gcp.container.AttachedCluster
Explore with Pulumi AI
An Anthos cluster running on customer owned infrastructure.
To get more information about Cluster, see:
- API documentation
- How-to Guides
Example Usage
Container Attached Cluster Basic
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Gcp = Pulumi.Gcp;
return await Deployment.RunAsync(() =>
{
var project = Gcp.Organizations.GetProject.Invoke();
var versions = Gcp.Container.GetAttachedVersions.Invoke(new()
{
Location = "us-west1",
Project = project.Apply(getProjectResult => getProjectResult.ProjectId),
});
var primary = new Gcp.Container.AttachedCluster("primary", new()
{
Location = "us-west1",
Project = project.Apply(getProjectResult => getProjectResult.ProjectId),
Description = "Test cluster",
Distribution = "aks",
OidcConfig = new Gcp.Container.Inputs.AttachedClusterOidcConfigArgs
{
IssuerUrl = "https://oidc.issuer.url",
},
PlatformVersion = versions.Apply(getAttachedVersionsResult => getAttachedVersionsResult.ValidVersions[0]),
Fleet = new Gcp.Container.Inputs.AttachedClusterFleetArgs
{
Project = $"projects/{project.Apply(getProjectResult => getProjectResult.Number)}",
},
});
});
package main
import (
"fmt"
"github.com/pulumi/pulumi-gcp/sdk/v6/go/gcp/container"
"github.com/pulumi/pulumi-gcp/sdk/v6/go/gcp/organizations"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
project, err := organizations.LookupProject(ctx, nil, nil)
if err != nil {
return err
}
versions, err := container.GetAttachedVersions(ctx, &container.GetAttachedVersionsArgs{
Location: "us-west1",
Project: project.ProjectId,
}, nil)
if err != nil {
return err
}
_, err = container.NewAttachedCluster(ctx, "primary", &container.AttachedClusterArgs{
Location: pulumi.String("us-west1"),
Project: *pulumi.String(project.ProjectId),
Description: pulumi.String("Test cluster"),
Distribution: pulumi.String("aks"),
OidcConfig: &container.AttachedClusterOidcConfigArgs{
IssuerUrl: pulumi.String("https://oidc.issuer.url"),
},
PlatformVersion: *pulumi.String(versions.ValidVersions[0]),
Fleet: &container.AttachedClusterFleetArgs{
Project: pulumi.String(fmt.Sprintf("projects/%v", project.Number)),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.gcp.organizations.OrganizationsFunctions;
import com.pulumi.gcp.organizations.inputs.GetProjectArgs;
import com.pulumi.gcp.container.ContainerFunctions;
import com.pulumi.gcp.container.inputs.GetAttachedVersionsArgs;
import com.pulumi.gcp.container.AttachedCluster;
import com.pulumi.gcp.container.AttachedClusterArgs;
import com.pulumi.gcp.container.inputs.AttachedClusterOidcConfigArgs;
import com.pulumi.gcp.container.inputs.AttachedClusterFleetArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var project = OrganizationsFunctions.getProject();
final var versions = ContainerFunctions.getAttachedVersions(GetAttachedVersionsArgs.builder()
.location("us-west1")
.project(project.applyValue(getProjectResult -> getProjectResult.projectId()))
.build());
var primary = new AttachedCluster("primary", AttachedClusterArgs.builder()
.location("us-west1")
.project(project.applyValue(getProjectResult -> getProjectResult.projectId()))
.description("Test cluster")
.distribution("aks")
.oidcConfig(AttachedClusterOidcConfigArgs.builder()
.issuerUrl("https://oidc.issuer.url")
.build())
.platformVersion(versions.applyValue(getAttachedVersionsResult -> getAttachedVersionsResult.validVersions()[0]))
.fleet(AttachedClusterFleetArgs.builder()
.project(String.format("projects/%s", project.applyValue(getProjectResult -> getProjectResult.number())))
.build())
.build());
}
}
import pulumi
import pulumi_gcp as gcp
project = gcp.organizations.get_project()
versions = gcp.container.get_attached_versions(location="us-west1",
project=project.project_id)
primary = gcp.container.AttachedCluster("primary",
location="us-west1",
project=project.project_id,
description="Test cluster",
distribution="aks",
oidc_config=gcp.container.AttachedClusterOidcConfigArgs(
issuer_url="https://oidc.issuer.url",
),
platform_version=versions.valid_versions[0],
fleet=gcp.container.AttachedClusterFleetArgs(
project=f"projects/{project.number}",
))
import * as pulumi from "@pulumi/pulumi";
import * as gcp from "@pulumi/gcp";
const project = gcp.organizations.getProject({});
const versions = project.then(project => gcp.container.getAttachedVersions({
location: "us-west1",
project: project.projectId,
}));
const primary = new gcp.container.AttachedCluster("primary", {
location: "us-west1",
project: project.then(project => project.projectId),
description: "Test cluster",
distribution: "aks",
oidcConfig: {
issuerUrl: "https://oidc.issuer.url",
},
platformVersion: versions.then(versions => versions.validVersions?.[0]),
fleet: {
project: project.then(project => `projects/${project.number}`),
},
});
resources:
primary:
type: gcp:container:AttachedCluster
properties:
location: us-west1
project: ${project.projectId}
description: Test cluster
distribution: aks
oidcConfig:
issuerUrl: https://oidc.issuer.url
platformVersion: ${versions.validVersions[0]}
fleet:
project: projects/${project.number}
variables:
project:
fn::invoke:
Function: gcp:organizations:getProject
Arguments: {}
versions:
fn::invoke:
Function: gcp:container:getAttachedVersions
Arguments:
location: us-west1
project: ${project.projectId}
Container Attached Cluster Ignore Errors
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Gcp = Pulumi.Gcp;
return await Deployment.RunAsync(() =>
{
var project = Gcp.Organizations.GetProject.Invoke();
var versions = Gcp.Container.GetAttachedVersions.Invoke(new()
{
Location = "us-west1",
Project = project.Apply(getProjectResult => getProjectResult.ProjectId),
});
var primary = new Gcp.Container.AttachedCluster("primary", new()
{
Location = "us-west1",
Project = project.Apply(getProjectResult => getProjectResult.ProjectId),
Description = "Test cluster",
Distribution = "aks",
OidcConfig = new Gcp.Container.Inputs.AttachedClusterOidcConfigArgs
{
IssuerUrl = "https://oidc.issuer.url",
},
PlatformVersion = versions.Apply(getAttachedVersionsResult => getAttachedVersionsResult.ValidVersions[0]),
Fleet = new Gcp.Container.Inputs.AttachedClusterFleetArgs
{
Project = $"projects/{project.Apply(getProjectResult => getProjectResult.Number)}",
},
DeletionPolicy = "DELETE_IGNORE_ERRORS",
});
});
package main
import (
"fmt"
