Types overview

string

(No description provided)

object (AuditLogConfig)

The configuration for logging of each type of permission.

string

Specifies a service that will be enabled for audit logging. For example, storage.googleapis.com, cloudsql.googleapis.com. allServices is a special value that covers all services.

string

Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.

enum

The log type that this config enables.

string

Relative name of the domain authorized for use. Example: example.com.

string

Deprecated Read only. Full path to the AuthorizedDomain resource in the API. Example: projects/myproject/authorizedDomains/example.com.

object (Expr)

The condition that is associated with this binding. If the condition evaluates to true, then this binding applies to the current request. If the condition evaluates to false, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the IAM documentation.

string

Specifies the principals requesting access for a Google Cloud resource. members can have the following values: * allUsers: A special identifier that represents anyone who is on the internet; with or without a Google account. * allAuthenticatedUsers: A special identifier that represents anyone who is authenticated with a Google account or a service account. Does not include identities that come from external identity providers (IdPs) through identity federation. * user:{emailid}: An email address that represents a specific Google account. For example, alice@example.com . * serviceAccount:{emailid}: An email address that represents a Google service account. For example, my-other-app@appspot.gserviceaccount.com. * serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]: An identifier for a Kubernetes service account. For example, my-project.svc.id.goog[my-namespace/my-kubernetes-sa]. * group:{emailid}: An email address that represents a Google group. For example, admins@example.com. * domain:{domain}: The G Suite domain (primary) that represents all the users of that domain. For example, google.com or example.com. * principal://iam.googleapis.com/locations/global/workforcePools/{pool_id}/subject/{subject_attribute_value}: A single identity in a workforce identity pool. * principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/group/{group_id}: All workforce identities in a group. * principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/attribute.{attribute_name}/{attribute_value}: All workforce identities with a specific attribute value. * principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/*: All identities in a workforce identity pool. * principal://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/subject/{subject_attribute_value}: A single identity in a workload identity pool. * principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/group/{group_id}: A workload identity pool group. * principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/attribute.{attribute_name}/{attribute_value}: All identities in a workload identity pool with a certain attribute. * principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/*: All identities in a workload identity pool. * deleted:user:{emailid}?uid={uniqueid}: An email address (plus unique identifier) representing a user that has been recently deleted. For example, alice@example.com?uid=123456789012345678901. If the user is recovered, this value reverts to user:{emailid} and the recovered user retains the role in the binding. * deleted:serviceAccount:{emailid}?uid={uniqueid}: An email address (plus unique identifier) representing a service account that has been recently deleted. For example, my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901. If the service account is undeleted, this value reverts to serviceAccount:{emailid} and the undeleted service account retains the role in the binding. * deleted:group:{emailid}?uid={uniqueid}: An email address (plus unique identifier) representing a Google group that has been recently deleted. For example, admins@example.com?uid=123456789012345678901. If the group is recovered, this value reverts to group:{emailid} and the recovered group retains the role in the binding. * deleted:principal://iam.googleapis.com/locations/global/workforcePools/{pool_id}/subject/{subject_attribute_value}: Deleted single identity in a workforce identity pool. For example, deleted:principal://iam.googleapis.com/locations/global/workforcePools/my-pool-id/subject/my-subject-attribute-value.

string

Role that is assigned to the list of members, or principals. For example, roles/viewer, roles/editor, or roles/owner. For an overview of the IAM roles and permissions, see the IAM documentation. For a list of the available pre-defined roles, see here.

string

name of the CSI driver for the requested storage system. Cloud Run supports the following drivers: * gcsfuse.run.googleapis.com : Mount a Cloud Storage Bucket as a volume.

boolean

If true, mount the volume as read only. Defaults to false.

map (key: string, value: string)

stores driver specific attributes. For Google Cloud Storage volumes, the following attributes are supported: * bucketName: the name of the Cloud Storage bucket to mount. The Cloud Run Service identity must have access to this bucket.

object (LocalObjectReference)

This field should not be used directly as it is meant to be inlined directly into the message. Use the "name" field instead.

string

The ConfigMap to select from.

boolean

Specify whether the ConfigMap must be defined.

string

Required. Not supported by Cloud Run.

object (LocalObjectReference)

Not supported by Cloud Run.

string

Required. Not supported by Cloud Run.

boolean

Not supported by Cloud Run.

integer (int32 format)

(Optional) Integer representation of mode bits to use on created files by default. Must be a value between 01 and 0777 (octal). If 0 or not set, it will default to 0644. Directories within the path are not affected by this setting. Notes * Internally, a umask of 0222 will be applied to any non-zero value. * This is an integer representation of the mode bits. So, the octal integer value should look exactly as the chmod numeric notation with a leading zero. Some examples: for chmod 777 (a=rwx), set to 0777 (octal) or 511 (base-10). For chmod 640 (u=rw,g=r), set to 0640 (octal) or 416 (base-10). For chmod 755 (u=rwx,g=rx,o=rx), set to 0755 (octal) or 493 (base-10). * This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.

object (KeyToPath)

(Optional) If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified that is not present in the Secret, the volume setup will error unless it is marked optional.

string

Name of the config.

boolean

(Optional) Specify whether the Secret or its keys must be defined.

string

The API version for this call such as "serving.knative.dev/v1".

string

The kind of resource, in this case always "Configuration".

object (ObjectMeta)

Metadata associated with this Configuration, including name, namespace, labels, and annotations.

object (ConfigurationSpec)

Spec holds the desired state of the Configuration (from the client).

object (ConfigurationStatus)

Status communicates the observed state of the Configuration (from the controller).

object (RevisionTemplate)

Template holds the latest specification for the Revision to be stamped out.

object (GoogleCloudRunV1Condition)

Conditions communicate information about ongoing/complete reconciliation processes that bring the "spec" inline with the observed state of the world.

string

LatestCreatedRevisionName is the last revision that was created from this Configuration. It might not be ready yet, so for the latest ready revision, use LatestReadyRevisionName.

string

LatestReadyRevisionName holds the name of the latest Revision stamped out from this Configuration that has had its "Ready" condition become "True".

integer (int32 format)

ObservedGeneration is the 'Generation' of the Configuration that was last processed by the controller. The observed generation is updated even if the controller failed to process the spec and create the Revision. Clients polling for completed reconciliation should poll until observedGeneration = metadata.generation, and the Ready condition's status is True or False.

string

Arguments to the entrypoint. The docker image's CMD is used if this is not provided. Variable references are not supported in Cloud Run.

string

Entrypoint array. Not executed within a shell. The docker image's ENTRYPOINT is used if this is not provided. Variable references are not supported in Cloud Run.

object (EnvVar)

List of environment variables to set in the container. EnvVar with duplicate names are generally allowed; if referencing a secret, the name must be unique for the container. For non-secret EnvVar names, the Container will only get the last-declared one.

object (EnvFromSource)

Not supported by Cloud Run.

string

Required. Name of the container image in Dockerhub, Google Artifact Registry, or Google Container Registry. If the host is not provided, Dockerhub is assumed.

string

Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise.

object (Probe)

Periodic probe of container liveness. Container will be restarted if the probe fails.

string

Name of the container specified as a DNS_LABEL (RFC 1123).

object (ContainerPort)

List of ports to expose from the container. Only a single port can be specified. The specified ports must be listening on all interfaces (0.0.0.0) within the container to be accessible. If omitted, a port number will be chosen and passed to the container through the PORT environment variable for the container to listen on.

object (Probe)

Not supported by Cloud Run.

object (ResourceRequirements)

Compute Resources required by this container.

object (SecurityContext)

Not supported by Cloud Run.

object (Probe)

Startup probe of application within the container. All other probes are disabled if a startup probe is provided, until it succeeds. Container will not receive traffic if the probe fails. If not provided, a default startup probe with TCP socket action is used.

string

Path at which the file to which the container's termination message will be written is mounted into the container's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log.

string

Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.

object (VolumeMount)

Volume to mount into the container's filesystem. Only supports SecretVolumeSources. Pod volumes to mount into the container's filesystem.

string

Container's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image.

string

Arguments to the entrypoint. The specified arguments replace and override any existing entrypoint arguments. Must be empty if clear_args is set to true.

boolean

Optional. Set to True to clear all existing arguments.

object (EnvVar)

List of environment variables to set in the container. All specified environment variables are merged with existing environment variables. When the specified environment variables exist, these values override any existing values.

