ClusterUpdate

{
  "desiredNodeVersion": string,
  "desiredMonitoringService": string,
  "desiredAddonsConfig": {
    object (AddonsConfig)
  },
  "desiredNodePoolId": string,
  "desiredImageType": string,
  "desiredNodePoolAutoscaling": {
    object (NodePoolAutoscaling)
  },
  "desiredLocations": [
    string
  ],
  "desiredMasterAuthorizedNetworksConfig": {
    object (MasterAuthorizedNetworksConfig)
  },
  "desiredPodSecurityPolicyConfig": {
    object (PodSecurityPolicyConfig)
  },
  "desiredClusterAutoscaling": {
    object (ClusterAutoscaling)
  },
  "desiredBinaryAuthorization": {
    object (BinaryAuthorization)
  },
  "desiredLoggingService": string,
  "desiredResourceUsageExportConfig": {
    object (ResourceUsageExportConfig)
  },
  "desiredVerticalPodAutoscaling": {
    object (VerticalPodAutoscaling)
  },
  "desiredPrivateClusterConfig": {
    object (PrivateClusterConfig)
  },
  "desiredIntraNodeVisibilityConfig": {
    object (IntraNodeVisibilityConfig)
  },
  "desiredDefaultSnatStatus": {
    object (DefaultSnatStatus)
  },
  "desiredClusterTelemetry": {
    object (ClusterTelemetry)
  },
  "desiredReleaseChannel": {
    object (ReleaseChannel)
  },
  "desiredTpuConfig": {
    object (TpuConfig)
  },
  "desiredL4ilbSubsettingConfig": {
    object (ILBSubsettingConfig)
  },
  "desiredDatapathProvider": enum (DatapathProvider),
  "desiredPrivateIpv6GoogleAccess": enum (PrivateIPv6GoogleAccess),
  "desiredNotificationConfig": {
    object (NotificationConfig)
  },
  "desiredMasterVersion": string,
  "desiredGcfsConfig": {
    object (GcfsConfig)
  },
  "desiredDatabaseEncryption": {
    object (DatabaseEncryption)
  },
  "desiredWorkloadIdentityConfig": {
    object (WorkloadIdentityConfig)
  },
  "desiredWorkloadCertificates": {
    object (WorkloadCertificates)
  },
  "desiredMeshCertificates": {
    object (MeshCertificates)
  },
  "desiredWorkloadAltsConfig": {
    object (WorkloadALTSConfig)
  },
  "desiredShieldedNodes": {
    object (ShieldedNodes)
  },
  "desiredCostManagementConfig": {
    object (CostManagementConfig)
  },
  "desiredMaster": {
    object (Master)
  },
  "desiredDnsConfig": {
    object (DNSConfig)
  },
  "desiredServiceExternalIpsConfig": {
    object (ServiceExternalIPsConfig)
  },
  "desiredAuthenticatorGroupsConfig": {
    object (AuthenticatorGroupsConfig)
  },
  "desiredLoggingConfig": {
    object (LoggingConfig)
  },
  "desiredMonitoringConfig": {
    object (MonitoringConfig)
  },
  "desiredIdentityServiceConfig": {
    object (IdentityServiceConfig)
  },
  "desiredNodePoolAutoConfigNetworkTags": {
    object (NetworkTags)
  },
  "desiredGatewayApiConfig": {
    object (GatewayAPIConfig)
  },
  "etag": string,
  "desiredNodePoolLoggingConfig": {
    object (NodePoolLoggingConfig)
  },
  "desiredFleet": {
    object (Fleet)
  },
  "desiredStackType": enum (StackType),
  "additionalPodRangesConfig": {
    object (AdditionalPodRangesConfig)
  },
  "removedAdditionalPodRangesConfig": {
    object (AdditionalPodRangesConfig)
  },
  "enableK8sBetaApis": {
    object (K8sBetaAPIConfig)
  },
  "desiredSecurityPostureConfig": {
    object (SecurityPostureConfig)
  },
  "desiredNetworkPerformanceConfig": {
    object (ClusterNetworkPerformanceConfig)
  },
  "desiredAutopilotWorkloadPolicyConfig": {
    object (WorkloadPolicyConfig)
  },
  "desiredK8sBetaApis": {
    object (K8sBetaAPIConfig)
  },
  "desiredHostMaintenancePolicy": {
    object (HostMaintenancePolicy)
  },
  "desiredEnablePrivateEndpoint": boolean,
  "desiredProtectConfig": {
    object (ProtectConfig)
  },
  "desiredEnableFqdnNetworkPolicy": boolean
}

string

The Kubernetes version to change the nodes to (typically an upgrade).

Users may specify either explicit versions offered by Kubernetes Engine or version aliases, which have the following behavior:

• "latest": picks the highest valid Kubernetes version
• "1.X": picks the highest valid patch+gke.N patch in the 1.X version
• "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
• "1.X.Y-gke.N": picks an explicit Kubernetes version
• "-": picks the Kubernetes master version

string

The monitoring service the cluster should use to write metrics. Currently available options:

• "monitoring.googleapis.com/kubernetes" - The Cloud Monitoring service with a Kubernetes-native resource model
• monitoring.googleapis.com - The legacy Cloud Monitoring service (no longer available as of GKE 1.15).
• none - No metrics will be exported from the cluster.

