diff --git a/gcloud/_version b/gcloud/_version index 3ddbdbfcb..a0514be81 100644 --- a/gcloud/_version +++ b/gcloud/_version @@ -1,8 +1,8 @@ -Google Cloud SDK 427.0.0 -alpha 2023.04.17 -beta 2023.04.17 +Google Cloud SDK 428.0.0 +alpha 2023.04.25 +beta 2023.04.25 bq 2.0.91 bundled-python3-unix 3.9.16 -core 2023.04.17 +core 2023.04.25 gcloud-crc32c 1.0.0 gsutil 5.23 diff --git a/gcloud/alpha/auth/application-default/print-access-token b/gcloud/alpha/auth/application-default/print-access-token index bf1f2b613..fbcac669b 100644 --- a/gcloud/alpha/auth/application-default/print-access-token +++ b/gcloud/alpha/auth/application-default/print-access-token @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha auth application-default print-access-token - [--scopes=SCOPE,[SCOPE,...]] [GCLOUD_WIDE_FLAG ...] + [--lifetime=LIFETIME] [--scopes=SCOPE,[SCOPE,...]] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) gcloud alpha auth application-default print-access-token generates @@ -42,6 +43,16 @@ DESCRIPTION https://cloud.google.com/apis/docs/system-parameters for more information. FLAGS + --lifetime=LIFETIME + Access token lifetime. The default access token lifetime is 3600 + seconds, but you can use this flag to reduce the lifetime or extend it + up to 43200 seconds (12 hours). The org policy constraint + constraints/iam.allowServiceAccountCredentialLifetimeExtension must be + set if you want to extend the lifetime beyond 3600 seconds. Note that + this flag is for service account impersonation only, so it only works + when either --impersonate-service-account flag or + auth/impersonate_service_account property is set. + --scopes=SCOPE,[SCOPE,...] The scopes to authorize for. This flag is supported for user accounts and service accounts only. The list of possible scopes can be found at: diff --git a/gcloud/alpha/bms/instances/help b/gcloud/alpha/bms/instances/help index d1454e7a2..0f4ed811e 100644 --- a/gcloud/alpha/bms/instances/help +++ b/gcloud/alpha/bms/instances/help @@ -30,6 +30,9 @@ COMMANDS list (ALPHA) List Bare Metal Solution instances in a project. + rename + (ALPHA) Rename a Bare Metal Solution instance. + reset (ALPHA) Reset a Bare Metal Solution instance. diff --git a/gcloud/alpha/bms/instances/rename b/gcloud/alpha/bms/instances/rename new file mode 100644 index 000000000..d23a3bcd2 --- /dev/null +++ b/gcloud/alpha/bms/instances/rename @@ -0,0 +1,62 @@ +NAME + gcloud alpha bms instances rename - rename a Bare Metal Solution instance + +SYNOPSIS + gcloud alpha bms instances rename (INSTANCE : --region=REGION) + --new-name=NEW_NAME [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Rename a Bare Metal Solution instance. + +EXAMPLES + To rename an instance my-instance to my-new-instance-name in region + us-central1, run: + + $ gcloud alpha bms instances rename my-instance \ + --new-name=my-new-instance-name --region=us-central1 \ + --project=bms-example-project + +POSITIONAL ARGUMENTS + Instance resource - instance. The arguments in this group can be used to + specify the attributes of this resource. (NOTE) Some attributes are not + given arguments in this group but can be set in other ways. To set the + project attribute: + ◆ provide the argument instance on the command line with a fully + specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + INSTANCE + ID of the instance or fully qualified identifier for the instance. To + set the instance attribute: + ▸ provide the argument instance on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --region=REGION + Region of the resource. To set the region attribute: + ▸ provide the argument instance on the command line with a fully + specified name; + ▸ provide the argument --region on the command line. + +REQUIRED FLAGS + --new-name=NEW_NAME + New instance name for renaming an already existing instance. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/compute/commitments/create b/gcloud/alpha/compute/commitments/create index cab7afa00..46e26e920 100644 --- a/gcloud/alpha/compute/commitments/create +++ b/gcloud/alpha/compute/commitments/create @@ -99,9 +99,9 @@ OPTIONAL FLAGS Type of commitment. memory-optimized indicates that the commitment is for memory-optimized VMs. TYPE must be one of: accelerator-optimized, compute-optimized, compute-optimized-c2d, compute-optimized-c3, - general-purpose, general-purpose-e2, general-purpose-n2, - general-purpose-n2d, general-purpose-t2d, graphics-optimized, - memory-optimized, memory-optimized-m3. + compute-optimized-c3d, general-purpose, general-purpose-e2, + general-purpose-n2, general-purpose-n2d, general-purpose-t2d, + graphics-optimized, memory-optimized, memory-optimized-m3. Manage the reservations to be created with the commitment. diff --git a/gcloud/alpha/compute/disks/create b/gcloud/alpha/compute/disks/create index 6c6f8964d..4f035e1f8 100644 --- a/gcloud/alpha/compute/disks/create +++ b/gcloud/alpha/compute/disks/create @@ -94,7 +94,7 @@ FLAGS https://cloud.google.com/compute/docs/images/create-delete-deprecate-private-images#guest-os-features. GUEST_OS_FEATURE must be one of: BARE_METAL_LINUX_COMPATIBLE, GVNIC, MULTI_IP_SUBNET, SEV_CAPABLE, SEV_LIVE_MIGRATABLE, SEV_SNP_CAPABLE, - UEFI_COMPATIBLE, VIRTIO_SCSI_MULTIQUEUE, WINDOWS. + TDX_CAPABLE, UEFI_COMPATIBLE, VIRTIO_SCSI_MULTIQUEUE, WINDOWS. --interface=INTERFACE Specifies the disk interface to use for attaching this disk. Valid diff --git a/gcloud/alpha/compute/images/create b/gcloud/alpha/compute/images/create index a413b1d14..38ba3e706 100644 --- a/gcloud/alpha/compute/images/create +++ b/gcloud/alpha/compute/images/create @@ -153,7 +153,7 @@ OPTIONAL FLAGS https://cloud.google.com/compute/docs/images/create-delete-deprecate-private-images#guest-os-features. GUEST_OS_FEATURE must be one of: BARE_METAL_LINUX_COMPATIBLE, GVNIC, MULTI_IP_SUBNET, SEV_CAPABLE, SEV_LIVE_MIGRATABLE, SEV_SNP_CAPABLE, - UEFI_COMPATIBLE, VIRTIO_SCSI_MULTIQUEUE, WINDOWS. + TDX_CAPABLE, UEFI_COMPATIBLE, VIRTIO_SCSI_MULTIQUEUE, WINDOWS. --key-exchange-key-file=[KEK_VALUE,...] Comma-separated list of file paths that point to X.509 certificates in diff --git a/gcloud/alpha/compute/routers/nats/create b/gcloud/alpha/compute/routers/nats/create index cf95b89cb..3a94f62f4 100644 --- a/gcloud/alpha/compute/routers/nats/create +++ b/gcloud/alpha/compute/routers/nats/create @@ -7,6 +7,7 @@ SYNOPSIS (--nat-all-subnet-ip-ranges | --nat-custom-subnet-ip-ranges=SUBNETWORK[:RANGE_NAME|ALL],[...] | --nat-primary-subnet-ip-ranges) [--async] + [--auto-network-tier=AUTO_NETWORK_TIER] [--[no-]enable-dynamic-port-allocation] [--enable-endpoint-independent-mapping] [--enable-logging] [--endpoint-types=[ENDPOINT_TYPE,...]] @@ -83,6 +84,17 @@ OPTIONAL FLAGS Return immediately, without waiting for the operation in progress to complete. + --auto-network-tier=AUTO_NETWORK_TIER + The network tier to use when automatically reserving NAT IP addresses. + AUTO_NETWORK_TIER must be one of: + + PREMIUM + High quality, Google-grade network tier with support for all + networking products. + STANDARD + Public internet quality, with only limited support for other + networking products. + --[no-]enable-dynamic-port-allocation Enable dynamic port allocation. diff --git a/gcloud/alpha/compute/routers/nats/update b/gcloud/alpha/compute/routers/nats/update index 1f33eebb6..9a5981219 100644 --- a/gcloud/alpha/compute/routers/nats/update +++ b/gcloud/alpha/compute/routers/nats/update @@ -4,6 +4,7 @@ NAME SYNOPSIS gcloud alpha compute routers nats update NAME --router=ROUTER [--async] + [--auto-network-tier=AUTO_NETWORK_TIER] [--[no-]enable-dynamic-port-allocation] [--enable-endpoint-independent-mapping] [--enable-logging] [--log-filter=LOG_FILTER] [--region=REGION] [--rules=RULES] @@ -70,6 +71,17 @@ OPTIONAL FLAGS Return immediately, without waiting for the operation in progress to complete. + --auto-network-tier=AUTO_NETWORK_TIER + The network tier to use when automatically reserving NAT IP addresses. + AUTO_NETWORK_TIER must be one of: + + PREMIUM + High quality, Google-grade network tier with support for all + networking products. + STANDARD + Public internet quality, with only limited support for other + networking products. + --[no-]enable-dynamic-port-allocation Enable dynamic port allocation. diff --git a/gcloud/alpha/compute/target-https-proxies/create b/gcloud/alpha/compute/target-https-proxies/create index 012ba230a..ba921ab4d 100644 --- a/gcloud/alpha/compute/target-https-proxies/create +++ b/gcloud/alpha/compute/target-https-proxies/create @@ -6,7 +6,9 @@ SYNOPSIS gcloud alpha compute target-https-proxies create NAME --url-map=URL_MAP [--certificate-map=CERTIFICATE_MAP] [--description=DESCRIPTION] [--proxy-bind] [--quic-override=QUIC_OVERRIDE; default="NONE"] - [--ssl-certificates=SSL_CERTIFICATE,[...]] [--ssl-policy=SSL_POLICY] + [--ssl-policy=SSL_POLICY] + [--certificate-manager-certificates=[CERTIFICATE_MANAGER_CERTIFICATES, + ...] | --ssl-certificates=SSL_CERTIFICATE,[...]] [--global | --region=REGION] [--global-ssl-certificates | --ssl-certificates-region=SSL_CERTIFICATES_REGION] @@ -89,19 +91,39 @@ OPTIONAL FLAGS NONE Allows Google to control when QUIC is rolled out. - --ssl-certificates=SSL_CERTIFICATE,[...] - References to at most 15 SSL certificate resources that are used for - server-side authentication. The first SSL certificate in this list is - considered the primary SSL certificate associated with the load - balancer. The SSL certificates must exist and cannot be deleted while - referenced by a target HTTPS proxy. - --ssl-policy=SSL_POLICY A reference to an SSL policy resource that defines the server-side support for SSL features and affects the connections between clients and the HTTPS proxy load balancer. The SSL policy must exist and cannot be deleted while referenced by a target HTTPS proxy. + At most one of these can be specified: + + Certificate resource - certificate-manager-certificates to attach. This + represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ▸ provide the argument --certificate-manager-certificates on the + command line with a fully specified name; + ▸ provide the argument --project on the command line; + ▸ set the property core/project. To set the location attribute: + ▸ provide the argument --certificate-manager-certificates on the + command line with a fully specified name; + ▸ default value of location is [global]. + + --certificate-manager-certificates=[CERTIFICATE_MANAGER_CERTIFICATES,...] + IDs of the certificates or fully qualified identifiers for the + certificates. To set the certificate attribute: + ▫ provide the argument --certificate-manager-certificates on the + command line. + + --ssl-certificates=SSL_CERTIFICATE,[...] + References to at most 15 SSL certificate resources that are used for + server-side authentication. The first SSL certificate in this list is + considered the primary SSL certificate associated with the load + balancer. The SSL certificates must exist and cannot be deleted while + referenced by a target HTTPS proxy. + At most one of these can be specified: --global diff --git a/gcloud/alpha/compute/target-https-proxies/update b/gcloud/alpha/compute/target-https-proxies/update index 4046ace80..a2e24d609 100644 --- a/gcloud/alpha/compute/target-https-proxies/update +++ b/gcloud/alpha/compute/target-https-proxies/update @@ -5,9 +5,11 @@ NAME SYNOPSIS gcloud alpha compute target-https-proxies update NAME [--quic-override=QUIC_OVERRIDE] [--url-map=URL_MAP] - [--certificate-map=CERTIFICATE_MAP | --clear-certificate-map + [--certificate-manager-certificates=[CERTIFICATE_MANAGER_CERTIFICATES, + ...] | --clear-ssl-certificates | --ssl-certificates=SSL_CERTIFICATE,[...] --global-ssl-certificates - | --ssl-certificates-region=SSL_CERTIFICATES_REGION] + | --ssl-certificates-region=SSL_CERTIFICATES_REGION + | --certificate-map=CERTIFICATE_MAP | --clear-certificate-map] [--clear-ssl-policy | --ssl-policy=SSL_POLICY --global-ssl-policy | --ssl-policy-region=SSL_POLICY_REGION] [--global | --region=REGION] [--global-url-map | --url-map-region=URL_MAP_REGION] @@ -73,32 +75,33 @@ FLAGS At most one of these can be specified: - Certificate map resource - The certificate map to attach. This - represents a Cloud resource. (NOTE) Some attributes are not given + Certificate resource - certificate-manager-certificates to attach. + This represents a Cloud resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: - ▫ provide the argument --certificate-map on the command line with a - fully specified name; + ▫ provide the argument --certificate-manager-certificates on the + command line with a fully specified name; ▫ provide the argument --project on the command line; ▫ set the property core/project. To set the location attribute: - ▫ provide the argument --certificate-map on the command line with a - fully specified name; + ▫ provide the argument --certificate-manager-certificates on the + command line with a fully specified name; ▫ default value of location is [global]. - --certificate-map=CERTIFICATE_MAP - ID of the certificate map or fully qualified identifier for the - certificate map. To set the map attribute: - ◇ provide the argument --certificate-map on the command line. + --certificate-manager-certificates=[CERTIFICATE_MANAGER_CERTIFICATES,...] + IDs of the certificates or fully qualified identifiers for the + certificates. To set the certificate attribute: + ◇ provide the argument --certificate-manager-certificates on + the command line. - --clear-certificate-map - Removes any attached certificate map from the HTTPS proxy. + --clear-ssl-certificates + Remove any attached SSL certificates from the HTTPS proxy. - --ssl-certificates=SSL_CERTIFICATE,[...] - References to at most 15 SSL certificate resources that are used for - server-side authentication. The first SSL certificate in this list is - considered the primary SSL certificate associated with the load - balancer. The SSL certificates must exist and cannot be deleted while - referenced by a target HTTPS proxy. + --ssl-certificates=SSL_CERTIFICATE,[...] + References to at most 15 SSL certificate resources that are used + for server-side authentication. The first SSL certificate in this + list is considered the primary SSL certificate associated with the + load balancer. The SSL certificates must exist and cannot be + deleted while referenced by a target HTTPS proxy. At most one of these can be specified: @@ -125,6 +128,28 @@ FLAGS Alternatively, the region can be stored in the environment variable CLOUDSDK_COMPUTE_REGION. + At most one of these can be specified: + + Certificate map resource - The certificate map to attach. This + represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the + project attribute: + ▫ provide the argument --certificate-map on the command line with a + fully specified name; + ▫ provide the argument --project on the command line; + ▫ set the property core/project. To set the location attribute: + ▫ provide the argument --certificate-map on the command line with a + fully specified name; + ▫ default value of location is [global]. + + --certificate-map=CERTIFICATE_MAP + ID of the certificate map or fully qualified identifier for the + certificate map. To set the map attribute: + ◇ provide the argument --certificate-map on the command line. + + --clear-certificate-map + Removes any attached certificate map from the HTTPS proxy. + At most one of these can be specified: --clear-ssl-policy diff --git a/gcloud/alpha/compute/target-ssl-proxies/update b/gcloud/alpha/compute/target-ssl-proxies/update index c8c6367f1..753ecdf9a 100644 --- a/gcloud/alpha/compute/target-ssl-proxies/update +++ b/gcloud/alpha/compute/target-ssl-proxies/update @@ -69,7 +69,7 @@ FLAGS referenced by a target SSL proxy. --clear-ssl-certificates - Removes any attached SSL Certificates from the SSL proxy. + Remove any attached SSL certificates from the SSL proxy. Certificate map resource - The certificate map to attach. This represents a Cloud resource. (NOTE) Some attributes are not given diff --git a/gcloud/alpha/compute/tpus/queued-resources/create b/gcloud/alpha/compute/tpus/queued-resources/create index 0f21c5ba1..2a8112234 100644 --- a/gcloud/alpha/compute/tpus/queued-resources/create +++ b/gcloud/alpha/compute/tpus/queued-resources/create @@ -4,19 +4,20 @@ NAME SYNOPSIS gcloud alpha compute tpus queued-resources create - (QUEUED_RESOURCE : --zone=ZONE) --accelerator-type=ACCELERATOR_TYPE - --runtime-version=RUNTIME_VERSION + (QUEUED_RESOURCE : --zone=ZONE) --runtime-version=RUNTIME_VERSION + (--accelerator-type=ACCELERATOR_TYPE | --topology=TOPOLOGY --type=TYPE) (--node-id=NODE_ID | [--node-count=NODE_COUNT : --node-prefix=NODE_PREFIX]) [--async] - [--best-effort] [--guaranteed] [--internal-ips] + [--best-effort] [--data-disk=DATA_DISK] [--description=DESCRIPTION] + [--guaranteed] [--internal-ips] [--labels=[LABELS,...]] [--metadata=[METADATA,...]] [--metadata-from-file=[METADATA_FROM_FILE,...]] - [--network=NETWORK; default="default"] + [--network=NETWORK; default="default"] [--range=RANGE] [--reservation-host-folder=RESERVATION_HOST_FOLDER] [--reservation-host-organization=RESERVATION_HOST_ORGANIZATION] [--reservation-host-project=RESERVATION_HOST_PROJECT] [--reserved] [--scopes=[SCOPES,...]] [--service-account=SERVICE_ACCOUNT] - [--subnetwork=SUBNETWORK] [--tags=[TAGS,...]] + [--shielded-secure-boot] [--subnetwork=SUBNETWORK] [--tags=[TAGS,...]] [--valid-after-duration=VALID_AFTER_DURATION] [--valid-after-time=VALID_AFTER_TIME] [--valid-until-duration=VALID_UNTIL_DURATION] @@ -73,12 +74,32 @@ POSITIONAL ARGUMENTS ▸ set the property compute/zone. REQUIRED FLAGS - --accelerator-type=ACCELERATOR_TYPE - Accelerator type for the TPU. - --runtime-version=RUNTIME_VERSION Runtime version for the TPU, such as 2.3. + Specify a chip-based or core-based TPU node. + + Exactly one of these must be specified: + + Core-based TPU configuration + + --accelerator-type=ACCELERATOR_TYPE + Accelerator type for the TPU. + + Chip-based TPU configuration + + --topology=TOPOLOGY + Chip topology for TPU. + + This flag argument must be specified if any of the other arguments + in this group are specified. + + --type=TYPE + Type of TPU. TYPE must be one of: v2, v3, v4. + + This flag argument must be specified if any of the other arguments + in this group are specified. + Specify TPU node(s) with either a single node id or a node count and an optional node prefix @@ -120,6 +141,30 @@ OPTIONAL FLAGS If provided, the Node requested here may be scheduled at the 'best effort' tier. + --data-disk=DATA_DISK + Additional data disks for the TPU VM. + + This flag must be repeated to provide multiple data disks. For example: + + $ gcloud alpha compute tpus queued-resources create \ + --data-disk \ + source=projects/my-project/zones/us-central1-c/disks/my-disk,\ + mode=read-only + + The following keys are allowed: + + source + Specifies the full path to an existing disk. Required. The disk + must be in the same zone. + + mode + Specifies the mode in which to attach this disk. Valid options are + 'read-write', 'read-only'. If not specified, the default is + 'read-write'. + + --description=DESCRIPTION + Text description of the TPU. + --guaranteed If provided, the Node requested here will only be scheduled at the 'guaranteed' tier. @@ -129,6 +174,10 @@ OPTIONAL FLAGS default is that external IP addresses will be associated with the TPU workers. + --labels=[LABELS,...] + Resource labels to represent user-provided metadata. See + https://cloud.google.com/compute/docs/labeling-resources for details. + --metadata=[METADATA,...] List of comma-separated metadata key-value pairs for the Cloud TPU VM node. Example: --metadata='key1=value1,key2=value2' @@ -140,6 +189,16 @@ OPTIONAL FLAGS --network=NETWORK; default="default" Network that this TPU will be a part of. + --range=RANGE + CIDR range for the TPU. + + The IP range that the TPU will select an IP address from. Must be in + CIDR notation and a /29 range, for example 192.168.0.0/29. Errors will + occur if the CIDR range has already been used for a currently existing + TPU, the CIDR range conflicts with any networks in the user's provided + network, or the provided network is peered with another network that is + using that CIDR range. + --reservation-host-folder=RESERVATION_HOST_FOLDER The folder hosting the reservation that the TPU should use. Only one reservation host entity may be specified. @@ -165,6 +224,10 @@ OPTIONAL FLAGS Email address of the service account. If empty, default Google Compute Engine service account will be used. + --shielded-secure-boot + Specifies that the TPU instances are created with secure boot enabled. + This implicitly makes them Shielded VM instances. + --subnetwork=SUBNETWORK Subnetwork that this TPU will be a part of. diff --git a/gcloud/alpha/container/aws/node-pools/create b/gcloud/alpha/container/aws/node-pools/create index bb4f68b64..ae8c5d174 100644 --- a/gcloud/alpha/container/aws/node-pools/create +++ b/gcloud/alpha/container/aws/node-pools/create @@ -6,11 +6,12 @@ SYNOPSIS gcloud alpha container aws node-pools create (NODE_POOL : --cluster=CLUSTER --location=LOCATION) --config-encryption-kms-key-arn=CONFIG_ENCRYPTION_KMS_KEY_ARN - --iam-instance-profile=IAM_INSTANCE_PROFILE --node-version=NODE_VERSION - --subnet-id=SUBNET_ID [--annotations=ANNOTATION,[ANNOTATION,...]] - [--async] [--image-type=IMAGE_TYPE] + --iam-instance-profile=IAM_INSTANCE_PROFILE + --max-pods-per-node=MAX_PODS_PER_NODE --node-version=NODE_VERSION + --subnet-id=SUBNET_ID (--max-nodes=MAX_NODES --min-nodes=MIN_NODES) + [--annotations=ANNOTATION,[ANNOTATION,...]] [--async] + [--enable-autorepair] [--image-type=IMAGE_TYPE] [--instance-placement=INSTANCE_PLACEMENT] - [--max-pods-per-node=MAX_PODS_PER_NODE] [--node-labels=NODE_LABEL,[NODE_LABEL,...]] [--node-taints=NODE_TAINT,[NODE_TAINT,...]] [--root-volume-iops=ROOT_VOLUME_IOPS] @@ -24,7 +25,6 @@ SYNOPSIS : --autoscaling-metrics=[AUTOSCALING_METRIC,...]] [--instance-type=INSTANCE_TYPE | --spot-instance-types=[INSTANCE_TYPE,...]] - [--max-nodes=MAX_NODES --min-nodes=MIN_NODES] [--proxy-secret-arn=PROXY_SECRET_ARN --proxy-secret-version-id=PROXY_SECRET_VERSION_ID] [GCLOUD_WIDE_FLAG ...] @@ -82,12 +82,31 @@ REQUIRED FLAGS --iam-instance-profile=IAM_INSTANCE_PROFILE Name or ARN of the IAM instance profile associated with the node pool. + --max-pods-per-node=MAX_PODS_PER_NODE + Maximum number of pods per node. + --node-version=NODE_VERSION Kubernetes version to use for the node pool. --subnet-id=SUBNET_ID Subnet ID of an existing VNET to use for the node pool. + Node pool autoscaling + + This must be specified. + + --max-nodes=MAX_NODES + Maximum number of nodes in the node pool. + + This flag argument must be specified if any of the other arguments in + this group are specified. + + --min-nodes=MIN_NODES + Minimum number of nodes in the node pool. + + This flag argument must be specified if any of the other arguments in + this group are specified. + OPTIONAL FLAGS --annotations=ANNOTATION,[ANNOTATION,...] Annotations for the node pool. @@ -96,6 +115,14 @@ OPTIONAL FLAGS Return immediately, without waiting for the operation in progress to complete. + --enable-autorepair + Enable node autorepair feature for a node pool. Use + --no-enable-autorepair to disable. + + $ gcloud alpha container aws node-pools create --enable-autorepair + + Node autorepair is disabled by default. + --image-type=IMAGE_TYPE Set the OS image type to use on node pool instances. @@ -108,9 +135,6 @@ OPTIONAL FLAGS Type of the tenancy. INSTANCE_PLACEMENT must be one of: dedicated, default, host. - --max-pods-per-node=MAX_PODS_PER_NODE - Maximum number of pods per node. - --node-labels=NODE_LABEL,[NODE_LABEL,...] Labels assigned to nodes of the node pool. @@ -179,20 +203,6 @@ OPTIONAL FLAGS (https://github.com/aws/amazon-ec2-instance-selector) to choose instance types with matching CPU and memory configurations. - Node pool autoscaling - - --max-nodes=MAX_NODES - Maximum number of nodes in the node pool. - - This flag argument must be specified if any of the other arguments in - this group are specified. - - --min-nodes=MIN_NODES - Minimum number of nodes in the node pool. - - This flag argument must be specified if any of the other arguments in - this group are specified. - Proxy config --proxy-secret-arn=PROXY_SECRET_ARN diff --git a/gcloud/alpha/container/aws/node-pools/update b/gcloud/alpha/container/aws/node-pools/update index 29c16eec7..82f3a49de 100644 --- a/gcloud/alpha/container/aws/node-pools/update +++ b/gcloud/alpha/container/aws/node-pools/update @@ -6,7 +6,7 @@ SYNOPSIS gcloud alpha container aws node-pools update (NODE_POOL : --cluster=CLUSTER --location=LOCATION) [--async] [--config-encryption-kms-key-arn=CONFIG_ENCRYPTION_KMS_KEY_ARN] - [--iam-instance-profile=IAM_INSTANCE_PROFILE] + [--enable-autorepair] [--iam-instance-profile=IAM_INSTANCE_PROFILE] [--node-version=NODE_VERSION] [--root-volume-iops=ROOT_VOLUME_IOPS] [--root-volume-kms-key-arn=ROOT_VOLUME_KMS_KEY_ARN] [--root-volume-size=ROOT_VOLUME_SIZE] @@ -76,6 +76,12 @@ FLAGS --config-encryption-kms-key-arn=CONFIG_ENCRYPTION_KMS_KEY_ARN Amazon Resource Name (ARN) of the AWS KMS key to encrypt the user data. + --enable-autorepair + Enable node autorepair feature for a node pool. Use + --no-enable-autorepair to disable. + + $ gcloud alpha container aws node-pools update --enable-autorepair + --iam-instance-profile=IAM_INSTANCE_PROFILE Name or ARN of the IAM instance profile associated with the node pool. diff --git a/gcloud/alpha/container/azure/node-pools/create b/gcloud/alpha/container/azure/node-pools/create index adcee2aeb..58f111fce 100644 --- a/gcloud/alpha/container/azure/node-pools/create +++ b/gcloud/alpha/container/azure/node-pools/create @@ -5,17 +5,18 @@ NAME SYNOPSIS gcloud alpha container azure node-pools create (NODE_POOL : --cluster=CLUSTER --location=LOCATION) - --node-version=NODE_VERSION --ssh-public-key=SSH_PUBLIC_KEY - --subnet-id=SUBNET_ID [--annotations=ANNOTATION,[ANNOTATION,...]] - [--async] [--azure-availability-zone=AZURE_AVAILABILITY_ZONE] + --max-pods-per-node=MAX_PODS_PER_NODE --node-version=NODE_VERSION + --ssh-public-key=SSH_PUBLIC_KEY --subnet-id=SUBNET_ID + (--max-nodes=MAX_NODES --min-nodes=MIN_NODES) + [--annotations=ANNOTATION,[ANNOTATION,...]] [--async] + [--azure-availability-zone=AZURE_AVAILABILITY_ZONE] [--config-encryption-key-id=CONFIG_ENCRYPTION_KEY_ID] [--config-encryption-public-key=CONFIG_ENCRYPTION_PUBLIC_KEY] - [--image-type=IMAGE_TYPE] [--max-pods-per-node=MAX_PODS_PER_NODE] + [--enable-autorepair] [--image-type=IMAGE_TYPE] [--node-labels=NODE_LABEL,[NODE_LABEL,...]] [--node-taints=NODE_TAINT,[NODE_TAINT,...]] [--root-volume-size=ROOT_VOLUME_SIZE] [--tags=TAG,[TAG,...]] [--validate-only] [--vm-size=VM_SIZE] - [--max-nodes=MAX_NODES --min-nodes=MIN_NODES] [--proxy-resource-group-id=PROXY_RESOURCE_GROUP_ID --proxy-secret-id=PROXY_SECRET_ID] [GCLOUD_WIDE_FLAG ...] @@ -66,6 +67,9 @@ POSITIONAL ARGUMENTS ▸ set the property container_azure/location. REQUIRED FLAGS + --max-pods-per-node=MAX_PODS_PER_NODE + Maximum number of pods per node. + --node-version=NODE_VERSION Kubernetes version to use for the node pool. @@ -75,6 +79,22 @@ REQUIRED FLAGS --subnet-id=SUBNET_ID Subnet ID of an existing VNET to use for the node pool. + Node pool autoscaling + + This must be specified. + + --max-nodes=MAX_NODES + Maximum number of nodes in the node pool. + + This flag argument must be specified if any of the other arguments in + this group are specified. + + --min-nodes=MIN_NODES + Minimum number of nodes in the node pool. + + This flag argument must be specified if any of the other arguments in + this group are specified. + OPTIONAL FLAGS --annotations=ANNOTATION,[ANNOTATION,...] Annotations for the node pool. @@ -94,6 +114,14 @@ OPTIONAL FLAGS RSA key of the Azure Key Vault public key to use for encrypting config data. + --enable-autorepair + Enable node autorepair feature for a node pool. Use + --no-enable-autorepair to disable. + + $ gcloud alpha container azure node-pools create --enable-autorepair + + Node autorepair is disabled by default. + --image-type=IMAGE_TYPE Set the OS image type to use on node pool instances. @@ -102,9 +130,6 @@ OPTIONAL FLAGS $ gcloud alpha container azure node-pools create --image-type=windows $ gcloud alpha container azure node-pools create --image-type=ubuntu - --max-pods-per-node=MAX_PODS_PER_NODE - Maximum number of pods per node. - --node-labels=NODE_LABEL,[NODE_LABEL,...] Labels assigned to nodes of the node pool. @@ -130,20 +155,6 @@ OPTIONAL FLAGS --vm-size=VM_SIZE Azure Virtual Machine Size (e.g. Standard_DS1_v). - Node pool autoscaling - - --max-nodes=MAX_NODES - Maximum number of nodes in the node pool. - - This flag argument must be specified if any of the other arguments in - this group are specified. - - --min-nodes=MIN_NODES - Minimum number of nodes in the node pool. - - This flag argument must be specified if any of the other arguments in - this group are specified. - Proxy config --proxy-resource-group-id=PROXY_RESOURCE_GROUP_ID diff --git a/gcloud/alpha/container/azure/node-pools/update b/gcloud/alpha/container/azure/node-pools/update index 10d666a38..0b251f29e 100644 --- a/gcloud/alpha/container/azure/node-pools/update +++ b/gcloud/alpha/container/azure/node-pools/update @@ -5,8 +5,8 @@ NAME SYNOPSIS gcloud alpha container azure node-pools update (NODE_POOL : --cluster=CLUSTER --location=LOCATION) [--async] - [--node-version=NODE_VERSION] [--ssh-public-key=SSH_PUBLIC_KEY] - [--validate-only] + [--enable-autorepair] [--node-version=NODE_VERSION] + [--ssh-public-key=SSH_PUBLIC_KEY] [--validate-only] [--annotations=ANNOTATION,[ANNOTATION,...] | --clear-annotations] [--max-nodes=MAX_NODES --min-nodes=MIN_NODES] [GCLOUD_WIDE_FLAG ...] @@ -60,6 +60,12 @@ FLAGS Return immediately, without waiting for the operation in progress to complete. + --enable-autorepair + Enable node autorepair feature for a node pool. Use + --no-enable-autorepair to disable. + + $ gcloud alpha container azure node-pools update --enable-autorepair + --node-version=NODE_VERSION Kubernetes version to use for the node pool. diff --git a/gcloud/alpha/container/bare-metal/admin-clusters/help b/gcloud/alpha/container/bare-metal/admin-clusters/help index 9f7f63a1a..884e4b608 100644 --- a/gcloud/alpha/container/bare-metal/admin-clusters/help +++ b/gcloud/alpha/container/bare-metal/admin-clusters/help @@ -33,6 +33,10 @@ COMMANDS (ALPHA) Query versions for creating or upgrading an Anthos on bare metal admin cluster. + unenroll + (ALPHA) Unenroll an Anthos on bare metal admin cluster so that it is no + longer managed by the Anthos On-Prem API. + update (ALPHA) Update an Anthos on bare metal admin cluster. diff --git a/gcloud/alpha/container/bare-metal/admin-clusters/unenroll b/gcloud/alpha/container/bare-metal/admin-clusters/unenroll new file mode 100644 index 000000000..73f0679fc --- /dev/null +++ b/gcloud/alpha/container/bare-metal/admin-clusters/unenroll @@ -0,0 +1,78 @@ +NAME + gcloud alpha container bare-metal admin-clusters unenroll - unenroll an + Anthos on bare metal admin cluster so that it is no longer managed by + the Anthos On-Prem API + +SYNOPSIS + gcloud alpha container bare-metal admin-clusters unenroll + (ADMIN_CLUSTER : --location=LOCATION) [--allow-missing] [--async] + [--validate-only] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Unenroll an Anthos on bare metal admin cluster so that it is no + longer managed by the Anthos On-Prem API. + +EXAMPLES + To unenroll an admin cluster named my-cluster managed in location us-west1, + run: + + $ gcloud alpha container bare-metal admin-clusters unenroll \ + my-cluster --location=us-west1 + +POSITIONAL ARGUMENTS + Admin cluster resource - admin cluster to unenroll The arguments in this + group can be used to specify the attributes of this resource. (NOTE) Some + attributes are not given arguments in this group but can be set in other + ways. To set the project attribute: + ◆ provide the argument admin_cluster on the command line with a fully + specified name; + ◆ provide the argument --project on the command line; + ◆ set the property core/project. + + This must be specified. + + ADMIN_CLUSTER + ID of the admin_cluster or fully qualified identifier for the + admin_cluster. To set the admin_cluster attribute: + ▸ provide the argument admin_cluster on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + Google Cloud location for the admin_cluster. To set the location + attribute: + ▸ provide the argument admin_cluster on the command line with a + fully specified name; + ▸ provide the argument --location on the command line; + ▸ set the property container_bare_metal/location. + +FLAGS + --allow-missing + If set, and the Bare Metal cluster is not found, the request will + succeed but no action will be taken. + + --async + Return immediately, without waiting for the operation in progress to + complete. + + --validate-only + If set, only validate the request, but do not actually perform the + operation. