Index
Executions(interface)Jobs(interface)Revisions(interface)Services(interface)Tasks(interface)BinaryAuthorization(message)CancelExecutionRequest(message)CloudSqlInstance(message)Condition(message)Condition.CommonReason(enum)Condition.ExecutionReason(enum)Condition.RevisionReason(enum)Condition.Severity(enum)Condition.State(enum)Container(message)ContainerPort(message)CreateJobRequest(message)CreateServiceRequest(message)DeleteExecutionRequest(message)DeleteJobRequest(message)DeleteRevisionRequest(message)DeleteServiceRequest(message)EmptyDirVolumeSource(message)EmptyDirVolumeSource.Medium(enum)EncryptionKeyRevocationAction(enum)EnvVar(message)EnvVarSource(message)Execution(message)ExecutionEnvironment(enum)ExecutionReference(message)ExecutionReference.CompletionStatus(enum)ExecutionTemplate(message)GCSVolumeSource(message)GRPCAction(message)GetExecutionRequest(message)GetJobRequest(message)GetRevisionRequest(message)GetServiceRequest(message)GetTaskRequest(message)HTTPGetAction(message)HTTPHeader(message)IngressTraffic(enum)Job(message)ListExecutionsRequest(message)ListExecutionsResponse(message)ListJobsRequest(message)ListJobsResponse(message)ListRevisionsRequest(message)ListRevisionsResponse(message)ListServicesRequest(message)ListServicesResponse(message)ListTasksRequest(message)ListTasksResponse(message)NFSVolumeSource(message)NodeSelector(message)Probe(message)ResourceRequirements(message)Revision(message)RevisionScaling(message)RevisionScalingStatus(message)RevisionTemplate(message)RunJobRequest(message)RunJobRequest.Overrides(message)RunJobRequest.Overrides.ContainerOverride(message)SecretKeySelector(message)SecretVolumeSource(message)Service(message)ServiceMesh(message)ServiceScaling(message)TCPSocketAction(message)Task(message)TaskAttemptResult(message)TaskTemplate(message)TrafficTarget(message)TrafficTargetAllocationType(enum)TrafficTargetStatus(message)UpdateJobRequest(message)UpdateServiceRequest(message)VersionToPath(message)Volume(message)VolumeMount(message)VpcAccess(message)VpcAccess.NetworkInterface(message)VpcAccess.VpcEgress(enum)
Executions
Cloud Run Execution Control Plane API.
| CancelExecution |
|---|
|
Cancels an Execution.
|
| DeleteExecution |
|---|
|
Deletes an Execution.
|
| GetExecution |
|---|
|
Gets information about an Execution.
|
| ListExecutions |
|---|
|
Lists Executions from a Job. Results are sorted by creation time, descending.
|
Jobs
Cloud Run Job Control Plane API.
| CreateJob |
|---|
|
Creates a Job.
|
| DeleteJob |
|---|
|
Deletes a Job.
|
| GetIamPolicy |
|---|
|
Gets the IAM Access Control policy currently in effect for the given Job. This result does not include any inherited policies.
|
| GetJob |
|---|
|
Gets information about a Job.
|
| ListJobs |
|---|
|
Lists Jobs. Results are sorted by creation time, descending.
|
| RunJob |
|---|
|
Triggers creation of a new Execution of this Job.
|
| SetIamPolicy |
|---|
|
Sets the IAM Access control policy for the specified Job. Overwrites any existing policy.
|
| TestIamPermissions |
|---|
|
Returns permissions that a caller has on the specified Project. There are no permissions required for making this API call.
|
| UpdateJob |
|---|
|
Updates a Job.
|
Revisions
Cloud Run Revision Control Plane API.
| DeleteRevision |
|---|
|
Deletes a Revision.
|
| GetRevision |
|---|
|
Gets information about a Revision.
|
| ListRevisions |
|---|
|
Lists Revisions from a given Service, or from a given location. Results are sorted by creation time, descending.
|
Services
Cloud Run Service Control Plane API
| CreateService |
|---|
|
Creates a new Service in a given project and location.
|
| DeleteService |
|---|
|
Deletes a Service. This will cause the Service to stop serving traffic and will delete all revisions.
|
| GetIamPolicy |
|---|
|
Gets the IAM Access Control policy currently in effect for the given Cloud Run Service. This result does not include any inherited policies.
|
| GetService |
|---|
|
Gets information about a Service.
|
| ListServices |
|---|
|
Lists Services. Results are sorted by creation time, descending.
|
| SetIamPolicy |
|---|
|
Sets the IAM Access control policy for the specified Service. Overwrites any existing policy.
|
| TestIamPermissions |
|---|
|
Returns permissions that a caller has on the specified Project. There are no permissions required for making this API call.
|
| UpdateService |
|---|
|
Updates a Service.
|
Tasks
Cloud Run Task Control Plane API.
| GetTask |
|---|
|
Gets information about a Task.
|
| ListTasks |
|---|
|
Lists Tasks from an Execution of a Job.
|
BinaryAuthorization
Settings for Binary Authorization feature.
| Fields | |
|---|---|
breakglass_justification |
Optional. If present, indicates to use Breakglass using this justification. If use_default is False, then it must be empty. For more information on breakglass, see https://cloud.google.com/binary-authorization/docs/using-breakglass |
Union field
|
|
use_default |
Optional. If True, indicates to use the default project's binary authorization policy. If False, binary authorization will be disabled. |
policy |
Optional. The path to a binary authorization policy. Format: projects/{project}/platforms/cloudRun/{policy-name} |
CancelExecutionRequest
Request message for deleting an Execution.
| Fields | |
|---|---|
name |
Required. The name of the Execution to cancel. Format: Authorization requires the following IAM permission on the specified resource
|
validate_only |
Indicates that the request should be validated without actually cancelling any resources. |
etag |
A system-generated fingerprint for this version of the resource. This may be used to detect modification conflict during updates. |
CloudSqlInstance
Represents a set of Cloud SQL instances. Each one will be available under /cloudsql/[instance]. Visit https://cloud.google.com/sql/docs/mysql/connect-run for more information on how to connect Cloud SQL and Cloud Run.
| Fields | |
|---|---|
instances[] |
The Cloud SQL instance connection names, as can be found in https://console.cloud.google.com/sql/instances. Visit https://cloud.google.com/sql/docs/mysql/connect-run for more information on how to connect Cloud SQL and Cloud Run. Format: {project}:{location}:{instance} |
Condition
Defines a status condition for a resource.
| Fields | |
|---|---|
type |
type is used to communicate the status of the reconciliation process. See also: https://github.com/knative/serving/blob/main/docs/spec/errors.md#error-conditions-and-reporting Types common to all resources include: * "Ready": True when the Resource is ready. |
state |
State of the condition. |
message |
Human readable message indicating details about the current status. |
last_transition_time |
Last time the condition transitioned from one status to another. |
severity |
How to interpret failures of this condition, one of Error, Warning, Info |
Union field reasons. The reason for this condition. Depending on the condition type, it will populate one of these fields. Successful conditions cannot have a reason. reasons can be only one of the following: |
|
reason |
Output only. A common (service-level) reason for this condition. |
revision_reason |
Output only. A reason for the revision condition. |
execution_reason |
Output only. A reason for the execution condition. |
CommonReason
Reasons common to all types of conditions.
