Index
Applications(interface)AuthorizedCertificates(interface)AuthorizedDomains(interface)DomainMappings(interface)Firewall(interface)Instances(interface)Services(interface)Versions(interface)ApiConfigHandler(message)ApiEndpointHandler(message)Application(message)Application.DatabaseType(enum)Application.FeatureSettings(message)Application.IdentityAwareProxy(message)Application.ServingStatus(enum)AuthFailAction(enum)AuthorizedCertificate(message)AuthorizedCertificateView(enum)AuthorizedDomain(message)AutomaticScaling(message)BasicScaling(message)BatchUpdateIngressRulesRequest(message)BatchUpdateIngressRulesResponse(message)CertificateRawData(message)CloudBuildOptions(message)ContainerInfo(message)CpuUtilization(message)CreateApplicationRequest(message)CreateAuthorizedCertificateRequest(message)CreateDomainMappingRequest(message)CreateIngressRuleRequest(message)CreateVersionMetadataV1(message)CreateVersionRequest(message)DebugInstanceRequest(message)DeleteAuthorizedCertificateRequest(message)DeleteDomainMappingRequest(message)DeleteIngressRuleRequest(message)DeleteInstanceRequest(message)DeleteServiceRequest(message)DeleteVersionRequest(message)Deployment(message)DiskUtilization(message)DomainMapping(message)DomainOverrideStrategy(enum)EndpointsApiService(message)EndpointsApiService.RolloutStrategy(enum)Entrypoint(message)ErrorHandler(message)ErrorHandler.ErrorCode(enum)FileInfo(message)FirewallRule(message)FirewallRule.Action(enum)FlexibleRuntimeSettings(message)GetApplicationRequest(message)GetAuthorizedCertificateRequest(message)GetDomainMappingRequest(message)GetIngressRuleRequest(message)GetInstanceRequest(message)GetServiceRequest(message)GetVersionRequest(message)HealthCheck(message)InboundServiceType(enum)Instance(message)Instance.Availability(enum)Instance.Liveness(message)Instance.Liveness.LivenessState(enum)Library(message)ListAuthorizedCertificatesRequest(message)ListAuthorizedCertificatesResponse(message)ListAuthorizedDomainsRequest(message)ListAuthorizedDomainsResponse(message)ListDomainMappingsRequest(message)ListDomainMappingsResponse(message)ListIngressRulesRequest(message)ListIngressRulesResponse(message)ListInstancesRequest(message)ListInstancesResponse(message)ListServicesRequest(message)ListServicesResponse(message)ListVersionsRequest(message)ListVersionsResponse(message)LivenessCheck(message)LocationMetadata(message)LoginRequirement(enum)ManagedCertificate(message)ManagementStatus(enum)ManualScaling(message)Network(message)NetworkSettings(message)NetworkSettings.IngressTrafficAllowed(enum)NetworkUtilization(message)OperationMetadataV1(message)ReadinessCheck(message)RepairApplicationRequest(message)RequestUtilization(message)ResourceRecord(message)ResourceRecord.RecordType(enum)Resources(message)ScriptHandler(message)SecurityLevel(enum)Service(message)ServingStatus(enum)SslSettings(message)SslSettings.SslManagementType(enum)StandardSchedulerSettings(message)StaticFilesHandler(message)TrafficSplit(message)TrafficSplit.ShardBy(enum)UpdateApplicationRequest(message)UpdateAuthorizedCertificateRequest(message)UpdateDomainMappingRequest(message)UpdateIngressRuleRequest(message)UpdateServiceRequest(message)UpdateVersionRequest(message)UrlDispatchRule(message)UrlMap(message)UrlMap.RedirectHttpResponseCode(enum)Version(message)VersionView(enum)Volume(message)VpcAccessConnector(message)VpcAccessConnector.EgressSetting(enum)ZipInfo(message)
Applications
Manages App Engine applications.
| CreateApplication |
|---|
|
Creates an App Engine application for a Google Cloud Platform project. Required fields:
For more information about App Engine applications, see Managing Projects, Applications, and Billing.
|
| GetApplication |
|---|
|
Gets information about an application.
|
| RepairApplication |
|---|
|
Recreates the required App Engine features for the specified App Engine application, for example a Cloud Storage bucket or App Engine service account. Use this method if you receive an error message about a missing feature, for example, Error retrieving the App Engine service account. If you have deleted your App Engine service account, this will not be able to recreate it. Instead, you should attempt to use the IAM undelete API if possible at https://cloud.google.com/iam/reference/rest/v1/projects.serviceAccounts/undelete?apix_params=%7B"name"%3A"projects%2F-%2FserviceAccounts%2Funique_id"%2C"resource"%3A%7B%7D%7D . If the deletion was recent, the numeric ID can be found in the Cloud Console Activity Log.
|
| UpdateApplication |
|---|
|
Updates the specified Application resource. You can update the following fields:
|
AuthorizedCertificates
Manages SSL certificates a user is authorized to administer. A user can administer any SSL certificates applicable to their authorized domains.
| CreateAuthorizedCertificate |
|---|
|
Uploads the specified SSL certificate.
|
| DeleteAuthorizedCertificate |
|---|
|
Deletes the specified SSL certificate.
|
| GetAuthorizedCertificate |
|---|
|
Gets the specified SSL certificate.
|
| ListAuthorizedCertificates |
|---|
|
Lists all SSL certificates the user is authorized to administer.
|
| UpdateAuthorizedCertificate |
|---|
|
Updates the specified SSL certificate. To renew a certificate and maintain its existing domain mappings, update
|
AuthorizedDomains
Manages domains a user is authorized to administer. To authorize use of a domain, verify ownership via Search Console.
| ListAuthorizedDomains |
|---|
|
Lists all domains the user is authorized to administer.
|
DomainMappings
Manages domains serving an application.
| CreateDomainMapping |
|---|
|
Maps a domain to an application. A user must be authorized to administer a domain in order to map it to an application. For a list of available authorized domains, see
|
| DeleteDomainMapping |
|---|
|
Deletes the specified domain mapping. A user must be authorized to administer the associated domain in order to delete a
|
| GetDomainMapping |
|---|
|
Gets the specified domain mapping.
|
| ListDomainMappings |
|---|
|
Lists the domain mappings on an application.
|
| UpdateDomainMapping |
|---|
|
Updates the specified domain mapping. To map an SSL certificate to a domain mapping, update
|
Firewall
Firewall resources are used to define a collection of access control rules for an Application. Each rule is defined with a position which specifies the rule's order in the sequence of rules, an IP range to be matched against requests, and an action to take upon matching requests.
Every request is evaluated against the Firewall rules in priority order. Processesing stops at the first rule which matches the request's IP address. A final rule always specifies an action that applies to all remaining IP addresses. The default final rule for a newly-created application will be set to "allow" if not otherwise specified by the user.
| BatchUpdateIngressRules |
|---|
|
Replaces the entire firewall ruleset in one bulk operation. This overrides and replaces the rules of an existing firewall with the new rules. If the final rule does not match traffic with the '*' wildcard IP range, then an "allow all" rule is explicitly added to the end of the list.
|
| CreateIngressRule |
|---|
|
Creates a firewall rule for the application.
|
| DeleteIngressRule |
|---|
|
Deletes the specified firewall rule.
|
| GetIngressRule |
|---|
|
Gets the specified firewall rule.
|
| ListIngressRules |
|---|
|
Lists the firewall rules of an application.
|
| UpdateIngressRule |
|---|
|
Updates the specified firewall rule.
|
Instances
Manages instances of a version.
| DebugInstance |
|---|
|
Enables debugging on a VM instance. This allows you to use the SSH command to connect to the virtual machine where the instance lives. While in "debug mode", the instance continues to serve live traffic. You should delete the instance when you are done debugging and then allow the system to take over and determine if another instance should be started. Only applicable for instances in App Engine flexible environment.