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. This variant is also available: + + $ gcloud beta container bare-metal admin-clusters unenroll + diff --git a/gcloud/alpha/container/bare-metal/clusters/update b/gcloud/alpha/container/bare-metal/clusters/update index a655ca634..83f1344f4 100644 --- a/gcloud/alpha/container/bare-metal/clusters/update +++ b/gcloud/alpha/container/bare-metal/clusters/update @@ -9,6 +9,8 @@ SYNOPSIS [--enable-application-logs] [--login-user=LOGIN_USER] [--maintenance-address-cidr-blocks=[MAINTENANCE_ADDRESS_CIDR_BLOCKS, ...]] [--validate-only] [--version=VERSION] + [--add-annotations=[KEY1=VALUE1,KEY2=VALUE2,...] + | --remove-annotations=[KEY1,KEY2,...]] [--api-server-args=[KEY=VALUE,...] --control-plane-node-configs=[labels=LABELS],[node-ip=NODE-IP] --control-plane-node-labels=[KEY=VALUE,...] @@ -120,6 +122,15 @@ FLAGS --version=VERSION Anthos cluster on bare metal version for the user cluster resource. + At most one of these can be specified: + + --add-annotations=[KEY1=VALUE1,KEY2=VALUE2,...] + Add the given key-value pairs to the current annotations, or update + its value if the key already exists. + + --remove-annotations=[KEY1,KEY2,...] + Remove annotations of the given keys. + Anthos on bare metal cluster control plane configuration. --api-server-args=[KEY=VALUE,...] diff --git a/gcloud/alpha/container/bare-metal/help b/gcloud/alpha/container/bare-metal/help index 07fae3310..42ab566d4 100644 --- a/gcloud/alpha/container/bare-metal/help +++ b/gcloud/alpha/container/bare-metal/help @@ -30,6 +30,9 @@ GROUPS operations (ALPHA) Manage Anthos on bare metal long running operations. + standalone-clusters + (ALPHA) Create and manage standalone clusters in Anthos on bare metal. + NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct diff --git a/gcloud/alpha/container/bare-metal/standalone-clusters/describe b/gcloud/alpha/container/bare-metal/standalone-clusters/describe new file mode 100644 index 000000000..73b24c15f --- /dev/null +++ b/gcloud/alpha/container/bare-metal/standalone-clusters/describe @@ -0,0 +1,59 @@ +NAME + gcloud alpha container bare-metal standalone-clusters describe - describe + an Anthos on bare metal standalone cluster + +SYNOPSIS + gcloud alpha container bare-metal standalone-clusters describe + (STANDALONE_CLUSTER : --location=LOCATION) [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Describe an Anthos on bare metal standalone cluster. + +EXAMPLES + To describe a cluster named my-cluster managed in location us-west1, run: + + $ gcloud alpha container bare-metal standalone-clusters describe \ + my-cluster --location=us-west1 + +POSITIONAL ARGUMENTS + Standalone cluster resource - standalone cluster to describe The arguments + in this group can be used to specify the attributes of this resource. + (NOTE) Some attributes are not given arguments in this group but can be + set in other ways. To set the project attribute: + ◆ provide the argument standalone_cluster on the command line with a + fully specified name; + ◆ provide the argument --project on the command line; + ◆ set the property core/project. + + This must be specified. + + STANDALONE_CLUSTER + ID of the standalone_cluster or fully qualified identifier for the + standalone_cluster. To set the standalone_cluster attribute: + ▸ provide the argument standalone_cluster on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + Google Cloud location for the standalone_cluster. To set the location + attribute: + ▸ provide the argument standalone_cluster on the command line with + a fully specified name; + ▸ provide the argument --location on the command line; + ▸ set the property container_bare_metal/location. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/container/bare-metal/standalone-clusters/enroll b/gcloud/alpha/container/bare-metal/standalone-clusters/enroll new file mode 100644 index 000000000..50321b45d --- /dev/null +++ b/gcloud/alpha/container/bare-metal/standalone-clusters/enroll @@ -0,0 +1,100 @@ +NAME + gcloud alpha container bare-metal standalone-clusters enroll - enroll an + Anthos on bare metal standalone cluster + +SYNOPSIS + gcloud alpha container bare-metal standalone-clusters enroll + (STANDALONE_CLUSTER : --location=LOCATION) + (--membership=MEMBERSHIP : --membership-location=MEMBERSHIP_LOCATION + --membership-project=MEMBERSHIP_PROJECT) [--async] + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Enroll an Anthos on bare metal standalone cluster. + +EXAMPLES + To enroll a cluster named my-cluster managed in location us-west1 with + cluster membership of + projects/my-project/locations/us-west1/memberships/my-membership, run: + + $ gcloud alpha container bare-metal standalone-clusters enroll \ + my-cluster --location=us-west1 \ + --membership=projects/my-project/locations/us-west1/\ + memberships/my-membership + +POSITIONAL ARGUMENTS + Standalone cluster resource - standalone cluster to enroll The arguments + in this group can be used to specify the attributes of this resource. + (NOTE) Some attributes are not given arguments in this group but can be + set in other ways. To set the project attribute: + ◆ provide the argument standalone_cluster on the command line with a + fully specified name; + ◆ provide the argument --project on the command line; + ◆ set the property core/project. + + This must be specified. + + STANDALONE_CLUSTER + ID of the standalone_cluster or fully qualified identifier for the + standalone_cluster. To set the standalone_cluster attribute: + ▸ provide the argument standalone_cluster on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + Google Cloud location for the standalone_cluster. To set the location + attribute: + ▸ provide the argument standalone_cluster on the command line with + a fully specified name; + ▸ provide the argument --location on the command line; + ▸ set the property container_bare_metal/location. + +REQUIRED FLAGS + Membership resource - membership of the standalone cluster. Membership can + be the membership ID or the full resource name. The arguments in this + group can be used to specify the attributes of this resource. + + This must be specified. + + --membership=MEMBERSHIP + ID of the membership or fully qualified identifier for the + membership. To set the membership attribute: + ▸ provide the argument --membership on the command line. + + This flag argument must be specified if any of the other arguments in + this group are specified. + + --membership-location=MEMBERSHIP_LOCATION + Google Cloud location for the membership. To set the location + attribute: + ▸ provide the argument --membership on the command line with a + fully specified name; + ▸ provide the argument --membership-location on the command line. + + --membership-project=MEMBERSHIP_PROJECT + Google Cloud project for the membership. To set the project + attribute: + ▸ provide the argument --membership on the command line with a + fully specified name; + ▸ provide the argument --membership-project on the command line. + +OPTIONAL FLAGS + --async + Return immediately, without waiting for the operation in progress to + complete. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/container/bare-metal/standalone-clusters/help b/gcloud/alpha/container/bare-metal/standalone-clusters/help new file mode 100644 index 000000000..e5843b482 --- /dev/null +++ b/gcloud/alpha/container/bare-metal/standalone-clusters/help @@ -0,0 +1,44 @@ +NAME + gcloud alpha container bare-metal standalone-clusters - create and manage + standalone clusters in Anthos on bare metal + +SYNOPSIS + gcloud alpha container bare-metal standalone-clusters COMMAND + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Create and manage standalone clusters in Anthos on bare metal. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --help. + + Run $ gcloud help for details. + +COMMANDS + COMMAND is one of the following: + + describe + (ALPHA) Describe an Anthos on bare metal standalone cluster. + + enroll + (ALPHA) Enroll an Anthos on bare metal standalone cluster. + + list + (ALPHA) List Anthos on bare metal standalone clusters. + + query-version-config + (ALPHA) Query versions for upgrading an Anthos on bare metal standalone + cluster. + + unenroll + (ALPHA) Unenroll an Anthos on bare metal standalone cluster. + + update + (ALPHA) Update an Anthos on bare metal standalone cluster. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/container/bare-metal/standalone-clusters/list b/gcloud/alpha/container/bare-metal/standalone-clusters/list new file mode 100644 index 000000000..128852934 --- /dev/null +++ b/gcloud/alpha/container/bare-metal/standalone-clusters/list @@ -0,0 +1,82 @@ +NAME + gcloud alpha container bare-metal standalone-clusters list - list Anthos on + bare metal standalone clusters + +SYNOPSIS + gcloud alpha container bare-metal standalone-clusters list + [--location=LOCATION] [--filter=EXPRESSION] [--limit=LIMIT] + [--page-size=PAGE_SIZE] [--sort-by=[FIELD,...]] [--uri] + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) List Anthos on bare metal standalone clusters. + +EXAMPLES + To lists all clusters managed in location us-west1, run: + + $ gcloud alpha container bare-metal standalone-clusters list \ + --location=us-west1 + +FLAGS + Location resource - Google Cloud location to list. This represents a Cloud + resource. (NOTE) Some attributes are not given arguments in this group but + can be set in other ways. To set the project attribute: + ◆ provide the argument --location on the command line with a fully + specified name; + ◆ set the property container_bare_metal/location with a fully specified + name; + ◆ provide the argument --project on the command line; + ◆ set the property core/project. + + --location=LOCATION + ID of the location or fully qualified identifier for the location. To + set the location attribute: + ▸ provide the argument --location on the command line; + ▸ set the property container_bare_metal/location. + +LIST COMMAND FLAGS + --filter=EXPRESSION + Apply a Boolean filter EXPRESSION to each resource item to be listed. + If the expression evaluates True, then that item is listed. For more + details and examples of filter expressions, run $ gcloud topic filters. + This flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --limit=LIMIT + Maximum number of resources to list. The default is unlimited. This + flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --page-size=PAGE_SIZE + Some services group resource list output into pages. This flag + specifies the maximum number of resources per page. The default is + determined by the service if it supports paging, otherwise it is + unlimited (no paging). Paging may be applied before or after --filter + and --limit depending on the service. + + --sort-by=[FIELD,...] + Comma-separated list of resource field key names to sort by. The + default order is ascending. Prefix a field with ``~'' for descending + order on that field. This flag interacts with other flags that are + applied in this order: --flatten, --sort-by, --filter, --limit. + + --uri + Print a list of resource URIs instead of the default output, and change + the command output to a list of URIs. If this flag is used with + --format, the formatting is applied on this URI list. To display URIs + alongside other keys instead, use the uri() transform. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/container/bare-metal/standalone-clusters/query-version-config b/gcloud/alpha/container/bare-metal/standalone-clusters/query-version-config new file mode 100644 index 000000000..82e05497a --- /dev/null +++ b/gcloud/alpha/container/bare-metal/standalone-clusters/query-version-config @@ -0,0 +1,75 @@ +NAME + gcloud alpha container bare-metal standalone-clusters query-version-config + - query versions for upgrading an Anthos on bare metal standalone + cluster + +SYNOPSIS + gcloud alpha container bare-metal standalone-clusters query-version-config + [--location=LOCATION] [--standalone-cluster=STANDALONE_CLUSTER] + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Query versions for upgrading an Anthos on bare metal standalone + cluster. + +EXAMPLES + To query versions for upgrading a standalone cluster named my-cluster in + location us-west1, run: + + $ gcloud alpha container bare-metal standalone-clusters \ query-version-config --location=us-west1 --cluster=my-cluster + +FLAGS + Location resource - Google Cloud location to query versions. This + represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ◆ provide the argument --location on the command line with a fully + specified name; + ◆ set the property container_bare_metal/location with a fully specified + name; + ◆ provide the argument --project on the command line; + ◆ set the property core/project. + + --location=LOCATION + ID of the location or fully qualified identifier for the location. To + set the location attribute: + ▸ provide the argument --location on the command line; + ▸ set the property container_bare_metal/location. + + Use cases for querying versions. + + Upgrade an Anthos on bare metal standalone cluster use case. + + Standalone cluster resource - Standalone cluster to query versions for + upgrade. This represents a Cloud resource. (NOTE) Some attributes are + not given arguments in this group but can be set in other ways. To set + the project attribute: + ▫ provide the argument --standalone-cluster on the command line + with a fully specified name; + ▫ provide the argument --project on the command line; + ▫ set the property core/project. To set the location attribute: + ▫ provide the argument --standalone-cluster on the command line + with a fully specified name; + ▫ provide the argument --location on the command line; + ▫ set the property container_bare_metal/location. + + --standalone-cluster=STANDALONE_CLUSTER + ID of the standalone_cluster or fully qualified identifier for + the standalone_cluster. To set the standalone_cluster attribute: + ◇ provide the argument --standalone-cluster on the command + line. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/container/bare-metal/standalone-clusters/unenroll b/gcloud/alpha/container/bare-metal/standalone-clusters/unenroll new file mode 100644 index 000000000..c6db2d6d6 --- /dev/null +++ b/gcloud/alpha/container/bare-metal/standalone-clusters/unenroll @@ -0,0 +1,70 @@ +NAME + gcloud alpha container bare-metal standalone-clusters unenroll - unenroll + an Anthos on bare metal standalone cluster + +SYNOPSIS + gcloud alpha container bare-metal standalone-clusters unenroll + (STANDALONE_CLUSTER : --location=LOCATION) [--allow-missing] [--async] + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Unenroll an Anthos on bare metal standalone cluster. + +EXAMPLES + To unenroll a standalone cluster named my-cluster managed in location + us-west1, run: + + $ gcloud alpha container bare-metal standalone-clusters unenroll \ + my-cluster --location=us-west1 + +POSITIONAL ARGUMENTS + Standalone cluster resource - standalone cluster to unenroll The arguments + in this group can be used to specify the attributes of this resource. + (NOTE) Some attributes are not given arguments in this group but can be + set in other ways. To set the project attribute: + ◆ provide the argument standalone_cluster on the command line with a + fully specified name; + ◆ provide the argument --project on the command line; + ◆ set the property core/project. + + This must be specified. + + STANDALONE_CLUSTER + ID of the standalone_cluster or fully qualified identifier for the + standalone_cluster. To set the standalone_cluster attribute: + ▸ provide the argument standalone_cluster on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + Google Cloud location for the standalone_cluster. To set the location + attribute: + ▸ provide the argument standalone_cluster on the command line with + a fully specified name; + ▸ provide the argument --location on the command line; + ▸ set the property container_bare_metal/location. + +FLAGS + --allow-missing + If set, and the Bare Metal standalone cluster is not found, the request + will succeed but no action will be taken. + + --async + Return immediately, without waiting for the operation in progress to + complete. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/container/bare-metal/standalone-clusters/update b/gcloud/alpha/container/bare-metal/standalone-clusters/update new file mode 100644 index 000000000..586a830b6 --- /dev/null +++ b/gcloud/alpha/container/bare-metal/standalone-clusters/update @@ -0,0 +1,257 @@ +NAME + gcloud alpha container bare-metal standalone-clusters update - update an + Anthos on bare metal standalone cluster + +SYNOPSIS + gcloud alpha container bare-metal standalone-clusters update + (STANDALONE_CLUSTER : --location=LOCATION) [--admin-users=ADMIN_USERS] + [--allow-missing] [--async] [--description=DESCRIPTION] + [--enable-application-logs] [--login-user=LOGIN_USER] + [--maintenance-address-cidr-blocks=[MAINTENANCE_ADDRESS_CIDR_BLOCKS, + ...]] [--validate-only] [--version=VERSION] + [--add-annotations=[KEY1=VALUE1,KEY2=VALUE2,...] + | --remove-annotations=[KEY1,KEY2,...]] + [--api-server-args=[KEY=VALUE,...] + --control-plane-node-configs=[labels=LABELS],[node-ip=NODE-IP] + --control-plane-node-labels=[KEY=VALUE,...] + --control-plane-node-taints=[KEY=VALUE:EFFECT,...]] + [--bgp-lb-address-pools=[addresses=ADDRESSES], + [avoid-buggy-ips=AVOID-BUGGY-IPS], + [manual-assign=MANUAL-ASSIGN],[pool=POOL] --bgp-lb-asn=BGP_LB_ASN + --bgp-lb-peer-configs=[asn=ASN], + [control-plane-nodes=CONTROL-PLANE-NODES],[ip-address=IP-ADDRESS] + --bgp-lb-load-balancer-node-configs=[labels=LABELS],[node-ip=NODE-IP] + --bgp-lb-load-balancer-node-labels=[KEY=VALUE,...] + --bgp-lb-load-balancer-node-taints=[KEY=VALUE:EFFECT,...] + | --metal-lb-address-pools=[addresses=ADDRESSES], + [avoid-buggy-ips=AVOID-BUGGY-IPS], + [manual-assign=MANUAL-ASSIGN],[pool=POOL] + --metal-lb-load-balancer-node-configs=[labels=LABELS], + [node-ip=NODE-IP] + --metal-lb-load-balancer-node-labels=[KEY=VALUE,...] + --metal-lb-load-balancer-node-taints=[KEY=VALUE:EFFECT,...]] + [--island-mode-service-address-cidr-blocks=SERVICE_ADDRESS,[...] + --disable-sr-iov-config | --enable-sr-iov-config] + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Update an Anthos on bare metal standalone cluster. + +EXAMPLES + To update a standalone cluster named my-cluster managed in location + us-west1, run: + + $ gcloud alpha container bare-metal standalone-clusters update \ + my-cluster --location=us-west1 + +POSITIONAL ARGUMENTS + Standalone cluster resource - standalone cluster to update The arguments + in this group can be used to specify the attributes of this resource. + (NOTE) Some attributes are not given arguments in this group but can be + set in other ways. To set the project attribute: + ◆ provide the argument standalone_cluster on the command line with a + fully specified name; + ◆ provide the argument --project on the command line; + ◆ set the property core/project. + + This must be specified. + + STANDALONE_CLUSTER + ID of the standalone_cluster or fully qualified identifier for the + standalone_cluster. To set the standalone_cluster attribute: + ▸ provide the argument standalone_cluster on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + Google Cloud location for the standalone_cluster. To set the location + attribute: + ▸ provide the argument standalone_cluster on the command line with + a fully specified name; + ▸ provide the argument --location on the command line; + ▸ set the property container_bare_metal/location. + +FLAGS + Anthos on bare metal standalone cluster security configuration. + + Cluster authorization configurations to bootstrap onto the standalone + cluster + + --admin-users=ADMIN_USERS + Users that will be granted the cluster-admin role on the cluster, + providing full access to the cluster. + + --allow-missing + If set, and the Anthos standalone cluster on bare metal is not found, + the update request will try to create a new standalone cluster with the + provided configuration. + + --async + Return immediately, without waiting for the operation in progress to + complete. + + --description=DESCRIPTION + Description for the resource. + + Anthos on bare metal standalone cluster operations configuration. + + --enable-application-logs + Whether collection of application logs/metrics should be enabled (in + addition to system logs/metrics). + + Anthos on bare metal node access related settings for the standalone + cluster. + + --login-user=LOGIN_USER + User name used to access node machines. + + Anthos on bare metal standalone cluster maintenance configuration. + + --maintenance-address-cidr-blocks=[MAINTENANCE_ADDRESS_CIDR_BLOCKS,...] + IPv4 addresses to be placed into maintenance mode. + + --validate-only + If set, only validate the request, but do not actually perform the + operation. + + --version=VERSION + Anthos on bare metal version for the standalone cluster resource. + + At most one of these can be specified: + + --add-annotations=[KEY1=VALUE1,KEY2=VALUE2,...] + Add the given key-value pairs to the current annotations, or update + its value if the key already exists. + + --remove-annotations=[KEY1,KEY2,...] + Remove annotations of the given keys. + + Anthos on bare metal standalone cluster control plane configuration. + + --api-server-args=[KEY=VALUE,...] + API Server argument configuration. + + Anthos on bare metal standalone cluster control plane node pool + configuration. + + Anthos on bare metal node pool configuration for control plane nodes. + + Anthos on bare metal node configuration for control plane nodes. + + Populate control plane node config. + + At most one of these can be specified: + + --control-plane-node-configs=[labels=LABELS],[node-ip=NODE-IP] + Control plane node configuration. + + --control-plane-node-labels=[KEY=VALUE,...] + Labels assigned to nodes of a node pool. + + --control-plane-node-taints=[KEY=VALUE:EFFECT,...] + Node taint applied to every Kubernetes node in a node pool. + + Anthos on bare metal standalone cluster load balancer configuration. + + Populate one of the load balancers. + + At most one of these can be specified: + + BGP LB Configuration + + BGP LB address pools configuration. + + At most one of these can be specified: + + --bgp-lb-address-pools=[addresses=ADDRESSES],[avoid-buggy-ips=AVOID-BUGGY-IPS],[manual-assign=MANUAL-ASSIGN],[pool=POOL] + BGP LB address pools configuration. + + --bgp-lb-asn=BGP_LB_ASN + BGP autonomous system number (ASN) of the cluster. + + BGP LB peer configuration. + + At most one of these can be specified: + + --bgp-lb-peer-configs=[asn=ASN],[control-plane-nodes=CONTROL-PLANE-NODES],[ip-address=IP-ADDRESS] + BGP LB peer configuration. + + Anthos on bare metal node pool configuration for BGP LB load + balancer nodes. + + BGP LB Node Pool configuration. + + Populate BGP LB load balancer node config. + + At most one of these can be specified: + + --bgp-lb-load-balancer-node-configs=[labels=LABELS],[node-ip=NODE-IP] + BGP LB load balancer node configuration. + + --bgp-lb-load-balancer-node-labels=[KEY=VALUE,...] + Labels assigned to nodes of a BGP LB node pool. + + --bgp-lb-load-balancer-node-taints=[KEY=VALUE:EFFECT,...] + Node taint applied to every node in a BGP LB node pool. + + MetalLB Configuration + + MetalLB address pools configuration. + + At most one of these can be specified: + + --metal-lb-address-pools=[addresses=ADDRESSES],[avoid-buggy-ips=AVOID-BUGGY-IPS],[manual-assign=MANUAL-ASSIGN],[pool=POOL] + MetalLB address pools configuration. + + Anthos on bare metal node pool configuration for MetalLB load + balancer nodes. + + MetalLB Node Pool configuration. + + Populate MetalLB load balancer node config. + + At most one of these can be specified: + + --metal-lb-load-balancer-node-configs=[labels=LABELS],[node-ip=NODE-IP] + MetalLB load balancer node configuration. + + --metal-lb-load-balancer-node-labels=[KEY=VALUE,...] + Labels assigned to nodes of a MetalLB node pool. + + --metal-lb-load-balancer-node-taints=[KEY=VALUE:EFFECT,...] + Node taint applied to every node in a MetalLB node pool. + + Anthos on bare metal standalone cluster network configuration. + + Populate one of the network configs. + + Island mode CIDR network configuration. + + --island-mode-service-address-cidr-blocks=SERVICE_ADDRESS,[...] + IPv4 address range for all services in the cluster. + + Anthos on bare metal standalone cluster SR-IOV configuration. + + At most one of these can be specified: + + --disable-sr-iov-config + If set, the SR-IOV operator won't be installed. + + --enable-sr-iov-config + If set, install the SR-IOV operator. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/container/clusters/config/export b/gcloud/alpha/container/clusters/config/export index 6f13c9375..9d35e9c80 100644 --- a/gcloud/alpha/container/clusters/config/export +++ b/gcloud/alpha/container/clusters/config/export @@ -3,10 +3,10 @@ NAME for a Container cluster SYNOPSIS - gcloud alpha container clusters config export - ([CLUSTER : --location=LOCATION] --all) [--path=PATH; default="-"] - [--resource-format=RESOURCE_FORMAT] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + gcloud alpha container clusters config export ([CLUSTER]] --all) + [--path=PATH; default="-"] [--resource-format=RESOURCE_FORMAT] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) gcloud alpha container clusters config export exports the @@ -43,28 +43,10 @@ EXAMPLES POSITIONAL ARGUMENTS Exactly one of these must be specified: - Cluster resource - Cluster to export the configuration for. The - arguments in this group can be used to specify the attributes of this - resource. (NOTE) Some attributes are not given arguments in this group - but can be set in other ways. To set the project attribute: - ▸ provide the argument cluster on the command line with a fully - specified name; - ▸ set the property core/project; - ▸ provide the argument --project on the command line. - - CLUSTER - ID of the cluster or fully qualified identifier for the cluster. To - set the cluster attribute: - ▫ provide the argument cluster on the command line. - - This positional argument must be specified if any of the other - arguments in this group are specified. - - --location=LOCATION - The location name To set the location attribute: - ▫ provide the argument cluster on the command line with a fully - specified name; - ▫ provide the argument --location on the command line. + CLUSTER + ID of the cluster or fully qualified identifier for the cluster. To + set the cluster attribute: + ▸ provide the argument cluster on the command line. --all Retrieve all resources within the project. If --path is specified and @@ -85,6 +67,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/clusters/config/help b/gcloud/alpha/container/clusters/config/help index 6a29347ce..5d330af72 100644 --- a/gcloud/alpha/container/clusters/config/help +++ b/gcloud/alpha/container/clusters/config/help @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha container clusters config COMMAND - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Manage Container cluster configurations. @@ -12,6 +13,10 @@ DESCRIPTION FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/clusters/create b/gcloud/alpha/container/clusters/create index feacc20f0..e94bed610 100644 --- a/gcloud/alpha/container/clusters/create +++ b/gcloud/alpha/container/clusters/create @@ -105,12 +105,12 @@ SYNOPSIS | --local-ssd-count=LOCAL_SSD_COUNT | --local-ssd-volumes=[[count=COUNT], [type=TYPE],[format=FORMAT],...]] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--maintenance-window=START_TIME | --maintenance-window-end=TIME_STAMP --maintenance-window-recurrence=RRULE --maintenance-window-start=TIME_STAMP] [--password=PASSWORD --enable-basic-auth | --username=USERNAME, -u USERNAME] - [--region=REGION | --zone=ZONE, -z ZONE] [--reservation=RESERVATION --reservation-affinity=RESERVATION_AFFINITY] [--scopes=[SCOPE,...]; default="gke-default" --service-account=SERVICE_ACCOUNT] @@ -1162,11 +1162,12 @@ FLAGS --node-locations=ZONE,[ZONE,...] The set of zones in which the specified node footprint should be replicated. All zones must be in the same region as the cluster's - master(s), specified by the --zone or --region flag. Additionally, - for zonal clusters, --node-locations must contain the cluster's - primary zone. If not specified, all nodes will be in the cluster's - primary zone (for zonal clusters) or spread across three randomly - chosen zones within the cluster's region (for regional clusters). + master(s), specified by the -location, --zone, or --region flag. + Additionally, for zonal clusters, --node-locations must contain the + cluster's primary zone. If not specified, all nodes will be in the + cluster's primary zone (for zonal clusters) or spread across three + randomly chosen zones within the cluster's region (for regional + clusters). Note that NUM_NODES nodes will be created in each zone, such that if you specify --num-nodes=4 and choose two locations, 8 nodes will be @@ -1176,7 +1177,7 @@ FLAGS example: $ gcloud alpha container clusters create example-cluster \ - --zone us-central1-a \ + --location us-central1-a \ --node-locations us-central1-a,us-central1-b Flags for Binary Authorization: @@ -1713,6 +1714,19 @@ FLAGS zone. See https://cloud.google.com/compute/docs/disks/local-ssd for more information. + At most one of these can be specified: + + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + + --region=REGION + Compute region (e.g. us-central1) for the cluster. + + --zone=ZONE, -z ZONE + Compute zone (e.g. us-central1-a) for the cluster. Overrides the + default compute/zone property value for this command invocation. + One of either maintenance-window or the group of maintenance-window flags can be set. @@ -1806,15 +1820,6 @@ FLAGS to specify a password; if not, the server will randomly generate one. - At most one of these can be specified: - - --region=REGION - Compute region (e.g. us-central1) for the cluster. - - --zone=ZONE, -z ZONE - Compute zone (e.g. us-central1-a) for the cluster. Overrides the - default compute/zone property value for this command invocation. - Specifies the reservation for the default initial node pool. --reservation=RESERVATION diff --git a/gcloud/alpha/container/clusters/create-auto b/gcloud/alpha/container/clusters/create-auto index 648fc7e22..1eacfe363 100644 --- a/gcloud/alpha/container/clusters/create-auto +++ b/gcloud/alpha/container/clusters/create-auto @@ -22,7 +22,7 @@ SYNOPSIS --master-authorized-networks=NETWORK,[NETWORK,...]] [--enable-private-endpoint --enable-private-nodes --master-ipv4-cidr=MASTER_IPV4_CIDR] - [--region=REGION | --zone=ZONE, -z ZONE] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--scopes=[SCOPE,...]; default="gke-default" --service-account=SERVICE_ACCOUNT] [GCLOUD_WIDE_FLAG ...] @@ -299,6 +299,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/clusters/delete b/gcloud/alpha/container/clusters/delete index 2c49d6773..3638cd7e2 100644 --- a/gcloud/alpha/container/clusters/delete +++ b/gcloud/alpha/container/clusters/delete @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha container clusters delete NAME [NAME ...] [--async] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) When you delete a cluster, the following resources are deleted: @@ -39,6 +40,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/clusters/describe b/gcloud/alpha/container/clusters/describe index c88226ed6..c9e69b3a4 100644 --- a/gcloud/alpha/container/clusters/describe +++ b/gcloud/alpha/container/clusters/describe @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha container clusters describe NAME - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Describe an existing cluster for running containers. @@ -21,6 +22,10 @@ POSITIONAL ARGUMENTS FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/clusters/get-credentials b/gcloud/alpha/container/clusters/get-credentials index 4c6eb057a..f534d0d1d 100644 --- a/gcloud/alpha/container/clusters/get-credentials +++ b/gcloud/alpha/container/clusters/get-credentials @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha container clusters get-credentials NAME [--internal-ip] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) gcloud alpha container clusters get-credentials updates a @@ -37,7 +38,7 @@ EXAMPLES To switch to working on your cluster 'sample-cluster', run: $ gcloud alpha container clusters get-credentials sample-cluster \ - --zone=us-central1-f + --location=us-central1-f POSITIONAL ARGUMENTS NAME @@ -50,6 +51,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/clusters/help b/gcloud/alpha/container/clusters/help index 2dea9d788..897215726 100644 --- a/gcloud/alpha/container/clusters/help +++ b/gcloud/alpha/container/clusters/help @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha container clusters GROUP | COMMAND - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) The gcloud container clusters command group lets you deploy and @@ -16,6 +17,10 @@ DESCRIPTION FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/clusters/list b/gcloud/alpha/container/clusters/list index 23e62ac8e..a2e87a3b8 100644 --- a/gcloud/alpha/container/clusters/list +++ b/gcloud/alpha/container/clusters/list @@ -4,15 +4,15 @@ NAME SYNOPSIS gcloud alpha container clusters list - [--region=REGION | --zone=ZONE, -z ZONE] [--filter=EXPRESSION] - [--limit=LIMIT] [--page-size=PAGE_SIZE] [--sort-by=[FIELD,...]] [--uri] - [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] + [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) List existing clusters for running containers. - This command queries cluster across all locations unless either '--region' - or '--zone' are specified. + This command queries cluster across all locations unless either + '--location', '--region', or '--zone' are specified. EXAMPLES To list existing clusters in all locations, run: @@ -22,6 +22,10 @@ EXAMPLES FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/clusters/resize b/gcloud/alpha/container/clusters/resize index fa297cb89..a68b06365 100644 --- a/gcloud/alpha/container/clusters/resize +++ b/gcloud/alpha/container/clusters/resize @@ -5,7 +5,8 @@ NAME SYNOPSIS gcloud alpha container clusters resize NAME (--num-nodes=NUM_NODES | --size=NUM_NODES) [--async] - [--node-pool=NODE_POOL] [--region=REGION | --zone=ZONE, -z ZONE] + [--node-pool=NODE_POOL] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] DESCRIPTION @@ -65,6 +66,10 @@ OPTIONAL FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/clusters/update b/gcloud/alpha/container/clusters/update index 76246a9cb..453882eea 100644 --- a/gcloud/alpha/container/clusters/update +++ b/gcloud/alpha/container/clusters/update @@ -79,10 +79,11 @@ SYNOPSIS [--istio-config=[auth=MTLS_PERMISSIVE,...]] [--master-authorized-networks=NETWORK,[NETWORK,...]] [--node-pool=NODE_POOL] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--location-policy=LOCATION_POLICY --max-nodes=MAX_NODES --min-nodes=MIN_NODES --total-max-nodes=TOTAL_MAX_NODES --total-min-nodes=TOTAL_MIN_NODES] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Update cluster settings for an existing container cluster. @@ -618,11 +619,12 @@ REQUIRED FLAGS --node-locations=ZONE,[ZONE,...] The set of zones in which the specified node footprint should be replicated. All zones must be in the same region as the cluster's - master(s), specified by the --zone or --region flag. Additionally, - for zonal clusters, --node-locations must contain the cluster's - primary zone. If not specified, all nodes will be in the cluster's - primary zone (for zonal clusters) or spread across three randomly - chosen zones within the cluster's region (for regional clusters). + master(s), specified by the -location, --zone, or --region flag. + Additionally, for zonal clusters, --node-locations must contain the + cluster's primary zone. If not specified, all nodes will be in the + cluster's primary zone (for zonal clusters) or spread across three + randomly chosen zones within the cluster's region (for regional + clusters). Note that NUM_NODES nodes will be created in each zone, such that if you specify --num-nodes=4 and choose two locations, 8 nodes will @@ -632,7 +634,7 @@ REQUIRED FLAGS example: $ gcloud alpha container clusters update example-cluster \ - --zone us-central1-a \ + --location us-central1-a \ --node-locations us-central1-a,us-central1-b Flags for Binary Authorization: @@ -1208,6 +1210,19 @@ OPTIONAL FLAGS --node-pool=NODE_POOL Node pool to be updated. + At most one of these can be specified: + + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + + --region=REGION + Compute region (e.g. us-central1) for the cluster. + + --zone=ZONE, -z ZONE + Compute zone (e.g. us-central1-a) for the cluster. Overrides the + default compute/zone property value for this command invocation. + Cluster autoscaling --location-policy=LOCATION_POLICY @@ -1249,15 +1264,6 @@ OPTIONAL FLAGS --node-pool (or default node pool if unspecified) can scale. Ignored unless --enable-autoscaling is also specified. - At most one of these can be specified: - - --region=REGION - Compute region (e.g. us-central1) for the cluster. - - --zone=ZONE, -z ZONE - Compute zone (e.g. us-central1-a) for the cluster. Overrides the - default compute/zone property value for this command invocation. - GCLOUD WIDE FLAGS These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, diff --git a/gcloud/alpha/container/clusters/upgrade b/gcloud/alpha/container/clusters/upgrade index 5eabb6894..71914a76d 100644 --- a/gcloud/alpha/container/clusters/upgrade +++ b/gcloud/alpha/container/clusters/upgrade @@ -6,7 +6,7 @@ SYNOPSIS gcloud alpha container clusters upgrade NAME [--async] [--cluster-version=CLUSTER_VERSION] [--image-type=IMAGE_TYPE] [--master] [--node-pool=NODE_POOL] - [--region=REGION | --zone=ZONE, -z ZONE] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--security-profile=SECURITY_PROFILE --security-profile-runtime-rules] [GCLOUD_WIDE_FLAG ...] @@ -94,6 +94,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/fleet/memberships/bindings/update b/gcloud/alpha/container/fleet/memberships/bindings/update index 330f3a050..c7770d068 100644 --- a/gcloud/alpha/container/fleet/memberships/bindings/update +++ b/gcloud/alpha/container/fleet/memberships/bindings/update @@ -72,8 +72,22 @@ REQUIRED FLAGS Bindings for all the membership related scopes in the fleet would be updated. - --scope=SCOPE - Scope related to the Binding. + Scope resource - The group of arguments defining the Fleet Scope. This + represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ▸ provide the argument --scope on the command line with a fully + specified name; + ▸ provide the argument --project on the command line; + ▸ set the property core/project. To set the location attribute: + ▸ provide the argument --scope on the command line with a fully + specified name; + ▸ global is the only supported location. + + --scope=SCOPE + ID of the scope or fully qualified identifier for the scope. To set + the scope attribute: + ▫ provide the argument --scope on the command line. GCLOUD WIDE FLAGS These flags are available to all commands: --access-token-file, --account, diff --git a/gcloud/alpha/container/get-server-config b/gcloud/alpha/container/get-server-config index 69f759202..51d60e592 100644 --- a/gcloud/alpha/container/get-server-config +++ b/gcloud/alpha/container/get-server-config @@ -4,8 +4,9 @@ NAME SYNOPSIS gcloud alpha container get-server-config - [--region=REGION | --zone=ZONE, -z ZONE] [--filter=EXPRESSION] - [--limit=LIMIT] [--sort-by=[FIELD,...]] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [--filter=EXPRESSION] [--limit=LIMIT] [--sort-by=[FIELD,...]] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Get Kubernetes Engine server config. @@ -18,6 +19,10 @@ EXAMPLES FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/hub/memberships/bindings/update b/gcloud/alpha/container/hub/memberships/bindings/update index dd1ad6553..517322444 100644 --- a/gcloud/alpha/container/hub/memberships/bindings/update +++ b/gcloud/alpha/container/hub/memberships/bindings/update @@ -72,8 +72,22 @@ REQUIRED FLAGS Bindings for all the membership related scopes in the fleet would be updated. - --scope=SCOPE - Scope related to the Binding. + Scope resource - The group of arguments defining the Fleet Scope. This + represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ▸ provide the argument --scope on the command line with a fully + specified name; + ▸ provide the argument --project on the command line; + ▸ set the property core/project. To set the location attribute: + ▸ provide the argument --scope on the command line with a fully + specified name; + ▸ global is the only supported location. + + --scope=SCOPE + ID of the scope or fully qualified identifier for the scope. To set + the scope attribute: + ▫ provide the argument --scope on the command line. GCLOUD WIDE FLAGS These flags are available to all commands: --access-token-file, --account, diff --git a/gcloud/alpha/container/node-pools/complete-upgrade b/gcloud/alpha/container/node-pools/complete-upgrade index e5f97749f..85e157c86 100644 --- a/gcloud/alpha/container/node-pools/complete-upgrade +++ b/gcloud/alpha/container/node-pools/complete-upgrade @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha container node-pools complete-upgrade NAME [--cluster=CLUSTER] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Complete a node pool upgrade. @@ -30,6 +31,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/node-pools/config/export b/gcloud/alpha/container/node-pools/config/export index 5e8b8cda4..a5d2c8f33 100644 --- a/gcloud/alpha/container/node-pools/config/export +++ b/gcloud/alpha/container/node-pools/config/export @@ -4,9 +4,10 @@ NAME SYNOPSIS gcloud alpha container node-pools config export - ([NODE_POOL : --cluster=CLUSTER --location=LOCATION] --all) - [--path=PATH; default="-"] [--resource-format=RESOURCE_FORMAT] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + ([NODE_POOL : --cluster=CLUSTER] --all) [--path=PATH; default="-"] + [--resource-format=RESOURCE_FORMAT] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) gcloud alpha container node-pools config export exports the @@ -50,7 +51,11 @@ POSITIONAL ARGUMENTS ▸ provide the argument node_pool on the command line with a fully specified name; ▸ set the property core/project; - ▸ provide the argument --project on the command line. + ▸ provide the argument --project on the command line. To set the + location attribute: + ▸ provide the argument node_pool on the command line with a fully + specified name; + ▸ provide the argument --location on the command line. NODE_POOL ID of the node pool or fully qualified identifier for the node @@ -66,12 +71,6 @@ POSITIONAL ARGUMENTS specified name; ▫ provide the argument --cluster on the command line. - --location=LOCATION - The location name To set the location attribute: - ▫ provide the argument node_pool on the command line with a fully - specified name; - ▫ provide the argument --location on the command line. - --all Retrieve all resources within the project. If --path is specified and is a valid directory, resources will be output as individual files @@ -91,6 +90,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/node-pools/config/help b/gcloud/alpha/container/node-pools/config/help index e4f47b247..26fb78a55 100644 --- a/gcloud/alpha/container/node-pools/config/help +++ b/gcloud/alpha/container/node-pools/config/help @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha container node-pools config COMMAND - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Manage Container node pool configurations. @@ -12,6 +13,10 @@ DESCRIPTION FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/node-pools/create b/gcloud/alpha/container/node-pools/create index d66563300..e9aef4a06 100644 --- a/gcloud/alpha/container/node-pools/create +++ b/gcloud/alpha/container/node-pools/create @@ -49,7 +49,7 @@ SYNOPSIS | --local-ssd-count=LOCAL_SSD_COUNT | --local-ssd-volumes=[[count=COUNT], [type=TYPE],[format=FORMAT],...]] - [--region=REGION | --zone=ZONE, -z ZONE] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--reservation=RESERVATION --reservation-affinity=RESERVATION_AFFINITY] [--scopes=[SCOPE,...]; default="gke-default" --service-account=SERVICE_ACCOUNT] @@ -371,7 +371,7 @@ FLAGS To create a sole tenant node group, run: $ gcloud compute sole-tenancy node-groups create [GROUP_NAME] \ - --zone [ZONE] --node-template [TEMPLATE_NAME] \ + --location [ZONE] --node-template [TEMPLATE_NAME] \ --target-size [TARGET_SIZE] See https://cloud.google.com/compute/docs/nodes for more information on @@ -811,6 +811,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/node-pools/delete b/gcloud/alpha/container/node-pools/delete index 80daed65e..6c79d731f 100644 --- a/gcloud/alpha/container/node-pools/delete +++ b/gcloud/alpha/container/node-pools/delete @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha container node-pools delete NAME [--async] [--cluster=CLUSTER] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) gcloud alpha container node-pools delete deletes a node pool from a @@ -37,6 +38,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/node-pools/describe b/gcloud/alpha/container/node-pools/describe index 5175ae68e..ee0635688 100644 --- a/gcloud/alpha/container/node-pools/describe +++ b/gcloud/alpha/container/node-pools/describe @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha container node-pools describe NAME [--cluster=CLUSTER] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) gcloud alpha container node-pools describe displays all data @@ -27,6 +28,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/node-pools/help b/gcloud/alpha/container/node-pools/help index 76ad8a458..be258b7e4 100644 --- a/gcloud/alpha/container/node-pools/help +++ b/gcloud/alpha/container/node-pools/help @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha container node-pools GROUP | COMMAND - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Create and delete operations for Google Kubernetes Engine node @@ -13,6 +14,10 @@ DESCRIPTION FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/node-pools/list b/gcloud/alpha/container/node-pools/list index ad245605e..bd3a62746 100644 --- a/gcloud/alpha/container/node-pools/list +++ b/gcloud/alpha/container/node-pools/list @@ -4,9 +4,9 @@ NAME SYNOPSIS gcloud alpha container node-pools list [--cluster=CLUSTER] - [--region=REGION | --zone=ZONE, -z ZONE] [--filter=EXPRESSION] - [--limit=LIMIT] [--page-size=PAGE_SIZE] [--sort-by=[FIELD,...]] [--uri] - [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] + [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) gcloud alpha container node-pools list displays all node pools in @@ -24,6 +24,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/node-pools/rollback b/gcloud/alpha/container/node-pools/rollback index c52ba4912..b50df04f9 100644 --- a/gcloud/alpha/container/node-pools/rollback +++ b/gcloud/alpha/container/node-pools/rollback @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha container node-pools rollback NAME [--async] [--cluster=CLUSTER] [--respect-pdb=RESPECT_PDB] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Rollback a node-pool upgrade. @@ -38,6 +39,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/node-pools/update b/gcloud/alpha/container/node-pools/update index 9c09d52cf..ff381fda8 100644 --- a/gcloud/alpha/container/node-pools/update +++ b/gcloud/alpha/container/node-pools/update @@ -24,7 +24,8 @@ SYNOPSIS --standard-rollout-policy=[batch-node-count=BATCH_NODE_COUNT, batch-percent=BATCH_NODE_PERCENTAGE, batch-soak-duration=BATCH_SOAK_DURATION,...]) [--async] - [--cluster=CLUSTER] [--region=REGION | --zone=ZONE, -z ZONE] + [--cluster=CLUSTER] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] DESCRIPTION @@ -404,6 +405,10 @@ OPTIONAL FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/operations/cancel b/gcloud/alpha/container/operations/cancel index 5c2ca2636..bd5b846fd 100644 --- a/gcloud/alpha/container/operations/cancel +++ b/gcloud/alpha/container/operations/cancel @@ -3,7 +3,8 @@ NAME SYNOPSIS gcloud alpha container operations cancel OPERATION_ID - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Cancel a running operation. @@ -28,6 +29,10 @@ POSITIONAL ARGUMENTS FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/operations/describe b/gcloud/alpha/container/operations/describe index b4a03c796..4bade324c 100644 --- a/gcloud/alpha/container/operations/describe +++ b/gcloud/alpha/container/operations/describe @@ -3,7 +3,8 @@ NAME SYNOPSIS gcloud alpha container operations describe OPERATION_ID - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Describe an operation. @@ -20,6 +21,10 @@ POSITIONAL ARGUMENTS FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/operations/help b/gcloud/alpha/container/operations/help index 4edb4e47a..40740ed1d 100644 --- a/gcloud/alpha/container/operations/help +++ b/gcloud/alpha/container/operations/help @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud alpha container operations COMMAND - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Get and list operations for Google Kubernetes Engine clusters. @@ -12,6 +13,10 @@ DESCRIPTION FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/operations/list b/gcloud/alpha/container/operations/list index d7900c9f6..95ed8d380 100644 --- a/gcloud/alpha/container/operations/list +++ b/gcloud/alpha/container/operations/list @@ -4,9 +4,9 @@ NAME SYNOPSIS gcloud alpha container operations list - [--region=REGION | --zone=ZONE, -z ZONE] [--filter=EXPRESSION] - [--limit=LIMIT] [--page-size=PAGE_SIZE] [--sort-by=[FIELD,...]] - [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] + [--sort-by=[FIELD,...]] [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) List operations for container clusters. @@ -19,6 +19,10 @@ EXAMPLES FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/container/operations/wait b/gcloud/alpha/container/operations/wait index 22b5d6758..b52187381 100644 --- a/gcloud/alpha/container/operations/wait +++ b/gcloud/alpha/container/operations/wait @@ -3,7 +3,8 @@ NAME SYNOPSIS gcloud alpha container operations wait OPERATION_ID - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Poll an operation for completion. @@ -20,6 +21,10 @@ POSITIONAL ARGUMENTS FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/alpha/database-migration/connection-profiles/create/cloudsql b/gcloud/alpha/database-migration/connection-profiles/create/cloudsql index 28c2d0282..bbbe82ce6 100644 --- a/gcloud/alpha/database-migration/connection-profiles/create/cloudsql +++ b/gcloud/alpha/database-migration/connection-profiles/create/cloudsql @@ -20,7 +20,8 @@ SYNOPSIS DESCRIPTION (ALPHA) Create a Database Migration Service destination connection profile - for Cloud SQL. This will create a Cloud SQL replica. + for Cloud SQL. This will create a Cloud SQL replica. Used for PostgreSQL + and MySQL migrations. EXAMPLES To create a connection profile for Cloud SQL with database version MySQL diff --git a/gcloud/alpha/database-migration/migration-jobs/create b/gcloud/alpha/database-migration/migration-jobs/create index 009323122..86b1297c0 100644 --- a/gcloud/alpha/database-migration/migration-jobs/create +++ b/gcloud/alpha/database-migration/migration-jobs/create @@ -16,7 +16,9 @@ DESCRIPTION steps before creating the migration job: ▪ Create a source connection profile. See prerequisites here (https://cloud.google.com/database-migration/docs/mysql/configure-source-database). - ▪ Create a destination connection profile. + ▪ Create a destination connection profile. For MySQL and PostgreSQL + migrations, use the cloudsql connection profile for DMS to create the + CloudSQL replica for you. ▪ Configure the connectivity method. See prerequisites here (https://cloud.google.com/database-migration/docs/mysql/configure-connectivity). diff --git a/gcloud/alpha/dataplex/datascan/create b/gcloud/alpha/dataplex/datascan/create index d154253b1..125d0dc0f 100644 --- a/gcloud/alpha/dataplex/datascan/create +++ b/gcloud/alpha/dataplex/datascan/create @@ -3,7 +3,9 @@ NAME SYNOPSIS gcloud alpha dataplex datascan create (DATASCAN : --location=LOCATION) - --data-source-entity=DATA_SOURCE_ENTITY --scan-type=SCAN_TYPE + --scan-type=SCAN_TYPE + (--data-source-entity=DATA_SOURCE_ENTITY + | --data-source-resource=DATA_SOURCE_RESOURCE) [--data-quality-spec-file=DATA_QUALITY_SPEC_FILE] [--description=DESCRIPTION] [--display-name=DISPLAY_NAME] [--labels=[KEY=VALUE,...]] [--async | --validate-only] @@ -54,16 +56,21 @@ POSITIONAL ARGUMENTS ▸ set the property dataplex/location. REQUIRED FLAGS + --scan-type=SCAN_TYPE + Specify the type of scan. SCAN_TYPE must be one of: PROFILE, QUALITY. + Data source for the Datascan. - This must be specified. + Exactly one of these must be specified: --data-source-entity=DATA_SOURCE_ENTITY Dataplex entity that contains the data for the Datascan, of the form: projects/{project_number}/locations/{location_id}/lakes/{lake_id}/zones/{zone_id}/entities/{entity_id}. - --scan-type=SCAN_TYPE - Specify the type of scan. SCAN_TYPE must be one of: PROFILE, QUALITY. + --data-source-resource=DATA_SOURCE_RESOURCE + Service-qualified full resource name of the cloud resource that + contains the data for the Datascan, of the form: + //bigquery.googleapis.com/projects/{project_number}/datasets/{dataset_id}/tables/{table_id}. OPTIONAL FLAGS Additional configuration arguments for the scan. diff --git a/gcloud/alpha/functions/deploy b/gcloud/alpha/functions/deploy index 9697da5ae..ed8fc3c94 100644 --- a/gcloud/alpha/functions/deploy +++ b/gcloud/alpha/functions/deploy @@ -3,7 +3,7 @@ NAME SYNOPSIS gcloud alpha functions deploy (NAME : --region=REGION) - [--allow-unauthenticated] [--buildpack-stack=BUILDPACK_STACK] + [--[no-]allow-unauthenticated] [--buildpack-stack=BUILDPACK_STACK] [--concurrency=CONCURRENCY] [--docker-registry=DOCKER_REGISTRY] [--egress-settings=EGRESS_SETTINGS] [--entry-point=ENTRY_POINT] [--gen2] [--ignore-file=IGNORE_FILE] @@ -93,9 +93,10 @@ POSITIONAL ARGUMENTS ▸ set the property functions/region. FLAGS - --allow-unauthenticated + --[no-]allow-unauthenticated If set, makes this a public function. This will allow all callers, - without checking authentication. + without checking authentication. Use --allow-unauthenticated to enable + and --no-allow-unauthenticated to disable. --buildpack-stack=BUILDPACK_STACK Specifies one of the Google provided buildpack stacks. diff --git a/gcloud/alpha/network-security/gateway-security-policies/delete b/gcloud/alpha/network-security/gateway-security-policies/delete index e917d98c5..ab6caa01c 100644 --- a/gcloud/alpha/network-security/gateway-security-policies/delete +++ b/gcloud/alpha/network-security/gateway-security-policies/delete @@ -68,7 +68,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security gateway-security-policies delete $ gcloud beta network-security gateway-security-policies delete diff --git a/gcloud/alpha/network-security/gateway-security-policies/export b/gcloud/alpha/network-security/gateway-security-policies/export index ce63d84db..c043f1980 100644 --- a/gcloud/alpha/network-security/gateway-security-policies/export +++ b/gcloud/alpha/network-security/gateway-security-policies/export @@ -71,7 +71,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security gateway-security-policies export $ gcloud beta network-security gateway-security-policies export diff --git a/gcloud/alpha/network-security/gateway-security-policies/help b/gcloud/alpha/network-security/gateway-security-policies/help index cabfb60df..24da1c2f5 100644 --- a/gcloud/alpha/network-security/gateway-security-policies/help +++ b/gcloud/alpha/network-security/gateway-security-policies/help @@ -18,7 +18,7 @@ GROUPS GROUP is one of the following: rules - (ALPHA) Manage Network Security GatewaySecurityPolicyRules. + (ALPHA) Manage Network Security Gateway Security Policy Rules. COMMANDS COMMAND is one of the following: @@ -39,7 +39,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security gateway-security-policies $ gcloud beta network-security gateway-security-policies diff --git a/gcloud/alpha/network-security/gateway-security-policies/import b/gcloud/alpha/network-security/gateway-security-policies/import index 800afe710..2e86f304e 100644 --- a/gcloud/alpha/network-security/gateway-security-policies/import +++ b/gcloud/alpha/network-security/gateway-security-policies/import @@ -77,7 +77,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security gateway-security-policies import $ gcloud beta network-security gateway-security-policies import diff --git a/gcloud/alpha/network-security/gateway-security-policies/list b/gcloud/alpha/network-security/gateway-security-policies/list index fbe0ed622..58458d4cf 100644 --- a/gcloud/alpha/network-security/gateway-security-policies/list +++ b/gcloud/alpha/network-security/gateway-security-policies/list @@ -83,7 +83,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security gateway-security-policies list $ gcloud beta network-security gateway-security-policies list diff --git a/gcloud/alpha/network-security/gateway-security-policies/rules/delete b/gcloud/alpha/network-security/gateway-security-policies/rules/delete index 98e75acf7..9c7e90d1b 100644 --- a/gcloud/alpha/network-security/gateway-security-policies/rules/delete +++ b/gcloud/alpha/network-security/gateway-security-policies/rules/delete @@ -1,6 +1,6 @@ NAME gcloud alpha network-security gateway-security-policies rules delete - - delete GatewaySecurityPolicyRule + delete Gateway Security Policy Rule SYNOPSIS gcloud alpha network-security gateway-security-policies rules delete @@ -9,21 +9,21 @@ SYNOPSIS --location=LOCATION) [--async] [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (ALPHA) Delete the specified GatewaySecurityPolicyRule. + (ALPHA) Delete the specified Gateway Security Policy Rule. EXAMPLES - To delete a GatewaySecurityPolicyRule called 'my-rule', run: + To delete a Gateway Security Policy Rule called 'my-rule', run: $ gcloud alpha network-security gateway-security-policies rules \ delete my-rule --location={region} \ --gateway-security-policy={policy-name} POSITIONAL ARGUMENTS - Gateway security policy rule resource - Name of the - GatewaySecurityPolicyRule you want to delete. The arguments in this group - can be used to specify the attributes of this resource. (NOTE) Some - attributes are not given arguments in this group but can be set in other - ways. To set the project attribute: + Gateway security policy rule resource - Name of the Gateway Security + Policy Rule you want to delete. The arguments in this group can be used to + specify the attributes of this resource. (NOTE) Some attributes are not + given arguments in this group but can be set in other ways. To set the + project attribute: ◆ provide the argument gateway_security_policy_rule on the command line with a fully specified name; ◆ set the property core/project; @@ -78,7 +78,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security gateway-security-policies rules delete $ gcloud beta network-security gateway-security-policies rules delete diff --git a/gcloud/alpha/network-security/gateway-security-policies/rules/export b/gcloud/alpha/network-security/gateway-security-policies/rules/export index a61083871..e8f33176e 100644 --- a/gcloud/alpha/network-security/gateway-security-policies/rules/export +++ b/gcloud/alpha/network-security/gateway-security-policies/rules/export @@ -1,6 +1,6 @@ NAME gcloud alpha network-security gateway-security-policies rules export - - export GatewaySecurityPolicyRule + export Gateway Security Policy Rule SYNOPSIS gcloud alpha network-security gateway-security-policies rules export @@ -10,21 +10,21 @@ SYNOPSIS [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (ALPHA) Export a GatewaySecurityPolicyRule. + (ALPHA) Export a Gateway Security Policy Rule. EXAMPLES - To export a GatewaySecurityPolicyRule, run: + To export a Gateway Security Policy Rule, run: $ gcloud alpha network-security gateway-security-policies rules \ export my-rule --destination=my-rule.yaml --location={region} \ --gateway-security-policy={policy-name} POSITIONAL ARGUMENTS - Gateway security policy rule resource - Name of the - GatewaySecurityPolicyRule to export. The arguments in this group can be - used to specify the attributes of this resource. (NOTE) Some attributes - are not given arguments in this group but can be set in other ways. To set - the project attribute: + Gateway security policy rule resource - Name of the Gateway Security + Policy Rule to export. The arguments in this group can be used to specify + the attributes of this resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: ◆ provide the argument gateway_security_policy_rule on the command line with a fully specified name; ◆ set the property core/project; @@ -82,7 +82,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security gateway-security-policies rules export $ gcloud beta network-security gateway-security-policies rules export diff --git a/gcloud/alpha/network-security/gateway-security-policies/rules/help b/gcloud/alpha/network-security/gateway-security-policies/rules/help index 9163a4796..ce8c1a51a 100644 --- a/gcloud/alpha/network-security/gateway-security-policies/rules/help +++ b/gcloud/alpha/network-security/gateway-security-policies/rules/help @@ -1,13 +1,13 @@ NAME gcloud alpha network-security gateway-security-policies rules - manage - Network Security GatewaySecurityPolicyRules + Network Security Gateway Security Policy Rules SYNOPSIS gcloud alpha network-security gateway-security-policies rules COMMAND [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (ALPHA) Manage Network Security GatewaySecurityPolicyRules. + (ALPHA) Manage Network Security Gateway Security Policy Rules. GCLOUD WIDE FLAGS These flags are available to all commands: --help. @@ -18,22 +18,24 @@ COMMANDS COMMAND is one of the following: delete - (ALPHA) Delete GatewaySecurityPolicyRule. + (ALPHA) Delete Gateway Security Policy Rule. export - (ALPHA) Export GatewaySecurityPolicyRule. + (ALPHA) Export Gateway Security Policy Rule. import - (ALPHA) Import GatewaySecurityPolicy. + (ALPHA) Import Gateway Security Policy Rule. list - (ALPHA) List GatewaySecurityPolicyRules. + (ALPHA) List Gateway Security Policy Rules. NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security gateway-security-policies rules $ gcloud beta network-security gateway-security-policies rules diff --git a/gcloud/alpha/network-security/gateway-security-policies/rules/import b/gcloud/alpha/network-security/gateway-security-policies/rules/import index 3237d6663..604b248a5 100644 --- a/gcloud/alpha/network-security/gateway-security-policies/rules/import +++ b/gcloud/alpha/network-security/gateway-security-policies/rules/import @@ -1,6 +1,6 @@ NAME gcloud alpha network-security gateway-security-policies rules import - - import GatewaySecurityPolicy + import Gateway Security Policy Rule SYNOPSIS gcloud alpha network-security gateway-security-policies rules import @@ -10,19 +10,19 @@ SYNOPSIS [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (ALPHA) Import a GatewaySecurityPolicy. + (ALPHA) Import a Gateway Security Policy Rule. EXAMPLES - To import a GatewaySecurityPolicy from a YAML file, run: + To import a Gateway Security Policy Rule from a YAML file, run: $ gcloud alpha network-security gateway-security-policies rules \ import my-rule --source=my-rule.yaml --location={region} \ --gateway-security-policy={policy-name} POSITIONAL