Types overview

string

(No description provided)

object (AuditLogConfig)

The configuration for logging of each type of permission.

string

Specifies a service that will be enabled for audit logging. For example, storage.googleapis.com, cloudsql.googleapis.com. allServices is a special value that covers all services.

string

Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.

enum

The log type that this config enables.

string

Relative name of the domain authorized for use. Example: example.com.

string

Deprecated Read only. Full path to the AuthorizedDomain resource in the API. Example: projects/myproject/authorizedDomains/example.com.

object (Expr)

The condition that is associated with this binding. If the condition evaluates to true, then this binding applies to the current request. If the condition evaluates to false, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the IAM documentation.

string

Specifies the principals requesting access for a Google Cloud resource. members can have the following values: * allUsers: A special identifier that represents anyone who is on the internet; with or without a Google account. * allAuthenticatedUsers: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * user:{emailid}: An email address that represents a specific Google account. For example, alice@example.com . * serviceAccount:{emailid}: An email address that represents a Google service account. For example, my-other-app@appspot.gserviceaccount.com. * serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]: An identifier for a Kubernetes service account. For example, my-project.svc.id.goog[my-namespace/my-kubernetes-sa]. * group:{emailid}: An email address that represents a Google group. For example, admins@example.com. * domain:{domain}: The G Suite domain (primary) that represents all the users of that domain. For example, google.com or example.com. * deleted:user:{emailid}?uid={uniqueid}: An email address (plus unique identifier) representing a user that has been recently deleted. For example, alice@example.com?uid=123456789012345678901. If the user is recovered, this value reverts to user:{emailid} and the recovered user retains the role in the binding. * deleted:serviceAccount:{emailid}?uid={uniqueid}: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901. If the service account is undeleted, this value reverts to serviceAccount:{emailid} and the undeleted service account retains the role in the binding. * deleted:group:{emailid}?uid={uniqueid}: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, admins@example.com?uid=123456789012345678901. If the group is recovered, this value reverts to group:{emailid} and the recovered group retains the role in the binding.

string

Role that is assigned to the list of members, or principals. For example, roles/viewer, roles/editor, or roles/owner.

object (LocalObjectReference)

This field should not be used directly as it is meant to be inlined directly into the message. Use the "name" field instead.

string

The ConfigMap to select from.

boolean

Specify whether the ConfigMap must be defined.

string

Required. Not supported by Cloud Run.

object (LocalObjectReference)

Not supported by Cloud Run.

string

Required. Not supported by Cloud Run.

boolean

Not supported by Cloud Run.

integer (int32 format)

(Optional) Integer representation of mode bits to use on created files by default. Must be a value between 01 and 0777 (octal). If 0 or not set, it will default to 0644. Directories within the path are not affected by this setting. Notes * Internally, a umask of 0222 will be applied to any non-zero value. * This is an integer representation of the mode bits. So, the octal integer value should look exactly as the chmod numeric notation with a leading zero. Some examples: for chmod 777 (a=rwx), set to 0777 (octal) or 511 (base-10). For chmod 640 (u=rw,g=r), set to 0640 (octal) or 416 (base-10). For chmod 755 (u=rwx,g=rx,o=rx), set to 0755 (octal) or 493 (base-10). * This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.

object (KeyToPath)

(Optional) If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified that is not present in the Secret, the volume setup will error unless it is marked optional.

string

Name of the config.

boolean

(Optional) Specify whether the Secret or its keys must be defined.

string

The API version for this call such as "serving.knative.dev/v1".

string

The kind of resource, in this case always "Configuration".

object (ObjectMeta)

Metadata associated with this Configuration, including name, namespace, labels, and annotations.

object (ConfigurationSpec)

Spec holds the desired state of the Configuration (from the client).

object (ConfigurationStatus)

Status communicates the observed state of the Configuration (from the controller).

object (RevisionTemplate)

Template holds the latest specification for the Revision to be stamped out.

object (GoogleCloudRunV1Condition)

Conditions communicate information about ongoing/complete reconciliation processes that bring the "spec" inline with the observed state of the world.

string

LatestCreatedRevisionName is the last revision that was created from this Configuration. It might not be ready yet, so for the latest ready revision, use LatestReadyRevisionName.

string

LatestReadyRevisionName holds the name of the latest Revision stamped out from this Configuration that has had its "Ready" condition become "True".

integer (int32 format)

ObservedGeneration is the 'Generation' of the Configuration that was last processed by the controller. The observed generation is updated even if the controller failed to process the spec and create the Revision. Clients polling for completed reconciliation should poll until observedGeneration = metadata.generation, and the Ready condition's status is True or False.

string

Arguments to the entrypoint. The docker image's CMD is used if this is not provided. Variable references are not supported in Cloud Run.

string

Entrypoint array. Not executed within a shell. The docker image's ENTRYPOINT is used if this is not provided. Variable references are not supported in Cloud Run.

object (EnvVar)

List of environment variables to set in the container. EnvVar with duplicate names are generally allowed; if referencing a secret, the name must be unique for the container. For non-secret EnvVar names, the Container will only get the last-declared one.