|
| DeleteInstance |
|---|
|
Stops a running instance. The instance might be automatically recreated based on the scaling settings of the version. For more information, see "How Instances are Managed" (standard environment | flexible environment). To ensure that instances are not re-created and avoid getting billed, you can stop all instances within the target version by changing the serving status of the version to
|
| GetInstance |
|---|
|
Gets instance information.
|
| ListInstances |
|---|
|
Lists the instances of a version. Tip: To aggregate details about instances over time, see the Stackdriver Monitoring API.
|
Services
Manages services of an application.
| DeleteService |
|---|
|
Deletes the specified service and all enclosed versions.
|
| GetService |
|---|
|
Gets the current configuration of the specified service.
|
| ListServices |
|---|
|
Lists all the services in the application.
|
| UpdateService |
|---|
|
Updates the configuration of the specified service.
|
Versions
Manages versions of a service.
| CreateVersion |
|---|
|
Deploys code and resource files to a new version.
|
| DeleteVersion |
|---|
|
Deletes an existing Version resource.
|
| GetVersion |
|---|
|
Gets the specified Version resource. By default, only a
|
| ListVersions |
|---|
|
Lists the versions of a service.
|
| UpdateVersion |
|---|
|
Updates the specified Version resource. You can specify the following fields depending on the App Engine environment and type of scaling that the version resource uses: Standard environment automatic scaling in the standard environment:
basic scaling or manual scaling in the standard environment: Flexible environment automatic scaling in the flexible environment:
manual scaling in the flexible environment:
|
ApiConfigHandler
Google Cloud Endpoints configuration for API handlers.
| Fields | |
|---|---|
auth_fail_action |
Action to take when users access resources that require authentication. Defaults to |
login |
Level of login required to access this resource. Defaults to |
script |
Path to the script from the application root directory. |
security_level |
Security (HTTPS) enforcement for this URL. |
url |
URL to serve the endpoint at. |
ApiEndpointHandler
Uses Google Cloud Endpoints to handle requests.
| Fields | |
|---|---|
script_path |
Path to the script from the application root directory. |
Application
An Application resource contains the top-level configuration of an App Engine application.
| Fields | |
|---|---|
name |
Output only. Full path to the Application resource in the API. Example: Note: This field is used in responses only. Any value specified here in a request is ignored. |
id |
Identifier of the Application resource. This identifier is equivalent to the project ID of the Google Cloud Platform project where you want to deploy your application. Example: |
dispatch_rules[] |
HTTP path dispatch rules for requests to the application that do not explicitly target a service or version. Rules are order-dependent. Up to 20 dispatch rules can be supported. |
auth_domain |
Google Apps authentication domain that controls which users can access this application. Defaults to open access for any Google Account. |
location_id |
Location from which this application runs. Application instances run out of the data centers in the specified location, which is also where all of the application's end user content is stored. Defaults to View the list of supported locations. |
code_bucket |
Output only. Google Cloud Storage bucket that can be used for storing files associated with this application. This bucket is associated with the application and can be used by the gcloud deployment commands. Note: This field is used in responses only. Any value specified here in a request is ignored. |
default_cookie_expiration |
Cookie expiration policy for this application. |
serving_status |
Serving status of this application. |
default_hostname |
Output only. Hostname used to reach this application, as resolved by App Engine. Note: This field is used in responses only. Any value specified here in a request is ignored. |
default_bucket |
Output only. Google Cloud Storage bucket that can be used by this application to store content. Note: This field is used in responses only. Any value specified here in a request is ignored. |
service_account |
The service account associated with the application. This is the app-level default identity. If no identity provided during create version, Admin API will fallback to this one. |
iap |
|
gcr_domain |
Output only. The Google Container Registry domain used for storing managed build docker images for this application. |
database_type |
The type of the Cloud Firestore or Cloud Datastore database associated with this application. |
feature_settings |
The feature specific settings to be used in the application. |
DatabaseType
| Enums | |
|---|---|
DATABASE_TYPE_UNSPECIFIED |
Database type is unspecified. |
CLOUD_DATASTORE |
Cloud Datastore |
CLOUD_FIRESTORE |
Cloud Firestore Native |
CLOUD_DATASTORE_COMPATIBILITY |
Cloud Firestore in Datastore Mode |
FeatureSettings
The feature specific settings to be used in the application. These define behaviors that are user configurable.
| Fields | |
|---|---|
split_health_checks |
Boolean value indicating if split health checks should be used instead of the legacy health checks. At an app.yaml level, this means defaulting to 'readiness_check' and 'liveness_check' values instead of 'health_check' ones. Once the legacy 'health_check' behavior is deprecated, and this value is always true, this setting can be removed. |
use_container_optimized_os |
If true, use Container-Optimized OS base image for VMs, rather than a base Debian image. |
IdentityAwareProxy
Identity-Aware Proxy
| Fields | |
|---|---|
enabled |
Whether the serving infrastructure will authenticate and authorize all incoming requests. If true, the |
oauth2_client_id |
OAuth2 client ID to use for the authentication flow. |
oauth2_client_secret |
OAuth2 client secret to use for the authentication flow. For security reasons, this value cannot be retrieved via the API. Instead, the SHA-256 hash of the value is returned in the @InputOnly |
oauth2_client_secret_sha256 |
Output only. Hex-encoded SHA-256 hash of the client secret. Note: This field is used in responses only. Any value specified here in a request is ignored. |
ServingStatus
| Enums | |
|---|---|
UNSPECIFIED |
Serving status is unspecified. |
SERVING |
Application is serving. |
USER_DISABLED |
Application has been disabled by the user. |
SYSTEM_DISABLED |
Application has been disabled by the system. |
AuthFailAction
Actions to take when the user is not logged in.
| Enums | |
|---|---|
AUTH_FAIL_ACTION_UNSPECIFIED |
Not specified. AUTH_FAIL_ACTION_REDIRECT is assumed. |
AUTH_FAIL_ACTION_REDIRECT |
Redirects user to "accounts.google.com". The user is redirected back to the application URL after signing in or creating an account. |
AUTH_FAIL_ACTION_UNAUTHORIZED |
Rejects request with a 401 HTTP status code and an error message. |
AuthorizedCertificate
An SSL certificate that a user has been authorized to administer. A user is authorized to administer any certificate that applies to one of their authorized domains.
| Fields | |
|---|---|
name |
Full path to the Note: This field is used in responses only. Any value specified here in a request is ignored. |
id |
Relative name of the certificate. This is a unique value autogenerated on Note: This field is used in responses only. Any value specified here in a request is ignored. |
display_name |
The user-specified display name of the certificate. This is not guaranteed to be unique. Example: |
domain_names[] |
Topmost applicable domains of this certificate. This certificate applies to these domains and their subdomains. Example: Note: This field is used in responses only. Any value specified here in a request is ignored. |
expire_time |
The time when this certificate expires. To update the renewal time on this certificate, upload an SSL certificate with a different expiration time using Note: This field is used in responses only. Any value specified here in a request is ignored. |
certificate_raw_data |
The SSL certificate serving the |
managed_certificate |
Only applicable if this certificate is managed by App Engine. Managed certificates are tied to the lifecycle of a Note: This field is used in responses only. Any value specified here in a request is ignored. |
visible_domain_mappings[] |
The full paths to user visible Domain Mapping resources that have this certificate mapped. Example: This may not represent the full list of mapped domain mappings if the user does not have Only returned by Note: This field is used in responses only. Any value specified here in a request is ignored. |
domain_mappings_count |
Aggregate count of the domain mappings with this certificate mapped. This count includes domain mappings on applications for which the user does not have Only returned by Note: This field is used in responses only. Any value specified here in a request is ignored. |
AuthorizedCertificateView
Fields that should be returned when an AuthorizedCertificate resource is retrieved.
| Enums | |
|---|---|
BASIC_CERTIFICATE |
Basic certificate information, including applicable domains and expiration date. |
FULL_CERTIFICATE |
The information from BASIC_CERTIFICATE, plus detailed information on the domain mappings that have this certificate mapped. |
AuthorizedDomain
A domain that a user has been authorized to administer. To authorize use of a domain, verify ownership via Search Console.