ARGUMENTS - Gateway security policy rule resource - Name of the GatewaySecurityPolicy - to import. The arguments in this group can be used to specify the - attributes of this resource. (NOTE) Some attributes are not given + Gateway security policy rule resource - Name of the Gateway Security + Policy Rule to import. The arguments in this group can be used to specify + the attributes of this resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: ◆ provide the argument gateway_security_policy_rule on the command line @@ -89,7 +89,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security gateway-security-policies rules import $ gcloud beta network-security gateway-security-policies rules import diff --git a/gcloud/alpha/network-security/gateway-security-policies/rules/list b/gcloud/alpha/network-security/gateway-security-policies/rules/list index ce6f3820e..34903ab89 100644 --- a/gcloud/alpha/network-security/gateway-security-policies/rules/list +++ b/gcloud/alpha/network-security/gateway-security-policies/rules/list @@ -1,6 +1,6 @@ NAME gcloud alpha network-security gateway-security-policies rules list - list - GatewaySecurityPolicyRules + Gateway Security Policy Rules SYNOPSIS gcloud alpha network-security gateway-security-policies rules list @@ -10,21 +10,21 @@ SYNOPSIS [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (ALPHA) List all GatewaySecurityPolicyRules in the specified location of + (ALPHA) List all Gateway Security Policy Rules in the specified location of the current project. EXAMPLES - To list GatewaySecurityPolicyRules in the current project, run: + To list Gateway Security Policy Rules in the current project, run: $ gcloud alpha network-security gateway-security-policies rules \ list --location={region} --gateway-security-policy={policy-name} REQUIRED FLAGS - Gateway security policy resource - The project of the - GatewaySecurityPolicyRules to display. The arguments in this group can be - used to specify the attributes of this resource. (NOTE) Some attributes - are not given arguments in this group but can be set in other ways. To set - the project attribute: + Gateway security policy resource - The project of the Gateway Security + Policy Rules to display. The arguments in this group can be used to + specify the attributes of this resource. (NOTE) Some attributes are not + given arguments in this group but can be set in other ways. To set the + project attribute: ◆ provide the argument --gateway-security-policy on the command line with a fully specified name; ◆ set the property core/project; @@ -98,7 +98,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security gateway-security-policies rules list $ gcloud beta network-security gateway-security-policies rules list diff --git a/gcloud/alpha/network-security/help b/gcloud/alpha/network-security/help index 3cdd1db29..4cdce1356 100644 --- a/gcloud/alpha/network-security/help +++ b/gcloud/alpha/network-security/help @@ -24,6 +24,12 @@ GROUPS gateway-security-policies (ALPHA) Manage Network Security Gateway Security Policies. + security-profile-groups + (ALPHA) Manage Network Security - Security Profile Groups. + + security-profiles + (ALPHA) Manage Network Security - Security Profiles. + server-tls-policies (ALPHA) Manage Network Security ServerTlsPolicies. @@ -31,7 +37,7 @@ GROUPS (ALPHA) Manage Network Security TLS Inspection Policies. url-lists - (ALPHA) Manage Network Security UrlLists. + (ALPHA) Manage Network Security Url Lists. NOTES This command is currently in alpha and might change without notice. If this diff --git a/gcloud/alpha/network-security/security-profile-groups/create b/gcloud/alpha/network-security/security-profile-groups/create new file mode 100644 index 000000000..abd22ea7c --- /dev/null +++ b/gcloud/alpha/network-security/security-profile-groups/create @@ -0,0 +1,89 @@ +NAME + gcloud alpha network-security security-profile-groups create - create a new + Security Profile Group + +SYNOPSIS + gcloud alpha network-security security-profile-groups create + (SECURITY_PROFILE_GROUP + : --location=LOCATION --organization=ORGANIZATION) + --threat-prevention-profile=THREAT_PREVENTION_PROFILE [--async] + [--description=DESCRIPTION] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Create a new Security Profile Group with the given name. + +EXAMPLES + To create a Security Profile Group with the name my-security-profile-group + (Either a fully specified path or --location and --organization flags for + SPG should be specified), --threat-prevention-profile my-security-profile + and optional description as optional description, run: + + $ gcloud alpha network-security security-profile-groups create \ + my-security-profile-group --organization=1234 \ + --location=global \ + --threat-prevention-profile=`organizations/1234/locations/\ + global/securityProfiles/my-security-profile` \ + --description='optional description' + +POSITIONAL ARGUMENTS + Security profile group resource - Name of the security profile group to be + created. The arguments in this group can be used to specify the attributes + of this resource. + + This must be specified. + + SECURITY_PROFILE_GROUP + ID of the security profile group or fully qualified identifier for + the security profile group. To set the security_profile_group + attribute: + ▸ provide the argument security_profile_group on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + Location Id. + + To set the location attribute: + ▸ provide the argument security_profile_group on the command line + with a fully specified name; + ▸ provide the argument --location on the command line. + + --organization=ORGANIZATION + Organization number. + + To set the organization attribute: + ▸ provide the argument security_profile_group on the command line + with a fully specified name; + ▸ provide the argument --organization on the command line. + +REQUIRED FLAGS + --threat-prevention-profile=THREAT_PREVENTION_PROFILE + Name of the security profile of type threat prevention. + +OPTIONAL FLAGS + --async + Return immediately, without waiting for the operation in progress to + complete. + + --description=DESCRIPTION + Description of the security profile group. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1alpha1 API. The full documentation + for this API can be found at: https://cloud.google.com/networking + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profile-groups/delete b/gcloud/alpha/network-security/security-profile-groups/delete new file mode 100644 index 000000000..56ac6a2c8 --- /dev/null +++ b/gcloud/alpha/network-security/security-profile-groups/delete @@ -0,0 +1,71 @@ +NAME + gcloud alpha network-security security-profile-groups delete - delete a + Security Profile Group + +SYNOPSIS + gcloud alpha network-security security-profile-groups delete + (SECURITY_PROFILE_GROUP + : --location=LOCATION --organization=ORGANIZATION) + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Delete the specified Security Profile Group. + +EXAMPLES + To delete an Security Profile Group called my-security-profile-group + (Either a fully specified path or --location and --organization flags for + SPG should be specified) run: + + $ gcloud alpha network-security security-profile-groups delete \ + my-security-profile-group --organization=1234 --location=global + +POSITIONAL ARGUMENTS + Security profile group resource - Name of the Security Profile Group you + want to delete. The arguments in this group can be used to specify the + attributes of this resource. + + This must be specified. + + SECURITY_PROFILE_GROUP + ID of the security profile group or fully qualified identifier for + the security profile group. To set the security_profile_group + attribute: + ▸ provide the argument security_profile_group on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + Location Id. + + To set the location attribute: + ▸ provide the argument security_profile_group on the command line + with a fully specified name; + ▸ provide the argument --location on the command line. + + --organization=ORGANIZATION + Organization number. + + To set the organization attribute: + ▸ provide the argument security_profile_group on the command line + with a fully specified name; + ▸ provide the argument --organization on the command line. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1alpha1 API. The full documentation + for this API can be found at: https://cloud.google.com/networking + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profile-groups/describe b/gcloud/alpha/network-security/security-profile-groups/describe new file mode 100644 index 000000000..3746cbee5 --- /dev/null +++ b/gcloud/alpha/network-security/security-profile-groups/describe @@ -0,0 +1,71 @@ +NAME + gcloud alpha network-security security-profile-groups describe - describe a + Security Profile Group + +SYNOPSIS + gcloud alpha network-security security-profile-groups describe + (SECURITY_PROFILE_GROUP + : --location=LOCATION --organization=ORGANIZATION) + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Show details of a Security Profile Group. + +EXAMPLES + To show details of a Security Profile Group named my-security-profile-group + (Either a fully specified path or --location and --organization flags for + SPG should be specified) run: + + $ gcloud alpha network-security security-profile-groups describe \ + my-security-profile-group --organization=1234 --location=global + +POSITIONAL ARGUMENTS + Security profile group resource - Name of the Security Profile Group to be + described. The arguments in this group can be used to specify the + attributes of this resource. + + This must be specified. + + SECURITY_PROFILE_GROUP + ID of the security profile group or fully qualified identifier for + the security profile group. To set the security_profile_group + attribute: + ▸ provide the argument security_profile_group on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + Location Id. + + To set the location attribute: + ▸ provide the argument security_profile_group on the command line + with a fully specified name; + ▸ provide the argument --location on the command line. + + --organization=ORGANIZATION + Organization number. + + To set the organization attribute: + ▸ provide the argument security_profile_group on the command line + with a fully specified name; + ▸ provide the argument --organization on the command line. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1alpha1 API. The full documentation + for this API can be found at: https://cloud.google.com/networking + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profile-groups/help b/gcloud/alpha/network-security/security-profile-groups/help new file mode 100644 index 000000000..16fe22037 --- /dev/null +++ b/gcloud/alpha/network-security/security-profile-groups/help @@ -0,0 +1,83 @@ +NAME + gcloud alpha network-security security-profile-groups - manage Network + Security - Security Profile Groups + +SYNOPSIS + gcloud alpha network-security security-profile-groups COMMAND + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Manage Network Security - Security Profile Groups. + +EXAMPLES + To create a Security Profile Group with the name my-security-profile-group + (Either a fully specified path or --location and --organization flags for + SPG should be specified), --threat-prevention-profile my-security-profile + and optional description as optional description, run: + + $ gcloud alpha network-security security-profile-groups create \ + my-security-profile-group --organization=1234 \ + --location=global \ + --threat-prevention-profile=`organizations/1234/locations/\ + global/securityProfiles/my-security-profile` \ + --description='optional description' + + To delete an Security Profile Group called my-security-profile-group + (Either a fully specified path or --location and --organization flags for + SPG should be specified) run: + + $ gcloud alpha network-security security-profile-groups delete \ + my-security-profile-group --organization=1234 --location=global + + To show details of a Security Profile Group named my-security-profile-group + (Either a fully specified path or --location and --organization flags for + SPG should be specified) run: + + $ gcloud alpha network-security security-profile-groups describe \ + my-security-profile-group --organization=1234 --location=global + + To list Security Profile Groups in specifed location and organization, run: + + $ gcloud alpha network-security security-profile-groups list \ + --location=global + + To update an SPG with new Threat prevention profile my-new-security-profile + (Either a fully specified path or --location and --organization flags for + SPG should be specified), run: + + $ gcloud alpha network-security security-profile-groups update \ + my-security-profile-group --organization=1234 \ + --location=global \ + --threat-prevention-profile=`organizations/1234/locations/\ + global/securityProfiles/my-new-security-profile` \ + --description='New Security Profile of type threat prevention' + +GCLOUD WIDE FLAGS + These flags are available to all commands: --help. + + Run $ gcloud help for details. + +COMMANDS + COMMAND is one of the following: + + create + (ALPHA) Create a new Security Profile Group. + + delete + (ALPHA) Delete a Security Profile Group. + + describe + (ALPHA) Describe a Security Profile Group. + + list + (ALPHA) List Security Profile groups. + + update + (ALPHA) Update a Security Profile Group. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profile-groups/list b/gcloud/alpha/network-security/security-profile-groups/list new file mode 100644 index 000000000..8aeea3425 --- /dev/null +++ b/gcloud/alpha/network-security/security-profile-groups/list @@ -0,0 +1,92 @@ +NAME + gcloud alpha network-security security-profile-groups list - list Security + Profile groups + +SYNOPSIS + gcloud alpha network-security security-profile-groups list + (--location=LOCATION : --organization=ORGANIZATION) + [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] + [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) List all Security Profile Groups in the specified location. + +EXAMPLES + To list Security Profile Groups in specifed location and organization, run: + + $ gcloud alpha network-security security-profile-groups list \ + --location=global + +REQUIRED FLAGS + Location resource - The location of Security Profile Groups to display. + The arguments in this group can be used to specify the attributes of this + resource. + + This must be specified. + + --location=LOCATION + ID of the location or fully qualified identifier for the location. To + set the location attribute: + ▸ provide the argument --location on the command line. + + This flag argument must be specified if any of the other arguments in + this group are specified. + + --organization=ORGANIZATION + Organization number. + + To set the organization attribute: + ▸ provide the argument --location on the command line with a fully + specified name; + ▸ provide the argument --organization on the command line. + +LIST COMMAND FLAGS + --filter=EXPRESSION + Apply a Boolean filter EXPRESSION to each resource item to be listed. + If the expression evaluates True, then that item is listed. For more + details and examples of filter expressions, run $ gcloud topic filters. + This flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --limit=LIMIT + Maximum number of resources to list. The default is unlimited. This + flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --page-size=PAGE_SIZE + Some services group resource list output into pages. This flag + specifies the maximum number of resources per page. The default is + determined by the service if it supports paging, otherwise it is + unlimited (no paging). Paging may be applied before or after --filter + and --limit depending on the service. + + --sort-by=[FIELD,...] + Comma-separated list of resource field key names to sort by. The + default order is ascending. Prefix a field with ``~'' for descending + order on that field. This flag interacts with other flags that are + applied in this order: --flatten, --sort-by, --filter, --limit. + + --uri + Print a list of resource URIs instead of the default output, and change + the command output to a list of URIs. If this flag is used with + --format, the formatting is applied on this URI list. To display URIs + alongside other keys instead, use the uri() transform. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1alpha1 API. The full documentation + for this API can be found at: https://cloud.google.com/networking + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profile-groups/update b/gcloud/alpha/network-security/security-profile-groups/update new file mode 100644 index 000000000..866086f90 --- /dev/null +++ b/gcloud/alpha/network-security/security-profile-groups/update @@ -0,0 +1,88 @@ +NAME + gcloud alpha network-security security-profile-groups update - update a + Security Profile Group + +SYNOPSIS + gcloud alpha network-security security-profile-groups update + (SECURITY_PROFILE_GROUP + : --location=LOCATION --organization=ORGANIZATION) [--async] + [--description=DESCRIPTION] + [--threat-prevention-profile=THREAT_PREVENTION_PROFILE] + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Update the details of a Security Profile Group. + +EXAMPLES + To update an SPG with new Threat prevention profile my-new-security-profile + (Either a fully specified path or --location and --organization flags for + SPG should be specified), run: + + $ gcloud alpha network-security security-profile-groups update \ + my-security-profile-group --organization=1234 \ + --location=global \ + --threat-prevention-profile=`organizations/1234/locations/\ + global/securityProfiles/my-new-security-profile` \ + --description='New Security Profile of type threat prevention' + +POSITIONAL ARGUMENTS + Security profile group resource - Name of the Security Profile Group to be + updated. The arguments in this group can be used to specify the attributes + of this resource. + + This must be specified. + + SECURITY_PROFILE_GROUP + ID of the security profile group or fully qualified identifier for + the security profile group. To set the security_profile_group + attribute: + ▸ provide the argument security_profile_group on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + Location Id. + + To set the location attribute: + ▸ provide the argument security_profile_group on the command line + with a fully specified name; + ▸ provide the argument --location on the command line. + + --organization=ORGANIZATION + Organization number. + + To set the organization attribute: + ▸ provide the argument security_profile_group on the command line + with a fully specified name; + ▸ provide the argument --organization on the command line. + +FLAGS + --async + Return immediately, without waiting for the operation in progress to + complete. + + --description=DESCRIPTION + New description of the Security Profile Group. + + --threat-prevention-profile=THREAT_PREVENTION_PROFILE + Name of the security profile of type threat prevention. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1alpha1 API. The full documentation + for this API can be found at: https://cloud.google.com/networking + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profiles/help b/gcloud/alpha/network-security/security-profiles/help new file mode 100644 index 000000000..adf7f5504 --- /dev/null +++ b/gcloud/alpha/network-security/security-profiles/help @@ -0,0 +1,28 @@ +NAME + gcloud alpha network-security security-profiles - manage Network Security - + Security Profiles + +SYNOPSIS + gcloud alpha network-security security-profiles GROUP + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Manage Network Security - Security Profiles. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --help. + + Run $ gcloud help for details. + +GROUPS + GROUP is one of the following: + + threat-prevention + (ALPHA) Manage Security Profiles - Threat Prevention Profile. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profiles/threat-prevention/add-override b/gcloud/alpha/network-security/security-profiles/threat-prevention/add-override new file mode 100644 index 000000000..9848f4a78 --- /dev/null +++ b/gcloud/alpha/network-security/security-profiles/threat-prevention/add-override @@ -0,0 +1,91 @@ +NAME + gcloud alpha network-security security-profiles threat-prevention + add-override - add overrides to Threat Prevention Profile + +SYNOPSIS + gcloud alpha network-security security-profiles threat-prevention + add-override + (SECURITY_PROFILE : --location=LOCATION --organization=ORGANIZATION) + --action=ACTION + (--severities=[SEVERITY_LEVEL,...] | --threat-ids=[THREAT-ID,...]) + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Add severities or threat-ids to existing threat prevention profile + with intended action on each specified. Check the updates of add-override + command by using gcloud network-security security-profiles + threat-prevention list-override my-security-profile. + + For more examples, refer to the EXAMPLES section below. + +EXAMPLES + To add an override, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention add-override my-security-profile \ + --severities=MEDIUM --action=ALLOW + + my-security-profile is the name of the Security Profile in the format + organizations/{organizationID}/locations/{location}/securityProfiles/ + {security_profile_id} where organizationID is the organization ID to which + the changes should apply, location either global or region specified and + security_profile_id the Security Profile Identifier + +POSITIONAL ARGUMENTS + Security profile resource - Security Profile Name. The arguments in this + group can be used to specify the attributes of this resource. + + This must be specified. + + SECURITY_PROFILE + ID of the security_profile or fully qualified identifier for the + security_profile. To set the security_profile attribute: + ▸ provide the argument security_profile on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + location of the security_profile Global|Region. To set the location + attribute: + ▸ provide the argument security_profile on the command line with a + fully specified name; + ▸ provide the argument --location on the command line. + + --organization=ORGANIZATION + Organization ID to which the changes should apply. To set the + organization attribute: + ▸ provide the argument security_profile on the command line with a + fully specified name; + ▸ provide the argument --organization on the command line. + +REQUIRED FLAGS + --action=ACTION + Action associated with severity or threat-id. ACTION must be one of: + DEFAULT, ALLOW, ALERT, DENY. + + Exactly one of these must be specified: + + --severities=[SEVERITY_LEVEL,...] + List of comma seperated severities where each value in the list + indicates the severity of the threat. + + --threat-ids=[THREAT-ID,...] + List of comma seperated threat identifiers where each identifier in + the list is a vendor-specified Signature ID representing a threat + type. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profiles/threat-prevention/create b/gcloud/alpha/network-security/security-profiles/threat-prevention/create new file mode 100644 index 000000000..93123b66b --- /dev/null +++ b/gcloud/alpha/network-security/security-profiles/threat-prevention/create @@ -0,0 +1,67 @@ +NAME + gcloud alpha network-security security-profiles threat-prevention create - + create a new Threat Prevention Profile + +SYNOPSIS + gcloud alpha network-security security-profiles threat-prevention create + (SECURITY_PROFILE : --location=LOCATION --organization=ORGANIZATION) + [--description=DESCRIPTION] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Create a new Security Profile with the given name. + +EXAMPLES + To create a Security Profile with the name my-security-profile which + includes location as global or region specifed and organization ID, + optional description as New Security Profile, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention create my-security-profile \ + --description="New Security Profile" + +POSITIONAL ARGUMENTS + Security profile resource - Security Profile Name. The arguments in this + group can be used to specify the attributes of this resource. + + This must be specified. + + SECURITY_PROFILE + ID of the security_profile or fully qualified identifier for the + security_profile. To set the security_profile attribute: + ▸ provide the argument security_profile on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + location of the security_profile Global|Region. To set the location + attribute: + ▸ provide the argument security_profile on the command line with a + fully specified name; + ▸ provide the argument --location on the command line. + + --organization=ORGANIZATION + Organization ID to which the changes should apply. To set the + organization attribute: + ▸ provide the argument security_profile on the command line with a + fully specified name; + ▸ provide the argument --organization on the command line. + +FLAGS + --description=DESCRIPTION + Brief description of the security profile + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profiles/threat-prevention/delete b/gcloud/alpha/network-security/security-profiles/threat-prevention/delete new file mode 100644 index 000000000..2d90fbd6b --- /dev/null +++ b/gcloud/alpha/network-security/security-profiles/threat-prevention/delete @@ -0,0 +1,68 @@ +NAME + gcloud alpha network-security security-profiles threat-prevention delete - + delete a Security Profile + +SYNOPSIS + gcloud alpha network-security security-profiles threat-prevention delete + (SECURITY_PROFILE : --location=LOCATION --organization=ORGANIZATION) + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Delete the specified Security Profile. + +EXAMPLES + To delete a Security Profile called my-security-profile which includes + location as global or region specifed and organization ID, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention delete my-security-profile + +POSITIONAL ARGUMENTS + Security profile resource - Name of the Security Profile you want to + delete. The arguments in this group can be used to specify the attributes + of this resource. + + This must be specified. + + SECURITY_PROFILE + ID of the security_profile or fully qualified identifier for the + security_profile. To set the security_profile attribute: + ▸ provide the argument security_profile on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + Location Id. + + To set the location attribute: + ▸ provide the argument security_profile on the command line with a + fully specified name; + ▸ provide the argument --location on the command line. + + --organization=ORGANIZATION + Organization number. + + To set the organization attribute: + ▸ provide the argument security_profile on the command line with a + fully specified name; + ▸ provide the argument --organization on the command line. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1alpha1 API. The full documentation + for this API can be found at: https://cloud.google.com/networking + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profiles/threat-prevention/delete-override b/gcloud/alpha/network-security/security-profiles/threat-prevention/delete-override new file mode 100644 index 000000000..0df19ca51 --- /dev/null +++ b/gcloud/alpha/network-security/security-profiles/threat-prevention/delete-override @@ -0,0 +1,86 @@ +NAME + gcloud alpha network-security security-profiles threat-prevention + delete-override - delete overrides of Threat Prevention Profile + +SYNOPSIS + gcloud alpha network-security security-profiles threat-prevention + delete-override + (SECURITY_PROFILE : --location=LOCATION --organization=ORGANIZATION) + (--severities=[SEVERITY_LEVEL,...] | --threat-ids=[THREAT-ID,...]) + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) To delete existing severities or threat-ids of threat prevention + profile. Check the updates of update-override command by using gcloud + network-security security-profiles threat-prevention list-override + my-security-profile. + + For more examples, refer to the EXAMPLES section below. + +EXAMPLES + To delete an override, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention delete-override my-security-profile \ + --severities=MEDIUM + + my-security-profile is the name of the Security Profile in the format + organizations/{organizationID}/locations/{location}/securityProfiles/ + {security_profile_id} where organizationID is the organization ID to which + the changes should apply, location either global or region specified and + security_profile_id the Security Profile Identifier + +POSITIONAL ARGUMENTS + Security profile resource - Security Profile Name. The arguments in this + group can be used to specify the attributes of this resource. + + This must be specified. + + SECURITY_PROFILE + ID of the security_profile or fully qualified identifier for the + security_profile. To set the security_profile attribute: + ▸ provide the argument security_profile on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + location of the security_profile Global|Region. To set the location + attribute: + ▸ provide the argument security_profile on the command line with a + fully specified name; + ▸ provide the argument --location on the command line. + + --organization=ORGANIZATION + Organization ID to which the changes should apply. To set the + organization attribute: + ▸ provide the argument security_profile on the command line with a + fully specified name; + ▸ provide the argument --organization on the command line. + +REQUIRED FLAGS + Exactly one of these must be specified: + + --severities=[SEVERITY_LEVEL,...] + List of comma seperated severities where each value in the list + indicates the severity of the threat. + + --threat-ids=[THREAT-ID,...] + List of comma seperated threat identifiers where each identifier in + the list is a vendor-specified Signature ID representing a threat + type. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profiles/threat-prevention/help b/gcloud/alpha/network-security/security-profiles/threat-prevention/help new file mode 100644 index 000000000..58c3f2ee2 --- /dev/null +++ b/gcloud/alpha/network-security/security-profiles/threat-prevention/help @@ -0,0 +1,113 @@ +NAME + gcloud alpha network-security security-profiles threat-prevention - manage + Security Profiles - Threat Prevention Profile + +SYNOPSIS + gcloud alpha network-security security-profiles threat-prevention COMMAND + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Manage Security Profiles - Threat Prevention Profile. + +EXAMPLES + To create a Security Profile with the name my-security-profile which + includes location as global or region specifed and organization ID, + optional description as New Security Profile, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention create my-security-profile \ + --description="New Security Profile" + + To add an override, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention add-override my-security-profile \ + --severities=MEDIUM --action=ALLOW + + `my-security-profile` is the name of the Security Profile in the + format organizations/{organizationID}/locations/{location}/securityProfiles/ + {security_profile_id} where organizationID is the organization ID to which + the changes should apply, location either global or region specified and + security_profile_id the Security Profile Identifier. + + To update an override, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention update-override my-security-profile \ + --severities=MEDIUM --action=ALLOW + + `my-security-profile` is the name of the Security Profile in the + format organizations/{organizationID}/locations/{location}/securityProfiles/ + {security_profile_id} where organizationID is the organization ID to which + the changes should apply, location either global or region specified and + security_profile_id the Security Profile Identifier. + + To list overrides, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention list-overrides my-security-profile + + `my-security-profile` is the name of the Security Profile in the + format organizations/{organizationID}/locations/{location}/securityProfiles/ + {security_profile_id} where organizationID is the organization ID to which + the changes should apply, location either global or region specified and + security_profile_id the Security Profile Identifier. + + To delete an override, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention delete-override my-security-profile \ + --severities=MEDIUM + + `my-security-profile` is the name of the Security Profile in the + format organizations/{organizationID}/locations/{location}/securityProfiles/ + {security_profile_id} where organizationID is the organization ID to which + the changes should apply, location either global or region specified and + security_profile_id the Security Profile Identifier. + + To list Security Profiles in specifed location and organization, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention list --location=global + + To delete a Security Profile called my-security-profile which includes + location as global or region specifed and organization ID, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention delete my-security-profile + +GCLOUD WIDE FLAGS + These flags are available to all commands: --help. + + Run $ gcloud help for details. + +COMMANDS + COMMAND is one of the following: + + add-override + (ALPHA) Add overrides to Threat Prevention Profile. + + create + (ALPHA) Create a new Threat Prevention Profile. + + delete + (ALPHA) Delete a Security Profile. + + delete-override + (ALPHA) Delete overrides of Threat Prevention Profile. + + list + (ALPHA) List Security Profiles. + + list-overrides + (ALPHA) List overrides of Threat Prevention Profile. + + update-override + (ALPHA) Update Overrides of Threat Prevention Profile. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profiles/threat-prevention/list b/gcloud/alpha/network-security/security-profiles/threat-prevention/list new file mode 100644 index 000000000..a9be98c7a --- /dev/null +++ b/gcloud/alpha/network-security/security-profiles/threat-prevention/list @@ -0,0 +1,92 @@ +NAME + gcloud alpha network-security security-profiles threat-prevention list - + list Security Profiles + +SYNOPSIS + gcloud alpha network-security security-profiles threat-prevention list + (--location=LOCATION : --organization=ORGANIZATION) + [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] + [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) List all Security Profiles in the specified location. + +EXAMPLES + To list Security Profiles in specifed location and organization, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention list --location=global + +REQUIRED FLAGS + Location resource - The organization of Security Profiles to display. The + arguments in this group can be used to specify the attributes of this + resource. + + This must be specified. + + --location=LOCATION + ID of the location or fully qualified identifier for the location. To + set the location attribute: + ▸ provide the argument --location on the command line. + + This flag argument must be specified if any of the other arguments in + this group are specified. + + --organization=ORGANIZATION + Organization number. + + To set the organization attribute: + ▸ provide the argument --location on the command line with a fully + specified name; + ▸ provide the argument --organization on the command line. + +LIST COMMAND FLAGS + --filter=EXPRESSION + Apply a Boolean filter EXPRESSION to each resource item to be listed. + If the expression evaluates True, then that item is listed. For more + details and examples of filter expressions, run $ gcloud topic filters. + This flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --limit=LIMIT + Maximum number of resources to list. The default is unlimited. This + flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --page-size=PAGE_SIZE + Some services group resource list output into pages. This flag + specifies the maximum number of resources per page. The default is + determined by the service if it supports paging, otherwise it is + unlimited (no paging). Paging may be applied before or after --filter + and --limit depending on the service. + + --sort-by=[FIELD,...] + Comma-separated list of resource field key names to sort by. The + default order is ascending. Prefix a field with ``~'' for descending + order on that field. This flag interacts with other flags that are + applied in this order: --flatten, --sort-by, --filter, --limit. + + --uri + Print a list of resource URIs instead of the default output, and change + the command output to a list of URIs. If this flag is used with + --format, the formatting is applied on this URI list. To display URIs + alongside other keys instead, use the uri() transform. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1alpha1 API. The full documentation + for this API can be found at: https://cloud.google.com/networking + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profiles/threat-prevention/list-overrides b/gcloud/alpha/network-security/security-profiles/threat-prevention/list-overrides new file mode 100644 index 000000000..78e99c6f7 --- /dev/null +++ b/gcloud/alpha/network-security/security-profiles/threat-prevention/list-overrides @@ -0,0 +1,70 @@ +NAME + gcloud alpha network-security security-profiles threat-prevention + list-overrides - list overrides of Threat Prevention Profile + +SYNOPSIS + gcloud alpha network-security security-profiles threat-prevention + list-overrides + (SECURITY_PROFILE : --location=LOCATION --organization=ORGANIZATION) + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) To list existing severities or threat-ids of threat prevention + profile. + + For more examples, refer to the EXAMPLES section below. + +EXAMPLES + To list overrides, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention list-overrides my-security-profile + + my-security-profile is the name of the Security Profile in the format + organizations/{organizationID}/locations/{location}/securityProfiles/ + {security_profile_id} where organizationID is the organization ID to which + the changes should apply, location either global or region specified and + security_profile_id the Security Profile Identifier + +POSITIONAL ARGUMENTS + Security profile resource - Security Profile Name. The arguments in this + group can be used to specify the attributes of this resource. + + This must be specified. + + SECURITY_PROFILE + ID of the security_profile or fully qualified identifier for the + security_profile. To set the security_profile attribute: + ▸ provide the argument security_profile on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + location of the security_profile Global|Region. To set the location + attribute: + ▸ provide the argument security_profile on the command line with a + fully specified name; + ▸ provide the argument --location on the command line. + + --organization=ORGANIZATION + Organization ID to which the changes should apply. To set the + organization attribute: + ▸ provide the argument security_profile on the command line with a + fully specified name; + ▸ provide the argument --organization on the command line. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/security-profiles/threat-prevention/update-override b/gcloud/alpha/network-security/security-profiles/threat-prevention/update-override new file mode 100644 index 000000000..a06acd76c --- /dev/null +++ b/gcloud/alpha/network-security/security-profiles/threat-prevention/update-override @@ -0,0 +1,91 @@ +NAME + gcloud alpha network-security security-profiles threat-prevention + update-override - update Overrides of Threat Prevention Profile + +SYNOPSIS + gcloud alpha network-security security-profiles threat-prevention + update-override + (SECURITY_PROFILE : --location=LOCATION --organization=ORGANIZATION) + --action=ACTION + (--severities=[SEVERITY_LEVEL,...] | --threat-ids=[THREAT-ID,...]) + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) To update existing severities or threat-ids of threat prevention + profile with intended action on each specified. Check the updates of + update-override command by using gcloud network-security security-profiles + threat-prevention list-override my-security-profile. + + For more examples, refer to the EXAMPLES section below. + +EXAMPLES + To update an override, run: + + $ gcloud alpha network-security security-profiles \ + threat-prevention update-override my-security-profile \ + --severities=MEDIUM --action=ALLOW + + my-security-profile is the name of the Security Profile in the format + organizations/{organizationID}/locations/{location}/securityProfiles/ + {security_profile_id} where organizationID is the organization ID to which + the changes should apply, location either global or region specified and + security_profile_id the Security Profile Identifier + +POSITIONAL ARGUMENTS + Security profile resource - Security Profile Name. The arguments in this + group can be used to specify the attributes of this resource. + + This must be specified. + + SECURITY_PROFILE + ID of the security_profile or fully qualified identifier for the + security_profile. To set the security_profile attribute: + ▸ provide the argument security_profile on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + location of the security_profile Global|Region. To set the location + attribute: + ▸ provide the argument security_profile on the command line with a + fully specified name; + ▸ provide the argument --location on the command line. + + --organization=ORGANIZATION + Organization ID to which the changes should apply. To set the + organization attribute: + ▸ provide the argument security_profile on the command line with a + fully specified name; + ▸ provide the argument --organization on the command line. + +REQUIRED FLAGS + --action=ACTION + Action associated with severity or threat-id. ACTION must be one of: + DEFAULT, ALLOW, ALERT, DENY. + + Exactly one of these must be specified: + + --severities=[SEVERITY_LEVEL,...] + List of comma seperated severities where each value in the list + indicates the severity of the threat. + + --threat-ids=[THREAT-ID,...] + List of comma seperated threat identifiers where each identifier in + the list is a vendor-specified Signature ID representing a threat + type. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. + diff --git a/gcloud/alpha/network-security/server-tls-policies/describe b/gcloud/alpha/network-security/server-tls-policies/describe new file mode 100644 index 000000000..4bf5a96ec --- /dev/null +++ b/gcloud/alpha/network-security/server-tls-policies/describe @@ -0,0 +1,65 @@ +NAME + gcloud alpha network-security server-tls-policies describe - describe + ServerTlsPolicy + +SYNOPSIS + gcloud alpha network-security server-tls-policies describe + (SERVER_TLS_POLICY : --location=LOCATION) [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Describe the specified ServerTlsPolicy. + +EXAMPLES + To describe a ServerTlsPolicy called 'my-server-tls-policy', run: + + $ gcloud alpha network-security server-tls-policies describe \ + my-server-tls-policy --location=global + +POSITIONAL ARGUMENTS + Server TLS policy resource - The ServerTlsPolicy you want to describe. The + arguments in this group can be used to specify the attributes of this + resource. (NOTE) Some attributes are not given arguments in this group but + can be set in other ways. To set the project attribute: + ◆ provide the argument server_tls_policy on the command line with a + fully specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + SERVER_TLS_POLICY + ID of the server TLS policy or fully qualified identifier for the + server TLS policy. To set the server_tls_policy attribute: + ▸ provide the argument server_tls_policy on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument server_tls_policy on the command line with a + fully specified name; + ▸ provide the argument --location on the command line. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1alpha1 API. The full documentation + for this API can be found at: https://cloud.google.com/networking + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. This variant is also available: + + $ gcloud beta network-security server-tls-policies describe + diff --git a/gcloud/alpha/network-security/server-tls-policies/help b/gcloud/alpha/network-security/server-tls-policies/help index 2ac23052e..b9be98187 100644 --- a/gcloud/alpha/network-security/server-tls-policies/help +++ b/gcloud/alpha/network-security/server-tls-policies/help @@ -20,6 +20,9 @@ COMMANDS delete (ALPHA) Delete ServerTlsPolicy. + describe + (ALPHA) Describe ServerTlsPolicy. + export (ALPHA) Export ServerTlsPolicy. diff --git a/gcloud/alpha/network-security/tls-inspection-policies/delete b/gcloud/alpha/network-security/tls-inspection-policies/delete index 0d16d2709..73af949d1 100644 --- a/gcloud/alpha/network-security/tls-inspection-policies/delete +++ b/gcloud/alpha/network-security/tls-inspection-policies/delete @@ -66,7 +66,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security tls-inspection-policies delete $ gcloud beta network-security tls-inspection-policies delete diff --git a/gcloud/alpha/network-security/tls-inspection-policies/export b/gcloud/alpha/network-security/tls-inspection-policies/export index 17e161329..16ac09933 100644 --- a/gcloud/alpha/network-security/tls-inspection-policies/export +++ b/gcloud/alpha/network-security/tls-inspection-policies/export @@ -69,7 +69,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security tls-inspection-policies export $ gcloud beta network-security tls-inspection-policies export diff --git a/gcloud/alpha/network-security/tls-inspection-policies/help b/gcloud/alpha/network-security/tls-inspection-policies/help index 8d41260e6..35006ed69 100644 --- a/gcloud/alpha/network-security/tls-inspection-policies/help +++ b/gcloud/alpha/network-security/tls-inspection-policies/help @@ -33,7 +33,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security tls-inspection-policies $ gcloud beta network-security tls-inspection-policies diff --git a/gcloud/alpha/network-security/tls-inspection-policies/import b/gcloud/alpha/network-security/tls-inspection-policies/import index a89ba880d..c70106c52 100644 --- a/gcloud/alpha/network-security/tls-inspection-policies/import +++ b/gcloud/alpha/network-security/tls-inspection-policies/import @@ -74,7 +74,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security tls-inspection-policies import $ gcloud beta network-security tls-inspection-policies import diff --git a/gcloud/alpha/network-security/tls-inspection-policies/list b/gcloud/alpha/network-security/tls-inspection-policies/list index e46e325d0..2b1813544 100644 --- a/gcloud/alpha/network-security/tls-inspection-policies/list +++ b/gcloud/alpha/network-security/tls-inspection-policies/list @@ -81,7 +81,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security tls-inspection-policies list $ gcloud beta network-security tls-inspection-policies list diff --git a/gcloud/alpha/network-security/url-lists/delete b/gcloud/alpha/network-security/url-lists/delete index 62d1348b7..4528f41bf 100644 --- a/gcloud/alpha/network-security/url-lists/delete +++ b/gcloud/alpha/network-security/url-lists/delete @@ -1,21 +1,21 @@ NAME - gcloud alpha network-security url-lists delete - delete UrlList + gcloud alpha network-security url-lists delete - delete Url List SYNOPSIS gcloud alpha network-security url-lists delete (URL_LIST : --location=LOCATION) [--async] [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (ALPHA) Delete the specified UrlList. + (ALPHA) Delete the specified Url List. EXAMPLES - To delete a UrlList called 'my-url-list', run: + To delete a Url List called 'my-url-list', run: $ gcloud alpha network-security url-lists delete my-url-list \ --location=global POSITIONAL ARGUMENTS - Url list resource - Name of the UrlList you want to delete. The arguments + Url list resource - Name of the Url List you want to delete. The arguments in this group can be used to specify the attributes of this resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: @@ -63,7 +63,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security url-lists delete $ gcloud beta network-security url-lists delete diff --git a/gcloud/alpha/network-security/url-lists/export b/gcloud/alpha/network-security/url-lists/export index ef08b608c..94e9a84c2 100644 --- a/gcloud/alpha/network-security/url-lists/export +++ b/gcloud/alpha/network-security/url-lists/export @@ -1,5 +1,5 @@ NAME - gcloud alpha network-security url-lists export - export UrlList + gcloud alpha network-security url-lists export - export Url List SYNOPSIS gcloud alpha network-security url-lists export @@ -7,16 +7,16 @@ SYNOPSIS [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (ALPHA) Export a UrlList. + (ALPHA) Export a Url List. EXAMPLES - To export a UrlList, run: + To export a Url List, run: $ gcloud alpha network-security url-lists export my-url-list \ --destination=my-url-list.yaml --location=global POSITIONAL ARGUMENTS - Url list resource - Name of the UrlList to export. The arguments in this + Url list resource - Name of the Url List to export. The arguments in this group can be used to specify the attributes of this resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: @@ -67,7 +67,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security url-lists export $ gcloud beta network-security url-lists export diff --git a/gcloud/alpha/network-security/url-lists/help b/gcloud/alpha/network-security/url-lists/help index 6587916fd..0c8187e97 100644 --- a/gcloud/alpha/network-security/url-lists/help +++ b/gcloud/alpha/network-security/url-lists/help @@ -1,11 +1,11 @@ NAME - gcloud alpha network-security url-lists - manage Network Security UrlLists + gcloud alpha network-security url-lists - manage Network Security Url Lists SYNOPSIS gcloud alpha network-security url-lists COMMAND [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (ALPHA) Manage Network Security UrlLists. + (ALPHA) Manage Network Security Url Lists. GCLOUD WIDE FLAGS These flags are available to all commands: --help. @@ -16,22 +16,24 @@ COMMANDS COMMAND is one of the following: delete - (ALPHA) Delete UrlList. + (ALPHA) Delete Url List. export - (ALPHA) Export UrlList. + (ALPHA) Export Url List. import - (ALPHA) Import UrlList. + (ALPHA) Import Url List. list - (ALPHA) List UrlLists. + (ALPHA) List Url Lists. NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security url-lists $ gcloud beta network-security url-lists diff --git a/gcloud/alpha/network-security/url-lists/import b/gcloud/alpha/network-security/url-lists/import index 70a608bbc..901a9c31b 100644 --- a/gcloud/alpha/network-security/url-lists/import +++ b/gcloud/alpha/network-security/url-lists/import @@ -1,5 +1,5 @@ NAME - gcloud alpha network-security url-lists import - import UrlList + gcloud alpha network-security url-lists import - import Url List SYNOPSIS gcloud alpha network-security url-lists import @@ -7,16 +7,16 @@ SYNOPSIS [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (ALPHA) Import a UrlList. + (ALPHA) Import a Url List. EXAMPLES - To import a UrlList from a YAML file, run: + To import a Url List from a YAML file, run: $ gcloud alpha network-security url-lists import my-url-list \ --source=my-url-list.yaml --location=global POSITIONAL ARGUMENTS - Url list resource - Name of the UrlList to import. The arguments in this + Url list resource - Name of the Url List to import. The arguments in this group can be used to specify the attributes of this resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: @@ -74,7 +74,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security url-lists import $ gcloud beta network-security url-lists import diff --git a/gcloud/alpha/network-security/url-lists/list b/gcloud/alpha/network-security/url-lists/list index 45b68f22b..5197e8e25 100644 --- a/gcloud/alpha/network-security/url-lists/list +++ b/gcloud/alpha/network-security/url-lists/list @@ -1,5 +1,5 @@ NAME - gcloud alpha network-security url-lists list - list UrlLists + gcloud alpha network-security url-lists list - list Url Lists SYNOPSIS gcloud alpha network-security url-lists list --location=LOCATION @@ -7,15 +7,16 @@ SYNOPSIS [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (ALPHA) List all UrlLists in the specified location of the current project. + (ALPHA) List all Url Lists in the specified location of the current + project. EXAMPLES - To list UrlLists in the current project, run: + To list Url Lists in the current project, run: $ gcloud alpha network-security url-lists list --location=global REQUIRED FLAGS - Location resource - The project of the UrlLists to display. This + Location resource - The project of the Url Lists to display. This represents a Cloud resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: @@ -79,7 +80,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud network-security url-lists list $ gcloud beta network-security url-lists list diff --git a/gcloud/alpha/publicca/external-account-keys/create b/gcloud/alpha/publicca/external-account-keys/create index f74205179..ee6909142 100644 --- a/gcloud/alpha/publicca/external-account-keys/create +++ b/gcloud/alpha/publicca/external-account-keys/create @@ -32,7 +32,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud publicca external-account-keys create $ gcloud beta publicca external-account-keys create diff --git a/gcloud/alpha/publicca/external-account-keys/help b/gcloud/alpha/publicca/external-account-keys/help index c98e8789e..7bbfaf017 100644 --- a/gcloud/alpha/publicca/external-account-keys/help +++ b/gcloud/alpha/publicca/external-account-keys/help @@ -31,7 +31,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud publicca external-account-keys $ gcloud beta publicca external-account-keys diff --git a/gcloud/alpha/publicca/help b/gcloud/alpha/publicca/help index 254f68b71..27d036e01 100644 --- a/gcloud/alpha/publicca/help +++ b/gcloud/alpha/publicca/help @@ -25,7 +25,9 @@ NOTES This command is currently in alpha and might change without notice. If this command fails with API permission errors despite specifying the correct project, you might be trying to access an API with an invitation-only early - access allowlist. This variant is also available: + access allowlist. These variants are also available: + + $ gcloud publicca $ gcloud beta publicca diff --git a/gcloud/alpha/run/jobs/create b/gcloud/alpha/run/jobs/create index 26290135d..8ce7520e9 100644 --- a/gcloud/alpha/run/jobs/create +++ b/gcloud/alpha/run/jobs/create @@ -4,7 +4,7 @@ NAME SYNOPSIS gcloud alpha run jobs create [JOB] --image=IMAGE [--args=[ARG,...]] [--binary-authorization=POLICY] [--breakglass=JUSTIFICATION] - [--command=[COMMAND,...]] [--cpu=CPU] [--execute-now] [--key=KEY] + [--command=[COMMAND,...]] [--cpu=CPU] [--key=KEY] [--labels=[KEY=VALUE,...]] [--max-retries=MAX_RETRIES] [--memory=MEMORY] [--parallelism=PARALLELISM] [--region=REGION] [--service-account=SERVICE_ACCOUNT] @@ -12,7 +12,7 @@ SYNOPSIS [--set-secrets=[KEY=SECRET_NAME:SECRET_VERSION,...]] [--task-timeout=TASK_TIMEOUT] [--tasks=TASKS; default=1] [--vpc-connector=VPC_CONNECTOR] [--vpc-egress=VPC_EGRESS] - [--async | --wait] + [--async | --execute-now --wait] [--env-vars-file=FILE_PATH | --set-env-vars=[KEY=VALUE,...]] [GCLOUD_WIDE_FLAG ...] @@ -83,9 +83,6 @@ OPTIONAL FLAGS (fully managed), 4 cpus also requires a minimum 2Gi --memory value. Examples 2, 2.0, 2000m - --execute-now - Execute the job immediately after creation. - --key=KEY CMEK key reference to encrypt the container with. @@ -162,10 +159,17 @@ OPTIONAL FLAGS Return immediately, without waiting for the operation in progress to complete. - --wait - Wait until the execution has completed running before exiting. If not - set, gcloud exits successfully when the execution has started. - Implies --execute-now. + --async cannot be used if executing the job after the update. + + --execute-now + Execute the job immediately after the creation or update completes. + gcloud exits once the job has started unless the --wait flag is + set. + + --wait + Wait until the execution has completed running before exiting. If + not set, gcloud exits successfully when the execution has started. + Implies --execute-now. At most one of these can be specified: diff --git a/gcloud/alpha/run/jobs/deploy b/gcloud/alpha/run/jobs/deploy index cf007ef7c..58c623ece 100644 --- a/gcloud/alpha/run/jobs/deploy +++ b/gcloud/alpha/run/jobs/deploy @@ -4,7 +4,7 @@ NAME SYNOPSIS gcloud alpha run jobs deploy [JOB] [--args=[ARG,...]] [--binary-authorization=POLICY] [--breakglass=JUSTIFICATION] - [--command=[COMMAND,...]] [--cpu=CPU] [--execute-now] [--key=KEY] + [--command=[COMMAND,...]] [--cpu=CPU] [--key=KEY] [--labels=[KEY=VALUE,...]] [--max-retries=MAX_RETRIES] [--memory=MEMORY] [--parallelism=PARALLELISM] [--region=REGION] [--service-account=SERVICE_ACCOUNT] @@ -12,7 +12,7 @@ SYNOPSIS [--set-secrets=[KEY=SECRET_NAME:SECRET_VERSION,...]] [--task-timeout=TASK_TIMEOUT] [--tasks=TASKS; default=1] [--vpc-connector=VPC_CONNECTOR] [--vpc-egress=VPC_EGRESS] - [--async | --wait] + [--async | --execute-now --wait] [--clear-env-vars | --env-vars-file=FILE_PATH | --set-env-vars=[KEY=VALUE,...] | --remove-env-vars=[KEY,...] --update-env-vars=[KEY=VALUE,...]] @@ -80,9 +80,6 @@ FLAGS (fully managed), 4 cpus also requires a minimum 2Gi --memory value. Examples 2, 2.0, 2000m - --execute-now - Execute the job immediately after creation. - --key=KEY CMEK key reference to encrypt the container with. @@ -159,10 +156,17 @@ FLAGS Return immediately, without waiting for the operation in progress to complete. - --wait - Wait until the execution has completed running before exiting. If not - set, gcloud exits successfully when the execution has started. - Implies --execute-now. + --async cannot be used if executing the job after the update. + + --execute-now + Execute the job immediately after the creation or update completes. + gcloud exits once the job has started unless the --wait flag is + set. + + --wait + Wait until the execution has completed running before exiting. If + not set, gcloud exits successfully when the execution has started. + Implies --execute-now. At most one of these can be specified: diff --git a/gcloud/alpha/run/jobs/update b/gcloud/alpha/run/jobs/update index 3a2b3cda7..702e6e7db 100644 --- a/gcloud/alpha/run/jobs/update +++ b/gcloud/alpha/run/jobs/update @@ -4,8 +4,8 @@ NAME SYNOPSIS gcloud alpha run jobs update [JOB] [--args=[ARG,...]] [--breakglass=JUSTIFICATION] [--clear-vpc-connector] - [--command=[COMMAND,...]] [--cpu=CPU] [--execute-now] [--image=IMAGE] - [--key=KEY] [--max-retries=MAX_RETRIES] [--memory=MEMORY] + [--command=[COMMAND,...]] [--cpu=CPU] [--image=IMAGE] [--key=KEY] + [--max-retries=MAX_RETRIES] [--memory=MEMORY] [--parallelism=PARALLELISM] [--region=REGION] [--service-account=SERVICE_ACCOUNT] [--task-timeout=TASK_TIMEOUT] [--tasks=TASKS; default=1] [--vpc-connector=VPC_CONNECTOR] @@ -14,7 +14,7 @@ SYNOPSIS | --clear-cloudsql-instances | --remove-cloudsql-instances=[CLOUDSQL-INSTANCES,...] | --set-cloudsql-instances=[CLOUDSQL-INSTANCES,...]] - [--async | --wait] + [--async | --execute-now --wait] [--binary-authorization=POLICY | --clear-binary-authorization] [--clear-env-vars | --env-vars-file=FILE_PATH | --set-env-vars=[KEY=VALUE,...] @@ -80,9 +80,6 @@ FLAGS (fully managed), 4 cpus also requires a minimum 2Gi --memory value. Examples 2, 2.0, 2000m - --execute-now - Execute the job immediately after creation. - --image=IMAGE Name of the container image to deploy (e.g. us-docker.pkg.dev/cloudrun/container/job:latest). @@ -168,10 +165,17 @@ FLAGS Return immediately, without waiting for the operation in progress to complete. - --wait - Wait until the execution has completed running before exiting. If not - set, gcloud exits successfully when the execution has started. - Implies --execute-now. + --async cannot be used if executing the job after the update. + + --execute-now + Execute the job immediately after the creation or update completes. + gcloud exits once the job has started unless the --wait flag is + set. + + --wait + Wait until the execution has completed running before exiting. If + not set, gcloud exits successfully when the execution has started. + Implies --execute-now. At most one of these can be specified: diff --git a/gcloud/alpha/storage/buckets/list b/gcloud/alpha/storage/buckets/list index 46d92f174..0d43d8580 100644 --- a/gcloud/alpha/storage/buckets/list +++ b/gcloud/alpha/storage/buckets/list @@ -15,11 +15,11 @@ EXAMPLES $ gcloud alpha storage buckets list - List buckets beginning with "b": + List buckets beginning with ``b'': $ gcloud alpha storage buckets list gs://b* - List buckets with JSON formatting, only returning the "name" key: + List buckets with JSON formatting, only returning the name key: $ gcloud alpha storage buckets list --format="json(name)" diff --git a/gcloud/alpha/storage/ls b/gcloud/alpha/storage/ls index de0d5c7c1..8139aee8d 100644 --- a/gcloud/alpha/storage/ls +++ b/gcloud/alpha/storage/ls @@ -27,39 +27,32 @@ EXAMPLES $ gcloud alpha storage ls gs://my-bucket - You can use wildcards to match multiple paths (including multiple buckets). - Bucket wildcards are expanded to match only buckets contained in your - current project. The following command matches .txt objects that begin with - log and that are stored in buckets in your project that begin with my-b: + You can use wildcards (https://cloud.google.com/storage/docs/wildcards) to + match multiple paths (including multiple buckets). Bucket wildcards are + expanded to match only buckets contained in your current project. The + following command matches .txt objects that begin with log and that are + stored in buckets in your project that begin with my-b: $ gcloud alpha storage ls gs://my-b*/log*.txt - The following wildcards are valid and match only within the current - directory: - - *: Matches zero or more characters - ?: Matches zero or one characters - []: Matches a character range (ex. [a-z] or [0-9]) - You can use double-star wildcards to match zero or more directory levels in a path. The following command matches all .txt objects in a bucket. $ gcloud alpha storage ls gs://my-bucket/**/*.txt - ** retrieves a flat list of objects in a single API call and will not match - prefixes. The following command would not match gs://my-bucket/dir/log.txt: + The wildcard ** retrieves a flat list of objects in a single API call and + does not match prefixes. The following command would not match + gs://my-bucket/dir/log.txt: $ gcloud alpha storage ls gs://my-bucket/**/dir Double-star expansion also can not be combined with other expressions in a given path segment and operates as a single star in that context. For - example: + example, the command gs://my-bucket/dir**/log.txt is treated as + gs://my-bucket/dir*/log.txt. To get the recursive behavior, the command + should instead be written the following way: - gs://my-bucket/dir**/log.txt is treated as: - - gs://my-bucket/dir*/log.txt and instead should be written as: - - gs://my-bucket/dir*/**/log.txt to get the recursive behavior. + gs://my-bucket/dir*/**/log.txt The following command lists all items recursively with formatting by using --recursive: diff --git a/gcloud/alpha/storage/objects/list b/gcloud/alpha/storage/objects/list index 9571438b7..66c4de692 100644 --- a/gcloud/alpha/storage/objects/list +++ b/gcloud/alpha/storage/objects/list @@ -11,20 +11,20 @@ SYNOPSIS DESCRIPTION (ALPHA) List Cloud Storage objects. - Bucket URLs like "gs://bucket" will match all the objects inside a bucket, - but "gs://b" will error because it matches a list of buckets. + Bucket URLs like gs://bucket match all the objects inside a bucket, but + gs://b* fails because it matches a list of buckets. EXAMPLES - List all objects in bucket "my-bucket": + List all objects in bucket my-bucket: $ gcloud alpha storage objects list gs://my-bucket - List all objects in bucket beginning with "o": + List all objects in bucket beginning with ``o'': $ gcloud alpha storage objects list gs://my-bucket/o* List all objects in bucket with JSON formatting, only returning the value - of the "name" metadata field: + of the name metadata field: $ gcloud alpha storage objects list gs://my-bucket \ --format="json(name)" diff --git a/gcloud/alpha/tasks/buffer b/gcloud/alpha/tasks/buffer new file mode 100644 index 000000000..0df484d12 --- /dev/null +++ b/gcloud/alpha/tasks/buffer @@ -0,0 +1,42 @@ +NAME + gcloud alpha tasks buffer - buffers a task into a queue + +SYNOPSIS + gcloud alpha tasks buffer --location=LOCATION --queue=QUEUE + [--task-id=TASK_ID] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (ALPHA) Buffers a task into a queue. + +EXAMPLES + To buffer into a queue: + + $ gcloud alpha tasks buffer --queue=my-queue --location=us-central1 + +REQUIRED FLAGS + --location=LOCATION + The location where the queue exists. + + --queue=QUEUE + The queue the task belongs to. + +OPTIONAL FLAGS + --task-id=TASK_ID + The task ID for the task being created. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in alpha and might change without notice. If this + command fails with API permission errors despite specifying the correct + project, you might be trying to access an API with an invitation-only early + access allowlist. This variant is also available: + + $ gcloud beta tasks buffer + diff --git a/gcloud/alpha/tasks/help b/gcloud/alpha/tasks/help index 7eafe4219..aa803c871 100644 --- a/gcloud/alpha/tasks/help +++ b/gcloud/alpha/tasks/help @@ -27,6 +27,9 @@ COMMANDS acknowledge (ALPHA) Acknowledge the lease on a task in a pull queue. + buffer + (ALPHA) Buffers a task into a queue. + cancel-lease (ALPHA) Cancel the lease on a task in a pull queue. diff --git a/gcloud/alpha/tasks/queues/create b/gcloud/alpha/tasks/queues/create index a69e338ad..cecbc1c4c 100644 --- a/gcloud/alpha/tasks/queues/create +++ b/gcloud/alpha/tasks/queues/create @@ -33,7 +33,7 @@ POSITIONAL ARGUMENTS FLAGS --http-header-override=HEADER_FIELD: HEADER_VALUE - If provided, the specified HTTP headers overrides the existing headers + If provided, the specified HTTP headers override the existing headers for all tasks in the queue. If a task has a header with the same Key as a queue-level header override, then the value of the task header will be overriden with the value of the queue-level header. Otherwise, the diff --git a/gcloud/alpha/tasks/queues/update b/gcloud/alpha/tasks/queues/update index 5b9faeb2a..b9755b800 100644 --- a/gcloud/alpha/tasks/queues/update +++ b/gcloud/alpha/tasks/queues/update @@ -59,10 +59,10 @@ FLAGS Clear the field corresponding to --http-header-override. --http-header-override=HEADER_FIELD: HEADER_VALUE - If provided, the specified HTTP headers overrides the existing - headers for all tasks in the queue. If a task has a header with the - same Key as a queue-level header override, then the value of the task - header will be overriden with the value of the queue-level header. + If provided, the specified HTTP headers override the existing headers + for all tasks in the queue. If a task has a header with the same Key + as a queue-level header override, then the value of the task header + will be overriden with the value of the queue-level header. Otherwise, the queue-level header will be added to the task headers. Header values can contain commas. This flag can be repeated. Repeated header fields will have their values overridden. diff --git a/gcloud/alpha/transfer/jobs/create b/gcloud/alpha/transfer/jobs/create index 335b3a542..672cee45e 100644 --- a/gcloud/alpha/transfer/jobs/create +++ b/gcloud/alpha/transfer/jobs/create @@ -152,10 +152,13 @@ FLAGS interact with any of your existing Cloud Storage data. --manifest-file=MANIFEST_FILE - Path to a .csv file in a Google Cloud Storage bucket containing a - list of files to transfer from your source. E.g., - gs://mybucket/manifest.csv. For manifest file formatting, see - https://cloud.google.com/storage-transfer/docs/manifest. + Path to a .csv file containing a list of files to transfer from your + source. For manifest files in Cloud Storage, specify the absolute + path (e.g., gs://mybucket/manifest.csv). For manifest files stored in + a source or destination POSIX file system, provide the relative path + (e.g., source://path/to/manfest.csv or + destination://path/to/manifest.csv). For manifest file formatting, + see https://cloud.google.com/storage-transfer/docs/manifest. EVENT STREAM diff --git a/gcloud/alpha/transfer/jobs/update b/gcloud/alpha/transfer/jobs/update index 3d1cfd6a4..82a7ad209 100644 --- a/gcloud/alpha/transfer/jobs/update +++ b/gcloud/alpha/transfer/jobs/update @@ -175,10 +175,13 @@ FLAGS interact with any of your existing Cloud Storage data. --manifest-file=MANIFEST_FILE - Path to a .csv file in a Google Cloud Storage bucket containing a - list of files to transfer from your source. E.g., - gs://mybucket/manifest.csv. For manifest file formatting, see - https://cloud.google.com/storage-transfer/docs/manifest. + Path to a .csv file containing a list of files to transfer from your + source. For manifest files in Cloud Storage, specify the absolute + path (e.g., gs://mybucket/manifest.csv). For manifest files stored in + a source or destination POSIX file system, provide the relative path + (e.g., source://path/to/manfest.csv or + destination://path/to/manifest.csv). For manifest file formatting, + see https://cloud.google.com/storage-transfer/docs/manifest. EVENT STREAM diff --git a/gcloud/alpha/workstations/clusters/create b/gcloud/alpha/workstations/clusters/create index a48c703d9..9e94b3b90 100644 --- a/gcloud/alpha/workstations/clusters/create +++ b/gcloud/alpha/workstations/clusters/create @@ -3,8 +3,8 @@ NAME SYNOPSIS gcloud alpha workstations clusters create (CLUSTER : --region=REGION) - [--async] [--enable-private-endpoint] [--network=NETWORK] - [--subnetwork=SUBNETWORK] [GCLOUD_WIDE_FLAG ...] + [--async] [--enable-private-endpoint] [--labels=[LABELS,...]] + [--network=NETWORK] [--subnetwork=SUBNETWORK] [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Create a workstation cluster. @@ -61,6 +61,10 @@ FLAGS workstations from public networks, but requires additional configuration. Learn more: https://cloud.google.com/workstations/docs. + --labels=[LABELS,...] + Labels that are applied to the cluster and propagated to the underlying + Compute Engine resources. + --network=NETWORK The network that instances created under the cluster will be associated with. diff --git a/gcloud/alpha/workstations/configs/create b/gcloud/alpha/workstations/configs/create index 088567cf8..78c853e07 100644 --- a/gcloud/alpha/workstations/configs/create +++ b/gcloud/alpha/workstations/configs/create @@ -135,7 +135,7 @@ FLAGS instance should never time out due to idleness. --labels=[LABELS,...] - Labels that are applied to the resource and propagated to the + Labels that are applied to the configuration and propagated to the underlying Compute Engine resources. Example: diff --git a/gcloud/alpha/workstations/configs/update b/gcloud/alpha/workstations/configs/update index 161fe3468..6951629c3 100644 --- a/gcloud/alpha/workstations/configs/update +++ b/gcloud/alpha/workstations/configs/update @@ -123,7 +123,7 @@ FLAGS instance should never time out due to idleness. --labels=[LABELS,...] - Labels that are applied to the resource and propagated to the + Labels that are applied to the configuration and propagated to the underlying Compute Engine resources. Example: diff --git a/gcloud/alpha/workstations/create b/gcloud/alpha/workstations/create index 9be0c8e97..9488853f8 100644 --- a/gcloud/alpha/workstations/create +++ b/gcloud/alpha/workstations/create @@ -4,7 +4,7 @@ NAME SYNOPSIS gcloud alpha workstations create (WORKSTATION : --cluster=CLUSTER --config=CONFIG --region=REGION) - [--async] [GCLOUD_WIDE_FLAG ...] + [--async] [--labels=[LABELS,...]] [GCLOUD_WIDE_FLAG ...] DESCRIPTION (ALPHA) Create a workstation. @@ -63,6 +63,10 @@ FLAGS Return immediately, without waiting for the operation in progress to complete. + --labels=[LABELS,...] + Labels that are applied to the workstation and propagated to the + underlying Compute Engine resources. + GCLOUD WIDE FLAGS These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, diff --git a/gcloud/auth/application-default/print-access-token b/gcloud/auth/application-default/print-access-token index e6e5f9bf4..7eef063dd 100644 --- a/gcloud/auth/application-default/print-access-token +++ b/gcloud/auth/application-default/print-access-token @@ -3,7 +3,7 @@ NAME for your current Application Default Credentials SYNOPSIS - gcloud auth application-default print-access-token + gcloud auth application-default print-access-token [--lifetime=LIFETIME] [--scopes=SCOPE,[SCOPE,...]] [GCLOUD_WIDE_FLAG ...] DESCRIPTION @@ -42,6 +42,16 @@ DESCRIPTION https://cloud.google.com/apis/docs/system-parameters for more information. FLAGS + --lifetime=LIFETIME + Access token lifetime. The default access token lifetime is 3600 + seconds, but you can use this flag to reduce the lifetime or extend it + up to 43200 seconds (12 hours). The org policy constraint + constraints/iam.allowServiceAccountCredentialLifetimeExtension must be + set if you want to extend the lifetime beyond 3600 seconds. Note that + this flag is for service account impersonation only, so it only works + when either --impersonate-service-account flag or + auth/impersonate_service_account property is set. + --scopes=SCOPE,[SCOPE,...] The scopes to authorize for. This flag is supported for user accounts and service accounts only. The list of possible scopes can be found at: diff --git a/gcloud/beta/auth/application-default/print-access-token b/gcloud/beta/auth/application-default/print-access-token index 2d48b2053..f510e2506 100644 --- a/gcloud/beta/auth/application-default/print-access-token +++ b/gcloud/beta/auth/application-default/print-access-token @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud beta auth application-default print-access-token - [--scopes=SCOPE,[SCOPE,...]] [GCLOUD_WIDE_FLAG ...] + [--lifetime=LIFETIME] [--scopes=SCOPE,[SCOPE,...]] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) gcloud beta auth application-default print-access-token generates @@ -42,6 +43,16 @@ DESCRIPTION https://cloud.google.com/apis/docs/system-parameters for more information. FLAGS + --lifetime=LIFETIME + Access token lifetime. The default access token lifetime is 3600 + seconds, but you can use this flag to reduce the lifetime or extend it + up to 43200 seconds (12 hours). The org policy constraint + constraints/iam.allowServiceAccountCredentialLifetimeExtension must be + set if you want to extend the lifetime beyond 3600 seconds. Note that + this flag is for service account impersonation only, so it only works + when either --impersonate-service-account flag or + auth/impersonate_service_account property is set. + --scopes=SCOPE,[SCOPE,...] The scopes to authorize for. This flag is supported for user accounts and service accounts only. The list of possible scopes can be found at: diff --git a/gcloud/beta/compute/commitments/create b/gcloud/beta/compute/commitments/create index 7e935642f..c7b674528 100644 --- a/gcloud/beta/compute/commitments/create +++ b/gcloud/beta/compute/commitments/create @@ -100,8 +100,8 @@ OPTIONAL FLAGS for memory-optimized VMs. TYPE must be one of: accelerator-optimized, compute-optimized, compute-optimized-c2d, compute-optimized-c3, general-purpose, general-purpose-e2, general-purpose-n2, - general-purpose-n2d, general-purpose-t2d, memory-optimized, - memory-optimized-m3. + general-purpose-n2d, general-purpose-t2d, graphics-optimized, + memory-optimized, memory-optimized-m3. Manage the reservations to be created with the commitment. diff --git a/gcloud/beta/compute/routers/nats/create b/gcloud/beta/compute/routers/nats/create index 159db04c5..402a98a88 100644 --- a/gcloud/beta/compute/routers/nats/create +++ b/gcloud/beta/compute/routers/nats/create @@ -9,6 +9,7 @@ SYNOPSIS (--nat-all-subnet-ip-ranges | --nat-custom-subnet-ip-ranges=SUBNETWORK[:RANGE_NAME],[...] | --nat-primary-subnet-ip-ranges) [--async] + [--auto-network-tier=AUTO_NETWORK_TIER] [--[no-]enable-dynamic-port-allocation] [--enable-endpoint-independent-mapping] [--enable-logging] [--endpoint-types=[ENDPOINT_TYPE,...]] @@ -88,6 +89,17 @@ OPTIONAL FLAGS Return immediately, without waiting for the operation in progress to complete. + --auto-network-tier=AUTO_NETWORK_TIER + The network tier to use when automatically reserving NAT IP addresses. + AUTO_NETWORK_TIER must be one of: + + PREMIUM + High quality, Google-grade network tier with support for all + networking products. + STANDARD + Public internet quality, with only limited support for other + networking products. + --[no-]enable-dynamic-port-allocation Enable dynamic port allocation. diff --git a/gcloud/beta/compute/routers/nats/update b/gcloud/beta/compute/routers/nats/update index ecb87aa45..4bf689919 100644 --- a/gcloud/beta/compute/routers/nats/update +++ b/gcloud/beta/compute/routers/nats/update @@ -4,6 +4,7 @@ NAME SYNOPSIS gcloud beta compute routers nats update NAME --router=ROUTER [--async] + [--auto-network-tier=AUTO_NETWORK_TIER] [--[no-]enable-dynamic-port-allocation] [--enable-endpoint-independent-mapping] [--enable-logging] [--log-filter=LOG_FILTER] [--region=REGION] [--rules=RULES] @@ -70,6 +71,17 @@ OPTIONAL FLAGS Return immediately, without waiting for the operation in progress to complete. + --auto-network-tier=AUTO_NETWORK_TIER + The network tier to use when automatically reserving NAT IP addresses. + AUTO_NETWORK_TIER must be one of: + + PREMIUM + High quality, Google-grade network tier with support for all + networking products. + STANDARD + Public internet quality, with only limited support for other + networking products. + --[no-]enable-dynamic-port-allocation Enable dynamic port allocation. diff --git a/gcloud/beta/compute/target-https-proxies/create b/gcloud/beta/compute/target-https-proxies/create index dfa9881f3..1e44aa9ab 100644 --- a/gcloud/beta/compute/target-https-proxies/create +++ b/gcloud/beta/compute/target-https-proxies/create @@ -6,7 +6,9 @@ SYNOPSIS gcloud beta compute target-https-proxies create NAME --url-map=URL_MAP [--certificate-map=CERTIFICATE_MAP] [--description=DESCRIPTION] [--quic-override=QUIC_OVERRIDE; default="NONE"] - [--ssl-certificates=SSL_CERTIFICATE,[...]] [--ssl-policy=SSL_POLICY] + [--ssl-policy=SSL_POLICY] + [--certificate-manager-certificates=[CERTIFICATE_MANAGER_CERTIFICATES, + ...] | --ssl-certificates=SSL_CERTIFICATE,[...]] [--global | --region=REGION] [--global-ssl-certificates | --ssl-certificates-region=SSL_CERTIFICATES_REGION] @@ -83,19 +85,39 @@ OPTIONAL FLAGS NONE Allows Google to control when QUIC is rolled out. - --ssl-certificates=SSL_CERTIFICATE,[...] - References to at most 15 SSL certificate resources that are used for - server-side authentication. The first SSL certificate in this list is - considered the primary SSL certificate associated with the load - balancer. The SSL certificates must exist and cannot be deleted while - referenced by a target HTTPS proxy. - --ssl-policy=SSL_POLICY A reference to an SSL policy resource that defines the server-side support for SSL features and affects the connections between clients and the HTTPS proxy load balancer. The SSL policy must exist and cannot be deleted while referenced by a target HTTPS proxy. + At most one of these can be specified: + + Certificate resource - certificate-manager-certificates to attach. This + represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ▸ provide the argument --certificate-manager-certificates on the + command line with a fully specified name; + ▸ provide the argument --project on the command line; + ▸ set the property core/project. To set the location attribute: + ▸ provide the argument --certificate-manager-certificates on the + command line with a fully specified name; + ▸ default value of location is [global]. + + --certificate-manager-certificates=[CERTIFICATE_MANAGER_CERTIFICATES,...] + IDs of the certificates or fully qualified identifiers for the + certificates. To set the certificate attribute: + ▫ provide the argument --certificate-manager-certificates on the + command line. + + --ssl-certificates=SSL_CERTIFICATE,[...] + References to at most 15 SSL certificate resources that are used for + server-side authentication. The first SSL certificate in this list is + considered the primary SSL certificate associated with the load + balancer. The SSL certificates must exist and cannot be deleted while + referenced by a target HTTPS proxy. + At most one of these can be specified: --global diff --git a/gcloud/beta/compute/target-https-proxies/update b/gcloud/beta/compute/target-https-proxies/update index 23e41420e..2d25e4116 100644 --- a/gcloud/beta/compute/target-https-proxies/update +++ b/gcloud/beta/compute/target-https-proxies/update @@ -5,9 +5,11 @@ NAME SYNOPSIS gcloud beta compute target-https-proxies update NAME [--quic-override=QUIC_OVERRIDE] [--url-map=URL_MAP] - [--certificate-map=CERTIFICATE_MAP | --clear-certificate-map + [--certificate-manager-certificates=[CERTIFICATE_MANAGER_CERTIFICATES, + ...] | --clear-ssl-certificates | --ssl-certificates=SSL_CERTIFICATE,[...] --global-ssl-certificates - | --ssl-certificates-region=SSL_CERTIFICATES_REGION] + | --ssl-certificates-region=SSL_CERTIFICATES_REGION + | --certificate-map=CERTIFICATE_MAP | --clear-certificate-map] [--clear-ssl-policy | --ssl-policy=SSL_POLICY --global-ssl-policy | --ssl-policy-region=SSL_POLICY_REGION] [--global | --region=REGION] [--global-url-map | --url-map-region=URL_MAP_REGION] @@ -73,32 +75,33 @@ FLAGS At most one of these can be specified: - Certificate map resource - The certificate map to attach. This - represents a Cloud resource. (NOTE) Some attributes are not given + Certificate resource - certificate-manager-certificates to attach. + This represents a Cloud resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: - ▫ provide the argument --certificate-map on the command line with a - fully specified name; + ▫ provide the argument --certificate-manager-certificates on the + command line with a fully specified name; ▫ provide the argument --project on the command line; ▫ set the property core/project. To set the location attribute: - ▫ provide the argument --certificate-map on the command line with a - fully specified name; + ▫ provide the argument --certificate-manager-certificates on the + command line with a fully specified name; ▫ default value of location is [global]. - --certificate-map=CERTIFICATE_MAP - ID of the certificate map or fully qualified identifier for the - certificate map. To set the map attribute: - ◇ provide the argument --certificate-map on the command line. + --certificate-manager-certificates=[CERTIFICATE_MANAGER_CERTIFICATES,...] + IDs of the certificates or fully qualified identifiers for the + certificates. To set the certificate attribute: + ◇ provide the argument --certificate-manager-certificates on + the command line. - --clear-certificate-map - Removes any attached certificate map from the HTTPS proxy. + --clear-ssl-certificates + Remove any attached SSL certificates from the HTTPS proxy. - --ssl-certificates=SSL_CERTIFICATE,[...] - References to at most 15 SSL certificate resources that are used for - server-side authentication. The first SSL certificate in this list is - considered the primary SSL certificate associated with the load - balancer. The SSL certificates must exist and cannot be deleted while - referenced by a target HTTPS proxy. + --ssl-certificates=SSL_CERTIFICATE,[...] + References to at most 15 SSL certificate resources that are used + for server-side authentication. The first SSL certificate in this + list is considered the primary SSL certificate associated with the + load balancer. The SSL certificates must exist and cannot be + deleted while referenced by a target HTTPS proxy. At most one of these can be specified: @@ -125,6 +128,28 @@ FLAGS Alternatively, the region can be stored in the environment variable CLOUDSDK_COMPUTE_REGION. + At most one of these can be specified: + + Certificate map resource - The certificate map to attach. This + represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the + project attribute: + ▫ provide the argument --certificate-map on the command line with a + fully specified name; + ▫ provide the argument --project on the command line; + ▫ set the property core/project. To set the location attribute: + ▫ provide the argument --certificate-map on the command line with a + fully specified name; + ▫ default value of location is [global]. + + --certificate-map=CERTIFICATE_MAP + ID of the certificate map or fully qualified identifier for the + certificate map. To set the map attribute: + ◇ provide the argument --certificate-map on the command line. + + --clear-certificate-map + Removes any attached certificate map from the HTTPS proxy. + At most one of these can be specified: --clear-ssl-policy diff --git a/gcloud/beta/compute/target-ssl-proxies/update b/gcloud/beta/compute/target-ssl-proxies/update index b6e528537..3a134b4ea 100644 --- a/gcloud/beta/compute/target-ssl-proxies/update +++ b/gcloud/beta/compute/target-ssl-proxies/update @@ -69,7 +69,7 @@ FLAGS referenced by a target SSL proxy. --clear-ssl-certificates - Removes any attached SSL Certificates from the SSL proxy. + Remove any attached SSL certificates from the SSL proxy. Certificate map resource - The certificate map to attach. This represents a Cloud resource. (NOTE) Some attributes are not given diff --git a/gcloud/beta/container/bare-metal/admin-clusters/help b/gcloud/beta/container/bare-metal/admin-clusters/help index f280dcdef..4d048d7f8 100644 --- a/gcloud/beta/container/bare-metal/admin-clusters/help +++ b/gcloud/beta/container/bare-metal/admin-clusters/help @@ -33,6 +33,10 @@ COMMANDS (BETA) Query versions for creating or upgrading an Anthos on bare metal admin cluster. + unenroll + (BETA) Unenroll an Anthos on bare metal admin cluster so that it is no + longer managed by the Anthos On-Prem API. + update (BETA) Update an Anthos on bare metal admin cluster. diff --git a/gcloud/beta/container/bare-metal/admin-clusters/unenroll b/gcloud/beta/container/bare-metal/admin-clusters/unenroll new file mode 100644 index 000000000..f8b2cad74 --- /dev/null +++ b/gcloud/beta/container/bare-metal/admin-clusters/unenroll @@ -0,0 +1,76 @@ +NAME + gcloud beta container bare-metal admin-clusters unenroll - unenroll an + Anthos on bare metal admin cluster so that it is no longer managed by + the Anthos On-Prem API + +SYNOPSIS + gcloud beta container bare-metal admin-clusters unenroll + (ADMIN_CLUSTER : --location=LOCATION) [--allow-missing] [--async] + [--validate-only] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (BETA) Unenroll an Anthos on bare metal admin cluster so that it is no + longer managed by the Anthos On-Prem API. + +EXAMPLES + To unenroll an admin cluster named my-cluster managed in location us-west1, + run: + + $ gcloud beta container bare-metal admin-clusters unenroll \ + my-cluster --location=us-west1 + +POSITIONAL ARGUMENTS + Admin cluster resource - admin cluster to unenroll The arguments in this + group can be used to specify the attributes of this resource. (NOTE) Some + attributes are not given arguments in this group but can be set in other + ways. To set the project attribute: + ◆ provide the argument admin_cluster on the command line with a fully + specified name; + ◆ provide the argument --project on the command line; + ◆ set the property core/project. + + This must be specified. + + ADMIN_CLUSTER + ID of the admin_cluster or fully qualified identifier for the + admin_cluster. To set the admin_cluster attribute: + ▸ provide the argument admin_cluster on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + Google Cloud location for the admin_cluster. To set the location + attribute: + ▸ provide the argument admin_cluster on the command line with a + fully specified name; + ▸ provide the argument --location on the command line; + ▸ set the property container_bare_metal/location. + +FLAGS + --allow-missing + If set, and the Bare Metal cluster is not found, the request will + succeed but no action will be taken. + + --async + Return immediately, without waiting for the operation in progress to + complete. + + --validate-only + If set, only validate the request, but do not actually perform the + operation. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in beta and might change without notice. This + variant is also available: + + $ gcloud alpha container bare-metal admin-clusters unenroll + diff --git a/gcloud/beta/container/bare-metal/clusters/update b/gcloud/beta/container/bare-metal/clusters/update index b42721313..bf95bdfd8 100644 --- a/gcloud/beta/container/bare-metal/clusters/update +++ b/gcloud/beta/container/bare-metal/clusters/update @@ -9,6 +9,8 @@ SYNOPSIS [--enable-application-logs] [--login-user=LOGIN_USER] [--maintenance-address-cidr-blocks=[MAINTENANCE_ADDRESS_CIDR_BLOCKS, ...]] [--validate-only] [--version=VERSION] + [--add-annotations=[KEY1=VALUE1,KEY2=VALUE2,...] + | --remove-annotations=[KEY1,KEY2,...]] [--api-server-args=[KEY=VALUE,...] --control-plane-node-configs=[labels=LABELS],[node-ip=NODE-IP] --control-plane-node-labels=[KEY=VALUE,...] @@ -120,6 +122,15 @@ FLAGS --version=VERSION Anthos cluster on bare metal version for the user cluster resource. + At most one of these can be specified: + + --add-annotations=[KEY1=VALUE1,KEY2=VALUE2,...] + Add the given key-value pairs to the current annotations, or update + its value if the key already exists. + + --remove-annotations=[KEY1,KEY2,...] + Remove annotations of the given keys. + Anthos on bare metal cluster control plane configuration. --api-server-args=[KEY=VALUE,...] diff --git a/gcloud/beta/container/clusters/create b/gcloud/beta/container/clusters/create index 28230e6f6..899a243b0 100644 --- a/gcloud/beta/container/clusters/create +++ b/gcloud/beta/container/clusters/create @@ -101,12 +101,12 @@ SYNOPSIS | --ephemeral-storage-local-ssd=[count=COUNT] | --local-nvme-ssd-block=[count=COUNT] | --local-ssd-count=LOCAL_SSD_COUNT] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--maintenance-window=START_TIME | --maintenance-window-end=TIME_STAMP --maintenance-window-recurrence=RRULE --maintenance-window-start=TIME_STAMP] [--password=PASSWORD --enable-basic-auth | --username=USERNAME, -u USERNAME] - [--region=REGION | --zone=ZONE, -z ZONE] [--reservation=RESERVATION --reservation-affinity=RESERVATION_AFFINITY] [--scopes=[SCOPE,...]; default="gke-default" --service-account=SERVICE_ACCOUNT] @@ -1132,11 +1132,12 @@ FLAGS --node-locations=ZONE,[ZONE,...] The set of zones in which the specified node footprint should be replicated. All zones must be in the same region as the cluster's - master(s), specified by the --zone or --region flag. Additionally, - for zonal clusters, --node-locations must contain the cluster's - primary zone. If not specified, all nodes will be in the cluster's - primary zone (for zonal clusters) or spread across three randomly - chosen zones within the cluster's region (for regional clusters). + master(s), specified by the -location, --zone, or --region flag. + Additionally, for zonal clusters, --node-locations must contain the + cluster's primary zone. If not specified, all nodes will be in the + cluster's primary zone (for zonal clusters) or spread across three + randomly chosen zones within the cluster's region (for regional + clusters). Note that NUM_NODES nodes will be created in each zone, such that if you specify --num-nodes=4 and choose two locations, 8 nodes will be @@ -1146,7 +1147,7 @@ FLAGS example: $ gcloud beta container clusters create example-cluster \ - --zone us-central1-a \ + --location us-central1-a \ --node-locations us-central1-a,us-central1-b Flags for Binary Authorization: @@ -1656,6 +1657,19 @@ FLAGS zone. See https://cloud.google.com/compute/docs/disks/local-ssd for more information. + At most one of these can be specified: + + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + + --region=REGION + Compute region (e.g. us-central1) for the cluster. + + --zone=ZONE, -z ZONE + Compute zone (e.g. us-central1-a) for the cluster. Overrides the + default compute/zone property value for this command invocation. + One of either maintenance-window or the group of maintenance-window flags can be set. @@ -1749,15 +1763,6 @@ FLAGS to specify a password; if not, the server will randomly generate one. - At most one of these can be specified: - - --region=REGION - Compute region (e.g. us-central1) for the cluster. - - --zone=ZONE, -z ZONE - Compute zone (e.g. us-central1-a) for the cluster. Overrides the - default compute/zone property value for this command invocation. - Specifies the reservation for the default initial node pool. --reservation=RESERVATION diff --git a/gcloud/beta/container/clusters/create-auto b/gcloud/beta/container/clusters/create-auto index adc6bfca2..727b1175d 100644 --- a/gcloud/beta/container/clusters/create-auto +++ b/gcloud/beta/container/clusters/create-auto @@ -22,7 +22,7 @@ SYNOPSIS --master-authorized-networks=NETWORK,[NETWORK,...]] [--enable-private-endpoint --enable-private-nodes --master-ipv4-cidr=MASTER_IPV4_CIDR] - [--region=REGION | --zone=ZONE, -z ZONE] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--scopes=[SCOPE,...]; default="gke-default" --service-account=SERVICE_ACCOUNT] [GCLOUD_WIDE_FLAG ...] @@ -299,6 +299,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/clusters/delete b/gcloud/beta/container/clusters/delete index 99ce39c32..a819b0d58 100644 --- a/gcloud/beta/container/clusters/delete +++ b/gcloud/beta/container/clusters/delete @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud beta container clusters delete NAME [NAME ...] [--async] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) When you delete a cluster, the following resources are deleted: @@ -39,6 +40,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/clusters/describe b/gcloud/beta/container/clusters/describe index 78f1aa8ec..56b07f9c3 100644 --- a/gcloud/beta/container/clusters/describe +++ b/gcloud/beta/container/clusters/describe @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud beta container clusters describe NAME - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Describe an existing cluster for running containers. @@ -21,6 +22,10 @@ POSITIONAL ARGUMENTS FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/clusters/get-credentials b/gcloud/beta/container/clusters/get-credentials index 8a2f0338b..b572acf4a 100644 --- a/gcloud/beta/container/clusters/get-credentials +++ b/gcloud/beta/container/clusters/get-credentials @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud beta container clusters get-credentials NAME [--internal-ip] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) gcloud beta container clusters get-credentials updates a kubeconfig @@ -37,7 +38,7 @@ EXAMPLES To switch to working on your cluster 'sample-cluster', run: $ gcloud beta container clusters get-credentials sample-cluster \ - --zone=us-central1-f + --location=us-central1-f POSITIONAL ARGUMENTS NAME @@ -50,6 +51,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/clusters/help b/gcloud/beta/container/clusters/help index dbcf8e768..d376f69de 100644 --- a/gcloud/beta/container/clusters/help +++ b/gcloud/beta/container/clusters/help @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud beta container clusters COMMAND - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) The gcloud container clusters command group lets you deploy and @@ -16,6 +17,10 @@ DESCRIPTION FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/clusters/list b/gcloud/beta/container/clusters/list index 2f2210887..fec29f123 100644 --- a/gcloud/beta/container/clusters/list +++ b/gcloud/beta/container/clusters/list @@ -4,15 +4,15 @@ NAME SYNOPSIS gcloud beta container clusters list - [--region=REGION | --zone=ZONE, -z ZONE] [--filter=EXPRESSION] - [--limit=LIMIT] [--page-size=PAGE_SIZE] [--sort-by=[FIELD,...]] [--uri] - [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] + [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) List existing clusters for running containers. - This command queries cluster across