string

The name of the container specified as a DNS_LABEL.

integer (int32 format)

Port number the container listens on. If present, this must be a valid port number, 0 < x < 65536. If not present, it will default to port 8080. For more information, see https://cloud.google.com/run/docs/container-contract#port

string

If specified, used to specify which protocol to use. Allowed values are "http1" and "h2c".

string

Protocol for port. Must be "TCP". Defaults to "TCP".

string

The API version for this call such as "domains.cloudrun.com/v1".

string

The kind of resource, in this case "DomainMapping".

object (ObjectMeta)

Metadata associated with this BuildTemplate.

object (DomainMappingSpec)

The spec for this DomainMapping.

object (DomainMappingStatus)

The current status of the DomainMapping.

enum

The mode of the certificate.

boolean

If set, the mapping will override any mapping set before this spec was set. It is recommended that the user leaves this empty to receive an error warning about a potential conflict and only set it once the respective UI has given such a warning.

string

The name of the Knative Route that this DomainMapping applies to. The route must exist.

object (GoogleCloudRunV1Condition)

Array of observed DomainMappingConditions, indicating the current state of the DomainMapping.

string

The name of the route that the mapping currently points to.

integer (int32 format)

ObservedGeneration is the 'Generation' of the DomainMapping that was last processed by the controller. Clients polling for completed reconciliation should poll until observedGeneration = metadata.generation and the Ready condition's status is True or False.

object (ResourceRecord)

The resource records required to configure this domain mapping. These records must be added to the domain's DNS configuration in order to serve the application via this domain mapping.

string

Optional. Not supported by Cloud Run.

string

The medium on which the data is stored. The default is "" which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir

string

Limit on the storage usable by this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers. The default is nil which means that the limit is undefined. More info: https://cloud.google.com/run/docs/configuring/in-memory-volumes#configure-volume. Info in Kubernetes: https://kubernetes.io/docs/concepts/storage/volumes/#emptydir

object (ConfigMapEnvSource)

The ConfigMap to select from

string

An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.

object (SecretEnvSource)

The Secret to select from

string

Required. Name of the environment variable.

string

Value of the environment variable. Defaults to "". Variable references are not supported in Cloud Run.

object (EnvVarSource)

Source for the environment variable's value. Only supports secret_key_ref. Cannot be used if value is not empty.

object (ConfigMapKeySelector)

Not supported by Cloud Run. Not supported in Cloud Run.

object (SecretKeySelector)

Selects a key (version) of a secret in Secret Manager.

string

Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.

string

Optional. APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values.

string

Optional. Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase.

object (ObjectMeta)

Optional. Standard object's metadata.

object (ExecutionSpec)

Optional. Specification of the desired behavior of an execution.

object (ExecutionStatus)

Output only. Current status of an execution.

string (Timestamp format)

Optional. Completion timestamp of the execution.

string (Timestamp format)

Optional. Creation timestamp of the execution.

string

Optional. Name of the execution.

integer (int32 format)

Optional. Specifies the maximum desired number of tasks the execution should run at given time. Must be <= task_count. When the job is run, if this field is 0 or unset, the maximum possible value will be used for that execution. The actual number of tasks running in steady state will be less than this number when there are fewer tasks waiting to be completed, i.e. when the work left to do is less than max parallelism.

integer (int32 format)

Optional. Specifies the desired number of tasks the execution should run. Setting to 1 means that parallelism is limited to 1 and the success of that task signals the success of the execution. Defaults to 1.

object (TaskTemplateSpec)

Optional. The template used to create tasks for this execution.

integer (int32 format)

Optional. The number of tasks which reached phase Cancelled.

string (Timestamp format)

Optional. Represents the time that the execution was completed. It is not guaranteed to be set in happens-before order across separate operations. It is represented in RFC3339 form and is in UTC. +optional

object (GoogleCloudRunV1Condition)

Optional. Conditions communicate information about ongoing/complete reconciliation processes that bring the "spec" inline with the observed state of the world. Execution-specific conditions include: * ResourcesAvailable: True when underlying resources have been provisioned. * Started: True when the execution has started to execute. * Completed: True when the execution has succeeded. False when the execution has failed.

integer (int32 format)

Optional. The number of tasks which reached phase Failed.

string

Optional. URI where logs for this execution can be found in Cloud Console.

integer (int32 format)

Optional. The 'generation' of the execution that was last processed by the controller.

integer (int32 format)

Optional. The number of tasks which have retried at least once.

integer (int32 format)

Optional. The number of actively running tasks.

string (Timestamp format)

Optional. Represents the time that the execution started to run. It is not guaranteed to be set in happens-before order across separate operations. It is represented in RFC3339 form and is in UTC.

integer (int32 format)

Optional. The number of tasks which reached phase Succeeded.

object (ObjectMeta)

Optional. Optional metadata for this Execution, including labels and annotations. The following annotation keys set properties of the created execution: * run.googleapis.com/cloudsql-instances sets Cloud SQL connections. Multiple values should be comma separated. * run.googleapis.com/vpc-access-connector sets a Serverless VPC Access connector. * run.googleapis.com/vpc-access-egress sets VPC egress. Supported values are all-traffic, all (deprecated), and private-ranges-only. all-traffic and all provide the same functionality. all is deprecated but will continue to be supported. Prefer all-traffic.

object (ExecutionSpec)

Required. ExecutionSpec holds the desired configuration for executions of this job.

string

Optional. Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.

string

Textual representation of an expression in Common Expression Language syntax.

string

Optional. String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.

string

Optional. Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.

integer (int32 format)

Port number of the gRPC service. Number must be in the range 1 to 65535.

string

Service is the name of the service to place in the gRPC HealthCheckRequest. If this is not specified, the default behavior is defined by gRPC.

string (Timestamp format)

Optional. Last time the condition transitioned from one status to another.

string

Optional. Human readable message indicating details about the current status.

string

Optional. One-word CamelCase reason for the condition's last transition. These are intended to be stable, unique values which the client may use to trigger error handling logic, whereas messages which may be changed later by the server.

string

Optional. How to interpret this condition. One of Error, Warning, or Info. Conditions of severity Info do not contribute to resource readiness.

string

Status of the condition, one of True, False, Unknown.

string

type is used to communicate the status of the reconciliation process. Types common to all resources include: * "Ready" or "Completed": True when the Resource is ready.

boolean

Whether or not approval is needed. If this is set on a build, it will become pending when created, and will need to be explicitly approved to start.

string (Timestamp format)

Output only. The time when the approval decision was made.

string

Output only. Email of the user that called the ApproveBuild API to approve or reject a build at the time that the API was called.

string

Optional. An optional comment for this manual approval result.

enum

Required. The decision of this manual approval.

string

Optional. An optional URL tied to this manual approval result. This field is essentially the same as comment, except that it will be rendered by the UI differently. An example use case is a link to an external job that approved this Build.

string

Cloud Storage bucket and optional object path, in the form "gs://bucket/path/to/somewhere/". (see Bucket Name Requirements). Files in the workspace matching any path pattern will be uploaded to Cloud Storage with this location as a prefix.

string

Path globs used to match files in the build's workspace.

object (GoogleDevtoolsCloudbuildV1TimeSpan)

Output only. Stores timing information for pushing all artifact objects.

string

A list of images to be pushed upon the successful completion of all build steps. The images will be pushed using the builder service account's credentials. The digests of the pushed images will be stored in the Build resource's results field. If any of the images fail to be pushed, the build is marked FAILURE.

object (GoogleDevtoolsCloudbuildV1MavenArtifact)

A list of Maven artifacts to be uploaded to Artifact Registry upon successful completion of all build steps. Artifacts in the workspace matching specified paths globs will be uploaded to the specified Artifact Registry repository using the builder service account's credentials. If any artifacts fail to be pushed, the build is marked FAILURE.

object (GoogleDevtoolsCloudbuildV1NpmPackage)

A list of npm packages to be uploaded to Artifact Registry upon successful completion of all build steps. Npm packages in the specified paths will be uploaded to the specified Artifact Registry repository using the builder service account's credentials. If any packages fail to be pushed, the build is marked FAILURE.

object (GoogleDevtoolsCloudbuildV1ArtifactObjects)

A list of objects to be uploaded to Cloud Storage upon successful completion of all build steps. Files in the workspace matching specified paths globs will be uploaded to the specified Cloud Storage location using the builder service account's credentials. The location and generation of the uploaded objects will be stored in the Build resource's results field. If any objects fail to be pushed, the build is marked FAILURE.