object (EnvFromSource)

Not supported by Cloud Run.

string

Required. Name of the container image in Dockerhub, Google Artifact Registry, or Google Container Registry. If the host is not provided, Dockerhub is assumed.

string

Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise.

object (Probe)

Periodic probe of container liveness. Container will be restarted if the probe fails.

string

Name of the container specified as a DNS_LABEL (RFC 1123).

object (ContainerPort)

List of ports to expose from the container. Only a single port can be specified. The specified ports must be listening on all interfaces (0.0.0.0) within the container to be accessible. If omitted, a port number will be chosen and passed to the container through the PORT environment variable for the container to listen on.

object (Probe)

Not supported by Cloud Run.

object (ResourceRequirements)

Compute Resources required by this container.

object (SecurityContext)

Not supported by Cloud Run.

object (Probe)

Startup probe of application within the container. All other probes are disabled if a startup probe is provided, until it succeeds. Container will not receive traffic if the probe fails. If not provided, a default startup probe with TCP socket action is used.

string

Path at which the file to which the container's termination message will be written is mounted into the container's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log.

string

Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.

object (VolumeMount)

Volume to mount into the container's filesystem. Only supports SecretVolumeSources. Pod volumes to mount into the container's filesystem.

string

Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image.

string

Arguments to the entrypoint. The specified arguments replace and override any existing entrypoint arguments. Must be empty if clear_args is set to true.

boolean

Optional. Set to True to clear all existing arguments.

object (EnvVar)

List of environment variables to set in the container. All specified environment variables are merged with existing environment variables. When the specified environment variables exist, these values override any existing values.

string

The name of the container specified as a DNS_LABEL.

integer (int32 format)

Port number the container listens on. If present, this must be a valid port number, 0 < x < 65536. If not present, it will default to port 8080. For more information, see https://cloud.google.com/run/docs/container-contract#port

string

If specified, used to specify which protocol to use. Allowed values are "http1" and "h2c".

string

Protocol for port. Must be "TCP". Defaults to "TCP".

string

The API version for this call such as "domains.cloudrun.com/v1".

string

The kind of resource, in this case "DomainMapping".

object (ObjectMeta)

Metadata associated with this BuildTemplate.

object (DomainMappingSpec)

The spec for this DomainMapping.

object (DomainMappingStatus)

The current status of the DomainMapping.

enum

The mode of the certificate.

boolean

If set, the mapping will override any mapping set before this spec was set. It is recommended that the user leaves this empty to receive an error warning about a potential conflict and only set it once the respective UI has given such a warning.

string

The name of the Knative Route that this DomainMapping applies to. The route must exist.

object (GoogleCloudRunV1Condition)

Array of observed DomainMappingConditions, indicating the current state of the DomainMapping.

string

The name of the route that the mapping currently points to.

integer (int32 format)

ObservedGeneration is the 'Generation' of the DomainMapping that was last processed by the controller. Clients polling for completed reconciliation should poll until observedGeneration = metadata.generation and the Ready condition's status is True or False.

object (ResourceRecord)

The resource records required to configure this domain mapping. These records must be added to the domain's DNS configuration in order to serve the application via this domain mapping.

string

Optional. Not supported by Cloud Run.

string

The medium on which the data is stored. The default is "" which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir

string

Limit on the storage usable by this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers. The default is nil which means that the limit is undefined. More info: https://cloud.google.com/run/docs/configuring/in-memory-volumes#configure-volume. Info in Kubernetes: https://kubernetes.io/docs/concepts/storage/volumes/#emptydir

object (ConfigMapEnvSource)

The ConfigMap to select from

string

An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.

object (SecretEnvSource)

The Secret to select from

string

Required. Name of the environment variable. Must be a C_IDENTIFIER.

string

Value of the environment variable. Defaults to "". Variable references are not supported in Cloud Run.

object (EnvVarSource)

Source for the environment variable's value. Only supports secret_key_ref. Cannot be used if value is not empty.

object (ConfigMapKeySelector)

Not supported by Cloud Run. Not supported in Cloud Run.

object (SecretKeySelector)

Selects a key (version) of a secret in Secret Manager.

string

Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.

string

Optional. APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values.

string

Optional. Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase.

object (ObjectMeta)

Optional. Standard object's metadata.

object (ExecutionSpec)

Optional. Specification of the desired behavior of an execution.

object (ExecutionStatus)

Output only. Current status of an execution.

string (Timestamp format)

Optional. Completion timestamp of the execution.

string (Timestamp format)

Optional. Creation timestamp of the execution.

string

Optional. Name of the execution.

integer (int32 format)

Optional. Specifies the maximum desired number of tasks the execution should run at given time. Must be <= task_count. When the job is run, if this field is 0 or unset, the maximum possible value will be used for that execution. The actual number of tasks running in steady state will be less than this number when there are fewer tasks waiting to be completed, i.e. when the work left to do is less than max parallelism.

integer (int32 format)