| Enums | |
|---|---|
COMMON_REASON_UNDEFINED |
Default value. |
UNKNOWN |
Reason unknown. Further details will be in message. |
REVISION_FAILED |
Revision creation process failed. |
PROGRESS_DEADLINE_EXCEEDED |
Timed out waiting for completion. |
CONTAINER_MISSING |
The container image path is incorrect. |
CONTAINER_PERMISSION_DENIED |
Insufficient permissions on the container image. |
CONTAINER_IMAGE_UNAUTHORIZED |
Container image is not authorized by policy. |
CONTAINER_IMAGE_AUTHORIZATION_CHECK_FAILED |
Container image policy authorization check failed. |
ENCRYPTION_KEY_PERMISSION_DENIED |
Insufficient permissions on encryption key. |
ENCRYPTION_KEY_CHECK_FAILED |
Permission check on encryption key failed. |
SECRETS_ACCESS_CHECK_FAILED |
At least one Access check on secrets failed. |
WAITING_FOR_OPERATION |
Waiting for operation to complete. |
IMMEDIATE_RETRY |
System will retry immediately. |
POSTPONED_RETRY |
System will retry later; current attempt failed. |
INTERNAL |
An internal error occurred. Further information may be in the message. |
ExecutionReason
Reasons specific to Execution resource.
| Enums | |
|---|---|
EXECUTION_REASON_UNDEFINED |
Default value. |
JOB_STATUS_SERVICE_POLLING_ERROR |
Internal system error getting execution status. System will retry. |
NON_ZERO_EXIT_CODE |
A task reached its retry limit and the last attempt failed due to the user container exiting with a non-zero exit code. |
CANCELLED |
The execution was cancelled by users. |
CANCELLING |
The execution is in the process of being cancelled. |
DELETED |
The execution was deleted. |
RevisionReason
Reasons specific to Revision resource.
| Enums | |
|---|---|
REVISION_REASON_UNDEFINED |
Default value. |
PENDING |
Revision in Pending state. |
RESERVE |
Revision is in Reserve state. |
RETIRED |
Revision is Retired. |
RETIRING |
Revision is being retired. |
RECREATING |
Revision is being recreated. |
HEALTH_CHECK_CONTAINER_ERROR |
There was a health check error. |
CUSTOMIZED_PATH_RESPONSE_PENDING |
Health check failed due to user error from customized path of the container. System will retry. |
MIN_INSTANCES_NOT_PROVISIONED |
A revision with min_instance_count > 0 was created and is reserved, but it was not configured to serve traffic, so it's not live. This can also happen momentarily during traffic migration. |
ACTIVE_REVISION_LIMIT_REACHED |
The maximum allowed number of active revisions has been reached. |
NO_DEPLOYMENT |
There was no deployment defined. This value is no longer used, but Services created in older versions of the API might contain this value. |
HEALTH_CHECK_SKIPPED |
A revision's container has no port specified since the revision is of a manually scaled service with 0 instance count |
MIN_INSTANCES_WARMING |
A revision with min_instance_count > 0 was created and is waiting for enough instances to begin a traffic migration. |
Severity
Represents the severity of the condition failures.
| Enums | |
|---|---|
SEVERITY_UNSPECIFIED |
Unspecified severity |
ERROR |
Error severity. |
WARNING |
Warning severity. |
INFO |
Info severity. |
State
Represents the possible Condition states.
| Enums | |
|---|---|
STATE_UNSPECIFIED |
The default value. This value is used if the state is omitted. |
CONDITION_PENDING |
Transient state: Reconciliation has not started yet. |
CONDITION_RECONCILING |
Transient state: reconciliation is still in progress. |
CONDITION_FAILED |
Terminal state: Reconciliation did not succeed. |
CONDITION_SUCCEEDED |
Terminal state: Reconciliation completed successfully. |
Container
A single application container. This specifies both the container to run, the command to run in the container and the arguments to supply to it. Note that additional arguments can be supplied by the system to the container at runtime.
| Fields | |
|---|---|
name |
Name of the container specified as a DNS_LABEL (RFC 1123). |
image |
Required. Name of the container image in Dockerhub, Google Artifact Registry, or Google Container Registry. If the host is not provided, Dockerhub is assumed. |
command[] |
Entrypoint array. Not executed within a shell. The docker image's ENTRYPOINT is used if this is not provided. |
args[] |
Arguments to the entrypoint. The docker image's CMD is used if this is not provided. |
env[] |
List of environment variables to set in the container. |
resources |
Compute Resource requirements by this container. |
ports[] |
List of ports to expose from the container. Only a single port can be specified. The specified ports must be listening on all interfaces (0.0.0.0) within the container to be accessible. If omitted, a port number will be chosen and passed to the container through the PORT environment variable for the container to listen on. |
volume_mounts[] |
Volume to mount into the container's filesystem. |
working_dir |
Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. |
liveness_probe |
Periodic probe of container liveness. Container will be restarted if the probe fails. |
startup_probe |
Startup probe of application within the container. All other probes are disabled if a startup probe is provided, until it succeeds. Container will not be added to service endpoints if the probe fails. |
depends_on[] |
Names of the containers that must start before this container. |
ContainerPort
ContainerPort represents a network port in a single container.
| Fields | |
|---|---|
name |
If specified, used to specify which protocol to use. Allowed values are "http1" and "h2c". |
container_port |
Port number the container listens on. This must be a valid TCP port number, 0 < container_port < 65536. |
CreateJobRequest
Request message for creating a Job.
| Fields | |
|---|---|
parent |
Required. The location and project in which this Job should be created. Format: projects/{project}/locations/{location}, where {project} can be project id or number. Authorization requires the following IAM permission on the specified resource
|
job |
Required. The Job instance to create. |
job_id |
Required. The unique identifier for the Job. The name of the job becomes {parent}/jobs/{job_id}. |
validate_only |
Indicates that the request should be validated and default values populated, without persisting the request or creating any resources. |
CreateServiceRequest
Request message for creating a Service.
| Fields | |
|---|---|
parent |
Required. The location and project in which this service should be created. Format: projects/{project}/locations/{location}, where {project} can be project id or number. Only lowercase characters, digits, and hyphens. Authorization requires the following IAM permission on the specified resource
|
service |
Required. The Service instance to create. |
service_id |
Required. The unique identifier for the Service. It must begin with letter, and cannot end with hyphen; must contain fewer than 50 characters. The name of the service becomes {parent}/services/{service_id}. |
validate_only |
Indicates that the request should be validated and default values populated, without persisting the request or creating any resources. |
DeleteExecutionRequest
Request message for deleting an Execution.
| Fields | |
|---|---|
name |
Required. The name of the Execution to delete. Format: Authorization requires the following IAM permission on the specified resource
|
validate_only |
Indicates that the request should be validated without actually deleting any resources. |
etag |
A system-generated fingerprint for this version of the resource. This may be used to detect modification conflict during updates. |
DeleteJobRequest
Request message to delete a Job by its full name.
| Fields | |
|---|---|
name |
Required. The full name of the Job. Format: projects/{project}/locations/{location}/jobs/{job}, where {project} can be project id or number. |
validate_only |
Indicates that the request should be validated without actually deleting any resources. |
etag |
A system-generated fingerprint for this version of the resource. May be used to detect modification conflict during updates. |
DeleteRevisionRequest
Request message for deleting a retired Revision. Revision lifecycle is usually managed by making changes to the parent Service. Only retired revisions can be deleted with this API.