object (GoogleDevtoolsCloudbuildV1PythonPackage)

A list of Python packages to be uploaded to Artifact Registry upon successful completion of all build steps. The build service account credentials will be used to perform the upload. If any objects fail to be pushed, the build is marked FAILURE.

object (GoogleDevtoolsCloudbuildV1BuildApproval)

Output only. Describes this build's approval configuration, status, and result.

object (GoogleDevtoolsCloudbuildV1Artifacts)

Artifacts produced by the build that should be uploaded upon successful completion of all build steps.

object (GoogleDevtoolsCloudbuildV1Secrets)

Secrets and secret environment variables.

string

Output only. The ID of the BuildTrigger that triggered this build, if it was triggered automatically.

string (Timestamp format)

Output only. Time at which the request to create the build was received.

object (GoogleDevtoolsCloudbuildV1FailureInfo)

Output only. Contains information about the build when status=FAILURE.

string (Timestamp format)

Output only. Time at which execution of the build was finished. The difference between finish_time and start_time is the duration of the build's execution.

object (GoogleDevtoolsCloudbuildV1GitConfig)

Optional. Configuration for git operations.

string

Output only. Unique identifier of the build.

string

A list of images to be pushed upon the successful completion of all build steps. The images are pushed using the builder service account's credentials. The digests of the pushed images will be stored in the Build resource's results field. If any of the images fail to be pushed, the build status is marked FAILURE.

string

Output only. URL to logs for this build in Google Cloud Console.

string

Cloud Storage bucket where logs should be written (see Bucket Name Requirements). Logs file names will be of the format ${logs_bucket}/log-${build_id}.txt.

string

Output only. The 'Build' name with format: projects/{project}/locations/{location}/builds/{build}, where {build} is a unique identifier generated by the service.

object (GoogleDevtoolsCloudbuildV1BuildOptions)

Special options for this build.

string

Output only. ID of the project.

string (Duration format)

TTL in queue for this build. If provided and the build is enqueued longer than this value, the build will expire and the build status will be EXPIRED. The TTL starts ticking from create_time.

object (GoogleDevtoolsCloudbuildV1Results)

Output only. Results of the build.

object (GoogleDevtoolsCloudbuildV1Secret)

Secrets to decrypt using Cloud Key Management Service. Note: Secret Manager is the recommended technique for managing sensitive data with Cloud Build. Use available_secrets to configure builds to access secrets from Secret Manager. For instructions, see: https://cloud.google.com/cloud-build/docs/securing-builds/use-secrets

string

IAM service account whose credentials will be used at build runtime. Must be of the format projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}. ACCOUNT can be email address or uniqueId of the service account.

object (GoogleDevtoolsCloudbuildV1Source)

Optional. The location of the source files to build.

object (GoogleDevtoolsCloudbuildV1SourceProvenance)

Output only. A permanent fixed identifier for source.

string (Timestamp format)

Output only. Time at which execution of the build was started.

enum

Output only. Status of the build.

string

Output only. Customer-readable message about the current status.

object (GoogleDevtoolsCloudbuildV1BuildStep)

Required. The operations to be performed on the workspace.

map (key: string, value: string)

Substitutions data for Build resource.

string

Tags for annotation of a Build. These are not docker tags.

string (Duration format)

Amount of time that this build should be allowed to run, to second granularity. If this amount of time elapses, work on the build will cease and the build status will be TIMEOUT. timeout starts ticking from startTime. Default time is 60 minutes.

map (key: string, value: object (GoogleDevtoolsCloudbuildV1TimeSpan))

Output only. Stores timing information for phases of the build. Valid keys are: * BUILD: time to execute all build steps. * PUSH: time to push all artifacts including docker images and non docker artifacts. * FETCHSOURCE: time to fetch source. * SETUPBUILD: time to set up build. If the build does not specify source or images, these keys will not be included.

object (GoogleDevtoolsCloudbuildV1Warning)

Output only. Non-fatal problems encountered during the execution of the build.

object (GoogleDevtoolsCloudbuildV1ApprovalConfig)

Output only. Configuration for manual approval of this build.

object (GoogleDevtoolsCloudbuildV1ApprovalResult)

Output only. Result of manual approval for this Build.

enum

Output only. The state of this build's approval.

object (GoogleDevtoolsCloudbuildV1Build)

The build that the operation is tracking.

boolean

Option to include built-in and custom substitutions as env variables for all build steps.

enum

Optional. Option to specify how default logs buckets are setup.

string (int64 format)

Requested disk size for the VM that runs the build. Note that this is NOT "disk free"; some of the space will be used by the operating system and build utilities. Also note that this is the minimum disk size that will be allocated for the build -- the build may run with a larger disk than requested. At present, the maximum disk size is 4000GB; builds that request more than the maximum are rejected with an error.

boolean

Option to specify whether or not to apply bash style string operations to the substitutions. NOTE: this is always enabled for triggered builds and cannot be overridden in the build configuration file.

string

A list of global environment variable definitions that will exist for all build steps in this build. If a variable is defined in both globally and in a build step, the variable will use the build step value. The elements are of the form "KEY=VALUE" for the environment variable "KEY" being given the value "VALUE".

enum

Option to define build log streaming behavior to Cloud Storage.

enum

Option to specify the logging mode, which determines if and where build logs are stored.

enum

Compute Engine machine type on which to run the build.

object (GoogleDevtoolsCloudbuildV1PoolOption)

Optional. Specification for execution on a WorkerPool. See running builds in a private pool for more information.

enum

Requested verifiability options.

string

A list of global environment variables, which are encrypted using a Cloud Key Management Service crypto key. These values must be specified in the build's Secret. These variables will be available to all build steps in this build.

string

Requested hash for SourceProvenance.

enum

Option to specify behavior when there is an error in the substitution checks. NOTE: this is always set to ALLOW_LOOSE for triggered builds and cannot be overridden in the build configuration file.

object (GoogleDevtoolsCloudbuildV1Volume)

Global list of volumes to mount for ALL build steps Each volume is created as an empty volume prior to starting the build process. Upon completion of the build, volumes and their contents are discarded. Global volume names and paths cannot conflict with the volumes defined a build step. Using a global volume in a build with only one step is not valid as it is indicative of a build request with an incorrect configuration.

string

This field deprecated; please use pool.name instead.

integer (int32 format)

Allow this build step to fail without failing the entire build if and only if the exit code is one of the specified codes. If allow_failure is also specified, this field will take precedence.

boolean

Allow this build step to fail without failing the entire build. If false, the entire build will fail if this step fails. Otherwise, the build will succeed, but this step will still have a failure status. Error information will be reported in the failure_detail field.

string

A list of arguments that will be presented to the step when it is started. If the image used to run the step's container has an entrypoint, the args are used as arguments to that entrypoint. If the image does not define an entrypoint, the first element in args is used as the entrypoint, and the remainder will be used as arguments.

boolean

Option to include built-in and custom substitutions as env variables for this build step. This option will override the global option in BuildOption.

string

Working directory to use when running this step's container. If this value is a relative path, it is relative to the build's working directory. If this value is absolute, it may be outside the build's working directory, in which case the contents of the path may not be persisted across build step executions, unless a volume for that path is specified. If the build specifies a RepoSource with dir and a step with a dir, which specifies an absolute path, the RepoSource dir is ignored for the step's execution.

string

Entrypoint to be used instead of the build step image's default entrypoint. If unset, the image's default entrypoint is used.

string

A list of environment variable definitions to be used when running a step. The elements are of the form "KEY=VALUE" for the environment variable "KEY" being given the value "VALUE".

integer (int32 format)

Output only. Return code from running the step.

string

Unique identifier for this build step, used in wait_for to reference this build step as a dependency.

string

Required. The name of the container image that will run this particular build step. If the image is available in the host's Docker daemon's cache, it will be run directly. If not, the host will attempt to pull the image first, using the builder service account's credentials if necessary. The Docker daemon's cache will already have the latest versions of all of the officially supported build steps (https://github.com/GoogleCloudPlatform/cloud-builders). The Docker daemon will also have cached many of the layers for some popular images, like "ubuntu", "debian", but they will be refreshed at the time you attempt to use them. If you built an image in a previous build step, it will be stored in the host's Docker daemon's cache and is available to use as the name for a later build step.