| Fields | |
|---|---|
name |
Full path to the Note: This field is used in responses only. Any value specified here in a request is ignored. |
id |
Fully qualified domain name of the domain authorized for use. Example: |
AutomaticScaling
Automatic scaling is based on request rate, response latencies, and other application metrics.
| Fields | |
|---|---|
cool_down_period |
The time period that the Autoscaler should wait before it starts collecting information from a new instance. This prevents the autoscaler from collecting information when the instance is initializing, during which the collected usage would not be reliable. Only applicable in the App Engine flexible environment. |
cpu_utilization |
Target scaling by CPU usage. |
max_concurrent_requests |
Number of concurrent requests an automatic scaling instance can accept before the scheduler spawns a new instance. Defaults to a runtime-specific value. |
max_idle_instances |
Maximum number of idle instances that should be maintained for this version. |
max_total_instances |
Maximum number of instances that should be started to handle requests for this version. |
max_pending_latency |
Maximum amount of time that a request should wait in the pending queue before starting a new instance to handle it. |
min_idle_instances |
Minimum number of idle instances that should be maintained for this version. Only applicable for the default version of a service. |
min_total_instances |
Minimum number of running instances that should be maintained for this version. |
min_pending_latency |
Minimum amount of time a request should wait in the pending queue before starting a new instance to handle it. |
request_utilization |
Target scaling by request utilization. |
disk_utilization |
Target scaling by disk usage. |
network_utilization |
Target scaling by network usage. |
standard_scheduler_settings |
Scheduler settings for standard environment. |
BasicScaling
A service with basic scaling will create an instance when the application receives a request. The instance will be turned down when the app becomes idle. Basic scaling is ideal for work that is intermittent or driven by user activity.
| Fields | |
|---|---|
idle_timeout |
Duration of time after the last request that an instance must wait before the instance is shut down. |
max_instances |
Maximum number of instances to create for this version. |
BatchUpdateIngressRulesRequest
Request message for Firewall.BatchUpdateIngressRules.
| Fields | |
|---|---|
name |
Name of the Firewall collection to set. Example: Authorization requires the following IAM permission on the specified resource
|
ingress_rules[] |
A list of FirewallRules to replace the existing set. |
BatchUpdateIngressRulesResponse
Response message for Firewall.UpdateAllIngressRules.
| Fields | |
|---|---|
ingress_rules[] |
The full list of ingress FirewallRules for this application. |
CertificateRawData
An SSL certificate obtained from a certificate authority.
| Fields | |
|---|---|
public_certificate |
PEM encoded x.509 public key certificate. This field is set once on certificate creation. Must include the header and footer. Example: -----BEGIN CERTIFICATE----- |
private_key |
Unencrypted PEM encoded RSA private key. This field is set once on certificate creation and then encrypted. The key size must be 2048 bits or fewer. Must include the header and footer. Example: -----BEGIN RSA PRIVATE KEY----- @InputOnly |
CloudBuildOptions
Options for the build operations performed as a part of the version deployment. Only applicable for App Engine flexible environment when creating a version using source code directly.
| Fields | |
|---|---|
app_yaml_path |
Path to the yaml file used in deployment, used to determine runtime configuration details. Required for flexible environment builds. See https://cloud.google.com/appengine/docs/standard/python/config/appref for more details. |
cloud_build_timeout |
The Cloud Build timeout used as part of any dependent builds performed by version creation. Defaults to 10 minutes. |
ContainerInfo
Docker image that is used to create a container and start a VM instance for the version that you deploy. Only applicable for instances running in the App Engine flexible environment.
| Fields | |
|---|---|
image |
URI to the hosted container image in Google Container Registry. The URI must be fully qualified and include a tag or digest. Examples: "gcr.io/my-project/image:tag" or "gcr.io/my-project/image@digest" |
CpuUtilization
Target scaling by CPU usage.
| Fields | |
|---|---|
aggregation_window_length |
Period of time over which CPU utilization is calculated. |
target_utilization |
Target CPU utilization ratio to maintain when scaling. Must be between 0 and 1. |
CreateApplicationRequest
Request message for Applications.CreateApplication.
| Fields | |
|---|---|
application |
Application configuration. Authorization requires the following IAM permission on the specified resource
|
CreateAuthorizedCertificateRequest
Request message for AuthorizedCertificates.CreateAuthorizedCertificate.
| Fields | |
|---|---|
parent |
Name of the parent Authorization requires the following IAM permission on the specified resource
|
certificate |
SSL certificate data. |
CreateDomainMappingRequest
Request message for DomainMappings.CreateDomainMapping.
| Fields | |
|---|---|
parent |
Name of the parent Application resource. Example: Authorization requires the following IAM permission on the specified resource
|
domain_mapping |
Domain mapping configuration. |
override_strategy |
Whether the domain creation should override any existing mappings for this domain. By default, overrides are rejected. |
CreateIngressRuleRequest
Request message for Firewall.CreateIngressRule.
| Fields | |
|---|---|
parent |
Name of the parent Firewall collection in which to create a new rule. Example: Authorization requires the following IAM permission on the specified resource
|
rule |
A FirewallRule containing the new resource. The user may optionally provide a position at which the new rule will be placed. The positions define a sequential list starting at 1. If a rule already exists at the given position, rules greater than the provided position will be moved forward by one. If no position is provided, the server will place the rule as the second to last rule in the sequence before the required default allow-all or deny-all rule. |
CreateVersionMetadataV1
Metadata for the given google.longrunning.Operation during a google.appengine.v1.CreateVersionRequest.
| Fields | |
|---|---|
cloud_build_id |
The Cloud Build ID if one was created as part of the version create. Note: This field is used in responses only. Any value specified here in a request is ignored. |
CreateVersionRequest
Request message for Versions.CreateVersion.
| Fields | |
|---|---|
parent |
Name of the parent resource to create this version under. Example: Authorization requires the following IAM permission on the specified resource
|
version |
Application deployment configuration. |
DebugInstanceRequest
Request message for Instances.DebugInstance.
| Fields | |
|---|---|
name |
Name of the resource requested. Example: Authorization requires the following IAM permission on the specified resource
|
ssh_key |
Public SSH key to add to the instance. Examples:
For more information, see Adding and Removing SSH Keys. Authorization requires the following IAM permission on the specified resource
|
DeleteAuthorizedCertificateRequest
Request message for AuthorizedCertificates.DeleteAuthorizedCertificate.
| Fields | |
|---|---|
name |
Name of the resource to delete. Example: Authorization requires the following IAM permission on the specified resource
|
DeleteDomainMappingRequest
Request message for DomainMappings.DeleteDomainMapping.
| Fields | |
|---|---|
name |
Name of the resource to delete. Example: Authorization requires the following IAM permission on the specified resource
|
DeleteIngressRuleRequest
Request message for Firewall.DeleteIngressRule.
| Fields | |
|---|---|
name |
Name of the Firewall resource to delete. Example: Authorization requires the following IAM permission on the specified resource
|
DeleteInstanceRequest
Request message for Instances.DeleteInstance.
| Fields | |
|---|---|
name |
Name of the resource requested. Example: Authorization requires the following IAM permission on the specified resource
|
DeleteServiceRequest
Request message for Services.DeleteService.
| Fields | |
|---|---|
name |
Name of the resource requested. Example: Authorization requires the following IAM permission on the specified resource
|
DeleteVersionRequest
Request message for Versions.DeleteVersion.
| Fields | |
|---|---|
name |
Name of the resource requested. Example: Authorization requires the following IAM permission on the specified resource
|
Deployment
Code and application artifacts used to deploy a version to App Engine.