Optional. Specifies the desired number of tasks the execution should run. Setting to 1 means that parallelism is limited to 1 and the success of that task signals the success of the execution. Defaults to 1.

object (TaskTemplateSpec)

Optional. The template used to create tasks for this execution.

integer (int32 format)

Optional. The number of tasks which reached phase Cancelled.

string (Timestamp format)

Optional. Represents the time that the execution was completed. It is not guaranteed to be set in happens-before order across separate operations. It is represented in RFC3339 form and is in UTC. +optional

object (GoogleCloudRunV1Condition)

Optional. Conditions communicate information about ongoing/complete reconciliation processes that bring the "spec" inline with the observed state of the world. Execution-specific conditions include: * ResourcesAvailable: True when underlying resources have been provisioned. * Started: True when the execution has started to execute. * Completed: True when the execution has succeeded. False when the execution has failed.

integer (int32 format)

Optional. The number of tasks which reached phase Failed.

string

Optional. URI where logs for this execution can be found in Cloud Console.

integer (int32 format)

Optional. The 'generation' of the execution that was last processed by the controller.

integer (int32 format)

Optional. The number of tasks which have retried at least once.

integer (int32 format)

Optional. The number of actively running tasks.

string (Timestamp format)

Optional. Represents the time that the execution started to run. It is not guaranteed to be set in happens-before order across separate operations. It is represented in RFC3339 form and is in UTC.

integer (int32 format)

Optional. The number of tasks which reached phase Succeeded.

object (ObjectMeta)

Optional. Optional metadata for this Execution, including labels and annotations. The following annotation keys set properties of the created execution: * run.googleapis.com/cloudsql-instances sets Cloud SQL connections. Multiple values should be comma separated. * run.googleapis.com/vpc-access-connector sets a Serverless VPC Access connector. * run.googleapis.com/vpc-access-egress sets VPC egress. Supported values are all-traffic, all (deprecated), and private-ranges-only. all-traffic and all provide the same functionality. all is deprecated but will continue to be supported. Prefer all-traffic.

object (ExecutionSpec)

Required. ExecutionSpec holds the desired configuration for executions of this job.

string

Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.

string

Textual representation of an expression in Common Expression Language syntax.

string

Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.

string

Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.

integer (int32 format)

Port number of the gRPC service. Number must be in the range 1 to 65535.

string

Service is the name of the service to place in the gRPC HealthCheckRequest. If this is not specified, the default behavior is defined by gRPC.

string (Timestamp format)

Optional. Last time the condition transitioned from one status to another.

string

Optional. Human readable message indicating details about the current status.

string

Optional. One-word CamelCase reason for the condition's last transition. These are intended to be stable, unique values which the client may use to trigger error handling logic, whereas messages which may be changed later by the server.

string

Optional. How to interpret this condition. One of Error, Warning, or Info. Conditions of severity Info do not contribute to resource readiness.

string

Status of the condition, one of True, False, Unknown.

string

type is used to communicate the status of the reconciliation process. Types common to all resources include: * "Ready" or "Completed": True when the Resource is ready.

integer (int32 format)

The status code, which should be an enum value of google.rpc.Code.

object

A list of messages that carry the error details. There is a common set of message types for APIs to use.

string

A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.

string

Not supported by Cloud Run.

object (HTTPHeader)

Custom headers to set in the request. HTTP allows repeated headers.

string

Path to access on the HTTP server.

integer (int32 format)

Port number to access on the container. Number must be in the range 1 to 65535.

string

Not supported by Cloud Run.

string

Required. The header field name

string

The header field value

string

Optional. APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values.

string

Optional. Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase.

object (ObjectMeta)

Optional. Standard object's metadata.

object (JobSpec)

Optional. Specification of the desired behavior of a job.

object (JobStatus)

Output only. Current status of a job.

object (ExecutionTemplateSpec)

Optional. Describes the execution that will be created when running a job.

object (GoogleCloudRunV1Condition)

Conditions communicate information about ongoing/complete reconciliation processes that bring the "spec" inline with the observed state of the world. Job-specific conditions include: * Ready: True when the job is ready to be executed.

integer (int32 format)

Number of executions created for this job.

object (ExecutionReference)

A pointer to the most recently created execution for this job. This is set regardless of the eventual state of the execution.

integer (int32 format)

The 'generation' of the job that was last processed by the controller.

string

The Cloud Secret Manager secret version. Can be 'latest' for the latest value, or an integer or a secret alias for a specific version. The key to project.

integer (int32 format)

(Optional) Mode bits to use on this file, must be a value between 01 and 0777 (octal). If 0 or not set, the Volume's default mode will be used. Notes * Internally, a umask of 0222 will be applied to any non-zero value. * This is an integer representation of the mode bits. So, the octal integer value should look exactly as the chmod numeric notation with a leading zero. Some examples: for chmod 777 (a=rwx), set to 0777 (octal) or 511 (base-10). For chmod 640 (u=rw,g=r), set to 0640 (octal) or 416 (base-10). For chmod 755 (u=rwx,g=rx,o=rx), set to 0755 (octal) or 493 (base-10). * This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.