object (GoogleDevtoolsCloudbuildV1TimeSpan)

Output only. Stores timing information for pulling this build step's builder image only.

string

A shell script to be executed in the step. When script is provided, the user cannot specify the entrypoint or args.

string

A list of environment variables which are encrypted using a Cloud Key Management Service crypto key. These values must be specified in the build's Secret.

enum

Output only. Status of the build step. At this time, build step status is only updated on build completion; step status is not updated in real-time as the build progresses.

string (Duration format)

Time limit for executing this build step. If not defined, the step has no time limit and will be allowed to continue to run until either it completes or the build itself times out.

object (GoogleDevtoolsCloudbuildV1TimeSpan)

Output only. Stores timing information for executing this build step.

object (GoogleDevtoolsCloudbuildV1Volume)

List of volumes to mount into the build step. Each volume is created as an empty volume prior to execution of the build step. Upon completion of the build, volumes and their contents are discarded. Using a named volume in only one step is not valid as it is indicative of a build request with an incorrect configuration.

string

The ID(s) of the step(s) that this build step depends on. This build step will not start until all the build steps in wait_for have completed successfully. If wait_for is empty, this build step will start when all previous build steps in the Build.Steps list have completed successfully.

string

Docker Registry 2.0 digest.

string

Name used to push the container image to Google Container Registry, as presented to docker push.

object (GoogleDevtoolsCloudbuildV1TimeSpan)

Output only. Stores timing information for pushing the specified image.

string

Optional. Directory, relative to the source root, in which to run the build.

string

Required. Name of the Google Cloud Build repository, formatted as projects/*/locations/*/connections/*/repositories/*.

string

Required. The revision to fetch from the Git repository such as a branch, a tag, a commit SHA, or any Git ref.

string

Required. Directory, relative to the source root, in which to run the build.

string

Required. The Developer Connect Git repository link, formatted as projects/*/locations/*/connections/*/gitRepositoryLink/*.

string

Required. The revision to fetch from the Git repository such as a branch, a tag, a commit SHA, or any Git ref.

string

Explains the failure issue in more detail using hard-coded text.

enum

The name of the failure.

object (GoogleDevtoolsCloudbuildV1Hash)

Collection of file hashes.

string

Cloud Storage bucket. See https://cloud.google.com/storage/docs/naming#requirements

string (int64 format)

Cloud Storage generation for the object. If the generation is omitted, the latest generation will be used.

string

Cloud Storage object. See https://cloud.google.com/storage/docs/naming#objectnames

object (GoogleDevtoolsCloudbuildV1HttpConfig)

Configuration for HTTP related git operations.

string

Optional. Directory, relative to the source root, in which to run the build. This must be a relative path. If a step's dir is specified and is an absolute path, this value is ignored for that step's execution.

string

Optional. The revision to fetch from the Git repository such as a branch, a tag, a commit SHA, or any Git ref. Cloud Build uses git fetch to fetch the revision from the Git repository; therefore make sure that the string you provide for revision is parsable by the command. For information on string values accepted by git fetch, see https://git-scm.com/docs/gitrevisions#_specifying_revisions. For information on git fetch, see https://git-scm.com/docs/git-fetch.

string

Required. Location of the Git repo to build. This will be used as a git remote, see https://git-scm.com/docs/git-remote.

enum

The type of hash that was performed.

string (bytes format)

The hash value.

string

SecretVersion resource of the HTTP proxy URL. The proxy URL should be in format protocol://@]proxyhost[:port].

object (GoogleDevtoolsCloudbuildV1GCSLocation)

Optional. Cloud Storage object storing the certificate to use with the HTTP proxy.

map (key: string, value: string (bytes format))

Map of environment variable name to its encrypted value. Secret environment variables must be unique across all of a build's secrets, and must be used by at least one build step. Values can be at most 64 KB in size. There can be at most 100 secret values across all of a build's secrets.

string

Resource name of Cloud KMS crypto key to decrypt the encrypted value. In format: projects//locations//keyRings//cryptoKeys/

string

Maven artifactId value used when uploading the artifact to Artifact Registry.

string

Maven groupId value used when uploading the artifact to Artifact Registry.

string

Path to an artifact in the build's workspace to be uploaded to Artifact Registry. This can be either an absolute path, e.g. /workspace/my-app/target/my-app-1.0.SNAPSHOT.jar or a relative path from /workspace, e.g. my-app/target/my-app-1.0.SNAPSHOT.jar.

string

Artifact Registry repository, in the form "https://$REGION-maven.pkg.dev/$PROJECT/$REPOSITORY" Artifact in the workspace specified by path will be uploaded to Artifact Registry with this location as a prefix.

string

Maven version value used when uploading the artifact to Artifact Registry.

string

Path to the package.json. e.g. workspace/path/to/package

string

Artifact Registry repository, in the form "https://$REGION-npm.pkg.dev/$PROJECT/$REPOSITORY" Npm package in the workspace specified by path will be zipped and uploaded to Artifact Registry with this location as a prefix.

string

The WorkerPool resource to execute the build on. You must have cloudbuild.workerpools.use on the project hosting the WorkerPool. Format projects/{project}/locations/{location}/workerPools/{workerPoolId}

string

Path globs used to match files in the build's workspace. For Python/ Twine, this is usually dist/*, and sometimes additionally an .asc file.

string

Artifact Registry repository, in the form "https://$REGION-python.pkg.dev/$PROJECT/$REPOSITORY" Files in the workspace matching any path pattern will be uploaded to Artifact Registry with this location as a prefix.

string

Regex matching branches to build. The syntax of the regular expressions accepted is the syntax accepted by RE2 and described at https://github.com/google/re2/wiki/Syntax

string

Explicit commit SHA to build.

string

Optional. Directory, relative to the source root, in which to run the build. This must be a relative path. If a step's dir is specified and is an absolute path, this value is ignored for that step's execution.

boolean

Optional. Only trigger a build if the revision regex does NOT match the revision regex.

string

Optional. ID of the project that owns the Cloud Source Repository. If omitted, the project ID requesting the build is assumed.

string

Required. Name of the Cloud Source Repository.

map (key: string, value: string)

Optional. Substitutions to use in a triggered build. Should only be used with RunBuildTrigger

string

Regex matching tags to build. The syntax of the regular expressions accepted is the syntax accepted by RE2 and described at https://github.com/google/re2/wiki/Syntax

string

Path to the artifact manifest for non-container artifacts uploaded to Cloud Storage. Only populated when artifacts are uploaded to Cloud Storage.

object (GoogleDevtoolsCloudbuildV1TimeSpan)

Time to push all non-container artifacts to Cloud Storage.

string

List of build step digests, in the order corresponding to build step indices.

string (bytes format)

List of build step outputs, produced by builder images, in the order corresponding to build step indices. Cloud Builders can produce this output by writing to $BUILDER_OUTPUT/output. Only the first 50KB of data is stored. Note that the $BUILDER_OUTPUT variable is read-only and can't be substituted.

object (GoogleDevtoolsCloudbuildV1BuiltImage)

Container images that were built as a part of the build.

object (GoogleDevtoolsCloudbuildV1UploadedMavenArtifact)

Maven artifacts uploaded to Artifact Registry at the end of the build.

object (GoogleDevtoolsCloudbuildV1UploadedNpmPackage)

Npm packages uploaded to Artifact Registry at the end of the build.

string (int64 format)

Number of non-container artifacts uploaded to Cloud Storage. Only populated when artifacts are uploaded to Cloud Storage.

object (GoogleDevtoolsCloudbuildV1UploadedPythonPackage)

Python artifacts uploaded to Artifact Registry at the end of the build.

string

Cloud KMS key name to use to decrypt these envs.

map (key: string, value: string (bytes format))

Map of environment variable name to its encrypted value. Secret environment variables must be unique across all of a build's secrets, and must be used by at least one build step. Values can be at most 64 KB in size. There can be at most 100 secret values across all of a build's secrets.

string

Environment variable name to associate with the secret. Secret environment variables must be unique across all of a build's secrets, and must be used by at least one build step.

string

Resource name of the SecretVersion. In format: projects//secrets//versions/*

object (GoogleDevtoolsCloudbuildV1InlineSecret)

Secrets encrypted with KMS key and the associated secret environment variable.

object (GoogleDevtoolsCloudbuildV1SecretManagerSecret)

