- JSON representation
- IntraNodeVisibilityConfig
- ILBSubsettingConfig
- StackType
- DesiredAdditionalIPRangesConfig
- DesiredEnterpriseConfig
ClusterUpdate describes an update to the cluster. Exactly one update can be applied to a cluster with each request, so at most one field can be provided.
| JSON representation |
|---|
{ "desiredNodeVersion" : string , "desiredMonitoringService" : string , "desiredAddonsConfig" : { object ( |
desiredNodeVersion
string
The Kubernetes version to change the nodes to (typically an upgrade).
Users may specify either explicit versions offered by Kubernetes Engine or version aliases, which have the following behavior:
- "latest": picks the highest valid Kubernetes version
- "1.X": picks the highest valid patch+gke.N patch in the 1.X version
- "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
- "1.X.Y-gke.N": picks an explicit Kubernetes version
- "-": picks the Kubernetes master version
desiredMonitoringService
string
The monitoring service the cluster should use to write metrics. Currently available options:
-
monitoring.googleapis.com/kubernetes- The Cloud Monitoring service with a Kubernetes-native resource model -
monitoring.googleapis.com- The legacy Cloud Monitoring service (no longer available as of GKE 1.15). -
none- No metrics will be exported from the cluster.
If left as an empty string, monitoring.googleapis.com/kubernetes
will be used for GKE 1.14+ or monitoring.googleapis.com
for earlier versions.
desiredAddonsConfig
object (
AddonsConfig
)
Configurations for the various addons available to run in the cluster.
desiredNodePoolId
string
The node pool to be upgraded. This field is mandatory if "desiredNodeVersion", "desired_image_family", "desiredNodePoolAutoscaling", or "desired_workload_metadata_config" is specified and there is more than one node pool on the cluster.
desiredImageType
string
The desired image type for the node pool. NOTE: Set the "desired_node_pool" field as well.
desiredNodePoolAutoscaling
object (
NodePoolAutoscaling
)
Autoscaler configuration for the node pool specified in desiredNodePoolId. If there is only one pool in the cluster and desiredNodePoolId is not provided then the change applies to that single node pool.
desiredLocations[]
string
The desired list of Google Compute Engine zones in which the cluster's nodes should be located.
This list must always include the cluster's primary zone.
Warning: changing cluster locations will update the locations of all node pools and will result in nodes being added and/or removed.
desiredPodSecurityPolicyConfig
object (
PodSecurityPolicyConfig
)
The desired configuration options for the PodSecurityPolicy feature.
desiredClusterAutoscaling
object (
ClusterAutoscaling
)
Cluster-level autoscaling configuration.
desiredLoggingService
string
The logging service the cluster should use to write logs. Currently available options:
-
logging.googleapis.com/kubernetes- The Cloud Logging service with a Kubernetes-native resource model -
logging.googleapis.com- The legacy Cloud Logging service (no longer available as of GKE 1.15). -
none- no logs will be exported from the cluster.
If left as an empty string, logging.googleapis.com/kubernetes
will be used for GKE 1.14+ or logging.googleapis.com
for earlier versions.
desiredResourceUsageExportConfig
object (
ResourceUsageExportConfig
)
The desired configuration for exporting resource usage.
desiredVerticalPodAutoscaling
object (
VerticalPodAutoscaling
)
Cluster-level Vertical Pod Autoscaling configuration.
desiredPrivateClusterConfig
(deprecated)
object (
PrivateClusterConfig
)
The desired private cluster configuration. masterGlobalAccessConfig is the only field that can be changed via this field. See also ClusterUpdate.desired_enable_private_endpoint
for modifying other fields within PrivateClusterConfig
.
Deprecated: Use desiredControlPlaneEndpointsConfig.ip_endpoints_config.global_access instead.
desiredIntraNodeVisibilityConfig
object (
IntraNodeVisibilityConfig
)
The desired config of Intra-node visibility.
desiredDefaultSnatStatus
object (
DefaultSnatStatus
)
The desired status of whether to disable default sNAT for this cluster.
desiredClusterTelemetry
object (
ClusterTelemetry
)
The desired telemetry integration for the cluster.
desiredReleaseChannel
object (
ReleaseChannel
)
The desired release channel configuration.
privateClusterConfig
(deprecated)
object (
PrivateClusterConfig
)
The desired private cluster configuration. Has no effect. Use desiredPrivateClusterConfig
instead.
desiredTpuConfig
(deprecated)
object (
TpuConfig
)
The desired Cloud TPU configuration. This field is deprecated due to the deprecation of 2VM TPU. The end of life date for 2VM TPU is 2025-04-25.
desiredL4ilbSubsettingConfig
object (
ILBSubsettingConfig
)
The desired L4 Internal Load Balancer Subsetting configuration.
desiredDatapathProvider
enum (
DatapathProvider
)
The desired datapath provider for the cluster.
desiredPrivateIpv6GoogleAccess
enum (
PrivateIPv6GoogleAccess
)
The desired state of IPv6 connectivity to Google Services.
desiredNotificationConfig
object (
NotificationConfig
)
The desired notification configuration.
desiredMasterVersion
string
The Kubernetes version to change the master to. The only valid value is the latest supported version.