| Fields | |
|---|---|
files |
Manifest of the files stored in Google Cloud Storage that are included as part of this version. All files must be readable using the credentials supplied with this call. |
container |
The Docker image for the container that runs the version. Only applicable for instances running in the App Engine flexible environment. |
zip |
The zip file for this deployment, if this is a zip deployment. |
cloud_build_options |
Options for any Google Cloud Build builds created as a part of this deployment. These options will only be used if a new build is created, such as when deploying to the App Engine flexible environment using files or zip. |
DiskUtilization
Target scaling by disk usage. Only applicable in the App Engine flexible environment.
| Fields | |
|---|---|
target_write_bytes_per_second |
Target bytes written per second. |
target_write_ops_per_second |
Target ops written per second. |
target_read_bytes_per_second |
Target bytes read per second. |
target_read_ops_per_second |
Target ops read per seconds. |
DomainMapping
A domain serving an App Engine application.
| Fields | |
|---|---|
name |
Full path to the Note: This field is used in responses only. Any value specified here in a request is ignored. |
id |
Relative name of the domain serving the application. Example: |
ssl_settings |
SSL configuration for this domain. If unconfigured, this domain will not serve with SSL. |
resource_records[] |
The resource records required to configure this domain mapping. These records must be added to the domain's DNS configuration in order to serve the application via this domain mapping. Note: This field is used in responses only. Any value specified here in a request is ignored. |
DomainOverrideStrategy
Override strategy for mutating an existing mapping.
| Enums | |
|---|---|
UNSPECIFIED_DOMAIN_OVERRIDE_STRATEGY |
Strategy unspecified. Defaults to STRICT. |
STRICT |
Overrides not allowed. If a mapping already exists for the specified domain, the request will return an ALREADY_EXISTS (409). |
OVERRIDE |
Overrides allowed. If a mapping already exists for the specified domain, the request will overwrite it. Note that this might stop another Google product from serving. For example, if the domain is mapped to another App Engine application, that app will no longer serve from that domain. |
EndpointsApiService
Google Cloud Endpoints configuration. The Endpoints API Service provides tooling for serving Open API and gRPC endpoints via an NGINX proxy. Only valid for App Engine Flexible environment deployments.
The fields here refer to the name and configuration ID of a "service" resource in the Service Management API.
| Fields | |
|---|---|
name |
Endpoints service name which is the name of the "service" resource in the Service Management API. For example "myapi.endpoints.myproject.cloud.goog" |
config_id |
Endpoints service configuration ID as specified by the Service Management API. For example "2016-09-19r1". By default, the rollout strategy for Endpoints is Endpoints also has a rollout strategy called |
rollout_strategy |
Endpoints rollout strategy. If |
disable_trace_sampling |
Enable or disable trace sampling. By default, this is set to false for enabled. |
RolloutStrategy
Available rollout strategies.
| Enums | |
|---|---|
UNSPECIFIED_ROLLOUT_STRATEGY |
Not specified. Defaults to FIXED. |
FIXED |
Endpoints service configuration ID will be fixed to the configuration ID specified by config_id. |
MANAGED |
Endpoints service configuration ID will be updated with each rollout. |
Entrypoint
The entrypoint for the application.
| Fields | |
|---|---|
shell |
The format should be a shell command that can be fed to |
ErrorHandler
Custom static error page to be served when an error occurs.
| Fields | |
|---|---|
error_code |
Error condition this handler applies to. |
static_file |
Static file content to be served for this error. |
mime_type |
MIME type of file. Defaults to |
ErrorCode
Error codes.
| Enums | |
|---|---|
ERROR_CODE_UNSPECIFIED |
Not specified. ERROR_CODE_DEFAULT is assumed. |
ERROR_CODE_DEFAULT |
All other error types. |
ERROR_CODE_OVER_QUOTA |
Application has exceeded a resource quota. |
ERROR_CODE_DOS_API_DENIAL |
Client blocked by the application's Denial of Service protection configuration. |
ERROR_CODE_TIMEOUT |
Deadline reached before the application responds. |
FileInfo
Single source file that is part of the version to be deployed. Each source file that is deployed must be specified separately.
| Fields | |
|---|---|
source_url |
URL source to use to fetch this file. Must be a URL to a resource in Google Cloud Storage in the form 'http(s)://storage.googleapis.com/<bucket>/<object>'. |
sha1_sum |
The SHA1 hash of the file, in hex. |
mime_type |
The MIME type of the file. Defaults to the value from Google Cloud Storage. |
FirewallRule
A single firewall rule that is evaluated against incoming traffic and provides an action to take on matched requests.
| Fields | |
|---|---|
priority |
A positive integer between [1, Int32.MaxValue-1] that defines the order of rule evaluation. Rules with the lowest priority are evaluated first. A default rule at priority Int32.MaxValue matches all IPv4 and IPv6 traffic when no previous rule matches. Only the action of this rule can be modified by the user. |
action |
The action to take on matched requests. |
source_range |
IP address or range, defined using CIDR notation, of requests that this rule applies to. You can use the wildcard character "*" to match all IPs equivalent to "0/0" and "::/0" together. Examples: Truncation will be silently performed on addresses which are not properly truncated. For example, |
description |
An optional string description of this rule. This field has a maximum length of 400 characters. |
Action
Available actions to take on matching requests.
| Enums | |
|---|---|
UNSPECIFIED_ACTION |
|
ALLOW |
Matching requests are allowed. |
DENY |
Matching requests are denied. |
FlexibleRuntimeSettings
Runtime settings for the App Engine flexible environment.
| Fields | |
|---|---|
operating_system |
The operating system of the application runtime. |
runtime_version |
The runtime version of an App Engine flexible application. |
GetApplicationRequest
Request message for Applications.GetApplication.
| Fields | |
|---|---|
name |
Name of the Application resource to get. Example: Authorization requires the following IAM permission on the specified resource
|
GetAuthorizedCertificateRequest
Request message for AuthorizedCertificates.GetAuthorizedCertificate.
| Fields | |
|---|---|
name |
Name of the resource requested. Example: Authorization requires the following IAM permission on the specified resource
|
view |
Controls the set of fields returned in the |
GetDomainMappingRequest
Request message for DomainMappings.GetDomainMapping.
| Fields | |
|---|---|
name |
Name of the resource requested. Example: Authorization requires the following IAM permission on the specified resource
|
GetIngressRuleRequest
Request message for Firewall.GetIngressRule.
| Fields | |
|---|---|
name |
Name of the Firewall resource to retrieve. Example: Authorization requires the following IAM permission on the specified resource
|
GetInstanceRequest
Request message for Instances.GetInstance.
| Fields | |
|---|---|
name |
Name of the resource requested. Example: Authorization requires the following IAM permission on the specified resource
|
GetServiceRequest
Request message for Services.GetService.
| Fields | |
|---|---|
name |
Name of the resource requested. Example: Authorization requires the following IAM permission on the specified resource
|
GetVersionRequest
Request message for Versions.GetVersion.
| Fields | |
|---|---|
name |
Name of the resource requested. Example: Authorization requires the following IAM permission on the specified resource
|
view |
Controls the set of fields returned in the |
HealthCheck
Health checking configuration for VM instances. Unhealthy instances are killed and replaced with new instances. Only applicable for instances in App Engine flexible environment.
| Fields | |
|---|---|
disable_health_check |
Whether to explicitly disable health checks for this instance. |
host |
Host header to send when performing an HTTP health check. Example: "myapp.appspot.com" |
healthy_threshold |
Number of consecutive successful health checks required before receiving traffic. |
unhealthy_threshold |
Number of consecutive failed health checks required before removing traffic. |
restart_threshold |
Number of consecutive failed health checks required before an instance is restarted. |
check_interval |
Interval between health checks. |
timeout |
Time before the health check is considered failed. |
InboundServiceType
Available inbound services.
