EndpointPolicy(mapping=None, *, ignore_unknown_fields=False, **kwargs)
EndpointPolicy is a resource that helps apply desired configuration on the endpoints that match specific criteria. For example, this resource can be used to apply "authentication config" an all endpoints that serve on port 8080.
Attributes
Name | Description |
name |
str
Required. Name of the EndpointPolicy resource. It matches pattern projects/{project}/locations/global/endpointPolicies/{endpoint_policy} .
|
create_time |
google.protobuf.timestamp_pb2.Timestamp
Output only. The timestamp when the resource was created. |
update_time |
google.protobuf.timestamp_pb2.Timestamp
Output only. The timestamp when the resource was updated. |
labels |
MutableMapping[str, str]
Optional. Set of label tags associated with the EndpointPolicy resource. |
type_ |
google.cloud.network_services_v1.types.EndpointPolicy.EndpointPolicyType
Required. The type of endpoint policy. This is primarily used to validate the configuration. |
authorization_policy |
str
Optional. This field specifies the URL of AuthorizationPolicy resource that applies authorization policies to the inbound traffic at the matched endpoints. Refer to Authorization. If this field is not specified, authorization is disabled(no authz checks) for this endpoint. |
endpoint_matcher |
google.cloud.network_services_v1.types.EndpointMatcher
Required. A matcher that selects endpoints to which the policies should be applied. |
traffic_port_selector |
google.cloud.network_services_v1.types.TrafficPortSelector
Optional. Port selector for the (matched) endpoints. If no port selector is provided, the matched config is applied to all ports. |
description |
str
Optional. A free-text description of the resource. Max length 1024 characters. |
server_tls_policy |
str
Optional. A URL referring to ServerTlsPolicy resource. ServerTlsPolicy is used to determine the authentication policy to be applied to terminate the inbound traffic at the identified backends. If this field is not set, authentication is disabled(open) for this endpoint. |
client_tls_policy |
str
Optional. A URL referring to a ClientTlsPolicy resource. ClientTlsPolicy can be set to specify the authentication for traffic from the proxy to the actual endpoints. More specifically, it is applied to the outgoing traffic from the proxy to the endpoint. This is typically used for sidecar model where the proxy identifies itself as endpoint to the control plane, with the connection between sidecar and endpoint requiring authentication. If this field is not set, authentication is disabled(open). Applicable only when EndpointPolicyType is SIDECAR_PROXY. |
Classes
EndpointPolicyType
EndpointPolicyType(value)
The type of endpoint policy.
LabelsEntry
LabelsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)
The abstract base class for a message.
Name | Description |
kwargs |
dict
Keys and values corresponding to the fields of the message. |
mapping |
Union[dict,
A dictionary or message to be used to determine the values for this message. |
ignore_unknown_fields |
Optional(bool)
If True, do not raise errors for unknown fields. Only applied if |