Documentation
¶
Overview ¶
Package v1alpha1 contains API Schema definitions for the settings.gardener.cloud API group +groupName=settings.gardener.cloud +kubebuilder:object:generate=true
Index ¶
Constants ¶
View Source
const ( // GCPServiceAccountJSON is a constant for a key name that is part of the GCP cloud credentials. GCPServiceAccountJSON = "serviceAccountJSON" // GCPAlternativeServiceAccountJSON is a constant for a key name of a secret containing the GCP credentials (service // account json). GCPAlternativeServiceAccountJSON = "serviceaccount.json" // GCPCredentialsConfig is a constant for a key name of a secret containing the GCP credentials configuration. GCPCredentialsConfig = "credentialsConfig" // GCPDiskTypeScratch is the SCRATCH disk type GCPDiskTypeScratch = "SCRATCH" // GCPDiskTypePersistent is the PERSISTENT disk type GCPDiskTypePersistent = "PERSISTENT" // GCPDiskInterfaceNVME is the NVME disk interface GCPDiskInterfaceNVME = "NVME" // GCPDiskInterfaceSCSI is the SCSI disk interface GCPDiskInterfaceSCSI = "SCSI" )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type AdvancedMachineFeatures ¶ added in v0.26.0
type AdvancedMachineFeatures struct {
// EnableNestedVirtualization: Whether to enable nested virtualization or not
// (default is false).
EnableNestedVirtualization bool `json:"enableNestedVirtualization,omitempty"`
}
AdvancedMachineFeatures specifies options for controlling advanced machine features. Options that would traditionally be configured in a BIOS belong here. Features that require operating system support may have corresponding entries in the GuestOsFeatures of an Image (e.g., whether or not the OS in the Image supports nested virtualization being enabled or disabled).
type GCPDisk ¶
type GCPDisk struct {
// AutoDelete: Specifies whether the disk will be auto-deleted when the
// instance is deleted (but not when the disk is detached from the
// instance).
AutoDelete *bool `json:"autoDelete"`
// Boot: Indicates that this is a boot disk. The virtual machine will
// use the first partition of the disk for its root filesystem.
Boot bool `json:"boot"`
// SizeGb: Specifies the size of the disk in base-2 GB.
SizeGb int64 `json:"sizeGb"`
// Type: Specifies the disk type to use to create the instance. If
// not specified, the default is pd-standard, specified using the full
// URL. For
// example:
// https://www.googleapis.com/compute/v1/projects/project/zones/
// zone/diskTypes/pd-standard
//
//
// Other values include pd-ssd and local-ssd. If you define this field,
// you can provide either the full or partial URL. For example, the
// following are valid values:
// - https://www.googleapis.com/compute/v1/projects/project/zones/zone/diskTypes/diskType
// - projects/project/zones/zone/diskTypes/diskType
// - zones/zone/diskTypes/diskType Note that for InstanceTemplate, this
// is the name of the disk type, not URL.
// If you use "SCRATCH" as the value, it is defaulted to local-ssd
Type string `json:"type"`
// Interface: Specifies the disk interface to use for attaching this
// disk, which is either SCSI or NVME. The default is SCSI. Persistent
// disks must always use SCSI and the request will fail if you attempt
// to attach a persistent disk in any other format than SCSI. Local SSDs
// can use either NVME or SCSI. For performance characteristics of SCSI
// over NVMe, see Local SSD performance.
//
// Possible values:
// "NVME"
// "SCSI"
// This is only applied when the disk type is "SCRATCH" currently
Interface string `json:"interface"`
// Image: The source image to create this disk. When creating a
// new instance, one of initializeParams.sourceImage or disks.source is
// required except for local SSD.
