueryConnectionConnectionSpec defines the desired state + to connect BigQuery to external resources + properties: + aws: + description: Amazon Web Services (AWS) properties. + properties: + accessRole: + description: Authentication using Google owned service account + to assume into customer's AWS IAM Role. + properties: + iamRoleID: + description: The user’s AWS IAM Role that trusts the Google-owned + AWS IAM user Connection. + type: string + required: + - iamRoleID + type: object + required: + - accessRole + type: object + azure: + description: Azure properties. + properties: + customerTenantID: + description: The id of customer's directory that host the data. + type: string + federatedApplicationClientID: + description: The client ID of the user's Azure Active Directory + Application used for a federated connection. + type: string + required: + - customerTenantID + type: object + cloudResource: + description: Use Cloud Resource properties. + type: object + cloudSQL: + description: Cloud SQL properties. + properties: + credential: + description: Cloud SQL credential. + properties: + secretRef: + description: The Kubernetes Secret object that stores the + "username" and "password" information. The Secret type has + to be `kubernetes.io/basic-auth`. + properties: + name: + description: The `metadata.name` field of a Kubernetes + `Secret` + type: string + namespace: + description: The `metadata.namespace` field of a Kubernetes + `Secret`. + type: string + required: + - name + type: object + type: object + databaseRef: + description: Reference to the SQL Database. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The SQL Database name, when not managed by Config + Connector. + type: string + name: + description: The `name` field of a `SQLDatabase` resource. + type: string + namespace: + description: The `namespace` field of a `SQLDatabase` resource. + type: string + type: object + instanceRef: + description: Reference to the Cloud SQL instance ID. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The SQLInstance selfLink, when not managed by + Config Connector. + type: string + name: + description: The `name` field of a `SQLInstance` resource. + type: string + namespace: + description: The `namespace` field of a `SQLInstance` resource. + type: string + type: object + type: + description: Type of the Cloud SQL database. + type: string + required: + - credential + - databaseRef + - instanceRef + - type + type: object + cloudSpanner: + description: Cloud Spanner properties. + properties: + databaseRef: + description: Reference to a spanner database ID. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The Spanner Database selfLink, when not managed + by Config Connector. + type: string + name: + description: The `name` field of a `SpannerDatabase` resource. + type: string + namespace: + description: The `namespace` field of a `SpannerDatabase` + resource. + type: string + type: object + databaseRole: + description: |- + Optional. Cloud Spanner database role for fine-grained access control. + The Cloud Spanner admin should have provisioned the database role with + appropriate permissions, such as `SELECT` and `INSERT`. Other users should + only use roles provided by their Cloud Spanner admins. + + For more details, see [About fine-grained access control] + (https://cloud.google.com/spanner/docs/fgac-about). + + REQUIRES: The database role name must start with a letter, and can only + contain letters, numbers, and underscores. + type: string + maxParallelism: + description: |- + Allows setting max parallelism per query when executing on Spanner + independent compute resources. If unspecified, default values of + parallelism are chosen that are dependent on the Cloud Spanner instance + configuration. + + REQUIRES: `use_parallelism` must be set. + REQUIRES: Either `use_data_boost` or `use_serverless_analytics` must be + set. + format: int32 + type: integer + useDataBoost: + description: |- + If set, the request will be executed via Spanner independent compute + resources. + REQUIRES: `use_parallelism` must be set. + + NOTE: `use_serverless_analytics` will be deprecated. Prefer + `use_data_boost` over `use_serverless_analytics`. + type: boolean + useParallelism: + description: If parallelism should be used when reading from Cloud + Spanner + type: boolean + useServerlessAnalytics: + description: 'If the serverless analytics service should be used + to read data from Cloud Spanner. Note: `use_parallelism` must + be set when using serverless analytics.' + type: boolean + required: + - databaseRef + type: object + description: + description: User provided description. + type: string + friendlyName: + description: User provided display name for the connection. + type: string + location: + description: Immutable. + type: string + x-kubernetes-validations: + - message: Location field is immutable + rule: self == oldSelf projectRef: description: The Project that this resource belongs to. oneOf: @@ -11860,7 +12406,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12034,7 +12580,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12292,7 +12838,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12500,7 +13046,7 @@ spec: afterwards, and does not alter the existing tables. The following values are supported: - * 'und:ci': undetermined locale, case insensitive. + * 'und:ci': undetermined locale, case-insensitive. * '': empty string. Default to case-sensitive behavior. type: string defaultEncryptionConfiguration: @@ -12713,7 +13259,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12727,6 +13273,9 @@ spec: kind: BigQueryDataTransferConfig listKind: BigQueryDataTransferConfigList plural: bigquerydatatransferconfigs + shortNames: + - gcpbigquerydatatransferconfig + - gcpbigquerydatatransferconfigs singular: bigquerydatatransferconfig preserveUnknownFields: false scope: Namespaced @@ -12943,12 +13492,9 @@ spec: type: string type: object resourceID: - description: Immutable. The BigQueryDataTransferConfig name. If not - given, the metadata.name will be used. + description: The BigQueryDataTransferConfig name. If not given, the + metadata.name will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf schedule: description: |- Data transfer schedule. @@ -13332,12 +13878,9 @@ spec: type: string type: object resourceID: - description: Immutable. The BigQueryDataTransferConfig name. If not - given, the metadata.name will be used. + description: The BigQueryDataTransferConfig name. If not given, the + metadata.name will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf schedule: description: |- Data transfer schedule. @@ -13378,6 +13921,85 @@ spec: transfer can be triggered manually is not limited by this option. type: string type: object + scheduleOptionsV2: + description: Options customizing different types of data transfer + schedule. This field replaces "schedule" and "schedule_options" + fields. ScheduleOptionsV2 cannot be used together with ScheduleOptions/Schedule. + properties: + eventDrivenSchedule: + description: Event driven transfer schedule options. If set, the + transfer will be scheduled upon events arrial. + properties: + pubSubSubscriptionRef: + description: Pub/Sub subscription used to receive events. + Only Google Cloud Storage data source support this option. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: If provided must be in the format `projects/[project_id]/subscriptions/[subscription_id]`. + type: string + name: + description: The `metadata.name` field of a `PubSubSubscription` + resource. + type: string + namespace: + description: The `metadata.namespace` field of a `PubSubSubscription` + resource. + type: string + type: object + type: object + manualSchedule: + description: Manual transfer schedule. If set, the transfer run + will not be auto-scheduled by the system, unless the client + invokes StartManualTransferRuns. This is equivalent to disable_auto_scheduling + = true. + type: object + timeBasedSchedule: + description: Time based transfer schedule options. This is the + default schedule option. + properties: + endTime: + description: Defines time to stop scheduling transfer runs. + A transfer run cannot be scheduled at or after the end time. + The end time can be changed at any moment. + type: string + schedule: + description: |- + Data transfer schedule. + If the data source does not support a custom schedule, this should be + empty. If it is empty, the default value for the data source will be used. + The specified times are in UTC. + Examples of valid format: + `1st,3rd monday of month 15:30`, + `every wed,fri of jan,jun 13:15`, and + `first sunday of quarter 00:00`. + See more explanation about the format here: + https://cloud.google.com/appengine/docs/flexible/python/scheduling-jobs-with-cron-yaml#the_schedule_format + + NOTE: The minimum interval time between recurring transfers depends on the + data source; refer to the documentation for your data source. + type: string + startTime: + description: Specifies time to start scheduling transfer runs. + The first run will be scheduled at or after the start time + according to a recurrence pattern defined in the schedule + string. The start time can be changed at any moment. + type: string + type: object + type: object serviceAccountRef: description: Service account email. If this field is set, the transfer config will be created with this service account's credentials. @@ -13467,6 +14089,22 @@ spec: description: Output only. Region in which BigQuery dataset is located. type: string + error: + description: Output only. Error code with detailed information + about reason of the latest config failure. + properties: + code: + description: The status code, which should be an enum value + of [google.rpc.Code][google.rpc.Code]. + format: int32 + type: integer + message: + description: A developer-facing error message, which should + be in English. Any user-facing error message should be localized + and sent in the [google.rpc.Status.details][google.rpc.Status.details] + field, or localized by the client. + type: string + type: object name: description: Identifier. The resource name of the transfer config. Transfer config names have the form either `projects/{project_id}/locations/{region}/transferConfigs/{config_id}` @@ -13514,7 +14152,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -14370,7 +15008,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -14557,7 +15195,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -14747,7 +15385,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -15009,7 +15647,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -15594,7 +16232,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -15782,7 +16420,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16003,7 +16641,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16235,7 +16873,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16408,7 +17046,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -16867,7 +17505,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -17135,7 +17773,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -17560,7 +18198,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18001,7 +18639,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18354,7 +18992,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19175,7 +19813,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19280,13 +19918,10 @@ spec: type: string type: object resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. + description: Optional. The name of the resource. Used for creation + and acquisition. When unset, the value of `metadata.name` is used + as the default. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - domain - projectRef @@ -19443,13 +20078,10 @@ spec: type: string type: object resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. + description: Optional. The name of the resource. Used for creation + and acquisition. When unset, the value of `metadata.name` is used + as the default. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - domain - projectRef @@ -19528,7 +20160,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19767,7 +20399,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19998,7 +20630,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20228,7 +20860,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21269,9 +21901,8 @@ spec: type: string type: array location: - description: |- - Immutable. The [Cloud Build location](https://cloud.google.com/build/docs/locations) for the trigger. - If not specified, "global" is used. + description: 'Immutable. The location of the Cloud Build trigger. + If not specified, "global" is used. More info: cloud.google.com/build/docs/locations.' type: string pubsubConfig: description: |- @@ -21736,7 +22367,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21745,9 +22376,14 @@ metadata: spec: group: cloudbuild.cnrm.cloud.google.com names: + categories: + - gcp kind: CloudBuildWorkerPool listKind: CloudBuildWorkerPoolList plural: cloudbuildworkerpools + shortNames: + - gcpcloudbuildworkerpool + - gcpcloudbuildworkerpools singular: cloudbuildworkerpool preserveUnknownFields: false scope: Namespaced @@ -21805,7 +22441,7 @@ spec: properties: external: description: A reference to an externally managed Compute - Network resource. Should be in the format `projects//global/networks/`. + Network resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -22013,7 +22649,7 @@ spec: properties: external: description: A reference to an externally managed Compute - Network resource. Should be in the format `projects//global/networks/`. + Network resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -22197,7 +22833,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22671,7 +23307,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -23103,7 +23739,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23301,7 +23937,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -23568,7 +24204,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23963,7 +24599,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24142,7 +24778,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24404,7 +25040,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -24942,7 +25578,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -25213,7 +25849,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -25484,7 +26120,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -25939,7 +26575,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -26209,7 +26845,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -26423,7 +27059,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -27703,7 +28339,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -27917,7 +28553,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -28094,7 +28730,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -28858,7 +29494,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -29009,7 +29645,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -29229,7 +29865,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -29421,10 +30057,9 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: - cnrm.cloud.google.com/dcl2crd: "true" cnrm.cloud.google.com/managed-by-kcc: "true" cnrm.cloud.google.com/stability-level: stable cnrm.cloud.google.com/system: "true" @@ -29521,14 +30156,14 @@ spec: properties: external: description: A reference to an externally managed ComputeFirewallPolicy - resource. Should be in the format `locations/global/firewallPolicies/`. + resource. Should be in the format `locations/global/firewallPolicies/{{firewallPolicyID}}`. type: string name: - description: The `name` field of a `ComputeFirewall olicy ` resource. + description: The `name` field of a `ComputeFirewallPolicy` resource. type: string namespace: - description: The `namespace` field of a `ComputeFirewallPolicy - ` resource. + description: The `namespace` field of a `ComputeFirewallPolicy` + resource. type: string type: object match: @@ -29655,7 +30290,7 @@ spec: properties: external: description: A reference to an externally managed Compute Network - resource. Should be in the format `projects//global/networks/`. + resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -29760,7 +30395,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -30138,7 +30773,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -30442,7 +31077,7 @@ spec: properties: external: description: A reference to an externally managed Compute Network - resource. Should be in the format `projects//global/networks/`. + resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -30909,7 +31544,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -31071,7 +31706,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -31229,7 +31864,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -31693,7 +32328,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -31854,7 +32489,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -32015,7 +32650,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -32373,7 +33008,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -33152,7 +33787,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -33334,7 +33969,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -33537,7 +34172,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -34570,7 +35205,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -35602,7 +36237,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -35927,7 +36562,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -36144,7 +36779,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -36489,7 +37124,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -36699,7 +37334,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -36911,7 +37546,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -37082,7 +37717,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -37288,7 +37923,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -37676,7 +38311,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -37857,7 +38492,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -38057,7 +38692,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -38231,7 +38866,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -38521,7 +39156,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -38702,7 +39337,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -38847,7 +39482,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -38976,7 +39611,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -39202,7 +39837,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -39602,7 +40237,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -39899,7 +40534,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -40017,7 +40652,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -40450,7 +41085,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -40627,7 +41262,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -40929,7 +41564,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -41226,7 +41861,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -41422,7 +42057,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -41636,7 +42271,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -41960,7 +42595,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42252,7 +42887,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42709,7 +43344,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -43065,7 +43700,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -43292,7 +43927,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -43571,7 +44206,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -44192,7 +44827,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -44539,7 +45174,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -44645,7 +45280,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -44789,7 +45424,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45188,7 +45823,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45406,7 +46041,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45569,7 +46204,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45863,7 +46498,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46041,7 +46676,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46220,7 +46855,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46281,7 +46916,7 @@ spec: description: |- URLs to certificate manager certificate resources that are used to authenticate connections between users and the load balancer. Currently, you may specify up to 15 certificates. Certificate manager certificates do not apply when the load balancing scheme is set to INTERNAL_SELF_MANAGED. - sslCertificates and certificateManagerCertificates fields can not be defined together. + sslCertificates and certificateManagerCertificates fields cannot be defined together. oneOf: - not: required: @@ -46317,7 +46952,7 @@ spec: can only be set for global target proxies. This field is only supported for EXTERNAL and EXTERNAL_MANAGED load balancing schemes. For INTERNAL_MANAGED, use certificateManagerCertificates instead. - sslCertificates and certificateMap fields can not be defined together. + sslCertificates and certificateMap fields cannot be defined together. oneOf: - not: required: @@ -46578,7 +47213,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46803,7 +47438,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -47058,7 +47693,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -47317,7 +47952,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -47431,12 +48066,9 @@ spec: ["NONE", "PROXY_V1"].' type: string resourceID: - description: Immutable. The ComputeTargetTCPProxy name. If not given, - the metadata.name will be used. + description: The ComputeTargetTCPProxy name. If not given, the metadata.name + will be used. type: string - x-kubernetes-validations: - - message: ResourceID is immutable - rule: self == oldSelf required: - backendServiceRef type: object @@ -47505,7 +48137,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -47666,7 +48298,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -50389,7 +51021,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -50593,7 +51225,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -50965,7 +51597,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -51281,7 +51913,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -51870,7 +52502,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -52106,7 +52738,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -52374,12 +53006,9 @@ spec: type: string type: object resourceID: - description: Immutable, Optional. The ContainerAttachedCluster name. - If not given, the metadata.name will be used. + description: Optional. The ContainerAttachedCluster name. If not given, + the metadata.name will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - distribution - fleet @@ -52505,7 +53134,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -54380,7 +55009,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -55304,7 +55933,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -55576,7 +56205,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -55742,7 +56371,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -55938,7 +56567,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -56123,7 +56752,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -56355,7 +56984,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -56529,7 +57158,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -56670,7 +57299,7 @@ spec: properties: external: description: A reference to an externally managed Compute Network - resource. Should be in the format `projects//global/networks/`. + resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -56844,7 +57473,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -57130,7 +57759,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -57763,7 +58392,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -58042,7 +58671,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -58337,7 +58966,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -60152,7 +60781,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62094,7 +62723,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -62266,7 +62895,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -62867,7 +63496,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -63060,7 +63689,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -63994,7 +64623,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -64209,7 +64838,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -64394,7 +65023,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -64608,7 +65237,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -64803,7 +65432,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -65353,7 +65982,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -65573,7 +66202,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -66671,7 +67300,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -66880,7 +67509,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -67074,7 +67703,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -67271,7 +67900,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -67508,7 +68137,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -67627,12 +68256,9 @@ spec: type: string type: object resourceID: - description: Immutable. The DiscoveryEngineDataStore name. If not - given, the metadata.name will be used. + description: The DiscoveryEngineDataStore name. If not given, the + metadata.name will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf solutionTypes: description: |- The solutions that the data store enrolls. Available solutions for each @@ -67748,9 +68374,522 @@ spec: type: string defaultSchemaID: description: Output only. The id of the default [Schema][google.cloud.discoveryengine.v1.Schema] - asscociated to this data store. + associated to this data store. + type: string + type: object + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/system: "true" + name: discoveryenginedatastoretargetsites.discoveryengine.cnrm.cloud.google.com +spec: + group: discoveryengine.cnrm.cloud.google.com + names: + categories: + - gcp + kind: DiscoveryEngineDataStoreTargetSite + listKind: DiscoveryEngineDataStoreTargetSiteList + plural: discoveryenginedatastoretargetsites + shortNames: + - gcpdiscoveryenginedatastoretargetsite + - gcpdiscoveryenginedatastoretargetsites + singular: discoveryenginedatastoretargetsite + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: DiscoveryEngineDataStoreTargetSite is the Schema for the DiscoveryEngineDataStoreTargetSite + API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: DiscoveryEngineDataStoreTargetSiteSpec defines the desired + state of DiscoveryEngineDataStoreTargetSite + properties: + dataStoreRef: + description: The DataStore this target site should be part of. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed DiscoveryEngineDataStore + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/datastores/{{datastoreID}}". + type: string + name: + description: The name of a DiscoveryEngineDataStore resource. + type: string + namespace: + description: The namespace of a DiscoveryEngineDataStore resource. + type: string + type: object + exactMatch: + description: Input only. If set to false, a uri_pattern is generated + to include all pages whose address contains the provided_uri_pattern. + If set to true, an uri_pattern is generated to try to be an exact + match of the provided_uri_pattern or just the specific page if the + provided_uri_pattern is a specific one. provided_uri_pattern is + always normalized to generate the URI pattern to be used by the + search engine. + type: boolean + providedURIPattern: + description: Required. Input only. The user provided URI pattern from + which the `generated_uri_pattern` is generated. + type: string + type: + description: The type of the target site, e.g., whether the site is + to be included or excluded. + type: string + type: object + status: + description: DiscoveryEngineDataStoreTargetSiteStatus defines the config + connector machine state of DiscoveryEngineDataStoreTargetSite + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the DiscoveryEngineDataStoreTargetSite + resource in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + failureReason: + description: Output only. Failure reason. + properties: + quotaFailure: + description: Failed due to insufficient quota. + properties: + totalRequiredQuota: + description: This number is an estimation on how much + total quota this project needs to successfully complete + indexing. + format: int64 + type: integer + type: object + type: object + generatedURIPattern: + description: Output only. This is system-generated based on the + provided_uri. + type: string + indexingStatus: + description: Output only. Indexing status. + type: string + rootDomainURI: + description: Output only. Root domain of the provided_uri. + type: string + siteVerificationInfo: + description: Output only. Site ownership and validity verification + status. + properties: + siteVerificationState: + description: Site verification state indicating the ownership + and validity. + type: string + verifyTime: + description: Latest site verification time. + type: string + type: object + updateTime: + description: Output only. The target site's last updated time. + type: string + type: object + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/system: "true" + name: discoveryengineengines.discoveryengine.cnrm.cloud.google.com +spec: + group: discoveryengine.cnrm.cloud.google.com + names: + categories: + - gcp + kind: DiscoveryEngineEngine + listKind: DiscoveryEngineEngineList + plural: discoveryengineengines + shortNames: + - gcpdiscoveryengineengine + - gcpdiscoveryengineengines + singular: discoveryengineengine + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: DiscoveryEngineEngine is the Schema for the DiscoveryEngineEngine + API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: DiscoveryEngineEngineSpec defines the desired state of DiscoveryEngineEngine + properties: + chatEngineConfig: + description: Configurations for the Chat Engine. Only applicable if + solution_type is SOLUTION_TYPE_CHAT. + properties: + agentCreationConfig: + description: |- + The configurationt generate the Dialogflow agent that is associated to + this Engine. + + Note that these configurations are one-time consumed by + and passed to Dialogflow service. It means they cannot be retrieved using + [EngineService.GetEngine][google.cloud.discoveryengine.v1.EngineService.GetEngine] + or + [EngineService.ListEngines][google.cloud.discoveryengine.v1.EngineService.ListEngines] + API after engine creation. + properties: + business: + description: Name of the company, organization or other entity + that the agent represents. Used for knowledge connector + LLM prompt and for knowledge search. + type: string + defaultLanguageCode: + description: Required. The default language of the agent as + a language tag. See [Language Support](https://cloud.google.com/dialogflow/docs/reference/language) + for a list of the currently supported language codes. + type: string + location: + description: 'Agent location for Agent creation, supported + values: global/us/eu. If not provided, us Engine will create + Agent using us-central-1 by default; eu Engine will create + Agent using eu-west-1 by default.' + type: string + timeZone: + description: Required. The time zone of the agent from the + [time zone database](https://www.iana.org/time-zones), e.g., + America/New_York, Europe/Paris. + type: string + type: object + dialogflowAgentToLink: + description: |- + The resource name of an exist Dialogflow agent to link to this Chat + Engine. Customers can either provide `agent_creation_config` to create + agent or provide an agent name that links the agent with the Chat engine. + + Format: `projects//locations//agents/`. + + Note that the `dialogflow_agent_to_link` are one-time consumed by and + passed to Dialogflow service. It means they cannot be retrieved using + [EngineService.GetEngine][google.cloud.discoveryengine.v1.EngineService.GetEngine] + or + [EngineService.ListEngines][google.cloud.discoveryengine.v1.EngineService.ListEngines] + API after engine creation. Use + [ChatEngineMetadata.dialogflow_agent][google.cloud.discoveryengine.v1.Engine.ChatEngineMetadata.dialogflow_agent] + for actual agent association after Engine is created. + type: string + type: object + collection: + description: Immutable. The collection for the Engine. + type: string + commonConfig: + description: Common config spec that specifies the metadata of the + engine. + properties: + companyName: + description: The name of the company, business or entity that + is associated with the engine. Setting this may help improve + LLM related features. + type: string + type: object + dataStoreRefs: + description: The data stores associated with this engine. For SOLUTION_TYPE_SEARCH + and SOLUTION_TYPE_RECOMMENDATION type of engines, they can only + associate with at most one data store. If solution_type is SOLUTION_TYPE_CHAT, + multiple DataStores in the same Collection can be associated here. + Note that when used in CreateEngineRequest, one DataStore must be + provided as the system will use it for necessary initializations. + items: + description: DiscoveryEngineDataStoreRef defines the resource reference + to DiscoveryEngineDataStore, which "External" field holds the + GCP identifier for the KRM object. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed DiscoveryEngineDataStore + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/datastores/{{datastoreID}}". + type: string + name: + description: The name of a DiscoveryEngineDataStore resource. + type: string + namespace: + description: The namespace of a DiscoveryEngineDataStore resource. + type: string + type: object + type: array + disableAnalytics: + description: Optional. Whether to disable analytics for searches performed + on this engine. + type: boolean + displayName: + description: Required. The display name of the engine. Should be human + readable. UTF-8 encoded string with limit of 1024 characters. + type: string + industryVertical: + description: 'The industry vertical that the engine registers. The + restriction of the Engine industry vertical is based on DataStore: + If unspecified, default to `GENERIC`. Vertical on Engine has to + match vertical of the DataStore linked to the engine.' + type: string + location: + description: Immutable. Location of the resource. + type: string + projectRef: + description: Immutable. The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + resourceID: + description: Immutable. The DiscoveryEngineChatEngine name. If not + given, the metadata.name will be used. + type: string + searchEngineConfig: + description: Configurations for the Search Engine. Only applicable + if solution_type is SOLUTION_TYPE_SEARCH. + properties: + searchAddOns: + description: The add-on that this search engine enables. + items: + type: string + type: array + searchTier: + description: |- + The search feature tier of this engine. + + Different tiers might have different + pricing. To learn more, check the pricing documentation. + + Defaults to + [SearchTier.SEARCH_TIER_STANDARD][google.cloud.discoveryengine.v1.SearchTier.SEARCH_TIER_STANDARD] + if not specified. type: string type: object + solutionType: + description: Required. The solutions of the engine. + type: string + required: + - collection + - displayName + - location + - projectRef + - solutionType + type: object + status: + description: DiscoveryEngineEngineStatus defines the config connector + machine state of DiscoveryEngineEngine + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the DiscoveryEngineEngine resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + type: object type: object required: - spec @@ -67764,7 +68903,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -71940,7 +73079,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -72552,7 +73691,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -74028,7 +75167,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -74399,7 +75538,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74784,7 +75923,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74980,7 +76119,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75952,7 +77091,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76131,7 +77270,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76327,7 +77466,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76450,7 +77589,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76615,7 +77754,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -77151,7 +78290,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -77402,7 +78541,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -77641,7 +78780,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -77821,7 +78960,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -78045,7 +79184,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -78187,7 +79326,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -78733,7 +79872,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -78955,7 +80094,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -79284,7 +80423,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -79453,7 +80592,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -79640,7 +80779,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -79817,7 +80956,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -79961,7 +81100,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -80124,7 +81263,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -80276,7 +81415,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -80424,7 +81563,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -80571,7 +81710,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -80585,6 +81724,9 @@ spec: kind: FirestoreDatabase listKind: FirestoreDatabaseList plural: firestoredatabases + shortNames: + - gcpfirestoredatabase + - gcpfirestoredatabases singular: firestoredatabase preserveUnknownFields: false scope: Namespaced @@ -80781,6 +81923,201 @@ spec: type: object type: object served: true + storage: false + subresources: + status: {} + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + description: FirestoreDatabase is the Schema for the FirestoreDatabase API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: FirestoreDatabaseSpec defines the desired state of FirestoreDatabase + properties: + concurrencyMode: + description: The concurrency control mode to use for this database. + See https://cloud.google.com/firestore/docs/reference/rest/v1/projects.databases#concurrencymode + for more info. + type: string + locationID: + description: The location of the database. Available locations are + listed at https://cloud.google.com/firestore/docs/locations. + type: string + pointInTimeRecoveryEnablement: + description: Whether to enable the PITR feature on this database. + See https://cloud.google.com/firestore/docs/reference/rest/v1/projects.databases#pointintimerecoveryenablement + for more info. + type: string + projectRef: + description: Immutable. The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + resourceID: + description: The FirestoreDatabase name. If not given, the metadata.name + will be used. + type: string + required: + - projectRef + type: object + status: + description: FirestoreDatabaseStatus defines the config connector machine + state of FirestoreDatabase + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the FirestoreDatabase resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + createTime: + description: Output only. The timestamp at which this database + was created. Databases created before 2016 do not populate create_time. + type: string + earliestVersionTime: + description: |- + Output only. The earliest timestamp at which older versions of the data can + be read from the database. See [version_retention_period] above; this field + is populated with `now - version_retention_period`. + + This value is continuously updated, and becomes stale the moment it is + queried. If you are using this value to recover data, make sure to account + for the time from the moment when the value is queried to the moment when + you initiate the recovery. + type: string + etag: + description: This checksum is computed by the server based on + the value of other fields, and may be sent on update and delete + requests to ensure the client has an up-to-date value before + proceeding. + type: string + keyPrefix: + description: |- + Output only. The key_prefix for this database. This key_prefix is used, in + combination with the project id ("~") to construct + the application id that is returned from the Cloud Datastore APIs in Google + App Engine first generation runtimes. + + This value may be empty in which case the appid to use for URL-encoded keys + is the project_id (eg: foo instead of v~foo). + type: string + uid: + description: Output only. The system-generated UUID4 for this + Database. + type: string + updateTime: + description: Output only. The timestamp at which this database + was most recently updated. Note this only includes updates to + the database resource and not data contained by the database. + type: string + versionRetentionPeriod: + description: |- + Output only. The period during which past versions of data are retained in + the database. + + Any [read][google.firestore.v1.GetDocumentRequest.read_time] + or [query][google.firestore.v1.ListDocumentsRequest.read_time] can specify + a `read_time` within this window, and will read the state of the database + at that time. + + If the PITR feature is enabled, the retention period is 7 days. Otherwise, + the retention period is 1 hour. + type: string + type: object + type: object + type: object + served: true storage: true subresources: status: {} @@ -80789,7 +82126,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -80943,7 +82280,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -81156,7 +82493,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -81453,10 +82790,9 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: - cnrm.cloud.google.com/dcl2crd: "true" cnrm.cloud.google.com/managed-by-kcc: "true" cnrm.cloud.google.com/stability-level: stable cnrm.cloud.google.com/system: "true" @@ -81678,6 +83014,12 @@ spec: description: Specifies whether the Config Sync Repo is in "hierarchical" or "unstructured" mode. type: string + stopSyncing: + description: 'Set to true to stop syncing configurations for + a single cluster. This field is only available on clusters + using Config Sync auto-upgrades or on Config Sync version + 1.20.0 or later. Defaults: false.' + type: boolean type: object hierarchyController: description: Hierarchy Controller is no longer available. Use @@ -81695,6 +83037,13 @@ spec: cluster. type: boolean type: object + management: + description: Optional. Whether to automatically manage the configmanagement + Feature. There are 3 accepted values. MANAGEMENT_UNSPECIFIED + means that the mamangement mode is unspecified. MANAGEMENT_AUTOMATIC + means that Google manages the Feature for the cluster. MANAGEMENT_MANUAL + means that users should manage the Feature for the cluster. + type: string policyController: description: '**DEPRECATED** Configuring Policy Controller through the configmanagement feature is no longer recommended. Use the @@ -81993,7 +83342,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -82259,7 +83608,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -82624,7 +83973,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -82757,7 +84106,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -82915,7 +84264,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -83077,7 +84426,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -83391,7 +84740,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -83592,7 +84941,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -83793,7 +85142,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -83893,7 +85242,7 @@ spec: ''allServices'' and a specific service, then the union of the two audit configs is used for that service: the ''logTypes'' specified in each ''auditLogConfig'' are enabled, and the ''exemptedMembers'' - in each ''auditLogConfg'' are exempted.' + in each ''auditLogConfig'' are exempted.' type: string required: - auditLogConfigs @@ -83954,7 +85303,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -84094,7 +85443,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -84188,6 +85537,8 @@ spec: Exactly one of 'member' or 'memberFrom' must be used, and only one subfield within 'memberFrom' can be used. oneOf: + - required: + - bigQueryConnectionConnectionRef - required: - logSinkRef - required: @@ -84197,6 +85548,34 @@ spec: - required: - sqlInstanceRef properties: + bigQueryConnectionConnectionRef: + description: BigQueryConnectionConnection whose service + account is to be bound to the role. Use the Type + field to specifie the connection type. For "spark" + connetion, the service account is in `status.observedState.spark.serviceAccountID`. + For "cloudSQL" connection, the service account is + in `status.observedState.cloudSQL.serviceAccountID`. + For "cloudResource" connection, the service account + is in `status.observedState.cloudResource.serviceAccountID`. + properties: + name: + type: string + namespace: + type: string + type: + description: Type field specifies the connection + type of the BigQueryConnectionConnection resource, + whose service account is to be bound to the + role. + enum: + - spark + - cloudSQL + - cloudResource + type: string + required: + - name + - type + type: object logSinkRef: description: The LoggingLogSink whose writer identity (i.e. its 'status.writerIdentity') is to be bound @@ -84419,7 +85798,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -84509,7 +85888,7 @@ spec: both ''allServices'' and a specific service, then the union of the two audit configs is used for that service: the ''logTypes'' specified in each ''auditLogConfig'' are enabled, and the - ''exemptedMembers'' in each ''auditLogConfg'' are exempted.' + ''exemptedMembers'' in each ''auditLogConfig'' are exempted.' type: string required: - auditLogConfigs @@ -84647,7 +86026,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -84730,6 +86109,8 @@ spec: Exactly one of 'member' or 'memberFrom' must be used, and only one subfield within 'memberFrom' can be used. oneOf: + - required: + - bigQueryConnectionConnectionRef - required: - logSinkRef - required: @@ -84739,6 +86120,31 @@ spec: - required: - sqlInstanceRef properties: + bigQueryConnectionConnectionRef: + description: BigQueryConnectionConnection whose service account + is to be bound to the role. Use the Type field to specifie the + connection type. For "spark" connetion, the service account + is in `status.observedState.spark.serviceAccountID`. For "cloudSQL" + connection, the service account is in `status.observedState.cloudSQL.serviceAccountID`. + For "cloudResource" connection, the service account is in `status.observedState.cloudResource.serviceAccountID`. + properties: + name: + type: string + namespace: + type: string + type: + description: Type field specifies the connection type of the + BigQueryConnectionConnection resource, whose service account + is to be bound to the role. + enum: + - spark + - cloudSQL + - cloudResource + type: string + required: + - name + - type + type: object logSinkRef: description: The LoggingLogSink whose writer identity (i.e. its 'status.writerIdentity') is to be bound to the role. @@ -84887,7 +86293,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -85066,7 +86472,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -85208,7 +86614,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -85566,7 +86972,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -85747,7 +87153,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -86043,7 +87449,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -86210,7 +87616,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -86336,7 +87742,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -86490,7 +87896,299 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/system: "true" + name: iapsettings.iap.cnrm.cloud.google.com +spec: + group: iap.cnrm.cloud.google.com + names: + categories: + - gcp + kind: IAPSettings + listKind: IAPSettingsList + plural: iapsettings + shortNames: + - gcpiapsettings + - gcpiapsettingss + singular: iapsettings + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: IAPSettings is the Schema for the IAPSettings API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: IAPSettingsSpec defines the desired state of IAPSettings + properties: + accessSettings: + description: Top level wrapper for all access related setting in IAP + properties: + allowedDomainsSettings: + description: Settings to configure and enable allowed domains. + properties: + domains: + description: List of trusted domains. + items: + type: string + type: array + enable: + description: Configuration for customers to opt in for the + feature. + type: boolean + type: object + corsSettings: + description: Configuration to allow cross-origin requests via + IAP. + properties: + allowHTTPOptions: + description: Configuration to allow HTTP OPTIONS calls to + skip authorization. If undefined, IAP will not apply any + special logic to OPTIONS requests. + type: boolean + type: object + gcipSettings: + description: GCIP claims and endpoint configurations for 3p identity + providers. + properties: + loginPageURI: + description: Login page URI associated with the GCIP tenants. + Typically, all resources within the same project share the + same login page, though it could be overridden at the sub + resource level. + type: string + tenantIds: + description: GCIP tenant ids that are linked to the IAP resource. + tenant_ids could be a string beginning with a number character + to indicate authenticating with GCIP tenant flow, or in + the format of _ to indicate authenticating + with GCIP agent flow. If agent flow is used, tenant_ids + should only contain one single element, while for tenant + flow, tenant_ids can contain multiple elements. + items: + type: string + type: array + type: object + oauthSettings: + description: Settings to configure IAP's OAuth behavior. + properties: + loginHint: + description: 'Domain hint to send as hd=? parameter in OAuth + request flow. Enables redirect to primary IDP by skipping + Google''s login screen. https://developers.google.com/identity/protocols/OpenIDConnect#hd-param + Note: IAP does not verify that the id token''s hd claim + matches this value since access behavior is managed by IAM + policies.' + type: string + programmaticClients: + description: List of OAuth client IDs allowed to programmatically + authenticate with IAP. + items: + type: string + type: array + type: object + reauthSettings: + description: Settings to configure reauthentication policies in + IAP. + properties: + maxAge: + description: Reauth session lifetime, how long before a user + has to reauthenticate again. + type: string + method: + description: Reauth method requested. + type: string + policyType: + description: How IAP determines the effective policy in cases + of hierarchial policies. Policies are merged from higher + in the hierarchy to lower in the hierarchy. + type: string + type: object + type: object + applicationSettings: + description: Top level wrapper for all application related settings + in IAP + properties: + accessDeniedPageSettings: + description: Customization for Access Denied page. + properties: + accessDeniedPageURI: + description: The URI to be redirected to when access is denied. + type: string + generateTroubleshootingURI: + description: Whether to generate a troubleshooting URL on + access denied events to this application. + type: boolean + remediationTokenGenerationEnabled: + description: Whether to generate remediation token on access + denied events to this application. + type: boolean + type: object + attributePropagationSettings: + description: Settings to configure attribute propagation. + properties: + enable: + description: Whether the provided attribute propagation settings + should be evaluated on user requests. If set to true, attributes + returned from the expression will be propagated in the set + output credentials. + type: boolean + expression: + description: |- + Raw string CEL expression. Must return a list of attributes. A maximum of + 45 attributes can be selected. Expressions can select different attribute + types from `attributes`: `attributes.saml_attributes`, + `attributes.iap_attributes`. The following functions are supported: + + - filter `.filter(, )`: Returns a subset of + `` where `` is true for every item. + + - in ` in `: Returns true if `` contains ``. + + - selectByName `.selectByName()`: Returns the attribute + in + `` with the given `` name, otherwise returns empty. + + - emitAs `.emitAs()`: Sets the `` name + field to the given `` for propagation in selected output + credentials. + + - strict `.strict()`: Ignores the `x-goog-iap-attr-` prefix + for the provided `` when propagating with the `HEADER` output + credential, such as request headers. + + - append `.append()` OR + `.append()`: Appends the provided `` or + `` to the end of ``. + + Example expression: `attributes.saml_attributes.filter(x, x.name in + ['test']).append(attributes.iap_attributes.selectByName('exact').emitAs('custom').strict())` + type: string + outputCredentials: + description: Which output credentials attributes selected + by the CEL expression should be propagated in. All attributes + will be fully duplicated in each selected output credential. + items: + type: string + type: array + type: object + cookieDomain: + description: The Domain value to set for cookies generated by + IAP. This value is not validated by the API, but will be ignored + at runtime if invalid. + type: string + csmSettings: + description: Settings to configure IAP's behavior for a service + mesh. + properties: + rctokenAud: + description: Audience claim set in the generated RCToken. + This value is not validated by IAP. + type: string + type: object + type: object + name: + description: 'Required. The resource name of the IAP protected resource. + The name could have the following format: organizations/{organization_id} + folders/{folder_id} projects/{projects_id} projects/{projects_id}/iap_web + projects/{projects_id}/iap_web/compute projects/{projects_id}/iap_web/compute-{region} + projects/{projects_id}/iap_web/compute/service/{service_id} projects/{projects_id}/iap_web/compute-{region}/service/{service_id} + projects/{projects_id}/iap_web/appengine-{app_id} projects/{projects_id}/iap_web/appengine-{app_id}/service/{service_id} + projects/{projects_id}/iap_web/appengine-{app_id}/service/{service_id}/version/{version_id}' + type: string + resourceID: + description: The IAPSettings name. + type: string + required: + - name + type: object + status: + description: IAPSettingsStatus defines the config connector machine state + of IAPSettings + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the IAPSettings resource in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -87182,7 +88880,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -87341,7 +89039,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -87546,7 +89244,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -87729,7 +89427,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -87953,7 +89651,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -88117,7 +89815,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -88330,7 +90028,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -88547,7 +90245,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -88700,10 +90398,11 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: beta cnrm.cloud.google.com/system: "true" name: kmsautokeyconfigs.kms.cnrm.cloud.google.com spec: @@ -88880,6 +90579,168 @@ spec: type: object type: object served: true + storage: false + subresources: + status: {} + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + description: KMSAutokeyConfig is the Schema for the KMSAutokeyConfig API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: KMSAutokeyConfigSpec defines the desired state of KMSAutokeyConfig + properties: + folderRef: + description: Immutable. The folder that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The 'name' field of a folder, when not managed by + Config Connector. This field must be set when 'name' field is + not set. + type: string + name: + description: The 'name' field of a 'Folder' resource. This field + must be set when 'external' field is not set. + type: string + namespace: + description: The 'namespace' field of a 'Folder' resource. If + unset, the namespace is defaulted to the namespace of the referencer + resource. + type: string + type: object + keyProject: + description: The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - kind + - not: + anyOf: + - required: + - name + - required: + - namespace + - required: + - kind + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + required: + - folderRef + type: object + status: + description: KMSAutokeyConfigStatus defines the config connector machine + state of KMSAutokeyConfig + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the KMSAutokeyConfig resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + state: + description: Output only. Current state of this AutokeyConfig. + type: string + type: object + type: object + type: object + served: true storage: true subresources: status: {} @@ -88888,7 +90749,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -89081,7 +90942,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -89270,10 +91131,11 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: beta cnrm.cloud.google.com/system: "true" name: kmskeyhandles.kms.cnrm.cloud.google.com spec: @@ -89363,12 +91225,12 @@ spec: type: string type: object resourceID: - description: Immutable. The KMSKeyHandle name. If not given, the metadata.name - will be used. + description: 'The KMS Key Handle ID used for resource creation or + acquisition. For creation: If specified, this value is used as the + key handle ID. If not provided, a UUID will be generated and assigned + as the key handle ID. For acquisition: This field must be provided + to identify the key handle resource to acquire.' type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf resourceTypeSelector: description: Indicates the resource type that the resulting [CryptoKey][] is meant to protect, e.g. `{SERVICE}.googleapis.com/{TYPE}`. See @@ -89428,36 +91290,9 @@ spec: - spec type: object served: true - storage: true + storage: false subresources: status: {} ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - cnrm.cloud.google.com/version: 1.125.0 - creationTimestamp: null - labels: - cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: alpha - cnrm.cloud.google.com/system: "true" - cnrm.cloud.google.com/tf2crd: "true" - name: kmskeyringimportjobs.kms.cnrm.cloud.google.com -spec: - group: kms.cnrm.cloud.google.com - names: - categories: - - gcp - kind: KMSKeyRingImportJob - plural: kmskeyringimportjobs - shortNames: - - gcpkmskeyringimportjob - - gcpkmskeyringimportjobs - singular: kmskeyringimportjob - preserveUnknownFields: false - scope: Namespaced - versions: - additionalPrinterColumns: - jsonPath: .metadata.creationTimestamp name: Age @@ -89474,75 +91309,242 @@ spec: jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime name: Status Age type: date - name: v1alpha1 + name: v1beta1 schema: openAPIV3Schema: + description: KMSKeyHandle is the Schema for the KMSKeyHandle API properties: apiVersion: - description: 'apiVersion defines the versioned schema of this representation + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: - description: 'kind is a string value representing the REST resource this + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: + description: KMSKeyHandleSpec defines the desired state of KMSKeyHandle properties: - importJobId: - description: Immutable. It must be unique within a KeyRing and match - the regular expression [a-zA-Z0-9_-]{1,63}. - type: string - importMethod: - description: 'Immutable. The wrapping method to be used for incoming - key material. Possible values: ["RSA_OAEP_3072_SHA1_AES_256", "RSA_OAEP_4096_SHA1_AES_256"].' - type: string - keyRing: - description: |- - Immutable. The KeyRing that this import job belongs to. - Format: ''projects/{{project}}/locations/{{location}}/keyRings/{{keyRing}}''. - type: string - protectionLevel: - description: |- - Immutable. The protection level of the ImportJob. This must match the protectionLevel of the - versionTemplate on the CryptoKey you attempt to import into. Possible values: ["SOFTWARE", "HSM", "EXTERNAL"]. + location: + description: Location name to create KeyHandle type: string + projectRef: + description: Project hosting KMSKeyHandle + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object resourceID: - description: Immutable. Optional. The service-generated name of the - resource. Used for acquisition only. Leave unset to create a new - resource. + description: 'The KMS Key Handle ID used for resource creation or + acquisition. For creation: If specified, this value is used as the + key handle ID. If not provided, a UUID will be generated and assigned + as the key handle ID. For acquisition: This field must be provided + to identify the key handle resource to acquire.' + type: string + resourceTypeSelector: + description: Indicates the resource type that the resulting [CryptoKey][] + is meant to protect, e.g. `{SERVICE}.googleapis.com/{TYPE}`. See + documentation for supported resource types https://cloud.google.com/kms/docs/autokey-overview#compatible-services. type: string - required: - - importJobId - - importMethod - - keyRing - - protectionLevel type: object status: + description: KMSKeyHandleStatus defines the config connector machine state + of KMSKeyHandle properties: - attestation: - description: |- - Statement that was generated and signed by the key creator (for example, an HSM) at key creation time. - Use this statement to verify attributes of the key as stored on the HSM, independently of Google. - Only present if the chosen ImportMethod is one with a protection level of HSM. - items: - properties: - content: - description: |- - The attestation data provided by the HSM when the key operation was performed. - A base64-encoded string. - type: string - format: - description: The format of the attestation data. - type: string - type: object - type: array conditions: - description: Conditions represent the latest available observation - of the resource's current state. + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the KMSKeyHandle resource in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + kmsKey: + type: string + type: object + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: kmskeyringimportjobs.kms.cnrm.cloud.google.com +spec: + group: kms.cnrm.cloud.google.com + names: + categories: + - gcp + kind: KMSKeyRingImportJob + plural: kmskeyringimportjobs + shortNames: + - gcpkmskeyringimportjob + - gcpkmskeyringimportjobs + singular: kmskeyringimportjob + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + importJobId: + description: Immutable. It must be unique within a KeyRing and match + the regular expression [a-zA-Z0-9_-]{1,63}. + type: string + importMethod: + description: 'Immutable. The wrapping method to be used for incoming + key material. Possible values: ["RSA_OAEP_3072_SHA1_AES_256", "RSA_OAEP_4096_SHA1_AES_256"].' + type: string + keyRing: + description: |- + Immutable. The KeyRing that this import job belongs to. + Format: ''projects/{{project}}/locations/{{location}}/keyRings/{{keyRing}}''. + type: string + protectionLevel: + description: |- + Immutable. The protection level of the ImportJob. This must match the protectionLevel of the + versionTemplate on the CryptoKey you attempt to import into. Possible values: ["SOFTWARE", "HSM", "EXTERNAL"]. + type: string + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + required: + - importJobId + - importMethod + - keyRing + - protectionLevel + type: object + status: + properties: + attestation: + description: |- + Statement that was generated and signed by the key creator (for example, an HSM) at key creation time. + Use this statement to verify attributes of the key as stored on the HSM, independently of Google. + Only present if the chosen ImportMethod is one with a protection level of HSM. + items: + properties: + content: + description: |- + The attestation data provided by the HSM when the key operation was performed. + A base64-encoded string. + type: string + format: + description: The format of the attestation data. + type: string + type: object + type: array + conditions: + description: Conditions represent the latest available observation + of the resource's current state. items: properties: lastTransitionTime: @@ -89616,7 +91618,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -89739,7 +91741,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -89944,7 +91946,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -90233,7 +92235,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -90508,7 +92510,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -90964,7 +92966,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -91368,7 +93370,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -91672,7 +93674,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -92009,25 +94011,24 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: alpha cnrm.cloud.google.com/system: "true" - cnrm.cloud.google.com/tf2crd: "true" - name: mlenginemodels.mlengine.cnrm.cloud.google.com + name: memorystoreinstances.memorystore.cnrm.cloud.google.com spec: - group: mlengine.cnrm.cloud.google.com + group: memorystore.cnrm.cloud.google.com names: categories: - gcp - kind: MLEngineModel - plural: mlenginemodels + kind: MemorystoreInstance + listKind: MemorystoreInstanceList + plural: memorystoreinstances shortNames: - - gcpmlenginemodel - - gcpmlenginemodels - singular: mlenginemodel + - gcpmemorystoreinstance + - gcpmemorystoreinstances + singular: memorystoreinstance preserveUnknownFields: false scope: Namespaced versions: @@ -92050,47 +94051,80 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MemorystoreInstance is the Schema for the MemorystoreInstance + API properties: apiVersion: - description: 'apiVersion defines the versioned schema of this representation + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: - description: 'kind is a string value representing the REST resource this + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: + description: MemorystoreInstanceSpec defines the desired state of MemorystoreInstance properties: - defaultVersion: - description: |- - Immutable. The default version of the model. This version will be used to handle - prediction requests that do not specify a version. + authorizationMode: + description: Optional. Immutable. Authorization mode of the instance. + type: string + deletionProtectionEnabled: + description: Optional. If set to true deletion of the instance will + fail. + type: boolean + engineConfigs: + additionalProperties: + type: string + description: Optional. User-provided engine configurations for the + instance. + type: object + engineVersion: + description: Optional. Immutable. Engine version of the instance. + type: string + location: + description: Immutable. + type: string + x-kubernetes-validations: + - message: Location field is immutable + rule: self == oldSelf + nodeType: + description: Optional. Immutable. Machine type for individual nodes + of the instance. + type: string + persistenceConfig: + description: Optional. Persistence configuration of the instance. properties: - name: - description: Immutable. The name specified for the version when - it was created. + aofConfig: + description: Optional. AOF configuration. This field will be ignored + if mode is not AOF. + properties: + appendFsync: + description: Optional. The fsync mode. + type: string + type: object + mode: + description: Optional. Current persistence mode. type: string - required: - - name + rdbConfig: + description: Optional. RDB configuration. This field will be ignored + if mode is not RDB. + properties: + rdbSnapshotPeriod: + description: Optional. Period between RDB snapshots. + type: string + rdbSnapshotStartTime: + description: Optional. Time that the first snapshot was/will + be attempted, and to which future snapshots will be aligned. + If not provided, the current time will be used. + type: string + type: object type: object - description: - description: Immutable. The description specified for the model when - it was created. - type: string - onlinePredictionConsoleLogging: - description: Immutable. If true, online prediction nodes send stderr - and stdout streams to Stackdriver Logging. - type: boolean - onlinePredictionLogging: - description: Immutable. If true, online prediction access logs are - sent to StackDriver Logging. - type: boolean projectRef: - description: The project that this resource belongs to. + description: The Project that this resource belongs to. oneOf: - not: required: @@ -92107,35 +94141,462 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `Project` resource.' + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The `name` field of a `Project` resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The `namespace` field of a `Project` resource. type: string type: object - regions: - description: |- - Immutable. The list of regions where the model is going to be deployed. - Currently only one region per model is supported. + pscAutoConnections: + description: Required. Immutable. User inputs for the auto-created + PSC connections. items: - type: string + description: kcc specific struct to separate input and output fields + in google.cloud.memorystore.v1beta.PscAutoConnection + properties: + networkRef: + description: Required. The network where the PSC endpoints are + created, in the form of projects/{project_id}/global/networks/{network_id}. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed Compute + Network resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. + type: string + name: + description: The `name` field of a `ComputeNetwork` resource. + type: string + namespace: + description: The `namespace` field of a `ComputeNetwork` + resource. + type: string + type: object + projectRef: + description: Required. The consumer project_id where PSC connections + are established. This should be the same project_id that the + cluster is being created in. + oneOf: + - not: + required: + - external + required: + - name + - kind + - not: + anyOf: + - required: + - name + - required: + - namespace + - required: + - kind + required: + - external + properties: + external: + description: The `projectID` field of a project, when not + managed by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional + but must be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + required: + - networkRef + - projectRef + type: object type: array + replicaCount: + description: Optional. Number of replica nodes per shard. If omitted + the default is 0 replicas. + format: int32 + type: integer resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. + description: Optional. Immutable. The MemorystoreInstance name. If + not given, the metadata.name will be used. type: string + shardCount: + description: Optional. Number of shards for the instance. + format: int32 + type: integer + transitEncryptionMode: + description: Optional. Immutable. In-transit encryption mode of the + instance. + type: string + zoneDistributionConfig: + description: Optional. Immutable. Zone distribution configuration + of the instance for node allocatiteon. + properties: + mode: + description: Optional. Current zone distribution mode. Defaults + to MULTI_ZONE. + type: string + zone: + description: Optional. Defines zone where all resources will be + allocated with SINGLE_ZONE mode. Ignored for MULTI_ZONE mode. + type: string + type: object required: + - location - projectRef type: object status: + description: MemorystoreInstanceStatus defines the config connector machine + state of MemorystoreInstance properties: conditions: - description: Conditions represent the latest available observation - of the resource's current state. + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the MemorystoreInstance resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + authorizationMode: + description: Optional. Immutable. Authorization mode of the instance. + type: string + createTime: + description: Output only. Creation timestamp of the instance. + type: string + discoveryEndpoints: + description: Output only. Endpoints clients can connect to the + instance through. Currently only one discovery endpoint is supported. + items: + properties: + address: + description: Output only. IP address of the exposed endpoint + clients connect to. + type: string + network: + description: Output only. The network where the IP address + of the discovery endpoint will be reserved, in the form + of projects/{network_project}/global/networks/{network_id}. + type: string + port: + description: Output only. The port number of the exposed + endpoint. + format: int32 + type: integer + type: object + type: array + engineVersion: + description: Optional. Immutable. Engine version of the instance. + https://cloud.google.com/memorystore/docs/valkey/supported-versions + type: string + name: + description: 'Identifier. Unique name of the instance. Format: + projects/{project}/locations/{location}/instances/{instance}' + type: string + nodeConfig: + description: Output only. Configuration of individual nodes of + the instance. + properties: + sizeGb: + description: Output only. Memory size in GB of the node. + type: number + type: object + nodeType: + description: Optional. Immutable. Machine type for individual + nodes of the instance. + type: string + pscAutoConnections: + description: Output only. Resource details of the auto-created + PSC connections. + items: + properties: + connectionType: + description: Output only. Type of the PSC connection. + type: string + forwardingRule: + description: 'Output only. The URI of the consumer side + forwarding rule. Format: projects/{project}/regions/{region}/forwardingRules/{forwarding_rule}' + type: string + ipAddress: + description: Output only. The IP allocated on the consumer + network for the PSC forwarding rule. + type: string + network: + description: Required. The network where the PSC endpoints + are created, in the form of projects/{project_id}/global/networks/{network_id}. + type: string + port: + description: Optional. Output only. port will only be set + for Primary/Reader or Discovery endpoint. + format: int32 + type: integer + projectID: + description: Required. The consumer project_id where PSC + connections are established. This should be the same project_id + that the cluster is being created in. + type: string + pscConnectionID: + description: Output only. The PSC connection id of the forwarding + rule connected to the service attachment. + type: string + pscConnectionStatus: + description: 'Output only. The status of the PSC connection: + whether a connection exists and ACTIVE or it no longer + exists. Please note that this value is updated periodically. + Please use Private Service Connect APIs for the latest + status.' + type: string + serviceAttachment: + description: Output only. The service attachment which is + the target of the PSC connection, in the form of projects/{project-id}/regions/{region}/serviceAttachments/{service-attachment-id}. + type: string + type: object + type: array + state: + description: Output only. Current state of the instance. + type: string + stateInfo: + description: Output only. Additional information about the state + of the instance. + properties: + updateInfo: + description: Output only. Describes ongoing update when instance + state is UPDATING. + properties: + targetReplicaCount: + description: Output only. Target number of replica nodes + per shard for the instance. + format: int32 + type: integer + targetShardCount: + description: Output only. Target number of shards for + the instance. + format: int32 + type: integer + type: object + type: object + transitEncryptionMode: + description: Optional. Immutable. In-transit encryption mode of + the instance. + type: string + uid: + description: Output only. System assigned, unique identifier for + the instance. + type: string + updateTime: + description: Output only. Latest update timestamp of the instance. + type: string + zoneDistributionConfig: + description: Optional. Immutable. Zone distribution configuration + of the instance for node allocation. + properties: + mode: + description: Optional. Current zone distribution mode. Defaults + to MULTI_ZONE. + type: string + zone: + description: Optional. Defines zone where all resources will + be allocated with SINGLE_ZONE mode. Ignored for MULTI_ZONE + mode. + type: string + type: object + type: object + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: mlenginemodels.mlengine.cnrm.cloud.google.com +spec: + group: mlengine.cnrm.cloud.google.com + names: + categories: + - gcp + kind: MLEngineModel + plural: mlenginemodels + shortNames: + - gcpmlenginemodel + - gcpmlenginemodels + singular: mlenginemodel + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + defaultVersion: + description: |- + Immutable. The default version of the model. This version will be used to handle + prediction requests that do not specify a version. + properties: + name: + description: Immutable. The name specified for the version when + it was created. + type: string + required: + - name + type: object + description: + description: Immutable. The description specified for the model when + it was created. + type: string + onlinePredictionConsoleLogging: + description: Immutable. If true, online prediction nodes send stderr + and stdout streams to Stackdriver Logging. + type: boolean + onlinePredictionLogging: + description: Immutable. If true, online prediction access logs are + sent to StackDriver Logging. + type: boolean + projectRef: + description: The project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `Project` resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + regions: + description: |- + Immutable. The list of regions where the model is going to be deployed. + Currently only one region per model is supported. + items: + type: string + type: array + resourceID: + description: Immutable. Optional. The name of the resource. Used for + creation and acquisition. When unset, the value of `metadata.name` + is used as the default. + type: string + required: + - projectRef + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. items: properties: lastTransitionTime: @@ -92185,7 +94646,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -93122,7 +95583,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -101197,7 +103658,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -101388,7 +103849,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -101683,7 +104144,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -101810,7 +104271,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -102111,7 +104572,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -102682,7 +105143,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -102841,7 +105302,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -103220,7 +105681,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -103402,7 +105863,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -103411,9 +105872,14 @@ metadata: spec: group: networkconnectivity.cnrm.cloud.google.com names: + categories: + - gcp kind: NetworkConnectivityServiceConnectionPolicy listKind: NetworkConnectivityServiceConnectionPolicyList plural: networkconnectivityserviceconnectionpolicies + shortNames: + - gcpnetworkconnectivityserviceconnectionpolicy + - gcpnetworkconnectivityserviceconnectionpolicies singular: networkconnectivityserviceconnectionpolicy preserveUnknownFields: false scope: Namespaced @@ -103479,7 +105945,7 @@ spec: properties: external: description: A reference to an externally managed Compute Network - resource. Should be in the format `projects//global/networks/`. + resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -103749,7 +106215,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -104136,7 +106602,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -104411,7 +106877,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -104669,7 +107135,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -104898,7 +107364,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -105142,7 +107608,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -105379,7 +107845,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -105726,7 +108192,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -106633,7 +109099,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -106954,7 +109420,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -107180,7 +109646,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -107647,7 +110113,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -108381,7 +110847,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -108557,7 +111023,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -108887,7 +111353,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -109208,7 +111674,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -109428,7 +111894,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -109589,7 +112055,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -109947,7 +112413,7 @@ spec: type: string type: object id: - description: Required. ID of the artifact, which the installation + description: Required. Id of the artifact, which the installation and update steps of this recipe can reference. Artifacts in a recipe cannot have the same id. type: string @@ -110358,7 +112824,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -111360,7 +113826,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -112051,7 +114517,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -112187,7 +114653,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -112690,7 +115156,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -113695,7 +116161,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -114606,7 +117072,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -115022,7 +117488,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -115036,6 +117502,9 @@ spec: kind: PrivilegedAccessManagerEntitlement listKind: PrivilegedAccessManagerEntitlementList plural: privilegedaccessmanagerentitlements + shortNames: + - gcpprivilegedaccessmanagerentitlement + - gcpprivilegedaccessmanagerentitlements singular: privilegedaccessmanagerentitlement preserveUnknownFields: false scope: Namespaced @@ -115323,12 +117792,9 @@ spec: x-kubernetes-preserve-unknown-fields: true type: object resourceID: - description: Immutable. The PrivilegedAccessManagerEntitlement name. - If not given, the 'metadata.name' will be used. + description: The PrivilegedAccessManagerEntitlement name. If not given, + the 'metadata.name' will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - eligibleUsers - location @@ -115693,9 +118159,6 @@ spec: description: Immutable. The PrivilegedAccessManagerEntitlement name. If not given, the 'metadata.name' will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - eligibleUsers - location @@ -115779,7 +118242,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -116004,7 +118467,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -116160,7 +118623,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -116327,7 +118790,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -116531,7 +118994,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -116686,7 +119149,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -117194,7 +119657,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -117411,7 +119874,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -117665,7 +120128,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -117680,6 +120143,9 @@ spec: kind: RedisCluster listKind: RedisClusterList plural: redisclusters + shortNames: + - gcprediscluster + - gcpredisclusters singular: rediscluster preserveUnknownFields: false scope: Namespaced @@ -117822,7 +120288,7 @@ spec: properties: external: description: A reference to an externally managed Compute - Network resource. Should be in the format `projects//global/networks/`. + Network resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -118161,7 +120627,7 @@ spec: properties: external: description: A reference to an externally managed Compute - Network resource. Should be in the format `projects//global/networks/`. + Network resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -118367,7 +120833,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -118885,7 +121351,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -119063,7 +121529,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -119344,7 +121810,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -120389,7 +122855,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -121519,7 +123985,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -121756,12 +124222,9 @@ spec: type: object type: object resourceID: - description: Immutable. The SecretManagerSecret name. If not given, - the metadata.name will be used. + description: The SecretManagerSecret name. If not given, the metadata.name + will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf rotation: description: Optional. Rotation policy attached to the [Secret][google.cloud.secretmanager.v1.Secret]. May be excluded if there is no rotation policy. @@ -121832,7 +124295,8 @@ spec: type: object type: array ttl: - description: Input only. The TTL for the [Secret][google.cloud.secretmanager.v1.Secret]. + description: 'Input only. A duration in seconds with up to nine fractional + digits, ending with ''s''. Example: "3.5s".' type: string versionAliases: additionalProperties: @@ -121900,6 +124364,11 @@ spec: observedState: description: ObservedState is the state of the resource as most recently observed in GCP. + properties: + versionAliases: + additionalProperties: + type: string + type: object type: object type: object type: object @@ -121912,7 +124381,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -121926,6 +124395,7 @@ spec: categories: - gcp kind: SecretManagerSecretVersion + listKind: SecretManagerSecretVersionList plural: secretmanagersecretversions shortNames: - gcpsecretmanagersecretversion @@ -121953,55 +124423,52 @@ spec: name: v1beta1 schema: openAPIV3Schema: + description: SecretManagerSecretVersion is the Schema for the SecretManagerSecretVersion + API properties: apiVersion: - description: 'apiVersion defines the versioned schema of this representation + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: - description: 'kind is a string value representing the REST resource this + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: + description: SecretManagerSecretVersionSpec defines the desired state + of SecretManagerSecretVersion properties: deletionPolicy: - description: |- - The deletion policy for the secret version. Setting 'ABANDON' allows the resource - to be abandoned rather than deleted. Setting 'DISABLE' allows the resource to be - disabled rather than deleted. Default is 'DELETE'. Possible values are: - * DELETE - * DISABLE - * ABANDON. + description: 'DEPRECATED. You do not need to set this field in direct + reconciler mode. Use delete-policy annotation instead. https://cloud.google.com/config-connector/docs/how-to/managing-deleting-resources#keeping_resources_after_deletion + The deletion policy for the secret version. Setting ''ABANDON'' + allows the resource to be abandoned rather than deleted. Setting + ''DISABLE'' allows the resource to be disabled rather than deleted. + Default is ''DELETE''. Possible values are: * DELETE * DISABLE * + ABANDON.' type: string enabled: - description: The current state of the SecretVersion. + description: Should enable or disable the current SecretVersion. - + Enabled version can be accessed and described. - Disabled version + cannot be accessed, but the secret's contents still exist type: boolean isSecretDataBase64: - description: Immutable. If set to 'true', the secret data is expected - to be base64-encoded string and would be sent as is. + description: DEPRECATED. You do not need to set this field in direct + reconciler mode. type: boolean resourceID: - description: Immutable. Optional. The service-generated name of the - resource. Used for acquisition only. Leave unset to create a new - resource. + description: The SecretVersion number. If given, Config Connector + acquires the resource from the Secret Manager service. If not given, + Config Connector adds a new secret version to the GCP service, and + you can find out the version number from `status.observedState.version` type: string secretData: - description: Immutable. The secret data. Must be no larger than 64KiB. - oneOf: - - not: - required: - - valueFrom - required: - - value - - not: - required: - - value - required: - - valueFrom + description: The actual secret data. Config Connector supports secret + data stored in Kubernetes secret or plain data (base64) properties: value: description: Value of the field. Cannot be used if 'valueFrom' @@ -122022,13 +124489,15 @@ spec: description: Name of the Secret to extract a value from. type: string required: - - name - key + - name type: object type: object type: object secretRef: - description: Secret Manager secret resource + description: The resource name of the [Secret][google.cloud.secretmanager.v1.Secret] + to create a [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] + for. oneOf: - not: required: @@ -122045,229 +124514,383 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `SecretManagerSecret` - resource.' + description: A reference to an externally managed SecretManagerSecret + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/secrets/{{secretID}}". type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The name of a SecretManagerSecret resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The namespace of a SecretManagerSecret resource. + type: string + type: object + type: object + status: + description: SecretManagerSecretVersionStatus defines the config connector + machine state of SecretManagerSecretVersion + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + createTime: + description: 'DEPRECATING NOTE: Please use status.observedState.createTime + instead.' + type: string + destroyTime: + description: 'DEPRECATING NOTE: Please use status.observedState.destroyTime + instead.' + type: string + externalRef: + description: A unique specifier for the SecretManagerSecretVersion + resource in GCP. + type: string + name: + description: 'DEPRECATING NOTE: Please use status.observedState.name + instead.' + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + clientSpecifiedPayloadChecksum: + description: Output only. True if payload checksum specified in + [SecretPayload][google.cloud.secretmanager.v1.SecretPayload] + object has been received by [SecretManagerService][google.cloud.secretmanager.v1.SecretManagerService] + on [SecretManagerService.AddSecretVersion][google.cloud.secretmanager.v1.SecretManagerService.AddSecretVersion]. + type: boolean + createTime: + description: Output only. The time at which the [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] + was created. + type: string + customerManagedEncryption: + description: Output only. The customer-managed encryption status + of the [SecretVersion][google.cloud.secretmanager.v1.SecretVersion]. + Only populated if customer-managed encryption is used and [Secret][google.cloud.secretmanager.v1.Secret] + is a Regionalised Secret. + properties: + kmsKeyVersionName: + description: 'Required. The resource name of the Cloud KMS + CryptoKeyVersion used to encrypt the secret payload, in + the following format: `projects/*/locations/*/keyRings/*/cryptoKeys/*/versions/*`.' + type: string + type: object + destroyTime: + description: Output only. The time this [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] + was destroyed. Only present if [state][google.cloud.secretmanager.v1.SecretVersion.state] + is [DESTROYED][google.cloud.secretmanager.v1.SecretVersion.State.DESTROYED]. + type: string + name: + description: |- + Output only. The resource name of the + [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] in the + format `projects/*/secrets/*/versions/*`. + + [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] IDs in a + [Secret][google.cloud.secretmanager.v1.Secret] start at 1 and are + incremented for each subsequent version of the secret. + type: string + replicationStatus: + description: The replication status of the [SecretVersion][google.cloud.secretmanager.v1.SecretVersion]. + properties: + automatic: + description: |- + Describes the replication status of a + [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] with + automatic replication. + + Only populated if the parent + [Secret][google.cloud.secretmanager.v1.Secret] has an automatic + replication policy. + properties: + customerManagedEncryption: + description: Output only. The customer-managed encryption + status of the [SecretVersion][google.cloud.secretmanager.v1.SecretVersion]. + Only populated if customer-managed encryption is used. + properties: + kmsKeyVersionName: + description: 'Required. The resource name of the Cloud + KMS CryptoKeyVersion used to encrypt the secret + payload, in the following format: `projects/*/locations/*/keyRings/*/cryptoKeys/*/versions/*`.' + type: string + type: object + type: object + userManaged: + description: |- + Describes the replication status of a + [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] with + user-managed replication. + + Only populated if the parent + [Secret][google.cloud.secretmanager.v1.Secret] has a user-managed + replication policy. + properties: + replicas: + description: Output only. The list of replica statuses + for the [SecretVersion][google.cloud.secretmanager.v1.SecretVersion]. + items: + properties: + customerManagedEncryption: + description: Output only. The customer-managed encryption + status of the [SecretVersion][google.cloud.secretmanager.v1.SecretVersion]. + Only populated if customer-managed encryption + is used. + properties: + kmsKeyVersionName: + description: 'Required. The resource name of + the Cloud KMS CryptoKeyVersion used to encrypt + the secret payload, in the following format: + `projects/*/locations/*/keyRings/*/cryptoKeys/*/versions/*`.' + type: string + type: object + location: + description: 'Output only. The canonical ID of the + replica location. For example: `"us-east1"`.' + type: string + type: object + type: array + type: object + type: object + scheduledDestroyTime: + description: Optional. Output only. Scheduled destroy time for + secret version. This is a part of the Delayed secret version + destroy feature. For a Secret with a valid version destroy TTL, + when a secert version is destroyed, the version is moved to + disabled state and it is scheduled for destruction. The version + is destroyed only after the `scheduled_destroy_time`. + type: string + type: object + version: + description: DEPRECATED. + type: string + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + name: securesourcemanagerinstances.securesourcemanager.cnrm.cloud.google.com +spec: + group: securesourcemanager.cnrm.cloud.google.com + names: + categories: + - gcp + kind: SecureSourceManagerInstance + listKind: SecureSourceManagerInstanceList + plural: securesourcemanagerinstances + shortNames: + - gcpsecuresourcemanagerinstance + - gcpsecuresourcemanagerinstances + singular: securesourcemanagerinstance + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: SecureSourceManagerInstance is the Schema for the SecureSourceManagerInstance + API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: SecureSourceManagerInstanceSpec defines the desired state + of SecureSourceManagerInstance + properties: + kmsKeyRef: + description: Optional. Immutable. Customer-managed encryption key + name. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed KMSCryptoKey. + Should be in the format `projects/[kms_project_id]/locations/[region]/keyRings/[key_ring_id]/cryptoKeys/[key]`. + type: string + name: + description: The `name` of a `KMSCryptoKey` resource. + type: string + namespace: + description: The `namespace` of a `KMSCryptoKey` resource. type: string type: object + location: + description: Immutable. Location of the instance. + type: string + privateConfig: + description: Optional. PrivateConfig includes settings for private + instance. + properties: + caPoolRef: + description: Required. Immutable. CA pool resource, resource must + in the format of `projects/{project}/locations/{location}/caPools/{ca_pool}`. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed PrivateCACAPool. + Should be in the format `projects/{project_id}/locations/{region}/caPools/{caPool}`. + type: string + name: + description: The `name` of a `PrivateCACAPool` resource. + type: string + namespace: + description: The `namespace` of a `PrivateCACAPool` resource. + type: string + type: object + httpServiceAttachment: + description: Output only. Service Attachment for HTTP, resource + is in the format of `projects/{project}/regions/{region}/serviceAttachments/{service_attachment}`. + type: string + isPrivate: + description: Required. Immutable. Indicate if it's private instance. + type: boolean + sshServiceAttachment: + description: Output only. Service Attachment for SSH, resource + is in the format of `projects/{project}/regions/{region}/serviceAttachments/{service_attachment}`. + type: string + type: object + projectRef: + description: Immutable. The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + resourceID: + description: Immutable. Optional. The name of the resource. Used for + creation and acquisition. When unset, the value of `metadata.name` + is used as the default. + type: string required: - - secretData - - secretRef + - location + - projectRef type: object status: + description: SecureSourceManagerInstanceStatus defines the config connector + machine state of SecureSourceManagerInstance properties: conditions: - description: Conditions represent the latest available observation - of the resource's current state. - items: - properties: - lastTransitionTime: - description: Last time the condition transitioned from one status - to another. - type: string - message: - description: Human-readable message indicating details about - last transition. - type: string - reason: - description: Unique, one-word, CamelCase reason for the condition's - last transition. - type: string - status: - description: Status is the status of the condition. Can be True, - False, Unknown. - type: string - type: - description: Type is the type of the condition. - type: string - type: object - type: array - createTime: - description: The time at which the Secret was created. - type: string - destroyTime: - description: The time at which the Secret was destroyed. Only present - if state is DESTROYED. - type: string - name: - description: |- - The resource name of the SecretVersion. Format: - 'projects/{{project}}/secrets/{{secret_id}}/versions/{{version}}'. - type: string - observedGeneration: - description: ObservedGeneration is the generation of the resource - that was most recently observed by the Config Connector controller. - If this is equal to metadata.generation, then that means that the - current reported status reflects the most recent desired state of - the resource. - type: integer - version: - description: The version of the Secret. - type: string - type: object - required: - - spec - type: object - served: true - storage: true - subresources: - status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - cnrm.cloud.google.com/version: 1.125.0 - creationTimestamp: null - labels: - cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: alpha - cnrm.cloud.google.com/system: "true" - name: securesourcemanagerinstances.securesourcemanager.cnrm.cloud.google.com -spec: - group: securesourcemanager.cnrm.cloud.google.com - names: - categories: - - gcp - kind: SecureSourceManagerInstance - listKind: SecureSourceManagerInstanceList - plural: securesourcemanagerinstances - shortNames: - - gcpsecuresourcemanagerinstance - - gcpsecuresourcemanagerinstances - singular: securesourcemanagerinstance - preserveUnknownFields: false - scope: Namespaced - versions: - - additionalPrinterColumns: - - jsonPath: .metadata.creationTimestamp - name: Age - type: date - - description: When 'True', the most recent reconcile of the resource succeeded - jsonPath: .status.conditions[?(@.type=='Ready')].status - name: Ready - type: string - - description: The reason for the value in 'Ready' - jsonPath: .status.conditions[?(@.type=='Ready')].reason - name: Status - type: string - - description: The last transition time for the value in 'Status' - jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime - name: Status Age - type: date - name: v1alpha1 - schema: - openAPIV3Schema: - description: SecureSourceManagerInstance is the Schema for the SecureSourceManagerInstance - API - properties: - apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' - type: string - kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' - type: string - metadata: - type: object - spec: - description: SecureSourceManagerInstanceSpec defines the desired state - of SecureSourceManagerInstance - properties: - kmsKeyRef: - description: Optional. Immutable. Customer-managed encryption key - name. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: A reference to an externally managed KMSCryptoKey. - Should be in the format `projects/[kms_project_id]/locations/[region]/keyRings/[key_ring_id]/cryptoKeys/[key]`. - type: string - name: - description: The `name` of a `KMSCryptoKey` resource. - type: string - namespace: - description: The `namespace` of a `KMSCryptoKey` resource. - type: string - type: object - location: - description: Immutable. Location of the instance. - type: string - projectRef: - description: Immutable. The Project that this resource belongs to. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: The `projectID` field of a project, when not managed - by Config Connector. - type: string - kind: - description: The kind of the Project resource; optional but must - be `Project` if provided. - type: string - name: - description: The `name` field of a `Project` resource. - type: string - namespace: - description: The `namespace` field of a `Project` resource. - type: string - type: object - resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. - type: string - required: - - location - - projectRef - type: object - status: - description: SecureSourceManagerInstanceStatus defines the config connector - machine state of SecureSourceManagerInstance - properties: - conditions: - description: Conditions represent the latest available observations - of the object's current state. + description: Conditions represent the latest available observations + of the object's current state. items: properties: lastTransitionTime: @@ -122343,7 +124966,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -122564,7 +125187,7 @@ spec: properties: external: description: A reference to an externally managed SecureSourceManagerInstance - resource. Should be in the format "projects//locations//instances/". + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/instances/{{instanceID}}". type: string name: description: The name of a SecureSourceManagerInstance resource. @@ -122609,12 +125232,9 @@ spec: type: string type: object resourceID: - description: Immutable. The SecureSourceManagerRepository name. If - not given, the metadata.name will be used. + description: The SecureSourceManagerRepository name. If not given, + the metadata.name will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - instanceRef - location @@ -122666,6 +125286,15 @@ spec: description: ObservedState is the state of the resource as most recently observed in GCP. properties: + etag: + description: Output only. This checksum is computed by the server + based on the value of other fields, and may be sent on update + and delete requests to ensure the client has an up-to-date value + before proceeding. + type: string + uid: + description: Output only. Unique identifier of the repository. + type: string uris: description: Output only. URIs for the repository. properties: @@ -122695,7 +125324,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -122900,7 +125529,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -123063,7 +125692,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -123283,7 +125912,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -123440,7 +126069,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -123592,7 +126221,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -123739,7 +126368,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -123917,7 +126546,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -124058,7 +126687,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -124240,7 +126869,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -124439,7 +127068,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -124648,7 +127277,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -124706,6 +127335,58 @@ spec: spec: description: SpannerInstanceSpec defines the desired state of SpannerInstance properties: + autoscalingConfig: + description: Optional. The autoscaling configuration. Autoscaling + is enabled if this field is set. When autoscaling is enabled, node_count + and processing_units are treated as OUTPUT_ONLY fields and reflect + the current compute capacity allocated to the instance. + properties: + autoscalingLimits: + description: Required. Autoscaling limits for an instance. + properties: + maxNodes: + description: Maximum number of nodes allocated to the instance. + If set, this number should be greater than or equal to min_nodes. + format: int32 + type: integer + maxProcessingUnits: + description: Maximum number of processing units allocated + to the instance. If set, this number should be multiples + of 1000 and be greater than or equal to min_processing_units. + format: int32 + type: integer + minNodes: + description: Minimum number of nodes allocated to the instance. + If set, this number should be greater than or equal to 1. + format: int32 + type: integer + minProcessingUnits: + description: Minimum number of processing units allocated + to the instance. If set, this number should be multiples + of 1000. + format: int32 + type: integer + type: object + autoscalingTargets: + description: Required. The autoscaling targets for an instance. + properties: + highPriorityCpuUtilizationPercent: + description: Required. The target high priority cpu utilization + percentage that the autoscaler should be trying to achieve + for the instance. This number is on a scale from 0 (no utilization) + to 100 (full utilization). The valid range is [10, 90] inclusive. + format: int32 + type: integer + storageUtilizationPercent: + description: Required. The target storage utilization percentage + that the autoscaler should be trying to achieve for the + instance. This number is on a scale from 0 (no utilization) + to 100 (full utilization). The valid range is [10, 100] + inclusive. + format: int32 + type: integer + type: object + type: object config: description: Immutable. The name of the instance's configuration (similar but not quite the same as a region) which defines the geographic @@ -124722,19 +127403,20 @@ spec: in UIs. Must be unique per project and between 4 and 30 characters in length. type: string + edition: + description: Optional. The `Edition` of the current instance. Currently + accepted values are EDITION_UNSPECIFIED, STANDARD, ENTERPRISE, ENTERPRISE_PLUS + type: string numNodes: - format: int64 + format: int32 type: integer processingUnits: - format: int64 + format: int32 type: integer resourceID: - description: Immutable. The SpannerInstance name. If not given, the - metadata.name will be used. + description: The SpannerInstance name. If not given, the metadata.name + will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - config - displayName @@ -124781,6 +127463,19 @@ spec: the resource. format: int64 type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + numNodes: + description: NumNodes and ProcessUnits is output fields with AutoScaler + is set. + format: int32 + type: integer + processingUnits: + format: int32 + type: integer + type: object state: description: 'Instance status: ''CREATING'' or ''READY''.' type: string @@ -124797,7 +127492,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -124968,7 +127663,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -125512,7 +128207,7 @@ spec: properties: external: description: A reference to an externally managed Compute - Network resource. Should be in the format `projects//global/networks/`. + Network resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -125789,7 +128484,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -125965,7 +128660,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -126206,7 +128901,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -126376,7 +129071,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -126783,7 +129478,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -126969,7 +129664,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -127137,7 +129832,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -127340,7 +130035,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -127502,7 +130197,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -128140,7 +130835,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -128323,7 +131018,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -128500,7 +131195,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -128665,7 +131360,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -128839,7 +131534,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -129059,7 +131754,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -129446,7 +132141,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -129893,7 +132588,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -130038,7 +132733,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -130274,7 +132969,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -130489,7 +133184,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -130677,7 +133372,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -131187,7 +133882,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -131369,7 +134064,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -131559,7 +134254,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -131838,7 +134533,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -132030,7 +134725,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -132044,6 +134739,9 @@ spec: kind: WorkstationCluster listKind: WorkstationClusterList plural: workstationclusters + shortNames: + - gcpworkstationcluster + - gcpworkstationclusters singular: workstationcluster preserveUnknownFields: false scope: Namespaced @@ -132103,6 +134801,332 @@ spec: description: Optional. [Labels](https://cloud.google.com/workstations/docs/label-resources) that are applied to the workstation cluster and that are also propagated to the underlying Compute Engine resources. + items: + properties: + key: + description: Key for the label. + type: string + value: + description: Value for the label. + type: string + type: object + type: array + location: + description: The location of the cluster. + type: string + networkRef: + description: Immutable. Reference to the Compute Engine network in + which instances associated with this workstation cluster will be + created. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed Compute Network + resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. + type: string + name: + description: The `name` field of a `ComputeNetwork` resource. + type: string + namespace: + description: The `namespace` field of a `ComputeNetwork` resource. + type: string + type: object + privateClusterConfig: + description: Optional. Configuration for private workstation cluster. + properties: + allowedProjects: + description: Optional. Additional projects that are allowed to + attach to the workstation cluster's service attachment. By default, + the workstation cluster's project and the VPC host project (if + different) are allowed. + items: + description: The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - kind + - not: + anyOf: + - required: + - name + - required: + - namespace + - required: + - kind + required: + - external + properties: + external: + description: The `projectID` field of a project, when not + managed by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional + but must be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + type: array + enablePrivateEndpoint: + description: Immutable. Whether Workstations endpoint is private. + type: boolean + type: object + projectRef: + description: Immutable. The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + x-kubernetes-validations: + - message: ResourceID field is immutable + rule: self == oldSelf + resourceID: + description: The WorkstationCluster name. If not given, the metadata.name + will be used. + type: string + subnetworkRef: + description: Immutable. Reference to the Compute Engine subnetwork + in which instances associated with this workstation cluster will + be created. Must be part of the subnetwork specified for this workstation + cluster. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The ComputeSubnetwork selflink of form "projects/{{project}}/regions/{{region}}/subnetworks/{{name}}", + when not managed by Config Connector. + type: string + name: + description: The `name` field of a `ComputeSubnetwork` resource. + type: string + namespace: + description: The `namespace` field of a `ComputeSubnetwork` resource. + type: string + type: object + required: + - networkRef + - projectRef + - subnetworkRef + type: object + status: + description: WorkstationClusterStatus defines the config connector machine + state of WorkstationCluster + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the WorkstationCluster resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + clusterHostname: + description: Output only. Hostname for the workstation cluster. + This field will be populated only when private endpoint is enabled. + To access workstations in the workstation cluster, create a + new DNS zone mapping this domain name to an internal IP address + and a forwarding rule mapping that address to the service attachment. + type: string + controlPlaneIP: + description: Output only. The private IP address of the control + plane for this workstation cluster. Workstation VMs need access + to this IP address to work with the service, so make sure that + your firewall rules allow egress from the workstation VMs to + this address. + type: string + createTime: + description: Output only. Time when this workstation cluster was + created. + type: string + degraded: + description: Output only. Whether this workstation cluster is + in degraded mode, in which case it may require user action to + restore full functionality. Details can be found in [conditions][google.cloud.workstations.v1.WorkstationCluster.conditions]. + type: boolean + deleteTime: + description: Output only. Time when this workstation cluster was + soft-deleted. + type: string + etag: + description: Optional. Checksum computed by the server. May be + sent on update and delete requests to make sure that the client + has an up-to-date value before proceeding. + type: string + gcpConditions: + description: Output only. Status conditions describing the workstation + cluster's current state. + items: + properties: + code: + description: The status code, which should be an enum value + of [google.rpc.Code][google.rpc.Code]. + format: int32 + type: integer + message: + description: A developer-facing error message, which should + be in English. Any user-facing error message should be + localized and sent in the [google.rpc.Status.details][google.rpc.Status.details] + field, or localized by the client. + type: string + type: object + type: array + reconciling: + description: Output only. Indicates whether this workstation cluster + is currently being updated to match its intended state. + type: boolean + serviceAttachmentUri: + description: Output only. Service attachment URI for the workstation + cluster. The service attachment is created when private endpoint + is enabled. To access workstations in the workstation cluster, + configure access to the managed service using [Private Service + Connect](https://cloud.google.com/vpc/docs/configure-private-service-connect-services). + type: string + uid: + description: Output only. A system-assigned unique identifier + for this workstation cluster. + type: string + updateTime: + description: Output only. Time when this workstation cluster was + most recently updated. + type: string + type: object + type: object + type: object + served: true + storage: false + subresources: + status: {} + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + description: WorkstationCluster is the Schema for the WorkstationCluster API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: WorkstationClusterSpec defines the desired state of WorkstationCluster + properties: + annotations: + description: Optional. Client-specified annotations. items: properties: key: @@ -132113,6 +135137,23 @@ spec: type: string type: object type: array + displayName: + description: Optional. Human-readable name for this workstation cluster. + type: string + labels: + description: Optional. [Labels](https://cloud.google.com/workstations/docs/label-resources) + that are applied to the workstation cluster and that are also propagated + to the underlying Compute Engine resources. + items: + properties: + key: + description: Key for the label. + type: string + value: + description: Value for the label. + type: string + type: object + type: array location: description: The location of the cluster. type: string @@ -132137,7 +135178,7 @@ spec: properties: external: description: A reference to an externally managed Compute Network - resource. Should be in the format `projects//global/networks/`. + resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -132230,12 +135271,9 @@ spec: - message: ResourceID field is immutable rule: self == oldSelf resourceID: - description: Immutable. The WorkstationCluster name. If not given, - the metadata.name will be used. + description: The WorkstationCluster name. If not given, the metadata.name + will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf subnetworkRef: description: Immutable. Reference to the Compute Engine subnetwork in which instances associated with this workstation cluster will @@ -132391,9 +135429,35 @@ spec: type: object type: object served: true - storage: false + storage: true subresources: status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/system: "true" + name: workstationconfigs.workstations.cnrm.cloud.google.com +spec: + group: workstations.cnrm.cloud.google.com + names: + categories: + - gcp + kind: WorkstationConfig + listKind: WorkstationConfigList + plural: workstationconfigs + shortNames: + - gcpworkstationconfig + - gcpworkstationconfigs + singular: workstationconfig + preserveUnknownFields: false + scope: Namespaced + versions: - additionalPrinterColumns: - jsonPath: .metadata.creationTimestamp name: Age @@ -132410,10 +135474,10 @@ spec: jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime name: Status Age type: date - name: v1beta1 + name: v1alpha1 schema: openAPIV3Schema: - description: WorkstationCluster is the Schema for the WorkstationCluster API + description: WorkstationConfig is the Schema for the WorkstationConfig API properties: apiVersion: description: 'APIVersion defines the versioned schema of this representation @@ -132428,7 +135492,7 @@ spec: metadata: type: object spec: - description: WorkstationClusterSpec defines the desired state of WorkstationCluster + description: WorkstationConfigSpec defines the desired state of WorkstationConfig properties: annotations: description: Optional. Client-specified annotations. @@ -132442,30 +135506,336 @@ spec: type: string type: object type: array + container: + description: Optional. Container that runs upon startup for each workstation + using this workstation configuration. + properties: + args: + description: Optional. Arguments passed to the entrypoint. + items: + type: string + type: array + command: + description: Optional. If set, overrides the default ENTRYPOINT + specified by the image. + items: + type: string + type: array + env: + description: Optional. Environment variables passed to the container's + entrypoint. + items: + properties: + name: + description: Name is the name of the environment variable. + type: string + value: + description: Value is the value of the environment variable. + type: string + type: object + type: array + image: + description: |- + Optional. A Docker container image that defines a custom environment. + + Cloud Workstations provides a number of + [preconfigured + images](https://cloud.google.com/workstations/docs/preconfigured-base-images), + but you can create your own + [custom container + images](https://cloud.google.com/workstations/docs/custom-container-images). + If using a private image, the `host.gceInstance.serviceAccount` field + must be specified in the workstation configuration and must have + permission to pull the specified image. Otherwise, the image must be + publicly accessible. + type: string + runAsUser: + description: Optional. If set, overrides the USER specified in + the image with the given uid. + format: int32 + type: integer + workingDir: + description: Optional. If set, overrides the default DIR specified + by the image. + type: string + type: object displayName: - description: Optional. Human-readable name for this workstation cluster. + description: Optional. Human-readable name for this workstation configuration. + type: string + encryptionKey: + description: |- + Immutable. Encrypts resources of this workstation configuration using a + customer-managed encryption key (CMEK). + + If specified, the boot disk of the Compute Engine instance and the + persistent disk are encrypted using this encryption key. If + this field is not set, the disks are encrypted using a generated + key. Customer-managed encryption keys do not protect disk metadata. + + If the customer-managed encryption key is rotated, when the workstation + instance is stopped, the system attempts to recreate the + persistent disk with the new version of the key. Be sure to keep + older versions of the key until the persistent disk is recreated. + Otherwise, data on the persistent disk might be lost. + + If the encryption key is revoked, the workstation session automatically + stops within 7 hours. + + Immutable after the workstation configuration is created. + properties: + kmsCryptoKeyRef: + description: Immutable. A reference to the Google Cloud KMS encryption + key. For example, `"projects/PROJECT_ID/locations/REGION/keyRings/KEY_RING/cryptoKeys/KEY_NAME"`. + The key must be in the same region as the workstation configuration. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed KMSCryptoKey. + Should be in the format `projects/[kms_project_id]/locations/[region]/keyRings/[key_ring_id]/cryptoKeys/[key]`. + type: string + name: + description: The `name` of a `KMSCryptoKey` resource. + type: string + namespace: + description: The `namespace` of a `KMSCryptoKey` resource. + type: string + type: object + serviceAccountRef: + description: Immutable. A reference to a service account to use + with the specified KMS key. We recommend that you use a separate + service account and follow KMS best practices. For more information, + see [Separation of duties](https://cloud.google.com/kms/docs/separation-of-duties) + and `gcloud kms keys add-iam-policy-binding` [`--member`](https://cloud.google.com/sdk/gcloud/reference/kms/keys/add-iam-policy-binding#--member). + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `email` field of an `IAMServiceAccount` resource. + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + type: object + host: + description: Optional. Runtime host for the workstation. + properties: + gceInstance: + description: Specifies a Compute Engine instance as the host. + properties: + bootDiskSizeGB: + description: Optional. The size of the boot disk for the VM + in gigabytes (GB). The minimum boot disk size is `30` GB. + Defaults to `50` GB. + format: int32 + type: integer + confidentialInstanceConfig: + description: Optional. A set of Compute Engine Confidential + VM instance options. + properties: + enableConfidentialCompute: + description: Optional. Whether the instance has confidential + compute enabled. + type: boolean + type: object + disablePublicIPAddresses: + description: Optional. When set to true, disables public IP + addresses for VMs. If you disable public IP addresses, you + must set up Private Google Access or Cloud NAT on your network. + If you use Private Google Access and you use `private.googleapis.com` + or `restricted.googleapis.com` for Container Registry and + Artifact Registry, make sure that you set up DNS records + for domains `*.gcr.io` and `*.pkg.dev`. Defaults to false + (VMs have public IP addresses). + type: boolean + enableNestedVirtualization: + description: |- + Optional. Whether to enable nested virtualization on Cloud Workstations + VMs created under this workstation configuration. + + Nested virtualization lets you run virtual machine (VM) instances + inside your workstation. Before enabling nested virtualization, + consider the following important considerations. Cloud Workstations + instances are subject to the [same restrictions as Compute Engine + instances](https://cloud.google.com/compute/docs/instances/nested-virtualization/overview#restrictions): + + * **Organization policy**: projects, folders, or + organizations may be restricted from creating nested VMs if the + **Disable VM nested virtualization** constraint is enforced in + the organization policy. For more information, see the + Compute Engine section, + [Checking whether nested virtualization is + allowed](https://cloud.google.com/compute/docs/instances/nested-virtualization/managing-constraint#checking_whether_nested_virtualization_is_allowed). + * **Performance**: nested VMs might experience a 10% or greater + decrease in performance for workloads that are CPU-bound and + possibly greater than a 10% decrease for workloads that are + input/output bound. + * **Machine Type**: nested virtualization can only be enabled on + workstation configurations that specify a + [machine_type][google.cloud.workstations.v1.WorkstationConfig.Host.GceInstance.machine_type] + in the N1 or N2 machine series. + * **GPUs**: nested virtualization may not be enabled on workstation + configurations with accelerators. + * **Operating System**: Because + [Container-Optimized + OS](https://cloud.google.com/compute/docs/images/os-details#container-optimized_os_cos) + does not support nested virtualization, when nested virtualization is + enabled, the underlying Compute Engine VM instances boot from an + [Ubuntu + LTS](https://cloud.google.com/compute/docs/images/os-details#ubuntu_lts) + image. + type: boolean + machineType: + description: Optional. The type of machine to use for VM instances—for + example, `"e2-standard-4"`. For more information about machine + types that Cloud Workstations supports, see the list of + [available machine types](https://cloud.google.com/workstations/docs/available-machine-types). + type: string + poolSize: + description: Optional. The number of VMs that the system should + keep idle so that new workstations can be started quickly + for new users. Defaults to `0` in the API. + format: int32 + type: integer + serviceAccountRef: + description: |- + Optional. A reference to the service account for Cloud + Workstations VMs created with this configuration. When specified, be + sure that the service account has `logginglogEntries.create` permission + on the project so it can write logs out to Cloud Logging. If using a + custom container image, the service account must have permissions to + pull the specified image. + + If you as the administrator want to be able to `ssh` into the + underlying VM, you need to set this value to a service account + for which you have the `iam.serviceAccounts.actAs` permission. + Conversely, if you don't want anyone to be able to `ssh` into the + underlying VM, use a service account where no one has that + permission. + + If not set, VMs run with a service account provided by the + Cloud Workstations service, and the image must be publicly + accessible. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `email` field of an `IAMServiceAccount` + resource. + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + serviceAccountScopes: + description: Optional. Scopes to grant to the [service_account][google.cloud.workstations.v1.WorkstationConfig.Host.GceInstance.service_account]. + Various scopes are automatically added based on feature + usage. When specified, users of workstations under this + configuration must have `iam.serviceAccounts.actAs` on the + service account. + items: + type: string + type: array + shieldedInstanceConfig: + description: Optional. A set of Compute Engine Shielded instance + options. + properties: + enableIntegrityMonitoring: + description: Optional. Whether the instance has integrity + monitoring enabled. + type: boolean + enableSecureBoot: + description: Optional. Whether the instance has Secure + Boot enabled. + type: boolean + enableVTPM: + description: Optional. Whether the instance has the vTPM + enabled. + type: boolean + type: object + tags: + description: Optional. Network tags to add to the Compute + Engine VMs backing the workstations. This option applies + [network tags](https://cloud.google.com/vpc/docs/add-remove-network-tags) + to VMs created with this configuration. These network tags + enable the creation of [firewall rules](https://cloud.google.com/workstations/docs/configure-firewall-rules). + items: + type: string + type: array + type: object + type: object + idleTimeout: + description: |- + Optional. Number of seconds to wait before automatically stopping a + workstation after it last received user traffic. + + A value of `"0s"` indicates that Cloud Workstations VMs created with this + configuration should never time out due to idleness. + Provide + [duration](https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration) + terminated by `s` for seconds—for example, `"7200s"` (2 hours). + The default is `"1200s"` (20 minutes). type: string labels: description: Optional. [Labels](https://cloud.google.com/workstations/docs/label-resources) - that are applied to the workstation cluster and that are also propagated - to the underlying Compute Engine resources. + that are applied to the workstation configuration and that are also + propagated to the underlying Compute Engine resources. items: properties: key: - description: Key for the annotation. + description: Key for the label. type: string value: - description: Value for the annotation. + description: Value for the label. type: string type: object type: array - location: - description: The location of the cluster. - type: string - networkRef: - description: Immutable. Reference to the Compute Engine network in - which instances associated with this workstation cluster will be - created. + parentRef: + description: Parent is a reference to the parent WorkstationCluster + for this WorkstationConfig. oneOf: - not: required: @@ -132482,66 +135852,617 @@ spec: - external properties: external: - description: A reference to an externally managed Compute Network - resource. Should be in the format `projects//global/networks/`. + description: A reference to an externally managed WorkstationCluster + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/workstationClusters/{{workstationclusterID}}". type: string name: - description: The `name` field of a `ComputeNetwork` resource. + description: The name of a WorkstationCluster resource. type: string namespace: - description: The `namespace` field of a `ComputeNetwork` resource. + description: The namespace of a WorkstationCluster resource. type: string type: object - privateClusterConfig: - description: Optional. Configuration for private workstation cluster. + persistentDirectories: + description: Optional. Directories to persist across workstation sessions. + items: + properties: + gcePD: + description: A PersistentDirectory backed by a Compute Engine + persistent disk. + properties: + diskType: + description: Optional. The [type of the persistent disk](https://cloud.google.com/compute/docs/disks#disk-types) + for the home directory. Defaults to `"pd-standard"`. + type: string + fsType: + description: Optional. Type of file system that the disk + should be formatted with. The workstation image must support + this file system type. Must be empty if [source_snapshot][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.source_snapshot] + is set. Defaults to `"ext4"`. + type: string + reclaimPolicy: + description: Optional. Whether the persistent disk should + be deleted when the workstation is deleted. Valid values + are `DELETE` and `RETAIN`. Defaults to `DELETE`. + type: string + sizeGB: + description: |- + Optional. The GB capacity of a persistent home directory for each + workstation created with this configuration. Must be empty if + [source_snapshot][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.source_snapshot] + is set. + + Valid values are `10`, `50`, `100`, `200`, `500`, or `1000`. + Defaults to `200`. If less than `200` GB, the + [disk_type][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.disk_type] + must be + `"pd-balanced"` or `"pd-ssd"`. + format: int32 + type: integer + sourceSnapshot: + description: Optional. Name of the snapshot to use as the + source for the disk. If set, [size_gb][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.size_gb] + and [fs_type][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.fs_type] + must be empty. + type: string + type: object + mountPath: + description: Optional. Location of this directory in the running + workstation. + type: string + type: object + type: array + readinessChecks: + description: Optional. Readiness checks to perform when starting a + workstation using this workstation configuration. Mark a workstation + as running only after all specified readiness checks return 200 + status codes. + items: + properties: + path: + description: Optional. Path to which the request should be sent. + type: string + port: + description: Optional. Port to which the request should be sent. + format: int32 + type: integer + type: object + type: array + replicaZones: + description: |- + Optional. Immutable. Specifies the zones used to replicate the VM and disk + resources within the region. If set, exactly two zones within the + workstation cluster's region must be specified—for example, + `['us-central1-a', 'us-central1-f']`. If this field is empty, two default + zones within the region are used. + + Immutable after the workstation configuration is created. + items: + type: string + type: array + resourceID: + description: The WorkstationConfig name. If not given, the metadata.name + will be used. + type: string + runningTimeout: + description: |- + Optional. Number of seconds that a workstation can run until it is + automatically shut down. We recommend that workstations be shut down daily + to reduce costs and so that security updates can be applied upon restart. + The + [idle_timeout][google.cloud.workstations.v1.WorkstationConfig.idle_timeout] + and + [running_timeout][google.cloud.workstations.v1.WorkstationConfig.running_timeout] + fields are independent of each other. Note that the + [running_timeout][google.cloud.workstations.v1.WorkstationConfig.running_timeout] + field shuts down VMs after the specified time, regardless of whether or not + the VMs are idle. + + Provide duration terminated by `s` for seconds—for example, `"54000s"` + (15 hours). Defaults to `"43200s"` (12 hours). A value of `"0s"` indicates + that workstations using this configuration should never time out. If + [encryption_key][google.cloud.workstations.v1.WorkstationConfig.encryption_key] + is set, it must be greater than `"0s"` and less than + `"86400s"` (24 hours). + + Warning: A value of `"0s"` indicates that Cloud Workstations VMs created + with this configuration have no maximum running time. This is strongly + discouraged because you incur costs and will not pick up security updates. + type: string + required: + - parentRef + type: object + status: + description: WorkstationConfigStatus defines the config connector machine + state of WorkstationConfig + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the WorkstationConfig resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. properties: - allowedProjects: - description: Optional. Additional projects that are allowed to - attach to the workstation cluster's service attachment. By default, - the workstation cluster's project and the VPC host project (if - different) are allowed. + createTime: + description: Output only. Time when this workstation configuration + was created. + type: string + degraded: + description: Output only. Whether this resource is degraded, in + which case it may require user action to restore full functionality. + See also the [conditions][google.cloud.workstations.v1.WorkstationConfig.conditions] + field. + type: boolean + deleteTime: + description: Output only. Time when this workstation configuration + was soft-deleted. + type: string + etag: + description: Output only. Checksum computed by the server. May + be sent on update and delete requests to make sure that the + client has an up-to-date value before proceeding. + type: string + gcpConditions: + description: Output only. Status conditions describing the current + resource state. items: - description: The Project that this resource belongs to. - oneOf: - - not: - required: - - external - required: - - name - - kind - - not: - anyOf: - - required: - - name - - required: - - namespace - - required: - - kind - required: - - external properties: - external: - description: The `projectID` field of a project, when not - managed by Config Connector. - type: string - kind: - description: The kind of the Project resource; optional - but must be `Project` if provided. + code: + description: The status code, which should be an enum value + of [google.rpc.Code][google.rpc.Code]. + format: int32 + type: integer + message: + description: A developer-facing error message, which should + be in English. Any user-facing error message should be + localized and sent in the [google.rpc.Status.details][google.rpc.Status.details] + field, or localized by the client. type: string + type: object + type: array + host: + description: Output only. Observed state of the runtime host for + the workstation configuration. + properties: + gceInstance: + description: Output only. Observed state of the Compute Engine + runtime host for the workstation configuration. + properties: + pooledInstances: + description: Output only. Number of instances currently + available in the pool for faster workstation startup. + format: int32 + type: integer + type: object + type: object + uid: + description: Output only. A system-assigned unique identifier + for this workstation configuration. + type: string + updateTime: + description: Output only. Time when this workstation configuration + was most recently updated. + type: string + type: object + type: object + type: object + served: true + storage: false + subresources: + status: {} + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + description: WorkstationConfig is the Schema for the WorkstationConfig API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: WorkstationConfigSpec defines the desired state of WorkstationConfig + properties: + annotations: + description: Optional. Client-specified annotations. + items: + properties: + key: + description: Key for the annotation. + type: string + value: + description: Value for the annotation. + type: string + type: object + type: array + container: + description: Optional. Container that runs upon startup for each workstation + using this workstation configuration. + properties: + args: + description: Optional. Arguments passed to the entrypoint. + items: + type: string + type: array + command: + description: Optional. If set, overrides the default ENTRYPOINT + specified by the image. + items: + type: string + type: array + env: + description: Optional. Environment variables passed to the container's + entrypoint. + items: + properties: name: - description: The `name` field of a `Project` resource. + description: Name is the name of the environment variable. type: string - namespace: - description: The `namespace` field of a `Project` resource. + value: + description: Value is the value of the environment variable. type: string type: object type: array - enablePrivateEndpoint: - description: Immutable. Whether Workstations endpoint is private. - type: boolean + image: + description: |- + Optional. A Docker container image that defines a custom environment. + + Cloud Workstations provides a number of + [preconfigured + images](https://cloud.google.com/workstations/docs/preconfigured-base-images), + but you can create your own + [custom container + images](https://cloud.google.com/workstations/docs/custom-container-images). + If using a private image, the `host.gceInstance.serviceAccount` field + must be specified in the workstation configuration and must have + permission to pull the specified image. Otherwise, the image must be + publicly accessible. + type: string + runAsUser: + description: Optional. If set, overrides the USER specified in + the image with the given uid. + format: int32 + type: integer + workingDir: + description: Optional. If set, overrides the default DIR specified + by the image. + type: string type: object - projectRef: - description: Immutable. The Project that this resource belongs to. + displayName: + description: Optional. Human-readable name for this workstation configuration. + type: string + encryptionKey: + description: |- + Immutable. Encrypts resources of this workstation configuration using a + customer-managed encryption key (CMEK). + + If specified, the boot disk of the Compute Engine instance and the + persistent disk are encrypted using this encryption key. If + this field is not set, the disks are encrypted using a generated + key. Customer-managed encryption keys do not protect disk metadata. + + If the customer-managed encryption key is rotated, when the workstation + instance is stopped, the system attempts to recreate the + persistent disk with the new version of the key. Be sure to keep + older versions of the key until the persistent disk is recreated. + Otherwise, data on the persistent disk might be lost. + + If the encryption key is revoked, the workstation session automatically + stops within 7 hours. + + Immutable after the workstation configuration is created. + properties: + kmsCryptoKeyRef: + description: Immutable. A reference to the Google Cloud KMS encryption + key. For example, `"projects/PROJECT_ID/locations/REGION/keyRings/KEY_RING/cryptoKeys/KEY_NAME"`. + The key must be in the same region as the workstation configuration. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed KMSCryptoKey. + Should be in the format `projects/[kms_project_id]/locations/[region]/keyRings/[key_ring_id]/cryptoKeys/[key]`. + type: string + name: + description: The `name` of a `KMSCryptoKey` resource. + type: string + namespace: + description: The `namespace` of a `KMSCryptoKey` resource. + type: string + type: object + serviceAccountRef: + description: Immutable. A reference to a service account to use + with the specified KMS key. We recommend that you use a separate + service account and follow KMS best practices. For more information, + see [Separation of duties](https://cloud.google.com/kms/docs/separation-of-duties) + and `gcloud kms keys add-iam-policy-binding` [`--member`](https://cloud.google.com/sdk/gcloud/reference/kms/keys/add-iam-policy-binding#--member). + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `email` field of an `IAMServiceAccount` resource. + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + type: object + host: + description: Optional. Runtime host for the workstation. + properties: + gceInstance: + description: Specifies a Compute Engine instance as the host. + properties: + bootDiskSizeGB: + description: Optional. The size of the boot disk for the VM + in gigabytes (GB). The minimum boot disk size is `30` GB. + Defaults to `50` GB. + format: int32 + type: integer + confidentialInstanceConfig: + description: Optional. A set of Compute Engine Confidential + VM instance options. + properties: + enableConfidentialCompute: + description: Optional. Whether the instance has confidential + compute enabled. + type: boolean + type: object + disablePublicIPAddresses: + description: Optional. When set to true, disables public IP + addresses for VMs. If you disable public IP addresses, you + must set up Private Google Access or Cloud NAT on your network. + If you use Private Google Access and you use `private.googleapis.com` + or `restricted.googleapis.com` for Container Registry and + Artifact Registry, make sure that you set up DNS records + for domains `*.gcr.io` and `*.pkg.dev`. Defaults to false + (VMs have public IP addresses). + type: boolean + enableNestedVirtualization: + description: |- + Optional. Whether to enable nested virtualization on Cloud Workstations + VMs created under this workstation configuration. + + Nested virtualization lets you run virtual machine (VM) instances + inside your workstation. Before enabling nested virtualization, + consider the following important considerations. Cloud Workstations + instances are subject to the [same restrictions as Compute Engine + instances](https://cloud.google.com/compute/docs/instances/nested-virtualization/overview#restrictions): + + * **Organization policy**: projects, folders, or + organizations may be restricted from creating nested VMs if the + **Disable VM nested virtualization** constraint is enforced in + the organization policy. For more information, see the + Compute Engine section, + [Checking whether nested virtualization is + allowed](https://cloud.google.com/compute/docs/instances/nested-virtualization/managing-constraint#checking_whether_nested_virtualization_is_allowed). + * **Performance**: nested VMs might experience a 10% or greater + decrease in performance for workloads that are CPU-bound and + possibly greater than a 10% decrease for workloads that are + input/output bound. + * **Machine Type**: nested virtualization can only be enabled on + workstation configurations that specify a + [machine_type][google.cloud.workstations.v1.WorkstationConfig.Host.GceInstance.machine_type] + in the N1 or N2 machine series. + * **GPUs**: nested virtualization may not be enabled on workstation + configurations with accelerators. + * **Operating System**: Because + [Container-Optimized + OS](https://cloud.google.com/compute/docs/images/os-details#container-optimized_os_cos) + does not support nested virtualization, when nested virtualization is + enabled, the underlying Compute Engine VM instances boot from an + [Ubuntu + LTS](https://cloud.google.com/compute/docs/images/os-details#ubuntu_lts) + image. + type: boolean + machineType: + description: Optional. The type of machine to use for VM instances—for + example, `"e2-standard-4"`. For more information about machine + types that Cloud Workstations supports, see the list of + [available machine types](https://cloud.google.com/workstations/docs/available-machine-types). + type: string + poolSize: + description: Optional. The number of VMs that the system should + keep idle so that new workstations can be started quickly + for new users. Defaults to `0` in the API. + format: int32 + type: integer + serviceAccountRef: + description: |- + Optional. A reference to the service account for Cloud + Workstations VMs created with this configuration. When specified, be + sure that the service account has `logginglogEntries.create` permission + on the project so it can write logs out to Cloud Logging. If using a + custom container image, the service account must have permissions to + pull the specified image. + + If you as the administrator want to be able to `ssh` into the + underlying VM, you need to set this value to a service account + for which you have the `iam.serviceAccounts.actAs` permission. + Conversely, if you don't want anyone to be able to `ssh` into the + underlying VM, use a service account where no one has that + permission. + + If not set, VMs run with a service account provided by the + Cloud Workstations service, and the image must be publicly + accessible. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `email` field of an `IAMServiceAccount` + resource. + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + serviceAccountScopes: + description: Optional. Scopes to grant to the [service_account][google.cloud.workstations.v1.WorkstationConfig.Host.GceInstance.service_account]. + Various scopes are automatically added based on feature + usage. When specified, users of workstations under this + configuration must have `iam.serviceAccounts.actAs` on the + service account. + items: + type: string + type: array + shieldedInstanceConfig: + description: Optional. A set of Compute Engine Shielded instance + options. + properties: + enableIntegrityMonitoring: + description: Optional. Whether the instance has integrity + monitoring enabled. + type: boolean + enableSecureBoot: + description: Optional. Whether the instance has Secure + Boot enabled. + type: boolean + enableVTPM: + description: Optional. Whether the instance has the vTPM + enabled. + type: boolean + type: object + tags: + description: Optional. Network tags to add to the Compute + Engine VMs backing the workstations. This option applies + [network tags](https://cloud.google.com/vpc/docs/add-remove-network-tags) + to VMs created with this configuration. These network tags + enable the creation of [firewall rules](https://cloud.google.com/workstations/docs/configure-firewall-rules). + items: + type: string + type: array + type: object + type: object + idleTimeout: + description: |- + Optional. Number of seconds to wait before automatically stopping a + workstation after it last received user traffic. + + A value of `"0s"` indicates that Cloud Workstations VMs created with this + configuration should never time out due to idleness. + Provide + [duration](https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration) + terminated by `s` for seconds—for example, `"7200s"` (2 hours). + The default is `"1200s"` (20 minutes). + type: string + labels: + description: Optional. [Labels](https://cloud.google.com/workstations/docs/label-resources) + that are applied to the workstation configuration and that are also + propagated to the underlying Compute Engine resources. + items: + properties: + key: + description: Key for the label. + type: string + value: + description: Value for the label. + type: string + type: object + type: array + parentRef: + description: Parent is a reference to the parent WorkstationCluster + for this WorkstationConfig. oneOf: - not: required: @@ -132558,35 +136479,333 @@ spec: - external properties: external: - description: The `projectID` field of a project, when not managed - by Config Connector. - type: string - kind: - description: The kind of the Project resource; optional but must - be `Project` if provided. + description: A reference to an externally managed WorkstationCluster + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/workstationClusters/{{workstationclusterID}}". type: string name: - description: The `name` field of a `Project` resource. + description: The name of a WorkstationCluster resource. type: string namespace: - description: The `namespace` field of a `Project` resource. + description: The namespace of a WorkstationCluster resource. type: string type: object - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf + persistentDirectories: + description: Optional. Directories to persist across workstation sessions. + items: + properties: + gcePD: + description: A PersistentDirectory backed by a Compute Engine + persistent disk. + properties: + diskType: + description: Optional. The [type of the persistent disk](https://cloud.google.com/compute/docs/disks#disk-types) + for the home directory. Defaults to `"pd-standard"`. + type: string + fsType: + description: Optional. Type of file system that the disk + should be formatted with. The workstation image must support + this file system type. Must be empty if [source_snapshot][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.source_snapshot] + is set. Defaults to `"ext4"`. + type: string + reclaimPolicy: + description: Optional. Whether the persistent disk should + be deleted when the workstation is deleted. Valid values + are `DELETE` and `RETAIN`. Defaults to `DELETE`. + type: string + sizeGB: + description: |- + Optional. The GB capacity of a persistent home directory for each + workstation created with this configuration. Must be empty if + [source_snapshot][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.source_snapshot] + is set. + + Valid values are `10`, `50`, `100`, `200`, `500`, or `1000`. + Defaults to `200`. If less than `200` GB, the + [disk_type][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.disk_type] + must be + `"pd-balanced"` or `"pd-ssd"`. + format: int32 + type: integer + sourceSnapshot: + description: Optional. Name of the snapshot to use as the + source for the disk. If set, [size_gb][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.size_gb] + and [fs_type][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.fs_type] + must be empty. + type: string + type: object + mountPath: + description: Optional. Location of this directory in the running + workstation. + type: string + type: object + type: array + readinessChecks: + description: Optional. Readiness checks to perform when starting a + workstation using this workstation configuration. Mark a workstation + as running only after all specified readiness checks return 200 + status codes. + items: + properties: + path: + description: Optional. Path to which the request should be sent. + type: string + port: + description: Optional. Port to which the request should be sent. + format: int32 + type: integer + type: object + type: array + replicaZones: + description: |- + Optional. Immutable. Specifies the zones used to replicate the VM and disk + resources within the region. If set, exactly two zones within the + workstation cluster's region must be specified—for example, + `['us-central1-a', 'us-central1-f']`. If this field is empty, two default + zones within the region are used. + + Immutable after the workstation configuration is created. + items: + type: string + type: array resourceID: - description: Immutable. The WorkstationCluster name. If not given, - the metadata.name will be used. + description: The WorkstationConfig name. If not given, the metadata.name + will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf - subnetworkRef: - description: Immutable. Reference to the Compute Engine subnetwork - in which instances associated with this workstation cluster will - be created. Must be part of the subnetwork specified for this workstation - cluster. + runningTimeout: + description: |- + Optional. Number of seconds that a workstation can run until it is + automatically shut down. We recommend that workstations be shut down daily + to reduce costs and so that security updates can be applied upon restart. + The + [idle_timeout][google.cloud.workstations.v1.WorkstationConfig.idle_timeout] + and + [running_timeout][google.cloud.workstations.v1.WorkstationConfig.running_timeout] + fields are independent of each other. Note that the + [running_timeout][google.cloud.workstations.v1.WorkstationConfig.running_timeout] + field shuts down VMs after the specified time, regardless of whether or not + the VMs are idle. + + Provide duration terminated by `s` for seconds—for example, `"54000s"` + (15 hours). Defaults to `"43200s"` (12 hours). A value of `"0s"` indicates + that workstations using this configuration should never time out. If + [encryption_key][google.cloud.workstations.v1.WorkstationConfig.encryption_key] + is set, it must be greater than `"0s"` and less than + `"86400s"` (24 hours). + + Warning: A value of `"0s"` indicates that Cloud Workstations VMs created + with this configuration have no maximum running time. This is strongly + discouraged because you incur costs and will not pick up security updates. + type: string + required: + - parentRef + type: object + status: + description: WorkstationConfigStatus defines the config connector machine + state of WorkstationConfig + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the WorkstationConfig resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + createTime: + description: Output only. Time when this workstation configuration + was created. + type: string + degraded: + description: Output only. Whether this resource is degraded, in + which case it may require user action to restore full functionality. + See also the [conditions][google.cloud.workstations.v1.WorkstationConfig.conditions] + field. + type: boolean + deleteTime: + description: Output only. Time when this workstation configuration + was soft-deleted. + type: string + etag: + description: Output only. Checksum computed by the server. May + be sent on update and delete requests to make sure that the + client has an up-to-date value before proceeding. + type: string + gcpConditions: + description: Output only. Status conditions describing the current + resource state. + items: + properties: + code: + description: The status code, which should be an enum value + of [google.rpc.Code][google.rpc.Code]. + format: int32 + type: integer + message: + description: A developer-facing error message, which should + be in English. Any user-facing error message should be + localized and sent in the [google.rpc.Status.details][google.rpc.Status.details] + field, or localized by the client. + type: string + type: object + type: array + host: + description: Output only. Observed state of the runtime host for + the workstation configuration. + properties: + gceInstance: + description: Output only. Observed state of the Compute Engine + runtime host for the workstation configuration. + properties: + pooledInstances: + description: Output only. Number of instances currently + available in the pool for faster workstation startup. + format: int32 + type: integer + type: object + type: object + uid: + description: Output only. A system-assigned unique identifier + for this workstation configuration. + type: string + updateTime: + description: Output only. Time when this workstation configuration + was most recently updated. + type: string + type: object + type: object + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/system: "true" + name: workstations.workstations.cnrm.cloud.google.com +spec: + group: workstations.cnrm.cloud.google.com + names: + categories: + - gcp + kind: Workstation + listKind: WorkstationList + plural: workstations + shortNames: + - gcpworkstation + - gcpworkstations + singular: workstation + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: Workstation is the Schema for the Workstation API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: WorkstationSpec defines the desired state of Workstation + properties: + annotations: + description: Optional. Client-specified annotations. + items: + properties: + key: + description: Key for the annotation. + type: string + value: + description: Value for the annotation. + type: string + type: object + type: array + displayName: + description: Optional. Human-readable name for this workstation. + type: string + labels: + description: Optional. [Labels](https://cloud.google.com/workstations/docs/label-resources) + that are applied to the workstation and that are also propagated + to the underlying Compute Engine resources. + items: + properties: + key: + description: Key for the label. + type: string + value: + description: Value for the label. + type: string + type: object + type: array + parentRef: + description: Parent is a reference to the parent WorkstationConfig + for this Workstation. oneOf: - not: required: @@ -132603,24 +136822,26 @@ spec: - external properties: external: - description: The ComputeSubnetwork selflink of form "projects/{{project}}/regions/{{region}}/subnetworks/{{name}}", - when not managed by Config Connector. + description: A reference to an externally managed WorkstationConfig + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/workstationClusters/{{workstationclusterID}}/workstationConfigs/{{workstationconfigID}}". type: string name: - description: The `name` field of a `ComputeSubnetwork` resource. + description: The name of a WorkstationConfig resource. type: string namespace: - description: The `namespace` field of a `ComputeSubnetwork` resource. + description: The namespace of a WorkstationConfig resource. type: string type: object + resourceID: + description: The Workstation name. If not given, the metadata.name + will be used. + type: string required: - - networkRef - - projectRef - - subnetworkRef + - parentRef type: object status: - description: WorkstationClusterStatus defines the config connector machine - state of WorkstationCluster + description: WorkstationStatus defines the config connector machine state + of Workstation properties: conditions: description: Conditions represent the latest available observations @@ -132649,8 +136870,7 @@ spec: type: object type: array externalRef: - description: A unique specifier for the WorkstationCluster resource - in GCP. + description: A unique specifier for the Workstation resource in GCP. type: string observedGeneration: description: ObservedGeneration is the generation of the resource @@ -132664,77 +136884,233 @@ spec: description: ObservedState is the state of the resource as most recently observed in GCP. properties: - clusterHostname: - description: Output only. Hostname for the workstation cluster. - This field will be populated only when private endpoint is enabled. - To access workstations in the workstation cluster, create a - new DNS zone mapping this domain name to an internal IP address - and a forwarding rule mapping that address to the service attachment. + createTime: + description: Output only. Time when this workstation was created. type: string - controlPlaneIP: - description: Output only. The private IP address of the control - plane for this workstation cluster. Workstation VMs need access - to this IP address to work with the service, so make sure that - your firewall rules allow egress from the workstation VMs to - this address. + deleteTime: + description: Output only. Time when this workstation was soft-deleted. + type: string + etag: + description: Output only. Checksum computed by the server. May + be sent on update and delete requests to make sure that the + client has an up-to-date value before proceeding. + type: string + host: + description: Output only. Host to which clients can send HTTPS + traffic that will be received by the workstation. Authorized + traffic will be received to the workstation as HTTP on port + 80. To send traffic to a different port, clients may prefix + the host with the destination port in the format `{port}-{host}`. + type: string + startTime: + description: Output only. Time when this workstation was most + recently successfully started, regardless of the workstation's + initial state. + type: string + state: + description: Output only. Current state of the workstation. + type: string + uid: + description: Output only. A system-assigned unique identifier + for this workstation. + type: string + updateTime: + description: Output only. Time when this workstation was most + recently updated. + type: string + type: object + type: object + required: + - spec + type: object + served: true + storage: false + subresources: + status: {} + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + description: Workstation is the Schema for the Workstation API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: WorkstationSpec defines the desired state of Workstation + properties: + annotations: + description: Optional. Client-specified annotations. + items: + properties: + key: + description: Key for the annotation. + type: string + value: + description: Value for the annotation. + type: string + type: object + type: array + displayName: + description: Optional. Human-readable name for this workstation. + type: string + labels: + description: Optional. [Labels](https://cloud.google.com/workstations/docs/label-resources) + that are applied to the workstation and that are also propagated + to the underlying Compute Engine resources. + items: + properties: + key: + description: Key for the label. + type: string + value: + description: Value for the label. + type: string + type: object + type: array + parentRef: + description: Parent is a reference to the parent WorkstationConfig + for this Workstation. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed WorkstationConfig + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/workstationClusters/{{workstationclusterID}}/workstationConfigs/{{workstationconfigID}}". + type: string + name: + description: The name of a WorkstationConfig resource. + type: string + namespace: + description: The namespace of a WorkstationConfig resource. type: string + type: object + resourceID: + description: The Workstation name. If not given, the metadata.name + will be used. + type: string + required: + - parentRef + type: object + status: + description: WorkstationStatus defines the config connector machine state + of Workstation + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the Workstation resource in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: createTime: - description: Output only. Time when this workstation cluster was - created. + description: Output only. Time when this workstation was created. type: string - degraded: - description: Output only. Whether this workstation cluster is - in degraded mode, in which case it may require user action to - restore full functionality. Details can be found in [conditions][google.cloud.workstations.v1.WorkstationCluster.conditions]. - type: boolean deleteTime: - description: Output only. Time when this workstation cluster was - soft-deleted. + description: Output only. Time when this workstation was soft-deleted. type: string etag: - description: Optional. Checksum computed by the server. May be - sent on update and delete requests to make sure that the client - has an up-to-date value before proceeding. + description: Output only. Checksum computed by the server. May + be sent on update and delete requests to make sure that the + client has an up-to-date value before proceeding. type: string - gcpConditions: - description: Output only. Status conditions describing the workstation - cluster's current state. - items: - properties: - code: - description: The status code, which should be an enum value - of [google.rpc.Code][google.rpc.Code]. - format: int32 - type: integer - message: - description: A developer-facing error message, which should - be in English. Any user-facing error message should be - localized and sent in the [google.rpc.Status.details][google.rpc.Status.details] - field, or localized by the client. - type: string - type: object - type: array - reconciling: - description: Output only. Indicates whether this workstation cluster - is currently being updated to match its intended state. - type: boolean - serviceAttachmentUri: - description: Output only. Service attachment URI for the workstation - cluster. The service attachment is created when private endpoint - is enabled. To access workstations in the workstation cluster, - configure access to the managed service using [Private Service - Connect](https://cloud.google.com/vpc/docs/configure-private-service-connect-services). + host: + description: Output only. Host to which clients can send HTTPS + traffic that will be received by the workstation. Authorized + traffic will be received to the workstation as HTTP on port + 80. To send traffic to a different port, clients may prefix + the host with the destination port in the format `{port}-{host}`. + type: string + startTime: + description: Output only. Time when this workstation was most + recently successfully started, regardless of the workstation's + initial state. + type: string + state: + description: Output only. Current state of the workstation. type: string uid: description: Output only. A system-assigned unique identifier - for this workstation cluster. + for this workstation. type: string updateTime: - description: Output only. Time when this workstation cluster was - most recently updated. + description: Output only. Time when this workstation was most + recently updated. type: string type: object type: object + required: + - spec type: object served: true storage: true diff --git a/operator/autopilot-channels/packages/configconnector/1.125.0/namespaced/0-cnrm-system.yaml b/operator/autopilot-channels/packages/configconnector/1.128.0/namespaced/0-cnrm-system.yaml similarity index 95% rename from operator/autopilot-channels/packages/configconnector/1.125.0/namespaced/0-cnrm-system.yaml rename to operator/autopilot-channels/packages/configconnector/1.128.0/namespaced/0-cnrm-system.yaml index a85a4ee0b5..2304e60496 100644 --- a/operator/autopilot-channels/packages/configconnector/1.125.0/namespaced/0-cnrm-system.yaml +++ b/operator/autopilot-channels/packages/configconnector/1.128.0/namespaced/0-cnrm-system.yaml @@ -2,7 +2,7 @@ apiVersion: v1 kind: Namespace metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-system @@ -11,7 +11,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -21,7 +21,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-resource-stats-recorder @@ -31,7 +31,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-unmanaged-detector @@ -41,7 +41,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-manager @@ -51,7 +51,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-cnrm-system-role @@ -72,7 +72,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-cnrm-system-role @@ -93,7 +93,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -881,6 +881,18 @@ rules: - update - patch - delete +- apiGroups: + - memorystore.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch + - create + - update + - patch + - delete - apiGroups: - mlengine.cnrm.cloud.google.com resources: @@ -1306,7 +1318,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role @@ -1356,7 +1368,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-cluster-role @@ -1414,7 +1426,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-ns-role @@ -1439,7 +1451,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-role @@ -1469,7 +1481,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-unmanaged-detector-cluster-role @@ -1500,7 +1512,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -2027,6 +2039,14 @@ rules: - get - list - watch +- apiGroups: + - memorystore.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch - apiGroups: - mlengine.cnrm.cloud.google.com resources: @@ -2312,7 +2332,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role @@ -2375,7 +2395,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role-binding @@ -2393,7 +2413,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role-binding @@ -2411,7 +2431,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-admin-binding @@ -2434,7 +2454,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-binding @@ -2451,7 +2471,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-binding @@ -2468,7 +2488,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-unmanaged-detector-binding @@ -2485,7 +2505,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-binding @@ -2502,7 +2522,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -2519,7 +2539,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 prometheus.io/port: "48797" prometheus.io/scrape: "true" labels: @@ -2540,7 +2560,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -2558,7 +2578,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -2571,8 +2591,8 @@ spec: - /configconnector/recorder env: - name: CONFIG_CONNECTOR_VERSION - value: 1.125.0 - image: gcr.io/gke-release/cnrm/recorder:2fa0f72 + value: 1.128.0 + image: gcr.io/gke-release/cnrm/recorder:1.128.0 imagePullPolicy: Always name: recorder ports: @@ -2605,7 +2625,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -2620,7 +2640,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -2635,7 +2655,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: gcr.io/gke-release/cnrm/webhook:2fa0f72 + image: gcr.io/gke-release/cnrm/webhook:1.128.0 imagePullPolicy: Always name: webhook ports: @@ -2665,7 +2685,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -2680,7 +2700,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -2688,7 +2708,7 @@ spec: containers: - command: - /configconnector/deletiondefender - image: gcr.io/gke-release/cnrm/deletiondefender:2fa0f72 + image: gcr.io/gke-release/cnrm/deletiondefender:1.128.0 imagePullPolicy: Always name: deletiondefender ports: @@ -2718,7 +2738,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-unmanaged-detector cnrm.cloud.google.com/system: "true" @@ -2733,7 +2753,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-unmanaged-detector cnrm.cloud.google.com/system: "true" @@ -2741,7 +2761,7 @@ spec: containers: - command: - /configconnector/unmanageddetector - image: gcr.io/gke-release/cnrm/unmanageddetector:2fa0f72 + image: gcr.io/gke-release/cnrm/unmanageddetector:1.128.0 imagePullPolicy: Always name: unmanageddetector ports: @@ -2772,7 +2792,7 @@ kind: HorizontalPodAutoscaler metadata: annotations: autoscaling.alpha.kubernetes.io/metrics: '[{"type":"Resource","resource":{"name":"memory","targetAverageUtilization":70}}]' - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook diff --git a/operator/autopilot-channels/packages/configconnector/1.125.0/namespaced/per-namespace-components.yaml b/operator/autopilot-channels/packages/configconnector/1.128.0/namespaced/per-namespace-components.yaml similarity index 91% rename from operator/autopilot-channels/packages/configconnector/1.125.0/namespaced/per-namespace-components.yaml rename to operator/autopilot-channels/packages/configconnector/1.128.0/namespaced/per-namespace-components.yaml index 7c24718c60..1d2fe99572 100644 --- a/operator/autopilot-channels/packages/configconnector/1.125.0/namespaced/per-namespace-components.yaml +++ b/operator/autopilot-channels/packages/configconnector/1.128.0/namespaced/per-namespace-components.yaml @@ -2,7 +2,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 iam.gke.io/gcp-service-account: cnrm-system-${NAMESPACE?}@${PROJECT_ID?}.iam.gserviceaccount.com labels: cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} @@ -14,7 +14,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 finalizers: - configconnector.cnrm.cloud.google.com/finalizer labels: @@ -35,7 +35,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 finalizers: - configconnector.cnrm.cloud.google.com/finalizer labels: @@ -56,7 +56,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} cnrm.cloud.google.com/system: "true" @@ -75,7 +75,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} cnrm.cloud.google.com/system: "true" @@ -93,7 +93,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 prometheus.io/port: "8888" prometheus.io/scrape: "true" labels: @@ -117,7 +117,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} @@ -134,7 +134,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} @@ -146,7 +146,7 @@ spec: - --prometheus-scrape-endpoint=:8888 command: - /configconnector/manager - image: gcr.io/gke-release/cnrm/controller:2fa0f72 + image: gcr.io/gke-release/cnrm/controller:1.128.0 imagePullPolicy: Always name: manager ports: diff --git a/operator/autopilot-channels/stable b/operator/autopilot-channels/stable index 006aa56966..7634936a79 100644 --- a/operator/autopilot-channels/stable +++ b/operator/autopilot-channels/stable @@ -1,2 +1,2 @@ manifests: - - version: 1.127.0 + - version: 1.128.0 diff --git a/operator/channels/packages/configconnector/1.125.0/cluster/gcp-identity/0-cnrm-system.yaml b/operator/channels/packages/configconnector/1.128.0/cluster/gcp-identity/0-cnrm-system.yaml similarity index 94% rename from operator/channels/packages/configconnector/1.125.0/cluster/gcp-identity/0-cnrm-system.yaml rename to operator/channels/packages/configconnector/1.128.0/cluster/gcp-identity/0-cnrm-system.yaml index 72777ee594..6903211129 100644 --- a/operator/channels/packages/configconnector/1.125.0/cluster/gcp-identity/0-cnrm-system.yaml +++ b/operator/channels/packages/configconnector/1.128.0/cluster/gcp-identity/0-cnrm-system.yaml @@ -1,22 +1,8 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - apiVersion: v1 kind: Namespace metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-system @@ -25,7 +11,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-controller-manager @@ -35,7 +21,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -45,7 +31,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-resource-stats-recorder @@ -55,7 +41,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-manager @@ -65,7 +51,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-cnrm-system-role @@ -86,7 +72,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-cnrm-system-role @@ -107,7 +93,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -895,6 +881,18 @@ rules: - update - patch - delete +- apiGroups: + - memorystore.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch + - create + - update + - patch + - delete - apiGroups: - mlengine.cnrm.cloud.google.com resources: @@ -1320,7 +1318,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role @@ -1370,7 +1368,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-cluster-role @@ -1428,7 +1426,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-ns-role @@ -1453,7 +1451,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-role @@ -1483,7 +1481,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -2010,6 +2008,14 @@ rules: - get - list - watch +- apiGroups: + - memorystore.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch - apiGroups: - mlengine.cnrm.cloud.google.com resources: @@ -2295,7 +2301,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role @@ -2358,7 +2364,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role-binding @@ -2376,7 +2382,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role-binding @@ -2394,7 +2400,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-admin-binding @@ -2417,7 +2423,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-binding @@ -2434,7 +2440,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-binding @@ -2451,7 +2457,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-watcher-binding @@ -2468,7 +2474,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-binding @@ -2485,7 +2491,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-binding @@ -2502,7 +2508,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -2519,7 +2525,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 prometheus.io/port: "8888" prometheus.io/scrape: "true" labels: @@ -2541,7 +2547,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 prometheus.io/port: "48797" prometheus.io/scrape: "true" labels: @@ -2562,7 +2568,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -2580,7 +2586,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -2593,8 +2599,8 @@ spec: - /configconnector/recorder env: - name: CONFIG_CONNECTOR_VERSION - value: 1.125.0 - image: gcr.io/gke-release/cnrm/recorder:2fa0f72 + value: 1.128.0 + image: gcr.io/gke-release/cnrm/recorder:1.128.0 imagePullPolicy: Always name: recorder ports: @@ -2628,7 +2634,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -2643,7 +2649,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -2658,7 +2664,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: gcr.io/gke-release/cnrm/webhook:2fa0f72 + image: gcr.io/gke-release/cnrm/webhook:1.128.0 imagePullPolicy: Always name: webhook ports: @@ -2688,7 +2694,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/system: "true" @@ -2703,7 +2709,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/system: "true" @@ -2716,7 +2722,7 @@ spec: env: - name: GOOGLE_APPLICATION_CREDENTIALS value: /var/secrets/google/key.json - image: gcr.io/gke-release/cnrm/controller:2fa0f72 + image: gcr.io/gke-release/cnrm/controller:1.128.0 imagePullPolicy: Always name: manager ports: @@ -2753,7 +2759,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -2768,7 +2774,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -2776,7 +2782,7 @@ spec: containers: - command: - /configconnector/deletiondefender - image: gcr.io/gke-release/cnrm/deletiondefender:2fa0f72 + image: gcr.io/gke-release/cnrm/deletiondefender:1.128.0 imagePullPolicy: Always name: deletiondefender ports: @@ -2807,7 +2813,7 @@ kind: HorizontalPodAutoscaler metadata: annotations: autoscaling.alpha.kubernetes.io/metrics: '[{"type":"Resource","resource":{"name":"memory","targetAverageUtilization":70}}]' - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook diff --git a/operator/channels/packages/configconnector/1.125.0/cluster/workload-identity/0-cnrm-system.yaml b/operator/channels/packages/configconnector/1.128.0/cluster/workload-identity/0-cnrm-system.yaml similarity index 95% rename from operator/channels/packages/configconnector/1.125.0/cluster/workload-identity/0-cnrm-system.yaml rename to operator/channels/packages/configconnector/1.128.0/cluster/workload-identity/0-cnrm-system.yaml index d8875ffb01..a6dea828e3 100644 --- a/operator/channels/packages/configconnector/1.125.0/cluster/workload-identity/0-cnrm-system.yaml +++ b/operator/channels/packages/configconnector/1.128.0/cluster/workload-identity/0-cnrm-system.yaml @@ -2,7 +2,7 @@ apiVersion: v1 kind: Namespace metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-system @@ -11,7 +11,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 iam.gke.io/gcp-service-account: cnrm-system@${PROJECT_ID?}.iam.gserviceaccount.com labels: cnrm.cloud.google.com/system: "true" @@ -22,7 +22,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -32,7 +32,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-resource-stats-recorder @@ -42,7 +42,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-manager @@ -52,7 +52,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-cnrm-system-role @@ -73,7 +73,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-cnrm-system-role @@ -94,7 +94,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -882,6 +882,18 @@ rules: - update - patch - delete +- apiGroups: + - memorystore.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch + - create + - update + - patch + - delete - apiGroups: - mlengine.cnrm.cloud.google.com resources: @@ -1307,7 +1319,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role @@ -1357,7 +1369,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-cluster-role @@ -1415,7 +1427,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-ns-role @@ -1440,7 +1452,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-role @@ -1470,7 +1482,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -1997,6 +2009,14 @@ rules: - get - list - watch +- apiGroups: + - memorystore.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch - apiGroups: - mlengine.cnrm.cloud.google.com resources: @@ -2282,7 +2302,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role @@ -2345,7 +2365,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role-binding @@ -2363,7 +2383,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role-binding @@ -2381,7 +2401,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-admin-binding @@ -2404,7 +2424,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-binding @@ -2421,7 +2441,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-binding @@ -2438,7 +2458,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-watcher-binding @@ -2455,7 +2475,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-binding @@ -2472,7 +2492,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-binding @@ -2489,7 +2509,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -2506,7 +2526,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 prometheus.io/port: "8888" prometheus.io/scrape: "true" labels: @@ -2528,7 +2548,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 prometheus.io/port: "48797" prometheus.io/scrape: "true" labels: @@ -2549,7 +2569,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -2567,7 +2587,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -2580,8 +2600,8 @@ spec: - /configconnector/recorder env: - name: CONFIG_CONNECTOR_VERSION - value: 1.125.0 - image: gcr.io/gke-release/cnrm/recorder:2fa0f72 + value: 1.128.0 + image: gcr.io/gke-release/cnrm/recorder:1.128.0 imagePullPolicy: Always name: recorder ports: @@ -2633,7 +2653,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -2648,7 +2668,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -2663,7 +2683,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: gcr.io/gke-release/cnrm/webhook:2fa0f72 + image: gcr.io/gke-release/cnrm/webhook:1.128.0 imagePullPolicy: Always name: webhook ports: @@ -2693,7 +2713,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/system: "true" @@ -2708,7 +2728,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/system: "true" @@ -2718,7 +2738,7 @@ spec: - --prometheus-scrape-endpoint=:8888 command: - /configconnector/manager - image: gcr.io/gke-release/cnrm/controller:2fa0f72 + image: gcr.io/gke-release/cnrm/controller:1.128.0 imagePullPolicy: Always name: manager ports: @@ -2766,7 +2786,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -2781,7 +2801,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -2789,7 +2809,7 @@ spec: containers: - command: - /configconnector/deletiondefender - image: gcr.io/gke-release/cnrm/deletiondefender:2fa0f72 + image: gcr.io/gke-release/cnrm/deletiondefender:1.128.0 imagePullPolicy: Always name: deletiondefender ports: @@ -2820,7 +2840,7 @@ kind: HorizontalPodAutoscaler metadata: annotations: autoscaling.alpha.kubernetes.io/metrics: '[{"type":"Resource","resource":{"name":"memory","targetAverageUtilization":70}}]' - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook diff --git a/operator/autopilot-channels/packages/configconnector/1.125.0/crds.yaml b/operator/channels/packages/configconnector/1.128.0/crds.yaml similarity index 96% rename from operator/autopilot-channels/packages/configconnector/1.125.0/crds.yaml rename to operator/channels/packages/configconnector/1.128.0/crds.yaml index c9811fe825..827610657e 100644 --- a/operator/autopilot-channels/packages/configconnector/1.125.0/crds.yaml +++ b/operator/channels/packages/configconnector/1.128.0/crds.yaml @@ -1,22 +1,8 @@ -# Copyright 2020 Google LLC -# -# Licensed under the Apache License, Version 2.0 (the "License"); -# you may not use this file except in compliance with the License. -# You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, -# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. -# See the License for the specific language governing permissions and -# limitations under the License. - apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -264,7 +250,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -650,7 +636,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -780,7 +766,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -949,7 +935,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -1262,7 +1248,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -2456,7 +2442,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -2895,7 +2881,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4366,7 +4352,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -4380,6 +4366,7 @@ spec: categories: - gcp kind: AlloyDBInstance + listKind: AlloyDBInstanceList plural: alloydbinstances shortNames: - gcpalloydbinstance @@ -4404,28 +4391,25 @@ spec: jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime name: Status Age type: date - name: v1beta1 + name: v1alpha1 schema: openAPIV3Schema: + description: AlloyDBInstance is the Schema for the AlloyDBInstance API properties: apiVersion: - description: 'apiVersion defines the versioned schema of this representation + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: - description: 'kind is a string value representing the REST resource this + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: - oneOf: - - required: - - instanceType - - required: - - instanceTypeRef + description: AlloyDBInstanceSpec defines the desired state of AlloyDBInstance properties: annotations: additionalProperties: @@ -4435,14 +4419,16 @@ spec: type: object availabilityType: description: |- - 'Availability type of an Instance. Defaults to REGIONAL for both primary and read instances. - Note that primary and read instances can have different availability types. - Only READ_POOL instance supports ZONAL type. Users can't specify the zone for READ_POOL instance. - Zone is automatically chosen from the list of zones in the region specified. - Read pool of size 1 can only have zonal availability. Read pools with node count of 2 or more - can have regional availability (nodes are present in 2 or more zones in a region).' Possible values: ["AVAILABILITY_TYPE_UNSPECIFIED", "ZONAL", "REGIONAL"]. + Availability type of an Instance. If empty, defaults to REGIONAL for primary instances. + + For read pools, availabilityType is always UNSPECIFIED. Instances in the + read pools are evenly distributed across available zones within the region + (i.e. read pools with more than one node will have a node in at least two zones). + Possible values: ["AVAILABILITY_TYPE_UNSPECIFIED", "ZONAL", "REGIONAL"]. type: string clusterRef: + description: The AlloyDBInstance cluster that this resource belongs + to. oneOf: - not: required: @@ -4459,14 +4445,14 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of an `AlloyDBCluster` - resource.' + description: If provided must be in the format `projects/[projectId]/locations/[location]/clusters/[clusterId]`. type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The `metadata.name` field of a `AlloyDBCluster` resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The `metadata.namespace` field of a `AlloyDBCluster` + resource. type: string type: object databaseFlags: @@ -4490,14 +4476,15 @@ spec: instance, instance is created in a random zone with available capacity. type: string instanceType: - description: |- - We recommend that you use `instanceTypeRef` instead. - The type of the instance. Possible values: [PRIMARY, READ_POOL, SECONDARY] + description: 'Not recommended. We recommend that you use `instanceTypeRef` + instead. The type of the instance. Possible values: [PRIMARY, READ_POOL, + SECONDARY]' type: string instanceTypeRef: description: |- The type of instance. Possible values: ["PRIMARY", "READ_POOL", "SECONDARY"] + For PRIMARY and SECONDARY instances, set the value to refer to the name of the associated cluster. This is recommended because the instance type of primary and secondary instances is tied to the cluster type of the associated cluster. If the secondary cluster is promoted to primary cluster, then the associated secondary instance also becomes primary instance. @@ -4526,14 +4513,15 @@ spec: - external properties: external: - description: 'Allowed value: The `clusterType` field of an `AlloyDBCluster` - resource.' + description: 'The type of instance. Possible values: ["PRIMARY", + "READ_POOL", "SECONDARY"]' type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The `metadata.name` field of a `AlloyDBCluster` resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The `metadata.namespace` field of a `AlloyDBCluster` + resource. type: string type: object machineConfig: @@ -4542,30 +4530,32 @@ spec: properties: cpuCount: description: The number of CPU's in the VM instance. + format: int32 type: integer type: object networkConfig: description: Instance level network configuration. properties: authorizedExternalNetworks: - description: A list of external networks authorized to access - this instance. This field is only allowed to be set when 'enable_public_ip' - is set to true. + description: Optional. A list of external network authorized to + access this instance. This field is only allowed to be set when + 'enablePublicIp' is set to true. items: properties: cidrRange: - description: CIDR range for one authorized network of the + description: CIDR range for one authorzied network of the instance. type: string type: object type: array enableOutboundPublicIp: - description: Enabling outbound public ip for the instance. + description: Optional. Enabling an outbound public IP address + to support a database server sending requests out into the internet. type: boolean enablePublicIp: - description: Enabling public ip for the instance. If a user wishes - to disable this, please also clear the list of the authorized - external networks set on the same instance. + description: Optional. Enabling public ip for the instance. If + a user wishes to disable this, please also clear the list of + the authorized external networks set on the same instance. type: boolean type: object readPoolConfig: @@ -4575,21 +4565,23 @@ spec: nodeCount: description: Read capacity, i.e. number of nodes in a read pool instance. + format: int32 type: integer type: object resourceID: - description: Immutable. Optional. The instanceId of the resource. - Used for creation and acquisition. When unset, the value of `metadata.name` - is used as the default. + description: Optional. The instanceId of the resource. If not given, + the metadata.name will be used. type: string required: - clusterRef type: object status: + description: AlloyDBInstanceStatus defines the config connector machine + state of AlloyDBInstance properties: conditions: - description: Conditions represent the latest available observation - of the resource's current state. + description: Conditions represent the latest available observations + of the object's current state. items: properties: lastTransitionTime: @@ -4616,6 +4608,10 @@ spec: createTime: description: Time the Instance was created in UTC. type: string + externalRef: + description: A unique specifier for the AlloyDBInstance resource in + GCP. + type: string ipAddress: description: The IP address for the Instance. This is the connection endpoint for an end-user application. @@ -4629,12 +4625,12 @@ spec: If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. + format: int64 type: integer outboundPublicIpAddresses: - description: |- - The outbound public IP addresses for the instance. This is available ONLY when - networkConfig.enableOutboundPublicIp is set to true. These IP addresses are used - for outbound connections. + description: The outbound public IP addresses for the instance. This + is available ONLY when networkConfig.enableOutboundPublicIp is set + to true. These IP addresses are used for outbound connections. items: type: string type: array @@ -4663,7 +4659,7 @@ spec: - spec type: object served: true - storage: false + storage: true subresources: status: {} - additionalPrinterColumns: @@ -4682,28 +4678,25 @@ spec: jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime name: Status Age type: date - name: v1alpha1 + name: v1beta1 schema: openAPIV3Schema: + description: AlloyDBInstance is the Schema for the AlloyDBInstance API properties: apiVersion: - description: 'apiVersion defines the versioned schema of this representation + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: - description: 'kind is a string value representing the REST resource this + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: - oneOf: - - required: - - instanceType - - required: - - instanceTypeRef + description: AlloyDBInstanceSpec defines the desired state of AlloyDBInstance properties: annotations: additionalProperties: @@ -4713,14 +4706,16 @@ spec: type: object availabilityType: description: |- - 'Availability type of an Instance. Defaults to REGIONAL for both primary and read instances. - Note that primary and read instances can have different availability types. - Only READ_POOL instance supports ZONAL type. Users can't specify the zone for READ_POOL instance. - Zone is automatically chosen from the list of zones in the region specified. - Read pool of size 1 can only have zonal availability. Read pools with node count of 2 or more - can have regional availability (nodes are present in 2 or more zones in a region).' Possible values: ["AVAILABILITY_TYPE_UNSPECIFIED", "ZONAL", "REGIONAL"]. + Availability type of an Instance. If empty, defaults to REGIONAL for primary instances. + + For read pools, availabilityType is always UNSPECIFIED. Instances in the + read pools are evenly distributed across available zones within the region + (i.e. read pools with more than one node will have a node in at least two zones). + Possible values: ["AVAILABILITY_TYPE_UNSPECIFIED", "ZONAL", "REGIONAL"]. type: string clusterRef: + description: The AlloyDBInstance cluster that this resource belongs + to. oneOf: - not: required: @@ -4737,14 +4732,14 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of an `AlloyDBCluster` - resource.' + description: If provided must be in the format `projects/[projectId]/locations/[location]/clusters/[clusterId]`. type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The `metadata.name` field of a `AlloyDBCluster` resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The `metadata.namespace` field of a `AlloyDBCluster` + resource. type: string type: object databaseFlags: @@ -4768,14 +4763,15 @@ spec: instance, instance is created in a random zone with available capacity. type: string instanceType: - description: |- - We recommend that you use `instanceTypeRef` instead. - The type of the instance. Possible values: [PRIMARY, READ_POOL, SECONDARY] + description: 'Not recommended. We recommend that you use `instanceTypeRef` + instead. The type of the instance. Possible values: [PRIMARY, READ_POOL, + SECONDARY]' type: string instanceTypeRef: description: |- The type of instance. Possible values: ["PRIMARY", "READ_POOL", "SECONDARY"] + For PRIMARY and SECONDARY instances, set the value to refer to the name of the associated cluster. This is recommended because the instance type of primary and secondary instances is tied to the cluster type of the associated cluster. If the secondary cluster is promoted to primary cluster, then the associated secondary instance also becomes primary instance. @@ -4804,14 +4800,15 @@ spec: - external properties: external: - description: 'Allowed value: The `clusterType` field of an `AlloyDBCluster` - resource.' + description: 'The type of instance. Possible values: ["PRIMARY", + "READ_POOL", "SECONDARY"]' type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The `metadata.name` field of a `AlloyDBCluster` resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The `metadata.namespace` field of a `AlloyDBCluster` + resource. type: string type: object machineConfig: @@ -4820,30 +4817,32 @@ spec: properties: cpuCount: description: The number of CPU's in the VM instance. + format: int32 type: integer type: object networkConfig: description: Instance level network configuration. properties: authorizedExternalNetworks: - description: A list of external networks authorized to access - this instance. This field is only allowed to be set when 'enable_public_ip' - is set to true. + description: Optional. A list of external network authorized to + access this instance. This field is only allowed to be set when + 'enablePublicIp' is set to true. items: properties: cidrRange: - description: CIDR range for one authorized network of the + description: CIDR range for one authorzied network of the instance. type: string type: object type: array enableOutboundPublicIp: - description: Enabling outbound public ip for the instance. + description: Optional. Enabling an outbound public IP address + to support a database server sending requests out into the internet. type: boolean enablePublicIp: - description: Enabling public ip for the instance. If a user wishes - to disable this, please also clear the list of the authorized - external networks set on the same instance. + description: Optional. Enabling public ip for the instance. If + a user wishes to disable this, please also clear the list of + the authorized external networks set on the same instance. type: boolean type: object readPoolConfig: @@ -4853,21 +4852,23 @@ spec: nodeCount: description: Read capacity, i.e. number of nodes in a read pool instance. + format: int32 type: integer type: object resourceID: - description: Immutable. Optional. The instanceId of the resource. - Used for creation and acquisition. When unset, the value of `metadata.name` - is used as the default. + description: Optional. The instanceId of the resource. If not given, + the metadata.name will be used. type: string required: - clusterRef type: object status: + description: AlloyDBInstanceStatus defines the config connector machine + state of AlloyDBInstance properties: conditions: - description: Conditions represent the latest available observation - of the resource's current state. + description: Conditions represent the latest available observations + of the object's current state. items: properties: lastTransitionTime: @@ -4894,6 +4895,10 @@ spec: createTime: description: Time the Instance was created in UTC. type: string + externalRef: + description: A unique specifier for the AlloyDBInstance resource in + GCP. + type: string ipAddress: description: The IP address for the Instance. This is the connection endpoint for an end-user application. @@ -4907,12 +4912,12 @@ spec: If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. + format: int64 type: integer outboundPublicIpAddresses: - description: |- - The outbound public IP addresses for the instance. This is available ONLY when - networkConfig.enableOutboundPublicIp is set to true. These IP addresses are used - for outbound connections. + description: The outbound public IP addresses for the instance. This + is available ONLY when networkConfig.enableOutboundPublicIp is set + to true. These IP addresses are used for outbound connections. items: type: string type: array @@ -4941,21 +4946,15 @@ spec: - spec type: object served: true - storage: true + storage: false subresources: status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -5151,7 +5150,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -5425,7 +5424,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -5584,7 +5583,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -5748,7 +5747,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -5921,7 +5920,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6065,7 +6064,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6195,13 +6194,11 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: alpha cnrm.cloud.google.com/system: "true" - cnrm.cloud.google.com/tf2crd: "true" name: apigeeenvgroups.apigee.cnrm.cloud.google.com spec: group: apigee.cnrm.cloud.google.com @@ -6209,6 +6206,7 @@ spec: categories: - gcp kind: ApigeeEnvgroup + listKind: ApigeeEnvgroupList plural: apigeeenvgroups shortNames: - gcpapigeeenvgroup @@ -6236,151 +6234,29 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: ApigeeEnvgroup is the Schema for the ApigeeEnvgroup API properties: apiVersion: - description: 'apiVersion defines the versioned schema of this representation + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: - description: 'kind is a string value representing the REST resource this + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: + description: ApigeeEnvgroupSpec defines the desired state of ApigeeEnvgroup properties: hostnames: - description: Hostnames of the environment group. + description: Host names for this environment group. items: type: string type: array - orgId: - description: |- - Immutable. The Apigee Organization associated with the Apigee environment group, - in the format 'organizations/{{org_name}}'. - type: string - resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. - type: string - required: - - orgId - type: object - status: - properties: - conditions: - description: Conditions represent the latest available observation - of the resource's current state. - items: - properties: - lastTransitionTime: - description: Last time the condition transitioned from one status - to another. - type: string - message: - description: Human-readable message indicating details about - last transition. - type: string - reason: - description: Unique, one-word, CamelCase reason for the condition's - last transition. - type: string - status: - description: Status is the status of the condition. Can be True, - False, Unknown. - type: string - type: - description: Type is the type of the condition. - type: string - type: object - type: array - observedGeneration: - description: ObservedGeneration is the generation of the resource - that was most recently observed by the Config Connector controller. - If this is equal to metadata.generation, then that means that the - current reported status reflects the most recent desired state of - the resource. - type: integer - type: object - required: - - spec - type: object - served: true - storage: true - subresources: - status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - cnrm.cloud.google.com/version: 1.125.0 - creationTimestamp: null - labels: - cnrm.cloud.google.com/dcl2crd: "true" - cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: stable - cnrm.cloud.google.com/system: "true" - name: apigeeenvironments.apigee.cnrm.cloud.google.com -spec: - group: apigee.cnrm.cloud.google.com - names: - categories: - - gcp - kind: ApigeeEnvironment - plural: apigeeenvironments - shortNames: - - gcpapigeeenvironment - - gcpapigeeenvironments - singular: apigeeenvironment - preserveUnknownFields: false - scope: Namespaced - versions: - - additionalPrinterColumns: - - jsonPath: .metadata.creationTimestamp - name: Age - type: date - - description: When 'True', the most recent reconcile of the resource succeeded - jsonPath: .status.conditions[?(@.type=='Ready')].status - name: Ready - type: string - - description: The reason for the value in 'Ready' - jsonPath: .status.conditions[?