string

The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.

object (AuthorizedDomain)

The authorized domains belonging to the user.

string

Continuation token for fetching the next page of results.

string

The API version for this call such as "serving.knative.dev/v1".

object (Configuration)

List of Configurations.

string

The kind of this resource, in this case "ConfigurationList".

object (ListMeta)

Metadata associated with this Configuration list.

string

Locations that could not be reached.

string

The API version for this call such as "domains.cloudrun.com/v1".

object (DomainMapping)

List of DomainMappings.

string

The kind of this resource, in this case "DomainMappingList".

object (ListMeta)

Metadata associated with this DomainMapping list.

string

Locations that could not be reached.

string

The API version for this call such as "run.googleapis.com/v1".

object (Execution)

List of Executions.

string

The kind of this resource, in this case "ExecutionsList".

object (ListMeta)

Metadata associated with this executions list.

string

Locations that could not be reached.

string

The API version for this call such as "run.googleapis.com/v1".

object (Job)

List of Jobs.

string

The kind of this resource, in this case "JobsList".

object (ListMeta)

Metadata associated with this jobs list.

string

Locations that could not be reached.

object (Location)

A list of locations that matches the specified filter in the request.

string

The standard List next-page token.

string

Continuation token is a value emitted when the count of items is larger than the user/system limit. To retrieve the next page of items, pass the value of continue as the next request's page_token.

string

Opaque string that identifies the server's internal version of this object. It can be used by clients to determine when objects have changed. If the message is passed back to the server, it must be left unmodified.

string

URL representing this object.

string

The API version for this call such as "serving.knative.dev/v1".

object (Revision)

List of Revisions.

string

The kind of this resource, in this case "RevisionList".

object (ListMeta)

Metadata associated with this revision list.

string

Locations that could not be reached.

string

The API version for this call such as "serving.knative.dev/v1".

object (Route)

List of Routes.

string

The kind of this resource, in this case always "RouteList".

object (ListMeta)

Metadata associated with this Route list.

string

Locations that could not be reached.

string

The API version for this call; returns "serving.knative.dev/v1".

object (Service)

List of Services.

string

The kind of this resource; returns "ServiceList".

object (ListMeta)

Metadata associated with this Service list.

string

For calls against the global endpoint, returns the list of Cloud locations that could not be reached. For regional calls, this field is not used.

string

The API version for this call such as "run.googleapis.com/v1".

object (Task)

List of Tasks.

string

The kind of this resource, in this case "TasksList".

object (ListMeta)

Metadata associated with this tasks list.

string

Locations that could not be reached.

string

Name of the referent.

string

The friendly name for this location, typically a nearby city name. For example, "Tokyo".

map (key: string, value: string)

Cross-service attributes for the location. For example {"cloud.googleapis.com/region": "us-east1"}

string

The canonical id for this location. For example: "us-east1".

map (key: string, value: any)

Service-specific metadata. For example the available capacity at the given location.

string

Resource name for the location, which may vary between implementations. For example: "projects/example-project/locations/us-east1"

map (key: string, value: string)

Unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. In Cloud Run, annotations with 'run.googleapis.com/' and 'autoscaling.knative.dev' are restricted, and the accepted annotations will be different depending on the resource type. * autoscaling.knative.dev/maxScale: Revision. * autoscaling.knative.dev/minScale: Revision. * run.googleapis.com/binary-authorization-breakglass: Service, Job, * run.googleapis.com/binary-authorization: Service, Job, Execution. * run.googleapis.com/client-name: All resources. * run.googleapis.com/cloudsql-instances: Revision, Execution. * run.googleapis.com/container-dependencies: Revision. * run.googleapis.com/cpu-throttling: Revision. * run.googleapis.com/custom-audiences: Service. * run.googleapis.com/description: Service. * run.googleapis.com/disable-default-uri: Service. * run.googleapis.com/encryption-key-shutdown-hours: Revision * run.googleapis.com/encryption-key: Revision, Execution. * run.googleapis.com/execution-environment: Revision, Execution. * run.googleapis.com/gc-traffic-tags: Service. * run.googleapis.com/ingress: Service. * run.googleapis.com/launch-stage: Service, Job. * run.googleapis.com/network-interfaces: Revision, Execution. * run.googleapis.com/post-key-revocation-action-type: Revision. * run.googleapis.com/secrets: Revision, Execution. * run.googleapis.com/secure-session-agent: Revision. * run.googleapis.com/sessionAffinity: Revision. * run.googleapis.com/startup-cpu-boost: Revision. * run.googleapis.com/vpc-access-connector: Revision, Execution. * run.googleapis.com/vpc-access-egress: Revision, Execution.

string

Not supported by Cloud Run

string (Timestamp format)

UTC timestamp representing the server time when this object was created.

integer (int32 format)

Not supported by Cloud Run

string (Timestamp format)

The read-only soft deletion timestamp for this resource. In Cloud Run, users are not able to set this field. Instead, they must call the corresponding Delete API.