//
// To create a disk with one of the public operating system images,
// specify the image by its family name. For example, specify
// family/debian-9 to use the latest Debian 9
// image:
// projects/debian-cloud/global/images/family/debian-9
//
//
// Alternatively, use a specific version of a public operating system
// image:
// projects/debian-cloud/global/images/debian-9-stretch-vYYYYMMDD
//
//
//
// To create a disk with a custom image that you created, specify the
// image name in the following
// format:
// global/images/my-custom-image
//
//
// You can also specify a custom image by its image family, which
// returns the latest version of the image in that family. Replace the
// image name with
// family/family-name:
// global/images/family/my-image-family
//
//
// If the source image is deleted later, this field will not be set.
Image string `json:"image"`
// Encryption: Encryption details for this disk
Encryption *GCPDiskEncryption `json:"encryption"`
// Labels: Labels to apply to this disk. These can be later modified by
// the disks.setLabels method. This field is only applicable for
// persistent disks.
Labels map[string]string `json:"labels"`
// ProvisionedIops of disk to create.
// Only for use with disks of type pd-extreme and hyperdisk-extreme.
// The IOPS must be specified within defined limits
// the value zero will be omitted from the request because GCP client
// will not write any "empty" values to the request
ProvisionedIops int64 `json:"provisionedIops,omitempty"`
// ProvisionedThroughput of disk to create.
// Only for hyperdisk-balanced or hyperdisk-throughput volumes,
// measured in MiB per second, that the disk can handle.
// The throughput must be specified within defined limits
// the value zero will be omitted from the request because GCP client
// will not write any "empty" values to the request
ProvisionedThroughput int64 `json:"provisionedThroughput,omitempty"`
// StoragePool in which the new disk is created.
// You can provide this as a partial or full URL to the resource. For example
// https://www.googleapis.com/compute/v1/projects/project/zones/zone
// +optional
StoragePool *string `json:"storagePool,omitempty"`
}
GCPDisk describes disks for GCP.
type GCPDiskEncryption ¶ added in v0.16.0
type GCPDiskEncryption struct {
// KmsKeyName: key name of the cloud kms disk encryption key. Not optional
KmsKeyName string `json:"kmsKeyName"`
// KmsKeyServiceAccount: The service account granted the `roles/cloudkms.cryptoKeyEncrypterDecrypter` for the key name.
// If empty, then the role should be given to the Compute Engine Service Agent Account. This usually has the format
// service-PROJECT_NUMBER@compute-system.iam.gserviceaccount.com. See: https://cloud.google.com/iam/docs/service-agents#compute-engine-service-agent
// One can add IAM roles using the gcloud CLI:
// gcloud projects add-iam-policy-binding projectId --member
// serviceAccount:name@projectIdgserviceaccount.com --role roles/cloudkms.cryptoKeyEncrypterDecrypter
KmsKeyServiceAccount string `json:"kmsKeyServiceAccount"`
}
GCPDiskEncryption holds references to encryption data
type GCPMetadata ¶
type GCPMetadata struct {
// Key: Key for the metadata entry. Keys must conform to the following
// regexp: [a-zA-Z0-9-_]+, and be less than 128 bytes in length. This is
// reflected as part of a URL in the metadata server. Additionally, to
// avoid ambiguity, keys must not conflict with any other metadata keys
// for the project.
Key string `json:"key"`
// Value: Value for the metadata entry. These are free-form strings, and
// only have meaning as interpreted by the image running in the
// instance. The only restriction placed on values is that their size
// must be less than or equal to 262144 bytes (256 KiB).
Value *string `json:"value"`
}
GCPMetadata describes metadata for GCP.
type GCPNetworkInterface ¶
type GCPNetworkInterface struct {
// DisableExternalIP: is false, implies Attach an external IP to VM
DisableExternalIP bool `json:"disableExternalIP,omitempty"`
// Network: URL of the network resource for this instance. When creating
// an instance, if neither the network nor the subnetwork is specified,
// the default network global/networks/default is used; if the network
// is not specified but the subnetwork is specified, the network is
// inferred.
