Resource: Cluster
A Google Kubernetes Engine cluster.
JSON representation |
---|
{ "name": string, "description": string, "initialNodeCount": integer, "nodeConfig": { object ( |
Fields | |
---|---|
name |
The name of this cluster. The name must be unique within this project and location (e.g. zone or region), and can be up to 40 characters with the following restrictions:
|
description |
An optional description of this cluster. |
initialNodeCount |
The number of nodes to create in this cluster. You must ensure that your Compute Engine resource quota is sufficient for this number of instances. You must also have available firewall and routes quota. For requests, this field should only be used in lieu of a "nodePool" object, since this configuration (along with the "nodeConfig") will be used to create a "NodePool" object with an auto-generated name. Do not use this and a nodePool at the same time. This field is deprecated, use nodePool.initial_node_count instead. |
nodeConfig |
Parameters used in creating the cluster's nodes. For requests, this field should only be used in lieu of a "nodePool" object, since this configuration (along with the "initialNodeCount") will be used to create a "NodePool" object with an auto-generated name. Do not use this and a nodePool at the same time. For responses, this field will be populated with the node configuration of the first node pool. (For configuration of each node pool, see If unspecified, the defaults are used. This field is deprecated, use nodePool.config instead. |
masterAuth |
The authentication information for accessing the master endpoint. If unspecified, the defaults are used: For clusters before v1.12, if masterAuth is unspecified, |
loggingService |
The logging service the cluster should use to write logs. Currently available options:
If left as an empty string, |
monitoringService |
The monitoring service the cluster should use to write metrics. Currently available options:
If left as an empty string, |
network |
The name of the Google Compute Engine network to which the cluster is connected. If left unspecified, the |
clusterIpv4Cidr |
The IP address range of the container pods in this cluster, in CIDR notation (e.g. |
addonsConfig |
Configurations for the various addons available to run in the cluster. |
subnetwork |
The name of the Google Compute Engine subnetwork to which the cluster is connected. On output this shows the subnetwork ID instead of the name. |
nodePools[] |
The node pools associated with this cluster. This field should not be set if "nodeConfig" or "initialNodeCount" are specified. |
locations[] |
The list of Google Compute Engine zones in which the cluster's nodes should be located. This field provides a default value if NodePool.Locations are not specified during node pool creation. Warning: changing cluster locations will update the NodePool.Locations of all node pools and will result in nodes being added and/or removed. |
enableKubernetesAlpha |
Kubernetes alpha features are enabled on this cluster. This includes alpha API groups (e.g. v1beta1) and features that may not be production ready in the kubernetes version of the master and nodes. The cluster has no SLA for uptime and master/node upgrades are disabled. Alpha enabled clusters are automatically deleted thirty days after creation. |
enableK8sBetaApis |
Kubernetes open source beta apis enabled on the cluster. Only beta apis. |
resourceLabels |
The resource labels for the cluster to use to annotate any related Google Compute Engine resources. An object containing a list of |
labelFingerprint |
The fingerprint of the set of labels for this cluster. |
legacyAbac |
Configuration for the legacy ABAC authorization mode. |
networkPolicy |
Configuration options for the NetworkPolicy feature. |
ipAllocationPolicy |
Configuration for cluster IP allocation. |
masterAuthorizedNetworksConfig |
The configuration options for master authorized networks feature. |
maintenancePolicy |
Configure the maintenance policy for this cluster. |
binaryAuthorization |
Configuration for Binary Authorization. |
podSecurityPolicyConfig |
Configuration for the PodSecurityPolicy feature. |
autoscaling |
Cluster-level autoscaling configuration. |
networkConfig |
Configuration for cluster networking. |
privateCluster |
If this is a private cluster setup. Private clusters are clusters that, by default have no external IP addresses on the nodes and where nodes and the master communicate over private IP addresses. This field is deprecated, use privateClusterConfig.enable_private_nodes instead. |
masterIpv4CidrBlock |
The IP prefix in CIDR notation to use for the hosted master network. This prefix will be used for assigning private IP addresses to the master or set of masters, as well as the ILB VIP. This field is deprecated, use privateClusterConfig.master_ipv4_cidr_block instead. |
defaultMaxPodsConstraint |
The default constraint on the maximum number of pods that can be run simultaneously on a node in the node pool of this cluster. Only honored if cluster created with IP Alias support. |
resourceUsageExportConfig |
Configuration for exporting resource usages. Resource usage export is disabled when this config unspecified. |
authenticatorGroupsConfig |
Configuration controlling RBAC group membership information. |
privateClusterConfig |
Configuration for private cluster. |
verticalPodAutoscaling |
Cluster-level Vertical Pod Autoscaling configuration. |
shieldedNodes |
Shielded Nodes configuration. |
releaseChannel |
Release channel configuration. If left unspecified on cluster creation and a version is specified, the cluster is enrolled in the most mature release channel where the version is available (first checking STABLE, then REGULAR, and finally RAPID). Otherwise, if no release channel configuration and no version is specified, the cluster is enrolled in the REGULAR channel with its default version. |