"github.com/pulumi/pulumi-gcp/sdk/v6/go/gcp/container"
"github.com/pulumi/pulumi-gcp/sdk/v6/go/gcp/organizations"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
project, err := organizations.LookupProject(ctx, nil, nil)
if err != nil {
return err
}
versions, err := container.GetAttachedVersions(ctx, &container.GetAttachedVersionsArgs{
Location: "us-west1",
Project: project.ProjectId,
}, nil)
if err != nil {
return err
}
_, err = container.NewAttachedCluster(ctx, "primary", &container.AttachedClusterArgs{
Location: pulumi.String("us-west1"),
Project: *pulumi.String(project.ProjectId),
Description: pulumi.String("Test cluster"),
Distribution: pulumi.String("aks"),
OidcConfig: &container.AttachedClusterOidcConfigArgs{
IssuerUrl: pulumi.String("https://oidc.issuer.url"),
},
PlatformVersion: *pulumi.String(versions.ValidVersions[0]),
Fleet: &container.AttachedClusterFleetArgs{
Project: pulumi.String(fmt.Sprintf("projects/%v", project.Number)),
},
DeletionPolicy: pulumi.String("DELETE_IGNORE_ERRORS"),
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.gcp.organizations.OrganizationsFunctions;
import com.pulumi.gcp.organizations.inputs.GetProjectArgs;
import com.pulumi.gcp.container.ContainerFunctions;
import com.pulumi.gcp.container.inputs.GetAttachedVersionsArgs;
import com.pulumi.gcp.container.AttachedCluster;
import com.pulumi.gcp.container.AttachedClusterArgs;
import com.pulumi.gcp.container.inputs.AttachedClusterOidcConfigArgs;
import com.pulumi.gcp.container.inputs.AttachedClusterFleetArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var project = OrganizationsFunctions.getProject();
final var versions = ContainerFunctions.getAttachedVersions(GetAttachedVersionsArgs.builder()
.location("us-west1")
.project(project.applyValue(getProjectResult -> getProjectResult.projectId()))
.build());
var primary = new AttachedCluster("primary", AttachedClusterArgs.builder()
.location("us-west1")
.project(project.applyValue(getProjectResult -> getProjectResult.projectId()))
.description("Test cluster")
.distribution("aks")
.oidcConfig(AttachedClusterOidcConfigArgs.builder()
.issuerUrl("https://oidc.issuer.url")
.build())
.platformVersion(versions.applyValue(getAttachedVersionsResult -> getAttachedVersionsResult.validVersions()[0]))
.fleet(AttachedClusterFleetArgs.builder()
.project(String.format("projects/%s", project.applyValue(getProjectResult -> getProjectResult.number())))
.build())
.deletionPolicy("DELETE_IGNORE_ERRORS")
.build());
}
}
import pulumi
import pulumi_gcp as gcp
project = gcp.organizations.get_project()
versions = gcp.container.get_attached_versions(location="us-west1",
project=project.project_id)
primary = gcp.container.AttachedCluster("primary",
location="us-west1",
project=project.project_id,
description="Test cluster",
distribution="aks",
oidc_config=gcp.container.AttachedClusterOidcConfigArgs(
issuer_url="https://oidc.issuer.url",
),
platform_version=versions.valid_versions[0],
fleet=gcp.container.AttachedClusterFleetArgs(
project=f"projects/{project.number}",
),
deletion_policy="DELETE_IGNORE_ERRORS")
import * as pulumi from "@pulumi/pulumi";
import * as gcp from "@pulumi/gcp";
const project = gcp.organizations.getProject({});
const versions = project.then(project => gcp.container.getAttachedVersions({
location: "us-west1",
project: project.projectId,
}));
const primary = new gcp.container.AttachedCluster("primary", {
location: "us-west1",
project: project.then(project => project.projectId),
description: "Test cluster",
distribution: "aks",
oidcConfig: {
issuerUrl: "https://oidc.issuer.url",
},
platformVersion: versions.then(versions => versions.validVersions?.[0]),
fleet: {
project: project.then(project => `projects/${project.number}`),
},
deletionPolicy: "DELETE_IGNORE_ERRORS",
});
resources:
primary:
type: gcp:container:AttachedCluster
properties:
location: us-west1
project: ${project.projectId}
description: Test cluster
distribution: aks
oidcConfig:
issuerUrl: https://oidc.issuer.url
platformVersion: ${versions.validVersions[0]}
fleet:
project: projects/${project.number}
deletionPolicy: DELETE_IGNORE_ERRORS
variables:
project:
fn::invoke:
Function: gcp:organizations:getProject
Arguments: {}
versions:
fn::invoke:
Function: gcp:container:getAttachedVersions
Arguments:
location: us-west1
project: ${project.projectId}
Create AttachedCluster Resource
new AttachedCluster(name: string, args: AttachedClusterArgs, opts?: CustomResourceOptions);
@overload
def AttachedCluster(resource_name: str,
opts: Optional[ResourceOptions] = None,
annotations: Optional[Mapping[str, str]] = None,
authorization: Optional[AttachedClusterAuthorizationArgs] = None,
deletion_policy: Optional[str] = None,
description: Optional[str] = None,
distribution: Optional[str] = None,
fleet: Optional[AttachedClusterFleetArgs] = None,
location: Optional[str] = None,
logging_config: Optional[AttachedClusterLoggingConfigArgs] = None,
monitoring_config: Optional[AttachedClusterMonitoringConfigArgs] = None,
name: Optional[str] = None,
oidc_config: Optional[AttachedClusterOidcConfigArgs] = None,
platform_version: Optional[str] = None,
project: Optional[str] = None)
@overload
def AttachedCluster(resource_name: str,
args: AttachedClusterArgs,
opts: Optional[ResourceOptions] = None)
func NewAttachedCluster(ctx *Context, name string, args AttachedClusterArgs, opts ...ResourceOption) (*AttachedCluster, error)
public AttachedCluster(string name, AttachedClusterArgs args, CustomResourceOptions? opts = null)
public AttachedCluster(String name, AttachedClusterArgs args)
public AttachedCluster(String name, AttachedClusterArgs args, CustomResourceOptions options)
type: gcp:container:AttachedCluster
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AttachedClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AttachedClusterArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AttachedClusterArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AttachedClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AttachedClusterArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
AttachedCluster Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The AttachedCluster resource accepts the following input properties:
- Distribution string
The Kubernetes distribution of the underlying attached cluster. Supported values: "eks", "aks".