Secrets in Secret Manager and associated secret environment variable.

object (GoogleDevtoolsCloudbuildV1ConnectedRepository)

Optional. If provided, get the source from this 2nd-gen Google Cloud Build repository resource.

object (GoogleDevtoolsCloudbuildV1DeveloperConnectConfig)

If provided, get the source from this Developer Connect config.

object (GoogleDevtoolsCloudbuildV1GitSource)

If provided, get the source from this Git repository.

object (GoogleDevtoolsCloudbuildV1RepoSource)

If provided, get the source from this location in a Cloud Source Repository.

object (GoogleDevtoolsCloudbuildV1StorageSource)

If provided, get the source from this location in Cloud Storage.

object (GoogleDevtoolsCloudbuildV1StorageSourceManifest)

If provided, get the source from this manifest in Cloud Storage. This feature is in Preview; see description here.

map (key: string, value: object (GoogleDevtoolsCloudbuildV1FileHashes))

Output only. Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. Note that FileHashes will only be populated if BuildOptions has requested a SourceProvenanceHash. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.

object (GoogleDevtoolsCloudbuildV1ConnectedRepository)

Output only. A copy of the build's source.connected_repository, if exists, with any revisions resolved.

object (GoogleDevtoolsCloudbuildV1GitSource)

Output only. A copy of the build's source.git_source, if exists, with any revisions resolved.

object (GoogleDevtoolsCloudbuildV1RepoSource)

A copy of the build's source.repo_source, if exists, with any revisions resolved.

object (GoogleDevtoolsCloudbuildV1StorageSource)

A copy of the build's source.storage_source, if exists, with any generations resolved.

object (GoogleDevtoolsCloudbuildV1StorageSourceManifest)

A copy of the build's source.storage_source_manifest, if exists, with any revisions resolved. This feature is in Preview.

string

Cloud Storage bucket containing the source (see Bucket Name Requirements).

string (int64 format)

Optional. Cloud Storage generation for the object. If the generation is omitted, the latest generation will be used.

string

Required. Cloud Storage object containing the source. This object must be a zipped (.zip) or gzipped archive file (.tar.gz) containing source to build.

enum

Optional. Option to specify the tool to fetch the source file for the build.

string

Required. Cloud Storage bucket containing the source manifest (see Bucket Name Requirements).

string (int64 format)

Cloud Storage generation for the object. If the generation is omitted, the latest generation will be used.

string

Required. Cloud Storage object containing the source manifest. This object must be a JSON file.

string (Timestamp format)

End of time span.

string (Timestamp format)

Start of time span.

object (GoogleDevtoolsCloudbuildV1FileHashes)

Hash types and values of the Maven Artifact.

object (GoogleDevtoolsCloudbuildV1TimeSpan)

Output only. Stores timing information for pushing the specified artifact.

string

URI of the uploaded artifact.

object (GoogleDevtoolsCloudbuildV1FileHashes)

Hash types and values of the npm package.

object (GoogleDevtoolsCloudbuildV1TimeSpan)

Output only. Stores timing information for pushing the specified artifact.

string

URI of the uploaded npm package.

object (GoogleDevtoolsCloudbuildV1FileHashes)

Hash types and values of the Python Artifact.

object (GoogleDevtoolsCloudbuildV1TimeSpan)

Output only. Stores timing information for pushing the specified artifact.

string

URI of the uploaded artifact.

string

Name of the volume to mount. Volume names must be unique per build step and must be valid names for Docker volumes. Each named volume must be used by at least two build steps.

string

Path at which to mount the volume. Paths must be absolute and cannot conflict with other volume paths on the same build step or with certain reserved volume paths.

enum

The priority for this warning.

string

Explanation of the warning generated.

string

The standard List next-page token.

object (GoogleLongrunningOperation)

A list of operations that matches the specified filter in the request.

boolean

If the value is false, it means the operation is still in progress. If true, the operation is completed, and either error or response is available.

object (GoogleRpcStatus)

The error result of the operation in case of failure or cancellation.

map (key: string, value: any)

Service-specific metadata associated with the operation. It typically contains progress information and common metadata such as create time. Some services might not provide such metadata. Any method that returns a long-running operation should document the metadata type, if any.

string

The server-assigned name, which is only unique within the same service that originally returns it. If you use the default HTTP mapping, the name should be a resource name ending with operations/{unique_id}.

map (key: string, value: any)

The normal, successful response of the operation. If the original method returns no data on success, such as Delete, the response is google.protobuf.Empty. If the original method is standard Get/Create/Update, the response should be the resource. For other methods, the response should have the type XxxResponse, where Xxx is the original method name. For example, if the original method name is TakeSnapshot(), the inferred response type is TakeSnapshotResponse.

string (Duration format)

The maximum duration to wait before timing out. If left blank, the wait will be at most the time permitted by the underlying HTTP/RPC protocol. If RPC context deadline is also specified, the shorter one will be used.

integer (int32 format)

The status code, which should be an enum value of google.rpc.Code.

object

A list of messages that carry the error details. There is a common set of message types for APIs to use.

string

A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.

string

Not supported by Cloud Run.

object (HTTPHeader)

Custom headers to set in the request. HTTP allows repeated headers.

string

Path to access on the HTTP server.

integer (int32 format)

Port number to access on the container. Number must be in the range 1 to 65535.

string

Not supported by Cloud Run.

string

Required. The header field name

string

The header field value

string

Optional. APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values.

string

Optional. Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase.

object (ObjectMeta)

Optional. Standard object's metadata.

object (JobSpec)

Optional. Specification of the desired behavior of a job.

object (JobStatus)

Output only. Current status of a job.

string

A unique string used as a suffix for creating a new execution. The Job will become ready when the execution is successfully completed. The sum of job name and token length must be fewer than 63 characters.

string

A unique string used as a suffix for creating a new execution. The Job will become ready when the execution is successfully started. The sum of job name and token length must be fewer than 63 characters.

object (ExecutionTemplateSpec)

Optional. Describes the execution that will be created when running a job.

object (GoogleCloudRunV1Condition)

Conditions communicate information about ongoing/complete reconciliation processes that bring the "spec" inline with the observed state of the world. Job-specific conditions include: * Ready: True when the job is ready to be executed.

integer (int32 format)

Number of executions created for this job.

object (ExecutionReference)

A pointer to the most recently created execution for this job. This is set regardless of the eventual state of the execution.

integer (int32 format)

The 'generation' of the job that was last processed by the controller.

string

The Cloud Secret Manager secret version. Can be 'latest' for the latest value, or an integer or a secret alias for a specific version. The key to project.

integer (int32 format)

(Optional) Mode bits to use on this file, must be a value between 01 and 0777 (octal). If 0 or not set, the Volume's default mode will be used. Notes * Internally, a umask of 0222 will be applied to any non-zero value. * This is an integer representation of the mode bits. So, the octal integer value should look exactly as the chmod numeric notation with a leading zero. Some examples: for chmod 777 (a=rwx), set to 0777 (octal) or 511 (base-10). For chmod 640 (u=rw,g=r), set to 0640 (octal) or 416 (base-10). For chmod 755 (u=rwx,g=rx,o=rx), set to 0755 (octal) or 493 (base-10). * This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.

string

The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.

object (AuthorizedDomain)

The authorized domains belonging to the user.

string

Continuation token for fetching the next page of results.

string

The API version for this call such as "serving.knative.dev/v1".

object (Configuration)

List of Configurations.

string

The kind of this resource, in this case "ConfigurationList".

object (ListMeta)

Metadata associated with this Configuration list.

string

Locations that could not be reached.

string

The API version for this call such as "domains.cloudrun.com/v1".

object (DomainMapping)

List of DomainMappings.

string

The kind of this resource, in this case "DomainMappingList".

object (ListMeta)

Metadata associated with this DomainMapping list.

string

Locations that could not be reached.

string

The API version for this call such as "run.googleapis.com/v1".

object (Execution)

List of Executions.

string

The kind of this resource, in this case "ExecutionsList".

object (ListMeta)

Metadata associated with this executions list.

string

Locations that could not be reached.

string

The API version for this call such as "run.googleapis.com/v1".

object (Job)

List of Jobs.

string

The kind of this resource, in this case "JobsList".

object (ListMeta)

Metadata associated with this jobs list.

string

Locations that could not be reached.

object (Location)

A list of locations that matches the specified filter in the request.