| Fields | |
|---|---|
name |
Required. The name of the Revision to delete. Format: projects/{project}/locations/{location}/services/{service}/revisions/{revision} Authorization requires the following IAM permission on the specified resource
|
validate_only |
Indicates that the request should be validated without actually deleting any resources. |
etag |
A system-generated fingerprint for this version of the resource. This may be used to detect modification conflict during updates. |
DeleteServiceRequest
Request message to delete a Service by its full name.
| Fields | |
|---|---|
name |
Required. The full name of the Service. Format: projects/{project}/locations/{location}/services/{service}, where {project} can be project id or number. |
validate_only |
Indicates that the request should be validated without actually deleting any resources. |
etag |
A system-generated fingerprint for this version of the resource. May be used to detect modification conflict during updates. |
EmptyDirVolumeSource
In memory (tmpfs) ephemeral storage. It is ephemeral in the sense that when the sandbox is taken down, the data is destroyed with it (it does not persist across sandbox runs).
| Fields | |
|---|---|
medium |
The medium on which the data is stored. Acceptable values today is only MEMORY or none. When none, the default will currently be backed by memory but could change over time. +optional |
size_limit |
Limit on the storage usable by this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers. The default is nil which means that the limit is undefined. More info: https://cloud.google.com/run/docs/configuring/in-memory-volumes#configure-volume. Info in Kubernetes: https://kubernetes.io/docs/concepts/storage/volumes/#emptydir |
Medium
The different types of medium supported for EmptyDir.
| Enums | |
|---|---|
MEDIUM_UNSPECIFIED |
When not specified, falls back to the default implementation which is currently in memory (this may change over time). |
MEMORY |
Explicitly set the EmptyDir to be in memory. Uses tmpfs. |
EncryptionKeyRevocationAction
Specifies behavior if an encryption key used by a resource is revoked.
| Enums | |
|---|---|
ENCRYPTION_KEY_REVOCATION_ACTION_UNSPECIFIED |
Unspecified |
PREVENT_NEW |
Prevents the creation of new instances. |
SHUTDOWN |
Shuts down existing instances, and prevents creation of new ones. |
EnvVar
EnvVar represents an environment variable present in a Container.
| Fields | |
|---|---|
name |
Required. Name of the environment variable. Must not exceed 32768 characters. |
Union field
|
|
value |
Literal value of the environment variable. Defaults to "", and the maximum length is 32768 bytes. Variable references are not supported in Cloud Run. |
value_source |
Source for the environment variable's value. |
EnvVarSource
EnvVarSource represents a source for the value of an EnvVar.
| Fields | |
|---|---|
secret_key_ref |
Selects a secret and a specific version from Cloud Secret Manager. |
Execution
Execution represents the configuration of a single execution. A execution an immutable resource that references a container image which is run to completion.
| Fields | |
|---|---|
name |
Output only. The unique name of this Execution. |
uid |
Output only. Server assigned unique identifier for the Execution. The value is a UUID4 string and guaranteed to remain unchanged until the resource is deleted. |
generation |
Output only. A number that monotonically increases every time the user modifies the desired state. |
labels |
Output only. Unstructured key value map that can be used to organize and categorize objects. User-provided labels are shared with Google's billing system, so they can be used to filter, or break down billing charges by team, component, environment, state, etc. For more information, visit https://cloud.google.com/resource-manager/docs/creating-managing-labels or https://cloud.google.com/run/docs/configuring/labels |
annotations |
Output only. Unstructured key value map that may be set by external tools to store and arbitrary metadata. They are not queryable and should be preserved when modifying objects. |
create_time |
Output only. Represents time when the execution was acknowledged by the execution controller. It is not guaranteed to be set in happens-before order across separate operations. |
start_time |
Output only. Represents time when the execution started to run. It is not guaranteed to be set in happens-before order across separate operations. |
completion_time |
Output only. Represents time when the execution was completed. It is not guaranteed to be set in happens-before order across separate operations. |
update_time |
Output only. The last-modified time. |
delete_time |
Output only. For a deleted resource, the deletion time. It is only populated as a response to a Delete request. |
expire_time |
Output only. For a deleted resource, the time after which it will be permamently deleted. It is only populated as a response to a Delete request. |
launch_stage |
The least stable launch stage needed to create this resource, as defined by Google Cloud Platform Launch Stages. Cloud Run supports Note that this value might not be what was used as input. For example, if ALPHA was provided as input in the parent resource, but only BETA and GA-level features are were, this field will be BETA. |
job |
Output only. The name of the parent Job. |
parallelism |
Output only. Specifies the maximum desired number of tasks the execution should run at any given time. Must be <= task_count. The actual number of tasks running in steady state will be less than this number when ((.spec.task_count - .status.successful) < .spec.parallelism), i.e. when the work left to do is less than max parallelism. |
task_count |
Output only. Specifies the desired number of tasks the execution should run. Setting to 1 means that parallelism is limited to 1 and the success of that task signals the success of the execution. |
template |
Output only. The template used to create tasks for this execution. |
reconciling |
Output only. Indicates whether the resource's reconciliation is still in progress. See comments in |
conditions[] |
Output only. The Condition of this Execution, containing its readiness status, and detailed error information in case it did not reach the desired state. |
observed_generation |
Output only. The generation of this Execution. See comments in |
running_count |
Output only. The number of actively running tasks. |
succeeded_count |
Output only. The number of tasks which reached phase Succeeded. |
failed_count |
Output only. The number of tasks which reached phase Failed. |
cancelled_count |
Output only. The number of tasks which reached phase Cancelled. |
retried_count |
Output only. The number of tasks which have retried at least once. |
log_uri |
Output only. URI where logs for this execution can be found in Cloud Console. |
satisfies_pzs |
Output only. Reserved for future use. |
etag |
Output only. A system-generated fingerprint for this version of the resource. May be used to detect modification conflict during updates. |
ExecutionEnvironment
Alternatives for execution environments.
| Enums | |
|---|---|
EXECUTION_ENVIRONMENT_UNSPECIFIED |
Unspecified |
EXECUTION_ENVIRONMENT_GEN1 |
Uses the First Generation environment. |
EXECUTION_ENVIRONMENT_GEN2 |
Uses Second Generation environment. |
ExecutionReference
Reference to an Execution. Use /Executions.GetExecution with the given name to get full execution including the latest status.
| Fields | |
|---|---|
name |
Name of the execution. |
create_time |
Creation timestamp of the execution. |
completion_time |
Creation timestamp of the execution. |
delete_time |
The deletion time of the execution. It is only populated as a response to a Delete request. |
completion_status |
Status for the execution completion. |
CompletionStatus
Possible execution completion status.
| Enums | |
|---|---|
COMPLETION_STATUS_UNSPECIFIED |
The default value. This value is used if the state is omitted. |
EXECUTION_SUCCEEDED |
Job execution has succeeded. |
EXECUTION_FAILED |
Job execution has failed. |
EXECUTION_RUNNING |
Job execution is running normally. |
EXECUTION_PENDING |
Waiting for backing resources to be provisioned. |
EXECUTION_CANCELLED |
Job execution has been cancelled by the user. |
ExecutionTemplate
ExecutionTemplate describes the data an execution should have when created from a template.