- Fleet
Attached
Cluster Fleet Args Fleet configuration. Structure is documented below.
- Location string
The location for the resource
- Oidc
Config AttachedCluster Oidc Config Args OIDC discovery information of the target cluster. Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how GCP services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to GCP. Both clusters with public and private issuer URLs are supported. Clusters with public issuers only need to specify the
issuer_url
field while clusters with private issuers need to provide bothissuer_url
andjwks
. Structure is documented below.- Platform
Version string The platform version for the cluster (e.g.
1.23.0-gke.1
).- Annotations Dictionary<string, string>
Optional. Annotations on the cluster. This field has the same restrictions as Kubernetes annotations. The total size of all keys and values combined is limited to 256k. Key can have 2 segments: prefix (optional) and name (required), separated by a slash (/). Prefix must be a DNS subdomain. Name must be 63 characters or less, begin and end with alphanumerics, with dashes (-), underscores (_), dots (.), and alphanumerics between.
- Attached
Cluster Authorization Args Configuration related to the cluster RBAC settings. Structure is documented below.
- Deletion
Policy string Policy to determine what flags to send on delete.
- Description string
A human readable description of this attached cluster. Cannot be longer than 255 UTF-8 encoded bytes.
- Logging
Config AttachedCluster Logging Config Args Logging configuration. Structure is documented below.
- Monitoring
Config AttachedCluster Monitoring Config Args Monitoring configuration. Structure is documented below.
- Name string
The name of this resource.
- Project string
The number of the Fleet host project where this cluster will be registered.
If it is not provided, the provider project is used.
- Distribution string
The Kubernetes distribution of the underlying attached cluster. Supported values: "eks", "aks".
- Fleet
Attached
Cluster Fleet Args Fleet configuration. Structure is documented below.
- Location string
The location for the resource
- Oidc
Config AttachedCluster Oidc Config Args OIDC discovery information of the target cluster. Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how GCP services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to GCP. Both clusters with public and private issuer URLs are supported. Clusters with public issuers only need to specify the
issuer_url
field while clusters with private issuers need to provide bothissuer_url
andjwks
. Structure is documented below.- Platform
Version string The platform version for the cluster (e.g.
1.23.0-gke.1
).- Annotations map[string]string
Optional. Annotations on the cluster. This field has the same restrictions as Kubernetes annotations. The total size of all keys and values combined is limited to 256k. Key can have 2 segments: prefix (optional) and name (required), separated by a slash (/). Prefix must be a DNS subdomain. Name must be 63 characters or less, begin and end with alphanumerics, with dashes (-), underscores (_), dots (.), and alphanumerics between.
- Attached
Cluster Authorization Args Configuration related to the cluster RBAC settings. Structure is documented below.
- Deletion
Policy string Policy to determine what flags to send on delete.
- Description string
A human readable description of this attached cluster. Cannot be longer than 255 UTF-8 encoded bytes.
- Logging
Config AttachedCluster Logging Config Args Logging configuration. Structure is documented below.
- Monitoring
Config AttachedCluster Monitoring Config Args Monitoring configuration. Structure is documented below.
- Name string
The name of this resource.
- Project string
The number of the Fleet host project where this cluster will be registered.
If it is not provided, the provider project is used.
- distribution String
The Kubernetes distribution of the underlying attached cluster. Supported values: "eks", "aks".
- fleet
Attached
Cluster Fleet Args Fleet configuration. Structure is documented below.
- location String
The location for the resource
- oidc
Config AttachedCluster Oidc Config Args OIDC discovery information of the target cluster. Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how GCP services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to GCP. Both clusters with public and private issuer URLs are supported. Clusters with public issuers only need to specify the
issuer_url
field while clusters with private issuers need to provide bothissuer_url
andjwks
. Structure is documented below.- platform
Version String The platform version for the cluster (e.g.
1.23.0-gke.1
).- annotations Map<String,String>
Optional. Annotations on the cluster. This field has the same restrictions as Kubernetes annotations. The total size of all keys and values combined is limited to 256k. Key can have 2 segments: prefix (optional) and name (required), separated by a slash (/). Prefix must be a DNS subdomain. Name must be 63 characters or less, begin and end with alphanumerics, with dashes (-), underscores (_), dots (.), and alphanumerics between.
- Attached
Cluster Authorization Args Configuration related to the cluster RBAC settings. Structure is documented below.
- deletion
Policy String Policy to determine what flags to send on delete.
- description String
A human readable description of this attached cluster. Cannot be longer than 255 UTF-8 encoded bytes.
- logging
Config AttachedCluster Logging Config Args Logging configuration. Structure is documented below.
- monitoring
Config AttachedCluster Monitoring Config Args Monitoring configuration. Structure is documented below.
- name String
The name of this resource.
- project String
The number of the Fleet host project where this cluster will be registered.
If it is not provided, the provider project is used.
- distribution string
The Kubernetes distribution of the underlying attached cluster. Supported values: "eks", "aks".
- fleet
Attached
Cluster Fleet Args Fleet configuration. Structure is documented below.
- location string
The location for the resource
- oidc
Config AttachedCluster Oidc Config Args OIDC discovery information of the target cluster. Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how GCP services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to GCP. Both clusters with public and private issuer URLs are supported. Clusters with public issuers only need to specify the
issuer_url
field while clusters with private issuers need to provide bothissuer_url
andjwks
. Structure is documented below.- platform
Version string The platform version for the cluster (e.g.
1.23.0-gke.1
).- annotations {[key: string]: string}
Optional. Annotations on the cluster. This field has the same restrictions as Kubernetes annotations. The total size of all keys and values combined is limited to 256k. Key can have 2 segments: prefix (optional) and name (required), separated by a slash (/). Prefix must be a DNS subdomain. Name must be 63 characters or less, begin and end with alphanumerics, with dashes (-), underscores (_), dots (.), and alphanumerics between.
- Attached
Cluster Authorization Args Configuration related to the cluster RBAC settings. Structure is documented below.
- deletion
Policy string Policy to determine what flags to send on delete.
- description string
A human readable description of this attached cluster. Cannot be longer than 255 UTF-8 encoded bytes.
- logging
Config AttachedCluster Logging Config Args Logging configuration. Structure is documented below.
- monitoring
Config AttachedCluster Monitoring Config Args Monitoring configuration. Structure is documented below.
- name string
The name of this resource.
- project string
The number of the Fleet host project where this cluster will be registered.
If it is not provided, the provider project is used.
- distribution str
The Kubernetes distribution of the underlying attached cluster. Supported values: "eks", "aks".