string

The standard List next-page token.

string

Continuation token is a value emitted when the count of items is larger than the user/system limit. To retrieve the next page of items, pass the value of continue as the next request's page_token.

string

Opaque string that identifies the server's internal version of this object. It can be used by clients to determine when objects have changed. If the message is passed back to the server, it must be left unmodified.

string

URL representing this object.

string

The API version for this call such as "serving.knative.dev/v1".

object (Revision)

List of Revisions.

string

The kind of this resource, in this case "RevisionList".

object (ListMeta)

Metadata associated with this revision list.

string

Locations that could not be reached.

string

The API version for this call such as "serving.knative.dev/v1".

object (Route)

List of Routes.

string

The kind of this resource, in this case always "RouteList".

object (ListMeta)

Metadata associated with this Route list.

string

Locations that could not be reached.

string

The API version for this call; returns "serving.knative.dev/v1".

object (Service)

List of Services.

string

The kind of this resource; returns "ServiceList".

object (ListMeta)

Metadata associated with this Service list.

string

For calls against the global endpoint, returns the list of Cloud locations that could not be reached. For regional calls, this field is not used.

string

The API version for this call such as "run.googleapis.com/v1".

object (Task)

List of Tasks.

string

The kind of this resource, in this case "TasksList".

object (ListMeta)

Metadata associated with this tasks list.

string

Locations that could not be reached.

string

Name of the referent.

string

The friendly name for this location, typically a nearby city name. For example, "Tokyo".

map (key: string, value: string)

Cross-service attributes for the location. For example {"cloud.googleapis.com/region": "us-east1"}

string

The canonical id for this location. For example: "us-east1".

map (key: string, value: any)

Service-specific metadata. For example the available capacity at the given location.

string

Resource name for the location, which may vary between implementations. For example: "projects/example-project/locations/us-east1"

string

Path that is exported by the NFS server.

boolean

If true, mount the NFS volume as read only. Defaults to false.

string

Hostname or IP address of the NFS server.

map (key: string, value: string)

Unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. In Cloud Run, annotations with 'run.googleapis.com/' and 'autoscaling.knative.dev' are restricted, and the accepted annotations will be different depending on the resource type. * autoscaling.knative.dev/maxScale: Revision. * autoscaling.knative.dev/minScale: Revision. * run.googleapis.com/binary-authorization-breakglass: Service, Job, * run.googleapis.com/binary-authorization: Service, Job, Execution. * run.googleapis.com/client-name: All resources. * run.googleapis.com/cloudsql-instances: Revision, Execution. * run.googleapis.com/container-dependencies: Revision . * run.googleapis.com/cpu-throttling: Revision. * run.googleapis.com/custom-audiences: Service. * run.googleapis.com/default-url-disabled: Service. * run.googleapis.com/description: Service. * run.googleapis.com/encryption-key-shutdown-hours: Revision * run.googleapis.com/encryption-key: Revision, Execution. * run.googleapis.com/execution-environment: Revision, Execution. * run.googleapis.com/gc-traffic-tags: Service. * run.googleapis.com/ingress: Service. * run.googleapis.com/launch-stage: Service, Job. * run.googleapis.com/minScale: Service (ALPHA) * run.googleapis.com/network-interfaces: Revision, Execution. * run.googleapis.com/post-key-revocation-action-type: Revision. * run.googleapis.com/secrets: Revision, Execution. * run.googleapis.com/secure-session-agent: Revision. * run.googleapis.com/sessionAffinity: Revision. * run.googleapis.com/startup-cpu-boost: Revision. * run.googleapis.com/vpc-access-connector: Revision, Execution. * run.googleapis.com/vpc-access-egress: Revision, Execution.

string

Not supported by Cloud Run

string (Timestamp format)

UTC timestamp representing the server time when this object was created.

integer (int32 format)

Not supported by Cloud Run

string (Timestamp format)

The read-only soft deletion timestamp for this resource. In Cloud Run, users are not able to set this field. Instead, they must call the corresponding Delete API.

string

Not supported by Cloud Run

string

Not supported by Cloud Run

integer (int32 format)

A system-provided sequence number representing a specific generation of the desired state.

map (key: string, value: string)

Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and routes.

string

Required. The name of the resource. Name is required when creating top-level resources (Service, Job), must be unique within a Cloud Run project/region, and cannot be changed once created.

string

Required. Defines the space within each name must be unique within a Cloud Run region. In Cloud Run, it must be project ID or number.

object (OwnerReference)

Not supported by Cloud Run

string

Opaque, system-generated value that represents the internal version of this object that can be used by clients to determine when objects have changed. May be used for optimistic concurrency, change detection, and the watch operation on a resource or set of resources. Clients must treat these values as opaque and passed unmodified back to the server or omit the value to disable conflict-detection.

string

URL representing this object.

string

Unique, system-generated identifier for this resource.

object (ContainerOverride)

Per container override specification.

integer (int32 format)

The desired number of tasks the execution should run. Will replace existing task_count value.

integer (int32 format)

Duration in seconds the task may be active before the system will actively try to mark it failed and kill associated containers. Will replace existing timeout_seconds value.

string

This is not supported or used by Cloud Run.

boolean

This is not supported or used by Cloud Run.

boolean

This is not supported or used by Cloud Run.

string

This is not supported or used by Cloud Run.

string

This is not supported or used by Cloud Run.

string

This is not supported or used by Cloud Run.

object (AuditConfig)

Specifies cloud audit logging configuration for this policy.

object (Binding)

Associates a list of members, or principals, with a role. Optionally, may specify a condition that determines how and when the bindings are applied. Each of the bindings must contain at least one principal. The bindings in a Policy can refer to up to 1,500 principals; up to 250 of these principals can be Google groups. Each occurrence of a principal counts towards these limits. For example, if the bindings grant 50 different roles to user:alice@example.com, and not to any other principal, then you can add another 1,450 principals to the bindings in the Policy.

string (bytes format)

etag is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other. It is strongly suggested that systems make use of the etag in the read-modify-write cycle to perform policy updates in order to avoid race conditions: An etag is returned in the response to getIamPolicy, and systems are expected to put that etag in the request to setIamPolicy to ensure that their change will be applied to the same version of the policy. Important: If you use IAM Conditions, you must include the etag field whenever you call setIamPolicy. If you omit this field, then IAM allows you to overwrite a version 3 policy with a version 1 policy, and all of the conditions in the version 3 policy are lost.

integer (int32 format)

Specifies the format of the policy. Valid values are 0, 1, and 3. Requests that specify an invalid value are rejected. Any operation that affects conditional role bindings must specify version 3. This requirement applies to the following operations: * Getting a policy that includes a conditional role binding * Adding a conditional role binding to a policy * Changing a conditional role binding in a policy * Removing any role binding, with or without a condition, from a policy that includes conditions Important: If you use IAM Conditions, you must include the etag field whenever you call setIamPolicy. If you omit this field, then IAM allows you to overwrite a version 3 policy with a version 1 policy, and all of the conditions in the version 3 policy are lost. If a policy does not include any conditions, operations on that policy may specify any valid version or leave the field unset. To learn which resources support conditions in their IAM policies, see the IAM documentation.

object (ExecAction)

Not supported by Cloud Run.

integer (int32 format)

Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.

object (GRPCAction)

GRPCAction specifies an action involving a GRPC port.

object (HTTPGetAction)

HTTPGet specifies the http request to perform.

integer (int32 format)

Number of seconds after the container has started before the probe is initiated. Defaults to 0 seconds. Minimum value is 0. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240.

integer (int32 format)

How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1. Maximum value for liveness probe is 3600. Maximum value for startup probe is 240. Must be greater or equal than timeout_seconds.

integer (int32 format)

Minimum consecutive successes for the probe to be considered successful after having failed. Must be 1 if set.

object (TCPSocketAction)

TCPSocket specifies an action involving a TCP port.

integer (int32 format)

Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1. Maximum value is 3600. Must be smaller than period_seconds; if period_seconds is not set, must be less or equal than 10.

string

Relative name of the object affected by this record. Only applicable for CNAME records. Example: 'www'.

string

Data for this record. Values vary by record type, as defined in RFC 1035 (section 5) and RFC 1034 (section 3.6.1).

enum

Resource record type. Example: AAAA.

map (key: string, value: string)