| Enums | |
|---|---|
INBOUND_SERVICE_UNSPECIFIED |
Not specified. |
INBOUND_SERVICE_MAIL |
Allows an application to receive mail. |
INBOUND_SERVICE_MAIL_BOUNCE |
Allows an application to receive email-bound notifications. |
INBOUND_SERVICE_XMPP_ERROR |
Allows an application to receive error stanzas. |
INBOUND_SERVICE_XMPP_MESSAGE |
Allows an application to receive instant messages. |
INBOUND_SERVICE_XMPP_SUBSCRIBE |
Allows an application to receive user subscription POSTs. |
INBOUND_SERVICE_XMPP_PRESENCE |
Allows an application to receive a user's chat presence. |
INBOUND_SERVICE_CHANNEL_PRESENCE |
Registers an application for notifications when a client connects or disconnects from a channel. |
INBOUND_SERVICE_WARMUP |
Enables warmup requests. |
Instance
An Instance resource is the computing unit that App Engine uses to automatically scale an application.
| Fields | |
|---|---|
name |
Output only. Full path to the Instance resource in the API. Example: |
id |
Output only. Relative name of the instance within the version. Example: |
app_engine_release |
Output only. App Engine release this instance is running on. |
availability |
Output only. Availability of the instance. |
vm_name |
Output only. Name of the virtual machine where this instance lives. Only applicable for instances in App Engine flexible environment. |
vm_zone_name |
Output only. Zone where the virtual machine is located. Only applicable for instances in App Engine flexible environment. |
vm_id |
Output only. Virtual machine ID of this instance. Only applicable for instances in App Engine flexible environment. |
start_time |
Output only. Time that this instance was started. Note: This field is used in responses only. Any value specified here in a request is ignored. |
requests |
Output only. Number of requests since this instance was started. |
errors |
Output only. Number of errors since this instance was started. |
qps |
Output only. Average queries per second (QPS) over the last minute. |
average_latency |
Output only. Average latency (ms) over the last minute. |
memory_usage |
Output only. Total memory in use (bytes). |
vm_status |
Output only. Status of the virtual machine where this instance lives. Only applicable for instances in App Engine flexible environment. |
vm_debug_enabled |
Output only. Whether this instance is in debug mode. Only applicable for instances in App Engine flexible environment. |
vm_ip |
Output only. The IP address of this instance. Only applicable for instances in App Engine flexible environment. |
vm_liveness |
Output only. The liveness health check of this instance. Only applicable for instances in App Engine flexible environment. |
Availability
Availability of the instance.
| Enums | |
|---|---|
UNSPECIFIED |
|
RESIDENT |
|
DYNAMIC |
|
Liveness
Wrapper for LivenessState enum.
LivenessState
Liveness health check status for Flex instances.
| Enums | |
|---|---|
LIVENESS_STATE_UNSPECIFIED |
There is no liveness health check for the instance. Only applicable for instances in App Engine standard environment. |
UNKNOWN |
The health checking system is aware of the instance but its health is not known at the moment. |
HEALTHY |
The instance is reachable i.e. a connection to the application health checking endpoint can be established, and conforms to the requirements defined by the health check. |
UNHEALTHY |
The instance is reachable, but does not conform to the requirements defined by the health check. |
DRAINING |
The instance is being drained. The existing connections to the instance have time to complete, but the new ones are being refused. |
TIMEOUT |
The instance is unreachable i.e. a connection to the application health checking endpoint cannot be established, or the server does not respond within the specified timeout. |
Library
Third-party Python runtime library that is required by the application.
| Fields | |
|---|---|
name |
Name of the library. Example: "django". |
version |
Version of the library to select, or "latest". |
ListAuthorizedCertificatesRequest
Request message for AuthorizedCertificates.ListAuthorizedCertificates.
| Fields | |
|---|---|
parent |
Name of the parent Authorization requires the following IAM permission on the specified resource
|
view |
Controls the set of fields returned in the |
page_size |
Maximum results to return per page. |
page_token |
Continuation token for fetching the next page of results. |
ListAuthorizedCertificatesResponse
Response message for AuthorizedCertificates.ListAuthorizedCertificates.
| Fields | |
|---|---|
certificates[] |
The SSL certificates the user is authorized to administer. |
next_page_token |
Continuation token for fetching the next page of results. |
ListAuthorizedDomainsRequest
Request message for AuthorizedDomains.ListAuthorizedDomains.
| Fields | |
|---|---|
parent |
Name of the parent Application resource. Example: Authorization requires the following IAM permission on the specified resource
|
page_size |
Maximum results to return per page. |
page_token |
Continuation token for fetching the next page of results. |
ListAuthorizedDomainsResponse
Response message for AuthorizedDomains.ListAuthorizedDomains.
| Fields | |
|---|---|
domains[] |
The authorized domains belonging to the user. |
next_page_token |
Continuation token for fetching the next page of results. |
ListDomainMappingsRequest
Request message for DomainMappings.ListDomainMappings.
| Fields | |
|---|---|
parent |
Name of the parent Application resource. Example: Authorization requires the following IAM permission on the specified resource
|
page_size |
Maximum results to return per page. |
page_token |
Continuation token for fetching the next page of results. |
ListDomainMappingsResponse
Response message for DomainMappings.ListDomainMappings.
| Fields | |
|---|---|
domain_mappings[] |
The domain mappings for the application. |
next_page_token |
Continuation token for fetching the next page of results. |
ListIngressRulesRequest
Request message for Firewall.ListIngressRules.
| Fields | |
|---|---|
parent |
Name of the Firewall collection to retrieve. Example: Authorization requires the following IAM permission on the specified resource
|
page_size |
Maximum results to return per page. |
page_token |
Continuation token for fetching the next page of results. |
matching_address |
A valid IP Address. If set, only rules matching this address will be returned. The first returned rule will be the rule that fires on requests from this IP. |
ListIngressRulesResponse
Response message for Firewall.ListIngressRules.
| Fields | |
|---|---|
ingress_rules[] |
The ingress FirewallRules for this application. |
next_page_token |
Continuation token for fetching the next page of results. |
ListInstancesRequest
Request message for Instances.ListInstances.
| Fields | |
|---|---|
parent |
Name of the parent Version resource. Example: Authorization requires the following IAM permission on the specified resource
|
page_size |
Maximum results to return per page. |
page_token |
Continuation token for fetching the next page of results. |
ListInstancesResponse
Response message for Instances.ListInstances.
| Fields | |
|---|---|
instances[] |
The instances belonging to the requested version. |
next_page_token |
Continuation token for fetching the next page of results. |
ListServicesRequest
Request message for Services.ListServices.
| Fields | |
|---|---|
parent |
Name of the parent Application resource. Example: Authorization requires the following IAM permission on the specified resource
|
page_size |
Maximum results to return per page. |
page_token |
Continuation token for fetching the next page of results. |
ListServicesResponse
Response message for Services.ListServices.
| Fields | |
|---|---|
services[] |
The services belonging to the requested application. |
next_page_token |
Continuation token for fetching the next page of results. |
ListVersionsRequest
Request message for Versions.ListVersions.
| Fields | |
|---|---|
parent |
Name of the parent Service resource. Example: Authorization requires the following IAM permission on the specified resource
|
view |
Controls the set of fields returned in the |
page_size |
Maximum results to return per page. |
page_token |
Continuation token for fetching the next page of results. |
ListVersionsResponse
Response message for Versions.ListVersions.
| Fields | |
|---|---|
versions[] |
The versions belonging to the requested service. |
next_page_token |
Continuation token for fetching the next page of results. |
LivenessCheck
Health checking configuration for VM instances. Unhealthy instances are killed and replaced with new instances.
| Fields | |
|---|---|
path |
The request path. |
host |
Host header to send when performing a HTTP Liveness check. Example: "myapp.appspot.com" |
failure_threshold |
Number of consecutive failed checks required before considering the VM unhealthy. |
success_threshold |
Number of consecutive successful checks required before considering the VM healthy. |
check_interval |
Interval between health checks. |
timeout |
Time before the check is considered failed. |
initial_delay |
The initial delay before starting to execute the checks. |
LocationMetadata
Metadata for the given google.cloud.location.Location.