workloadIdentityConfig |
Configuration for the use of Kubernetes Service Accounts in GCP IAM policies. |
workloadCertificates |
Configuration for issuance of mTLS keys and certificates to Kubernetes pods. |
meshCertificates |
Configuration for issuance of mTLS keys and certificates to Kubernetes pods. |
workloadAltsConfig |
Configuration for direct-path (via ALTS) with workload identity. |
costManagementConfig |
Configuration for the fine-grained cost management feature. |
clusterTelemetry |
Telemetry integration for the cluster. |
tpuConfig |
Configuration for Cloud TPU support; |
notificationConfig |
Notification configuration of the cluster. |
confidentialNodes |
Configuration of Confidential Nodes. All the nodes in the cluster will be Confidential VM once enabled. |
identityServiceConfig |
Configuration for Identity Service component. |
selfLink |
Output only. Server-defined URL for the resource. |
zone |
Output only. The name of the Google Compute Engine zone in which the cluster resides. This field is deprecated, use location instead. |
endpoint |
Output only. The IP address of this cluster's master endpoint. The endpoint can be accessed from the internet at See the |
initialClusterVersion |
The initial Kubernetes version for this cluster. Valid versions are those found in validMasterVersions returned by getServerConfig. The version can be upgraded over time; such upgrades are reflected in currentMasterVersion and currentNodeVersion. Users may specify either explicit versions offered by Kubernetes Engine or version aliases, which have the following behavior:
|
currentMasterVersion |
Output only. The current software version of the master endpoint. |
currentNodeVersion |
Output only. Deprecated, use NodePool.version instead. The current version of the node software components. If they are currently at multiple versions because they're in the process of being upgraded, this reflects the minimum version of all nodes. |
createTime |
Output only. The time the cluster was created, in RFC3339 text format. |
status |
Output only. The current status of this cluster. |
statusMessage |
Output only. Deprecated. Use conditions instead. Additional information about the current status of this cluster, if available. |
nodeIpv4CidrSize |
Output only. The size of the address space on each node for hosting containers. This is provisioned from within the |
servicesIpv4Cidr |
Output only. The IP address range of the Kubernetes services in this cluster, in CIDR notation (e.g. |
instanceGroupUrls[] |
Output only. Deprecated. Use nodePools.instance_group_urls. |
currentNodeCount |
Output only. The number of nodes currently in the cluster. Deprecated. Call Kubernetes API directly to retrieve node information. |
expireTime |
Output only. The time the cluster will be automatically deleted in RFC3339 text format. |
location |
Output only. The name of the Google Compute Engine zone or region in which the cluster resides. |
enableTpu |
Enable the ability to use Cloud TPUs in this cluster. This field is deprecated, use tpuConfig.enabled instead. |
tpuIpv4CidrBlock |
Output only. The IP address range of the Cloud TPUs in this cluster, in CIDR notation (e.g. |
databaseEncryption |
Configuration of etcd encryption. |
conditions[] |
Which conditions caused the current cluster state. |
master |
Configuration for master components. |
autopilot |
Autopilot configuration for the cluster. |
id |
Output only. Unique id for the cluster. |
parentProductConfig |
The configuration of the parent product of the cluster. This field is used by Google internal products that are built on top of the GKE cluster and take the ownership of the cluster. |
loggingConfig |
Logging configuration for the cluster. |
monitoringConfig |
Monitoring configuration for the cluster. |
nodePoolAutoConfig |
Node pool configs that apply to all auto-provisioned node pools in autopilot clusters and node auto-provisioning enabled clusters. |
etag |
This checksum is computed by the server based on the value of cluster fields, and may be sent on update requests to ensure the client has an up-to-date value before proceeding. |
fleet |
Fleet information for the cluster. |
securityPostureConfig |
Enable/Disable Security Posture API features for the cluster. |
enterpriseConfig |
GKE Enterprise Configuration. |
secretManagerConfig |
Secret CSI driver configuration. |
compliancePostureConfig |
Enable/Disable Compliance Posture features for the cluster. |
nodePoolDefaults |
Default NodePool settings for the entire cluster. These settings are overridden if specified on the specific NodePool object. |
protectConfig |
Deprecated: Use SecurityPostureConfig instead. Enable/Disable Protect API features for the cluster. |
satisfiesPzs |
Output only. Reserved for future use. |
satisfiesPzi |
Output only. Reserved for future use. |
rbacBindingConfig |
RBACBindingConfig allows user to restrict ClusterRoleBindings an RoleBindings that can be created. |
Methods |
|
---|---|
|
Sets the addons for a specific cluster. |
|
Completes master IP rotation. |
|
Creates a cluster, consisting of the specified number and type of Google Compute Engine instances. |
|
Deletes the cluster, including the Kubernetes endpoint and all worker nodes. |
|
Gets the details for a specific cluster. |
|
Enables or disables the ABAC authorization mechanism on a cluster. |
|
Lists all clusters owned by a project in either the specified zone or all zones. |
(deprecated) |
Sets the locations for a specific cluster. |
|
Sets the logging service for a specific cluster. |
|
Updates the master for a specific cluster. |
|
Sets the monitoring service for a specific cluster. |
|
Sets labels on a cluster. |
|
Sets the maintenance policy for a cluster. |
|
Sets master auth materials. |
|
Enables or disables Network Policy for a cluster. |
|
Starts master IP rotation. |
|
Updates the settings for a specific cluster. |