string

Not supported by Cloud Run

string

Not supported by Cloud Run

integer (int32 format)

A system-provided sequence number representing a specific generation of the desired state.

map (key: string, value: string)

Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and routes.

string

Required. The name of the resource. Name is required when creating top-level resources (Service, Job), must be unique within a Cloud Run project/region, and cannot be changed once created.

string

Required. Defines the space within each name must be unique within a Cloud Run region. In Cloud Run, it must be project ID or number.

object (OwnerReference)

Not supported by Cloud Run

string

Opaque, system-generated value that represents the internal version of this object that can be used by clients to determine when objects have changed. May be used for optimistic concurrency, change detection, and the watch operation on a resource or set of resources. Clients must treat these values as opaque and passed unmodified back to the server or omit the value to disable conflict-detection.

string

URL representing this object.

string

Unique, system-generated identifier for this resource.

object (ContainerOverride)

Per container override specification.

integer (int32 format)

The desired number of tasks the execution should run. Will replace existing task_count value.

integer (int32 format)

Duration in seconds the task may be active before the system will actively try to mark it failed and kill associated containers. Will replace existing timeout_seconds value.

string

This is not supported or used by Cloud Run.

boolean

This is not supported or used by Cloud Run.

boolean

This is not supported or used by Cloud Run.

string

This is not supported or used by Cloud Run.

string

This is not supported or used by Cloud Run.

string

This is not supported or used by Cloud Run.

object (AuditConfig)

Specifies cloud audit logging configuration for this policy.

object (Binding)

Associates a list of members, or principals, with a role. Optionally, may specify a condition that determines how and when the bindings are applied. Each of the bindings must contain at least one principal. The bindings in a Policy can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the bindings grant 50 different roles to user:alice@example.com, and not to any other principal, then you can add another 1,450 principals to the bindings in the Policy.

string (bytes format)

etag is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the etag in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An etag is returned in the response to getIamPolicy, and systems are expected to put that etag in the request to setIamPolicy to ensure that their change will be applied to the same version of the policy. Important: If you use IAM Conditions, you must include the etag field whenever you call setIamPolicy. If you omit this field, then IAM allows you to overwrite a version 3 policy with a version 1 policy, and all of the conditions in the version 3 policy are lost.

integer (int32 format)

Specifies the format of the policy. Valid values are 0, 1, and 3. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version 3. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions Important: If you use IAM Conditions, you must include the etag field whenever you call setIamPolicy. If you omit this field, then IAM allows you to overwrite a version 3 policy with a version 1 policy, and all of the conditions in the version 3 policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the IAM documentation.

object (ExecAction)

Not supported by Cloud Run.

integer (int32 format)

Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.

object (GRPCAction)

GRPCAction specifies an action involving a GRPC port.

object (HTTPGetAction)

HTTPGet specifies the http request to perform.

integer (int32 format)

Number of seconds after the container has started before the probe is initiated. Defaults to 0 seconds. Minimum value is 0. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240.

integer (int32 format)

How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240. Must be greater or equal than timeout_seconds.

integer (int32 format)

Minimum consecutive successes for the probe to be considered successful after having failed. Must be 1 if set.

object (TCPSocketAction)

TCPSocket specifies an action involving a TCP port.

integer (int32 format)

Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1. Maximum value is 3600. Must be smaller than period_seconds; if period_seconds is not set, must be less or equal than 10.

string

Relative name of the object affected by this record. Only applicable for CNAME records. Example: 'www'.

string

Data for this record. Values vary by record type, as defined in RFC 1035 (section 5) and RFC 1034 (section 3.6.1).

enum

Resource record type. Example: AAAA.

map (key: string, value: string)

Limits describes the maximum amount of compute resources allowed. Only 'cpu' and 'memory' keys are supported. * For supported 'cpu' values, go to https://cloud.google.com/run/docs/configuring/cpu. * For supported 'memory' values and syntax, go to https://cloud.google.com/run/docs/configuring/memory-limits

map (key: string, value: string)

Requests describes the minimum amount of compute resources required. Only cpu and memory are supported. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. * For supported 'cpu' values, go to https://cloud.google.com/run/docs/configuring/cpu. * For supported 'memory' values and syntax, go to https://cloud.google.com/run/docs/configuring/memory-limits

string

The API version for this call such as "serving.knative.dev/v1".

string

The kind of this resource, in this case "Revision".

object (ObjectMeta)

Metadata associated with this Revision, including name, namespace, labels, and annotations.

object (RevisionSpec)

Spec holds the desired state of the Revision (from the client).

object (RevisionStatus)

Status communicates the observed state of the Revision (from the controller).

integer (int32 format)

ContainerConcurrency specifies the maximum allowed in-flight (concurrent) requests per container instance of the Revision. If not specified, defaults to 80.

object (Container)

Containers holds the single container that defines the unit of execution for this Revision. In the context of a Revision, we disallow a number of fields on this Container, including: name and lifecycle. In Cloud Run, only a single container may be provided.