| Fields | |
|---|---|
standard_environment_available |
App Engine standard environment is available in the given location. Note: This field is used in responses only. Any value specified here in a request is ignored. |
flexible_environment_available |
App Engine flexible environment is available in the given location. Note: This field is used in responses only. Any value specified here in a request is ignored. |
search_api_available |
Output only. Search API is available in the given location. |
LoginRequirement
Methods to restrict access to a URL based on login status.
| Enums | |
|---|---|
LOGIN_UNSPECIFIED |
Not specified. LOGIN_OPTIONAL is assumed. |
LOGIN_OPTIONAL |
Does not require that the user is signed in. |
LOGIN_ADMIN |
If the user is not signed in, the auth_fail_action is taken. In addition, if the user is not an administrator for the application, they are given an error message regardless of auth_fail_action. If the user is an administrator, the handler proceeds. |
LOGIN_REQUIRED |
If the user has signed in, the handler proceeds normally. Otherwise, the auth_fail_action is taken. |
ManagedCertificate
A certificate managed by App Engine.
| Fields | |
|---|---|
last_renewal_time |
Time at which the certificate was last renewed. The renewal process is fully managed. Certificate renewal will automatically occur before the certificate expires. Renewal errors can be tracked via Note: This field is used in responses only. Any value specified here in a request is ignored. |
status |
Status of certificate management. Refers to the most recent certificate acquisition or renewal attempt. Note: This field is used in responses only. Any value specified here in a request is ignored. |
ManagementStatus
State of certificate management. Refers to the most recent certificate acquisition or renewal attempt.
| Enums | |
|---|---|
MANAGEMENT_STATUS_UNSPECIFIED |
|
OK |
Certificate was successfully obtained and inserted into the serving system. |
PENDING |
Certificate is under active attempts to acquire or renew. |
FAILED_RETRYING_NOT_VISIBLE |
Most recent renewal failed due to an invalid DNS setup and will be retried. Renewal attempts will continue to fail until the certificate domain's DNS configuration is fixed. The last successfully provisioned certificate may still be serving. |
FAILED_PERMANENT |
All renewal attempts have been exhausted, likely due to an invalid DNS setup. |
FAILED_RETRYING_CAA_FORBIDDEN |
Most recent renewal failed due to an explicit CAA record that does not include one of the in-use CAs (Google CA and Let's Encrypt). Renewals will continue to fail until the CAA is reconfigured. The last successfully provisioned certificate may still be serving. |
FAILED_RETRYING_CAA_CHECKING |
Most recent renewal failed due to a CAA retrieval failure. This means that the domain's DNS provider does not properly handle CAA records, failing requests for CAA records when no CAA records are defined. Renewals will continue to fail until the DNS provider is changed or a CAA record is added for the given domain. The last successfully provisioned certificate may still be serving. |
ManualScaling
A service with manual scaling runs continuously, allowing you to perform complex initialization and rely on the state of its memory over time.
| Fields | |
|---|---|
instances |
Number of instances to assign to the service at the start. This number can later be altered by using the Modules API |
Network
Extra network settings. Only applicable in the App Engine flexible environment.
| Fields | |
|---|---|
forwarded_ports[] |
List of ports, or port pairs, to forward from the virtual machine to the application container. Only applicable in the App Engine flexible environment. |
instance_tag |
Tag to apply to the instance during creation. Only applicable in the App Engine flexible environment. |
name |
Google Compute Engine network where the virtual machines are created. Specify the short name, not the resource path. Defaults to |
subnetwork_name |
Google Cloud Platform sub-network where the virtual machines are created. Specify the short name, not the resource path. If a subnetwork name is specified, a network name will also be required unless it is for the default network.
If specified, the subnetwork must exist in the same region as the App Engine flexible environment application. |
session_affinity |
Enable session affinity. Only applicable in the App Engine flexible environment. |
NetworkSettings
A NetworkSettings resource is a container for ingress settings for a version or service.
| Fields | |
|---|---|
ingress_traffic_allowed |
The ingress settings for version or service. |
IngressTrafficAllowed
If unspecified, INGRESS_TRAFFIC_ALLOWED_ALL will be used.
| Enums | |
|---|---|
INGRESS_TRAFFIC_ALLOWED_UNSPECIFIED |
Unspecified |
INGRESS_TRAFFIC_ALLOWED_ALL |
Allow HTTP traffic from public and private sources. |
INGRESS_TRAFFIC_ALLOWED_INTERNAL_ONLY |
Allow HTTP traffic from only private VPC sources. |
INGRESS_TRAFFIC_ALLOWED_INTERNAL_AND_LB |
Allow HTTP traffic from private VPC sources and through load balancers. |
NetworkUtilization
Target scaling by network usage. Only applicable in the App Engine flexible environment.
| Fields | |
|---|---|
target_sent_bytes_per_second |
Target bytes sent per second. |
target_sent_packets_per_second |
Target packets sent per second. |
target_received_bytes_per_second |
Target bytes received per second. |
target_received_packets_per_second |
Target packets received per second. |
OperationMetadataV1
Metadata for the given google.longrunning.Operation.
| Fields | |
|---|---|
method |
API method that initiated this operation. Example: Note: This field is used in responses only. Any value specified here in a request is ignored. |
insert_time |
Time that this operation was created. Note: This field is used in responses only. Any value specified here in a request is ignored. |
end_time |
Time that this operation completed. Note: This field is used in responses only. Any value specified here in a request is ignored. |
user |
User who requested this operation. Note: This field is used in responses only. Any value specified here in a request is ignored. |
target |
Name of the resource that this operation is acting on. Example: Note: This field is used in responses only. Any value specified here in a request is ignored. |
ephemeral_message |
Ephemeral message that may change every time the operation is polled. Note: This field is used in responses only. Any value specified here in a request is ignored. |
warning[] |
Durable messages that persist on every operation poll. Note: This field is used in responses only. Any value specified here in a request is ignored. |
create_version_metadata |
|
ReadinessCheck
Readiness checking configuration for VM instances. Unhealthy instances are removed from traffic rotation.
| Fields | |
|---|---|
path |
The request path. |
host |
Host header to send when performing a HTTP Readiness check. Example: "myapp.appspot.com" |
failure_threshold |
Number of consecutive failed checks required before removing traffic. |
success_threshold |
Number of consecutive successful checks required before receiving traffic. |
check_interval |
Interval between health checks. |
timeout |
Time before the check is considered failed. |
app_start_timeout |
A maximum time limit on application initialization, measured from moment the application successfully replies to a healthcheck until it is ready to serve traffic. |
RepairApplicationRequest
Request message for 'Applications.RepairApplication'.
| Fields | |
|---|---|
name |
Name of the application to repair. Example: Authorization requires the following IAM permission on the specified resource
|
RequestUtilization
Target scaling by request utilization. Only applicable in the App Engine flexible environment.
| Fields | |
|---|---|
target_request_count_per_second |
Target requests per second. |
target_concurrent_requests |
Target number of concurrent requests. |
ResourceRecord
A DNS resource record.
| Fields | |
|---|---|
name |
Relative name of the object affected by this record. Only applicable for |
rrdata |
Data for this record. Values vary by record type, as defined in RFC 1035 (section 5) and RFC 1034 (section 3.6.1). |
type |
Resource record type. Example: |
RecordType
A resource record type.
| Enums | |
|---|---|
RECORD_TYPE_UNSPECIFIED |
An unknown resource record. |
A |
An A resource record. Data is an IPv4 address. |
AAAA |
An AAAA resource record. Data is an IPv6 address. |
CNAME |
A CNAME resource record. Data is a domain name to be aliased. |
Resources
Machine resources for a version.
| Fields | |
|---|---|
cpu |
Number of CPU cores needed. |
disk_gb |
Disk size (GB) needed. |
memory_gb |
Memory (GB) needed. |
volumes[] |
User specified volumes. |
kms_key_reference |
The name of the encryption key that is stored in Google Cloud KMS. Only should be used by Cloud Composer to encrypt the vm disk |
ScriptHandler
Executes a script to handle the request that matches the URL pattern.
| Fields | |
|---|---|
script_path |
Path to the script from the application root directory. |
SecurityLevel
Methods to enforce security (HTTPS) on a URL.