//
// This field is optional when creating a firewall rule. If not
// specified when creating a firewall rule, the default network
// global/networks/default is used.
//
// If you specify this property, you can specify the network as a full
// or partial URL. For example, the following are all valid URLs:
// - https://www.googleapis.com/compute/v1/projects/project/global/networks/network
// - projects/project/global/networks/network
// - global/networks/default
Network string `json:"network,omitempty"`
// Subnetwork: The URL of the Subnetwork resource for this instance. If
// the network resource is in legacy mode, do not provide this property.
// If the network is in auto subnet mode, providing the subnetwork is
// optional. If the network is in custom subnet mode, then this field
// should be specified. If you specify this property, you can specify
// the subnetwork as a full or partial URL. For example, the following
// are all valid URLs:
// - https://www.googleapis.com/compute/v1/projects/project/regions/region/subnetworks/subnetwork
// - regions/region/subnetworks/subnetwork
Subnetwork string `json:"subnetwork,omitempty"`
// StackType specifies the network stack type, such as IPV4_ONLY or IPV4_IPV6,
// to indicate the protocol version(s) supported for this network.
StackType string `json:"stackType"`
// Ipv6AccessType defines the type of IPv6 access enabled, such as
// "INTERNAL" or "EXTERNAL", to control IPv6 connectivity.
Ipv6AccessType string `json:"ipv6accessType"`
// UseAliasIPs: Whether to assign alias IPs to the instance.
// This value is meant to be used and will only have an effect on single stack networks.
UseAliasIPs bool `json:"useAliasIPs"`
// IpCidrRange represents the mask size of the secondary range in a GCP subnet,
// which will be allocated and used by the virtual machines for internal networking.
IpCidrRange string `json:"ipCidrRange"`
// SubnetworkRangeName specifies the secondary IPv4 range in the subnetwork,
// which will serve as the IPv4 Pod CIDR for the dual-stack shoot cluster.
SubnetworkRangeName string `json:"subnetworkRangeName"`
}
GCPNetworkInterface describes network interfaces for GCP
type GCPProviderSpec ¶
type GCPProviderSpec struct {
// APIVersion refers to the APIVersion of the object
APIVersion string
// CanIpForward: Allows this instance to send and receive packets with
// non-matching destination or source IPs. This is required if you plan
// to use this instance to forward routes. For more information, see
// Enabling IP Forwarding.
CanIPForward bool `json:"canIpForward"`
// DeletionProtection: Whether the resource should be protected against
// deletion.
DeletionProtection bool `json:"deletionProtection"`
// Description: An optional description of this resource. Provide this
// property when you create the resource.
Description *string `json:"description,omitempty"`
// Disks: Array of disks associated with this instance. Persistent disks
// must be created before you can assign them.
Disks []*GCPDisk `json:"disks,omitempty"`
// Gpu: Configurations related to GPU which would be attached to the instance. Enough
// Quota of the particular GPU should be available.
Gpu *GCPGpu `json:"gpu,omitempty"`
// Labels: Labels to apply to this instance.
Labels map[string]string `json:"labels,omitempty"`
// MachineType: Full or partial URL of the machine type resource to use
// for this instance, in the format:
// zones/zone/machineTypes/machine-type. This is provided by the client
// when the instance is created. For example, the following is a valid
// partial url to a predefined machine
// type:
// zones/us-central1-f/machineTypes/n1-standard-1
//
//
// To create a custom machine type, provide a URL to a machine type in
// the following format, where CPUS is 1 or an even number up to 32 (2,
// 4, 6, ... 24, etc), and MEMORY is the total memory for this instance.
// Memory must be a multiple of 256 MB and must be supplied in MB (e.g.
// 5 GB of memory is 5120
// MB):
// zones/zone/machineTypes/custom-CPUS-MEMORY
//
//
// For example: zones/us-central1-f/machineTypes/custom-4-5120
//
// For a full list of restrictions, read the Specifications for custom
// machine types.