- fleet
Attached
Cluster Fleet Args Fleet configuration. Structure is documented below.
- location str
The location for the resource
- oidc_
config AttachedCluster Oidc Config Args OIDC discovery information of the target cluster. Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how GCP services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to GCP. Both clusters with public and private issuer URLs are supported. Clusters with public issuers only need to specify the
issuer_url
field while clusters with private issuers need to provide bothissuer_url
andjwks
. Structure is documented below.- platform_
version str The platform version for the cluster (e.g.
1.23.0-gke.1
).- annotations Mapping[str, str]
Optional. Annotations on the cluster. This field has the same restrictions as Kubernetes annotations. The total size of all keys and values combined is limited to 256k. Key can have 2 segments: prefix (optional) and name (required), separated by a slash (/). Prefix must be a DNS subdomain. Name must be 63 characters or less, begin and end with alphanumerics, with dashes (-), underscores (_), dots (.), and alphanumerics between.
- Attached
Cluster Authorization Args Configuration related to the cluster RBAC settings. Structure is documented below.
- deletion_
policy str Policy to determine what flags to send on delete.
- description str
A human readable description of this attached cluster. Cannot be longer than 255 UTF-8 encoded bytes.
- logging_
config AttachedCluster Logging Config Args Logging configuration. Structure is documented below.
- monitoring_
config AttachedCluster Monitoring Config Args Monitoring configuration. Structure is documented below.
- name str
The name of this resource.
- project str
The number of the Fleet host project where this cluster will be registered.
If it is not provided, the provider project is used.
- distribution String
The Kubernetes distribution of the underlying attached cluster. Supported values: "eks", "aks".
- fleet Property Map
Fleet configuration. Structure is documented below.
- location String
The location for the resource
- oidc
Config Property Map OIDC discovery information of the target cluster. Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how GCP services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to GCP. Both clusters with public and private issuer URLs are supported. Clusters with public issuers only need to specify the
issuer_url
field while clusters with private issuers need to provide bothissuer_url
andjwks
. Structure is documented below.- platform
Version String The platform version for the cluster (e.g.
1.23.0-gke.1
).- annotations Map<String>
Optional. Annotations on the cluster. This field has the same restrictions as Kubernetes annotations. The total size of all keys and values combined is limited to 256k. Key can have 2 segments: prefix (optional) and name (required), separated by a slash (/). Prefix must be a DNS subdomain. Name must be 63 characters or less, begin and end with alphanumerics, with dashes (-), underscores (_), dots (.), and alphanumerics between.
- Property Map
Configuration related to the cluster RBAC settings. Structure is documented below.
- deletion
Policy String Policy to determine what flags to send on delete.
- description String
A human readable description of this attached cluster. Cannot be longer than 255 UTF-8 encoded bytes.
- logging
Config Property Map Logging configuration. Structure is documented below.
- monitoring
Config Property Map Monitoring configuration. Structure is documented below.
- name String
The name of this resource.
- project String
The number of the Fleet host project where this cluster will be registered.
If it is not provided, the provider project is used.
Outputs
All input properties are implicitly available as output properties. Additionally, the AttachedCluster resource produces the following output properties:
- Cluster
Region string Output only. The region where this cluster runs. For EKS clusters, this is an AWS region. For AKS clusters, this is an Azure region.
- Create
Time string Output only. The time at which this cluster was created.
- Errors
List<Attached
Cluster Error> A set of errors found in the cluster. Structure is documented below.
- Id string
The provider-assigned unique ID for this managed resource.
- Kubernetes
Version string The Kubernetes version of the cluster.
- Reconciling bool
If set, there are currently changes in flight to the cluster.
- State string
The current state of the cluster. Possible values: STATE_UNSPECIFIED, PROVISIONING, RUNNING, RECONCILING, STOPPING, ERROR, DEGRADED
- Uid string
A globally unique identifier for the cluster.
- Update
Time string The time at which this cluster was last updated.
- Workload
Identity List<AttachedConfigs Cluster Workload Identity Config> Workload Identity settings. Structure is documented below.
- Cluster
Region string Output only. The region where this cluster runs. For EKS clusters, this is an AWS region. For AKS clusters, this is an Azure region.
- Create
Time string Output only. The time at which this cluster was created.
- Errors
[]Attached
Cluster Error A set of errors found in the cluster. Structure is documented below.
- Id string
The provider-assigned unique ID for this managed resource.
- Kubernetes
Version string The Kubernetes version of the cluster.
- Reconciling bool
If set, there are currently changes in flight to the cluster.
- State string
The current state of the cluster. Possible values: STATE_UNSPECIFIED, PROVISIONING, RUNNING, RECONCILING, STOPPING, ERROR, DEGRADED
- Uid string
A globally unique identifier for the cluster.
- Update
Time string The time at which this cluster was last updated.
- Workload
Identity []AttachedConfigs Cluster Workload Identity Config Workload Identity settings. Structure is documented below.
- cluster
Region String Output only. The region where this cluster runs. For EKS clusters, this is an AWS region. For AKS clusters, this is an Azure region.
- create
Time String Output only. The time at which this cluster was created.
- errors
List<Attached
Cluster Error> A set of errors found in the cluster. Structure is documented below.
- id String
The provider-assigned unique ID for this managed resource.
- kubernetes
Version String The Kubernetes version of the cluster.
- reconciling Boolean
If set, there are currently changes in flight to the cluster.
- state String
The current state of the cluster. Possible values: STATE_UNSPECIFIED, PROVISIONING, RUNNING, RECONCILING, STOPPING, ERROR, DEGRADED
- uid String
A globally unique identifier for the cluster.
- update
Time String The time at which this cluster was last updated.
- workload
Identity List<AttachedConfigs Cluster Workload Identity Config> Workload Identity settings. Structure is documented below.
- cluster
Region string Output only. The region where this cluster runs. For EKS clusters, this is an AWS region. For AKS clusters, this is an Azure region.
- create
Time string Output only. The time at which this cluster was created.
- errors
Attached
Cluster Error[] A set of errors found in the cluster. Structure is documented below.
- id string
The provider-assigned unique ID for this managed resource.
- kubernetes
Version string The Kubernetes version of the cluster.
- reconciling boolean
If set, there are currently changes in flight to the cluster.
- state string
The current state of the cluster. Possible values: STATE_UNSPECIFIED, PROVISIONING, RUNNING, RECONCILING, STOPPING, ERROR, DEGRADED
- uid string
A globally unique identifier for the cluster.
- update
Time string The time at which this cluster was last updated.
- workload
Identity AttachedConfigs Cluster Workload Identity Config[] Workload Identity settings. Structure is documented below.