| Fields | |
|---|---|
labels |
Unstructured key value map that can be used to organize and categorize objects. User-provided labels are shared with Google's billing system, so they can be used to filter, or break down billing charges by team, component, environment, state, etc. For more information, visit https://cloud.google.com/resource-manager/docs/creating-managing-labels or https://cloud.google.com/run/docs/configuring/labels. Cloud Run API v2 does not support labels with |
annotations |
Unstructured key value map that may be set by external tools to store and arbitrary metadata. They are not queryable and should be preserved when modifying objects. Cloud Run API v2 does not support annotations with This field follows Kubernetes annotations' namespacing, limits, and rules. |
parallelism |
Specifies the maximum desired number of tasks the execution should run at given time. Must be <= task_count. When the job is run, if this field is 0 or unset, the maximum possible value will be used for that execution. The actual number of tasks running in steady state will be less than this number when there are fewer tasks waiting to be completed remaining, i.e. when the work left to do is less than max parallelism. |
task_count |
Specifies the desired number of tasks the execution should run. Setting to 1 means that parallelism is limited to 1 and the success of that task signals the success of the execution. Defaults to 1. |
template |
Required. Describes the task(s) that will be created when executing an execution. |
GCSVolumeSource
Represents a volume backed by a Cloud Storage bucket using Cloud Storage FUSE.
| Fields | |
|---|---|
bucket |
Cloud Storage Bucket name. |
read_only |
If true, the volume will be mounted as read only for all mounts. |
GRPCAction
GRPCAction describes an action involving a GRPC port.
| Fields | |
|---|---|
port |
Optional. Port number of the gRPC service. Number must be in the range 1 to 65535. If not specified, defaults to the exposed port of the container, which is the value of container.ports[0].containerPort. |
service |
Optional. Service is the name of the service to place in the gRPC HealthCheckRequest (see https://github.com/grpc/grpc/blob/master/doc/health-checking.md ). If this is not specified, the default behavior is defined by gRPC. |
GetExecutionRequest
Request message for obtaining a Execution by its full name.
| Fields | |
|---|---|
name |
Required. The full name of the Execution. Format: Authorization requires the following IAM permission on the specified resource
|
GetJobRequest
Request message for obtaining a Job by its full name.
| Fields | |
|---|---|
name |
Required. The full name of the Job. Format: projects/{project}/locations/{location}/jobs/{job}, where {project} can be project id or number. |
GetRevisionRequest
Request message for obtaining a Revision by its full name.
| Fields | |
|---|---|
name |
Required. The full name of the Revision. Format: projects/{project}/locations/{location}/services/{service}/revisions/{revision} |
GetServiceRequest
Request message for obtaining a Service by its full name.
| Fields | |
|---|---|
name |
Required. The full name of the Service. Format: projects/{project}/locations/{location}/services/{service}, where {project} can be project id or number. |
GetTaskRequest
Request message for obtaining a Task by its full name.
| Fields | |
|---|---|
name |
Required. The full name of the Task. Format: projects/{project}/locations/{location}/jobs/{job}/executions/{execution}/tasks/{task} Authorization requires the following IAM permission on the specified resource
|
HTTPGetAction
HTTPGetAction describes an action based on HTTP Get requests.
| Fields | |
|---|---|
path |
Optional. Path to access on the HTTP server. Defaults to '/'. |
http_headers[] |
Optional. Custom headers to set in the request. HTTP allows repeated headers. |
port |
Optional. Port number to access on the container. Must be in the range 1 to 65535. If not specified, defaults to the exposed port of the container, which is the value of container.ports[0].containerPort. |
HTTPHeader
HTTPHeader describes a custom header to be used in HTTP probes
| Fields | |
|---|---|
name |
Required. The header field name |
value |
Optional. The header field value |
IngressTraffic
Allowed ingress traffic for the Container.
| Enums | |
|---|---|
INGRESS_TRAFFIC_UNSPECIFIED |
Unspecified |
INGRESS_TRAFFIC_ALL |
All inbound traffic is allowed. |
INGRESS_TRAFFIC_INTERNAL_ONLY |
Only internal traffic is allowed. |
INGRESS_TRAFFIC_INTERNAL_LOAD_BALANCER |
Both internal and Google Cloud Load Balancer traffic is allowed. |
INGRESS_TRAFFIC_NONE |
No ingress traffic is allowed. |
Job
Job represents the configuration of a single job, which references a container image that is run to completion.
| Fields | |
|---|---|
name |
The fully qualified name of this Job. Format: projects/{project}/locations/{location}/jobs/{job} |
uid |
Output only. Server assigned unique identifier for the Execution. The value is a UUID4 string and guaranteed to remain unchanged until the resource is deleted. |
generation |
Output only. A number that monotonically increases every time the user modifies the desired state. |
labels |
Unstructured key value map that can be used to organize and categorize objects. User-provided labels are shared with Google's billing system, so they can be used to filter, or break down billing charges by team, component, environment, state, etc. For more information, visit https://cloud.google.com/resource-manager/docs/creating-managing-labels or https://cloud.google.com/run/docs/configuring/labels. Cloud Run API v2 does not support labels with |
annotations |
Unstructured key value map that may be set by external tools to store and arbitrary metadata. They are not queryable and should be preserved when modifying objects. Cloud Run API v2 does not support annotations with This field follows Kubernetes annotations' namespacing, limits, and rules. |
create_time |
Output only. The creation time. |
update_time |
Output only. The last-modified time. |
delete_time |
Output only. The deletion time. It is only populated as a response to a Delete request. |
expire_time |
Output only. For a deleted resource, the time after which it will be permamently deleted. |
creator |
Output only. Email address of the authenticated creator. |
last_modifier |
Output only. Email address of the last authenticated modifier. |
client |
Arbitrary identifier for the API client. |
client_version |
Arbitrary version identifier for the API client. |
launch_stage |
The launch stage as defined by Google Cloud Platform Launch Stages. Cloud Run supports For example, if ALPHA is provided as input, but only BETA and GA-level features are used, this field will be BETA on output. |
binary_authorization |
Settings for the Binary Authorization feature. |
template |
Required. The template used to create executions for this Job. |
observed_generation |
Output only. The generation of this Job. See comments in |
terminal_condition |
Output only. The Condition of this Job, containing its readiness status, and detailed error information in case it did not reach the desired state. |
conditions[] |
Output only. The Conditions of all other associated sub-resources. They contain additional diagnostics information in case the Job does not reach its desired state. See comments in |
execution_count |
Output only. Number of executions created for this job. |
latest_created_execution |
Output only. Name of the last created execution. |
reconciling |
Output only. Returns true if the Job is currently being acted upon by the system to bring it into the desired state. When a new Job is created, or an existing one is updated, Cloud Run will asynchronously perform all necessary steps to bring the Job to the desired state. This process is called reconciliation. While reconciliation is in process, If reconciliation succeeded, the following fields will match: If reconciliation failed, |
satisfies_pzs |
Output only. Reserved for future use. |
etag |
Output only. A system-generated fingerprint for this version of the resource. May be used to detect modification conflict during updates. |
Union field
|
|
start_execution_token |
A unique string used as a suffix creating a new execution. The Job will become ready when the execution is successfully started. The sum of job name and token length must be fewer than 63 characters. |
run_execution_token |
A unique string used as a suffix for creating a new execution. The Job will become ready when the execution is successfully completed. The sum of job name and token length must be fewer than 63 characters. |
ListExecutionsRequest
Request message for retrieving a list of Executions.