boolean

Not supported by Cloud Run.

object (LocalObjectReference)

Not supported by Cloud Run.

string

Email address of the IAM service account associated with the revision of the service. The service account represents the identity of the running revision, and determines what permissions the revision has. If not provided, the revision will use the project's default service account.

integer (int32 format)

TimeoutSeconds holds the max duration the instance is allowed for responding to a request. Cloud Run: defaults to 300 seconds (5 minutes). Maximum allowed value is 3600 seconds (1 hour).

object (Volume)

(No description provided)

object (GoogleCloudRunV1Condition)

Conditions communicate information about ongoing/complete reconciliation processes that bring the "spec" inline with the observed state of the world. As a Revision is being prepared, it will incrementally update conditions. Revision-specific conditions include: * ResourcesAvailable: True when underlying resources have been provisioned. * ContainerHealthy: True when the Revision readiness check completes. * Active: True when the Revision may receive traffic.

string

ImageDigest holds the resolved digest for the image specified within .Spec.Container.Image. The digest is resolved during the creation of Revision. This field holds the digest value regardless of whether a tag or digest was originally specified in the Container object.

string

Optional. Specifies the generated logging url for this particular revision based on the revision url template specified in the controller's config.

integer (int32 format)

ObservedGeneration is the 'Generation' of the Revision that was last processed by the controller. Clients polling for completed reconciliation should poll until observedGeneration = metadata.generation, and the Ready condition's status is True or False.

string

Not currently used by Cloud Run.

object (ObjectMeta)

Optional metadata for this Revision, including labels and annotations. Name will be generated by the Configuration. The following annotation keys set properties of the created revision: * autoscaling.knative.dev/minScale sets the minimum number of instances. * autoscaling.knative.dev/maxScale sets the maximum number of instances. * run.googleapis.com/cloudsql-instances sets Cloud SQL connections. Multiple values should be comma separated. * run.googleapis.com/vpc-access-connector sets a Serverless VPC Access connector. * run.googleapis.com/vpc-access-egress sets VPC egress. Supported values are all-traffic, all (deprecated), and private-ranges-only. all-traffic and all provide the same functionality. all is deprecated but will continue to be supported. Prefer all-traffic.

object (RevisionSpec)

RevisionSpec holds the desired state of the Revision (from the client).

string

The API version for this call such as "serving.knative.dev/v1".

string

The kind of this resource, in this case always "Route".

object (ObjectMeta)

Metadata associated with this Route, including name, namespace, labels, and annotations.

object (RouteSpec)

Spec holds the desired state of the Route (from the client).

object (RouteStatus)

Status communicates the observed state of the Route (from the controller).

object (TrafficTarget)

Traffic specifies how to distribute traffic over a collection of Knative Revisions and Configurations. Cloud Run currently supports a single configurationName.

object (Addressable)

Similar to url, information on where the service is available on HTTP.

object (GoogleCloudRunV1Condition)

Conditions communicates information about ongoing/complete reconciliation processes that bring the "spec" inline with the observed state of the world.

integer (int32 format)

ObservedGeneration is the 'Generation' of the Route that was last processed by the controller. Clients polling for completed reconciliation should poll until observedGeneration = metadata.generation and the Ready condition's status is True or False. Note that providing a TrafficTarget that has latest_revision=True will result in a Route that does not increment either its metadata.generation or its observedGeneration, as new "latest ready" revisions from the Configuration are processed without an update to the Route's spec.

object (TrafficTarget)

Traffic holds the configured traffic distribution. These entries will always contain RevisionName references. When ConfigurationName appears in the spec, this will hold the LatestReadyRevisionName that was last observed.

string

URL holds the url that will distribute traffic over the provided traffic targets. It generally has the form: https://{route-hash}-{project-hash}-{cluster-level-suffix}.a.run.app

object (Overrides)

Optional. Overrides existing job configuration for one specific new job execution only, using the specified values to update the job configuration for the new execution.

object (LocalObjectReference)

This field should not be used directly as it is meant to be inlined directly into the message. Use the "name" field instead.

string

The Secret to select from.

boolean

Specify whether the Secret must be defined

string

Required. A Cloud Secret Manager secret version. Must be 'latest' for the latest version, an integer for a specific version, or a version alias. The key of the secret to select from. Must be a valid secret key.

object (LocalObjectReference)

This field should not be used directly as it is meant to be inlined directly into the message. Use the "name" field instead.

string

The name of the secret in Cloud Secret Manager. By default, the secret is assumed to be in the same project. If the secret is in another project, you must define an alias. An alias definition has the form: :projects//secrets/. If multiple alias definitions are needed, they must be separated by commas. The alias definitions must be set on the run.googleapis.com/secrets annotation. The name of the secret in the pod's namespace to select from.

boolean

Specify whether the Secret or its key must be defined.

integer (int32 format)