| Enums | |
|---|---|
SECURE_UNSPECIFIED |
Not specified. |
SECURE_DEFAULT |
Both HTTP and HTTPS requests with URLs that match the handler succeed without redirects. The application can examine the request to determine which protocol was used, and respond accordingly. |
SECURE_NEVER |
Requests for a URL that match this handler that use HTTPS are automatically redirected to the HTTP equivalent URL. |
SECURE_OPTIONAL |
Both HTTP and HTTPS requests with URLs that match the handler succeed without redirects. The application can examine the request to determine which protocol was used and respond accordingly. |
SECURE_ALWAYS |
Requests for a URL that match this handler that do not use HTTPS are automatically redirected to the HTTPS URL with the same path. Query parameters are reserved for the redirect. |
Service
A Service resource is a logical component of an application that can share state and communicate in a secure fashion with other services. For example, an application that handles customer requests might include separate services to handle tasks such as backend data analysis or API requests from mobile devices. Each service has a collection of versions that define a specific set of code used to implement the functionality of that service.
| Fields | |
|---|---|
name |
Full path to the Service resource in the API. Example: Note: This field is used in responses only. Any value specified here in a request is ignored. |
id |
Relative name of the service within the application. Example: Note: This field is used in responses only. Any value specified here in a request is ignored. |
split |
Mapping that defines fractional HTTP traffic diversion to different versions within the service. |
labels |
A set of labels to apply to this service. Labels are key/value pairs that describe the service and all resources that belong to it (e.g., versions). The labels can be used to search and group resources, and are propagated to the usage and billing reports, enabling fine-grain analysis of costs. An example of using labels is to tag resources belonging to different environments (e.g., "env=prod", "env=qa"). Label keys and values can be no longer than 63 characters and can only contain lowercase letters, numeric characters, underscores, dashes, and international characters. Label keys must start with a lowercase letter or an international character. Each service can have at most 32 labels. |
network_settings |
Ingress settings for this service. Will apply to all versions. |
ServingStatus
Run states of a version.
| Enums | |
|---|---|
SERVING_STATUS_UNSPECIFIED |
Not specified. |
SERVING |
Currently serving. Instances are created according to the scaling settings of the version. |
STOPPED |
Disabled. No instances will be created and the scaling settings are ignored until the state of the version changes to SERVING. |
SslSettings
SSL configuration for a DomainMapping resource.
| Fields | |
|---|---|
certificate_id |
ID of the By default, a managed certificate is automatically created for every domain mapping. To omit SSL support or to configure SSL manually, specify |
ssl_management_type |
SSL management type for this domain. If |
pending_managed_certificate_id |
ID of the managed Note: This field is used in responses only. Any value specified here in a request is ignored. |
SslManagementType
The SSL management type for this domain.
| Enums | |
|---|---|
SSL_MANAGEMENT_TYPE_UNSPECIFIED |
Defaults to AUTOMATIC. |
AUTOMATIC |
SSL support for this domain is configured automatically. The mapped SSL certificate will be automatically renewed. |
MANUAL |
SSL support for this domain is configured manually by the user. Either the domain has no SSL support or a user-obtained SSL certificate has been explictly mapped to this domain. |
StandardSchedulerSettings
Scheduler settings for standard environment.
| Fields | |
|---|---|
target_cpu_utilization |
Target CPU utilization ratio to maintain when scaling. |
target_throughput_utilization |
Target throughput utilization ratio to maintain when scaling |
min_instances |
Minimum number of instances to run for this version. Set to zero to disable |
max_instances |
Maximum number of instances to run for this version. Set to zero to disable |
StaticFilesHandler
Files served directly to the user for a given URL, such as images, CSS stylesheets, or JavaScript source files. Static file handlers describe which files in the application directory are static files, and which URLs serve them.
| Fields | |
|---|---|
path |
Path to the static files matched by the URL pattern, from the application root directory. The path can refer to text matched in groupings in the URL pattern. |
upload_path_regex |
Regular expression that matches the file paths for all files that should be referenced by this handler. |
http_headers |
HTTP headers to use for all responses from these URLs. |
mime_type |
MIME type used to serve all files served by this handler. Defaults to file-specific MIME types, which are derived from each file's filename extension. |
expiration |
Time a static file served by this handler should be cached by web proxies and browsers. |
require_matching_file |
Whether this handler should match the request if the file referenced by the handler does not exist. |
application_readable |
Whether files should also be uploaded as code data. By default, files declared in static file handlers are uploaded as static data and are only served to end users; they cannot be read by the application. If enabled, uploads are charged against both your code and static data storage resource quotas. |
TrafficSplit
Traffic routing configuration for versions within a single service. Traffic splits define how traffic directed to the service is assigned to versions.
| Fields | |
|---|---|
shard_by |
Mechanism used to determine which version a request is sent to. The traffic selection algorithm will be stable for either type until allocations are changed. |
allocations |
Mapping from version IDs within the service to fractional (0.000, 1] allocations of traffic for that version. Each version can be specified only once, but some versions in the service may not have any traffic allocation. Services that have traffic allocated cannot be deleted until either the service is deleted or their traffic allocation is removed. Allocations must sum to 1. Up to two decimal place precision is supported for IP-based splits and up to three decimal places is supported for cookie-based splits. |
ShardBy
Available sharding mechanisms.
| Enums | |
|---|---|
UNSPECIFIED |
Diversion method unspecified. |
COOKIE |
Diversion based on a specially named cookie, "GOOGAPPUID." The cookie must be set by the application itself or no diversion will occur. |
IP |
Diversion based on applying the modulus operation to a fingerprint of the IP address. |
RANDOM |
Diversion based on weighted random assignment. An incoming request is randomly routed to a version in the traffic split, with probability proportional to the version's traffic share. |
UpdateApplicationRequest
Request message for Applications.UpdateApplication.
| Fields | |
|---|---|
name |
Name of the Application resource to update. Example: Authorization requires the following IAM permission on the specified resource
|
application |
An Application containing the updated resource. |
update_mask |
Required. Standard field mask for the set of fields to be updated. |
UpdateAuthorizedCertificateRequest
Request message for AuthorizedCertificates.UpdateAuthorizedCertificate.
| Fields | |
|---|---|
name |
Name of the resource to update. Example: Authorization requires the following IAM permission on the specified resource
|
certificate |
An |
update_mask |
Standard field mask for the set of fields to be updated. Updates are only supported on the |
UpdateDomainMappingRequest
Request message for DomainMappings.UpdateDomainMapping.
| Fields | |
|---|---|
name |
Name of the resource to update. Example: Authorization requires the following IAM permission on the specified resource
|
domain_mapping |
A domain mapping containing the updated resource. Only fields set in the field mask will be updated. |
update_mask |
Required. Standard field mask for the set of fields to be updated. |
UpdateIngressRuleRequest
Request message for Firewall.UpdateIngressRule.
| Fields | |
|---|---|
name |
Name of the Firewall resource to update. Example: Authorization requires the following IAM permission on the specified resource
|
rule |
A FirewallRule containing the updated resource |
update_mask |
Standard field mask for the set of fields to be updated. |
UpdateServiceRequest
Request message for Services.UpdateService.
| Fields | |
|---|---|
name |
Name of the resource to update. Example: Authorization requires the following IAM permission on the specified resource
|
service |
A Service resource containing the updated service. Only fields set in the field mask will be updated. |
update_mask |
Required. Standard field mask for the set of fields to be updated. |
migrate_traffic |
Set to |
UpdateVersionRequest
Request message for Versions.UpdateVersion.
| Fields | |
|---|---|
name |
Name of the resource to update. Example: Authorization requires the following IAM permission on the specified resource
|
version |
A Version containing the updated resource. Only fields set in the field mask will be updated. |
update_mask |
Standard field mask for the set of fields to be updated. |
UrlDispatchRule
Rules to match an HTTP request and dispatch that request to a service.