| Fields | |
|---|---|
parent |
Required. The Execution from which the Executions should be listed. To list all Executions across Jobs, use "-" instead of Job name. Format: Authorization requires the following IAM permission on the specified resource
|
page_size |
Maximum number of Executions to return in this call. |
page_token |
A page token received from a previous call to ListExecutions. All other parameters must match. |
show_deleted |
If true, returns deleted (but unexpired) resources along with active ones. |
ListExecutionsResponse
Response message containing a list of Executions.
| Fields | |
|---|---|
executions[] |
The resulting list of Executions. |
next_page_token |
A token indicating there are more items than page_size. Use it in the next ListExecutions request to continue. |
ListJobsRequest
Request message for retrieving a list of Jobs.
| Fields | |
|---|---|
parent |
Required. The location and project to list resources on. Format: projects/{project}/locations/{location}, where {project} can be project id or number. Authorization requires the following IAM permission on the specified resource
|
page_size |
Maximum number of Jobs to return in this call. |
page_token |
A page token received from a previous call to ListJobs. All other parameters must match. |
show_deleted |
If true, returns deleted (but unexpired) resources along with active ones. |
ListJobsResponse
Response message containing a list of Jobs.
| Fields | |
|---|---|
jobs[] |
The resulting list of Jobs. |
next_page_token |
A token indicating there are more items than page_size. Use it in the next ListJobs request to continue. |
ListRevisionsRequest
Request message for retrieving a list of Revisions.
| Fields | |
|---|---|
parent |
Required. The Service from which the Revisions should be listed. To list all Revisions across Services, use "-" instead of Service name. Format: projects/{project}/locations/{location}/services/{service} Authorization requires the following IAM permission on the specified resource
|
page_size |
Maximum number of revisions to return in this call. |
page_token |
A page token received from a previous call to ListRevisions. All other parameters must match. |
show_deleted |
If true, returns deleted (but unexpired) resources along with active ones. |
ListRevisionsResponse
Response message containing a list of Revisions.
| Fields | |
|---|---|
revisions[] |
The resulting list of Revisions. |
next_page_token |
A token indicating there are more items than page_size. Use it in the next ListRevisions request to continue. |
ListServicesRequest
Request message for retrieving a list of Services.
| Fields | |
|---|---|
parent |
Required. The location and project to list resources on. Location must be a valid Google Cloud region, and cannot be the "-" wildcard. Format: projects/{project}/locations/{location}, where {project} can be project id or number. Authorization requires the following IAM permission on the specified resource
|
page_size |
Maximum number of Services to return in this call. |
page_token |
A page token received from a previous call to ListServices. All other parameters must match. |
show_deleted |
If true, returns deleted (but unexpired) resources along with active ones. |
ListServicesResponse
Response message containing a list of Services.
| Fields | |
|---|---|
services[] |
The resulting list of Services. |
next_page_token |
A token indicating there are more items than page_size. Use it in the next ListServices request to continue. |
ListTasksRequest
Request message for retrieving a list of Tasks.
| Fields | |
|---|---|
parent |
Required. The Execution from which the Tasks should be listed. To list all Tasks across Executions of a Job, use "-" instead of Execution name. To list all Tasks across Jobs, use "-" instead of Job name. Format: projects/{project}/locations/{location}/jobs/{job}/executions/{execution} Authorization requires the following IAM permission on the specified resource
|
page_size |
Maximum number of Tasks to return in this call. |
page_token |
A page token received from a previous call to ListTasks. All other parameters must match. |
show_deleted |
If true, returns deleted (but unexpired) resources along with active ones. |
ListTasksResponse
Response message containing a list of Tasks.
| Fields | |
|---|---|
tasks[] |
The resulting list of Tasks. |
next_page_token |
A token indicating there are more items than page_size. Use it in the next ListTasks request to continue. |
NFSVolumeSource
Represents an NFS mount.
| Fields | |
|---|---|
server |
Hostname or IP address of the NFS server |
path |
Path that is exported by the NFS server. |
read_only |
If true, the volume will be mounted as read only for all mounts. |
NodeSelector
Hardware constraints configuration.
| Fields | |
|---|---|
accelerator |
Required. GPU accelerator type to attach to an instance. |
Probe
Probe describes a health check to be performed against a container to determine whether it is alive or ready to receive traffic.
| Fields | |
|---|---|
initial_delay_seconds |
Optional. Number of seconds after the container has started before the probe is initiated. Defaults to 0 seconds. Minimum value is 0. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240. |
timeout_seconds |
Optional. Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1. Maximum value is 3600. Must be smaller than period_seconds. |
period_seconds |
Optional. How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240. Must be greater or equal than timeout_seconds. |
failure_threshold |
Optional. Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1. |
Union field
|
|
http_get |
Optional. HTTPGet specifies the http request to perform. Exactly one of httpGet, tcpSocket, or grpc must be specified. |
tcp_socket |
Optional. TCPSocket specifies an action involving a TCP port. Exactly one of httpGet, tcpSocket, or grpc must be specified. |
grpc |
Optional. GRPC specifies an action involving a gRPC port. Exactly one of httpGet, tcpSocket, or grpc must be specified. |
ResourceRequirements
ResourceRequirements describes the compute resource requirements.
| Fields | |
|---|---|
limits |
Only Notes: * The only supported values for CPU are '1', '2', '4', and '8'. Setting 4 CPU requires at least 2Gi of memory. For more information, go to https://cloud.google.com/run/docs/configuring/cpu. * For supported 'memory' values and syntax, go to https://cloud.google.com/run/docs/configuring/memory-limits |
cpu_idle |
Determines whether CPU is only allocated during requests (true by default). However, if ResourceRequirements is set, the caller must explicitly set this field to true to preserve the default behavior. |
startup_cpu_boost |
Determines whether CPU should be boosted on startup of a new container instance above the requested CPU threshold, this can help reduce cold-start latency. |
Revision
A Revision is an immutable snapshot of code and configuration. A Revision references a container image. Revisions are only created by updates to its parent Service.