Integer representation of mode bits to use on created files by default. Must be a value between 01 and 0777 (octal). If 0 or not set, it will default to 0444. Directories within the path are not affected by this setting. Notes * Internally, a umask of 0222 will be applied to any non-zero value. * This is an integer representation of the mode bits. So, the octal integer value should look exactly as the chmod numeric notation with a leading zero. Some examples: for chmod 777 (a=rwx), set to 0777 (octal) or 511 (base-10). For chmod 640 (u=rw,g=r), set to 0640 (octal) or 416 (base-10). For chmod 755 (u=rwx,g=rx,o=rx), set to 0755 (octal) or 493 (base-10). * This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.

object (KeyToPath)

A list of secret versions to mount in the volume. If no items are specified, the volume will expose a file with the same name as the secret name. The contents of the file will be the data in the latest version of the secret. If items are specified, the key will be used as the version to fetch from Cloud Secret Manager and the path will be the name of the file exposed in the volume. When items are defined, they must specify both a key and a path.

boolean

Not supported by Cloud Run.

string

The name of the secret in Cloud Secret Manager. By default, the secret is assumed to be in the same project. If the secret is in another project, you must define an alias. An alias definition has the form: :projects//secrets/. If multiple alias definitions are needed, they must be separated by commas. The alias definitions must be set on the run.googleapis.com/secrets annotation. Name of the secret in the container's namespace to use.

integer (int32 format)

The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.

string

The API version for this call. It must be "serving.knative.dev/v1".

string

The kind of resource. It must be "Service".

object (ObjectMeta)

Metadata associated with this Service, including name, namespace, labels, and annotations. In Cloud Run, annotations with 'run.googleapis.com/' and 'autoscaling.knative.dev' are restricted, and the accepted annotations will be different depending on the resource type. The following Cloud Run-specific annotations are accepted in Service.metadata.annotations. * run.googleapis.com/binary-authorization-breakglass * run.googleapis.com/binary-authorization * run.googleapis.com/client-name * run.googleapis.com/custom-audiences * run.googleapis.com/description * run.googleapis.com/disable-default-uri * run.googleapis.com/gc-traffic-tags * run.googleapis.com/ingress * run.googleapis.com/ingress sets the ingress settings for the Service. See the ingress settings documentation for details on configuring ingress settings. * run.googleapis.com/ingress-status is output-only and contains the currently active ingress settings for the Service. run.googleapis.com/ingress-status may differ from run.googleapis.com/ingress while the system is processing a change to run.googleapis.com/ingress or if the system failed to process a change to run.googleapis.com/ingress. When the system has processed all changes successfully run.googleapis.com/ingress-status and run.googleapis.com/ingress are equal.

object (ServiceSpec)

Holds the desired state of the Service (from the client).

object (ServiceStatus)

Communicates the system-controlled state of the Service.

object (RevisionTemplate)

Holds the latest specification for the Revision to be stamped out.

object (TrafficTarget)

Specifies how to distribute traffic over a collection of Knative Revisions and Configurations to the Service's main URL.

object (Addressable)

Similar to url, information on where the service is available on HTTP.

object (GoogleCloudRunV1Condition)

Conditions communicate information about ongoing/complete reconciliation processes that bring the spec inline with the observed state of the world. Service-specific conditions include: * ConfigurationsReady: True when the underlying Configuration is ready. * RoutesReady: True when the underlying Route is ready. * Ready: True when all underlying resources are ready.

string

Name of the last revision that was created from this Service's Configuration. It might not be ready yet, for that use LatestReadyRevisionName.

string

Name of the latest Revision from this Service's Configuration that has had its Ready condition become True.

integer (int32 format)

Returns the generation last fully processed by the system. This will only match metadata.generation when reconciliation is complete. Clients polling for completed reconciliation should poll until observedGeneration = metadata.generation and the Ready condition's status is True or False.

object (TrafficTarget)

Holds the configured traffic distribution. These entries will always contain RevisionName references. When ConfigurationName appears in the spec, this will hold the LatestReadyRevisionName that we last observed.

string

URL that will distribute traffic over the provided traffic targets. It generally has the form https://{route-hash}-{project-hash}-{cluster-level-suffix}.a.run.app

object (Policy)

REQUIRED: The complete policy to be applied to the resource. The size of the policy is limited to a few 10s of KB. An empty policy is a valid policy but certain Google Cloud services (such as Projects) might reject them.

string (FieldMask format)

OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only the fields in the mask will be modified. If no mask is provided, the following default mask is used: paths: "bindings, etag"

integer (int32 format)

Suggested HTTP return code for this status, 0 if not set.

object (StatusDetails)

Extended data associated with the reason. Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.

string

A human-readable description of the status of this operation.

object (ListMeta)

Standard list metadata.

string

A machine-readable description of why this operation is in the "Failure" status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.

string

Status of the operation. One of: "Success" or "Failure".

string

The field of the resource that has caused this error, as named by its JSON serialization. May include dot and postfix notation for nested attributes. Arrays are zero-indexed. Fields may appear more than once in an array of causes due to fields having multiple errors. Examples: "name" - the field "name" on the current resource "items[0].name" - the field "name" on the first array entry in "items"

string

A human-readable description of the cause of the error. This field may be presented as-is to a reader.