| Fields | |
|---|---|
domain |
Domain name to match against. The wildcard " Defaults to matching all domains: " |
path |
Pathname within the host. Must start with a " The sum of the lengths of the domain and path may not exceed 100 characters. |
service |
Resource ID of a service in this application that should serve the matched request. The service must already exist. Example: |
UrlMap
URL pattern and description of how the URL should be handled. App Engine can handle URLs by executing application code or by serving static files uploaded with the version, such as images, CSS, or JavaScript.
| Fields | |
|---|---|
url_regex |
URL prefix. Uses regular expression syntax, which means regexp special characters must be escaped, but should not contain groupings. All URLs that begin with this prefix are handled by this handler, using the portion of the URL after the prefix as part of the file path. |
security_level |
Security (HTTPS) enforcement for this URL. |
login |
Level of login required to access this resource. Not supported for Node.js in the App Engine standard environment. |
auth_fail_action |
Action to take when users access resources that require authentication. Defaults to |
redirect_http_response_code |
|
Union field handler_type. Type of handler for this URL pattern. handler_type can be only one of the following: |
|
static_files |
Returns the contents of a file, such as an image, as the response. |
script |
Executes a script to handle the requests that match this URL pattern. Only the |
api_endpoint |
Uses API Endpoints to handle requests. |
RedirectHttpResponseCode
Redirect codes.
| Enums | |
|---|---|
REDIRECT_HTTP_RESPONSE_CODE_UNSPECIFIED |
Not specified. 302 is assumed. |
REDIRECT_HTTP_RESPONSE_CODE_301 |
301 Moved Permanently code. |
REDIRECT_HTTP_RESPONSE_CODE_302 |
302 Moved Temporarily code. |
REDIRECT_HTTP_RESPONSE_CODE_303 |
303 See Other code. |
REDIRECT_HTTP_RESPONSE_CODE_307 |
307 Temporary Redirect code. |
Version
A Version resource is a specific set of source code and configuration files that are deployed into a service.
| Fields | |
|---|---|
name |
Full path to the Version resource in the API. Example: Note: This field is used in responses only. Any value specified here in a request is ignored. |
id |
Relative name of the version within the service. Example: |
inbound_services[] |
Before an application can receive email or XMPP messages, the application must be configured to enable the service. |
instance_class |
Instance class that is used to run this version. Valid values are:
Defaults to |
network |
Extra network settings. Only applicable in the App Engine flexible environment. |
zones[] |
The Google Compute Engine zones that are supported by this version in the App Engine flexible environment. Deprecated. |
resources |
Machine resources for this version. Only applicable in the App Engine flexible environment. |
runtime |
Desired runtime. Example: |
runtime_channel |
The channel of the runtime to use. Only available for some runtimes. Defaults to the |
threadsafe |
Whether multiple requests can be dispatched to this version at once. |
vm |
Whether to deploy this version in a container on a virtual machine. |
flexible_runtime_settings |
Settings for App Engine flexible runtimes. |
app_engine_apis |
Allows App Engine second generation runtimes to access the legacy bundled services. |
beta_settings |
Metadata settings that are supplied to this version to enable beta runtime features. |
env |
App Engine execution environment for this version. Defaults to |
serving_status |
Current serving status of this version. Only the versions with a
|
created_by |
Email address of the user who created this version. Note: This field is used in responses only. Any value specified here in a request is ignored. |
create_time |
Time that this version was created. Note: This field is used in responses only. Any value specified here in a request is ignored. |
disk_usage_bytes |
Total size in bytes of all the files that are included in this version and currently hosted on the App Engine disk. Note: This field is used in responses only. Any value specified here in a request is ignored. |
runtime_api_version |
The version of the API in the given runtime environment. Please see the app.yaml reference for valid values at https://cloud.google.com/appengine/docs/standard/ |
runtime_main_executable_path |
The path or name of the app's main executable. |
service_account |
The identity that the deployed version will run as. Admin API will use the App Engine Appspot service account as default if this field is neither provided in app.yaml file nor through CLI flag. |
handlers[] |
An ordered list of URL-matching patterns that should be applied to incoming requests. The first matching URL handles the request and other request handlers are not attempted. Only returned in |
error_handlers[] |
Custom static error pages. Limited to 10KB per page. Only returned in |
libraries[] |
Configuration for third-party Python runtime libraries that are required by the application. Only returned in |
api_config |
Serving configuration for Google Cloud Endpoints. Only returned in |
env_variables |
Environment variables available to the application. Only returned in |
build_env_variables |
Environment variables available to the build environment. Only returned in |
default_expiration |
Duration that static files should be cached by web proxies and browsers. Only applicable if the corresponding StaticFilesHandler does not specify its own expiration time. Only returned in |
health_check |
Configures health checking for instances. Unhealthy instances are stopped and replaced with new instances. Only applicable in the App Engine flexible environment. Only returned in |
readiness_check |
Configures readiness health checking for instances. Unhealthy instances are not put into the backend traffic rotation. Only returned in |
liveness_check |
Configures liveness health checking for instances. Unhealthy instances are stopped and replaced with new instances Only returned in |
nobuild_files_regex |
Files that match this pattern will not be built into this version. Only applicable for Go runtimes. Only returned in |
deployment |
Code and application artifacts that make up this version. Only returned in |
version_url |
Serving URL for this version. Example: "https://myversion-dot-myservice-dot-myapp.appspot.com" Note: This field is used in responses only. Any value specified here in a request is ignored. |
endpoints_api_service |
Cloud Endpoints configuration. If endpoints_api_service is set, the Cloud Endpoints Extensible Service Proxy will be provided to serve the API implemented by the app. |
entrypoint |
The entrypoint for the application. |
vpc_access_connector |
Enables VPC connectivity for standard apps. |
Union field Defaults to |
|
automatic_scaling |
Automatic scaling is based on request rate, response latencies, and other application metrics. Instances are dynamically created and destroyed as needed in order to handle traffic. |
basic_scaling |
A service with basic scaling will create an instance when the application receives a request. The instance will be turned down when the app becomes idle. Basic scaling is ideal for work that is intermittent or driven by user activity. |
manual_scaling |
A service with manual scaling runs continuously, allowing you to perform complex initialization and rely on the state of its memory over time. Manually scaled versions are sometimes referred to as "backends". |
VersionView
Fields that should be returned when Version resources are retrieved.
| Enums | |
|---|---|
BASIC |
Basic version information including scaling and inbound services, but not detailed deployment information. |
FULL |
The information from BASIC, plus detailed information about the deployment. This format is required when creating resources, but is not returned in Get or List by default. |
Volume
Volumes mounted within the app container. Only applicable in the App Engine flexible environment.
| Fields | |
|---|---|
name |
Unique name for the volume. |
volume_type |
Underlying volume type, e.g. 'tmpfs'. |
size_gb |
Volume size in gigabytes. |
VpcAccessConnector
VPC access connector specification.
| Fields | |
|---|---|
name |
Full Serverless VPC Access Connector name e.g. /projects/my-project/locations/us-central1/connectors/c1. |
egress_setting |
The egress setting for the connector, controlling what traffic is diverted through it. |
EgressSetting
Available egress settings.
This controls what traffic is diverted through the VPC Access Connector resource. By default PRIVATE_IP_RANGES will be used.
| Enums | |
|---|---|
EGRESS_SETTING_UNSPECIFIED |
|
ALL_TRAFFIC |
Force the use of VPC Access for all egress traffic from the function. |
PRIVATE_IP_RANGES |
Use the VPC Access Connector for private IP space from RFC1918. |
ZipInfo
The zip file information for a zip deployment.
| Fields | |
|---|---|
source_url |
URL of the zip file to deploy from. Must be a URL to a resource in Google Cloud Storage in the form 'http(s)://storage.googleapis.com/<bucket>/<object>'. |
files_count |
An estimate of the number of files in a zip for a zip deployment. If set, must be greater than or equal to the actual number of files. Used for optimizing performance; if not provided, deployment may be slow. |