- cluster_
region str Output only. The region where this cluster runs. For EKS clusters, this is an AWS region. For AKS clusters, this is an Azure region.
- create_
time str Output only. The time at which this cluster was created.
- errors
Sequence[Attached
Cluster Error] A set of errors found in the cluster. Structure is documented below.
- id str
The provider-assigned unique ID for this managed resource.
- kubernetes_
version str The Kubernetes version of the cluster.
- reconciling bool
If set, there are currently changes in flight to the cluster.
- state str
The current state of the cluster. Possible values: STATE_UNSPECIFIED, PROVISIONING, RUNNING, RECONCILING, STOPPING, ERROR, DEGRADED
- uid str
A globally unique identifier for the cluster.
- update_
time str The time at which this cluster was last updated.
- workload_
identity_ Sequence[Attachedconfigs Cluster Workload Identity Config] Workload Identity settings. Structure is documented below.
- cluster
Region String Output only. The region where this cluster runs. For EKS clusters, this is an AWS region. For AKS clusters, this is an Azure region.
- create
Time String Output only. The time at which this cluster was created.
- errors List<Property Map>
A set of errors found in the cluster. Structure is documented below.
- id String
The provider-assigned unique ID for this managed resource.
- kubernetes
Version String The Kubernetes version of the cluster.
- reconciling Boolean
If set, there are currently changes in flight to the cluster.
- state String
The current state of the cluster. Possible values: STATE_UNSPECIFIED, PROVISIONING, RUNNING, RECONCILING, STOPPING, ERROR, DEGRADED
- uid String
A globally unique identifier for the cluster.
- update
Time String The time at which this cluster was last updated.
- workload
Identity List<Property Map>Configs Workload Identity settings. Structure is documented below.
Look up Existing AttachedCluster Resource
Get an existing AttachedCluster resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: AttachedClusterState, opts?: CustomResourceOptions): AttachedCluster
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
annotations: Optional[Mapping[str, str]] = None,
authorization: Optional[AttachedClusterAuthorizationArgs] = None,
cluster_region: Optional[str] = None,
create_time: Optional[str] = None,
deletion_policy: Optional[str] = None,
description: Optional[str] = None,
distribution: Optional[str] = None,
errors: Optional[Sequence[AttachedClusterErrorArgs]] = None,
fleet: Optional[AttachedClusterFleetArgs] = None,
kubernetes_version: Optional[str] = None,
location: Optional[str] = None,
logging_config: Optional[AttachedClusterLoggingConfigArgs] = None,
monitoring_config: Optional[AttachedClusterMonitoringConfigArgs] = None,
name: Optional[str] = None,
oidc_config: Optional[AttachedClusterOidcConfigArgs] = None,
platform_version: Optional[str] = None,
project: Optional[str] = None,
reconciling: Optional[bool] = None,
state: Optional[str] = None,
uid: Optional[str] = None,
update_time: Optional[str] = None,
workload_identity_configs: Optional[Sequence[AttachedClusterWorkloadIdentityConfigArgs]] = None) -> AttachedCluster
func GetAttachedCluster(ctx *Context, name string, id IDInput, state *AttachedClusterState, opts ...ResourceOption) (*AttachedCluster, error)
public static AttachedCluster Get(string name, Input<string> id, AttachedClusterState? state, CustomResourceOptions? opts = null)
public static AttachedCluster get(String name, Output<String> id, AttachedClusterState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Annotations Dictionary<string, string>
Optional. Annotations on the cluster. This field has the same restrictions as Kubernetes annotations. The total size of all keys and values combined is limited to 256k. Key can have 2 segments: prefix (optional) and name (required), separated by a slash (/). Prefix must be a DNS subdomain. Name must be 63 characters or less, begin and end with alphanumerics, with dashes (-), underscores (_), dots (.), and alphanumerics between.
- Attached
Cluster Authorization Args Configuration related to the cluster RBAC settings. Structure is documented below.
- Cluster
Region string Output only. The region where this cluster runs. For EKS clusters, this is an AWS region. For AKS clusters, this is an Azure region.
- Create
Time string Output only. The time at which this cluster was created.
- Deletion
Policy string Policy to determine what flags to send on delete.
- Description string
A human readable description of this attached cluster. Cannot be longer than 255 UTF-8 encoded bytes.
- Distribution string
The Kubernetes distribution of the underlying attached cluster. Supported values: "eks", "aks".
- Errors
List<Attached
Cluster Error Args> A set of errors found in the cluster. Structure is documented below.
- Fleet
Attached
Cluster Fleet Args Fleet configuration. Structure is documented below.
- Kubernetes
Version string The Kubernetes version of the cluster.
- Location string
The location for the resource
- Logging
Config AttachedCluster Logging Config Args Logging configuration. Structure is documented below.
- Monitoring
Config AttachedCluster Monitoring Config Args Monitoring configuration. Structure is documented below.
- Name string
The name of this resource.
- Oidc
Config AttachedCluster Oidc Config Args OIDC discovery information of the target cluster. Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how GCP services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to GCP. Both clusters with public and private issuer URLs are supported. Clusters with public issuers only need to specify the
issuer_url
field while clusters with private issuers need to provide bothissuer_url
andjwks
. Structure is documented below.- Platform
Version string The platform version for the cluster (e.g.
1.23.0-gke.1
).- Project string
The number of the Fleet host project where this cluster will be registered.
If it is not provided, the provider project is used.
- Reconciling bool
If set, there are currently changes in flight to the cluster.
- State string
The current state of the cluster. Possible values: STATE_UNSPECIFIED, PROVISIONING, RUNNING, RECONCILING, STOPPING, ERROR, DEGRADED
- Uid string
A globally unique identifier for the cluster.
- Update
Time string The time at which this cluster was last updated.
- Workload
Identity List<AttachedConfigs Cluster Workload Identity Config Args> Workload Identity settings. Structure is documented below.
- Annotations map[string]string
Optional. Annotations on the cluster. This field has the same restrictions as Kubernetes annotations. The total size of all keys and values combined is limited to 256k. Key can have 2 segments: prefix (optional) and name (required), separated by a slash (/). Prefix must be a DNS subdomain. Name must be 63 characters or less, begin and end with alphanumerics, with dashes (-), underscores (_), dots (.), and alphanumerics between.
- Attached
Cluster Authorization Args Configuration related to the cluster RBAC settings. Structure is documented below.
- Cluster
Region string Output only. The region where this cluster runs. For EKS clusters, this is an AWS region. For AKS clusters, this is an Azure region.
- Create
Time string Output only. The time at which this cluster was created.