Limits describes the maximum amount of compute resources allowed. Only 'cpu' and 'memory' keys are supported. * For supported 'cpu' values, go to https://cloud.google.com/run/docs/configuring/cpu. * For supported 'memory' values and syntax, go to https://cloud.google.com/run/docs/configuring/memory-limits

map (key: string, value: string)

Requests describes the minimum amount of compute resources required. Only cpu and memory are supported. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. * For supported 'cpu' values, go to https://cloud.google.com/run/docs/configuring/cpu. * For supported 'memory' values and syntax, go to https://cloud.google.com/run/docs/configuring/memory-limits

string

The API version for this call such as "serving.knative.dev/v1".

string

The kind of this resource, in this case "Revision".

object (ObjectMeta)

Metadata associated with this Revision, including name, namespace, labels, and annotations.

object (RevisionSpec)

Spec holds the desired state of the Revision (from the client).

object (RevisionStatus)

Status communicates the observed state of the Revision (from the controller).

integer (int32 format)

ContainerConcurrency specifies the maximum allowed in-flight (concurrent) requests per container instance of the Revision. If not specified, defaults to 80.

object (Container)

Required. Containers holds the single container that defines the unit of execution for this Revision. In the context of a Revision, we disallow a number of fields on this Container, including: name and lifecycle. In Cloud Run, only a single container may be provided.

boolean

Not supported by Cloud Run.

object (LocalObjectReference)

Not supported by Cloud Run.

map (key: string, value: string)

Optional. The Node Selector configuration. Map of selector key to a value which matches a node.

string

Runtime. Leave unset for default.

string

Email address of the IAM service account associated with the revision of the service. The service account represents the identity of the running revision, and determines what permissions the revision has. If not provided, the revision will use the project's default service account.

integer (int32 format)

TimeoutSeconds holds the max duration the instance is allowed for responding to a request. Cloud Run: defaults to 300 seconds (5 minutes). Maximum allowed value is 3600 seconds (1 hour).

object (Volume)

(No description provided)

object (GoogleCloudRunV1Condition)

Conditions communicate information about ongoing/complete reconciliation processes that bring the "spec" inline with the observed state of the world. As a Revision is being prepared, it will incrementally update conditions. Revision-specific conditions include: * ResourcesAvailable: True when underlying resources have been provisioned. * ContainerHealthy: True when the Revision readiness check completes. * Active: True when the Revision may receive traffic.

integer (int32 format)

Output only. The configured number of instances running this revision. For Cloud Run, this only includes instances provisioned using the minScale annotation. It does not include instances created by autoscaling.

string

ImageDigest holds the resolved digest for the image specified within .Spec.Container.Image. The digest is resolved during the creation of Revision. This field holds the digest value regardless of whether a tag or digest was originally specified in the Container object.

string

Optional. Specifies the generated logging url for this particular revision based on the revision url template specified in the controller's config.

integer (int32 format)

ObservedGeneration is the 'Generation' of the Revision that was last processed by the controller. Clients polling for completed reconciliation should poll until observedGeneration = metadata.generation, and the Ready condition's status is True or False.

string

Not currently used by Cloud Run.

object (ObjectMeta)

Optional metadata for this Revision, including labels and annotations. Name will be generated by the Configuration. The following annotation keys set properties of the created revision: * autoscaling.knative.dev/minScale sets the minimum number of instances. * autoscaling.knative.dev/maxScale sets the maximum number of instances. * run.googleapis.com/cloudsql-instances sets Cloud SQL connections. Multiple values should be comma separated. * run.googleapis.com/vpc-access-connector sets a Serverless VPC Access connector. * run.googleapis.com/vpc-access-egress sets VPC egress. Supported values are all-traffic, all (deprecated), and private-ranges-only. all-traffic and all provide the same functionality. all is deprecated but will continue to be supported. Prefer all-traffic.

object (RevisionSpec)

RevisionSpec holds the desired state of the Revision (from the client).

string

The API version for this call such as "serving.knative.dev/v1".

string

The kind of this resource, in this case always "Route".

object (ObjectMeta)

Metadata associated with this Route, including name, namespace, labels, and annotations.

object (RouteSpec)

Spec holds the desired state of the Route (from the client).

object (RouteStatus)

Status communicates the observed state of the Route (from the controller).

object (TrafficTarget)

Traffic specifies how to distribute traffic over a collection of Knative Revisions and Configurations. Cloud Run currently supports a single configurationName.

object (Addressable)

Similar to url, information on where the service is available on HTTP.

object (GoogleCloudRunV1Condition)

Conditions communicates information about ongoing/complete reconciliation processes that bring the "spec" inline with the observed state of the world.

integer (int32 format)

ObservedGeneration is the 'Generation' of the Route that was last processed by the controller. Clients polling for completed reconciliation should poll until observedGeneration = metadata.generation and the Ready condition's status is True or False. Note that providing a TrafficTarget that has latest_revision=True will result in a Route that does not increment either its metadata.generation or its observedGeneration, as new "latest ready" revisions from the Configuration are processed without an update to the Route's spec.

object (TrafficTarget)

Traffic holds the configured traffic distribution. These entries will always contain RevisionName references. When ConfigurationName appears in the spec, this will hold the LatestReadyRevisionName that was last observed.

string

URL holds the url that will distribute traffic over the provided traffic targets. It generally has the form: https://{route-hash}-{project-hash}-{cluster-level-suffix}.a.run.app

object (Overrides)

Optional. Overrides existing job configuration for one specific new job execution only, using the specified values to update the job configuration for the new execution.

object (LocalObjectReference)

This field should not be used directly as it is meant to be inlined directly into the message. Use the "name" field instead.

string

The Secret to select from.

boolean

Specify whether the Secret must be defined

string

Required. A Cloud Secret Manager secret version. Must be 'latest' for the latest version, an integer for a specific version, or a version alias. The key of the secret to select from. Must be a valid secret key.

object (LocalObjectReference)

This field should not be used directly as it is meant to be inlined directly into the message. Use the "name" field instead.

string

The name of the secret in Cloud Secret Manager. By default, the secret is assumed to be in the same project. If the secret is in another project, you must define an alias. An alias definition has the form: :projects//secrets/. If multiple alias definitions are needed, they must be separated by commas. The alias definitions must be set on the run.googleapis.com/secrets annotation. The name of the secret in the pod's namespace to select from.

boolean

Specify whether the Secret or its key must be defined.

integer (int32 format)

Integer representation of mode bits to use on created files by default. Must be a value between 01 and 0777 (octal). If 0 or not set, it will default to 0444. Directories within the path are not affected by this setting. Notes * Internally, a umask of 0222 will be applied to any non-zero value. * This is an integer representation of the mode bits. So, the octal integer value should look exactly as the chmod numeric notation with a leading zero. Some examples: for chmod 777 (a=rwx), set to 0777 (octal) or 511 (base-10). For chmod 640 (u=rw,g=r), set to 0640 (octal) or 416 (base-10). For chmod 755 (u=rwx,g=rx,o=rx), set to 0755 (octal) or 493 (base-10). * This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.

object (KeyToPath)

A list of secret versions to mount in the volume. If no items are specified, the volume will expose a file with the same name as the secret name. The contents of the file will be the data in the latest version of the secret. If items are specified, the key will be used as the version to fetch from Cloud Secret Manager and the path will be the name of the file exposed in the volume. When items are defined, they must specify both a key and a path.

boolean

Not supported by Cloud Run.

string

The name of the secret in Cloud Secret Manager. By default, the secret is assumed to be in the same project. If the secret is in another project, you must define an alias. An alias definition has the form: :projects//secrets/. If multiple alias definitions are needed, they must be separated by commas. The alias definitions must be set on the run.googleapis.com/secrets annotation. Name of the secret in the container's namespace to use.

integer (int32 format)

The UID to run the entrypoint of the container process. Defaults to user specified in image metadata if unspecified. May also be set in PodSecurityContext. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.

string

The API version for this call. It must be "serving.knative.dev/v1".

string

The kind of resource. It must be "Service".

object (ObjectMeta)