| Fields | |
|---|---|
name |
Output only. The unique name of this Revision. |
uid |
Output only. Server assigned unique identifier for the Revision. The value is a UUID4 string and guaranteed to remain unchanged until the resource is deleted. |
generation |
Output only. A number that monotonically increases every time the user modifies the desired state. |
labels |
Output only. Unstructured key value map that can be used to organize and categorize objects. User-provided labels are shared with Google's billing system, so they can be used to filter, or break down billing charges by team, component, environment, state, etc. For more information, visit https://cloud.google.com/resource-manager/docs/creating-managing-labels or https://cloud.google.com/run/docs/configuring/labels. |
annotations |
Output only. Unstructured key value map that may be set by external tools to store and arbitrary metadata. They are not queryable and should be preserved when modifying objects. |
create_time |
Output only. The creation time. |
update_time |
Output only. The last-modified time. |
delete_time |
Output only. For a deleted resource, the deletion time. It is only populated as a response to a Delete request. |
expire_time |
Output only. For a deleted resource, the time after which it will be permamently deleted. It is only populated as a response to a Delete request. |
launch_stage |
The least stable launch stage needed to create this resource, as defined by Google Cloud Platform Launch Stages. Cloud Run supports Note that this value might not be what was used as input. For example, if ALPHA was provided as input in the parent resource, but only BETA and GA-level features are were, this field will be BETA. |
service |
Output only. The name of the parent service. |
scaling |
Scaling settings for this revision. |
vpc_access |
VPC Access configuration for this Revision. For more information, visit https://cloud.google.com/run/docs/configuring/connecting-vpc. |
max_instance_request_concurrency |
Sets the maximum number of requests that each serving instance can receive. |
timeout |
Max allowed time for an instance to respond to a request. |
service_account |
Email address of the IAM service account associated with the revision of the service. The service account represents the identity of the running revision, and determines what permissions the revision has. |
containers[] |
Holds the single container that defines the unit of execution for this Revision. |
volumes[] |
A list of Volumes to make available to containers. |
execution_environment |
The execution environment being used to host this Revision. |
encryption_key |
A reference to a customer managed encryption key (CMEK) to use to encrypt this container image. For more information, go to https://cloud.google.com/run/docs/securing/using-cmek |
service_mesh |
Enables service mesh connectivity. |
encryption_key_revocation_action |
The action to take if the encryption key is revoked. |
encryption_key_shutdown_duration |
If encryption_key_revocation_action is SHUTDOWN, the duration before shutting down all instances. The minimum increment is 1 hour. |
reconciling |
Output only. Indicates whether the resource's reconciliation is still in progress. See comments in |
conditions[] |
Output only. The Condition of this Revision, containing its readiness status, and detailed error information in case it did not reach a serving state. |
observed_generation |
Output only. The generation of this Revision currently serving traffic. See comments in |
log_uri |
Output only. The Google Console URI to obtain logs for the Revision. |
satisfies_pzs |
Output only. Reserved for future use. |
session_affinity |
Enable session affinity. |
scaling_status |
Output only. The current effective scaling settings for the revision. |
node_selector |
The node selector for the revision. |
etag |
Output only. A system-generated fingerprint for this version of the resource. May be used to detect modification conflict during updates. |
RevisionScaling
Settings for revision-level scaling settings.
| Fields | |
|---|---|
min_instance_count |
Optional. Minimum number of serving instances that this resource should have. |
max_instance_count |
Optional. Maximum number of serving instances that this resource should have. |
RevisionScalingStatus
Effective settings for the current revision
| Fields | |
|---|---|
desired_min_instance_count |
The current number of min instances provisioned for this revision. |
RevisionTemplate
RevisionTemplate describes the data a revision should have when created from a template.
| Fields | |
|---|---|
revision |
Optional. The unique name for the revision. If this field is omitted, it will be automatically generated based on the Service name. |
labels |
Optional. Unstructured key value map that can be used to organize and categorize objects. User-provided labels are shared with Google's billing system, so they can be used to filter, or break down billing charges by team, component, environment, state, etc. For more information, visit https://cloud.google.com/resource-manager/docs/creating-managing-labels or https://cloud.google.com/run/docs/configuring/labels. Cloud Run API v2 does not support labels with |
annotations |
Optional. Unstructured key value map that may be set by external tools to store and arbitrary metadata. They are not queryable and should be preserved when modifying objects. Cloud Run API v2 does not support annotations with This field follows Kubernetes annotations' namespacing, limits, and rules. |
scaling |
Optional. Scaling settings for this Revision. |
vpc_access |
Optional. VPC Access configuration to use for this Revision. For more information, visit https://cloud.google.com/run/docs/configuring/connecting-vpc. |
timeout |
Optional. Max allowed time for an instance to respond to a request. |
service_account |
Optional. Email address of the IAM service account associated with the revision of the service. The service account represents the identity of the running revision, and determines what permissions the revision has. If not provided, the revision will use the project's default service account. |
containers[] |
Holds the single container that defines the unit of execution for this Revision. |
volumes[] |
Optional. A list of Volumes to make available to containers. |
execution_environment |
Optional. The sandbox environment to host this Revision. |
encryption_key |
A reference to a customer managed encryption key (CMEK) to use to encrypt this container image. For more information, go to https://cloud.google.com/run/docs/securing/using-cmek |
max_instance_request_concurrency |
Optional. Sets the maximum number of requests that each serving instance can receive. If not specified or 0, defaults to 80 when requested CPU >= 1 and defaults to 1 when requested CPU < 1. |
service_mesh |
Optional. Enables service mesh connectivity. |
session_affinity |
Optional. Enable session affinity. |
health_check_disabled |
Optional. Disables health checking containers during deployment. |
node_selector |
Optional. The node selector for the revision template. |
RunJobRequest
Request message to create a new Execution of a Job.
| Fields | |
|---|---|
name |
Required. The full name of the Job. Format: projects/{project}/locations/{location}/jobs/{job}, where {project} can be project id or number. |
validate_only |
Indicates that the request should be validated without actually deleting any resources. |
etag |
A system-generated fingerprint for this version of the resource. May be used to detect modification conflict during updates. |
overrides |
Overrides specification for a given execution of a job. If provided, overrides will be applied to update the execution or task spec. Authorization requires the following IAM permission on the specified resource
|
Overrides
RunJob Overrides that contains Execution fields to be overridden.
| Fields | |
|---|---|
container_overrides[] |
Per container override specification. |
task_count |
Optional. The desired number of tasks the execution should run. Will replace existing task_count value. |
timeout |
Duration in seconds the task may be active before the system will actively try to mark it failed and kill associated containers. Will replace existing timeout_seconds value. |
ContainerOverride
Per-container override specification.
| Fields | |
|---|---|
name |
The name of the container specified as a DNS_LABEL. |
args[] |
Optional. Arguments to the entrypoint. Will replace existing args for override. |
env[] |
List of environment variables to set in the container. Will be merged with existing env for override. |
clear_args |
Optional. True if the intention is to clear out existing args list. |
SecretKeySelector
SecretEnvVarSource represents a source for the value of an EnvVar.
| Fields | |
|---|---|
secret |
Required. The name of the secret in Cloud Secret Manager. Format: {secret_name} if the secret is in the same project. projects/{project}/secrets/{secret_name} if the secret is in a different project. |
version |
The Cloud Secret Manager secret version. Can be 'latest' for the latest version, an integer for a specific version, or a version alias. |
SecretVolumeSource
The secret's value will be presented as the content of a file whose name is defined in the item path. If no items are defined, the name of the file is the secret.
| Fields | |
|---|---|
secret |
Required. The name of the secret in Cloud Secret Manager. Format: {secret} if the secret is in the same project. projects/{project}/secrets/{secret} if the secret is in a different project. |
items[] |
If unspecified, the volume will expose a file whose name is the secret, relative to VolumeMount.mount_path. If specified, the key will be used as the version to fetch from Cloud Secret Manager and the path will be the name of the file exposed in the volume. When items are defined, they must specify a path and a version. |
default_mode |
Integer representation of mode bits to use on created files by default. Must be a value between 0000 and 0777 (octal), defaulting to 0444. Directories within the path are not affected by this setting. Notes
This might be in conflict with other options that affect the file mode, like fsGroup, and as a result, other mode bits could be set. |
Service
Service acts as a top-level container that manages a set of configurations and revision templates which implement a network service. Service exists to provide a singular abstraction which can be access controlled, reasoned about, and which encapsulates software lifecycle decisions such as rollout policy and team resource ownership.