- Deletion
Policy string Policy to determine what flags to send on delete.
- Description string
A human readable description of this attached cluster. Cannot be longer than 255 UTF-8 encoded bytes.
- Distribution string
The Kubernetes distribution of the underlying attached cluster. Supported values: "eks", "aks".
- Errors
[]Attached
Cluster Error Args A set of errors found in the cluster. Structure is documented below.
- Fleet
Attached
Cluster Fleet Args Fleet configuration. Structure is documented below.
- Kubernetes
Version string The Kubernetes version of the cluster.
- Location string
The location for the resource
- Logging
Config AttachedCluster Logging Config Args Logging configuration. Structure is documented below.
- Monitoring
Config AttachedCluster Monitoring Config Args Monitoring configuration. Structure is documented below.
- Name string
The name of this resource.
- Oidc
Config AttachedCluster Oidc Config Args OIDC discovery information of the target cluster. Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how GCP services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to GCP. Both clusters with public and private issuer URLs are supported. Clusters with public issuers only need to specify the
issuer_url
field while clusters with private issuers need to provide bothissuer_url
andjwks
. Structure is documented below.- Platform
Version string The platform version for the cluster (e.g.
1.23.0-gke.1
).- Project string
The number of the Fleet host project where this cluster will be registered.
If it is not provided, the provider project is used.
- Reconciling bool
If set, there are currently changes in flight to the cluster.
- State string
The current state of the cluster. Possible values: STATE_UNSPECIFIED, PROVISIONING, RUNNING, RECONCILING, STOPPING, ERROR, DEGRADED
- Uid string
A globally unique identifier for the cluster.
- Update
Time string The time at which this cluster was last updated.
- Workload
Identity []AttachedConfigs Cluster Workload Identity Config Args Workload Identity settings. Structure is documented below.
- annotations Map<String,String>
Optional. Annotations on the cluster. This field has the same restrictions as Kubernetes annotations. The total size of all keys and values combined is limited to 256k. Key can have 2 segments: prefix (optional) and name (required), separated by a slash (/). Prefix must be a DNS subdomain. Name must be 63 characters or less, begin and end with alphanumerics, with dashes (-), underscores (_), dots (.), and alphanumerics between.
- Attached
Cluster Authorization Args Configuration related to the cluster RBAC settings. Structure is documented below.
- cluster
Region String Output only. The region where this cluster runs. For EKS clusters, this is an AWS region. For AKS clusters, this is an Azure region.
- create
Time String Output only. The time at which this cluster was created.
- deletion
Policy String Policy to determine what flags to send on delete.
- description String
A human readable description of this attached cluster. Cannot be longer than 255 UTF-8 encoded bytes.
- distribution String
The Kubernetes distribution of the underlying attached cluster. Supported values: "eks", "aks".
- errors
List<Attached
Cluster Error Args> A set of errors found in the cluster. Structure is documented below.
- fleet
Attached
Cluster Fleet Args Fleet configuration. Structure is documented below.
- kubernetes
Version String The Kubernetes version of the cluster.
- location String
The location for the resource
- logging
Config AttachedCluster Logging Config Args Logging configuration. Structure is documented below.
- monitoring
Config AttachedCluster Monitoring Config Args Monitoring configuration. Structure is documented below.
- name String
The name of this resource.
- oidc
Config AttachedCluster Oidc Config Args OIDC discovery information of the target cluster. Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how GCP services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to GCP. Both clusters with public and private issuer URLs are supported. Clusters with public issuers only need to specify the
issuer_url
field while clusters with private issuers need to provide bothissuer_url
andjwks
. Structure is documented below.- platform
Version String The platform version for the cluster (e.g.
1.23.0-gke.1
).- project String
The number of the Fleet host project where this cluster will be registered.
If it is not provided, the provider project is used.
- reconciling Boolean
If set, there are currently changes in flight to the cluster.
- state String
The current state of the cluster. Possible values: STATE_UNSPECIFIED, PROVISIONING, RUNNING, RECONCILING, STOPPING, ERROR, DEGRADED
- uid String
A globally unique identifier for the cluster.
- update
Time String The time at which this cluster was last updated.
- workload
Identity List<AttachedConfigs Cluster Workload Identity Config Args> Workload Identity settings. Structure is documented below.
- annotations {[key: string]: string}
Optional. Annotations on the cluster. This field has the same restrictions as Kubernetes annotations. The total size of all keys and values combined is limited to 256k. Key can have 2 segments: prefix (optional) and name (required), separated by a slash (/). Prefix must be a DNS subdomain. Name must be 63 characters or less, begin and end with alphanumerics, with dashes (-), underscores (_), dots (.), and alphanumerics between.
- Attached
Cluster Authorization Args Configuration related to the cluster RBAC settings. Structure is documented below.
- cluster
Region string Output only. The region where this cluster runs. For EKS clusters, this is an AWS region. For AKS clusters, this is an Azure region.
- create
Time string Output only. The time at which this cluster was created.
- deletion
Policy string Policy to determine what flags to send on delete.
- description string
A human readable description of this attached cluster. Cannot be longer than 255 UTF-8 encoded bytes.
- distribution string
The Kubernetes distribution of the underlying attached cluster. Supported values: "eks", "aks".
- errors
Attached
Cluster Error Args[] A set of errors found in the cluster. Structure is documented below.
- fleet
Attached
Cluster Fleet Args Fleet configuration. Structure is documented below.
- kubernetes
Version string The Kubernetes version of the cluster.
- location string
The location for the resource
- logging
Config AttachedCluster Logging Config Args Logging configuration. Structure is documented below.
- monitoring
Config AttachedCluster Monitoring Config Args Monitoring configuration. Structure is documented below.
- name string
The name of this resource.
- oidc
Config AttachedCluster Oidc Config Args OIDC discovery information of the target cluster. Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how GCP services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to GCP. Both clusters with public and private issuer URLs are supported. Clusters with public issuers only need to specify the
issuer_url
field while clusters with private issuers need to provide bothissuer_url
andjwks
. Structure is documented below.- platform
Version string The platform version for the cluster (e.g.
1.23.0-gke.1
).- project string
The number of the Fleet host project where this cluster will be registered.
If it is not provided, the provider project is used.
- reconciling boolean
If set, there are currently changes in flight to the cluster.
- state string
The current state of the cluster. Possible values: STATE_UNSPECIFIED, PROVISIONING, RUNNING, RECONCILING, STOPPING, ERROR, DEGRADED
- uid string
A globally unique identifier for the cluster.
- update
Time string The time at which this cluster was last updated.
- workload
Identity AttachedConfigs Cluster Workload Identity Config Args[] Workload Identity settings. Structure is documented below.