Users may specify either explicit versions offered by Kubernetes Engine or version aliases, which have the following behavior:
- "latest": picks the highest valid Kubernetes version
- "1.X": picks the highest valid patch+gke.N patch in the 1.X version
- "1.X.Y": picks the highest valid gke.N patch in the 1.X.Y version
- "1.X.Y-gke.N": picks an explicit Kubernetes version
- "-": picks the default Kubernetes version
desiredParentProductConfig
object (
ParentProductConfig
)
The desired parent product config for the cluster.
desiredGcfsConfig
object (
GcfsConfig
)
The desired GCFS config for the cluster.
desiredDatabaseEncryption
object (
DatabaseEncryption
)
Configuration of etcd encryption.
desiredWorkloadIdentityConfig
object (
WorkloadIdentityConfig
)
Configuration for Workload Identity.
desiredWorkloadCertificates
object (
WorkloadCertificates
)
Configuration for issuance of mTLS keys and certificates to Kubernetes pods.
desiredMeshCertificates
object (
MeshCertificates
)
Configuration for issuance of mTLS keys and certificates to Kubernetes pods.
desiredWorkloadAltsConfig
object (
WorkloadALTSConfig
)
Configuration for direct-path (via ALTS) with workload identity. This feature is not officially supported for external customers in Kubernetes Engine when using Workload Identity.
desiredShieldedNodes
object (
ShieldedNodes
)
Configuration for Shielded Nodes.
desiredCostManagementConfig
object (
CostManagementConfig
)
The desired configuration for the fine-grained cost management feature.
desiredMaster
object (
Master
)
Configuration for master components.
desiredDnsConfig
object (
DNSConfig
)
DNSConfig contains clusterDNS config for this cluster.
desiredServiceExternalIpsConfig
object (
ServiceExternalIPsConfig
)
ServiceExternalIPsConfig specifies the config for the use of Services with ExternalIPs field.
desiredAuthenticatorGroupsConfig
object (
AuthenticatorGroupsConfig
)
AuthenticatorGroupsConfig specifies the config for the cluster security groups settings.
desiredLoggingConfig
object (
LoggingConfig
)
The desired logging configuration.
desiredMonitoringConfig
object (
MonitoringConfig
)
The desired monitoring configuration.
desiredIdentityServiceConfig
object (
IdentityServiceConfig
)
The desired Identity Service component configuration.
desiredControlPlaneEndpointsConfig
object (
ControlPlaneEndpointsConfig
)
Control plane endpoints
configuration.
desiredPodAutoscaling
object (
PodAutoscaling
)
The desired config for pod autoscaling.
desiredGatewayApiConfig
object (
GatewayAPIConfig
)
The desired config of Gateway API on this cluster.
etag
string
The current etag of the cluster. If an etag is provided and does not match the current etag of the cluster, update will be blocked and an ABORTED error will be returned.
desiredNodePoolLoggingConfig
object (
NodePoolLoggingConfig
)
The desired node pool logging configuration defaults for the cluster.
desiredFleet
object (
Fleet
)
The desired fleet configuration for the cluster.
desiredStackType
enum (
StackType
)
The desired stack type of the cluster. If a stack type is provided and does not match the current stack type of the cluster, update will attempt to change the stack type to the new type.
additionalPodRangesConfig
object (
AdditionalPodRangesConfig
)
The additional pod ranges to be added to the cluster. These pod ranges can be used by node pools to allocate pod IPs.
removedAdditionalPodRangesConfig
object (
AdditionalPodRangesConfig
)
The additional pod ranges that are to be removed from the cluster. The pod ranges specified here must have been specified earlier in the 'additionalPodRangesConfig' argument.
enableK8sBetaApis
object (
K8sBetaAPIConfig
)
Kubernetes open source beta apis enabled on the cluster. Only beta apis
desiredSecurityPostureConfig
object (
SecurityPostureConfig
)
Enable/Disable Security Posture API features for the cluster.
desiredNetworkPerformanceConfig
object (
ClusterNetworkPerformanceConfig
)
The desired network performance config.
desiredAutopilotWorkloadPolicyConfig
object (
WorkloadPolicyConfig
)
WorkloadPolicyConfig is the configuration related to GCW workload policy
desiredK8sBetaApis
object (
K8sBetaAPIConfig
)
Beta APIs enabled for cluster.
desiredHostMaintenancePolicy
object (
HostMaintenancePolicy
)
HostMaintenancePolicy contains the desired maintenance policy for the Google Compute Engine hosts.
desiredContainerdConfig
object (
ContainerdConfig
)
The desired containerd config for the cluster.
desiredNodeKubeletConfig
object (
NodeKubeletConfig
)
The desired node kubelet config for the cluster.
desiredNodePoolAutoConfigKubeletConfig
object (
NodeKubeletConfig
)
The desired node kubelet config for all auto-provisioned node pools in autopilot clusters and node auto-provisioning enabled clusters.
userManagedKeysConfig
(deprecated)
object (
UserManagedKeysConfig
)
The Custom keys configuration for the cluster.
