Class WorkloadCertificates (2.11.2)

WorkloadCertificates(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Configuration for issuance of mTLS keys and certificates to Kubernetes pods.


enable_certificates google.protobuf.wrappers_pb2.BoolValue
enable_certificates controls issuance of workload mTLS certificates. If set, the GKE Workload Identity Certificates controller and node agent will be deployed in the cluster, which can then be configured by creating a WorkloadCertificateConfig Custom Resource. Requires Workload Identity (workload_pool][google.container.v1beta1.WorkloadIdentityConfig.workload_pool] must be non-empty).