- annotations Mapping[str, str]
Optional. Annotations on the cluster. This field has the same restrictions as Kubernetes annotations. The total size of all keys and values combined is limited to 256k. Key can have 2 segments: prefix (optional) and name (required), separated by a slash (/). Prefix must be a DNS subdomain. Name must be 63 characters or less, begin and end with alphanumerics, with dashes (-), underscores (_), dots (.), and alphanumerics between.
- Attached
Cluster Authorization Args Configuration related to the cluster RBAC settings. Structure is documented below.
- cluster_
region str Output only. The region where this cluster runs. For EKS clusters, this is an AWS region. For AKS clusters, this is an Azure region.
- create_
time str Output only. The time at which this cluster was created.
- deletion_
policy str Policy to determine what flags to send on delete.
- description str
A human readable description of this attached cluster. Cannot be longer than 255 UTF-8 encoded bytes.
- distribution str
The Kubernetes distribution of the underlying attached cluster. Supported values: "eks", "aks".
- errors
Sequence[Attached
Cluster Error Args] A set of errors found in the cluster. Structure is documented below.
- fleet
Attached
Cluster Fleet Args Fleet configuration. Structure is documented below.
- kubernetes_
version str The Kubernetes version of the cluster.
- location str
The location for the resource
- logging_
config AttachedCluster Logging Config Args Logging configuration. Structure is documented below.
- monitoring_
config AttachedCluster Monitoring Config Args Monitoring configuration. Structure is documented below.
- name str
The name of this resource.
- oidc_
config AttachedCluster Oidc Config Args OIDC discovery information of the target cluster. Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how GCP services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to GCP. Both clusters with public and private issuer URLs are supported. Clusters with public issuers only need to specify the
issuer_url
field while clusters with private issuers need to provide bothissuer_url
andjwks
. Structure is documented below.- platform_
version str The platform version for the cluster (e.g.
1.23.0-gke.1
).- project str
The number of the Fleet host project where this cluster will be registered.
If it is not provided, the provider project is used.
- reconciling bool
If set, there are currently changes in flight to the cluster.
- state str
The current state of the cluster. Possible values: STATE_UNSPECIFIED, PROVISIONING, RUNNING, RECONCILING, STOPPING, ERROR, DEGRADED
- uid str
A globally unique identifier for the cluster.
- update_
time str The time at which this cluster was last updated.
- workload_
identity_ Sequence[Attachedconfigs Cluster Workload Identity Config Args] Workload Identity settings. Structure is documented below.
- annotations Map<String>
Optional. Annotations on the cluster. This field has the same restrictions as Kubernetes annotations. The total size of all keys and values combined is limited to 256k. Key can have 2 segments: prefix (optional) and name (required), separated by a slash (/). Prefix must be a DNS subdomain. Name must be 63 characters or less, begin and end with alphanumerics, with dashes (-), underscores (_), dots (.), and alphanumerics between.
- Property Map
Configuration related to the cluster RBAC settings. Structure is documented below.
- cluster
Region String Output only. The region where this cluster runs. For EKS clusters, this is an AWS region. For AKS clusters, this is an Azure region.
- create
Time String Output only. The time at which this cluster was created.
- deletion
Policy String Policy to determine what flags to send on delete.
- description String
A human readable description of this attached cluster. Cannot be longer than 255 UTF-8 encoded bytes.
- distribution String
The Kubernetes distribution of the underlying attached cluster. Supported values: "eks", "aks".
- errors List<Property Map>
A set of errors found in the cluster. Structure is documented below.
- fleet Property Map
Fleet configuration. Structure is documented below.
- kubernetes
Version String The Kubernetes version of the cluster.
- location String
The location for the resource
- logging
Config Property Map Logging configuration. Structure is documented below.
- monitoring
Config Property Map Monitoring configuration. Structure is documented below.
- name String
The name of this resource.
- oidc
Config Property Map OIDC discovery information of the target cluster. Kubernetes Service Account (KSA) tokens are JWT tokens signed by the cluster API server. This fields indicates how GCP services validate KSA tokens in order to allow system workloads (such as GKE Connect and telemetry agents) to authenticate back to GCP. Both clusters with public and private issuer URLs are supported. Clusters with public issuers only need to specify the
issuer_url
field while clusters with private issuers need to provide bothissuer_url
andjwks
. Structure is documented below.- platform
Version String The platform version for the cluster (e.g.
1.23.0-gke.1
).- project String
The number of the Fleet host project where this cluster will be registered.
If it is not provided, the provider project is used.
- reconciling Boolean
If set, there are currently changes in flight to the cluster.
- state String
The current state of the cluster. Possible values: STATE_UNSPECIFIED, PROVISIONING, RUNNING, RECONCILING, STOPPING, ERROR, DEGRADED
- uid String
A globally unique identifier for the cluster.
- update
Time String The time at which this cluster was last updated.
- workload
Identity List<Property Map>Configs Workload Identity settings. Structure is documented below.
Supporting Types
AttachedClusterAuthorization
- Admin
Users List<string> Users that can perform operations as a cluster admin. A managed ClusterRoleBinding will be created to grant the
cluster-admin
ClusterRole to the users. Up to ten admin users can be provided. For more info on RBAC, see https://kubernetes.io/docs/reference/access-authn-authz/rbac/#user-facing-roles
- Admin
Users []string Users that can perform operations as a cluster admin. A managed ClusterRoleBinding will be created to grant the
cluster-admin
ClusterRole to the users. Up to ten admin users can be provided. For more info on RBAC, see https://kubernetes.io/docs/reference/access-authn-authz/rbac/#user-facing-roles
- admin
Users List<String> Users that can perform operations as a cluster admin. A managed ClusterRoleBinding will be created to grant the
cluster-admin
ClusterRole to the users. Up to ten admin users can be provided. For more info on RBAC, see https://kubernetes.io/docs/reference/access-authn-authz/rbac/#user-facing-roles
- admin
Users string[] Users that can perform operations as a cluster admin. A managed ClusterRoleBinding will be created to grant the
cluster-admin
ClusterRole to the users. Up to ten admin users can be provided. For more info on RBAC, see https://kubernetes.io/docs/reference/access-authn-authz/rbac/#user-facing-roles
- admin_
users Sequence[str] Users that can perform operations as a cluster admin. A managed ClusterRoleBinding will be created to grant the
cluster-admin
ClusterRole to the users. Up to ten admin users can be provided. For more info on RBAC, see https://kubernetes.io/docs/reference/access-authn-authz/rbac/#user-facing-roles
- admin
Users List<String> Users that can perform operations as a cluster admin. A managed ClusterRoleBinding will be created to grant the
cluster-admin
ClusterRole to the users. Up to ten admin users can be provided. For more info on RBAC, see https://kubernetes.io/docs/reference/access-authn-authz/rbac/#user-facing-roles
AttachedClusterError
- Message string
Human-friendly description of the error.
