Skip to content

Commit fa8b417

Browse files
Google APIscopybara-github
Google APIs
authored and
copybara-github
committed
feat: add fields desired_in_transit_encryption_config and in_transit_encryption_config
docs: Remove Not GA comments for GetOpenIDConfig and GetJSONWebKeys in v1alpha1/v1beta1/v1 PiperOrigin-RevId: 599973058
1 parent 8128999 commit fa8b417

1 file changed

Lines changed: 19 additions & 2 deletions

File tree

google/container/v1/cluster_service.proto

Lines changed: 19 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -300,8 +300,6 @@ service ClusterManager {
300300

301301
// Gets the public component of the cluster signing keys in
302302
// JSON Web Key format.
303-
// This API is not yet intended for general use, and is not available for all
304-
// clusters.
305303
rpc GetJSONWebKeys(GetJSONWebKeysRequest) returns (GetJSONWebKeysResponse) {
306304
option (google.api.http) = {
307305
get: "/v1/{parent=projects/*/locations/*/clusters/*}/jwks"
@@ -2271,6 +2269,9 @@ message ClusterUpdate {
22712269
// The desired resource manager tags that apply to all auto-provisioned node
22722270
// pools in autopilot clusters and node auto-provisioning enabled clusters.
22732271
ResourceManagerTags desired_node_pool_auto_config_resource_manager_tags = 136;
2272+
2273+
// Specify the details of in-transit encryption.
2274+
optional InTransitEncryptionConfig desired_in_transit_encryption_config = 137;
22742275
}
22752276

22762277
// AdditionalPodRangesConfig is the configuration for additional pod secondary
@@ -4372,6 +4373,9 @@ message NetworkConfig {
43724373

43734374
// Whether FQDN Network Policy is enabled on this cluster.
43744375
optional bool enable_fqdn_network_policy = 19;
4376+
4377+
// Specify the details of in-transit encryption.
4378+
optional InTransitEncryptionConfig in_transit_encryption_config = 20;
43754379
}
43764380

43774381
// GatewayAPIConfig contains the desired config of Gateway API on this cluster.
@@ -5328,3 +5332,16 @@ message EnterpriseConfig {
53285332
// cluster.
53295333
ClusterTier cluster_tier = 1 [(google.api.field_behavior) = OUTPUT_ONLY];
53305334
}
5335+
5336+
// Options for in-transit encryption.
5337+
enum InTransitEncryptionConfig {
5338+
// Unspecified, will be inferred as default -
5339+
// IN_TRANSIT_ENCRYPTION_UNSPECIFIED.
5340+
IN_TRANSIT_ENCRYPTION_CONFIG_UNSPECIFIED = 0;
5341+
5342+
// In-transit encryption is disabled.
5343+
IN_TRANSIT_ENCRYPTION_DISABLED = 1;
5344+
5345+
// Data in-transit is encrypted using inter-node transparent encryption.
5346+
IN_TRANSIT_ENCRYPTION_INTER_NODE_TRANSPARENT = 2;
5347+
}

0 commit comments

Comments
 (0)