(@.type=='Ready')].reason - name: Status - type: string - - description: The last transition time for the value in 'Status' - jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime - name: Status Age - type: date - name: v1beta1 - schema: - openAPIV3Schema: - properties: - apiVersion: - description: 'apiVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' - type: string - kind: - description: 'kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' - type: string - metadata: - type: object - spec: - properties: - apigeeOrganizationRef: - description: Immutable. + organizationRef: oneOf: - not: required: @@ -6397,43 +6273,360 @@ spec: - external properties: external: - description: |- - The apigee organization for the resource - - Allowed value: The Google Cloud resource name of an `ApigeeOrganization` resource (format: `organizations/{{name}}`). + description: The ApigeeOrganization selfLink, when not managed + by Config Connector. type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The `name` field of an `ApigeeOrganization` resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The `namespace` field of an `ApigeeOrganization` + resource. type: string type: object - description: - description: Optional. Description of the environment. - type: string - displayName: - description: Optional. Display name for this environment. - type: string - properties: - additionalProperties: - type: string - description: Optional. Key-value pairs that may be used for customizing - the environment. - type: object resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. + description: The ApigeeEnvgroup name. If not given, the metadata.name + will be used. type: string required: - - apigeeOrganizationRef + - organizationRef type: object status: + description: ApigeeEnvgroupStatus defines the config connector machine + state of ApigeeEnvgroup properties: conditions: - description: Conditions represent the latest available observation - of the resource's current state. + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the ApigeeEnvgroup resource in + GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + createdAt: + description: Output only. The time at which the environment group + was created as milliseconds since epoch. + format: int64 + type: integer + lastModifiedAt: + description: Output only. The time at which the environment group + was last updated as milliseconds since epoch. + format: int64 + type: integer + name: + description: ID of the environment group. + type: string + state: + description: Output only. State of the environment group. Values + other than ACTIVE means the resource is not ready to use. + type: string + type: object + type: object + required: + - spec + type: object + served: true + storage: false + subresources: + status: {} + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + description: ApigeeEnvgroup is the Schema for the ApigeeEnvgroup API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: ApigeeEnvgroupSpec defines the desired state of ApigeeEnvgroup + properties: + hostnames: + description: Host names for this environment group. + items: + type: string + type: array + organizationRef: + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The ApigeeOrganization selfLink, when not managed + by Config Connector. + type: string + name: + description: The `name` field of an `ApigeeOrganization` resource. + type: string + namespace: + description: The `namespace` field of an `ApigeeOrganization` + resource. + type: string + type: object + resourceID: + description: The ApigeeEnvgroup name. If not given, the metadata.name + will be used. + type: string + required: + - organizationRef + type: object + status: + description: ApigeeEnvgroupStatus defines the config connector machine + state of ApigeeEnvgroup + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the ApigeeEnvgroup resource in + GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + createdAt: + description: Output only. The time at which the environment group + was created as milliseconds since epoch. + format: int64 + type: integer + lastModifiedAt: + description: Output only. The time at which the environment group + was last updated as milliseconds since epoch. + format: int64 + type: integer + name: + description: ID of the environment group. + type: string + state: + description: Output only. State of the environment group. Values + other than ACTIVE means the resource is not ready to use. + type: string + type: object + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/dcl2crd: "true" + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: stable + cnrm.cloud.google.com/system: "true" + name: apigeeenvironments.apigee.cnrm.cloud.google.com +spec: + group: apigee.cnrm.cloud.google.com + names: + categories: + - gcp + kind: ApigeeEnvironment + plural: apigeeenvironments + shortNames: + - gcpapigeeenvironment + - gcpapigeeenvironments + singular: apigeeenvironment + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + apigeeOrganizationRef: + description: Immutable. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: |- + The apigee organization for the resource + + Allowed value: The Google Cloud resource name of an `ApigeeOrganization` resource (format: `organizations/{{name}}`). + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + description: + description: Optional. Description of the environment. + type: string + displayName: + description: Optional. Display name for this environment. + type: string + properties: + additionalProperties: + type: string + description: Optional. Key-value pairs that may be used for customizing + the environment. + type: object + resourceID: + description: Immutable. Optional. The name of the resource. Used for + creation and acquisition. When unset, the value of `metadata.name` + is used as the default. + type: string + required: + - apigeeOrganizationRef + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. items: properties: lastTransitionTime: @@ -6498,7 +6691,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6628,7 +6821,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6804,7 +6997,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -6933,7 +7126,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -7227,7 +7420,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -7362,7 +7555,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -7614,7 +7807,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -7789,7 +7982,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -7922,7 +8115,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -8623,7 +8816,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -8773,7 +8966,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9224,7 +9417,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9591,7 +9784,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9793,7 +9986,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -9964,7 +10157,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -10144,7 +10337,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -10159,6 +10352,9 @@ spec: kind: BigQueryAnalyticsHubDataExchange listKind: BigQueryAnalyticsHubDataExchangeList plural: bigqueryanalyticshubdataexchanges + shortNames: + - gcpbigqueryanalyticshubdataexchange + - gcpbigqueryanalyticshubdataexchanges singular: bigqueryanalyticshubdataexchange preserveUnknownFields: false scope: Namespaced @@ -10508,7 +10704,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -10522,6 +10718,9 @@ spec: kind: BigQueryAnalyticsHubListing listKind: BigQueryAnalyticsHubListingList plural: bigqueryanalyticshublistings + shortNames: + - gcpbigqueryanalyticshublisting + - gcpbigqueryanalyticshublistings singular: bigqueryanalyticshublisting preserveUnknownFields: false scope: Namespaced @@ -10571,6 +10770,9 @@ spec: type: string type: array dataExchangeRef: + description: BigQueryAnalyticsHubDataExchangeRef defines the resource + reference to BigQueryAnalyticsHubDataExchange, which "External" + field holds the GCP identifier for the KRM object. oneOf: - not: required: @@ -10587,14 +10789,15 @@ spec: - external properties: external: - description: The DataExchange selfLink, when not managed by Config - Connector. + description: A reference to an externally managed BigQueryAnalyticsHubDataExchange + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/dataexchanges/{{dataexchangeID}}". type: string name: - description: The `name` field of a `DataExchange` resource. + description: The name of a BigQueryAnalyticsHubDataExchange resource. type: string namespace: - description: The `namespace` field of a `DataExchange` resource. + description: The namespace of a BigQueryAnalyticsHubDataExchange + resource. type: string type: object dataProvider: @@ -10733,27 +10936,15 @@ spec: properties: enabled: description: Optional. If true, enable restricted export. - properties: - value: - description: The bool value. - type: boolean - type: object + type: boolean restrictDirectTableAccess: description: Optional. If true, restrict direct table access (read api/tabledata.list) on linked table. - properties: - value: - description: The bool value. - type: boolean - type: object + type: boolean restrictQueryResult: description: Optional. If true, restrict export of query result derived from restricted linked dataset table. - properties: - value: - description: The bool value. - type: boolean - type: object + type: boolean type: object selectedResources: description: Optional. Resources in this dataset that are @@ -10762,10 +10953,37 @@ spec: for data clean room exchanges. items: properties: - table: - description: 'Optional. Format: For table: `projects/{projectId}/datasets/{datasetId}/tables/{tableId}` + tableRef: + description: 'Optional. A reference to a BigQueryTable. + Format: `projects/{projectId}/datasets/{datasetId}/tables/{tableId}` Example:"projects/test_project/datasets/test_dataset/tables/test_table"' - type: string + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: If provided must be in the format `projects/{projectId}/datasets/{datasetId}/tables/{tableId}`. + type: string + name: + description: The `metadata.name` field of a `BigQueryTable` + resource. + type: string + namespace: + description: The `metadata.namespace` field of a + `BigQueryTable` resource. + type: string + type: object type: object type: array required: @@ -10832,35 +11050,9 @@ spec: type: object type: object served: true - storage: true + storage: false subresources: status: {} ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - cnrm.cloud.google.com/version: 1.125.0 - creationTimestamp: null - labels: - cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/system: "true" - name: bigqueryconnectionconnections.bigqueryconnection.cnrm.cloud.google.com -spec: - group: bigqueryconnection.cnrm.cloud.google.com - names: - categories: - - gcp - kind: BigQueryConnectionConnection - listKind: BigQueryConnectionConnectionList - plural: bigqueryconnectionconnections - shortNames: - - gcpbigqueryconnectionconnection - - gcpbigqueryconnectionconnections - singular: bigqueryconnectionconnection - preserveUnknownFields: false - scope: Namespaced - versions: - additionalPrinterColumns: - jsonPath: .metadata.creationTimestamp name: Age @@ -10877,10 +11069,10 @@ spec: jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime name: Status Age type: date - name: v1alpha1 + name: v1beta1 schema: openAPIV3Schema: - description: BigQueryConnectionConnection is the Schema for the BigQueryConnectionConnection + description: BigQueryAnalyticsHubListing is the Schema for the BigQueryAnalyticsHubListing API properties: apiVersion: @@ -10896,220 +11088,574 @@ spec: metadata: type: object spec: - description: BigQueryConnectionConnectionSpec defines the desired state - to connect BigQuery to external resources + description: BigQueryAnalyticsHubListingSpec defines the desired state + of BigQueryAnalyticsHubDataExchangeListing properties: - aws: - description: Amazon Web Services (AWS) properties. - properties: - accessRole: - description: Authentication using Google owned service account - to assume into customer's AWS IAM Role. - properties: - iamRoleID: - description: The user’s AWS IAM Role that trusts the Google-owned - AWS IAM user Connection. - type: string + categories: + description: Optional. Categories of the listing. Up to two categories + are allowed. + items: + type: string + type: array + dataExchangeRef: + description: BigQueryAnalyticsHubDataExchangeRef defines the resource + reference to BigQueryAnalyticsHubDataExchange, which "External" + field holds the GCP identifier for the KRM object. + oneOf: + - not: required: - - iamRoleID - type: object - required: - - accessRole - type: object - azure: - description: Azure properties. + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external properties: - customerTenantID: - description: The id of customer's directory that host the data. + external: + description: A reference to an externally managed BigQueryAnalyticsHubDataExchange + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/dataexchanges/{{dataexchangeID}}". type: string - federatedApplicationClientID: - description: The client ID of the user's Azure Active Directory - Application used for a federated connection. + name: + description: The name of a BigQueryAnalyticsHubDataExchange resource. type: string - required: - - customerTenantID - type: object - cloudResource: - description: Use Cloud Resource properties. - type: object - cloudSQL: - description: Cloud SQL properties. - properties: - credential: - description: Cloud SQL credential. - properties: - secretRef: - description: The Kubernetes Secret object that stores the - "username" and "password" information. The Secret type has - to be `kubernetes.io/basic-auth`. - properties: - name: - description: The `metadata.name` field of a Kubernetes - `Secret` - type: string - namespace: - description: The `metadata.namespace` field of a Kubernetes - `Secret`. - type: string - required: - - name - type: object - type: object - databaseRef: - description: Reference to the SQL Database. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: The SQL Database name, when not managed by Config - Connector. - type: string - name: - description: The `name` field of a `SQLDatabase` resource. - type: string - namespace: - description: The `namespace` field of a `SQLDatabase` resource. - type: string - type: object - instanceRef: - description: Reference to the Cloud SQL instance ID. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: The SQLInstance selfLink, when not managed by - Config Connector. - type: string - name: - description: The `name` field of a `SQLInstance` resource. - type: string - namespace: - description: The `namespace` field of a `SQLInstance` resource. - type: string - type: object - type: - description: Type of the Cloud SQL database. + namespace: + description: The namespace of a BigQueryAnalyticsHubDataExchange + resource. type: string - required: - - credential - - databaseRef - - instanceRef - - type type: object - cloudSpanner: - description: Cloud Spanner properties. + dataProvider: + description: Optional. Details of the data provider who owns the source + data. properties: - databaseRef: - description: Reference to a spanner database ID. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: The Spanner Database selfLink, when not managed - by Config Connector. - type: string - name: - description: The `name` field of a `SpannerDatabase` resource. - type: string - namespace: - description: The `namespace` field of a `SpannerDatabase` - resource. - type: string - type: object - databaseRole: - description: |- - Optional. Cloud Spanner database role for fine-grained access control. - The Cloud Spanner admin should have provisioned the database role with - appropriate permissions, such as `SELECT` and `INSERT`. Other users should - only use roles provided by their Cloud Spanner admins. - - For more details, see [About fine-grained access control] - (https://cloud.google.com/spanner/docs/fgac-about). - - REQUIRES: The database role name must start with a letter, and can only - contain letters, numbers, and underscores. + name: + description: Optional. Name of the data provider. + type: string + primaryContact: + description: 'Optional. Email or URL of the data provider. Max + Length: 1000 bytes.' type: string - maxParallelism: - description: |- - Allows setting max parallelism per query when executing on Spanner - independent compute resources. If unspecified, default values of - parallelism are chosen that are dependent on the Cloud Spanner instance - configuration. - - REQUIRES: `use_parallelism` must be set. - REQUIRES: Either `use_data_boost` or `use_serverless_analytics` must be - set. - format: int32 - type: integer - useDataBoost: - description: |- - If set, the request will be executed via Spanner independent compute - resources. - REQUIRES: `use_parallelism` must be set. - - NOTE: `use_serverless_analytics` will be deprecated. Prefer - `use_data_boost` over `use_serverless_analytics`. - type: boolean - useParallelism: - description: If parallelism should be used when reading from Cloud - Spanner - type: boolean - useServerlessAnalytics: - description: 'If the serverless analytics service should be used - to read data from Cloud Spanner. Note: `use_parallelism` must - be set when using serverless analytics.' - type: boolean - required: - - databaseRef type: object description: - description: User provided description. + description: 'Optional. Short description of the listing. The description + must contain only Unicode characters or tabs (HT), new lines (LF), + carriage returns (CR), and page breaks (FF). Default value is an + empty string. Max length: 2000 bytes.' type: string - friendlyName: - description: User provided display name for the connection. + discoveryType: + description: Optional. Type of discovery of the listing on the discovery + page. + type: string + displayName: + description: 'Required. Human-readable display name of the listing. + The display name must contain only Unicode letters, numbers (0-9), + underscores (_), dashes (-), spaces ( ), ampersands (&) and can''t + start or end with spaces. Default value is an empty string. Max + length: 63 bytes.' + type: string + documentation: + description: Optional. Documentation describing the listing. type: string location: - description: Immutable. + description: Immutable. The name of the location this data exchange. + type: string + primaryContact: + description: 'Optional. Email or URL of the primary point of contact + of the listing. Max Length: 1000 bytes.' type: string - x-kubernetes-validations: - - message: Location field is immutable - rule: self == oldSelf + projectRef: + description: The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + publisher: + description: Optional. Details of the publisher who owns the listing + and who can share the source data. + properties: + name: + description: Optional. Name of the listing publisher. + type: string + primaryContact: + description: 'Optional. Email or URL of the listing publisher. + Max Length: 1000 bytes.' + type: string + type: object + requestAccess: + description: 'Optional. Email or URL of the request access of the + listing. Subscribers can use this reference to request access. Max + Length: 1000 bytes.' + type: string + resourceID: + description: Immutable. The BigQueryAnalyticsHubDataExchangeListing + name. If not given, the metadata.name will be used. + type: string + x-kubernetes-validations: + - message: ResourceID field is immutable + rule: self == oldSelf + source: + properties: + bigQueryDatasetSource: + description: One of the following fields must be set. + properties: + datasetRef: + description: Resource name of the dataset source for this + listing. e.g. `projects/myproject/datasets/123` + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: If provided must be in the format `projects/[project_id]/datasets/[dataset_id]`. + type: string + name: + description: The `metadata.name` field of a `BigQueryDataset` + resource. + type: string + namespace: + description: The `metadata.namespace` field of a `BigQueryDataset` + resource. + type: string + type: object + restrictedExportPolicy: + description: Optional. If set, restricted export policy will + be propagated and enforced on the linked dataset. + properties: + enabled: + description: Optional. If true, enable restricted export. + type: boolean + restrictDirectTableAccess: + description: Optional. If true, restrict direct table + access (read api/tabledata.list) on linked table. + type: boolean + restrictQueryResult: + description: Optional. If true, restrict export of query + result derived from restricted linked dataset table. + type: boolean + type: object + selectedResources: + description: Optional. Resources in this dataset that are + selectively shared. If this field is empty, then the entire + dataset (all resources) are shared. This field is only valid + for data clean room exchanges. + items: + properties: + tableRef: + description: 'Optional. A reference to a BigQueryTable. + Format: `projects/{projectId}/datasets/{datasetId}/tables/{tableId}` + Example:"projects/test_project/datasets/test_dataset/tables/test_table"' + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: If provided must be in the format `projects/{projectId}/datasets/{datasetId}/tables/{tableId}`. + type: string + name: + description: The `metadata.name` field of a `BigQueryTable` + resource. + type: string + namespace: + description: The `metadata.namespace` field of a + `BigQueryTable` resource. + type: string + type: object + type: object + type: array + required: + - datasetRef + type: object + type: object + required: + - dataExchangeRef + - displayName + - location + - projectRef + - source + type: object + status: + description: BigQueryAnalyticsHubListingStatus defines the config connector + machine state of BigQueryAnalyticsHubDataExchangeListing + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the BigQueryAnalyticsHubDataExchangeListing + resource in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + state: + description: Output only. Current state of the listing. + type: string + type: object + type: object + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/system: "true" + name: bigqueryconnectionconnections.bigqueryconnection.cnrm.cloud.google.com +spec: + group: bigqueryconnection.cnrm.cloud.google.com + names: + categories: + - gcp + kind: BigQueryConnectionConnection + listKind: BigQueryConnectionConnectionList + plural: bigqueryconnectionconnections + shortNames: + - gcpbigqueryconnectionconnection + - gcpbigqueryconnectionconnections + singular: bigqueryconnectionconnection + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: BigQueryConnectionConnection is the Schema for the BigQueryConnectionConnection + API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: BigQueryConnectionConnectionSpec defines the desired state + to connect BigQuery to external resources + properties: + aws: + description: Amazon Web Services (AWS) properties. + properties: + accessRole: + description: Authentication using Google owned service account + to assume into customer's AWS IAM Role. + properties: + iamRoleID: + description: The user’s AWS IAM Role that trusts the Google-owned + AWS IAM user Connection. + type: string + required: + - iamRoleID + type: object + required: + - accessRole + type: object + azure: + description: Azure properties. + properties: + customerTenantID: + description: The id of customer's directory that host the data. + type: string + federatedApplicationClientID: + description: The client ID of the user's Azure Active Directory + Application used for a federated connection. + type: string + required: + - customerTenantID + type: object + cloudResource: + description: Use Cloud Resource properties. + type: object + cloudSQL: + description: Cloud SQL properties. + properties: + credential: + description: Cloud SQL credential. + properties: + secretRef: + description: The Kubernetes Secret object that stores the + "username" and "password" information. The Secret type has + to be `kubernetes.io/basic-auth`. + properties: + name: + description: The `metadata.name` field of a Kubernetes + `Secret` + type: string + namespace: + description: The `metadata.namespace` field of a Kubernetes + `Secret`. + type: string + required: + - name + type: object + type: object + databaseRef: + description: Reference to the SQL Database. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The SQL Database name, when not managed by Config + Connector. + type: string + name: + description: The `name` field of a `SQLDatabase` resource. + type: string + namespace: + description: The `namespace` field of a `SQLDatabase` resource. + type: string + type: object + instanceRef: + description: Reference to the Cloud SQL instance ID. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The SQLInstance selfLink, when not managed by + Config Connector. + type: string + name: + description: The `name` field of a `SQLInstance` resource. + type: string + namespace: + description: The `namespace` field of a `SQLInstance` resource. + type: string + type: object + type: + description: Type of the Cloud SQL database. + type: string + required: + - credential + - databaseRef + - instanceRef + - type + type: object + cloudSpanner: + description: Cloud Spanner properties. + properties: + databaseRef: + description: Reference to a spanner database ID. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The Spanner Database selfLink, when not managed + by Config Connector. + type: string + name: + description: The `name` field of a `SpannerDatabase` resource. + type: string + namespace: + description: The `namespace` field of a `SpannerDatabase` + resource. + type: string + type: object + databaseRole: + description: |- + Optional. Cloud Spanner database role for fine-grained access control. + The Cloud Spanner admin should have provisioned the database role with + appropriate permissions, such as `SELECT` and `INSERT`. Other users should + only use roles provided by their Cloud Spanner admins. + + For more details, see [About fine-grained access control] + (https://cloud.google.com/spanner/docs/fgac-about). + + REQUIRES: The database role name must start with a letter, and can only + contain letters, numbers, and underscores. + type: string + maxParallelism: + description: |- + Allows setting max parallelism per query when executing on Spanner + independent compute resources. If unspecified, default values of + parallelism are chosen that are dependent on the Cloud Spanner instance + configuration. + + REQUIRES: `use_parallelism` must be set. + REQUIRES: Either `use_data_boost` or `use_serverless_analytics` must be + set. + format: int32 + type: integer + useDataBoost: + description: |- + If set, the request will be executed via Spanner independent compute + resources. + REQUIRES: `use_parallelism` must be set. + + NOTE: `use_serverless_analytics` will be deprecated. Prefer + `use_data_boost` over `use_serverless_analytics`. + type: boolean + useParallelism: + description: If parallelism should be used when reading from Cloud + Spanner + type: boolean + useServerlessAnalytics: + description: 'If the serverless analytics service should be used + to read data from Cloud Spanner. Note: `use_parallelism` must + be set when using serverless analytics.' + type: boolean + required: + - databaseRef + type: object + description: + description: User provided description. + type: string + friendlyName: + description: User provided display name for the connection. + type: string + location: + description: Immutable. + type: string + x-kubernetes-validations: + - message: Location field is immutable + rule: self == oldSelf projectRef: description: The Project that this resource belongs to. oneOf: @@ -11860,7 +12406,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12034,7 +12580,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12292,7 +12838,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12500,7 +13046,7 @@ spec: afterwards, and does not alter the existing tables. The following values are supported: - * 'und:ci': undetermined locale, case insensitive. + * 'und:ci': undetermined locale, case-insensitive. * '': empty string. Default to case-sensitive behavior. type: string defaultEncryptionConfiguration: @@ -12713,7 +13259,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -12727,6 +13273,9 @@ spec: kind: BigQueryDataTransferConfig listKind: BigQueryDataTransferConfigList plural: bigquerydatatransferconfigs + shortNames: + - gcpbigquerydatatransferconfig + - gcpbigquerydatatransferconfigs singular: bigquerydatatransferconfig preserveUnknownFields: false scope: Namespaced @@ -12943,12 +13492,9 @@ spec: type: string type: object resourceID: - description: Immutable. The BigQueryDataTransferConfig name. If not - given, the metadata.name will be used. + description: The BigQueryDataTransferConfig name. If not given, the + metadata.name will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf schedule: description: |- Data transfer schedule. @@ -13332,12 +13878,9 @@ spec: type: string type: object resourceID: - description: Immutable. The BigQueryDataTransferConfig name. If not - given, the metadata.name will be used. + description: The BigQueryDataTransferConfig name. If not given, the + metadata.name will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf schedule: description: |- Data transfer schedule. @@ -13378,6 +13921,85 @@ spec: transfer can be triggered manually is not limited by this option. type: string type: object + scheduleOptionsV2: + description: Options customizing different types of data transfer + schedule. This field replaces "schedule" and "schedule_options" + fields. ScheduleOptionsV2 cannot be used together with ScheduleOptions/Schedule. + properties: + eventDrivenSchedule: + description: Event driven transfer schedule options. If set, the + transfer will be scheduled upon events arrial. + properties: + pubSubSubscriptionRef: + description: Pub/Sub subscription used to receive events. + Only Google Cloud Storage data source support this option. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: If provided must be in the format `projects/[project_id]/subscriptions/[subscription_id]`. + type: string + name: + description: The `metadata.name` field of a `PubSubSubscription` + resource. + type: string + namespace: + description: The `metadata.namespace` field of a `PubSubSubscription` + resource. + type: string + type: object + type: object + manualSchedule: + description: Manual transfer schedule. If set, the transfer run + will not be auto-scheduled by the system, unless the client + invokes StartManualTransferRuns. This is equivalent to disable_auto_scheduling + = true. + type: object + timeBasedSchedule: + description: Time based transfer schedule options. This is the + default schedule option. + properties: + endTime: + description: Defines time to stop scheduling transfer runs. + A transfer run cannot be scheduled at or after the end time. + The end time can be changed at any moment. + type: string + schedule: + description: |- + Data transfer schedule. + If the data source does not support a custom schedule, this should be + empty. If it is empty, the default value for the data source will be used. + The specified times are in UTC. + Examples of valid format: + `1st,3rd monday of month 15:30`, + `every wed,fri of jan,jun 13:15`, and + `first sunday of quarter 00:00`. + See more explanation about the format here: + https://cloud.google.com/appengine/docs/flexible/python/scheduling-jobs-with-cron-yaml#the_schedule_format + + NOTE: The minimum interval time between recurring transfers depends on the + data source; refer to the documentation for your data source. + type: string + startTime: + description: Specifies time to start scheduling transfer runs. + The first run will be scheduled at or after the start time + according to a recurrence pattern defined in the schedule + string. The start time can be changed at any moment. + type: string + type: object + type: object serviceAccountRef: description: Service account email. If this field is set, the transfer config will be created with this service account's credentials. @@ -13467,6 +14089,22 @@ spec: description: Output only. Region in which BigQuery dataset is located. type: string + error: + description: Output only. Error code with detailed information + about reason of the latest config failure. + properties: + code: + description: The status code, which should be an enum value + of [google.rpc.Code][google.rpc.Code]. + format: int32 + type: integer + message: + description: A developer-facing error message, which should + be in English. Any user-facing error message should be localized + and sent in the [google.rpc.Status.details][google.rpc.Status.details] + field, or localized by the client. + type: string + type: object name: description: Identifier. The resource name of the transfer config. Transfer config names have the form either `projects/{project_id}/locations/{region}/transferConfigs/{config_id}` @@ -13514,7 +14152,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -14370,7 +15008,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -14557,7 +15195,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -14747,7 +15385,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -15009,7 +15647,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -15594,7 +16232,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -15782,7 +16420,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16003,7 +16641,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16235,7 +16873,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -16408,7 +17046,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -16867,7 +17505,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -17135,7 +17773,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -17560,7 +18198,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18001,7 +18639,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -18354,7 +18992,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19175,7 +19813,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19280,13 +19918,10 @@ spec: type: string type: object resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. + description: Optional. The name of the resource. Used for creation + and acquisition. When unset, the value of `metadata.name` is used + as the default. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - domain - projectRef @@ -19443,13 +20078,10 @@ spec: type: string type: object resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. + description: Optional. The name of the resource. Used for creation + and acquisition. When unset, the value of `metadata.name` is used + as the default. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - domain - projectRef @@ -19528,7 +20160,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19767,7 +20399,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -19998,7 +20630,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -20228,7 +20860,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21269,9 +21901,8 @@ spec: type: string type: array location: - description: |- - Immutable. The [Cloud Build location](https://cloud.google.com/build/docs/locations) for the trigger. - If not specified, "global" is used. + description: 'Immutable. The location of the Cloud Build trigger. + If not specified, "global" is used. More info: cloud.google.com/build/docs/locations.' type: string pubsubConfig: description: |- @@ -21736,7 +22367,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -21745,9 +22376,14 @@ metadata: spec: group: cloudbuild.cnrm.cloud.google.com names: + categories: + - gcp kind: CloudBuildWorkerPool listKind: CloudBuildWorkerPoolList plural: cloudbuildworkerpools + shortNames: + - gcpcloudbuildworkerpool + - gcpcloudbuildworkerpools singular: cloudbuildworkerpool preserveUnknownFields: false scope: Namespaced @@ -21805,7 +22441,7 @@ spec: properties: external: description: A reference to an externally managed Compute - Network resource. Should be in the format `projects//global/networks/`. + Network resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -22013,7 +22649,7 @@ spec: properties: external: description: A reference to an externally managed Compute - Network resource. Should be in the format `projects//global/networks/`. + Network resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -22197,7 +22833,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -22671,7 +23307,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -23103,7 +23739,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23301,7 +23937,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -23568,7 +24204,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -23963,7 +24599,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24142,7 +24778,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -24404,7 +25040,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -24942,7 +25578,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -25213,7 +25849,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -25484,7 +26120,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -25939,7 +26575,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -26209,7 +26845,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -26423,7 +27059,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -27703,7 +28339,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -27917,7 +28553,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -28094,7 +28730,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -28858,7 +29494,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -29009,7 +29645,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -29229,7 +29865,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -29421,10 +30057,9 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: - cnrm.cloud.google.com/dcl2crd: "true" cnrm.cloud.google.com/managed-by-kcc: "true" cnrm.cloud.google.com/stability-level: stable cnrm.cloud.google.com/system: "true" @@ -29521,14 +30156,14 @@ spec: properties: external: description: A reference to an externally managed ComputeFirewallPolicy - resource. Should be in the format `locations/global/firewallPolicies/`. + resource. Should be in the format `locations/global/firewallPolicies/{{firewallPolicyID}}`. type: string name: - description: The `name` field of a `ComputeFirewall olicy ` resource. + description: The `name` field of a `ComputeFirewallPolicy` resource. type: string namespace: - description: The `namespace` field of a `ComputeFirewallPolicy - ` resource. + description: The `namespace` field of a `ComputeFirewallPolicy` + resource. type: string type: object match: @@ -29655,7 +30290,7 @@ spec: properties: external: description: A reference to an externally managed Compute Network - resource. Should be in the format `projects//global/networks/`. + resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -29760,7 +30395,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -30138,7 +30773,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -30442,7 +31077,7 @@ spec: properties: external: description: A reference to an externally managed Compute Network - resource. Should be in the format `projects//global/networks/`. + resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -30909,7 +31544,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -31071,7 +31706,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -31229,7 +31864,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -31693,7 +32328,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -31854,7 +32489,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -32015,7 +32650,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -32373,7 +33008,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -33152,7 +33787,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -33334,7 +33969,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -33537,7 +34172,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -34570,7 +35205,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -35602,7 +36237,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -35927,7 +36562,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -36144,7 +36779,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -36489,7 +37124,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -36699,7 +37334,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -36911,7 +37546,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -37082,7 +37717,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -37288,7 +37923,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -37676,7 +38311,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -37857,7 +38492,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -38057,7 +38692,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -38231,7 +38866,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -38521,7 +39156,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -38702,7 +39337,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -38847,7 +39482,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -38976,7 +39611,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -39202,7 +39837,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -39602,7 +40237,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -39899,7 +40534,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -40017,7 +40652,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -40450,7 +41085,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -40627,7 +41262,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -40929,7 +41564,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -41226,7 +41861,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -41422,7 +42057,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -41636,7 +42271,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -41960,7 +42595,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42252,7 +42887,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -42709,7 +43344,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -43065,7 +43700,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -43292,7 +43927,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -43571,7 +44206,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -44192,7 +44827,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -44539,7 +45174,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -44645,7 +45280,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -44789,7 +45424,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45188,7 +45823,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45406,7 +46041,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45569,7 +46204,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -45863,7 +46498,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46041,7 +46676,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46220,7 +46855,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46281,7 +46916,7 @@ spec: description: |- URLs to certificate manager certificate resources that are used to authenticate connections between users and the load balancer. Currently, you may specify up to 15 certificates. Certificate manager certificates do not apply when the load balancing scheme is set to INTERNAL_SELF_MANAGED. - sslCertificates and certificateManagerCertificates fields can not be defined together. + sslCertificates and certificateManagerCertificates fields cannot be defined together. oneOf: - not: required: @@ -46317,7 +46952,7 @@ spec: can only be set for global target proxies. This field is only supported for EXTERNAL and EXTERNAL_MANAGED load balancing schemes. For INTERNAL_MANAGED, use certificateManagerCertificates instead. - sslCertificates and certificateMap fields can not be defined together. + sslCertificates and certificateMap fields cannot be defined together. oneOf: - not: required: @@ -46578,7 +47213,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -46803,7 +47438,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -47058,7 +47693,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -47317,7 +47952,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -47431,12 +48066,9 @@ spec: ["NONE", "PROXY_V1"].' type: string resourceID: - description: Immutable. The ComputeTargetTCPProxy name. If not given, - the metadata.name will be used. + description: The ComputeTargetTCPProxy name. If not given, the metadata.name + will be used. type: string - x-kubernetes-validations: - - message: ResourceID is immutable - rule: self == oldSelf required: - backendServiceRef type: object @@ -47505,7 +48137,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -47666,7 +48298,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -50389,7 +51021,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -50593,7 +51225,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -50965,7 +51597,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -51281,7 +51913,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -51870,7 +52502,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -52106,7 +52738,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -52374,12 +53006,9 @@ spec: type: string type: object resourceID: - description: Immutable, Optional. The ContainerAttachedCluster name. - If not given, the metadata.name will be used. + description: Optional. The ContainerAttachedCluster name. If not given, + the metadata.name will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - distribution - fleet @@ -52505,7 +53134,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -54380,7 +55009,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -55304,7 +55933,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -55576,7 +56205,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -55742,7 +56371,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -55938,7 +56567,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -56123,7 +56752,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -56355,7 +56984,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -56529,7 +57158,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -56670,7 +57299,7 @@ spec: properties: external: description: A reference to an externally managed Compute Network - resource. Should be in the format `projects//global/networks/`. + resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -56844,7 +57473,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -57130,7 +57759,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -57763,7 +58392,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -58042,7 +58671,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -58337,7 +58966,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -60152,7 +60781,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -62094,7 +62723,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -62266,7 +62895,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -62867,7 +63496,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -63060,7 +63689,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -63994,7 +64623,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -64209,7 +64838,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -64394,7 +65023,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -64608,7 +65237,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -64803,7 +65432,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -65353,7 +65982,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -65573,7 +66202,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -66671,7 +67300,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -66880,7 +67509,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -67074,7 +67703,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -67271,7 +67900,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -67508,7 +68137,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -67627,12 +68256,9 @@ spec: type: string type: object resourceID: - description: Immutable. The DiscoveryEngineDataStore name. If not - given, the metadata.name will be used. + description: The DiscoveryEngineDataStore name. If not given, the + metadata.name will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf solutionTypes: description: |- The solutions that the data store enrolls. Available solutions for each @@ -67748,9 +68374,522 @@ spec: type: string defaultSchemaID: description: Output only. The id of the default [Schema][google.cloud.discoveryengine.v1.Schema] - asscociated to this data store. + associated to this data store. + type: string + type: object + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/system: "true" + name: discoveryenginedatastoretargetsites.discoveryengine.cnrm.cloud.google.com +spec: + group: discoveryengine.cnrm.cloud.google.com + names: + categories: + - gcp + kind: DiscoveryEngineDataStoreTargetSite + listKind: DiscoveryEngineDataStoreTargetSiteList + plural: discoveryenginedatastoretargetsites + shortNames: + - gcpdiscoveryenginedatastoretargetsite + - gcpdiscoveryenginedatastoretargetsites + singular: discoveryenginedatastoretargetsite + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: DiscoveryEngineDataStoreTargetSite is the Schema for the DiscoveryEngineDataStoreTargetSite + API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: DiscoveryEngineDataStoreTargetSiteSpec defines the desired + state of DiscoveryEngineDataStoreTargetSite + properties: + dataStoreRef: + description: The DataStore this target site should be part of. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed DiscoveryEngineDataStore + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/datastores/{{datastoreID}}". + type: string + name: + description: The name of a DiscoveryEngineDataStore resource. + type: string + namespace: + description: The namespace of a DiscoveryEngineDataStore resource. + type: string + type: object + exactMatch: + description: Input only. If set to false, a uri_pattern is generated + to include all pages whose address contains the provided_uri_pattern. + If set to true, an uri_pattern is generated to try to be an exact + match of the provided_uri_pattern or just the specific page if the + provided_uri_pattern is a specific one. provided_uri_pattern is + always normalized to generate the URI pattern to be used by the + search engine. + type: boolean + providedURIPattern: + description: Required. Input only. The user provided URI pattern from + which the `generated_uri_pattern` is generated. + type: string + type: + description: The type of the target site, e.g., whether the site is + to be included or excluded. + type: string + type: object + status: + description: DiscoveryEngineDataStoreTargetSiteStatus defines the config + connector machine state of DiscoveryEngineDataStoreTargetSite + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the DiscoveryEngineDataStoreTargetSite + resource in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + failureReason: + description: Output only. Failure reason. + properties: + quotaFailure: + description: Failed due to insufficient quota. + properties: + totalRequiredQuota: + description: This number is an estimation on how much + total quota this project needs to successfully complete + indexing. + format: int64 + type: integer + type: object + type: object + generatedURIPattern: + description: Output only. This is system-generated based on the + provided_uri. + type: string + indexingStatus: + description: Output only. Indexing status. + type: string + rootDomainURI: + description: Output only. Root domain of the provided_uri. + type: string + siteVerificationInfo: + description: Output only. Site ownership and validity verification + status. + properties: + siteVerificationState: + description: Site verification state indicating the ownership + and validity. + type: string + verifyTime: + description: Latest site verification time. + type: string + type: object + updateTime: + description: Output only. The target site's last updated time. + type: string + type: object + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/system: "true" + name: discoveryengineengines.discoveryengine.cnrm.cloud.google.com +spec: + group: discoveryengine.cnrm.cloud.google.com + names: + categories: + - gcp + kind: DiscoveryEngineEngine + listKind: DiscoveryEngineEngineList + plural: discoveryengineengines + shortNames: + - gcpdiscoveryengineengine + - gcpdiscoveryengineengines + singular: discoveryengineengine + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: DiscoveryEngineEngine is the Schema for the DiscoveryEngineEngine + API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: DiscoveryEngineEngineSpec defines the desired state of DiscoveryEngineEngine + properties: + chatEngineConfig: + description: Configurations for the Chat Engine. Only applicable if + solution_type is SOLUTION_TYPE_CHAT. + properties: + agentCreationConfig: + description: |- + The configurationt generate the Dialogflow agent that is associated to + this Engine. + + Note that these configurations are one-time consumed by + and passed to Dialogflow service. It means they cannot be retrieved using + [EngineService.GetEngine][google.cloud.discoveryengine.v1.EngineService.GetEngine] + or + [EngineService.ListEngines][google.cloud.discoveryengine.v1.EngineService.ListEngines] + API after engine creation. + properties: + business: + description: Name of the company, organization or other entity + that the agent represents. Used for knowledge connector + LLM prompt and for knowledge search. + type: string + defaultLanguageCode: + description: Required. The default language of the agent as + a language tag. See [Language Support](https://cloud.google.com/dialogflow/docs/reference/language) + for a list of the currently supported language codes. + type: string + location: + description: 'Agent location for Agent creation, supported + values: global/us/eu. If not provided, us Engine will create + Agent using us-central-1 by default; eu Engine will create + Agent using eu-west-1 by default.' + type: string + timeZone: + description: Required. The time zone of the agent from the + [time zone database](https://www.iana.org/time-zones), e.g., + America/New_York, Europe/Paris. + type: string + type: object + dialogflowAgentToLink: + description: |- + The resource name of an exist Dialogflow agent to link to this Chat + Engine. Customers can either provide `agent_creation_config` to create + agent or provide an agent name that links the agent with the Chat engine. + + Format: `projects//locations//agents/`. + + Note that the `dialogflow_agent_to_link` are one-time consumed by and + passed to Dialogflow service. It means they cannot be retrieved using + [EngineService.GetEngine][google.cloud.discoveryengine.v1.EngineService.GetEngine] + or + [EngineService.ListEngines][google.cloud.discoveryengine.v1.EngineService.ListEngines] + API after engine creation. Use + [ChatEngineMetadata.dialogflow_agent][google.cloud.discoveryengine.v1.Engine.ChatEngineMetadata.dialogflow_agent] + for actual agent association after Engine is created. + type: string + type: object + collection: + description: Immutable. The collection for the Engine. + type: string + commonConfig: + description: Common config spec that specifies the metadata of the + engine. + properties: + companyName: + description: The name of the company, business or entity that + is associated with the engine. Setting this may help improve + LLM related features. + type: string + type: object + dataStoreRefs: + description: The data stores associated with this engine. For SOLUTION_TYPE_SEARCH + and SOLUTION_TYPE_RECOMMENDATION type of engines, they can only + associate with at most one data store. If solution_type is SOLUTION_TYPE_CHAT, + multiple DataStores in the same Collection can be associated here. + Note that when used in CreateEngineRequest, one DataStore must be + provided as the system will use it for necessary initializations. + items: + description: DiscoveryEngineDataStoreRef defines the resource reference + to DiscoveryEngineDataStore, which "External" field holds the + GCP identifier for the KRM object. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed DiscoveryEngineDataStore + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/datastores/{{datastoreID}}". + type: string + name: + description: The name of a DiscoveryEngineDataStore resource. + type: string + namespace: + description: The namespace of a DiscoveryEngineDataStore resource. + type: string + type: object + type: array + disableAnalytics: + description: Optional. Whether to disable analytics for searches performed + on this engine. + type: boolean + displayName: + description: Required. The display name of the engine. Should be human + readable. UTF-8 encoded string with limit of 1024 characters. + type: string + industryVertical: + description: 'The industry vertical that the engine registers. The + restriction of the Engine industry vertical is based on DataStore: + If unspecified, default to `GENERIC`. Vertical on Engine has to + match vertical of the DataStore linked to the engine.' + type: string + location: + description: Immutable. Location of the resource. + type: string + projectRef: + description: Immutable. The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + resourceID: + description: Immutable. The DiscoveryEngineChatEngine name. If not + given, the metadata.name will be used. + type: string + searchEngineConfig: + description: Configurations for the Search Engine. Only applicable + if solution_type is SOLUTION_TYPE_SEARCH. + properties: + searchAddOns: + description: The add-on that this search engine enables. + items: + type: string + type: array + searchTier: + description: |- + The search feature tier of this engine. + + Different tiers might have different + pricing. To learn more, check the pricing documentation. + + Defaults to + [SearchTier.SEARCH_TIER_STANDARD][google.cloud.discoveryengine.v1.SearchTier.SEARCH_TIER_STANDARD] + if not specified. type: string type: object + solutionType: + description: Required. The solutions of the engine. + type: string + required: + - collection + - displayName + - location + - projectRef + - solutionType + type: object + status: + description: DiscoveryEngineEngineStatus defines the config connector + machine state of DiscoveryEngineEngine + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the DiscoveryEngineEngine resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + type: object type: object required: - spec @@ -67764,7 +68903,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -71940,7 +73079,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -72552,7 +73691,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -74028,7 +75167,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -74399,7 +75538,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74784,7 +75923,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -74980,7 +76119,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -75952,7 +77091,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76131,7 +77270,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76327,7 +77466,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76450,7 +77589,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -76615,7 +77754,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -77151,7 +78290,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -77402,7 +78541,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -77641,7 +78780,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -77821,7 +78960,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -78045,7 +79184,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -78187,7 +79326,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -78733,7 +79872,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -78955,7 +80094,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -79284,7 +80423,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -79453,7 +80592,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -79640,7 +80779,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -79817,7 +80956,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -79961,7 +81100,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -80124,7 +81263,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -80276,7 +81415,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -80424,7 +81563,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -80571,7 +81710,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -80585,6 +81724,9 @@ spec: kind: FirestoreDatabase listKind: FirestoreDatabaseList plural: firestoredatabases + shortNames: + - gcpfirestoredatabase + - gcpfirestoredatabases singular: firestoredatabase preserveUnknownFields: false scope: Namespaced @@ -80781,6 +81923,201 @@ spec: type: object type: object served: true + storage: false + subresources: + status: {} + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + description: FirestoreDatabase is the Schema for the FirestoreDatabase API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: FirestoreDatabaseSpec defines the desired state of FirestoreDatabase + properties: + concurrencyMode: + description: The concurrency control mode to use for this database. + See https://cloud.google.com/firestore/docs/reference/rest/v1/projects.databases#concurrencymode + for more info. + type: string + locationID: + description: The location of the database. Available locations are + listed at https://cloud.google.com/firestore/docs/locations. + type: string + pointInTimeRecoveryEnablement: + description: Whether to enable the PITR feature on this database. + See https://cloud.google.com/firestore/docs/reference/rest/v1/projects.databases#pointintimerecoveryenablement + for more info. + type: string + projectRef: + description: Immutable. The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + resourceID: + description: The FirestoreDatabase name. If not given, the metadata.name + will be used. + type: string + required: + - projectRef + type: object + status: + description: FirestoreDatabaseStatus defines the config connector machine + state of FirestoreDatabase + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the FirestoreDatabase resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + createTime: + description: Output only. The timestamp at which this database + was created. Databases created before 2016 do not populate create_time. + type: string + earliestVersionTime: + description: |- + Output only. The earliest timestamp at which older versions of the data can + be read from the database. See [version_retention_period] above; this field + is populated with `now - version_retention_period`. + + This value is continuously updated, and becomes stale the moment it is + queried. If you are using this value to recover data, make sure to account + for the time from the moment when the value is queried to the moment when + you initiate the recovery. + type: string + etag: + description: This checksum is computed by the server based on + the value of other fields, and may be sent on update and delete + requests to ensure the client has an up-to-date value before + proceeding. + type: string + keyPrefix: + description: |- + Output only. The key_prefix for this database. This key_prefix is used, in + combination with the project id ("~") to construct + the application id that is returned from the Cloud Datastore APIs in Google + App Engine first generation runtimes. + + This value may be empty in which case the appid to use for URL-encoded keys + is the project_id (eg: foo instead of v~foo). + type: string + uid: + description: Output only. The system-generated UUID4 for this + Database. + type: string + updateTime: + description: Output only. The timestamp at which this database + was most recently updated. Note this only includes updates to + the database resource and not data contained by the database. + type: string + versionRetentionPeriod: + description: |- + Output only. The period during which past versions of data are retained in + the database. + + Any [read][google.firestore.v1.GetDocumentRequest.read_time] + or [query][google.firestore.v1.ListDocumentsRequest.read_time] can specify + a `read_time` within this window, and will read the state of the database + at that time. + + If the PITR feature is enabled, the retention period is 7 days. Otherwise, + the retention period is 1 hour. + type: string + type: object + type: object + type: object + served: true storage: true subresources: status: {} @@ -80789,7 +82126,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -80943,7 +82280,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -81156,7 +82493,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -81453,10 +82790,9 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: - cnrm.cloud.google.com/dcl2crd: "true" cnrm.cloud.google.com/managed-by-kcc: "true" cnrm.cloud.google.com/stability-level: stable cnrm.cloud.google.com/system: "true" @@ -81678,6 +83014,12 @@ spec: description: Specifies whether the Config Sync Repo is in "hierarchical" or "unstructured" mode. type: string + stopSyncing: + description: 'Set to true to stop syncing configurations for + a single cluster. This field is only available on clusters + using Config Sync auto-upgrades or on Config Sync version + 1.20.0 or later. Defaults: false.' + type: boolean type: object hierarchyController: description: Hierarchy Controller is no longer available. Use @@ -81695,6 +83037,13 @@ spec: cluster. type: boolean type: object + management: + description: Optional. Whether to automatically manage the configmanagement + Feature. There are 3 accepted values. MANAGEMENT_UNSPECIFIED + means that the mamangement mode is unspecified. MANAGEMENT_AUTOMATIC + means that Google manages the Feature for the cluster. MANAGEMENT_MANUAL + means that users should manage the Feature for the cluster. + type: string policyController: description: '**DEPRECATED** Configuring Policy Controller through the configmanagement feature is no longer recommended. Use the @@ -81993,7 +83342,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -82259,7 +83608,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -82624,7 +83973,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -82757,7 +84106,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -82915,7 +84264,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -83077,7 +84426,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -83391,7 +84740,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -83592,7 +84941,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -83793,7 +85142,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -83893,7 +85242,7 @@ spec: ''allServices'' and a specific service, then the union of the two audit configs is used for that service: the ''logTypes'' specified in each ''auditLogConfig'' are enabled, and the ''exemptedMembers'' - in each ''auditLogConfg'' are exempted.' + in each ''auditLogConfig'' are exempted.' type: string required: - auditLogConfigs @@ -83954,7 +85303,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -84094,7 +85443,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -84188,6 +85537,8 @@ spec: Exactly one of 'member' or 'memberFrom' must be used, and only one subfield within 'memberFrom' can be used. oneOf: + - required: + - bigQueryConnectionConnectionRef - required: - logSinkRef - required: @@ -84197,6 +85548,34 @@ spec: - required: - sqlInstanceRef properties: + bigQueryConnectionConnectionRef: + description: BigQueryConnectionConnection whose service + account is to be bound to the role. Use the Type + field to specifie the connection type. For "spark" + connetion, the service account is in `status.observedState.spark.serviceAccountID`. + For "cloudSQL" connection, the service account is + in `status.observedState.cloudSQL.serviceAccountID`. + For "cloudResource" connection, the service account + is in `status.observedState.cloudResource.serviceAccountID`. + properties: + name: + type: string + namespace: + type: string + type: + description: Type field specifies the connection + type of the BigQueryConnectionConnection resource, + whose service account is to be bound to the + role. + enum: + - spark + - cloudSQL + - cloudResource + type: string + required: + - name + - type + type: object logSinkRef: description: The LoggingLogSink whose writer identity (i.e. its 'status.writerIdentity') is to be bound @@ -84419,7 +85798,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -84509,7 +85888,7 @@ spec: both ''allServices'' and a specific service, then the union of the two audit configs is used for that service: the ''logTypes'' specified in each ''auditLogConfig'' are enabled, and the - ''exemptedMembers'' in each ''auditLogConfg'' are exempted.' + ''exemptedMembers'' in each ''auditLogConfig'' are exempted.' type: string required: - auditLogConfigs @@ -84647,7 +86026,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -84730,6 +86109,8 @@ spec: Exactly one of 'member' or 'memberFrom' must be used, and only one subfield within 'memberFrom' can be used. oneOf: + - required: + - bigQueryConnectionConnectionRef - required: - logSinkRef - required: @@ -84739,6 +86120,31 @@ spec: - required: - sqlInstanceRef properties: + bigQueryConnectionConnectionRef: + description: BigQueryConnectionConnection whose service account + is to be bound to the role. Use the Type field to specifie the + connection type. For "spark" connetion, the service account + is in `status.observedState.spark.serviceAccountID`. For "cloudSQL" + connection, the service account is in `status.observedState.cloudSQL.serviceAccountID`. + For "cloudResource" connection, the service account is in `status.observedState.cloudResource.serviceAccountID`. + properties: + name: + type: string + namespace: + type: string + type: + description: Type field specifies the connection type of the + BigQueryConnectionConnection resource, whose service account + is to be bound to the role. + enum: + - spark + - cloudSQL + - cloudResource + type: string + required: + - name + - type + type: object logSinkRef: description: The LoggingLogSink whose writer identity (i.e. its 'status.writerIdentity') is to be bound to the role. @@ -84887,7 +86293,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -85066,7 +86472,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -85208,7 +86614,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -85566,7 +86972,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -85747,7 +87153,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -86043,7 +87449,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -86210,7 +87616,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -86336,7 +87742,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -86490,7 +87896,299 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/system: "true" + name: iapsettings.iap.cnrm.cloud.google.com +spec: + group: iap.cnrm.cloud.google.com + names: + categories: + - gcp + kind: IAPSettings + listKind: IAPSettingsList + plural: iapsettings + shortNames: + - gcpiapsettings + - gcpiapsettingss + singular: iapsettings + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: IAPSettings is the Schema for the IAPSettings API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: IAPSettingsSpec defines the desired state of IAPSettings + properties: + accessSettings: + description: Top level wrapper for all access related setting in IAP + properties: + allowedDomainsSettings: + description: Settings to configure and enable allowed domains. + properties: + domains: + description: List of trusted domains. + items: + type: string + type: array + enable: + description: Configuration for customers to opt in for the + feature. + type: boolean + type: object + corsSettings: + description: Configuration to allow cross-origin requests via + IAP. + properties: + allowHTTPOptions: + description: Configuration to allow HTTP OPTIONS calls to + skip authorization. If undefined, IAP will not apply any + special logic to OPTIONS requests. + type: boolean + type: object + gcipSettings: + description: GCIP claims and endpoint configurations for 3p identity + providers. + properties: + loginPageURI: + description: Login page URI associated with the GCIP tenants. + Typically, all resources within the same project share the + same login page, though it could be overridden at the sub + resource level. + type: string + tenantIds: + description: GCIP tenant ids that are linked to the IAP resource. + tenant_ids could be a string beginning with a number character + to indicate authenticating with GCIP tenant flow, or in + the format of _ to indicate authenticating + with GCIP agent flow. If agent flow is used, tenant_ids + should only contain one single element, while for tenant + flow, tenant_ids can contain multiple elements. + items: + type: string + type: array + type: object + oauthSettings: + description: Settings to configure IAP's OAuth behavior. + properties: + loginHint: + description: 'Domain hint to send as hd=? parameter in OAuth + request flow. Enables redirect to primary IDP by skipping + Google''s login screen. https://developers.google.com/identity/protocols/OpenIDConnect#hd-param + Note: IAP does not verify that the id token''s hd claim + matches this value since access behavior is managed by IAM + policies.' + type: string + programmaticClients: + description: List of OAuth client IDs allowed to programmatically + authenticate with IAP. + items: + type: string + type: array + type: object + reauthSettings: + description: Settings to configure reauthentication policies in + IAP. + properties: + maxAge: + description: Reauth session lifetime, how long before a user + has to reauthenticate again. + type: string + method: + description: Reauth method requested. + type: string + policyType: + description: How IAP determines the effective policy in cases + of hierarchial policies. Policies are merged from higher + in the hierarchy to lower in the hierarchy. + type: string + type: object + type: object + applicationSettings: + description: Top level wrapper for all application related settings + in IAP + properties: + accessDeniedPageSettings: + description: Customization for Access Denied page. + properties: + accessDeniedPageURI: + description: The URI to be redirected to when access is denied. + type: string + generateTroubleshootingURI: + description: Whether to generate a troubleshooting URL on + access denied events to this application. + type: boolean + remediationTokenGenerationEnabled: + description: Whether to generate remediation token on access + denied events to this application. + type: boolean + type: object + attributePropagationSettings: + description: Settings to configure attribute propagation. + properties: + enable: + description: Whether the provided attribute propagation settings + should be evaluated on user requests. If set to true, attributes + returned from the expression will be propagated in the set + output credentials. + type: boolean + expression: + description: |- + Raw string CEL expression. Must return a list of attributes. A maximum of + 45 attributes can be selected. Expressions can select different attribute + types from `attributes`: `attributes.saml_attributes`, + `attributes.iap_attributes`. The following functions are supported: + + - filter `.filter(, )`: Returns a subset of + `` where `` is true for every item. + + - in ` in `: Returns true if `` contains ``. + + - selectByName `.selectByName()`: Returns the attribute + in + `` with the given `` name, otherwise returns empty. + + - emitAs `.emitAs()`: Sets the `` name + field to the given `` for propagation in selected output + credentials. + + - strict `.strict()`: Ignores the `x-goog-iap-attr-` prefix + for the provided `` when propagating with the `HEADER` output + credential, such as request headers. + + - append `.append()` OR + `.append()`: Appends the provided `` or + `` to the end of ``. + + Example expression: `attributes.saml_attributes.filter(x, x.name in + ['test']).append(attributes.iap_attributes.selectByName('exact').emitAs('custom').strict())` + type: string + outputCredentials: + description: Which output credentials attributes selected + by the CEL expression should be propagated in. All attributes + will be fully duplicated in each selected output credential. + items: + type: string + type: array + type: object + cookieDomain: + description: The Domain value to set for cookies generated by + IAP. This value is not validated by the API, but will be ignored + at runtime if invalid. + type: string + csmSettings: + description: Settings to configure IAP's behavior for a service + mesh. + properties: + rctokenAud: + description: Audience claim set in the generated RCToken. + This value is not validated by IAP. + type: string + type: object + type: object + name: + description: 'Required. The resource name of the IAP protected resource. + The name could have the following format: organizations/{organization_id} + folders/{folder_id} projects/{projects_id} projects/{projects_id}/iap_web + projects/{projects_id}/iap_web/compute projects/{projects_id}/iap_web/compute-{region} + projects/{projects_id}/iap_web/compute/service/{service_id} projects/{projects_id}/iap_web/compute-{region}/service/{service_id} + projects/{projects_id}/iap_web/appengine-{app_id} projects/{projects_id}/iap_web/appengine-{app_id}/service/{service_id} + projects/{projects_id}/iap_web/appengine-{app_id}/service/{service_id}/version/{version_id}' + type: string + resourceID: + description: The IAPSettings name. + type: string + required: + - name + type: object + status: + description: IAPSettingsStatus defines the config connector machine state + of IAPSettings + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the IAPSettings resource in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -87182,7 +88880,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -87341,7 +89039,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -87546,7 +89244,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -87729,7 +89427,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -87953,7 +89651,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -88117,7 +89815,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -88330,7 +90028,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -88547,7 +90245,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -88700,10 +90398,11 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: beta cnrm.cloud.google.com/system: "true" name: kmsautokeyconfigs.kms.cnrm.cloud.google.com spec: @@ -88880,6 +90579,168 @@ spec: type: object type: object served: true + storage: false + subresources: + status: {} + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + description: KMSAutokeyConfig is the Schema for the KMSAutokeyConfig API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: KMSAutokeyConfigSpec defines the desired state of KMSAutokeyConfig + properties: + folderRef: + description: Immutable. The folder that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The 'name' field of a folder, when not managed by + Config Connector. This field must be set when 'name' field is + not set. + type: string + name: + description: The 'name' field of a 'Folder' resource. This field + must be set when 'external' field is not set. + type: string + namespace: + description: The 'namespace' field of a 'Folder' resource. If + unset, the namespace is defaulted to the namespace of the referencer + resource. + type: string + type: object + keyProject: + description: The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - kind + - not: + anyOf: + - required: + - name + - required: + - namespace + - required: + - kind + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + required: + - folderRef + type: object + status: + description: KMSAutokeyConfigStatus defines the config connector machine + state of KMSAutokeyConfig + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the KMSAutokeyConfig resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + state: + description: Output only. Current state of this AutokeyConfig. + type: string + type: object + type: object + type: object + served: true storage: true subresources: status: {} @@ -88888,7 +90749,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -89081,7 +90942,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -89270,10 +91131,11 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: beta cnrm.cloud.google.com/system: "true" name: kmskeyhandles.kms.cnrm.cloud.google.com spec: @@ -89363,12 +91225,12 @@ spec: type: string type: object resourceID: - description: Immutable. The KMSKeyHandle name. If not given, the metadata.name - will be used. + description: 'The KMS Key Handle ID used for resource creation or + acquisition. For creation: If specified, this value is used as the + key handle ID. If not provided, a UUID will be generated and assigned + as the key handle ID. For acquisition: This field must be provided + to identify the key handle resource to acquire.' type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf resourceTypeSelector: description: Indicates the resource type that the resulting [CryptoKey][] is meant to protect, e.g. `{SERVICE}.googleapis.com/{TYPE}`. See @@ -89428,36 +91290,9 @@ spec: - spec type: object served: true - storage: true + storage: false subresources: status: {} ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - cnrm.cloud.google.com/version: 1.125.0 - creationTimestamp: null - labels: - cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: alpha - cnrm.cloud.google.com/system: "true" - cnrm.cloud.google.com/tf2crd: "true" - name: kmskeyringimportjobs.kms.cnrm.cloud.google.com -spec: - group: kms.cnrm.cloud.google.com - names: - categories: - - gcp - kind: KMSKeyRingImportJob - plural: kmskeyringimportjobs - shortNames: - - gcpkmskeyringimportjob - - gcpkmskeyringimportjobs - singular: kmskeyringimportjob - preserveUnknownFields: false - scope: Namespaced - versions: - additionalPrinterColumns: - jsonPath: .metadata.creationTimestamp name: Age @@ -89474,75 +91309,242 @@ spec: jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime name: Status Age type: date - name: v1alpha1 + name: v1beta1 schema: openAPIV3Schema: + description: KMSKeyHandle is the Schema for the KMSKeyHandle API properties: apiVersion: - description: 'apiVersion defines the versioned schema of this representation + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: - description: 'kind is a string value representing the REST resource this + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: + description: KMSKeyHandleSpec defines the desired state of KMSKeyHandle properties: - importJobId: - description: Immutable. It must be unique within a KeyRing and match - the regular expression [a-zA-Z0-9_-]{1,63}. - type: string - importMethod: - description: 'Immutable. The wrapping method to be used for incoming - key material. Possible values: ["RSA_OAEP_3072_SHA1_AES_256", "RSA_OAEP_4096_SHA1_AES_256"].' - type: string - keyRing: - description: |- - Immutable. The KeyRing that this import job belongs to. - Format: ''projects/{{project}}/locations/{{location}}/keyRings/{{keyRing}}''. - type: string - protectionLevel: - description: |- - Immutable. The protection level of the ImportJob. This must match the protectionLevel of the - versionTemplate on the CryptoKey you attempt to import into. Possible values: ["SOFTWARE", "HSM", "EXTERNAL"]. + location: + description: Location name to create KeyHandle type: string + projectRef: + description: Project hosting KMSKeyHandle + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object resourceID: - description: Immutable. Optional. The service-generated name of the - resource. Used for acquisition only. Leave unset to create a new - resource. + description: 'The KMS Key Handle ID used for resource creation or + acquisition. For creation: If specified, this value is used as the + key handle ID. If not provided, a UUID will be generated and assigned + as the key handle ID. For acquisition: This field must be provided + to identify the key handle resource to acquire.' + type: string + resourceTypeSelector: + description: Indicates the resource type that the resulting [CryptoKey][] + is meant to protect, e.g. `{SERVICE}.googleapis.com/{TYPE}`. See + documentation for supported resource types https://cloud.google.com/kms/docs/autokey-overview#compatible-services. type: string - required: - - importJobId - - importMethod - - keyRing - - protectionLevel type: object status: + description: KMSKeyHandleStatus defines the config connector machine state + of KMSKeyHandle properties: - attestation: - description: |- - Statement that was generated and signed by the key creator (for example, an HSM) at key creation time. - Use this statement to verify attributes of the key as stored on the HSM, independently of Google. - Only present if the chosen ImportMethod is one with a protection level of HSM. - items: - properties: - content: - description: |- - The attestation data provided by the HSM when the key operation was performed. - A base64-encoded string. - type: string - format: - description: The format of the attestation data. - type: string - type: object - type: array conditions: - description: Conditions represent the latest available observation - of the resource's current state. + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the KMSKeyHandle resource in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + kmsKey: + type: string + type: object + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: kmskeyringimportjobs.kms.cnrm.cloud.google.com +spec: + group: kms.cnrm.cloud.google.com + names: + categories: + - gcp + kind: KMSKeyRingImportJob + plural: kmskeyringimportjobs + shortNames: + - gcpkmskeyringimportjob + - gcpkmskeyringimportjobs + singular: kmskeyringimportjob + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + importJobId: + description: Immutable. It must be unique within a KeyRing and match + the regular expression [a-zA-Z0-9_-]{1,63}. + type: string + importMethod: + description: 'Immutable. The wrapping method to be used for incoming + key material. Possible values: ["RSA_OAEP_3072_SHA1_AES_256", "RSA_OAEP_4096_SHA1_AES_256"].' + type: string + keyRing: + description: |- + Immutable. The KeyRing that this import job belongs to. + Format: ''projects/{{project}}/locations/{{location}}/keyRings/{{keyRing}}''. + type: string + protectionLevel: + description: |- + Immutable. The protection level of the ImportJob. This must match the protectionLevel of the + versionTemplate on the CryptoKey you attempt to import into. Possible values: ["SOFTWARE", "HSM", "EXTERNAL"]. + type: string + resourceID: + description: Immutable. Optional. The service-generated name of the + resource. Used for acquisition only. Leave unset to create a new + resource. + type: string + required: + - importJobId + - importMethod + - keyRing + - protectionLevel + type: object + status: + properties: + attestation: + description: |- + Statement that was generated and signed by the key creator (for example, an HSM) at key creation time. + Use this statement to verify attributes of the key as stored on the HSM, independently of Google. + Only present if the chosen ImportMethod is one with a protection level of HSM. + items: + properties: + content: + description: |- + The attestation data provided by the HSM when the key operation was performed. + A base64-encoded string. + type: string + format: + description: The format of the attestation data. + type: string + type: object + type: array + conditions: + description: Conditions represent the latest available observation + of the resource's current state. items: properties: lastTransitionTime: @@ -89616,7 +91618,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -89739,7 +91741,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -89944,7 +91946,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -90233,7 +92235,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -90508,7 +92510,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -90964,7 +92966,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -91368,7 +93370,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -91672,7 +93674,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -92009,25 +94011,24 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: alpha cnrm.cloud.google.com/system: "true" - cnrm.cloud.google.com/tf2crd: "true" - name: mlenginemodels.mlengine.cnrm.cloud.google.com + name: memorystoreinstances.memorystore.cnrm.cloud.google.com spec: - group: mlengine.cnrm.cloud.google.com + group: memorystore.cnrm.cloud.google.com names: categories: - gcp - kind: MLEngineModel - plural: mlenginemodels + kind: MemorystoreInstance + listKind: MemorystoreInstanceList + plural: memorystoreinstances shortNames: - - gcpmlenginemodel - - gcpmlenginemodels - singular: mlenginemodel + - gcpmemorystoreinstance + - gcpmemorystoreinstances + singular: memorystoreinstance preserveUnknownFields: false scope: Namespaced versions: @@ -92050,47 +94051,80 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MemorystoreInstance is the Schema for the MemorystoreInstance + API properties: apiVersion: - description: 'apiVersion defines the versioned schema of this representation + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: - description: 'kind is a string value representing the REST resource this + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: + description: MemorystoreInstanceSpec defines the desired state of MemorystoreInstance properties: - defaultVersion: - description: |- - Immutable. The default version of the model. This version will be used to handle - prediction requests that do not specify a version. + authorizationMode: + description: Optional. Immutable. Authorization mode of the instance. + type: string + deletionProtectionEnabled: + description: Optional. If set to true deletion of the instance will + fail. + type: boolean + engineConfigs: + additionalProperties: + type: string + description: Optional. User-provided engine configurations for the + instance. + type: object + engineVersion: + description: Optional. Immutable. Engine version of the instance. + type: string + location: + description: Immutable. + type: string + x-kubernetes-validations: + - message: Location field is immutable + rule: self == oldSelf + nodeType: + description: Optional. Immutable. Machine type for individual nodes + of the instance. + type: string + persistenceConfig: + description: Optional. Persistence configuration of the instance. properties: - name: - description: Immutable. The name specified for the version when - it was created. + aofConfig: + description: Optional. AOF configuration. This field will be ignored + if mode is not AOF. + properties: + appendFsync: + description: Optional. The fsync mode. + type: string + type: object + mode: + description: Optional. Current persistence mode. type: string - required: - - name + rdbConfig: + description: Optional. RDB configuration. This field will be ignored + if mode is not RDB. + properties: + rdbSnapshotPeriod: + description: Optional. Period between RDB snapshots. + type: string + rdbSnapshotStartTime: + description: Optional. Time that the first snapshot was/will + be attempted, and to which future snapshots will be aligned. + If not provided, the current time will be used. + type: string + type: object type: object - description: - description: Immutable. The description specified for the model when - it was created. - type: string - onlinePredictionConsoleLogging: - description: Immutable. If true, online prediction nodes send stderr - and stdout streams to Stackdriver Logging. - type: boolean - onlinePredictionLogging: - description: Immutable. If true, online prediction access logs are - sent to StackDriver Logging. - type: boolean projectRef: - description: The project that this resource belongs to. + description: The Project that this resource belongs to. oneOf: - not: required: @@ -92107,35 +94141,462 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `Project` resource.' + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The `name` field of a `Project` resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The `namespace` field of a `Project` resource. type: string type: object - regions: - description: |- - Immutable. The list of regions where the model is going to be deployed. - Currently only one region per model is supported. + pscAutoConnections: + description: Required. Immutable. User inputs for the auto-created + PSC connections. items: - type: string + description: kcc specific struct to separate input and output fields + in google.cloud.memorystore.v1beta.PscAutoConnection + properties: + networkRef: + description: Required. The network where the PSC endpoints are + created, in the form of projects/{project_id}/global/networks/{network_id}. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed Compute + Network resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. + type: string + name: + description: The `name` field of a `ComputeNetwork` resource. + type: string + namespace: + description: The `namespace` field of a `ComputeNetwork` + resource. + type: string + type: object + projectRef: + description: Required. The consumer project_id where PSC connections + are established. This should be the same project_id that the + cluster is being created in. + oneOf: + - not: + required: + - external + required: + - name + - kind + - not: + anyOf: + - required: + - name + - required: + - namespace + - required: + - kind + required: + - external + properties: + external: + description: The `projectID` field of a project, when not + managed by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional + but must be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + required: + - networkRef + - projectRef + type: object type: array + replicaCount: + description: Optional. Number of replica nodes per shard. If omitted + the default is 0 replicas. + format: int32 + type: integer resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. + description: Optional. Immutable. The MemorystoreInstance name. If + not given, the metadata.name will be used. type: string + shardCount: + description: Optional. Number of shards for the instance. + format: int32 + type: integer + transitEncryptionMode: + description: Optional. Immutable. In-transit encryption mode of the + instance. + type: string + zoneDistributionConfig: + description: Optional. Immutable. Zone distribution configuration + of the instance for node allocatiteon. + properties: + mode: + description: Optional. Current zone distribution mode. Defaults + to MULTI_ZONE. + type: string + zone: + description: Optional. Defines zone where all resources will be + allocated with SINGLE_ZONE mode. Ignored for MULTI_ZONE mode. + type: string + type: object required: + - location - projectRef type: object status: + description: MemorystoreInstanceStatus defines the config connector machine + state of MemorystoreInstance properties: conditions: - description: Conditions represent the latest available observation - of the resource's current state. + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the MemorystoreInstance resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + authorizationMode: + description: Optional. Immutable. Authorization mode of the instance. + type: string + createTime: + description: Output only. Creation timestamp of the instance. + type: string + discoveryEndpoints: + description: Output only. Endpoints clients can connect to the + instance through. Currently only one discovery endpoint is supported. + items: + properties: + address: + description: Output only. IP address of the exposed endpoint + clients connect to. + type: string + network: + description: Output only. The network where the IP address + of the discovery endpoint will be reserved, in the form + of projects/{network_project}/global/networks/{network_id}. + type: string + port: + description: Output only. The port number of the exposed + endpoint. + format: int32 + type: integer + type: object + type: array + engineVersion: + description: Optional. Immutable. Engine version of the instance. + https://cloud.google.com/memorystore/docs/valkey/supported-versions + type: string + name: + description: 'Identifier. Unique name of the instance. Format: + projects/{project}/locations/{location}/instances/{instance}' + type: string + nodeConfig: + description: Output only. Configuration of individual nodes of + the instance. + properties: + sizeGb: + description: Output only. Memory size in GB of the node. + type: number + type: object + nodeType: + description: Optional. Immutable. Machine type for individual + nodes of the instance. + type: string + pscAutoConnections: + description: Output only. Resource details of the auto-created + PSC connections. + items: + properties: + connectionType: + description: Output only. Type of the PSC connection. + type: string + forwardingRule: + description: 'Output only. The URI of the consumer side + forwarding rule. Format: projects/{project}/regions/{region}/forwardingRules/{forwarding_rule}' + type: string + ipAddress: + description: Output only. The IP allocated on the consumer + network for the PSC forwarding rule. + type: string + network: + description: Required. The network where the PSC endpoints + are created, in the form of projects/{project_id}/global/networks/{network_id}. + type: string + port: + description: Optional. Output only. port will only be set + for Primary/Reader or Discovery endpoint. + format: int32 + type: integer + projectID: + description: Required. The consumer project_id where PSC + connections are established. This should be the same project_id + that the cluster is being created in. + type: string + pscConnectionID: + description: Output only. The PSC connection id of the forwarding + rule connected to the service attachment. + type: string + pscConnectionStatus: + description: 'Output only. The status of the PSC connection: + whether a connection exists and ACTIVE or it no longer + exists. Please note that this value is updated periodically. + Please use Private Service Connect APIs for the latest + status.' + type: string + serviceAttachment: + description: Output only. The service attachment which is + the target of the PSC connection, in the form of projects/{project-id}/regions/{region}/serviceAttachments/{service-attachment-id}. + type: string + type: object + type: array + state: + description: Output only. Current state of the instance. + type: string + stateInfo: + description: Output only. Additional information about the state + of the instance. + properties: + updateInfo: + description: Output only. Describes ongoing update when instance + state is UPDATING. + properties: + targetReplicaCount: + description: Output only. Target number of replica nodes + per shard for the instance. + format: int32 + type: integer + targetShardCount: + description: Output only. Target number of shards for + the instance. + format: int32 + type: integer + type: object + type: object + transitEncryptionMode: + description: Optional. Immutable. In-transit encryption mode of + the instance. + type: string + uid: + description: Output only. System assigned, unique identifier for + the instance. + type: string + updateTime: + description: Output only. Latest update timestamp of the instance. + type: string + zoneDistributionConfig: + description: Optional. Immutable. Zone distribution configuration + of the instance for node allocation. + properties: + mode: + description: Optional. Current zone distribution mode. Defaults + to MULTI_ZONE. + type: string + zone: + description: Optional. Defines zone where all resources will + be allocated with SINGLE_ZONE mode. Ignored for MULTI_ZONE + mode. + type: string + type: object + type: object + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + cnrm.cloud.google.com/tf2crd: "true" + name: mlenginemodels.mlengine.cnrm.cloud.google.com +spec: + group: mlengine.cnrm.cloud.google.com + names: + categories: + - gcp + kind: MLEngineModel + plural: mlenginemodels + shortNames: + - gcpmlenginemodel + - gcpmlenginemodels + singular: mlenginemodel + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + properties: + apiVersion: + description: 'apiVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + type: string + kind: + description: 'kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + properties: + defaultVersion: + description: |- + Immutable. The default version of the model. This version will be used to handle + prediction requests that do not specify a version. + properties: + name: + description: Immutable. The name specified for the version when + it was created. + type: string + required: + - name + type: object + description: + description: Immutable. The description specified for the model when + it was created. + type: string + onlinePredictionConsoleLogging: + description: Immutable. If true, online prediction nodes send stderr + and stdout streams to Stackdriver Logging. + type: boolean + onlinePredictionLogging: + description: Immutable. If true, online prediction access logs are + sent to StackDriver Logging. + type: boolean + projectRef: + description: The project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: 'Allowed value: The `name` field of a `Project` resource.' + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + regions: + description: |- + Immutable. The list of regions where the model is going to be deployed. + Currently only one region per model is supported. + items: + type: string + type: array + resourceID: + description: Immutable. Optional. The name of the resource. Used for + creation and acquisition. When unset, the value of `metadata.name` + is used as the default. + type: string + required: + - projectRef + type: object + status: + properties: + conditions: + description: Conditions represent the latest available observation + of the resource's current state. items: properties: lastTransitionTime: @@ -92185,7 +94646,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -93122,7 +95583,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -101197,7 +103658,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -101388,7 +103849,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -101683,7 +104144,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -101810,7 +104271,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -102111,7 +104572,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -102682,7 +105143,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -102841,7 +105302,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -103220,7 +105681,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -103402,7 +105863,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -103411,9 +105872,14 @@ metadata: spec: group: networkconnectivity.cnrm.cloud.google.com names: + categories: + - gcp kind: NetworkConnectivityServiceConnectionPolicy listKind: NetworkConnectivityServiceConnectionPolicyList plural: networkconnectivityserviceconnectionpolicies + shortNames: + - gcpnetworkconnectivityserviceconnectionpolicy + - gcpnetworkconnectivityserviceconnectionpolicies singular: networkconnectivityserviceconnectionpolicy preserveUnknownFields: false scope: Namespaced @@ -103479,7 +105945,7 @@ spec: properties: external: description: A reference to an externally managed Compute Network - resource. Should be in the format `projects//global/networks/`. + resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -103749,7 +106215,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -104136,7 +106602,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -104411,7 +106877,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -104669,7 +107135,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -104898,7 +107364,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -105142,7 +107608,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -105379,7 +107845,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -105726,7 +108192,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -106633,7 +109099,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -106954,7 +109420,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -107180,7 +109646,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -107647,7 +110113,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -108381,7 +110847,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -108557,7 +111023,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -108887,7 +111353,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -109208,7 +111674,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -109428,7 +111894,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -109589,7 +112055,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -109947,7 +112413,7 @@ spec: type: string type: object id: - description: Required. ID of the artifact, which the installation + description: Required. Id of the artifact, which the installation and update steps of this recipe can reference. Artifacts in a recipe cannot have the same id. type: string @@ -110358,7 +112824,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -111360,7 +113826,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -112051,7 +114517,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -112187,7 +114653,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -112690,7 +115156,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -113695,7 +116161,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -114606,7 +117072,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -115022,7 +117488,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -115036,6 +117502,9 @@ spec: kind: PrivilegedAccessManagerEntitlement listKind: PrivilegedAccessManagerEntitlementList plural: privilegedaccessmanagerentitlements + shortNames: + - gcpprivilegedaccessmanagerentitlement + - gcpprivilegedaccessmanagerentitlements singular: privilegedaccessmanagerentitlement preserveUnknownFields: false scope: Namespaced @@ -115323,12 +117792,9 @@ spec: x-kubernetes-preserve-unknown-fields: true type: object resourceID: - description: Immutable. The PrivilegedAccessManagerEntitlement name. - If not given, the 'metadata.name' will be used. + description: The PrivilegedAccessManagerEntitlement name. If not given, + the 'metadata.name' will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - eligibleUsers - location @@ -115693,9 +118159,6 @@ spec: description: Immutable. The PrivilegedAccessManagerEntitlement name. If not given, the 'metadata.name' will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - eligibleUsers - location @@ -115779,7 +118242,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -116004,7 +118467,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -116160,7 +118623,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -116327,7 +118790,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -116531,7 +118994,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -116686,7 +119149,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -117194,7 +119657,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -117411,7 +119874,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/dcl2crd: "true" @@ -117665,7 +120128,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -117680,6 +120143,9 @@ spec: kind: RedisCluster listKind: RedisClusterList plural: redisclusters + shortNames: + - gcprediscluster + - gcpredisclusters singular: rediscluster preserveUnknownFields: false scope: Namespaced @@ -117822,7 +120288,7 @@ spec: properties: external: description: A reference to an externally managed Compute - Network resource. Should be in the format `projects//global/networks/`. + Network resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -118161,7 +120627,7 @@ spec: properties: external: description: A reference to an externally managed Compute - Network resource. Should be in the format `projects//global/networks/`. + Network resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -118367,7 +120833,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -118885,7 +121351,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -119063,7 +121529,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -119344,7 +121810,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -120389,7 +122855,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -121519,7 +123985,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -121756,12 +124222,9 @@ spec: type: object type: object resourceID: - description: Immutable. The SecretManagerSecret name. If not given, - the metadata.name will be used. + description: The SecretManagerSecret name. If not given, the metadata.name + will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf rotation: description: Optional. Rotation policy attached to the [Secret][google.cloud.secretmanager.v1.Secret]. May be excluded if there is no rotation policy. @@ -121832,7 +124295,8 @@ spec: type: object type: array ttl: - description: Input only. The TTL for the [Secret][google.cloud.secretmanager.v1.Secret]. + description: 'Input only. A duration in seconds with up to nine fractional + digits, ending with ''s''. Example: "3.5s".' type: string versionAliases: additionalProperties: @@ -121900,6 +124364,11 @@ spec: observedState: description: ObservedState is the state of the resource as most recently observed in GCP. + properties: + versionAliases: + additionalProperties: + type: string + type: object type: object type: object type: object @@ -121912,7 +124381,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -121926,6 +124395,7 @@ spec: categories: - gcp kind: SecretManagerSecretVersion + listKind: SecretManagerSecretVersionList plural: secretmanagersecretversions shortNames: - gcpsecretmanagersecretversion @@ -121953,55 +124423,52 @@ spec: name: v1beta1 schema: openAPIV3Schema: + description: SecretManagerSecretVersion is the Schema for the SecretManagerSecretVersion + API properties: apiVersion: - description: 'apiVersion defines the versioned schema of this representation + description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources' + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' type: string kind: - description: 'kind is a string value representing the REST resource this + description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds' + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' type: string metadata: type: object spec: + description: SecretManagerSecretVersionSpec defines the desired state + of SecretManagerSecretVersion properties: deletionPolicy: - description: |- - The deletion policy for the secret version. Setting 'ABANDON' allows the resource - to be abandoned rather than deleted. Setting 'DISABLE' allows the resource to be - disabled rather than deleted. Default is 'DELETE'. Possible values are: - * DELETE - * DISABLE - * ABANDON. + description: 'DEPRECATED. You do not need to set this field in direct + reconciler mode. Use delete-policy annotation instead. https://cloud.google.com/config-connector/docs/how-to/managing-deleting-resources#keeping_resources_after_deletion + The deletion policy for the secret version. Setting ''ABANDON'' + allows the resource to be abandoned rather than deleted. Setting + ''DISABLE'' allows the resource to be disabled rather than deleted. + Default is ''DELETE''. Possible values are: * DELETE * DISABLE * + ABANDON.' type: string enabled: - description: The current state of the SecretVersion. + description: Should enable or disable the current SecretVersion. - + Enabled version can be accessed and described. - Disabled version + cannot be accessed, but the secret's contents still exist type: boolean isSecretDataBase64: - description: Immutable. If set to 'true', the secret data is expected - to be base64-encoded string and would be sent as is. + description: DEPRECATED. You do not need to set this field in direct + reconciler mode. type: boolean resourceID: - description: Immutable. Optional. The service-generated name of the - resource. Used for acquisition only. Leave unset to create a new - resource. + description: The SecretVersion number. If given, Config Connector + acquires the resource from the Secret Manager service. If not given, + Config Connector adds a new secret version to the GCP service, and + you can find out the version number from `status.observedState.version` type: string secretData: - description: Immutable. The secret data. Must be no larger than 64KiB. - oneOf: - - not: - required: - - valueFrom - required: - - value - - not: - required: - - value - required: - - valueFrom + description: The actual secret data. Config Connector supports secret + data stored in Kubernetes secret or plain data (base64) properties: value: description: Value of the field. Cannot be used if 'valueFrom' @@ -122022,13 +124489,15 @@ spec: description: Name of the Secret to extract a value from. type: string required: - - name - key + - name type: object type: object type: object secretRef: - description: Secret Manager secret resource + description: The resource name of the [Secret][google.cloud.secretmanager.v1.Secret] + to create a [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] + for. oneOf: - not: required: @@ -122045,229 +124514,383 @@ spec: - external properties: external: - description: 'Allowed value: The `name` field of a `SecretManagerSecret` - resource.' + description: A reference to an externally managed SecretManagerSecret + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/secrets/{{secretID}}". type: string name: - description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + description: The name of a SecretManagerSecret resource. type: string namespace: - description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + description: The namespace of a SecretManagerSecret resource. + type: string + type: object + type: object + status: + description: SecretManagerSecretVersionStatus defines the config connector + machine state of SecretManagerSecretVersion + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + createTime: + description: 'DEPRECATING NOTE: Please use status.observedState.createTime + instead.' + type: string + destroyTime: + description: 'DEPRECATING NOTE: Please use status.observedState.destroyTime + instead.' + type: string + externalRef: + description: A unique specifier for the SecretManagerSecretVersion + resource in GCP. + type: string + name: + description: 'DEPRECATING NOTE: Please use status.observedState.name + instead.' + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + clientSpecifiedPayloadChecksum: + description: Output only. True if payload checksum specified in + [SecretPayload][google.cloud.secretmanager.v1.SecretPayload] + object has been received by [SecretManagerService][google.cloud.secretmanager.v1.SecretManagerService] + on [SecretManagerService.AddSecretVersion][google.cloud.secretmanager.v1.SecretManagerService.AddSecretVersion]. + type: boolean + createTime: + description: Output only. The time at which the [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] + was created. + type: string + customerManagedEncryption: + description: Output only. The customer-managed encryption status + of the [SecretVersion][google.cloud.secretmanager.v1.SecretVersion]. + Only populated if customer-managed encryption is used and [Secret][google.cloud.secretmanager.v1.Secret] + is a Regionalised Secret. + properties: + kmsKeyVersionName: + description: 'Required. The resource name of the Cloud KMS + CryptoKeyVersion used to encrypt the secret payload, in + the following format: `projects/*/locations/*/keyRings/*/cryptoKeys/*/versions/*`.' + type: string + type: object + destroyTime: + description: Output only. The time this [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] + was destroyed. Only present if [state][google.cloud.secretmanager.v1.SecretVersion.state] + is [DESTROYED][google.cloud.secretmanager.v1.SecretVersion.State.DESTROYED]. + type: string + name: + description: |- + Output only. The resource name of the + [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] in the + format `projects/*/secrets/*/versions/*`. + + [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] IDs in a + [Secret][google.cloud.secretmanager.v1.Secret] start at 1 and are + incremented for each subsequent version of the secret. + type: string + replicationStatus: + description: The replication status of the [SecretVersion][google.cloud.secretmanager.v1.SecretVersion]. + properties: + automatic: + description: |- + Describes the replication status of a + [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] with + automatic replication. + + Only populated if the parent + [Secret][google.cloud.secretmanager.v1.Secret] has an automatic + replication policy. + properties: + customerManagedEncryption: + description: Output only. The customer-managed encryption + status of the [SecretVersion][google.cloud.secretmanager.v1.SecretVersion]. + Only populated if customer-managed encryption is used. + properties: + kmsKeyVersionName: + description: 'Required. The resource name of the Cloud + KMS CryptoKeyVersion used to encrypt the secret + payload, in the following format: `projects/*/locations/*/keyRings/*/cryptoKeys/*/versions/*`.' + type: string + type: object + type: object + userManaged: + description: |- + Describes the replication status of a + [SecretVersion][google.cloud.secretmanager.v1.SecretVersion] with + user-managed replication. + + Only populated if the parent + [Secret][google.cloud.secretmanager.v1.Secret] has a user-managed + replication policy. + properties: + replicas: + description: Output only. The list of replica statuses + for the [SecretVersion][google.cloud.secretmanager.v1.SecretVersion]. + items: + properties: + customerManagedEncryption: + description: Output only. The customer-managed encryption + status of the [SecretVersion][google.cloud.secretmanager.v1.SecretVersion]. + Only populated if customer-managed encryption + is used. + properties: + kmsKeyVersionName: + description: 'Required. The resource name of + the Cloud KMS CryptoKeyVersion used to encrypt + the secret payload, in the following format: + `projects/*/locations/*/keyRings/*/cryptoKeys/*/versions/*`.' + type: string + type: object + location: + description: 'Output only. The canonical ID of the + replica location. For example: `"us-east1"`.' + type: string + type: object + type: array + type: object + type: object + scheduledDestroyTime: + description: Optional. Output only. Scheduled destroy time for + secret version. This is a part of the Delayed secret version + destroy feature. For a Secret with a valid version destroy TTL, + when a secert version is destroyed, the version is moved to + disabled state and it is scheduled for destruction. The version + is destroyed only after the `scheduled_destroy_time`. + type: string + type: object + version: + description: DEPRECATED. + type: string + type: object + required: + - spec + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/stability-level: alpha + cnrm.cloud.google.com/system: "true" + name: securesourcemanagerinstances.securesourcemanager.cnrm.cloud.google.com +spec: + group: securesourcemanager.cnrm.cloud.google.com + names: + categories: + - gcp + kind: SecureSourceManagerInstance + listKind: SecureSourceManagerInstanceList + plural: securesourcemanagerinstances + shortNames: + - gcpsecuresourcemanagerinstance + - gcpsecuresourcemanagerinstances + singular: securesourcemanagerinstance + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: SecureSourceManagerInstance is the Schema for the SecureSourceManagerInstance + API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: SecureSourceManagerInstanceSpec defines the desired state + of SecureSourceManagerInstance + properties: + kmsKeyRef: + description: Optional. Immutable. Customer-managed encryption key + name. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed KMSCryptoKey. + Should be in the format `projects/[kms_project_id]/locations/[region]/keyRings/[key_ring_id]/cryptoKeys/[key]`. + type: string + name: + description: The `name` of a `KMSCryptoKey` resource. + type: string + namespace: + description: The `namespace` of a `KMSCryptoKey` resource. type: string type: object + location: + description: Immutable. Location of the instance. + type: string + privateConfig: + description: Optional. PrivateConfig includes settings for private + instance. + properties: + caPoolRef: + description: Required. Immutable. CA pool resource, resource must + in the format of `projects/{project}/locations/{location}/caPools/{ca_pool}`. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed PrivateCACAPool. + Should be in the format `projects/{project_id}/locations/{region}/caPools/{caPool}`. + type: string + name: + description: The `name` of a `PrivateCACAPool` resource. + type: string + namespace: + description: The `namespace` of a `PrivateCACAPool` resource. + type: string + type: object + httpServiceAttachment: + description: Output only. Service Attachment for HTTP, resource + is in the format of `projects/{project}/regions/{region}/serviceAttachments/{service_attachment}`. + type: string + isPrivate: + description: Required. Immutable. Indicate if it's private instance. + type: boolean + sshServiceAttachment: + description: Output only. Service Attachment for SSH, resource + is in the format of `projects/{project}/regions/{region}/serviceAttachments/{service_attachment}`. + type: string + type: object + projectRef: + description: Immutable. The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + resourceID: + description: Immutable. Optional. The name of the resource. Used for + creation and acquisition. When unset, the value of `metadata.name` + is used as the default. + type: string required: - - secretData - - secretRef + - location + - projectRef type: object status: + description: SecureSourceManagerInstanceStatus defines the config connector + machine state of SecureSourceManagerInstance properties: conditions: - description: Conditions represent the latest available observation - of the resource's current state. - items: - properties: - lastTransitionTime: - description: Last time the condition transitioned from one status - to another. - type: string - message: - description: Human-readable message indicating details about - last transition. - type: string - reason: - description: Unique, one-word, CamelCase reason for the condition's - last transition. - type: string - status: - description: Status is the status of the condition. Can be True, - False, Unknown. - type: string - type: - description: Type is the type of the condition. - type: string - type: object - type: array - createTime: - description: The time at which the Secret was created. - type: string - destroyTime: - description: The time at which the Secret was destroyed. Only present - if state is DESTROYED. - type: string - name: - description: |- - The resource name of the SecretVersion. Format: - 'projects/{{project}}/secrets/{{secret_id}}/versions/{{version}}'. - type: string - observedGeneration: - description: ObservedGeneration is the generation of the resource - that was most recently observed by the Config Connector controller. - If this is equal to metadata.generation, then that means that the - current reported status reflects the most recent desired state of - the resource. - type: integer - version: - description: The version of the Secret. - type: string - type: object - required: - - spec - type: object - served: true - storage: true - subresources: - status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] ---- -apiVersion: apiextensions.k8s.io/v1 -kind: CustomResourceDefinition -metadata: - annotations: - cnrm.cloud.google.com/version: 1.125.0 - creationTimestamp: null - labels: - cnrm.cloud.google.com/managed-by-kcc: "true" - cnrm.cloud.google.com/stability-level: alpha - cnrm.cloud.google.com/system: "true" - name: securesourcemanagerinstances.securesourcemanager.cnrm.cloud.google.com -spec: - group: securesourcemanager.cnrm.cloud.google.com - names: - categories: - - gcp - kind: SecureSourceManagerInstance - listKind: SecureSourceManagerInstanceList - plural: securesourcemanagerinstances - shortNames: - - gcpsecuresourcemanagerinstance - - gcpsecuresourcemanagerinstances - singular: securesourcemanagerinstance - preserveUnknownFields: false - scope: Namespaced - versions: - - additionalPrinterColumns: - - jsonPath: .metadata.creationTimestamp - name: Age - type: date - - description: When 'True', the most recent reconcile of the resource succeeded - jsonPath: .status.conditions[?(@.type=='Ready')].status - name: Ready - type: string - - description: The reason for the value in 'Ready' - jsonPath: .status.conditions[?(@.type=='Ready')].reason - name: Status - type: string - - description: The last transition time for the value in 'Status' - jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime - name: Status Age - type: date - name: v1alpha1 - schema: - openAPIV3Schema: - description: SecureSourceManagerInstance is the Schema for the SecureSourceManagerInstance - API - properties: - apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' - type: string - kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' - type: string - metadata: - type: object - spec: - description: SecureSourceManagerInstanceSpec defines the desired state - of SecureSourceManagerInstance - properties: - kmsKeyRef: - description: Optional. Immutable. Customer-managed encryption key - name. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: A reference to an externally managed KMSCryptoKey. - Should be in the format `projects/[kms_project_id]/locations/[region]/keyRings/[key_ring_id]/cryptoKeys/[key]`. - type: string - name: - description: The `name` of a `KMSCryptoKey` resource. - type: string - namespace: - description: The `namespace` of a `KMSCryptoKey` resource. - type: string - type: object - location: - description: Immutable. Location of the instance. - type: string - projectRef: - description: Immutable. The Project that this resource belongs to. - oneOf: - - not: - required: - - external - required: - - name - - not: - anyOf: - - required: - - name - - required: - - namespace - required: - - external - properties: - external: - description: The `projectID` field of a project, when not managed - by Config Connector. - type: string - kind: - description: The kind of the Project resource; optional but must - be `Project` if provided. - type: string - name: - description: The `name` field of a `Project` resource. - type: string - namespace: - description: The `namespace` field of a `Project` resource. - type: string - type: object - resourceID: - description: Immutable. Optional. The name of the resource. Used for - creation and acquisition. When unset, the value of `metadata.name` - is used as the default. - type: string - required: - - location - - projectRef - type: object - status: - description: SecureSourceManagerInstanceStatus defines the config connector - machine state of SecureSourceManagerInstance - properties: - conditions: - description: Conditions represent the latest available observations - of the object's current state. + description: Conditions represent the latest available observations + of the object's current state. items: properties: lastTransitionTime: @@ -122343,7 +124966,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -122564,7 +125187,7 @@ spec: properties: external: description: A reference to an externally managed SecureSourceManagerInstance - resource. Should be in the format "projects//locations//instances/". + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/instances/{{instanceID}}". type: string name: description: The name of a SecureSourceManagerInstance resource. @@ -122609,12 +125232,9 @@ spec: type: string type: object resourceID: - description: Immutable. The SecureSourceManagerRepository name. If - not given, the metadata.name will be used. + description: The SecureSourceManagerRepository name. If not given, + the metadata.name will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - instanceRef - location @@ -122666,6 +125286,15 @@ spec: description: ObservedState is the state of the resource as most recently observed in GCP. properties: + etag: + description: Output only. This checksum is computed by the server + based on the value of other fields, and may be sent on update + and delete requests to ensure the client has an up-to-date value + before proceeding. + type: string + uid: + description: Output only. Unique identifier of the repository. + type: string uris: description: Output only. URIs for the repository. properties: @@ -122695,7 +125324,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -122900,7 +125529,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -123063,7 +125692,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -123283,7 +125912,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -123440,7 +126069,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -123592,7 +126221,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -123739,7 +126368,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -123917,7 +126546,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -124058,7 +126687,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -124240,7 +126869,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -124439,7 +127068,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -124648,7 +127277,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -124706,6 +127335,58 @@ spec: spec: description: SpannerInstanceSpec defines the desired state of SpannerInstance properties: + autoscalingConfig: + description: Optional. The autoscaling configuration. Autoscaling + is enabled if this field is set. When autoscaling is enabled, node_count + and processing_units are treated as OUTPUT_ONLY fields and reflect + the current compute capacity allocated to the instance. + properties: + autoscalingLimits: + description: Required. Autoscaling limits for an instance. + properties: + maxNodes: + description: Maximum number of nodes allocated to the instance. + If set, this number should be greater than or equal to min_nodes. + format: int32 + type: integer + maxProcessingUnits: + description: Maximum number of processing units allocated + to the instance. If set, this number should be multiples + of 1000 and be greater than or equal to min_processing_units. + format: int32 + type: integer + minNodes: + description: Minimum number of nodes allocated to the instance. + If set, this number should be greater than or equal to 1. + format: int32 + type: integer + minProcessingUnits: + description: Minimum number of processing units allocated + to the instance. If set, this number should be multiples + of 1000. + format: int32 + type: integer + type: object + autoscalingTargets: + description: Required. The autoscaling targets for an instance. + properties: + highPriorityCpuUtilizationPercent: + description: Required. The target high priority cpu utilization + percentage that the autoscaler should be trying to achieve + for the instance. This number is on a scale from 0 (no utilization) + to 100 (full utilization). The valid range is [10, 90] inclusive. + format: int32 + type: integer + storageUtilizationPercent: + description: Required. The target storage utilization percentage + that the autoscaler should be trying to achieve for the + instance. This number is on a scale from 0 (no utilization) + to 100 (full utilization). The valid range is [10, 100] + inclusive. + format: int32 + type: integer + type: object + type: object config: description: Immutable. The name of the instance's configuration (similar but not quite the same as a region) which defines the geographic @@ -124722,19 +127403,20 @@ spec: in UIs. Must be unique per project and between 4 and 30 characters in length. type: string + edition: + description: Optional. The `Edition` of the current instance. Currently + accepted values are EDITION_UNSPECIFIED, STANDARD, ENTERPRISE, ENTERPRISE_PLUS + type: string numNodes: - format: int64 + format: int32 type: integer processingUnits: - format: int64 + format: int32 type: integer resourceID: - description: Immutable. The SpannerInstance name. If not given, the - metadata.name will be used. + description: The SpannerInstance name. If not given, the metadata.name + will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf required: - config - displayName @@ -124781,6 +127463,19 @@ spec: the resource. format: int64 type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + numNodes: + description: NumNodes and ProcessUnits is output fields with AutoScaler + is set. + format: int32 + type: integer + processingUnits: + format: int32 + type: integer + type: object state: description: 'Instance status: ''CREATING'' or ''READY''.' type: string @@ -124797,7 +127492,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -124968,7 +127663,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -125512,7 +128207,7 @@ spec: properties: external: description: A reference to an externally managed Compute - Network resource. Should be in the format `projects//global/networks/`. + Network resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -125789,7 +128484,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -125965,7 +128660,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -126206,7 +128901,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -126376,7 +129071,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -126783,7 +129478,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -126969,7 +129664,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -127137,7 +129832,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -127340,7 +130035,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -127502,7 +130197,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -128140,7 +130835,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -128323,7 +131018,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -128500,7 +131195,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -128665,7 +131360,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -128839,7 +131534,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -129059,7 +131754,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -129446,7 +132141,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -129893,7 +132588,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -130038,7 +132733,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -130274,7 +132969,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -130489,7 +133184,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -130677,7 +133372,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -131187,7 +133882,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -131369,7 +134064,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -131559,7 +134254,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -131838,7 +134533,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -132030,7 +134725,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/managed-by-kcc: "true" @@ -132044,6 +134739,9 @@ spec: kind: WorkstationCluster listKind: WorkstationClusterList plural: workstationclusters + shortNames: + - gcpworkstationcluster + - gcpworkstationclusters singular: workstationcluster preserveUnknownFields: false scope: Namespaced @@ -132103,6 +134801,332 @@ spec: description: Optional. [Labels](https://cloud.google.com/workstations/docs/label-resources) that are applied to the workstation cluster and that are also propagated to the underlying Compute Engine resources. + items: + properties: + key: + description: Key for the label. + type: string + value: + description: Value for the label. + type: string + type: object + type: array + location: + description: The location of the cluster. + type: string + networkRef: + description: Immutable. Reference to the Compute Engine network in + which instances associated with this workstation cluster will be + created. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed Compute Network + resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. + type: string + name: + description: The `name` field of a `ComputeNetwork` resource. + type: string + namespace: + description: The `namespace` field of a `ComputeNetwork` resource. + type: string + type: object + privateClusterConfig: + description: Optional. Configuration for private workstation cluster. + properties: + allowedProjects: + description: Optional. Additional projects that are allowed to + attach to the workstation cluster's service attachment. By default, + the workstation cluster's project and the VPC host project (if + different) are allowed. + items: + description: The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - kind + - not: + anyOf: + - required: + - name + - required: + - namespace + - required: + - kind + required: + - external + properties: + external: + description: The `projectID` field of a project, when not + managed by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional + but must be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + type: array + enablePrivateEndpoint: + description: Immutable. Whether Workstations endpoint is private. + type: boolean + type: object + projectRef: + description: Immutable. The Project that this resource belongs to. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `projectID` field of a project, when not managed + by Config Connector. + type: string + kind: + description: The kind of the Project resource; optional but must + be `Project` if provided. + type: string + name: + description: The `name` field of a `Project` resource. + type: string + namespace: + description: The `namespace` field of a `Project` resource. + type: string + type: object + x-kubernetes-validations: + - message: ResourceID field is immutable + rule: self == oldSelf + resourceID: + description: The WorkstationCluster name. If not given, the metadata.name + will be used. + type: string + subnetworkRef: + description: Immutable. Reference to the Compute Engine subnetwork + in which instances associated with this workstation cluster will + be created. Must be part of the subnetwork specified for this workstation + cluster. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The ComputeSubnetwork selflink of form "projects/{{project}}/regions/{{region}}/subnetworks/{{name}}", + when not managed by Config Connector. + type: string + name: + description: The `name` field of a `ComputeSubnetwork` resource. + type: string + namespace: + description: The `namespace` field of a `ComputeSubnetwork` resource. + type: string + type: object + required: + - networkRef + - projectRef + - subnetworkRef + type: object + status: + description: WorkstationClusterStatus defines the config connector machine + state of WorkstationCluster + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the WorkstationCluster resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + clusterHostname: + description: Output only. Hostname for the workstation cluster. + This field will be populated only when private endpoint is enabled. + To access workstations in the workstation cluster, create a + new DNS zone mapping this domain name to an internal IP address + and a forwarding rule mapping that address to the service attachment. + type: string + controlPlaneIP: + description: Output only. The private IP address of the control + plane for this workstation cluster. Workstation VMs need access + to this IP address to work with the service, so make sure that + your firewall rules allow egress from the workstation VMs to + this address. + type: string + createTime: + description: Output only. Time when this workstation cluster was + created. + type: string + degraded: + description: Output only. Whether this workstation cluster is + in degraded mode, in which case it may require user action to + restore full functionality. Details can be found in [conditions][google.cloud.workstations.v1.WorkstationCluster.conditions]. + type: boolean + deleteTime: + description: Output only. Time when this workstation cluster was + soft-deleted. + type: string + etag: + description: Optional. Checksum computed by the server. May be + sent on update and delete requests to make sure that the client + has an up-to-date value before proceeding. + type: string + gcpConditions: + description: Output only. Status conditions describing the workstation + cluster's current state. + items: + properties: + code: + description: The status code, which should be an enum value + of [google.rpc.Code][google.rpc.Code]. + format: int32 + type: integer + message: + description: A developer-facing error message, which should + be in English. Any user-facing error message should be + localized and sent in the [google.rpc.Status.details][google.rpc.Status.details] + field, or localized by the client. + type: string + type: object + type: array + reconciling: + description: Output only. Indicates whether this workstation cluster + is currently being updated to match its intended state. + type: boolean + serviceAttachmentUri: + description: Output only. Service attachment URI for the workstation + cluster. The service attachment is created when private endpoint + is enabled. To access workstations in the workstation cluster, + configure access to the managed service using [Private Service + Connect](https://cloud.google.com/vpc/docs/configure-private-service-connect-services). + type: string + uid: + description: Output only. A system-assigned unique identifier + for this workstation cluster. + type: string + updateTime: + description: Output only. Time when this workstation cluster was + most recently updated. + type: string + type: object + type: object + type: object + served: true + storage: false + subresources: + status: {} + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + description: WorkstationCluster is the Schema for the WorkstationCluster API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: WorkstationClusterSpec defines the desired state of WorkstationCluster + properties: + annotations: + description: Optional. Client-specified annotations. items: properties: key: @@ -132113,6 +135137,23 @@ spec: type: string type: object type: array + displayName: + description: Optional. Human-readable name for this workstation cluster. + type: string + labels: + description: Optional. [Labels](https://cloud.google.com/workstations/docs/label-resources) + that are applied to the workstation cluster and that are also propagated + to the underlying Compute Engine resources. + items: + properties: + key: + description: Key for the label. + type: string + value: + description: Value for the label. + type: string + type: object + type: array location: description: The location of the cluster. type: string @@ -132137,7 +135178,7 @@ spec: properties: external: description: A reference to an externally managed Compute Network - resource. Should be in the format `projects//global/networks/`. + resource. Should be in the format `projects/{{projectID}}/global/networks/{{network}}`. type: string name: description: The `name` field of a `ComputeNetwork` resource. @@ -132230,12 +135271,9 @@ spec: - message: ResourceID field is immutable rule: self == oldSelf resourceID: - description: Immutable. The WorkstationCluster name. If not given, - the metadata.name will be used. + description: The WorkstationCluster name. If not given, the metadata.name + will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf subnetworkRef: description: Immutable. Reference to the Compute Engine subnetwork in which instances associated with this workstation cluster will @@ -132391,9 +135429,35 @@ spec: type: object type: object served: true - storage: false + storage: true subresources: status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/system: "true" + name: workstationconfigs.workstations.cnrm.cloud.google.com +spec: + group: workstations.cnrm.cloud.google.com + names: + categories: + - gcp + kind: WorkstationConfig + listKind: WorkstationConfigList + plural: workstationconfigs + shortNames: + - gcpworkstationconfig + - gcpworkstationconfigs + singular: workstationconfig + preserveUnknownFields: false + scope: Namespaced + versions: - additionalPrinterColumns: - jsonPath: .metadata.creationTimestamp name: Age @@ -132410,10 +135474,10 @@ spec: jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime name: Status Age type: date - name: v1beta1 + name: v1alpha1 schema: openAPIV3Schema: - description: WorkstationCluster is the Schema for the WorkstationCluster API + description: WorkstationConfig is the Schema for the WorkstationConfig API properties: apiVersion: description: 'APIVersion defines the versioned schema of this representation @@ -132428,7 +135492,7 @@ spec: metadata: type: object spec: - description: WorkstationClusterSpec defines the desired state of WorkstationCluster + description: WorkstationConfigSpec defines the desired state of WorkstationConfig properties: annotations: description: Optional. Client-specified annotations. @@ -132442,30 +135506,336 @@ spec: type: string type: object type: array + container: + description: Optional. Container that runs upon startup for each workstation + using this workstation configuration. + properties: + args: + description: Optional. Arguments passed to the entrypoint. + items: + type: string + type: array + command: + description: Optional. If set, overrides the default ENTRYPOINT + specified by the image. + items: + type: string + type: array + env: + description: Optional. Environment variables passed to the container's + entrypoint. + items: + properties: + name: + description: Name is the name of the environment variable. + type: string + value: + description: Value is the value of the environment variable. + type: string + type: object + type: array + image: + description: |- + Optional. A Docker container image that defines a custom environment. + + Cloud Workstations provides a number of + [preconfigured + images](https://cloud.google.com/workstations/docs/preconfigured-base-images), + but you can create your own + [custom container + images](https://cloud.google.com/workstations/docs/custom-container-images). + If using a private image, the `host.gceInstance.serviceAccount` field + must be specified in the workstation configuration and must have + permission to pull the specified image. Otherwise, the image must be + publicly accessible. + type: string + runAsUser: + description: Optional. If set, overrides the USER specified in + the image with the given uid. + format: int32 + type: integer + workingDir: + description: Optional. If set, overrides the default DIR specified + by the image. + type: string + type: object displayName: - description: Optional. Human-readable name for this workstation cluster. + description: Optional. Human-readable name for this workstation configuration. + type: string + encryptionKey: + description: |- + Immutable. Encrypts resources of this workstation configuration using a + customer-managed encryption key (CMEK). + + If specified, the boot disk of the Compute Engine instance and the + persistent disk are encrypted using this encryption key. If + this field is not set, the disks are encrypted using a generated + key. Customer-managed encryption keys do not protect disk metadata. + + If the customer-managed encryption key is rotated, when the workstation + instance is stopped, the system attempts to recreate the + persistent disk with the new version of the key. Be sure to keep + older versions of the key until the persistent disk is recreated. + Otherwise, data on the persistent disk might be lost. + + If the encryption key is revoked, the workstation session automatically + stops within 7 hours. + + Immutable after the workstation configuration is created. + properties: + kmsCryptoKeyRef: + description: Immutable. A reference to the Google Cloud KMS encryption + key. For example, `"projects/PROJECT_ID/locations/REGION/keyRings/KEY_RING/cryptoKeys/KEY_NAME"`. + The key must be in the same region as the workstation configuration. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed KMSCryptoKey. + Should be in the format `projects/[kms_project_id]/locations/[region]/keyRings/[key_ring_id]/cryptoKeys/[key]`. + type: string + name: + description: The `name` of a `KMSCryptoKey` resource. + type: string + namespace: + description: The `namespace` of a `KMSCryptoKey` resource. + type: string + type: object + serviceAccountRef: + description: Immutable. A reference to a service account to use + with the specified KMS key. We recommend that you use a separate + service account and follow KMS best practices. For more information, + see [Separation of duties](https://cloud.google.com/kms/docs/separation-of-duties) + and `gcloud kms keys add-iam-policy-binding` [`--member`](https://cloud.google.com/sdk/gcloud/reference/kms/keys/add-iam-policy-binding#--member). + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `email` field of an `IAMServiceAccount` resource. + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + type: object + host: + description: Optional. Runtime host for the workstation. + properties: + gceInstance: + description: Specifies a Compute Engine instance as the host. + properties: + bootDiskSizeGB: + description: Optional. The size of the boot disk for the VM + in gigabytes (GB). The minimum boot disk size is `30` GB. + Defaults to `50` GB. + format: int32 + type: integer + confidentialInstanceConfig: + description: Optional. A set of Compute Engine Confidential + VM instance options. + properties: + enableConfidentialCompute: + description: Optional. Whether the instance has confidential + compute enabled. + type: boolean + type: object + disablePublicIPAddresses: + description: Optional. When set to true, disables public IP + addresses for VMs. If you disable public IP addresses, you + must set up Private Google Access or Cloud NAT on your network. + If you use Private Google Access and you use `private.googleapis.com` + or `restricted.googleapis.com` for Container Registry and + Artifact Registry, make sure that you set up DNS records + for domains `*.gcr.io` and `*.pkg.dev`. Defaults to false + (VMs have public IP addresses). + type: boolean + enableNestedVirtualization: + description: |- + Optional. Whether to enable nested virtualization on Cloud Workstations + VMs created under this workstation configuration. + + Nested virtualization lets you run virtual machine (VM) instances + inside your workstation. Before enabling nested virtualization, + consider the following important considerations. Cloud Workstations + instances are subject to the [same restrictions as Compute Engine + instances](https://cloud.google.com/compute/docs/instances/nested-virtualization/overview#restrictions): + + * **Organization policy**: projects, folders, or + organizations may be restricted from creating nested VMs if the + **Disable VM nested virtualization** constraint is enforced in + the organization policy. For more information, see the + Compute Engine section, + [Checking whether nested virtualization is + allowed](https://cloud.google.com/compute/docs/instances/nested-virtualization/managing-constraint#checking_whether_nested_virtualization_is_allowed). + * **Performance**: nested VMs might experience a 10% or greater + decrease in performance for workloads that are CPU-bound and + possibly greater than a 10% decrease for workloads that are + input/output bound. + * **Machine Type**: nested virtualization can only be enabled on + workstation configurations that specify a + [machine_type][google.cloud.workstations.v1.WorkstationConfig.Host.GceInstance.machine_type] + in the N1 or N2 machine series. + * **GPUs**: nested virtualization may not be enabled on workstation + configurations with accelerators. + * **Operating System**: Because + [Container-Optimized + OS](https://cloud.google.com/compute/docs/images/os-details#container-optimized_os_cos) + does not support nested virtualization, when nested virtualization is + enabled, the underlying Compute Engine VM instances boot from an + [Ubuntu + LTS](https://cloud.google.com/compute/docs/images/os-details#ubuntu_lts) + image. + type: boolean + machineType: + description: Optional. The type of machine to use for VM instances—for + example, `"e2-standard-4"`. For more information about machine + types that Cloud Workstations supports, see the list of + [available machine types](https://cloud.google.com/workstations/docs/available-machine-types). + type: string + poolSize: + description: Optional. The number of VMs that the system should + keep idle so that new workstations can be started quickly + for new users. Defaults to `0` in the API. + format: int32 + type: integer + serviceAccountRef: + description: |- + Optional. A reference to the service account for Cloud + Workstations VMs created with this configuration. When specified, be + sure that the service account has `logginglogEntries.create` permission + on the project so it can write logs out to Cloud Logging. If using a + custom container image, the service account must have permissions to + pull the specified image. + + If you as the administrator want to be able to `ssh` into the + underlying VM, you need to set this value to a service account + for which you have the `iam.serviceAccounts.actAs` permission. + Conversely, if you don't want anyone to be able to `ssh` into the + underlying VM, use a service account where no one has that + permission. + + If not set, VMs run with a service account provided by the + Cloud Workstations service, and the image must be publicly + accessible. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `email` field of an `IAMServiceAccount` + resource. + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + serviceAccountScopes: + description: Optional. Scopes to grant to the [service_account][google.cloud.workstations.v1.WorkstationConfig.Host.GceInstance.service_account]. + Various scopes are automatically added based on feature + usage. When specified, users of workstations under this + configuration must have `iam.serviceAccounts.actAs` on the + service account. + items: + type: string + type: array + shieldedInstanceConfig: + description: Optional. A set of Compute Engine Shielded instance + options. + properties: + enableIntegrityMonitoring: + description: Optional. Whether the instance has integrity + monitoring enabled. + type: boolean + enableSecureBoot: + description: Optional. Whether the instance has Secure + Boot enabled. + type: boolean + enableVTPM: + description: Optional. Whether the instance has the vTPM + enabled. + type: boolean + type: object + tags: + description: Optional. Network tags to add to the Compute + Engine VMs backing the workstations. This option applies + [network tags](https://cloud.google.com/vpc/docs/add-remove-network-tags) + to VMs created with this configuration. These network tags + enable the creation of [firewall rules](https://cloud.google.com/workstations/docs/configure-firewall-rules). + items: + type: string + type: array + type: object + type: object + idleTimeout: + description: |- + Optional. Number of seconds to wait before automatically stopping a + workstation after it last received user traffic. + + A value of `"0s"` indicates that Cloud Workstations VMs created with this + configuration should never time out due to idleness. + Provide + [duration](https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration) + terminated by `s` for seconds—for example, `"7200s"` (2 hours). + The default is `"1200s"` (20 minutes). type: string labels: description: Optional. [Labels](https://cloud.google.com/workstations/docs/label-resources) - that are applied to the workstation cluster and that are also propagated - to the underlying Compute Engine resources. + that are applied to the workstation configuration and that are also + propagated to the underlying Compute Engine resources. items: properties: key: - description: Key for the annotation. + description: Key for the label. type: string value: - description: Value for the annotation. + description: Value for the label. type: string type: object type: array - location: - description: The location of the cluster. - type: string - networkRef: - description: Immutable. Reference to the Compute Engine network in - which instances associated with this workstation cluster will be - created. + parentRef: + description: Parent is a reference to the parent WorkstationCluster + for this WorkstationConfig. oneOf: - not: required: @@ -132482,66 +135852,617 @@ spec: - external properties: external: - description: A reference to an externally managed Compute Network - resource. Should be in the format `projects//global/networks/`. + description: A reference to an externally managed WorkstationCluster + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/workstationClusters/{{workstationclusterID}}". type: string name: - description: The `name` field of a `ComputeNetwork` resource. + description: The name of a WorkstationCluster resource. type: string namespace: - description: The `namespace` field of a `ComputeNetwork` resource. + description: The namespace of a WorkstationCluster resource. type: string type: object - privateClusterConfig: - description: Optional. Configuration for private workstation cluster. + persistentDirectories: + description: Optional. Directories to persist across workstation sessions. + items: + properties: + gcePD: + description: A PersistentDirectory backed by a Compute Engine + persistent disk. + properties: + diskType: + description: Optional. The [type of the persistent disk](https://cloud.google.com/compute/docs/disks#disk-types) + for the home directory. Defaults to `"pd-standard"`. + type: string + fsType: + description: Optional. Type of file system that the disk + should be formatted with. The workstation image must support + this file system type. Must be empty if [source_snapshot][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.source_snapshot] + is set. Defaults to `"ext4"`. + type: string + reclaimPolicy: + description: Optional. Whether the persistent disk should + be deleted when the workstation is deleted. Valid values + are `DELETE` and `RETAIN`. Defaults to `DELETE`. + type: string + sizeGB: + description: |- + Optional. The GB capacity of a persistent home directory for each + workstation created with this configuration. Must be empty if + [source_snapshot][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.source_snapshot] + is set. + + Valid values are `10`, `50`, `100`, `200`, `500`, or `1000`. + Defaults to `200`. If less than `200` GB, the + [disk_type][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.disk_type] + must be + `"pd-balanced"` or `"pd-ssd"`. + format: int32 + type: integer + sourceSnapshot: + description: Optional. Name of the snapshot to use as the + source for the disk. If set, [size_gb][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.size_gb] + and [fs_type][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.fs_type] + must be empty. + type: string + type: object + mountPath: + description: Optional. Location of this directory in the running + workstation. + type: string + type: object + type: array + readinessChecks: + description: Optional. Readiness checks to perform when starting a + workstation using this workstation configuration. Mark a workstation + as running only after all specified readiness checks return 200 + status codes. + items: + properties: + path: + description: Optional. Path to which the request should be sent. + type: string + port: + description: Optional. Port to which the request should be sent. + format: int32 + type: integer + type: object + type: array + replicaZones: + description: |- + Optional. Immutable. Specifies the zones used to replicate the VM and disk + resources within the region. If set, exactly two zones within the + workstation cluster's region must be specified—for example, + `['us-central1-a', 'us-central1-f']`. If this field is empty, two default + zones within the region are used. + + Immutable after the workstation configuration is created. + items: + type: string + type: array + resourceID: + description: The WorkstationConfig name. If not given, the metadata.name + will be used. + type: string + runningTimeout: + description: |- + Optional. Number of seconds that a workstation can run until it is + automatically shut down. We recommend that workstations be shut down daily + to reduce costs and so that security updates can be applied upon restart. + The + [idle_timeout][google.cloud.workstations.v1.WorkstationConfig.idle_timeout] + and + [running_timeout][google.cloud.workstations.v1.WorkstationConfig.running_timeout] + fields are independent of each other. Note that the + [running_timeout][google.cloud.workstations.v1.WorkstationConfig.running_timeout] + field shuts down VMs after the specified time, regardless of whether or not + the VMs are idle. + + Provide duration terminated by `s` for seconds—for example, `"54000s"` + (15 hours). Defaults to `"43200s"` (12 hours). A value of `"0s"` indicates + that workstations using this configuration should never time out. If + [encryption_key][google.cloud.workstations.v1.WorkstationConfig.encryption_key] + is set, it must be greater than `"0s"` and less than + `"86400s"` (24 hours). + + Warning: A value of `"0s"` indicates that Cloud Workstations VMs created + with this configuration have no maximum running time. This is strongly + discouraged because you incur costs and will not pick up security updates. + type: string + required: + - parentRef + type: object + status: + description: WorkstationConfigStatus defines the config connector machine + state of WorkstationConfig + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the WorkstationConfig resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. properties: - allowedProjects: - description: Optional. Additional projects that are allowed to - attach to the workstation cluster's service attachment. By default, - the workstation cluster's project and the VPC host project (if - different) are allowed. + createTime: + description: Output only. Time when this workstation configuration + was created. + type: string + degraded: + description: Output only. Whether this resource is degraded, in + which case it may require user action to restore full functionality. + See also the [conditions][google.cloud.workstations.v1.WorkstationConfig.conditions] + field. + type: boolean + deleteTime: + description: Output only. Time when this workstation configuration + was soft-deleted. + type: string + etag: + description: Output only. Checksum computed by the server. May + be sent on update and delete requests to make sure that the + client has an up-to-date value before proceeding. + type: string + gcpConditions: + description: Output only. Status conditions describing the current + resource state. items: - description: The Project that this resource belongs to. - oneOf: - - not: - required: - - external - required: - - name - - kind - - not: - anyOf: - - required: - - name - - required: - - namespace - - required: - - kind - required: - - external properties: - external: - description: The `projectID` field of a project, when not - managed by Config Connector. - type: string - kind: - description: The kind of the Project resource; optional - but must be `Project` if provided. + code: + description: The status code, which should be an enum value + of [google.rpc.Code][google.rpc.Code]. + format: int32 + type: integer + message: + description: A developer-facing error message, which should + be in English. Any user-facing error message should be + localized and sent in the [google.rpc.Status.details][google.rpc.Status.details] + field, or localized by the client. type: string + type: object + type: array + host: + description: Output only. Observed state of the runtime host for + the workstation configuration. + properties: + gceInstance: + description: Output only. Observed state of the Compute Engine + runtime host for the workstation configuration. + properties: + pooledInstances: + description: Output only. Number of instances currently + available in the pool for faster workstation startup. + format: int32 + type: integer + type: object + type: object + uid: + description: Output only. A system-assigned unique identifier + for this workstation configuration. + type: string + updateTime: + description: Output only. Time when this workstation configuration + was most recently updated. + type: string + type: object + type: object + type: object + served: true + storage: false + subresources: + status: {} + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + description: WorkstationConfig is the Schema for the WorkstationConfig API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: WorkstationConfigSpec defines the desired state of WorkstationConfig + properties: + annotations: + description: Optional. Client-specified annotations. + items: + properties: + key: + description: Key for the annotation. + type: string + value: + description: Value for the annotation. + type: string + type: object + type: array + container: + description: Optional. Container that runs upon startup for each workstation + using this workstation configuration. + properties: + args: + description: Optional. Arguments passed to the entrypoint. + items: + type: string + type: array + command: + description: Optional. If set, overrides the default ENTRYPOINT + specified by the image. + items: + type: string + type: array + env: + description: Optional. Environment variables passed to the container's + entrypoint. + items: + properties: name: - description: The `name` field of a `Project` resource. + description: Name is the name of the environment variable. type: string - namespace: - description: The `namespace` field of a `Project` resource. + value: + description: Value is the value of the environment variable. type: string type: object type: array - enablePrivateEndpoint: - description: Immutable. Whether Workstations endpoint is private. - type: boolean + image: + description: |- + Optional. A Docker container image that defines a custom environment. + + Cloud Workstations provides a number of + [preconfigured + images](https://cloud.google.com/workstations/docs/preconfigured-base-images), + but you can create your own + [custom container + images](https://cloud.google.com/workstations/docs/custom-container-images). + If using a private image, the `host.gceInstance.serviceAccount` field + must be specified in the workstation configuration and must have + permission to pull the specified image. Otherwise, the image must be + publicly accessible. + type: string + runAsUser: + description: Optional. If set, overrides the USER specified in + the image with the given uid. + format: int32 + type: integer + workingDir: + description: Optional. If set, overrides the default DIR specified + by the image. + type: string type: object - projectRef: - description: Immutable. The Project that this resource belongs to. + displayName: + description: Optional. Human-readable name for this workstation configuration. + type: string + encryptionKey: + description: |- + Immutable. Encrypts resources of this workstation configuration using a + customer-managed encryption key (CMEK). + + If specified, the boot disk of the Compute Engine instance and the + persistent disk are encrypted using this encryption key. If + this field is not set, the disks are encrypted using a generated + key. Customer-managed encryption keys do not protect disk metadata. + + If the customer-managed encryption key is rotated, when the workstation + instance is stopped, the system attempts to recreate the + persistent disk with the new version of the key. Be sure to keep + older versions of the key until the persistent disk is recreated. + Otherwise, data on the persistent disk might be lost. + + If the encryption key is revoked, the workstation session automatically + stops within 7 hours. + + Immutable after the workstation configuration is created. + properties: + kmsCryptoKeyRef: + description: Immutable. A reference to the Google Cloud KMS encryption + key. For example, `"projects/PROJECT_ID/locations/REGION/keyRings/KEY_RING/cryptoKeys/KEY_NAME"`. + The key must be in the same region as the workstation configuration. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed KMSCryptoKey. + Should be in the format `projects/[kms_project_id]/locations/[region]/keyRings/[key_ring_id]/cryptoKeys/[key]`. + type: string + name: + description: The `name` of a `KMSCryptoKey` resource. + type: string + namespace: + description: The `namespace` of a `KMSCryptoKey` resource. + type: string + type: object + serviceAccountRef: + description: Immutable. A reference to a service account to use + with the specified KMS key. We recommend that you use a separate + service account and follow KMS best practices. For more information, + see [Separation of duties](https://cloud.google.com/kms/docs/separation-of-duties) + and `gcloud kms keys add-iam-policy-binding` [`--member`](https://cloud.google.com/sdk/gcloud/reference/kms/keys/add-iam-policy-binding#--member). + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `email` field of an `IAMServiceAccount` resource. + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + type: object + host: + description: Optional. Runtime host for the workstation. + properties: + gceInstance: + description: Specifies a Compute Engine instance as the host. + properties: + bootDiskSizeGB: + description: Optional. The size of the boot disk for the VM + in gigabytes (GB). The minimum boot disk size is `30` GB. + Defaults to `50` GB. + format: int32 + type: integer + confidentialInstanceConfig: + description: Optional. A set of Compute Engine Confidential + VM instance options. + properties: + enableConfidentialCompute: + description: Optional. Whether the instance has confidential + compute enabled. + type: boolean + type: object + disablePublicIPAddresses: + description: Optional. When set to true, disables public IP + addresses for VMs. If you disable public IP addresses, you + must set up Private Google Access or Cloud NAT on your network. + If you use Private Google Access and you use `private.googleapis.com` + or `restricted.googleapis.com` for Container Registry and + Artifact Registry, make sure that you set up DNS records + for domains `*.gcr.io` and `*.pkg.dev`. Defaults to false + (VMs have public IP addresses). + type: boolean + enableNestedVirtualization: + description: |- + Optional. Whether to enable nested virtualization on Cloud Workstations + VMs created under this workstation configuration. + + Nested virtualization lets you run virtual machine (VM) instances + inside your workstation. Before enabling nested virtualization, + consider the following important considerations. Cloud Workstations + instances are subject to the [same restrictions as Compute Engine + instances](https://cloud.google.com/compute/docs/instances/nested-virtualization/overview#restrictions): + + * **Organization policy**: projects, folders, or + organizations may be restricted from creating nested VMs if the + **Disable VM nested virtualization** constraint is enforced in + the organization policy. For more information, see the + Compute Engine section, + [Checking whether nested virtualization is + allowed](https://cloud.google.com/compute/docs/instances/nested-virtualization/managing-constraint#checking_whether_nested_virtualization_is_allowed). + * **Performance**: nested VMs might experience a 10% or greater + decrease in performance for workloads that are CPU-bound and + possibly greater than a 10% decrease for workloads that are + input/output bound. + * **Machine Type**: nested virtualization can only be enabled on + workstation configurations that specify a + [machine_type][google.cloud.workstations.v1.WorkstationConfig.Host.GceInstance.machine_type] + in the N1 or N2 machine series. + * **GPUs**: nested virtualization may not be enabled on workstation + configurations with accelerators. + * **Operating System**: Because + [Container-Optimized + OS](https://cloud.google.com/compute/docs/images/os-details#container-optimized_os_cos) + does not support nested virtualization, when nested virtualization is + enabled, the underlying Compute Engine VM instances boot from an + [Ubuntu + LTS](https://cloud.google.com/compute/docs/images/os-details#ubuntu_lts) + image. + type: boolean + machineType: + description: Optional. The type of machine to use for VM instances—for + example, `"e2-standard-4"`. For more information about machine + types that Cloud Workstations supports, see the list of + [available machine types](https://cloud.google.com/workstations/docs/available-machine-types). + type: string + poolSize: + description: Optional. The number of VMs that the system should + keep idle so that new workstations can be started quickly + for new users. Defaults to `0` in the API. + format: int32 + type: integer + serviceAccountRef: + description: |- + Optional. A reference to the service account for Cloud + Workstations VMs created with this configuration. When specified, be + sure that the service account has `logginglogEntries.create` permission + on the project so it can write logs out to Cloud Logging. If using a + custom container image, the service account must have permissions to + pull the specified image. + + If you as the administrator want to be able to `ssh` into the + underlying VM, you need to set this value to a service account + for which you have the `iam.serviceAccounts.actAs` permission. + Conversely, if you don't want anyone to be able to `ssh` into the + underlying VM, use a service account where no one has that + permission. + + If not set, VMs run with a service account provided by the + Cloud Workstations service, and the image must be publicly + accessible. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: The `email` field of an `IAMServiceAccount` + resource. + type: string + name: + description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names' + type: string + namespace: + description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/' + type: string + type: object + serviceAccountScopes: + description: Optional. Scopes to grant to the [service_account][google.cloud.workstations.v1.WorkstationConfig.Host.GceInstance.service_account]. + Various scopes are automatically added based on feature + usage. When specified, users of workstations under this + configuration must have `iam.serviceAccounts.actAs` on the + service account. + items: + type: string + type: array + shieldedInstanceConfig: + description: Optional. A set of Compute Engine Shielded instance + options. + properties: + enableIntegrityMonitoring: + description: Optional. Whether the instance has integrity + monitoring enabled. + type: boolean + enableSecureBoot: + description: Optional. Whether the instance has Secure + Boot enabled. + type: boolean + enableVTPM: + description: Optional. Whether the instance has the vTPM + enabled. + type: boolean + type: object + tags: + description: Optional. Network tags to add to the Compute + Engine VMs backing the workstations. This option applies + [network tags](https://cloud.google.com/vpc/docs/add-remove-network-tags) + to VMs created with this configuration. These network tags + enable the creation of [firewall rules](https://cloud.google.com/workstations/docs/configure-firewall-rules). + items: + type: string + type: array + type: object + type: object + idleTimeout: + description: |- + Optional. Number of seconds to wait before automatically stopping a + workstation after it last received user traffic. + + A value of `"0s"` indicates that Cloud Workstations VMs created with this + configuration should never time out due to idleness. + Provide + [duration](https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration) + terminated by `s` for seconds—for example, `"7200s"` (2 hours). + The default is `"1200s"` (20 minutes). + type: string + labels: + description: Optional. [Labels](https://cloud.google.com/workstations/docs/label-resources) + that are applied to the workstation configuration and that are also + propagated to the underlying Compute Engine resources. + items: + properties: + key: + description: Key for the label. + type: string + value: + description: Value for the label. + type: string + type: object + type: array + parentRef: + description: Parent is a reference to the parent WorkstationCluster + for this WorkstationConfig. oneOf: - not: required: @@ -132558,35 +136479,333 @@ spec: - external properties: external: - description: The `projectID` field of a project, when not managed - by Config Connector. - type: string - kind: - description: The kind of the Project resource; optional but must - be `Project` if provided. + description: A reference to an externally managed WorkstationCluster + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/workstationClusters/{{workstationclusterID}}". type: string name: - description: The `name` field of a `Project` resource. + description: The name of a WorkstationCluster resource. type: string namespace: - description: The `namespace` field of a `Project` resource. + description: The namespace of a WorkstationCluster resource. type: string type: object - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf + persistentDirectories: + description: Optional. Directories to persist across workstation sessions. + items: + properties: + gcePD: + description: A PersistentDirectory backed by a Compute Engine + persistent disk. + properties: + diskType: + description: Optional. The [type of the persistent disk](https://cloud.google.com/compute/docs/disks#disk-types) + for the home directory. Defaults to `"pd-standard"`. + type: string + fsType: + description: Optional. Type of file system that the disk + should be formatted with. The workstation image must support + this file system type. Must be empty if [source_snapshot][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.source_snapshot] + is set. Defaults to `"ext4"`. + type: string + reclaimPolicy: + description: Optional. Whether the persistent disk should + be deleted when the workstation is deleted. Valid values + are `DELETE` and `RETAIN`. Defaults to `DELETE`. + type: string + sizeGB: + description: |- + Optional. The GB capacity of a persistent home directory for each + workstation created with this configuration. Must be empty if + [source_snapshot][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.source_snapshot] + is set. + + Valid values are `10`, `50`, `100`, `200`, `500`, or `1000`. + Defaults to `200`. If less than `200` GB, the + [disk_type][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.disk_type] + must be + `"pd-balanced"` or `"pd-ssd"`. + format: int32 + type: integer + sourceSnapshot: + description: Optional. Name of the snapshot to use as the + source for the disk. If set, [size_gb][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.size_gb] + and [fs_type][google.cloud.workstations.v1.WorkstationConfig.PersistentDirectory.GceRegionalPersistentDisk.fs_type] + must be empty. + type: string + type: object + mountPath: + description: Optional. Location of this directory in the running + workstation. + type: string + type: object + type: array + readinessChecks: + description: Optional. Readiness checks to perform when starting a + workstation using this workstation configuration. Mark a workstation + as running only after all specified readiness checks return 200 + status codes. + items: + properties: + path: + description: Optional. Path to which the request should be sent. + type: string + port: + description: Optional. Port to which the request should be sent. + format: int32 + type: integer + type: object + type: array + replicaZones: + description: |- + Optional. Immutable. Specifies the zones used to replicate the VM and disk + resources within the region. If set, exactly two zones within the + workstation cluster's region must be specified—for example, + `['us-central1-a', 'us-central1-f']`. If this field is empty, two default + zones within the region are used. + + Immutable after the workstation configuration is created. + items: + type: string + type: array resourceID: - description: Immutable. The WorkstationCluster name. If not given, - the metadata.name will be used. + description: The WorkstationConfig name. If not given, the metadata.name + will be used. type: string - x-kubernetes-validations: - - message: ResourceID field is immutable - rule: self == oldSelf - subnetworkRef: - description: Immutable. Reference to the Compute Engine subnetwork - in which instances associated with this workstation cluster will - be created. Must be part of the subnetwork specified for this workstation - cluster. + runningTimeout: + description: |- + Optional. Number of seconds that a workstation can run until it is + automatically shut down. We recommend that workstations be shut down daily + to reduce costs and so that security updates can be applied upon restart. + The + [idle_timeout][google.cloud.workstations.v1.WorkstationConfig.idle_timeout] + and + [running_timeout][google.cloud.workstations.v1.WorkstationConfig.running_timeout] + fields are independent of each other. Note that the + [running_timeout][google.cloud.workstations.v1.WorkstationConfig.running_timeout] + field shuts down VMs after the specified time, regardless of whether or not + the VMs are idle. + + Provide duration terminated by `s` for seconds—for example, `"54000s"` + (15 hours). Defaults to `"43200s"` (12 hours). A value of `"0s"` indicates + that workstations using this configuration should never time out. If + [encryption_key][google.cloud.workstations.v1.WorkstationConfig.encryption_key] + is set, it must be greater than `"0s"` and less than + `"86400s"` (24 hours). + + Warning: A value of `"0s"` indicates that Cloud Workstations VMs created + with this configuration have no maximum running time. This is strongly + discouraged because you incur costs and will not pick up security updates. + type: string + required: + - parentRef + type: object + status: + description: WorkstationConfigStatus defines the config connector machine + state of WorkstationConfig + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the WorkstationConfig resource + in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: + createTime: + description: Output only. Time when this workstation configuration + was created. + type: string + degraded: + description: Output only. Whether this resource is degraded, in + which case it may require user action to restore full functionality. + See also the [conditions][google.cloud.workstations.v1.WorkstationConfig.conditions] + field. + type: boolean + deleteTime: + description: Output only. Time when this workstation configuration + was soft-deleted. + type: string + etag: + description: Output only. Checksum computed by the server. May + be sent on update and delete requests to make sure that the + client has an up-to-date value before proceeding. + type: string + gcpConditions: + description: Output only. Status conditions describing the current + resource state. + items: + properties: + code: + description: The status code, which should be an enum value + of [google.rpc.Code][google.rpc.Code]. + format: int32 + type: integer + message: + description: A developer-facing error message, which should + be in English. Any user-facing error message should be + localized and sent in the [google.rpc.Status.details][google.rpc.Status.details] + field, or localized by the client. + type: string + type: object + type: array + host: + description: Output only. Observed state of the runtime host for + the workstation configuration. + properties: + gceInstance: + description: Output only. Observed state of the Compute Engine + runtime host for the workstation configuration. + properties: + pooledInstances: + description: Output only. Number of instances currently + available in the pool for faster workstation startup. + format: int32 + type: integer + type: object + type: object + uid: + description: Output only. A system-assigned unique identifier + for this workstation configuration. + type: string + updateTime: + description: Output only. Time when this workstation configuration + was most recently updated. + type: string + type: object + type: object + type: object + served: true + storage: true + subresources: + status: {} +--- +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + cnrm.cloud.google.com/version: 1.128.0 + creationTimestamp: null + labels: + cnrm.cloud.google.com/managed-by-kcc: "true" + cnrm.cloud.google.com/system: "true" + name: workstations.workstations.cnrm.cloud.google.com +spec: + group: workstations.cnrm.cloud.google.com + names: + categories: + - gcp + kind: Workstation + listKind: WorkstationList + plural: workstations + shortNames: + - gcpworkstation + - gcpworkstations + singular: workstation + preserveUnknownFields: false + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1alpha1 + schema: + openAPIV3Schema: + description: Workstation is the Schema for the Workstation API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: WorkstationSpec defines the desired state of Workstation + properties: + annotations: + description: Optional. Client-specified annotations. + items: + properties: + key: + description: Key for the annotation. + type: string + value: + description: Value for the annotation. + type: string + type: object + type: array + displayName: + description: Optional. Human-readable name for this workstation. + type: string + labels: + description: Optional. [Labels](https://cloud.google.com/workstations/docs/label-resources) + that are applied to the workstation and that are also propagated + to the underlying Compute Engine resources. + items: + properties: + key: + description: Key for the label. + type: string + value: + description: Value for the label. + type: string + type: object + type: array + parentRef: + description: Parent is a reference to the parent WorkstationConfig + for this Workstation. oneOf: - not: required: @@ -132603,24 +136822,26 @@ spec: - external properties: external: - description: The ComputeSubnetwork selflink of form "projects/{{project}}/regions/{{region}}/subnetworks/{{name}}", - when not managed by Config Connector. + description: A reference to an externally managed WorkstationConfig + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/workstationClusters/{{workstationclusterID}}/workstationConfigs/{{workstationconfigID}}". type: string name: - description: The `name` field of a `ComputeSubnetwork` resource. + description: The name of a WorkstationConfig resource. type: string namespace: - description: The `namespace` field of a `ComputeSubnetwork` resource. + description: The namespace of a WorkstationConfig resource. type: string type: object + resourceID: + description: The Workstation name. If not given, the metadata.name + will be used. + type: string required: - - networkRef - - projectRef - - subnetworkRef + - parentRef type: object status: - description: WorkstationClusterStatus defines the config connector machine - state of WorkstationCluster + description: WorkstationStatus defines the config connector machine state + of Workstation properties: conditions: description: Conditions represent the latest available observations @@ -132649,8 +136870,7 @@ spec: type: object type: array externalRef: - description: A unique specifier for the WorkstationCluster resource - in GCP. + description: A unique specifier for the Workstation resource in GCP. type: string observedGeneration: description: ObservedGeneration is the generation of the resource @@ -132664,77 +136884,233 @@ spec: description: ObservedState is the state of the resource as most recently observed in GCP. properties: - clusterHostname: - description: Output only. Hostname for the workstation cluster. - This field will be populated only when private endpoint is enabled. - To access workstations in the workstation cluster, create a - new DNS zone mapping this domain name to an internal IP address - and a forwarding rule mapping that address to the service attachment. + createTime: + description: Output only. Time when this workstation was created. type: string - controlPlaneIP: - description: Output only. The private IP address of the control - plane for this workstation cluster. Workstation VMs need access - to this IP address to work with the service, so make sure that - your firewall rules allow egress from the workstation VMs to - this address. + deleteTime: + description: Output only. Time when this workstation was soft-deleted. + type: string + etag: + description: Output only. Checksum computed by the server. May + be sent on update and delete requests to make sure that the + client has an up-to-date value before proceeding. + type: string + host: + description: Output only. Host to which clients can send HTTPS + traffic that will be received by the workstation. Authorized + traffic will be received to the workstation as HTTP on port + 80. To send traffic to a different port, clients may prefix + the host with the destination port in the format `{port}-{host}`. + type: string + startTime: + description: Output only. Time when this workstation was most + recently successfully started, regardless of the workstation's + initial state. + type: string + state: + description: Output only. Current state of the workstation. + type: string + uid: + description: Output only. A system-assigned unique identifier + for this workstation. + type: string + updateTime: + description: Output only. Time when this workstation was most + recently updated. + type: string + type: object + type: object + required: + - spec + type: object + served: true + storage: false + subresources: + status: {} + - additionalPrinterColumns: + - jsonPath: .metadata.creationTimestamp + name: Age + type: date + - description: When 'True', the most recent reconcile of the resource succeeded + jsonPath: .status.conditions[?(@.type=='Ready')].status + name: Ready + type: string + - description: The reason for the value in 'Ready' + jsonPath: .status.conditions[?(@.type=='Ready')].reason + name: Status + type: string + - description: The last transition time for the value in 'Status' + jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime + name: Status Age + type: date + name: v1beta1 + schema: + openAPIV3Schema: + description: Workstation is the Schema for the Workstation API + properties: + apiVersion: + description: 'APIVersion defines the versioned schema of this representation + of an object. Servers should convert recognized schemas to the latest + internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + type: string + kind: + description: 'Kind is a string value representing the REST resource this + object represents. Servers may infer this from the endpoint the client + submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + type: string + metadata: + type: object + spec: + description: WorkstationSpec defines the desired state of Workstation + properties: + annotations: + description: Optional. Client-specified annotations. + items: + properties: + key: + description: Key for the annotation. + type: string + value: + description: Value for the annotation. + type: string + type: object + type: array + displayName: + description: Optional. Human-readable name for this workstation. + type: string + labels: + description: Optional. [Labels](https://cloud.google.com/workstations/docs/label-resources) + that are applied to the workstation and that are also propagated + to the underlying Compute Engine resources. + items: + properties: + key: + description: Key for the label. + type: string + value: + description: Value for the label. + type: string + type: object + type: array + parentRef: + description: Parent is a reference to the parent WorkstationConfig + for this Workstation. + oneOf: + - not: + required: + - external + required: + - name + - not: + anyOf: + - required: + - name + - required: + - namespace + required: + - external + properties: + external: + description: A reference to an externally managed WorkstationConfig + resource. Should be in the format "projects/{{projectID}}/locations/{{location}}/workstationClusters/{{workstationclusterID}}/workstationConfigs/{{workstationconfigID}}". + type: string + name: + description: The name of a WorkstationConfig resource. + type: string + namespace: + description: The namespace of a WorkstationConfig resource. type: string + type: object + resourceID: + description: The Workstation name. If not given, the metadata.name + will be used. + type: string + required: + - parentRef + type: object + status: + description: WorkstationStatus defines the config connector machine state + of Workstation + properties: + conditions: + description: Conditions represent the latest available observations + of the object's current state. + items: + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + type: string + message: + description: Human-readable message indicating details about + last transition. + type: string + reason: + description: Unique, one-word, CamelCase reason for the condition's + last transition. + type: string + status: + description: Status is the status of the condition. Can be True, + False, Unknown. + type: string + type: + description: Type is the type of the condition. + type: string + type: object + type: array + externalRef: + description: A unique specifier for the Workstation resource in GCP. + type: string + observedGeneration: + description: ObservedGeneration is the generation of the resource + that was most recently observed by the Config Connector controller. + If this is equal to metadata.generation, then that means that the + current reported status reflects the most recent desired state of + the resource. + format: int64 + type: integer + observedState: + description: ObservedState is the state of the resource as most recently + observed in GCP. + properties: createTime: - description: Output only. Time when this workstation cluster was - created. + description: Output only. Time when this workstation was created. type: string - degraded: - description: Output only. Whether this workstation cluster is - in degraded mode, in which case it may require user action to - restore full functionality. Details can be found in [conditions][google.cloud.workstations.v1.WorkstationCluster.conditions]. - type: boolean deleteTime: - description: Output only. Time when this workstation cluster was - soft-deleted. + description: Output only. Time when this workstation was soft-deleted. type: string etag: - description: Optional. Checksum computed by the server. May be - sent on update and delete requests to make sure that the client - has an up-to-date value before proceeding. + description: Output only. Checksum computed by the server. May + be sent on update and delete requests to make sure that the + client has an up-to-date value before proceeding. type: string - gcpConditions: - description: Output only. Status conditions describing the workstation - cluster's current state. - items: - properties: - code: - description: The status code, which should be an enum value - of [google.rpc.Code][google.rpc.Code]. - format: int32 - type: integer - message: - description: A developer-facing error message, which should - be in English. Any user-facing error message should be - localized and sent in the [google.rpc.Status.details][google.rpc.Status.details] - field, or localized by the client. - type: string - type: object - type: array - reconciling: - description: Output only. Indicates whether this workstation cluster - is currently being updated to match its intended state. - type: boolean - serviceAttachmentUri: - description: Output only. Service attachment URI for the workstation - cluster. The service attachment is created when private endpoint - is enabled. To access workstations in the workstation cluster, - configure access to the managed service using [Private Service - Connect](https://cloud.google.com/vpc/docs/configure-private-service-connect-services). + host: + description: Output only. Host to which clients can send HTTPS + traffic that will be received by the workstation. Authorized + traffic will be received to the workstation as HTTP on port + 80. To send traffic to a different port, clients may prefix + the host with the destination port in the format `{port}-{host}`. + type: string + startTime: + description: Output only. Time when this workstation was most + recently successfully started, regardless of the workstation's + initial state. + type: string + state: + description: Output only. Current state of the workstation. type: string uid: description: Output only. A system-assigned unique identifier - for this workstation cluster. + for this workstation. type: string updateTime: - description: Output only. Time when this workstation cluster was - most recently updated. + description: Output only. Time when this workstation was most + recently updated. type: string type: object type: object + required: + - spec type: object served: true storage: true diff --git a/operator/channels/packages/configconnector/1.125.0/namespaced/0-cnrm-system.yaml b/operator/channels/packages/configconnector/1.128.0/namespaced/0-cnrm-system.yaml similarity index 95% rename from operator/channels/packages/configconnector/1.125.0/namespaced/0-cnrm-system.yaml rename to operator/channels/packages/configconnector/1.128.0/namespaced/0-cnrm-system.yaml index c421bd52c7..d218705417 100644 --- a/operator/channels/packages/configconnector/1.125.0/namespaced/0-cnrm-system.yaml +++ b/operator/channels/packages/configconnector/1.128.0/namespaced/0-cnrm-system.yaml @@ -2,7 +2,7 @@ apiVersion: v1 kind: Namespace metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-system @@ -11,7 +11,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -21,7 +21,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-resource-stats-recorder @@ -31,7 +31,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-unmanaged-detector @@ -41,7 +41,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-manager @@ -51,7 +51,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-cnrm-system-role @@ -72,7 +72,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-cnrm-system-role @@ -93,7 +93,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -881,6 +881,18 @@ rules: - update - patch - delete +- apiGroups: + - memorystore.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch + - create + - update + - patch + - delete - apiGroups: - mlengine.cnrm.cloud.google.com resources: @@ -1306,7 +1318,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role @@ -1356,7 +1368,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-cluster-role @@ -1414,7 +1426,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-manager-ns-role @@ -1439,7 +1451,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-role @@ -1469,7 +1481,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-unmanaged-detector-cluster-role @@ -1500,7 +1512,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 creationTimestamp: null labels: cnrm.cloud.google.com/system: "true" @@ -2027,6 +2039,14 @@ rules: - get - list - watch +- apiGroups: + - memorystore.cnrm.cloud.google.com + resources: + - '*' + verbs: + - get + - list + - watch - apiGroups: - mlengine.cnrm.cloud.google.com resources: @@ -2312,7 +2332,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role @@ -2375,7 +2395,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-role-binding @@ -2393,7 +2413,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-role-binding @@ -2411,7 +2431,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-admin-binding @@ -2434,7 +2454,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender-binding @@ -2451,7 +2471,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-recorder-binding @@ -2468,7 +2488,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-unmanaged-detector-binding @@ -2485,7 +2505,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook-binding @@ -2502,7 +2522,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-deletiondefender @@ -2519,7 +2539,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 prometheus.io/port: "48797" prometheus.io/scrape: "true" labels: @@ -2540,7 +2560,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -2558,7 +2578,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-resource-stats-recorder cnrm.cloud.google.com/system: "true" @@ -2571,8 +2591,8 @@ spec: - /configconnector/recorder env: - name: CONFIG_CONNECTOR_VERSION - value: 1.125.0 - image: gcr.io/gke-release/cnrm/recorder:2fa0f72 + value: 1.128.0 + image: gcr.io/gke-release/cnrm/recorder:1.128.0 imagePullPolicy: Always name: recorder ports: @@ -2624,7 +2644,7 @@ apiVersion: apps/v1 kind: Deployment metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -2639,7 +2659,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-webhook-manager cnrm.cloud.google.com/system: "true" @@ -2654,7 +2674,7 @@ spec: valueFrom: fieldRef: fieldPath: metadata.namespace - image: gcr.io/gke-release/cnrm/webhook:2fa0f72 + image: gcr.io/gke-release/cnrm/webhook:1.128.0 imagePullPolicy: Always name: webhook ports: @@ -2684,7 +2704,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -2699,7 +2719,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-deletiondefender cnrm.cloud.google.com/system: "true" @@ -2707,7 +2727,7 @@ spec: containers: - command: - /configconnector/deletiondefender - image: gcr.io/gke-release/cnrm/deletiondefender:2fa0f72 + image: gcr.io/gke-release/cnrm/deletiondefender:1.128.0 imagePullPolicy: Always name: deletiondefender ports: @@ -2737,7 +2757,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-unmanaged-detector cnrm.cloud.google.com/system: "true" @@ -2752,7 +2772,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-unmanaged-detector cnrm.cloud.google.com/system: "true" @@ -2760,7 +2780,7 @@ spec: containers: - command: - /configconnector/unmanageddetector - image: gcr.io/gke-release/cnrm/unmanageddetector:2fa0f72 + image: gcr.io/gke-release/cnrm/unmanageddetector:1.128.0 imagePullPolicy: Always name: unmanageddetector ports: @@ -2791,7 +2811,7 @@ kind: HorizontalPodAutoscaler metadata: annotations: autoscaling.alpha.kubernetes.io/metrics: '[{"type":"Resource","resource":{"name":"memory","targetAverageUtilization":70}}]' - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/system: "true" name: cnrm-webhook diff --git a/operator/channels/packages/configconnector/1.125.0/namespaced/per-namespace-components.yaml b/operator/channels/packages/configconnector/1.128.0/namespaced/per-namespace-components.yaml similarity index 93% rename from operator/channels/packages/configconnector/1.125.0/namespaced/per-namespace-components.yaml rename to operator/channels/packages/configconnector/1.128.0/namespaced/per-namespace-components.yaml index c4240a3e13..5937487888 100644 --- a/operator/channels/packages/configconnector/1.125.0/namespaced/per-namespace-components.yaml +++ b/operator/channels/packages/configconnector/1.128.0/namespaced/per-namespace-components.yaml @@ -2,7 +2,7 @@ apiVersion: v1 kind: ServiceAccount metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 iam.gke.io/gcp-service-account: cnrm-system-${NAMESPACE?}@${PROJECT_ID?}.iam.gserviceaccount.com labels: cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} @@ -14,7 +14,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 finalizers: - configconnector.cnrm.cloud.google.com/finalizer labels: @@ -35,7 +35,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 finalizers: - configconnector.cnrm.cloud.google.com/finalizer labels: @@ -56,7 +56,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} cnrm.cloud.google.com/system: "true" @@ -75,7 +75,7 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} cnrm.cloud.google.com/system: "true" @@ -93,7 +93,7 @@ apiVersion: v1 kind: Service metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 prometheus.io/port: "8888" prometheus.io/scrape: "true" labels: @@ -117,7 +117,7 @@ apiVersion: apps/v1 kind: StatefulSet metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} @@ -134,7 +134,7 @@ spec: template: metadata: annotations: - cnrm.cloud.google.com/version: 1.125.0 + cnrm.cloud.google.com/version: 1.128.0 labels: cnrm.cloud.google.com/component: cnrm-controller-manager cnrm.cloud.google.com/scoped-namespace: ${NAMESPACE?} @@ -146,7 +146,7 @@ spec: - --prometheus-scrape-endpoint=:8888 command: - /configconnector/manager - image: gcr.io/gke-release/cnrm/controller:2fa0f72 + image: gcr.io/gke-release/cnrm/controller:1.128.0 imagePullPolicy: Always name: manager ports: diff --git a/operator/channels/stable b/operator/channels/stable index 006aa56966..7634936a79 100644 --- a/operator/channels/stable +++ b/operator/channels/stable @@ -1,2 +1,2 @@ manifests: - - version: 1.127.0 + - version: 1.128.0 diff --git a/operator/config/autopilot/kustomization.yaml b/operator/config/autopilot/kustomization.yaml index 87717dd74d..5a230e15a4 100644 --- a/operator/config/autopilot/kustomization.yaml +++ b/operator/config/autopilot/kustomization.yaml @@ -22,7 +22,7 @@ commonLabels: commonAnnotations: # Given our weekly release schedule, the version of the operator should remain the same of ConfigConnector Core, # if we have to release the operator independently with the KCC core, append extension e.g. 1.6.0-operator.x - cnrm.cloud.google.com/operator-version: "1.127.0" + cnrm.cloud.google.com/operator-version: "1.128.0" bases: - ../crd diff --git a/operator/config/default/kustomization.yaml b/operator/config/default/kustomization.yaml index 1314e18b6b..dc65b3c07e 100644 --- a/operator/config/default/kustomization.yaml +++ b/operator/config/default/kustomization.yaml @@ -22,7 +22,7 @@ commonLabels: commonAnnotations: # Given our weekly release schedule, the version of the operator should remain the same of ConfigConnector Core, # if we have to release the operator independently with the KCC core, append extension e.g. 1.6.0-operator.x - cnrm.cloud.google.com/operator-version: "1.127.0" + cnrm.cloud.google.com/operator-version: "1.128.0" bases: - ../crd diff --git a/operator/config/gke-addon/image_configmap.yaml b/operator/config/gke-addon/image_configmap.yaml index 1eb38a2615..a219278fbd 100644 --- a/operator/config/gke-addon/image_configmap.yaml +++ b/operator/config/gke-addon/image_configmap.yaml @@ -1,10 +1,10 @@ apiVersion: v1 data: - cnrm.controller: gcr.io/gke-release/cnrm/controller:1.127.0 - cnrm.deletiondefender: gcr.io/gke-release/cnrm/deletiondefender:1.127.0 - cnrm.recorder: gcr.io/gke-release/cnrm/recorder:1.127.0 - cnrm.unmanageddetector: gcr.io/gke-release/cnrm/unmanageddetector:1.127.0 - cnrm.webhook: gcr.io/gke-release/cnrm/webhook:1.127.0 + cnrm.controller: gcr.io/gke-release/cnrm/controller:1.128.0 + cnrm.deletiondefender: gcr.io/gke-release/cnrm/deletiondefender:1.128.0 + cnrm.recorder: gcr.io/gke-release/cnrm/recorder:1.128.0 + cnrm.unmanageddetector: gcr.io/gke-release/cnrm/unmanageddetector:1.128.0 + cnrm.webhook: gcr.io/gke-release/cnrm/webhook:1.128.0 prom-to-sd: gcr.io/gke-release/prometheus-to-sd:v0.11.12-gke.11 kind: ConfigMap metadata: diff --git a/version/VERSION b/version/VERSION index a7fd4875b4..a706372453 100644 --- a/version/VERSION +++ b/version/VERSION @@ -1 +1 @@ -1.127.0 +1.128.0