- Message string
Human-friendly description of the error.
- message String
Human-friendly description of the error.
- message string
Human-friendly description of the error.
- message str
Human-friendly description of the error.
- message String
Human-friendly description of the error.
AttachedClusterFleet
- Project string
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- Membership string
(Output) The name of the managed Hub Membership resource associated to this cluster. Membership names are formatted as projects//locations/global/membership/.
- Project string
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- Membership string
(Output) The name of the managed Hub Membership resource associated to this cluster. Membership names are formatted as projects//locations/global/membership/.
- project String
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- membership String
(Output) The name of the managed Hub Membership resource associated to this cluster. Membership names are formatted as projects//locations/global/membership/.
- project string
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- membership string
(Output) The name of the managed Hub Membership resource associated to this cluster. Membership names are formatted as projects//locations/global/membership/.
- project str
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- membership str
(Output) The name of the managed Hub Membership resource associated to this cluster. Membership names are formatted as projects//locations/global/membership/.
- project String
The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- membership String
(Output) The name of the managed Hub Membership resource associated to this cluster. Membership names are formatted as projects//locations/global/membership/.
AttachedClusterLoggingConfig
- Component
Config AttachedCluster Logging Config Component Config The configuration of the logging components Structure is documented below.
- Component
Config AttachedCluster Logging Config Component Config The configuration of the logging components Structure is documented below.
- component
Config AttachedCluster Logging Config Component Config The configuration of the logging components Structure is documented below.
- component
Config AttachedCluster Logging Config Component Config The configuration of the logging components Structure is documented below.
- component_
config AttachedCluster Logging Config Component Config The configuration of the logging components Structure is documented below.
- component
Config Property Map The configuration of the logging components Structure is documented below.
AttachedClusterLoggingConfigComponentConfig
- Enable
Components List<string> The components to be enabled. Each value may be one of:
SYSTEM_COMPONENTS
,WORKLOADS
.
- Enable
Components []string The components to be enabled. Each value may be one of:
SYSTEM_COMPONENTS
,WORKLOADS
.
- enable
Components List<String> The components to be enabled. Each value may be one of:
SYSTEM_COMPONENTS
,WORKLOADS
.
- enable
Components string[] The components to be enabled. Each value may be one of:
SYSTEM_COMPONENTS
,WORKLOADS
.
- enable_
components Sequence[str] The components to be enabled. Each value may be one of:
SYSTEM_COMPONENTS
,WORKLOADS
.
- enable
Components List<String> The components to be enabled. Each value may be one of:
SYSTEM_COMPONENTS
,WORKLOADS
.
AttachedClusterMonitoringConfig
- Managed
Prometheus AttachedConfig Cluster Monitoring Config Managed Prometheus Config Enable Google Cloud Managed Service for Prometheus in the cluster. Structure is documented below.
- Managed
Prometheus AttachedConfig Cluster Monitoring Config Managed Prometheus Config Enable Google Cloud Managed Service for Prometheus in the cluster. Structure is documented below.
- managed
Prometheus AttachedConfig Cluster Monitoring Config Managed Prometheus Config Enable Google Cloud Managed Service for Prometheus in the cluster. Structure is documented below.
- managed
Prometheus AttachedConfig Cluster Monitoring Config Managed Prometheus Config Enable Google Cloud Managed Service for Prometheus in the cluster. Structure is documented below.
- managed_
prometheus_ Attachedconfig Cluster Monitoring Config Managed Prometheus Config Enable Google Cloud Managed Service for Prometheus in the cluster. Structure is documented below.
- managed
Prometheus Property MapConfig Enable Google Cloud Managed Service for Prometheus in the cluster. Structure is documented below.
AttachedClusterMonitoringConfigManagedPrometheusConfig
- Enabled bool
Enable Managed Collection.
- Enabled bool
Enable Managed Collection.
- enabled Boolean
Enable Managed Collection.
- enabled boolean
Enable Managed Collection.
- enabled bool
Enable Managed Collection.
- enabled Boolean
Enable Managed Collection.
AttachedClusterOidcConfig
- issuer_
url str A JSON Web Token (JWT) issuer URI.
issuer
must start withhttps://
- jwks str
OIDC verification keys in JWKS format (RFC 7517).
AttachedClusterWorkloadIdentityConfig
- Identity
Provider string The ID of the OIDC Identity Provider (IdP) associated to the Workload Identity Pool.
- Issuer
Uri string The OIDC issuer URL for this cluster.
- Workload
Pool string The Workload Identity Pool associated to the cluster.
- Identity
Provider string The ID of the OIDC Identity Provider (IdP) associated to the Workload Identity Pool.
- Issuer
Uri string The OIDC issuer URL for this cluster.
- Workload
Pool string The Workload Identity Pool associated to the cluster.
- identity
Provider String The ID of the OIDC Identity Provider (IdP) associated to the Workload Identity Pool.
- issuer
Uri String The OIDC issuer URL for this cluster.
- workload
Pool String The Workload Identity Pool associated to the cluster.
- identity
Provider string The ID of the OIDC Identity Provider (IdP) associated to the Workload Identity Pool.
- issuer
Uri string The OIDC issuer URL for this cluster.
- workload
Pool string The Workload Identity Pool associated to the cluster.
- identity_
provider str The ID of the OIDC Identity Provider (IdP) associated to the Workload Identity Pool.
- issuer_
uri str The OIDC issuer URL for this cluster.
- workload_
pool str The Workload Identity Pool associated to the cluster.
- identity
Provider String The ID of the OIDC Identity Provider (IdP) associated to the Workload Identity Pool.
- issuer
Uri String The OIDC issuer URL for this cluster.
- workload
Pool String The Workload Identity Pool associated to the cluster.
Import
Cluster can be imported using any of these accepted formats
$ pulumi import gcp:container/attachedCluster:AttachedCluster default projects/{{project}}/locations/{{location}}/attachedClusters/{{name}}
$ pulumi import gcp:container/attachedCluster:AttachedCluster default {{project}}/{{location}}/{{name}}
$ pulumi import gcp:container/attachedCluster:AttachedCluster default {{location}}/{{name}}
Package Details
- Repository
- Google Cloud (GCP) Classic pulumi/pulumi-gcp
- License
- Apache-2.0
- Notes
This Pulumi package is based on the
google-beta
Terraform Provider.