string

A machine-readable description of the cause of the error. If this value is empty there is no information available.

object (StatusCause)

The Causes array includes more details associated with the StatusReason failure. Not all StatusReasons may provide detailed causes.

string

The group attribute of the resource associated with the status StatusReason.

string

The kind attribute of the resource associated with the status StatusReason. On some operations may differ from the requested resource Kind.

string

The name attribute of the resource associated with the status StatusReason (when there is a single name which can be described).

integer (int32 format)

If specified, the time in seconds before the operation should be retried. Some errors may indicate the client must take an alternate action - for those errors this field may indicate how long to wait before taking the alternate action.

string

UID of the resource. (when there is a single resource which can be described).

string

Not supported by Cloud Run.

integer (int32 format)

Port number to access on the container. Number must be in the range 1 to 65535.

string

Optional. APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values.

string

Optional. Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase.

object (ObjectMeta)

Optional. Standard object's metadata.

object (TaskSpec)

Optional. Specification of the desired behavior of a task.

object (TaskStatus)

Output only. Current status of a task.

integer (int32 format)

Optional. The exit code of this attempt. This may be unset if the container was unable to exit cleanly with a code due to some other failure. See status field for possible failure details.

object (GoogleRpcStatus)

Optional. The status of this attempt. If the status code is OK, then the attempt succeeded.

object (Container)

Optional. List of containers belonging to the task. We disallow a number of fields on this Container. Only a single container may be provided.

integer (int32 format)

Optional. Number of retries allowed per task, before marking this job failed. Defaults to 3.

string

Optional. Email address of the IAM service account associated with the task of a job execution. The service account represents the identity of the running task, and determines what permissions the task has. If not provided, the task will use the project's default service account.

string (int64 format)

Optional. Duration in seconds the task may be active before the system will actively try to mark it failed and kill associated containers. This applies per attempt of a task, meaning each retry can run for the full timeout. Defaults to 600 seconds.

object (Volume)

Optional. List of volumes that can be mounted by containers belonging to the task.

string (Timestamp format)

Optional. Represents time when the task was completed. It is not guaranteed to be set in happens-before order across separate operations. It is represented in RFC3339 form and is in UTC.

object (GoogleCloudRunV1Condition)

Optional. Conditions communicate information about ongoing/complete reconciliation processes that bring the "spec" inline with the observed state of the world. Task-specific conditions include: * Started: True when the task has started to execute. * Completed: True when the task has succeeded. False when the task has failed.

integer (int32 format)

Required. Index of the task, unique per execution, and beginning at 0.

object (TaskAttemptResult)

Optional. Result of the last attempt of this task.

string

Optional. URI where logs for this task can be found in Cloud Console.

integer (int32 format)

Optional. The 'generation' of the task that was last processed by the controller.

integer (int32 format)

Optional. The number of times this task was retried. Instances are retried when they fail up to the maxRetries limit.

string (Timestamp format)

Optional. Represents time when the task started to run. It is not guaranteed to be set in happens-before order across separate operations. It is represented in RFC3339 form and is in UTC.

object (TaskSpec)

Optional. Specification of the desired behavior of the task.

string

The set of permissions to check for the resource. Permissions with wildcards (such as * or storage.*) are not allowed. For more information see IAM Overview.

string

A subset of TestPermissionsRequest.permissions that the caller is allowed.

string

[Deprecated] Not supported in Cloud Run. It must be empty.

boolean

Uses the "status.latestReadyRevisionName" of the Service to determine the traffic target. When it changes, traffic will automatically migrate from the prior "latest ready" revision to the new one. This field must be false if RevisionName is set. This field defaults to true otherwise. If the field is set to true on Status, this means that the Revision was resolved from the Service's latest ready revision.

integer (int32 format)

Percent specifies percent of the traffic to this Revision or Configuration. This defaults to zero if unspecified.

string

Points this traffic target to a specific Revision. This field is mutually exclusive with latest_revision.

string

Tag is used to expose a dedicated url for referencing this target exclusively.

string

Output only. URL displays the URL for accessing tagged traffic targets. URL is displayed in status, and is disallowed on spec. URL must contain a scheme (e.g. https://) and a hostname, but may not contain anything else (e.g. basic auth, url path, etc.)

object (ConfigMapVolumeSource)

Not supported in Cloud Run.

object (EmptyDirVolumeSource)

Ephemeral storage used as a shared volume.

string

Volume's name. In Cloud Run Fully Managed, the name 'cloudsql' is reserved.

object (SecretVolumeSource)

The secret's value will be presented as the content of a file whose name is defined in the item path. If no items are defined, the name of the file is the secretName.

string

Required. Path within the container at which the volume should be mounted. Must not contain ':'.

string

Required. The name of the volume. There must be a corresponding Volume with the same name.

boolean

Only true is accepted for Secret Volumes. Defaults to true for Secrets Volumes.

string

Path within the volume from which the container's volume should be mounted. Defaults to "" (volume's root).