If left as an empty string,monitoring.googleapis.com/kubernetes will be used for GKE 1.14+ or monitoring.googleapis.com for earlier versions.

object (AddonsConfig)

Configurations for the various addons available to run in the cluster.

string

The node pool to be upgraded. This field is mandatory if "desiredNodeVersion", "desired_image_family", "desiredNodePoolAutoscaling", or "desired_workload_metadata_config" is specified and there is more than one node pool on the cluster.

string

The desired image type for the node pool. NOTE: Set the "desired_node_pool" field as well.

object (NodePoolAutoscaling)

Autoscaler configuration for the node pool specified in desiredNodePoolId. If there is only one pool in the cluster and desiredNodePoolId is not provided then the change applies to that single node pool.

string

The desired list of Google Compute Engine zones in which the cluster's nodes should be located.

This list must always include the cluster's primary zone.

Warning: changing cluster locations will update the locations of all node pools and will result in nodes being added and/or removed.

object (MasterAuthorizedNetworksConfig)

The desired configuration options for master authorized networks feature.

object (PodSecurityPolicyConfig)

The desired configuration options for the PodSecurityPolicy feature.

object (ClusterAutoscaling)

Cluster-level autoscaling configuration.

object (BinaryAuthorization)

The desired configuration options for the Binary Authorization feature.

string

The logging service the cluster should use to write logs. Currently available options:

• logging.googleapis.com/kubernetes - The Cloud Logging service with a Kubernetes-native resource model
• logging.googleapis.com - The legacy Cloud Logging service (no longer available as of GKE 1.15).
• none - no logs will be exported from the cluster.

If left as an empty string,logging.googleapis.com/kubernetes will be used for GKE 1.14+ or logging.googleapis.com for earlier versions.

object (ResourceUsageExportConfig)

The desired configuration for exporting resource usage.

object (VerticalPodAutoscaling)

Cluster-level Vertical Pod Autoscaling configuration.

object (PrivateClusterConfig)

The desired private cluster configuration.

object (IntraNodeVisibilityConfig)

The desired config of Intra-node visibility.

object (DefaultSnatStatus)

The desired status of whether to disable default sNAT for this cluster.

object (ClusterTelemetry)

The desired telemetry integration for the cluster.

object (ReleaseChannel)

The desired release channel configuration.

object (TpuConfig)

The desired Cloud TPU configuration.

object (ILBSubsettingConfig)

The desired L4 Internal Load Balancer Subsetting configuration.

enum (DatapathProvider)

The desired datapath provider for the cluster.

enum (PrivateIPv6GoogleAccess)

The desired state of IPv6 connectivity to Google Services.

object (NotificationConfig)

The desired notification configuration.

string

The Kubernetes version to change the master to. The only valid value is the latest supported version.

Users may specify either explicit versions offered by Kubernetes Engine or version aliases, which have the following behavior:

• "latest": picks the highest valid Kubernetes version
• "1.X": picks the highest valid patch+gke.N patch in the 1.X version
• "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
• "1.X.Y-gke.N": picks an explicit Kubernetes version
• "-": picks the default Kubernetes version

object (GcfsConfig)

The desired GCFS config for the cluster.

object (DatabaseEncryption)

Configuration of etcd encryption.

object (WorkloadIdentityConfig)

Configuration for Workload Identity.

object (WorkloadCertificates)

Configuration for issuance of mTLS keys and certificates to Kubernetes pods.

object (MeshCertificates)

Configuration for issuance of mTLS keys and certificates to Kubernetes pods.

object (WorkloadALTSConfig)

Configuration for direct-path (via ALTS) with workload identity.

object (ShieldedNodes)

Configuration for Shielded Nodes.

object (CostManagementConfig)

The desired configuration for the fine-grained cost management feature.

object (Master)

Configuration for master components.

object (DNSConfig)

DNSConfig contains clusterDNS config for this cluster.

object (ServiceExternalIPsConfig)

ServiceExternalIPsConfig specifies the config for the use of Services with ExternalIPs field.

object (AuthenticatorGroupsConfig)

AuthenticatorGroupsConfig specifies the config for the cluster security groups settings.

object (LoggingConfig)

The desired logging configuration.

object (MonitoringConfig)

The desired monitoring configuration.

object (IdentityServiceConfig)

The desired Identity Service component configuration.

object (NetworkTags)

The desired network tags that apply to all auto-provisioned node pools in autopilot clusters and node auto-provisioning enabled clusters.

object (GatewayAPIConfig)

The desired config of Gateway API on this cluster.

string

The current etag of the cluster. If an etag is provided and does not match the current etag of the cluster, update will be blocked and an ABORTED error will be returned.

object (NodePoolLoggingConfig)

The desired node pool logging configuration defaults for the cluster.

object (Fleet)

The desired fleet configuration for the cluster.

enum (StackType)

The desired stack type of the cluster. If a stack type is provided and does not match the current stack type of the cluster, update will attempt to change the stack type to the new type.

object (AdditionalPodRangesConfig)

The additional pod ranges to be added to the cluster. These pod ranges can be used by node pools to allocate pod IPs.

object (AdditionalPodRangesConfig)

The additional pod ranges that are to be removed from the cluster. The pod ranges specified here must have been specified earlier in the 'additionalPodRangesConfig' argument.

object (K8sBetaAPIConfig)

Kubernetes open source beta apis enabled on the cluster. Only beta apis

object (SecurityPostureConfig)

Enable/Disable Security Posture API features for the cluster.

object (ClusterNetworkPerformanceConfig)

The desired network performance config.

object (WorkloadPolicyConfig)

The desired workload policy configuration for the autopilot cluster.

object (K8sBetaAPIConfig)

Beta APIs enabled for cluster.

object (HostMaintenancePolicy)

HostMaintenancePolicy contains the desired maintenance policy for the Google Compute Engine hosts.

boolean

Enable/Disable private endpoint for the cluster's master.

object (ProtectConfig)

Enable/Disable Protect API features for the cluster.

boolean

Enable/Disable FQDN Network Policy for the cluster.