| Fields | |
|---|---|
name |
The fully qualified name of this Service. In CreateServiceRequest, this field is ignored, and instead composed from CreateServiceRequest.parent and CreateServiceRequest.service_id. Format: projects/{project}/locations/{location}/services/{service_id} |
description |
User-provided description of the Service. This field currently has a 512-character limit. |
uid |
Output only. Server assigned unique identifier for the trigger. The value is a UUID4 string and guaranteed to remain unchanged until the resource is deleted. |
generation |
Output only. A number that monotonically increases every time the user modifies the desired state. Please note that unlike v1, this is an int64 value. As with most Google APIs, its JSON representation will be a |
labels |
Optional. Unstructured key value map that can be used to organize and categorize objects. User-provided labels are shared with Google's billing system, so they can be used to filter, or break down billing charges by team, component, environment, state, etc. For more information, visit https://cloud.google.com/resource-manager/docs/creating-managing-labels or https://cloud.google.com/run/docs/configuring/labels. Cloud Run API v2 does not support labels with |
annotations |
Optional. Unstructured key value map that may be set by external tools to store and arbitrary metadata. They are not queryable and should be preserved when modifying objects. Cloud Run API v2 does not support annotations with This field follows Kubernetes annotations' namespacing, limits, and rules. |
create_time |
Output only. The creation time. |
update_time |
Output only. The last-modified time. |
delete_time |
Output only. The deletion time. It is only populated as a response to a Delete request. |
expire_time |
Output only. For a deleted resource, the time after which it will be permamently deleted. |
creator |
Output only. Email address of the authenticated creator. |
last_modifier |
Output only. Email address of the last authenticated modifier. |
client |
Arbitrary identifier for the API client. |
client_version |
Arbitrary version identifier for the API client. |
ingress |
Optional. Provides the ingress settings for this Service. On output, returns the currently observed ingress settings, or INGRESS_TRAFFIC_UNSPECIFIED if no revision is active. |
launch_stage |
Optional. The launch stage as defined by Google Cloud Platform Launch Stages. Cloud Run supports For example, if ALPHA is provided as input, but only BETA and GA-level features are used, this field will be BETA on output. |
binary_authorization |
Optional. Settings for the Binary Authorization feature. |
template |
Required. The template used to create revisions for this Service. |
traffic[] |
Optional. Specifies how to distribute traffic over a collection of Revisions belonging to the Service. If traffic is empty or not provided, defaults to 100% traffic to the latest |
scaling |
Optional. Specifies service-level scaling settings |
default_uri_disabled |
Optional. Disables public resolution of the default URI of this service. |
urls[] |
Output only. All URLs serving traffic for this Service. |
custom_audiences[] |
One or more custom audiences that you want this service to support. Specify each custom audience as the full URL in a string. The custom audiences are encoded in the token and used to authenticate requests. For more information, see https://cloud.google.com/run/docs/configuring/custom-audiences. |
observed_generation |
Output only. The generation of this Service currently serving traffic. See comments in |
terminal_condition |
Output only. The Condition of this Service, containing its readiness status, and detailed error information in case it did not reach a serving state. See comments in |
conditions[] |
Output only. The Conditions of all other associated sub-resources. They contain additional diagnostics information in case the Service does not reach its Serving state. See comments in |
latest_ready_revision |
Output only. Name of the latest revision that is serving traffic. See comments in |
latest_created_revision |
Output only. Name of the last created revision. See comments in |
traffic_statuses[] |
Output only. Detailed status information for corresponding traffic targets. See comments in |
uri |
Output only. The main URI in which this Service is serving traffic. |
satisfies_pzs |
Output only. Reserved for future use. |
reconciling |
Output only. Returns true if the Service is currently being acted upon by the system to bring it into the desired state. When a new Service is created, or an existing one is updated, Cloud Run will asynchronously perform all necessary steps to bring the Service to the desired serving state. This process is called reconciliation. While reconciliation is in process, If reconciliation succeeded, the following fields will match: If reconciliation failed, |
etag |
Output only. A system-generated fingerprint for this version of the resource. May be used to detect modification conflict during updates. |
ServiceMesh
Settings for Cloud Service Mesh. For more information see https://cloud.google.com/service-mesh/docs/overview.
| Fields | |
|---|---|
mesh |
The Mesh resource name. Format: projects/{project}/locations/global/meshes/{mesh}, where {project} can be project id or number. |
ServiceScaling
Scaling settings applied at the service level rather than at the revision level.
| Fields | |
|---|---|
min_instance_count |
Optional. total min instances for the service. This number of instances is divided among all revisions with specified traffic based on the percent of traffic they are receiving. (BETA) |
TCPSocketAction
TCPSocketAction describes an action based on opening a socket
| Fields | |
|---|---|
port |
Optional. Port number to access on the container. Must be in the range 1 to 65535. If not specified, defaults to the exposed port of the container, which is the value of container.ports[0].containerPort. |
Task
Task represents a single run of a container to completion.
| Fields | |
|---|---|
name |
Output only. The unique name of this Task. |
uid |
Output only. Server assigned unique identifier for the Task. The value is a UUID4 string and guaranteed to remain unchanged until the resource is deleted. |
generation |
Output only. A number that monotonically increases every time the user modifies the desired state. |
labels |
Output only. Unstructured key value map that can be used to organize and categorize objects. User-provided labels are shared with Google's billing system, so they can be used to filter, or break down billing charges by team, component, environment, state, etc. For more information, visit https://cloud.google.com/resource-manager/docs/creating-managing-labels or https://cloud.google.com/run/docs/configuring/labels |
annotations |
Output only. Unstructured key value map that may be set by external tools to store and arbitrary metadata. They are not queryable and should be preserved when modifying objects. |
create_time |
Output only. Represents time when the task was created by the system. It is not guaranteed to be set in happens-before order across separate operations. |
scheduled_time |
Output only. Represents time when the task was scheduled to run by the system. It is not guaranteed to be set in happens-before order across separate operations. |
start_time |
Output only. Represents time when the task started to run. It is not guaranteed to be set in happens-before order across separate operations. |
completion_time |
Output only. Represents time when the Task was completed. It is not guaranteed to be set in happens-before order across separate operations. |
update_time |
Output only. The last-modified time. |
delete_time |
Output only. For a deleted resource, the deletion time. It is only populated as a response to a Delete request. |
expire_time |
Output only. For a deleted resource, the time after which it will be permamently deleted. It is only populated as a response to a Delete request. |
job |
Output only. The name of the parent Job. |
execution |
Output only. The name of the parent Execution. |
containers[] |
Holds the single container that defines the unit of execution for this task. |
volumes[] |
A list of Volumes to make available to containers. |
max_retries |
Number of retries allowed per Task, before marking this Task failed. |
timeout |
Max allowed time duration the Task may be active before the system will actively try to mark it failed and kill associated containers. This applies per attempt of a task, meaning each retry can run for the full timeout. |
service_account |
Email address of the IAM service account associated with the Task of a Job. The service account represents the identity of the running task, and determines what permissions the task has. If not provided, the task will use the project's default service account. |
execution_environment |
The execution environment being used to host this Task. |
reconciling |
Output only. Indicates whether the resource's reconciliation is still in progress. See comments in |
conditions[] |
Output only. The Condition of this Task, containing its readiness status, and detailed error information in case it did not reach the desired state. |
observed_generation |
Output only. The generation of this Task. See comments in |
index |
Output only. Index of the Task, unique per execution, and beginning at 0. |
retried |
Output only. The number of times this Task was retried. Tasks are retried when they fail up to the maxRetries limit. |
last_attempt_result |
Output only. Result of the last attempt of this Task. |
encryption_key |
Output only. A reference to a customer managed encryption key (CMEK) to use to encrypt this container image. For more information, go to https://cloud.google.com/run/docs/securing/using-cmek |
vpc_access |
Output only. VPC Access configuration to use for this Task. For more information, visit https://cloud.google.com/run/docs/configuring/connecting-vpc. |
log_uri |
Output only. URI where logs for this execution can be found in Cloud Console. |
satisfies_pzs |
Output only. Reserved for future use. |
etag |
Output only. A system-generated fingerprint for this version of the resource. May be used to detect modification conflict during updates. |
TaskAttemptResult
Result of a task attempt.