MachineType string `json:"machineType"`
// Metadata: The metadata key/value pairs assigned to this instance.
// This includes custom metadata and predefined keys.
Metadata []*GCPMetadata `json:"metadata,omitempty"`
// MinCpuPlatform: The name of the minimum CPU platform that is requested
// for this instance.
MinCPUPlatform string `json:"minCpuPlatform,omitempty"`
// NetworkInterfaces: An array of network configurations for this
// instance. These specify how interfaces are configured to interact
// with other network services, such as connecting to the internet.
// Multiple interfaces are supported per instance.
NetworkInterfaces []*GCPNetworkInterface `json:"networkInterfaces,omitempty"`
// Region: in which instance is to be deployed
Region string `json:"region"`
// Scheduling: Sets the scheduling options for this instance.
Scheduling GCPScheduling `json:"scheduling"`
// ServiceAccounts: A list of service accounts, with their specified
// scopes, authorized for this instance. Only one service account per VM
// instance is supported.
//
// Service accounts generate access tokens that can be accessed through
// the metadata server and used to authenticate applications on the
// instance. See Service Accounts for more information.
ServiceAccounts []GCPServiceAccount `json:"serviceAccounts"`
// Tags: to be placed on the VM
// +optional
Tags []string `json:"tags,omitempty"`
// Zone: in which instance is to be deployed
Zone string `json:"zone"`
// ShieldedInstanceConfiguration is a shielded instance configuration
// +optional
ShieldedInstanceConfiguration *ShieldedInstanceConfiguration `json:"shieldedInstanceConfiguration,omitempty"`
// AdvancedMachineFeatures specifies advanced options like BIOS or OS configuration.
// +optional
AdvancedMachineFeatures *AdvancedMachineFeatures `json:"advancedMachineFeatures,omitempty"`
}
GCPProviderSpec contains the fields of provider spec that the plugin expects
type GCPScheduling ¶
type GCPScheduling struct {
// AutomaticRestart: Specifies whether the instance should be
// automatically restarted if it is terminated by Compute Engine (not
// terminated by a user). You can only set the automatic restart option
// for standard instances. Preemptible instances cannot be automatically
// restarted.
//
// By default, this is set to true so an instance is automatically
// restarted if it is terminated by Compute Engine.
AutomaticRestart bool `json:"automaticRestart"`
// OnHostMaintenance: Defines the maintenance behavior for this
// instance. For standard instances, the default behavior is MIGRATE.
// For preemptible instances, the default and only possible behavior is
// TERMINATE. For more information, see Setting Instance Scheduling
// Options.
//
// Possible values:
// "MIGRATE"
// "TERMINATE"
OnHostMaintenance string `json:"onHostMaintenance"`
// Preemptible: Defines whether the instance is preemptible. This can
// only be set during instance creation, it cannot be set or changed
// after the instance has been created.
Preemptible bool `json:"preemptible"`
}
GCPScheduling describes scheduling configuration for GCP.
type GCPServiceAccount ¶
type GCPServiceAccount struct {
// Email: Email address of the service account.
Email string `json:"email"`
// Scopes: The list of scopes to be made available for this service
// account.
Scopes []string `json:"scopes"`
}
GCPServiceAccount describes service accounts for GCP.
type ShieldedInstanceConfiguration ¶ added in v0.21.0
type ShieldedInstanceConfiguration struct {
// IntegrityMonitoring enables integrity monitoring
// +optional
IntegrityMonitoring *bool `json:"integrityMonitoring,omitempty"`
// SecureBoot enables secure boot
// +optional
SecureBoot *bool `json:"secureBoot,omitempty"`
// Vtpm enables vTPM
// +optional
Vtpm *bool `json:"vtpm,omitempty"`
}
ShieldedInstanceConfiguration describes the shielded instance configuration for GCE VMs
Source Files
Click to show internal directories.
Click to hide internal directories.