This field is deprecated. Use ClusterUpdate.desired_user_managed_keys_config
instead.
desiredAdditionalIpRangesConfig
object (
DesiredAdditionalIPRangesConfig
)
The desired config for additional subnetworks attached to the cluster.
desiredEnterpriseConfig
object (
DesiredEnterpriseConfig
)
The desired enterprise configuration for the cluster.
desiredAutoIpamConfig
object (
AutoIpamConfig
)
AutoIpamConfig contains all information related to Auto IPAM
desiredNodePoolAutoConfigLinuxNodeConfig
object (
LinuxNodeConfig
)
The desired Linux node config for all auto-provisioned node pools in autopilot clusters and node auto-provisioning enabled clusters.
Currently only cgroupMode
can be set here.
desiredUserManagedKeysConfig
object (
UserManagedKeysConfig
)
The desired user managed keys config for the cluster.
desiredAnonymousAuthenticationConfig
object (
AnonymousAuthenticationConfig
)
Configuration for limiting anonymous access to all endpoints except the health checks.
gkeAutoUpgradeConfig
object (
GkeAutoUpgradeConfig
)
Configuration for GKE auto upgrade.
desiredEnablePrivateEndpoint
(deprecated)
boolean
Enable/Disable private endpoint for the cluster's master.
Deprecated: Use desiredControlPlaneEndpointsConfig.ip_endpoints_config.enable_public_endpoint instead. Note that the value of enablePublicEndpoint is reversed: if enablePrivateEndpoint is false, then enablePublicEndpoint will be true.
desiredDefaultEnablePrivateNodes
boolean
Override the default setting of whether future created nodes have private IP addresses only, namely NetworkConfig.default_enable_private_nodes
desiredProtectConfig
(deprecated)
object (
ProtectConfig
)
Deprecated: Use DesiredSecurityPostureConfig instead. Enable/Disable Protect API features for the cluster.
desiredEnableFqdnNetworkPolicy
boolean
Enable/Disable FQDN Network Policy for the cluster.
desiredEnableMultiNetworking
boolean
Enable/Disable Multi-Networking for the cluster
desiredInTransitEncryptionConfig
enum (
InTransitEncryptionConfig
)
Specify the details of in-transit encryption. Now named inter-node transparent encryption.
desiredEnableCiliumClusterwideNetworkPolicy
boolean
Enable/Disable Cilium Clusterwide Network Policy for the cluster.
desiredSecretManagerConfig
object (
SecretManagerConfig
)
Enable/Disable Secret Manager Config.
desiredCompliancePostureConfig
object (
CompliancePostureConfig
)
Enable/Disable Compliance Posture features for the cluster.
desiredRbacBindingConfig
object (
RBACBindingConfig
)
RBACBindingConfig allows user to restrict ClusterRoleBindings an RoleBindings that can be created.
desiredDisableL4LbFirewallReconciliation
boolean
Enable/Disable L4 LB VPC firewall reconciliation for the cluster.
IntraNodeVisibilityConfig
IntraNodeVisibilityConfig contains the desired config of the intra-node visibility on this cluster.
| JSON representation |
|---|
{ "enabled" : boolean } |
| Fields | |
|---|---|
enabled
|
Enables intra node visibility for this cluster. |
ILBSubsettingConfig
ILBSubsettingConfig contains the desired config of L4 Internal LoadBalancer subsetting on this cluster.
| JSON representation |
|---|
{ "enabled" : boolean } |
| Fields | |
|---|---|
enabled
|
Enables l4 ILB subsetting for this cluster |
StackType
Possible values for IP stack type
| Enums | |
|---|---|
STACK_TYPE_UNSPECIFIED
|
By default, the clusters will be IPV4 only |
IPV4
|
The value used if the cluster is a IPV4 only |
IPV4_IPV6
|
The value used if the cluster is a dual stack cluster |
DesiredAdditionalIPRangesConfig
DesiredAdditionalIPRangesConfig is a wrapper used for cluster update operation and contains multiple AdditionalIPRangesConfigs.
| JSON representation |
|---|
{
"additionalIpRangesConfigs"
:
[
{
object (
|
| Fields | |
|---|---|
additionalIpRangesConfigs[]
|
List of additional IP ranges configs where each AdditionalIPRangesConfig corresponds to one subnetwork's IP ranges |
DesiredEnterpriseConfig
DesiredEnterpriseConfig is a wrapper used for updating enterpriseConfig.
| JSON representation |
|---|
{
"desiredTier"
:
enum (
|
| Fields | |
|---|---|
desiredTier
|
desiredTier specifies the desired tier of the cluster. |