| Fields | |
|---|---|
status |
Output only. The status of this attempt. If the status code is OK, then the attempt succeeded. |
exit_code |
Output only. The exit code of this attempt. This may be unset if the container was unable to exit cleanly with a code due to some other failure. See status field for possible failure details. |
TaskTemplate
TaskTemplate describes the data a task should have when created from a template.
| Fields | |
|---|---|
containers[] |
Holds the single container that defines the unit of execution for this task. |
volumes[] |
Optional. A list of Volumes to make available to containers. |
timeout |
Optional. Max allowed time duration the Task may be active before the system will actively try to mark it failed and kill associated containers. This applies per attempt of a task, meaning each retry can run for the full timeout. Defaults to 600 seconds. |
service_account |
Optional. Email address of the IAM service account associated with the Task of a Job. The service account represents the identity of the running task, and determines what permissions the task has. If not provided, the task will use the project's default service account. |
execution_environment |
Optional. The execution environment being used to host this Task. |
encryption_key |
A reference to a customer managed encryption key (CMEK) to use to encrypt this container image. For more information, go to https://cloud.google.com/run/docs/securing/using-cmek |
vpc_access |
Optional. VPC Access configuration to use for this Task. For more information, visit https://cloud.google.com/run/docs/configuring/connecting-vpc. |
Union field
|
|
max_retries |
Number of retries allowed per Task, before marking this Task failed. Defaults to 3. |
TrafficTarget
Holds a single traffic routing entry for the Service. Allocations can be done to a specific Revision name, or pointing to the latest Ready Revision.
| Fields | |
|---|---|
type |
The allocation type for this traffic target. |
revision |
Revision to which to send this portion of traffic, if traffic allocation is by revision. |
percent |
Specifies percent of the traffic to this Revision. This defaults to zero if unspecified. |
tag |
Indicates a string to be part of the URI to exclusively reference this target. |
TrafficTargetAllocationType
The type of instance allocation.
| Enums | |
|---|---|
TRAFFIC_TARGET_ALLOCATION_TYPE_UNSPECIFIED |
Unspecified instance allocation type. |
TRAFFIC_TARGET_ALLOCATION_TYPE_LATEST |
Allocates instances to the Service's latest ready Revision. |
TRAFFIC_TARGET_ALLOCATION_TYPE_REVISION |
Allocates instances to a Revision by name. |
TrafficTargetStatus
Represents the observed state of a single TrafficTarget entry.
| Fields | |
|---|---|
type |
The allocation type for this traffic target. |
revision |
Revision to which this traffic is sent. |
percent |
Specifies percent of the traffic to this Revision. |
tag |
Indicates the string used in the URI to exclusively reference this target. |
uri |
Displays the target URI. |
UpdateJobRequest
Request message for updating a Job.
| Fields | |
|---|---|
job |
Required. The Job to be updated. |
validate_only |
Indicates that the request should be validated and default values populated, without persisting the request or updating any resources. |
allow_missing |
Optional. If set to true, and if the Job does not exist, it will create a new one. Caller must have both create and update permissions for this call if this is set to true. |
UpdateServiceRequest
Request message for updating a service.
| Fields | |
|---|---|
update_mask |
Optional. The list of fields to be updated. |
service |
Required. The Service to be updated. |
validate_only |
Indicates that the request should be validated and default values populated, without persisting the request or updating any resources. |
allow_missing |
Optional. If set to true, and if the Service does not exist, it will create a new one. The caller must have 'run.services.create' permissions if this is set to true and the Service does not exist. |
VersionToPath
VersionToPath maps a specific version of a secret to a relative file to mount to, relative to VolumeMount's mount_path.
| Fields | |
|---|---|
path |
Required. The relative path of the secret in the container. |
version |
The Cloud Secret Manager secret version. Can be 'latest' for the latest value, or an integer or a secret alias for a specific version. |
mode |
Integer octal mode bits to use on this file, must be a value between 01 and 0777 (octal). If 0 or not set, the Volume's default mode will be used. Notes
|
Volume
Volume represents a named volume in a container.
| Fields | |
|---|---|
name |
Required. Volume's name. |
Union field
|
|
secret |
Secret represents a secret that should populate this volume. |
cloud_sql_instance |
For Cloud SQL volumes, contains the specific instances that should be mounted. Visit https://cloud.google.com/sql/docs/mysql/connect-run for more information on how to connect Cloud SQL and Cloud Run. |
empty_dir |
Ephemeral storage used as a shared volume. |
nfs |
For NFS Voumes, contains the path to the nfs Volume |
gcs |
Persistent storage backed by a Google Cloud Storage bucket. |
VolumeMount
VolumeMount describes a mounting of a Volume within a container.
| Fields | |
|---|---|
name |
Required. This must match the Name of a Volume. |
mount_path |
Required. Path within the container at which the volume should be mounted. Must not contain ':'. For Cloud SQL volumes, it can be left empty, or must otherwise be |
VpcAccess
VPC Access settings. For more information on sending traffic to a VPC network, visit https://cloud.google.com/run/docs/configuring/connecting-vpc.
| Fields | |
|---|---|
connector |
VPC Access connector name. Format: projects/{project}/locations/{location}/connectors/{connector}, where {project} can be project id or number. For more information on sending traffic to a VPC network via a connector, visit https://cloud.google.com/run/docs/configuring/vpc-connectors. |
egress |
Optional. Traffic VPC egress settings. If not provided, it defaults to PRIVATE_RANGES_ONLY. |
network_interfaces[] |
Optional. Direct VPC egress settings. Currently only single network interface is supported. |
NetworkInterface
Direct VPC egress settings.
| Fields | |
|---|---|
network |
Optional. The VPC network that the Cloud Run resource will be able to send traffic to. At least one of network or subnetwork must be specified. If both network and subnetwork are specified, the given VPC subnetwork must belong to the given VPC network. If network is not specified, it will be looked up from the subnetwork. |
subnetwork |
Optional. The VPC subnetwork that the Cloud Run resource will get IPs from. At least one of network or subnetwork must be specified. If both network and subnetwork are specified, the given VPC subnetwork must belong to the given VPC network. If subnetwork is not specified, the subnetwork with the same name with the network will be used. |
tags[] |
Optional. Network tags applied to this Cloud Run resource. |
VpcEgress
Egress options for VPC access.
| Enums | |
|---|---|
VPC_EGRESS_UNSPECIFIED |
Unspecified |
ALL_TRAFFIC |
All outbound traffic is routed through the VPC connector. |
PRIVATE_RANGES_ONLY |
Only private IP ranges are routed through the VPC connector. |