Metadata associated with this Service, including name, namespace, labels, and annotations. In Cloud Run, annotations with 'run.googleapis.com/' and 'autoscaling.knative.dev' are restricted, and the accepted annotations will be different depending on the resource type. The following Cloud Run-specific annotations are accepted in Service.metadata.annotations. * run.googleapis.com/binary-authorization-breakglass * run.googleapis.com/binary-authorization * run.googleapis.com/client-name * run.googleapis.com/custom-audiences * run.googleapis.com/default-url-disabled * run.googleapis.com/description * run.googleapis.com/gc-traffic-tags * run.googleapis.com/ingress * run.googleapis.com/ingress sets the ingress settings for the Service. See the ingress settings documentation for details on configuring ingress settings. * run.googleapis.com/ingress-status is output-only and contains the currently active ingress settings for the Service. run.googleapis.com/ingress-status may differ from run.googleapis.com/ingress while the system is processing a change to run.googleapis.com/ingress or if the system failed to process a change to run.googleapis.com/ingress. When the system has processed all changes successfully run.googleapis.com/ingress-status and run.googleapis.com/ingress are equal.

object (ServiceSpec)

Holds the desired state of the Service (from the client).

object (ServiceStatus)

Communicates the system-controlled state of the Service.

object (RevisionTemplate)

Holds the latest specification for the Revision to be stamped out.

object (TrafficTarget)

Specifies how to distribute traffic over a collection of Knative Revisions and Configurations to the Service's main URL.

object (Addressable)

Similar to url, information on where the service is available on HTTP.

object (GoogleCloudRunV1Condition)

Conditions communicate information about ongoing/complete reconciliation processes that bring the spec inline with the observed state of the world. Service-specific conditions include: * ConfigurationsReady: True when the underlying Configuration is ready. * RoutesReady: True when the underlying Route is ready. * Ready: True when all underlying resources are ready.

string

Name of the last revision that was created from this Service's Configuration. It might not be ready yet, for that use LatestReadyRevisionName.

string

Name of the latest Revision from this Service's Configuration that has had its Ready condition become True.

integer (int32 format)

Returns the generation last seen by the system. Clients polling for completed reconciliation should poll until observedGeneration = metadata.generation and the Ready condition's status is True or False.

object (TrafficTarget)

Holds the configured traffic distribution. These entries will always contain RevisionName references. When ConfigurationName appears in the spec, this will hold the LatestReadyRevisionName that we last observed.

string

URL that will distribute traffic over the provided traffic targets. It generally has the form https://{route-hash}-{project-hash}-{cluster-level-suffix}.a.run.app

object (Policy)

REQUIRED: The complete policy to be applied to the resource. The size of the policy is limited to a few 10s of KB. An empty policy is a valid policy but certain Google Cloud services (such as Projects) might reject them.

string (FieldMask format)

OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only the fields in the mask will be modified. If no mask is provided, the following default mask is used: paths: "bindings, etag"

integer (int32 format)

Suggested HTTP return code for this status, 0 if not set.

object (StatusDetails)

Extended data associated with the reason. Each reason may define its own extended details. This field is optional and the data returned is not guaranteed to conform to any schema except that defined by the reason type.

string

A human-readable description of the status of this operation.

object (ListMeta)

Standard list metadata.

string

A machine-readable description of why this operation is in the "Failure" status. If this value is empty there is no information available. A Reason clarifies an HTTP status code but does not override it.

string

Status of the operation. One of: "Success" or "Failure".

string

The field of the resource that has caused this error, as named by its JSON serialization. May include dot and postfix notation for nested attributes. Arrays are zero-indexed. Fields may appear more than once in an array of causes due to fields having multiple errors. Examples: "name" - the field "name" on the current resource "items[0].name" - the field "name" on the first array entry in "items"

string

A human-readable description of the cause of the error. This field may be presented as-is to a reader.

string

A machine-readable description of the cause of the error. If this value is empty there is no information available.

object (StatusCause)

The Causes array includes more details associated with the StatusReason failure. Not all StatusReasons may provide detailed causes.

string

The group attribute of the resource associated with the status StatusReason.

string

The kind attribute of the resource associated with the status StatusReason. On some operations may differ from the requested resource Kind.

string

The name attribute of the resource associated with the status StatusReason (when there is a single name which can be described).

integer (int32 format)

If specified, the time in seconds before the operation should be retried. Some errors may indicate the client must take an alternate action - for those errors this field may indicate how long to wait before taking the alternate action.

string

UID of the resource. (when there is a single resource which can be described).

string

Not supported by Cloud Run.

integer (int32 format)

Port number to access on the container. Number must be in the range 1 to 65535.

string

Optional. APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values.

string

Optional. Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase.

object (ObjectMeta)

Optional. Standard object's metadata.

object (TaskSpec)

Optional. Specification of the desired behavior of a task.

object (TaskStatus)

Output only. Current status of a task.

integer (int32 format)

Optional. The exit code of this attempt. This may be unset if the container was unable to exit cleanly with a code due to some other failure. See status field for possible failure details.

object (GoogleRpcStatus)

Optional. The status of this attempt. If the status code is OK, then the attempt succeeded.

object (Container)

Optional. List of containers belonging to the task. We disallow a number of fields on this Container.

integer (int32 format)

Optional. Number of retries allowed per task, before marking this job failed. Defaults to 3.

string

Optional. Email address of the IAM service account associated with the task of a job execution. The service account represents the identity of the running task, and determines what permissions the task has. If not provided, the task will use the project's default service account.

string (int64 format)

Optional. Duration in seconds the task may be active before the system will actively try to mark it failed and kill associated containers. This applies per attempt of a task, meaning each retry can run for the full timeout. Defaults to 600 seconds.

object (Volume)

Optional. List of volumes that can be mounted by containers belonging to the task.

string (Timestamp format)

Optional. Represents time when the task was completed. It is not guaranteed to be set in happens-before order across separate operations. It is represented in RFC3339 form and is in UTC.

object (GoogleCloudRunV1Condition)

Optional. Conditions communicate information about ongoing/complete reconciliation processes that bring the "spec" inline with the observed state of the world. Task-specific conditions include: * Started: True when the task has started to execute. * Completed: True when the task has succeeded. False when the task has failed.

integer (int32 format)

Required. Index of the task, unique per execution, and beginning at 0.

object (TaskAttemptResult)

Optional. Result of the last attempt of this task.

string

Optional. URI where logs for this task can be found in Cloud Console.

integer (int32 format)

Optional. The 'generation' of the task that was last processed by the controller.

integer (int32 format)

Optional. The number of times this task was retried. Instances are retried when they fail up to the maxRetries limit.

string (Timestamp format)

Optional. Represents time when the task started to run. It is not guaranteed to be set in happens-before order across separate operations. It is represented in RFC3339 form and is in UTC.

object (TaskSpec)

Optional. Specification of the desired behavior of the task.

string

The set of permissions to check for the resource. Permissions with wildcards (such as * or storage.*) are not allowed. For more information see IAM Overview.

string

A subset of TestPermissionsRequest.permissions that the caller is allowed.

string

[Deprecated] Not supported in Cloud Run. It must be empty.

boolean

Uses the "status.latestReadyRevisionName" of the Service to determine the traffic target. When it changes, traffic will automatically migrate from the prior "latest ready" revision to the new one. This field must be false if RevisionName is set. This field defaults to true otherwise. If the field is set to true on Status, this means that the Revision was resolved from the Service's latest ready revision.

integer (int32 format)

Percent specifies percent of the traffic to this Revision or Configuration. This defaults to zero if unspecified.

string

Points this traffic target to a specific Revision. This field is mutually exclusive with latest_revision.

string

Tag is used to expose a dedicated url for referencing this target exclusively.

string

Output only. URL displays the URL for accessing tagged traffic targets. URL is displayed in status, and is disallowed on spec. URL must contain a scheme (e.g. https://) and a hostname, but may not contain anything else (e.g. basic auth, url path, etc.)

object (ConfigMapVolumeSource)

Not supported in Cloud Run.

object (CSIVolumeSource)

Volume specified by the Container Storage Interface driver

object (EmptyDirVolumeSource)

Ephemeral storage used as a shared volume.

string

Volume's name. In Cloud Run Fully Managed, the name 'cloudsql' is reserved.

object (NFSVolumeSource)

(No description provided)

object (SecretVolumeSource)

The secret's value will be presented as the content of a file whose name is defined in the item path. If no items are defined, the name of the file is the secretName.

string

Required. Path within the container at which the volume should be mounted. Must not contain ':'.

string

Required. The name of the volume. There must be a corresponding Volume with the same name.

boolean

Sets the mount to be read-only or read-write. Not used by Cloud Run.

string

Path within the volume from which the container's volume should be mounted. Defaults to "" (volume's root).