Class EndpointPolicy (0.2.1)

EndpointPolicy(mapping=None, *, ignore_unknown_fields=False, **kwargs)

EndpointPolicy is a resource that helps apply desired configuration on the endpoints that match specific criteria. For example, this resource can be used to apply "authentication config" an all endpoints that serve on port 8080.

Attributes

Name	Description
name	`str` Required. Name of the EndpointPolicy resource. It matches pattern ``projects/{project}/locations/global/endpointPolicies/{endpoint_policy}``.
create_time	`google.protobuf.timestamp_pb2.Timestamp` Output only. The timestamp when the resource was created.
update_time	`google.protobuf.timestamp_pb2.Timestamp` Output only. The timestamp when the resource was updated.
labels	`Mapping[str, str]` Optional. Set of label tags associated with the EndpointPolicy resource.
type_	`google.cloud.network_services_v1.types.EndpointPolicy.EndpointPolicyType` Required. The type of endpoint policy. This is primarily used to validate the configuration.
authorization_policy	`str` Optional. This field specifies the URL of AuthorizationPolicy resource that applies authorization policies to the inbound traffic at the matched endpoints. Refer to Authorization. If this field is not specified, authorization is disabled(no authz checks) for this endpoint.
endpoint_matcher	`google.cloud.network_services_v1.types.EndpointMatcher` Required. A matcher that selects endpoints to which the policies should be applied.
traffic_port_selector	`google.cloud.network_services_v1.types.TrafficPortSelector` Optional. Port selector for the (matched) endpoints. If no port selector is provided, the matched config is applied to all ports.
description	`str` Optional. A free-text description of the resource. Max length 1024 characters.
server_tls_policy	`str` Optional. A URL referring to ServerTlsPolicy resource. ServerTlsPolicy is used to determine the authentication policy to be applied to terminate the inbound traffic at the identified backends. If this field is not set, authentication is disabled(open) for this endpoint.
client_tls_policy	`str` Optional. A URL referring to a ClientTlsPolicy resource. ClientTlsPolicy can be set to specify the authentication for traffic from the proxy to the actual endpoints. More specifically, it is applied to the outgoing traffic from the proxy to the endpoint. This is typically used for sidecar model where the proxy identifies itself as endpoint to the control plane, with the connection between sidecar and endpoint requiring authentication. If this field is not set, authentication is disabled(open). Applicable only when EndpointPolicyType is SIDECAR_PROXY.

Inheritance

builtins.object > proto.message.Message > EndpointPolicy

Classes

EndpointPolicyType

EndpointPolicyType(value)

The type of endpoint policy.

LabelsEntry

LabelsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)

The abstract base class for a message.

Parameters

Name	Description
kwargs	`dict` Keys and values corresponding to the fields of the message.
mapping	Union[dict, `.Message`] A dictionary or message to be used to determine the values for this message.
ignore_unknown_fields	`Optional(bool)` If True, do not raise errors for unknown fields. Only applied if `mapping` is a mapping type or there are keyword parameters.