all locations unless either '--region' - or '--zone' are specified. + This command queries cluster across all locations unless either + '--location', '--region', or '--zone' are specified. EXAMPLES To list existing clusters in all locations, run: @@ -22,6 +22,10 @@ EXAMPLES FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/clusters/resize b/gcloud/beta/container/clusters/resize index 32261a90c..4172858f1 100644 --- a/gcloud/beta/container/clusters/resize +++ b/gcloud/beta/container/clusters/resize @@ -5,7 +5,8 @@ NAME SYNOPSIS gcloud beta container clusters resize NAME (--num-nodes=NUM_NODES | --size=NUM_NODES) [--async] - [--node-pool=NODE_POOL] [--region=REGION | --zone=ZONE, -z ZONE] + [--node-pool=NODE_POOL] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] DESCRIPTION @@ -65,6 +66,10 @@ OPTIONAL FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/clusters/update b/gcloud/beta/container/clusters/update index d4fa0f974..e12c71467 100644 --- a/gcloud/beta/container/clusters/update +++ b/gcloud/beta/container/clusters/update @@ -78,10 +78,11 @@ SYNOPSIS [--istio-config=[auth=MTLS_PERMISSIVE,...]] [--master-authorized-networks=NETWORK,[NETWORK,...]] [--node-pool=NODE_POOL] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--location-policy=LOCATION_POLICY --max-nodes=MAX_NODES --min-nodes=MIN_NODES --total-max-nodes=TOTAL_MAX_NODES --total-min-nodes=TOTAL_MIN_NODES] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Update cluster settings for an existing container cluster. @@ -607,11 +608,12 @@ REQUIRED FLAGS --node-locations=ZONE,[ZONE,...] The set of zones in which the specified node footprint should be replicated. All zones must be in the same region as the cluster's - master(s), specified by the --zone or --region flag. Additionally, - for zonal clusters, --node-locations must contain the cluster's - primary zone. If not specified, all nodes will be in the cluster's - primary zone (for zonal clusters) or spread across three randomly - chosen zones within the cluster's region (for regional clusters). + master(s), specified by the -location, --zone, or --region flag. + Additionally, for zonal clusters, --node-locations must contain the + cluster's primary zone. If not specified, all nodes will be in the + cluster's primary zone (for zonal clusters) or spread across three + randomly chosen zones within the cluster's region (for regional + clusters). Note that NUM_NODES nodes will be created in each zone, such that if you specify --num-nodes=4 and choose two locations, 8 nodes will @@ -621,7 +623,7 @@ REQUIRED FLAGS example: $ gcloud beta container clusters update example-cluster \ - --zone us-central1-a \ + --location us-central1-a \ --node-locations us-central1-a,us-central1-b Flags for Binary Authorization: @@ -1197,6 +1199,19 @@ OPTIONAL FLAGS --node-pool=NODE_POOL Node pool to be updated. + At most one of these can be specified: + + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + + --region=REGION + Compute region (e.g. us-central1) for the cluster. + + --zone=ZONE, -z ZONE + Compute zone (e.g. us-central1-a) for the cluster. Overrides the + default compute/zone property value for this command invocation. + Cluster autoscaling --location-policy=LOCATION_POLICY @@ -1238,15 +1253,6 @@ OPTIONAL FLAGS --node-pool (or default node pool if unspecified) can scale. Ignored unless --enable-autoscaling is also specified. - At most one of these can be specified: - - --region=REGION - Compute region (e.g. us-central1) for the cluster. - - --zone=ZONE, -z ZONE - Compute zone (e.g. us-central1-a) for the cluster. Overrides the - default compute/zone property value for this command invocation. - GCLOUD WIDE FLAGS These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, diff --git a/gcloud/beta/container/clusters/upgrade b/gcloud/beta/container/clusters/upgrade index 7b3549016..702b101ef 100644 --- a/gcloud/beta/container/clusters/upgrade +++ b/gcloud/beta/container/clusters/upgrade @@ -6,7 +6,8 @@ SYNOPSIS gcloud beta container clusters upgrade NAME [--async] [--cluster-version=CLUSTER_VERSION] [--image-type=IMAGE_TYPE] [--master] [--node-pool=NODE_POOL] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Upgrades the Kubernetes version of an existing container cluster. @@ -92,6 +93,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/fleet/memberships/bindings/update b/gcloud/beta/container/fleet/memberships/bindings/update index 281e1e04a..ee05e0a36 100644 --- a/gcloud/beta/container/fleet/memberships/bindings/update +++ b/gcloud/beta/container/fleet/memberships/bindings/update @@ -72,8 +72,22 @@ REQUIRED FLAGS Bindings for all the membership related scopes in the fleet would be updated. - --scope=SCOPE - Scope related to the Binding. + Scope resource - The group of arguments defining the Fleet Scope. This + represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ▸ provide the argument --scope on the command line with a fully + specified name; + ▸ provide the argument --project on the command line; + ▸ set the property core/project. To set the location attribute: + ▸ provide the argument --scope on the command line with a fully + specified name; + ▸ global is the only supported location. + + --scope=SCOPE + ID of the scope or fully qualified identifier for the scope. To set + the scope attribute: + ▫ provide the argument --scope on the command line. GCLOUD WIDE FLAGS These flags are available to all commands: --access-token-file, --account, diff --git a/gcloud/beta/container/get-server-config b/gcloud/beta/container/get-server-config index 94ce0de3a..00cd57519 100644 --- a/gcloud/beta/container/get-server-config +++ b/gcloud/beta/container/get-server-config @@ -4,8 +4,9 @@ NAME SYNOPSIS gcloud beta container get-server-config - [--region=REGION | --zone=ZONE, -z ZONE] [--filter=EXPRESSION] - [--limit=LIMIT] [--sort-by=[FIELD,...]] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [--filter=EXPRESSION] [--limit=LIMIT] [--sort-by=[FIELD,...]] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Get Kubernetes Engine server config. @@ -18,6 +19,10 @@ EXAMPLES FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/hub/memberships/bindings/update b/gcloud/beta/container/hub/memberships/bindings/update index a7380f89c..807dcfa0c 100644 --- a/gcloud/beta/container/hub/memberships/bindings/update +++ b/gcloud/beta/container/hub/memberships/bindings/update @@ -72,8 +72,22 @@ REQUIRED FLAGS Bindings for all the membership related scopes in the fleet would be updated. - --scope=SCOPE - Scope related to the Binding. + Scope resource - The group of arguments defining the Fleet Scope. This + represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ▸ provide the argument --scope on the command line with a fully + specified name; + ▸ provide the argument --project on the command line; + ▸ set the property core/project. To set the location attribute: + ▸ provide the argument --scope on the command line with a fully + specified name; + ▸ global is the only supported location. + + --scope=SCOPE + ID of the scope or fully qualified identifier for the scope. To set + the scope attribute: + ▫ provide the argument --scope on the command line. GCLOUD WIDE FLAGS These flags are available to all commands: --access-token-file, --account, diff --git a/gcloud/beta/container/node-pools/complete-upgrade b/gcloud/beta/container/node-pools/complete-upgrade index 493537ce4..a4dc09bb4 100644 --- a/gcloud/beta/container/node-pools/complete-upgrade +++ b/gcloud/beta/container/node-pools/complete-upgrade @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud beta container node-pools complete-upgrade NAME [--cluster=CLUSTER] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Complete a node pool upgrade. @@ -30,6 +31,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/node-pools/create b/gcloud/beta/container/node-pools/create index 21a8193bf..b7c6dae2a 100644 --- a/gcloud/beta/container/node-pools/create +++ b/gcloud/beta/container/node-pools/create @@ -46,7 +46,7 @@ SYNOPSIS | --ephemeral-storage-local-ssd=[count=COUNT] | --local-nvme-ssd-block=[count=COUNT] | --local-ssd-count=LOCAL_SSD_COUNT] - [--region=REGION | --zone=ZONE, -z ZONE] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--reservation=RESERVATION --reservation-affinity=RESERVATION_AFFINITY] [--scopes=[SCOPE,...]; default="gke-default" --service-account=SERVICE_ACCOUNT] @@ -358,7 +358,7 @@ FLAGS To create a sole tenant node group, run: $ gcloud compute sole-tenancy node-groups create [GROUP_NAME] \ - --zone [ZONE] --node-template [TEMPLATE_NAME] \ + --location [ZONE] --node-template [TEMPLATE_NAME] \ --target-size [TARGET_SIZE] See https://cloud.google.com/compute/docs/nodes for more information on @@ -768,6 +768,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/node-pools/delete b/gcloud/beta/container/node-pools/delete index 0ddef8060..7d5cd5a62 100644 --- a/gcloud/beta/container/node-pools/delete +++ b/gcloud/beta/container/node-pools/delete @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud beta container node-pools delete NAME [--async] [--cluster=CLUSTER] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) gcloud beta container node-pools delete deletes a node pool from a @@ -37,6 +38,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/node-pools/describe b/gcloud/beta/container/node-pools/describe index 9cc71d9ac..f8000ecaa 100644 --- a/gcloud/beta/container/node-pools/describe +++ b/gcloud/beta/container/node-pools/describe @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud beta container node-pools describe NAME [--cluster=CLUSTER] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) gcloud beta container node-pools describe displays all data @@ -27,6 +28,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/node-pools/help b/gcloud/beta/container/node-pools/help index 962ef0873..ea5b9916f 100644 --- a/gcloud/beta/container/node-pools/help +++ b/gcloud/beta/container/node-pools/help @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud beta container node-pools COMMAND - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Create and delete operations for Google Kubernetes Engine node @@ -13,6 +14,10 @@ DESCRIPTION FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/node-pools/list b/gcloud/beta/container/node-pools/list index 0aa17bd9e..2a44425fb 100644 --- a/gcloud/beta/container/node-pools/list +++ b/gcloud/beta/container/node-pools/list @@ -4,9 +4,9 @@ NAME SYNOPSIS gcloud beta container node-pools list [--cluster=CLUSTER] - [--region=REGION | --zone=ZONE, -z ZONE] [--filter=EXPRESSION] - [--limit=LIMIT] [--page-size=PAGE_SIZE] [--sort-by=[FIELD,...]] [--uri] - [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] + [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) gcloud beta container node-pools list displays all node pools in the @@ -24,6 +24,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/node-pools/rollback b/gcloud/beta/container/node-pools/rollback index c78b0d460..c098fa117 100644 --- a/gcloud/beta/container/node-pools/rollback +++ b/gcloud/beta/container/node-pools/rollback @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud beta container node-pools rollback NAME [--async] [--cluster=CLUSTER] [--respect-pdb=RESPECT_PDB] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Rollback a node-pool upgrade. @@ -38,6 +39,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/node-pools/update b/gcloud/beta/container/node-pools/update index b61c455dc..487e221a6 100644 --- a/gcloud/beta/container/node-pools/update +++ b/gcloud/beta/container/node-pools/update @@ -24,7 +24,8 @@ SYNOPSIS --standard-rollout-policy=[batch-node-count=BATCH_NODE_COUNT, batch-percent=BATCH_NODE_PERCENTAGE, batch-soak-duration=BATCH_SOAK_DURATION,...]) [--async] - [--cluster=CLUSTER] [--region=REGION | --zone=ZONE, -z ZONE] + [--cluster=CLUSTER] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] DESCRIPTION @@ -404,6 +405,10 @@ OPTIONAL FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/operations/cancel b/gcloud/beta/container/operations/cancel index b548424cc..0e7459f12 100644 --- a/gcloud/beta/container/operations/cancel +++ b/gcloud/beta/container/operations/cancel @@ -3,7 +3,8 @@ NAME SYNOPSIS gcloud beta container operations cancel OPERATION_ID - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Cancel a running operation. @@ -28,6 +29,10 @@ POSITIONAL ARGUMENTS FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/operations/describe b/gcloud/beta/container/operations/describe index e707bb51f..87cf73baa 100644 --- a/gcloud/beta/container/operations/describe +++ b/gcloud/beta/container/operations/describe @@ -3,7 +3,8 @@ NAME SYNOPSIS gcloud beta container operations describe OPERATION_ID - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Describe an operation. @@ -20,6 +21,10 @@ POSITIONAL ARGUMENTS FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/operations/help b/gcloud/beta/container/operations/help index a7308a6a9..f3ca0a813 100644 --- a/gcloud/beta/container/operations/help +++ b/gcloud/beta/container/operations/help @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud beta container operations COMMAND - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Get and list operations for Google Kubernetes Engine clusters. @@ -12,6 +13,10 @@ DESCRIPTION FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/operations/list b/gcloud/beta/container/operations/list index e899bc49e..0d9255abb 100644 --- a/gcloud/beta/container/operations/list +++ b/gcloud/beta/container/operations/list @@ -4,9 +4,9 @@ NAME SYNOPSIS gcloud beta container operations list - [--region=REGION | --zone=ZONE, -z ZONE] [--filter=EXPRESSION] - [--limit=LIMIT] [--page-size=PAGE_SIZE] [--sort-by=[FIELD,...]] - [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] + [--sort-by=[FIELD,...]] [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) List operations for container clusters. @@ -19,6 +19,10 @@ EXAMPLES FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/container/operations/wait b/gcloud/beta/container/operations/wait index 34d7c3022..15b41bbb1 100644 --- a/gcloud/beta/container/operations/wait +++ b/gcloud/beta/container/operations/wait @@ -3,7 +3,8 @@ NAME SYNOPSIS gcloud beta container operations wait OPERATION_ID - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Poll an operation for completion. @@ -20,6 +21,10 @@ POSITIONAL ARGUMENTS FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/beta/datastream/streams/create b/gcloud/beta/datastream/streams/create index 4d9a27e3e..2e1218b0e 100644 --- a/gcloud/beta/datastream/streams/create +++ b/gcloud/beta/datastream/streams/create @@ -21,7 +21,9 @@ DESCRIPTION (BETA) (DEPRECATED) Datastream beta version is deprecated. Please use`gcloud datastream streams create command instead. - Create a Datastream stream + Create a Datastream stream. If successful, the response body contains a + newly created instance of Operation. To get the operation result, call: + describe OPERATION EXAMPLES To create a stream with an Oracle source and a Google Cloud Storage diff --git a/gcloud/beta/datastream/streams/update b/gcloud/beta/datastream/streams/update index 6e78a3460..eae042a27 100644 --- a/gcloud/beta/datastream/streams/update +++ b/gcloud/beta/datastream/streams/update @@ -23,7 +23,9 @@ DESCRIPTION (BETA) (DEPRECATED) Datastream beta version is deprecated. Please use`gcloud datastream streams update command instead. - Create a Datastream stream + Update a Datastream stream. If successful, the response body contains a + newly created instance of Operation. To get the operation result, call: + describe OPERATION EXAMPLES To update a stream with a new source and new display name: diff --git a/gcloud/beta/functions/deploy b/gcloud/beta/functions/deploy index 59e046c52..fbdb3b9cc 100644 --- a/gcloud/beta/functions/deploy +++ b/gcloud/beta/functions/deploy @@ -3,7 +3,7 @@ NAME SYNOPSIS gcloud beta functions deploy (NAME : --region=REGION) - [--allow-unauthenticated] [--concurrency=CONCURRENCY] + [--[no-]allow-unauthenticated] [--concurrency=CONCURRENCY] [--docker-registry=DOCKER_REGISTRY] [--egress-settings=EGRESS_SETTINGS] [--entry-point=ENTRY_POINT] [--gen2] [--ignore-file=IGNORE_FILE] [--ingress-settings=INGRESS_SETTINGS] [--retry] @@ -92,9 +92,10 @@ POSITIONAL ARGUMENTS ▸ set the property functions/region. FLAGS - --allow-unauthenticated + --[no-]allow-unauthenticated If set, makes this a public function. This will allow all callers, - without checking authentication. + without checking authentication. Use --allow-unauthenticated to enable + and --no-allow-unauthenticated to disable. --concurrency=CONCURRENCY Set the maximum number of concurrent requests allowed per container diff --git a/gcloud/beta/network-security/gateway-security-policies/delete b/gcloud/beta/network-security/gateway-security-policies/delete index fc3bc69d5..3cd452d2a 100644 --- a/gcloud/beta/network-security/gateway-security-policies/delete +++ b/gcloud/beta/network-security/gateway-security-policies/delete @@ -65,8 +65,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security gateway-security-policies delete $ gcloud alpha network-security gateway-security-policies delete diff --git a/gcloud/beta/network-security/gateway-security-policies/export b/gcloud/beta/network-security/gateway-security-policies/export index 48848dd9a..7901ccd5b 100644 --- a/gcloud/beta/network-security/gateway-security-policies/export +++ b/gcloud/beta/network-security/gateway-security-policies/export @@ -68,8 +68,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security gateway-security-policies export $ gcloud alpha network-security gateway-security-policies export diff --git a/gcloud/beta/network-security/gateway-security-policies/help b/gcloud/beta/network-security/gateway-security-policies/help index 33f040ae8..0197b9b90 100644 --- a/gcloud/beta/network-security/gateway-security-policies/help +++ b/gcloud/beta/network-security/gateway-security-policies/help @@ -18,7 +18,7 @@ GROUPS GROUP is one of the following: rules - (BETA) Manage Network Security GatewaySecurityPolicyRules. + (BETA) Manage Network Security Gateway Security Policy Rules. COMMANDS COMMAND is one of the following: @@ -36,8 +36,10 @@ COMMANDS (BETA) List Gateway Security Policies. NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security gateway-security-policies $ gcloud alpha network-security gateway-security-policies diff --git a/gcloud/beta/network-security/gateway-security-policies/import b/gcloud/beta/network-security/gateway-security-policies/import index f3f38a63b..3cfb2dcd9 100644 --- a/gcloud/beta/network-security/gateway-security-policies/import +++ b/gcloud/beta/network-security/gateway-security-policies/import @@ -74,8 +74,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security gateway-security-policies import $ gcloud alpha network-security gateway-security-policies import diff --git a/gcloud/beta/network-security/gateway-security-policies/list b/gcloud/beta/network-security/gateway-security-policies/list index c0dd8f169..f107a05aa 100644 --- a/gcloud/beta/network-security/gateway-security-policies/list +++ b/gcloud/beta/network-security/gateway-security-policies/list @@ -80,8 +80,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security gateway-security-policies list $ gcloud alpha network-security gateway-security-policies list diff --git a/gcloud/beta/network-security/gateway-security-policies/rules/delete b/gcloud/beta/network-security/gateway-security-policies/rules/delete index ad450c500..47a52728c 100644 --- a/gcloud/beta/network-security/gateway-security-policies/rules/delete +++ b/gcloud/beta/network-security/gateway-security-policies/rules/delete @@ -1,6 +1,6 @@ NAME gcloud beta network-security gateway-security-policies rules delete - - delete GatewaySecurityPolicyRule + delete Gateway Security Policy Rule SYNOPSIS gcloud beta network-security gateway-security-policies rules delete @@ -9,21 +9,21 @@ SYNOPSIS --location=LOCATION) [--async] [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (BETA) Delete the specified GatewaySecurityPolicyRule. + (BETA) Delete the specified Gateway Security Policy Rule. EXAMPLES - To delete a GatewaySecurityPolicyRule called 'my-rule', run: + To delete a Gateway Security Policy Rule called 'my-rule', run: $ gcloud beta network-security gateway-security-policies rules \ delete my-rule --location={region} \ --gateway-security-policy={policy-name} POSITIONAL ARGUMENTS - Gateway security policy rule resource - Name of the - GatewaySecurityPolicyRule you want to delete. The arguments in this group - can be used to specify the attributes of this resource. (NOTE) Some - attributes are not given arguments in this group but can be set in other - ways. To set the project attribute: + Gateway security policy rule resource - Name of the Gateway Security + Policy Rule you want to delete. The arguments in this group can be used to + specify the attributes of this resource. (NOTE) Some attributes are not + given arguments in this group but can be set in other ways. To set the + project attribute: ◆ provide the argument gateway_security_policy_rule on the command line with a fully specified name; ◆ set the property core/project; @@ -75,8 +75,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security gateway-security-policies rules delete $ gcloud alpha network-security gateway-security-policies rules \ delete diff --git a/gcloud/beta/network-security/gateway-security-policies/rules/export b/gcloud/beta/network-security/gateway-security-policies/rules/export index ed5860ee0..6123f314b 100644 --- a/gcloud/beta/network-security/gateway-security-policies/rules/export +++ b/gcloud/beta/network-security/gateway-security-policies/rules/export @@ -1,6 +1,6 @@ NAME gcloud beta network-security gateway-security-policies rules export - - export GatewaySecurityPolicyRule + export Gateway Security Policy Rule SYNOPSIS gcloud beta network-security gateway-security-policies rules export @@ -10,21 +10,21 @@ SYNOPSIS [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (BETA) Export a GatewaySecurityPolicyRule. + (BETA) Export a Gateway Security Policy Rule. EXAMPLES - To export a GatewaySecurityPolicyRule, run: + To export a Gateway Security Policy Rule, run: $ gcloud beta network-security gateway-security-policies rules \ export my-rule --destination=my-rule.yaml --location={region} \ --gateway-security-policy={policy-name} POSITIONAL ARGUMENTS - Gateway security policy rule resource - Name of the - GatewaySecurityPolicyRule to export. The arguments in this group can be - used to specify the attributes of this resource. (NOTE) Some attributes - are not given arguments in this group but can be set in other ways. To set - the project attribute: + Gateway security policy rule resource - Name of the Gateway Security + Policy Rule to export. The arguments in this group can be used to specify + the attributes of this resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: ◆ provide the argument gateway_security_policy_rule on the command line with a fully specified name; ◆ set the property core/project; @@ -79,8 +79,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security gateway-security-policies rules export $ gcloud alpha network-security gateway-security-policies rules \ export diff --git a/gcloud/beta/network-security/gateway-security-policies/rules/help b/gcloud/beta/network-security/gateway-security-policies/rules/help index 03074476f..0db012efc 100644 --- a/gcloud/beta/network-security/gateway-security-policies/rules/help +++ b/gcloud/beta/network-security/gateway-security-policies/rules/help @@ -1,13 +1,13 @@ NAME gcloud beta network-security gateway-security-policies rules - manage - Network Security GatewaySecurityPolicyRules + Network Security Gateway Security Policy Rules SYNOPSIS gcloud beta network-security gateway-security-policies rules COMMAND [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (BETA) Manage Network Security GatewaySecurityPolicyRules. + (BETA) Manage Network Security Gateway Security Policy Rules. GCLOUD WIDE FLAGS These flags are available to all commands: --help. @@ -18,20 +18,22 @@ COMMANDS COMMAND is one of the following: delete - (BETA) Delete GatewaySecurityPolicyRule. + (BETA) Delete Gateway Security Policy Rule. export - (BETA) Export GatewaySecurityPolicyRule. + (BETA) Export Gateway Security Policy Rule. import - (BETA) Import GatewaySecurityPolicy. + (BETA) Import Gateway Security Policy Rule. list - (BETA) List GatewaySecurityPolicyRules. + (BETA) List Gateway Security Policy Rules. NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security gateway-security-policies rules $ gcloud alpha network-security gateway-security-policies rules diff --git a/gcloud/beta/network-security/gateway-security-policies/rules/import b/gcloud/beta/network-security/gateway-security-policies/rules/import index 60835f0f4..00f2f3a42 100644 --- a/gcloud/beta/network-security/gateway-security-policies/rules/import +++ b/gcloud/beta/network-security/gateway-security-policies/rules/import @@ -1,6 +1,6 @@ NAME gcloud beta network-security gateway-security-policies rules import - - import GatewaySecurityPolicy + import Gateway Security Policy Rule SYNOPSIS gcloud beta network-security gateway-security-policies rules import @@ -10,19 +10,19 @@ SYNOPSIS [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (BETA) Import a GatewaySecurityPolicy. + (BETA) Import a Gateway Security Policy Rule. EXAMPLES - To import a GatewaySecurityPolicy from a YAML file, run: + To import a Gateway Security Policy Rule from a YAML file, run: $ gcloud beta network-security gateway-security-policies rules \ import my-rule --source=my-rule.yaml --location={region} \ --gateway-security-policy={policy-name} POSITIONAL ARGUMENTS - Gateway security policy rule resource - Name of the GatewaySecurityPolicy - to import. The arguments in this group can be used to specify the - attributes of this resource. (NOTE) Some attributes are not given + Gateway security policy rule resource - Name of the Gateway Security + Policy Rule to import. The arguments in this group can be used to specify + the attributes of this resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: ◆ provide the argument gateway_security_policy_rule on the command line @@ -86,8 +86,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security gateway-security-policies rules import $ gcloud alpha network-security gateway-security-policies rules \ import diff --git a/gcloud/beta/network-security/gateway-security-policies/rules/list b/gcloud/beta/network-security/gateway-security-policies/rules/list index 2a1686447..ca52507b6 100644 --- a/gcloud/beta/network-security/gateway-security-policies/rules/list +++ b/gcloud/beta/network-security/gateway-security-policies/rules/list @@ -1,6 +1,6 @@ NAME gcloud beta network-security gateway-security-policies rules list - list - GatewaySecurityPolicyRules + Gateway Security Policy Rules SYNOPSIS gcloud beta network-security gateway-security-policies rules list @@ -10,21 +10,21 @@ SYNOPSIS [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (BETA) List all GatewaySecurityPolicyRules in the specified location of the - current project. + (BETA) List all Gateway Security Policy Rules in the specified location of + the current project. EXAMPLES - To list GatewaySecurityPolicyRules in the current project, run: + To list Gateway Security Policy Rules in the current project, run: $ gcloud beta network-security gateway-security-policies rules \ list --location={region} --gateway-security-policy={policy-name} REQUIRED FLAGS - Gateway security policy resource - The project of the - GatewaySecurityPolicyRules to display. The arguments in this group can be - used to specify the attributes of this resource. (NOTE) Some attributes - are not given arguments in this group but can be set in other ways. To set - the project attribute: + Gateway security policy resource - The project of the Gateway Security + Policy Rules to display. The arguments in this group can be used to + specify the attributes of this resource. (NOTE) Some attributes are not + given arguments in this group but can be set in other ways. To set the + project attribute: ◆ provide the argument --gateway-security-policy on the command line with a fully specified name; ◆ set the property core/project; @@ -95,8 +95,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security gateway-security-policies rules list $ gcloud alpha network-security gateway-security-policies rules list diff --git a/gcloud/beta/network-security/help b/gcloud/beta/network-security/help index 4643b3d10..66bed892c 100644 --- a/gcloud/beta/network-security/help +++ b/gcloud/beta/network-security/help @@ -31,7 +31,7 @@ GROUPS (BETA) Manage Network Security TLS Inspection Policies. url-lists - (BETA) Manage Network Security UrlLists. + (BETA) Manage Network Security Url Lists. NOTES This command is currently in beta and might change without notice. These diff --git a/gcloud/beta/network-security/server-tls-policies/describe b/gcloud/beta/network-security/server-tls-policies/describe new file mode 100644 index 000000000..be526f6b6 --- /dev/null +++ b/gcloud/beta/network-security/server-tls-policies/describe @@ -0,0 +1,63 @@ +NAME + gcloud beta network-security server-tls-policies describe - describe + ServerTlsPolicy + +SYNOPSIS + gcloud beta network-security server-tls-policies describe + (SERVER_TLS_POLICY : --location=LOCATION) [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (BETA) Describe the specified ServerTlsPolicy. + +EXAMPLES + To describe a ServerTlsPolicy called 'my-server-tls-policy', run: + + $ gcloud beta network-security server-tls-policies describe \ + my-server-tls-policy --location=global + +POSITIONAL ARGUMENTS + Server TLS policy resource - The ServerTlsPolicy you want to describe. The + arguments in this group can be used to specify the attributes of this + resource. (NOTE) Some attributes are not given arguments in this group but + can be set in other ways. To set the project attribute: + ◆ provide the argument server_tls_policy on the command line with a + fully specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + SERVER_TLS_POLICY + ID of the server TLS policy or fully qualified identifier for the + server TLS policy. To set the server_tls_policy attribute: + ▸ provide the argument server_tls_policy on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument server_tls_policy on the command line with a + fully specified name; + ▸ provide the argument --location on the command line. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1beta1 API. The full documentation + for this API can be found at: https://cloud.google.com/networking + +NOTES + This command is currently in beta and might change without notice. This + variant is also available: + + $ gcloud alpha network-security server-tls-policies describe + diff --git a/gcloud/beta/network-security/server-tls-policies/help b/gcloud/beta/network-security/server-tls-policies/help index 1d12c2a3f..e34496cb8 100644 --- a/gcloud/beta/network-security/server-tls-policies/help +++ b/gcloud/beta/network-security/server-tls-policies/help @@ -20,6 +20,9 @@ COMMANDS delete (BETA) Delete ServerTlsPolicy. + describe + (BETA) Describe ServerTlsPolicy. + export (BETA) Export ServerTlsPolicy. diff --git a/gcloud/beta/network-security/tls-inspection-policies/delete b/gcloud/beta/network-security/tls-inspection-policies/delete index 8c0873ed9..9f01501bc 100644 --- a/gcloud/beta/network-security/tls-inspection-policies/delete +++ b/gcloud/beta/network-security/tls-inspection-policies/delete @@ -63,8 +63,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security tls-inspection-policies delete $ gcloud alpha network-security tls-inspection-policies delete diff --git a/gcloud/beta/network-security/tls-inspection-policies/export b/gcloud/beta/network-security/tls-inspection-policies/export index 0d3874f87..59a250620 100644 --- a/gcloud/beta/network-security/tls-inspection-policies/export +++ b/gcloud/beta/network-security/tls-inspection-policies/export @@ -66,8 +66,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security tls-inspection-policies export $ gcloud alpha network-security tls-inspection-policies export diff --git a/gcloud/beta/network-security/tls-inspection-policies/help b/gcloud/beta/network-security/tls-inspection-policies/help index 561705970..e37a17d7e 100644 --- a/gcloud/beta/network-security/tls-inspection-policies/help +++ b/gcloud/beta/network-security/tls-inspection-policies/help @@ -30,8 +30,10 @@ COMMANDS (BETA) List TLS Inspection Policies. NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security tls-inspection-policies $ gcloud alpha network-security tls-inspection-policies diff --git a/gcloud/beta/network-security/tls-inspection-policies/import b/gcloud/beta/network-security/tls-inspection-policies/import index 16e90f193..db3f5bd26 100644 --- a/gcloud/beta/network-security/tls-inspection-policies/import +++ b/gcloud/beta/network-security/tls-inspection-policies/import @@ -71,8 +71,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security tls-inspection-policies import $ gcloud alpha network-security tls-inspection-policies import diff --git a/gcloud/beta/network-security/tls-inspection-policies/list b/gcloud/beta/network-security/tls-inspection-policies/list index af6fb680f..409801cd1 100644 --- a/gcloud/beta/network-security/tls-inspection-policies/list +++ b/gcloud/beta/network-security/tls-inspection-policies/list @@ -78,8 +78,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security tls-inspection-policies list $ gcloud alpha network-security tls-inspection-policies list diff --git a/gcloud/beta/network-security/url-lists/delete b/gcloud/beta/network-security/url-lists/delete index 3f41f7a4d..f75e836e4 100644 --- a/gcloud/beta/network-security/url-lists/delete +++ b/gcloud/beta/network-security/url-lists/delete @@ -1,21 +1,21 @@ NAME - gcloud beta network-security url-lists delete - delete UrlList + gcloud beta network-security url-lists delete - delete Url List SYNOPSIS gcloud beta network-security url-lists delete (URL_LIST : --location=LOCATION) [--async] [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (BETA) Delete the specified UrlList. + (BETA) Delete the specified Url List. EXAMPLES - To delete a UrlList called 'my-url-list', run: + To delete a Url List called 'my-url-list', run: $ gcloud beta network-security url-lists delete my-url-list \ --location=global POSITIONAL ARGUMENTS - Url list resource - Name of the UrlList you want to delete. The arguments + Url list resource - Name of the Url List you want to delete. The arguments in this group can be used to specify the attributes of this resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: @@ -60,8 +60,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security url-lists delete $ gcloud alpha network-security url-lists delete diff --git a/gcloud/beta/network-security/url-lists/export b/gcloud/beta/network-security/url-lists/export index 09962cfbb..175e9fb6b 100644 --- a/gcloud/beta/network-security/url-lists/export +++ b/gcloud/beta/network-security/url-lists/export @@ -1,5 +1,5 @@ NAME - gcloud beta network-security url-lists export - export UrlList + gcloud beta network-security url-lists export - export Url List SYNOPSIS gcloud beta network-security url-lists export @@ -7,16 +7,16 @@ SYNOPSIS [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (BETA) Export a UrlList. + (BETA) Export a Url List. EXAMPLES - To export a UrlList, run: + To export a Url List, run: $ gcloud beta network-security url-lists export my-url-list \ --destination=my-url-list.yaml --location=global POSITIONAL ARGUMENTS - Url list resource - Name of the UrlList to export. The arguments in this + Url list resource - Name of the Url List to export. The arguments in this group can be used to specify the attributes of this resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: @@ -64,8 +64,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security url-lists export $ gcloud alpha network-security url-lists export diff --git a/gcloud/beta/network-security/url-lists/help b/gcloud/beta/network-security/url-lists/help index 2dc43f81d..dd7e06154 100644 --- a/gcloud/beta/network-security/url-lists/help +++ b/gcloud/beta/network-security/url-lists/help @@ -1,11 +1,11 @@ NAME - gcloud beta network-security url-lists - manage Network Security UrlLists + gcloud beta network-security url-lists - manage Network Security Url Lists SYNOPSIS gcloud beta network-security url-lists COMMAND [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (BETA) Manage Network Security UrlLists. + (BETA) Manage Network Security Url Lists. GCLOUD WIDE FLAGS These flags are available to all commands: --help. @@ -16,20 +16,22 @@ COMMANDS COMMAND is one of the following: delete - (BETA) Delete UrlList. + (BETA) Delete Url List. export - (BETA) Export UrlList. + (BETA) Export Url List. import - (BETA) Import UrlList. + (BETA) Import Url List. list - (BETA) List UrlLists. + (BETA) List Url Lists. NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security url-lists $ gcloud alpha network-security url-lists diff --git a/gcloud/beta/network-security/url-lists/import b/gcloud/beta/network-security/url-lists/import index e8f693d4a..862500c3a 100644 --- a/gcloud/beta/network-security/url-lists/import +++ b/gcloud/beta/network-security/url-lists/import @@ -1,5 +1,5 @@ NAME - gcloud beta network-security url-lists import - import UrlList + gcloud beta network-security url-lists import - import Url List SYNOPSIS gcloud beta network-security url-lists import @@ -7,16 +7,16 @@ SYNOPSIS [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (BETA) Import a UrlList. + (BETA) Import a Url List. EXAMPLES - To import a UrlList from a YAML file, run: + To import a Url List from a YAML file, run: $ gcloud beta network-security url-lists import my-url-list \ --source=my-url-list.yaml --location=global POSITIONAL ARGUMENTS - Url list resource - Name of the UrlList to import. The arguments in this + Url list resource - Name of the Url List to import. The arguments in this group can be used to specify the attributes of this resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: @@ -71,8 +71,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security url-lists import $ gcloud alpha network-security url-lists import diff --git a/gcloud/beta/network-security/url-lists/list b/gcloud/beta/network-security/url-lists/list index 398de30f4..f72d427f7 100644 --- a/gcloud/beta/network-security/url-lists/list +++ b/gcloud/beta/network-security/url-lists/list @@ -1,5 +1,5 @@ NAME - gcloud beta network-security url-lists list - list UrlLists + gcloud beta network-security url-lists list - list Url Lists SYNOPSIS gcloud beta network-security url-lists list --location=LOCATION @@ -7,15 +7,15 @@ SYNOPSIS [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] DESCRIPTION - (BETA) List all UrlLists in the specified location of the current project. + (BETA) List all Url Lists in the specified location of the current project. EXAMPLES - To list UrlLists in the current project, run: + To list Url Lists in the current project, run: $ gcloud beta network-security url-lists list --location=global REQUIRED FLAGS - Location resource - The project of the UrlLists to display. This + Location resource - The project of the Url Lists to display. This represents a Cloud resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: @@ -76,8 +76,10 @@ API REFERENCE for this API can be found at: https://cloud.google.com/networking NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud network-security url-lists list $ gcloud alpha network-security url-lists list diff --git a/gcloud/beta/publicca/external-account-keys/create b/gcloud/beta/publicca/external-account-keys/create index c46904c50..11a8e4a03 100644 --- a/gcloud/beta/publicca/external-account-keys/create +++ b/gcloud/beta/publicca/external-account-keys/create @@ -29,8 +29,10 @@ GCLOUD WIDE FLAGS Run $ gcloud help for details. NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud publicca external-account-keys create $ gcloud alpha publicca external-account-keys create diff --git a/gcloud/beta/publicca/external-account-keys/help b/gcloud/beta/publicca/external-account-keys/help index fe4a61e8d..f125be08a 100644 --- a/gcloud/beta/publicca/external-account-keys/help +++ b/gcloud/beta/publicca/external-account-keys/help @@ -28,8 +28,10 @@ COMMANDS (BETA) Create a new external account key. NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud publicca external-account-keys $ gcloud alpha publicca external-account-keys diff --git a/gcloud/beta/publicca/help b/gcloud/beta/publicca/help index 6e0db4aa2..898c37786 100644 --- a/gcloud/beta/publicca/help +++ b/gcloud/beta/publicca/help @@ -22,8 +22,10 @@ GROUPS (BETA) Create ACME external account binding keys. NOTES - This command is currently in beta and might change without notice. This - variant is also available: + This command is currently in beta and might change without notice. These + variants are also available: + + $ gcloud publicca $ gcloud alpha publicca diff --git a/gcloud/beta/run/jobs/create b/gcloud/beta/run/jobs/create index 7e5c3a095..a95c57da6 100644 --- a/gcloud/beta/run/jobs/create +++ b/gcloud/beta/run/jobs/create @@ -4,7 +4,7 @@ NAME SYNOPSIS gcloud beta run jobs create [JOB] --image=IMAGE [--args=[ARG,...]] [--binary-authorization=POLICY] [--breakglass=JUSTIFICATION] - [--command=[COMMAND,...]] [--cpu=CPU] [--execute-now] [--key=KEY] + [--command=[COMMAND,...]] [--cpu=CPU] [--key=KEY] [--labels=[KEY=VALUE,...]] [--max-retries=MAX_RETRIES] [--memory=MEMORY] [--parallelism=PARALLELISM] [--region=REGION] [--service-account=SERVICE_ACCOUNT] @@ -12,7 +12,7 @@ SYNOPSIS [--set-secrets=[KEY=SECRET_NAME:SECRET_VERSION,...]] [--task-timeout=TASK_TIMEOUT] [--tasks=TASKS; default=1] [--vpc-connector=VPC_CONNECTOR] [--vpc-egress=VPC_EGRESS] - [--async | --wait] + [--async | --execute-now --wait] [--env-vars-file=FILE_PATH | --set-env-vars=[KEY=VALUE,...]] [GCLOUD_WIDE_FLAG ...] @@ -82,9 +82,6 @@ OPTIONAL FLAGS (fully managed), 4 cpus also requires a minimum 2Gi --memory value. Examples 2, 2.0, 2000m - --execute-now - Execute the job immediately after creation. - --key=KEY CMEK key reference to encrypt the container with. @@ -161,10 +158,17 @@ OPTIONAL FLAGS Return immediately, without waiting for the operation in progress to complete. - --wait - Wait until the execution has completed running before exiting. If not - set, gcloud exits successfully when the execution has started. - Implies --execute-now. + --async cannot be used if executing the job after the update. + + --execute-now + Execute the job immediately after the creation or update completes. + gcloud exits once the job has started unless the --wait flag is + set. + + --wait + Wait until the execution has completed running before exiting. If + not set, gcloud exits successfully when the execution has started. + Implies --execute-now. At most one of these can be specified: diff --git a/gcloud/beta/run/jobs/deploy b/gcloud/beta/run/jobs/deploy index b20d7e2e9..d4113b883 100644 --- a/gcloud/beta/run/jobs/deploy +++ b/gcloud/beta/run/jobs/deploy @@ -4,7 +4,7 @@ NAME SYNOPSIS gcloud beta run jobs deploy [JOB] [--args=[ARG,...]] [--binary-authorization=POLICY] [--breakglass=JUSTIFICATION] - [--command=[COMMAND,...]] [--cpu=CPU] [--execute-now] [--key=KEY] + [--command=[COMMAND,...]] [--cpu=CPU] [--key=KEY] [--labels=[KEY=VALUE,...]] [--max-retries=MAX_RETRIES] [--memory=MEMORY] [--parallelism=PARALLELISM] [--region=REGION] [--service-account=SERVICE_ACCOUNT] @@ -12,7 +12,7 @@ SYNOPSIS [--set-secrets=[KEY=SECRET_NAME:SECRET_VERSION,...]] [--task-timeout=TASK_TIMEOUT] [--tasks=TASKS; default=1] [--vpc-connector=VPC_CONNECTOR] [--vpc-egress=VPC_EGRESS] - [--async | --wait] + [--async | --execute-now --wait] [--clear-env-vars | --env-vars-file=FILE_PATH | --set-env-vars=[KEY=VALUE,...] | --remove-env-vars=[KEY,...] --update-env-vars=[KEY=VALUE,...]] @@ -79,9 +79,6 @@ FLAGS (fully managed), 4 cpus also requires a minimum 2Gi --memory value. Examples 2, 2.0, 2000m - --execute-now - Execute the job immediately after creation. - --key=KEY CMEK key reference to encrypt the container with. @@ -158,10 +155,17 @@ FLAGS Return immediately, without waiting for the operation in progress to complete. - --wait - Wait until the execution has completed running before exiting. If not - set, gcloud exits successfully when the execution has started. - Implies --execute-now. + --async cannot be used if executing the job after the update. + + --execute-now + Execute the job immediately after the creation or update completes. + gcloud exits once the job has started unless the --wait flag is + set. + + --wait + Wait until the execution has completed running before exiting. If + not set, gcloud exits successfully when the execution has started. + Implies --execute-now. At most one of these can be specified: diff --git a/gcloud/beta/run/jobs/update b/gcloud/beta/run/jobs/update index 16ef034c7..74d571738 100644 --- a/gcloud/beta/run/jobs/update +++ b/gcloud/beta/run/jobs/update @@ -4,8 +4,8 @@ NAME SYNOPSIS gcloud beta run jobs update [JOB] [--args=[ARG,...]] [--breakglass=JUSTIFICATION] [--clear-vpc-connector] - [--command=[COMMAND,...]] [--cpu=CPU] [--execute-now] [--image=IMAGE] - [--key=KEY] [--max-retries=MAX_RETRIES] [--memory=MEMORY] + [--command=[COMMAND,...]] [--cpu=CPU] [--image=IMAGE] [--key=KEY] + [--max-retries=MAX_RETRIES] [--memory=MEMORY] [--parallelism=PARALLELISM] [--region=REGION] [--service-account=SERVICE_ACCOUNT] [--task-timeout=TASK_TIMEOUT] [--tasks=TASKS; default=1] [--vpc-connector=VPC_CONNECTOR] @@ -14,7 +14,7 @@ SYNOPSIS | --clear-cloudsql-instances | --remove-cloudsql-instances=[CLOUDSQL-INSTANCES,...] | --set-cloudsql-instances=[CLOUDSQL-INSTANCES,...]] - [--async | --wait] + [--async | --execute-now --wait] [--binary-authorization=POLICY | --clear-binary-authorization] [--clear-env-vars | --env-vars-file=FILE_PATH | --set-env-vars=[KEY=VALUE,...] @@ -80,9 +80,6 @@ FLAGS (fully managed), 4 cpus also requires a minimum 2Gi --memory value. Examples 2, 2.0, 2000m - --execute-now - Execute the job immediately after creation. - --image=IMAGE Name of the container image to deploy (e.g. us-docker.pkg.dev/cloudrun/container/job:latest). @@ -168,10 +165,17 @@ FLAGS Return immediately, without waiting for the operation in progress to complete. - --wait - Wait until the execution has completed running before exiting. If not - set, gcloud exits successfully when the execution has started. - Implies --execute-now. + --async cannot be used if executing the job after the update. + + --execute-now + Execute the job immediately after the creation or update completes. + gcloud exits once the job has started unless the --wait flag is + set. + + --wait + Wait until the execution has completed running before exiting. If + not set, gcloud exits successfully when the execution has started. + Implies --execute-now. At most one of these can be specified: diff --git a/gcloud/beta/tasks/buffer b/gcloud/beta/tasks/buffer new file mode 100644 index 000000000..7235e5349 --- /dev/null +++ b/gcloud/beta/tasks/buffer @@ -0,0 +1,40 @@ +NAME + gcloud beta tasks buffer - buffers a task into a queue + +SYNOPSIS + gcloud beta tasks buffer --location=LOCATION --queue=QUEUE + [--task-id=TASK_ID] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + (BETA) Buffers a task into a queue. + +EXAMPLES + To buffer into a queue: + + $ gcloud beta tasks buffer --queue=my-queue --location=us-central1 + +REQUIRED FLAGS + --location=LOCATION + The location where the queue exists. + + --queue=QUEUE + The queue the task belongs to. + +OPTIONAL FLAGS + --task-id=TASK_ID + The task ID for the task being created. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + This command is currently in beta and might change without notice. This + variant is also available: + + $ gcloud alpha tasks buffer + diff --git a/gcloud/beta/tasks/help b/gcloud/beta/tasks/help index 3cae572ed..f11025a34 100644 --- a/gcloud/beta/tasks/help +++ b/gcloud/beta/tasks/help @@ -24,6 +24,9 @@ GROUPS COMMANDS COMMAND is one of the following: + buffer + (BETA) Buffers a task into a queue. + create-app-engine-task (BETA) Create and add a task that targets App Engine. diff --git a/gcloud/beta/tasks/queues/create b/gcloud/beta/tasks/queues/create index bd55ad96e..67c9790e4 100644 --- a/gcloud/beta/tasks/queues/create +++ b/gcloud/beta/tasks/queues/create @@ -2,7 +2,10 @@ NAME gcloud beta tasks queues create - create a Cloud Tasks queue SYNOPSIS - gcloud beta tasks queues create QUEUE [--location=LOCATION] + gcloud beta tasks queues create QUEUE + [--http-header-override=HEADER_FIELD: HEADER_VALUE] + [--http-method-override=HTTP_METHOD_OVERRIDE] + [--http-uri-override=KEY:VALUE,[KEY:VALUE,...]] [--location=LOCATION] [--log-sampling-ratio=LOG_SAMPLING_RATIO] [--max-attempts=MAX_ATTEMPTS] [--max-backoff=MAX_BACKOFF] [--max-concurrent-dispatches=MAX_CONCURRENT_DISPATCHES] @@ -10,6 +13,7 @@ SYNOPSIS [--max-doublings=MAX_DOUBLINGS] [--max-retry-duration=MAX_RETRY_DURATION] [--min-backoff=MIN_BACKOFF] [--routing-override=KEY:VALUE,[...]] [--type=TYPE; default="push"] + [[--http-oauth-service-account-email-override=HTTP_OAUTH_SERVICE_ACCOUNT_EMAIL_OVERRIDE : --http-oauth-token-scope-override=HTTP_OAUTH_TOKEN_SCOPE_OVERRIDE] | [--http-oidc-service-account-email-override=HTTP_OIDC_SERVICE_ACCOUNT_EMAIL_OVERRIDE : --http-oidc-token-audience-override=HTTP_OIDC_TOKEN_AUDIENCE_OVERRIDE]] [GCLOUD_WIDE_FLAG ...] DESCRIPTION @@ -29,6 +33,28 @@ POSITIONAL ARGUMENTS The queue to create. FLAGS + --http-header-override=HEADER_FIELD: HEADER_VALUE + If provided, the specified HTTP headers override the existing headers + for all tasks in the queue. If a task has a header with the same Key as + a queue-level header override, then the value of the task header will + be overriden with the value of the queue-level header. Otherwise, the + queue-level header will be added to the task headers. Header values can + contain commas. This flag can be repeated. Repeated header fields will + have their values overridden. + + --http-method-override=HTTP_METHOD_OVERRIDE + If provided, the specified HTTP method type override is used for all + tasks in the queue, no matter what is set at the task-level. + + --http-uri-override=KEY:VALUE,[KEY:VALUE,...] + If provided, the specified HTTP target URI override is used for all + tasks in the queue depending on what is set as the mode. Allowed values + for mode are: ALWAYS, IF_NOT_EXISTS. If not set, mode defaults to + ALWAYS. + + KEY must be at least one of: [scheme, host, port, path, query, mode]. + Any missing keys will use the default. + --location=LOCATION The location where we want to manage the queue or task. If not specified, uses the location of the current project's App Engine app if @@ -92,6 +118,47 @@ FLAGS Specifies the type of queue. Only available options are 'push' and 'pull'. The default option is 'push'. + If specified, all Authorization headers in the HttpRequest.headers field + will be overridden for any tasks executed on this queue. + + At most one of these can be specified: + + OAuth2 + + --http-oauth-service-account-email-override=HTTP_OAUTH_SERVICE_ACCOUNT_EMAIL_OVERRIDE + The service account email to be used for generating an OAuth2 + access token to be included in the request sent to the target when + executing the task. The service account must be within the same + project as the queue. The caller must have + 'iam.serviceAccounts.actAs' permission for the service account. + + This flag argument must be specified if any of the other arguments + in this group are specified. + + --http-oauth-token-scope-override=HTTP_OAUTH_TOKEN_SCOPE_OVERRIDE + The scope to be used when generating an OAuth2 access token to be + included in the request sent to the target when executing the task. + If not specified, 'https://www.googleapis.com/auth/cloud-platform' + will be used. + + OpenId Connect + + --http-oidc-service-account-email-override=HTTP_OIDC_SERVICE_ACCOUNT_EMAIL_OVERRIDE + The service account email to be used for generating an OpenID + Connect token to be included in the request sent to the target when + executing the task. The service account must be within the same + project as the queue. The caller must have + 'iam.serviceAccounts.actAs' permission for the service account. + + This flag argument must be specified if any of the other arguments + in this group are specified. + + --http-oidc-token-audience-override=HTTP_OIDC_TOKEN_AUDIENCE_OVERRIDE + The audience to be used when generating an OpenID Connect token to + be included in the request sent to the target when executing the + task. If not specified, the URI specified in the target will be + used. + GCLOUD WIDE FLAGS These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, diff --git a/gcloud/beta/tasks/queues/update b/gcloud/beta/tasks/queues/update index 7068f2c44..d659b3849 100644 --- a/gcloud/beta/tasks/queues/update +++ b/gcloud/beta/tasks/queues/update @@ -4,6 +4,20 @@ NAME SYNOPSIS gcloud beta tasks queues update QUEUE [--location=LOCATION] [--type=TYPE; default="push"] + [--clear-http-header-override + | --http-header-override=HEADER_FIELD: HEADER_VALUE] + [--clear-http-method-override + | --http-method-override=HTTP_METHOD_OVERRIDE] + [--clear-http-oauth-service-account-email-override + | --http-oauth-service-account-email-override=HTTP_OAUTH_SERVICE_ACCOUNT_EMAIL_OVERRIDE] + [--clear-http-oauth-token-scope-override + | --http-oauth-token-scope-override=HTTP_OAUTH_TOKEN_SCOPE_OVERRIDE] + [--clear-http-oidc-service-account-email-override + | --http-oidc-service-account-email-override=HTTP_OIDC_SERVICE_ACCOUNT_EMAIL_OVERRIDE] + [--clear-http-oidc-token-audience-override + | --http-oidc-token-audience-override=HTTP_OIDC_TOKEN_AUDIENCE_OVERRIDE] + [--clear-http-uri-override + | --http-uri-override=KEY:VALUE,[KEY:VALUE,...]] [--clear-log-sampling-ratio | --log-sampling-ratio=LOG_SAMPLING_RATIO] [--clear-max-attempts | --max-attempts=MAX_ATTEMPTS] [--clear-max-backoff | --max-backoff=MAX_BACKOFF] @@ -44,6 +58,90 @@ FLAGS Specifies the type of queue. Only available options are 'push' and 'pull'. The default option is 'push'. + At most one of these can be specified: + + --clear-http-header-override + Clear the field corresponding to --http-header-override. + + --http-header-override=HEADER_FIELD: HEADER_VALUE + If provided, the specified HTTP headers override the existing headers + for all tasks in the queue. If a task has a header with the same Key + as a queue-level header override, then the value of the task header + will be overriden with the value of the queue-level header. + Otherwise, the queue-level header will be added to the task headers. + Header values can contain commas. This flag can be repeated. Repeated + header fields will have their values overridden. + + At most one of these can be specified: + + --clear-http-method-override + Clear the field corresponding to --http-method-override. + + --http-method-override=HTTP_METHOD_OVERRIDE + If provided, the specified HTTP method type override is used for all + tasks in the queue, no matter what is set at the task-level. + + At most one of these can be specified: + + --clear-http-oauth-service-account-email-override + Clear the field corresponding to + --http-oauth-service-account-email-override. + + --http-oauth-service-account-email-override=HTTP_OAUTH_SERVICE_ACCOUNT_EMAIL_OVERRIDE + The service account email to be used for generating an OAuth2 access + token to be included in the request sent to the target when executing + the task. The service account must be within the same project as the + queue. The caller must have 'iam.serviceAccounts.actAs' permission + for the service account. + + At most one of these can be specified: + + --clear-http-oauth-token-scope-override + Clear the field corresponding to --http-oauth-token-scope-override. + + --http-oauth-token-scope-override=HTTP_OAUTH_TOKEN_SCOPE_OVERRIDE + The scope to be used when generating an OAuth2 access token to be + included in the request sent to the target when executing the task. + If not specified, 'https://www.googleapis.com/auth/cloud-platform' + will be used. + + At most one of these can be specified: + + --clear-http-oidc-service-account-email-override + Clear the field corresponding to + --http-oidc-service-account-email-override. + + --http-oidc-service-account-email-override=HTTP_OIDC_SERVICE_ACCOUNT_EMAIL_OVERRIDE + The service account email to be used for generating an OpenID Connect + token to be included in the request sent to the target when executing + the task. The service account must be within the same project as the + queue. The caller must have 'iam.serviceAccounts.actAs' permission + for the service account. + + At most one of these can be specified: + + --clear-http-oidc-token-audience-override + Clear the field corresponding to --http-oidc-token-audience-override. + + --http-oidc-token-audience-override=HTTP_OIDC_TOKEN_AUDIENCE_OVERRIDE + The audience to be used when generating an OpenID Connect token to be + included in the request sent to the target when executing the task. + If not specified, the URI specified in the target will be used. + + At most one of these can be specified: + + --clear-http-uri-override + Clear the field corresponding to --http-uri-override. + + --http-uri-override=KEY:VALUE,[KEY:VALUE,...] + If provided, the specified HTTP target URI override is used for all + tasks in the queue depending on what is set as the mode. Allowed + values for mode are: ALWAYS, IF_NOT_EXISTS. If not set, mode defaults + to ALWAYS. + + KEY must be at least one of: [scheme, host, port, path, query, mode]. + Any missing keys will use the default. + At most one of these can be specified: --clear-log-sampling-ratio diff --git a/gcloud/beta/workstations/clusters/create b/gcloud/beta/workstations/clusters/create index 3b41761cd..bc5a9515d 100644 --- a/gcloud/beta/workstations/clusters/create +++ b/gcloud/beta/workstations/clusters/create @@ -3,8 +3,8 @@ NAME SYNOPSIS gcloud beta workstations clusters create (CLUSTER : --region=REGION) - [--async] [--enable-private-endpoint] [--network=NETWORK] - [--subnetwork=SUBNETWORK] [GCLOUD_WIDE_FLAG ...] + [--async] [--enable-private-endpoint] [--labels=[LABELS,...]] + [--network=NETWORK] [--subnetwork=SUBNETWORK] [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Create a workstation cluster. @@ -61,6 +61,10 @@ FLAGS workstations from public networks, but requires additional configuration. Learn more: https://cloud.google.com/workstations/docs. + --labels=[LABELS,...] + Labels that are applied to the cluster and propagated to the underlying + Compute Engine resources. + --network=NETWORK The network that instances created under the cluster will be associated with. diff --git a/gcloud/beta/workstations/configs/create b/gcloud/beta/workstations/configs/create index 737cf09f1..5655f0b2d 100644 --- a/gcloud/beta/workstations/configs/create +++ b/gcloud/beta/workstations/configs/create @@ -135,7 +135,7 @@ FLAGS instance should never time out due to idleness. --labels=[LABELS,...] - Labels that are applied to the resource and propagated to the + Labels that are applied to the configuration and propagated to the underlying Compute Engine resources. Example: diff --git a/gcloud/beta/workstations/configs/update b/gcloud/beta/workstations/configs/update index d1daf757d..4640c318b 100644 --- a/gcloud/beta/workstations/configs/update +++ b/gcloud/beta/workstations/configs/update @@ -123,7 +123,7 @@ FLAGS instance should never time out due to idleness. --labels=[LABELS,...] - Labels that are applied to the resource and propagated to the + Labels that are applied to the configuration and propagated to the underlying Compute Engine resources. Example: diff --git a/gcloud/beta/workstations/create b/gcloud/beta/workstations/create index fe35c5aa3..1f4c98618 100644 --- a/gcloud/beta/workstations/create +++ b/gcloud/beta/workstations/create @@ -4,7 +4,7 @@ NAME SYNOPSIS gcloud beta workstations create (WORKSTATION : --cluster=CLUSTER --config=CONFIG --region=REGION) - [--async] [GCLOUD_WIDE_FLAG ...] + [--async] [--labels=[LABELS,...]] [GCLOUD_WIDE_FLAG ...] DESCRIPTION (BETA) Create a workstation. @@ -63,6 +63,10 @@ FLAGS Return immediately, without waiting for the operation in progress to complete. + --labels=[LABELS,...] + Labels that are applied to the workstation and propagated to the + underlying Compute Engine resources. + GCLOUD WIDE FLAGS These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, diff --git a/gcloud/compute/commitments/create b/gcloud/compute/commitments/create index 50f99bf0b..ffb36eb6c 100644 --- a/gcloud/compute/commitments/create +++ b/gcloud/compute/commitments/create @@ -98,8 +98,8 @@ OPTIONAL FLAGS for memory-optimized VMs. TYPE must be one of: accelerator-optimized, compute-optimized, compute-optimized-c2d, compute-optimized-c3, general-purpose, general-purpose-e2, general-purpose-n2, - general-purpose-n2d, general-purpose-t2d, memory-optimized, - memory-optimized-m3. + general-purpose-n2d, general-purpose-t2d, graphics-optimized, + memory-optimized, memory-optimized-m3. Manage the reservations to be created with the commitment. diff --git a/gcloud/compute/firewall-policies/rules/create b/gcloud/compute/firewall-policies/rules/create index a3f9e026a..bd771aa0a 100644 --- a/gcloud/compute/firewall-policies/rules/create +++ b/gcloud/compute/firewall-policies/rules/create @@ -5,10 +5,16 @@ NAME SYNOPSIS gcloud compute firewall-policies rules create PRIORITY --action=ACTION --firewall-policy=FIREWALL_POLICY [--description=DESCRIPTION] - [--dest-ip-ranges=[DEST_IP_RANGE,...]] [--direction=DIRECTION] - [--[no-]disabled] [--[no-]enable-logging] + [--dest-address-groups=[DEST_ADDRESS_GROUPS,...]] + [--dest-fqdns=[DEST_FQDNS,...]] [--dest-ip-ranges=[DEST_IP_RANGE,...]] + [--dest-region-codes=[DEST_REGION_CODES,...]] + [--dest-threat-intelligence=[DEST_THREAT_INTELLIGENCE_LISTS,...]] + [--direction=DIRECTION] [--[no-]disabled] [--[no-]enable-logging] [--layer4-configs=[LAYER4_CONFIG,...]] [--organization=ORGANIZATION] - [--src-ip-ranges=[SRC_IP_RANGE,...]] + [--src-address-groups=[SOURCE_ADDRESS_GROUPS,...]] + [--src-fqdns=[SOURCE_FQDNS,...]] [--src-ip-ranges=[SRC_IP_RANGE,...]] + [--src-region-codes=[SOURCE_REGION_CODES,...]] + [--src-threat-intelligence=[SOURCE_THREAT_INTELLIGENCE_LISTS,...]] [--target-resources=[TARGET_RESOURCES,...]] [--target-service-accounts=[TARGET_SERVICE_ACCOUNTS,...]] [GCLOUD_WIDE_FLAG ...] @@ -42,9 +48,27 @@ OPTIONAL FLAGS --description=DESCRIPTION An optional, textual description for the rule. + --dest-address-groups=[DEST_ADDRESS_GROUPS,...] + Dest address groups to match for this rule. Can only be specified if + DIRECTION is egress. + + --dest-fqdns=[DEST_FQDNS,...] + Dest FQDNs to match for this rule. Can only be specified if DIRECTION + is egress. + --dest-ip-ranges=[DEST_IP_RANGE,...] Destination IP ranges to match for this rule. + --dest-region-codes=[DEST_REGION_CODES,...] + Dest Region Code to match for this rule. Can only be specified if + DIRECTION is egress. + + --dest-threat-intelligence=[DEST_THREAT_INTELLIGENCE_LISTS,...] + Destination Threat Intelligence lists to match for this rule. Can only + be specified if DIRECTION is egress. The available lists can be found + here: + https://cloud.google.com/vpc/docs/firewall-policies-rule-details#threat-intelligence-fw-policy. + --direction=DIRECTION Direction of the traffic the rule is applied. The default is to apply on incoming traffic. DIRECTION must be one of: INGRESS, EGRESS. @@ -66,9 +90,27 @@ OPTIONAL FLAGS Organization which the organization firewall policy belongs to. Must be set if FIREWALL_POLICY is short name. + --src-address-groups=[SOURCE_ADDRESS_GROUPS,...] + Source address groups to match for this rule. Can only be specified if + DIRECTION is ingress. + + --src-fqdns=[SOURCE_FQDNS,...] + Source FQDNs to match for this rule. Can only be specified if DIRECTION + is ingress. + --src-ip-ranges=[SRC_IP_RANGE,...] Source IP ranges to match for this rule. + --src-region-codes=[SOURCE_REGION_CODES,...] + Source Region Code to match for this rule. Can only be specified if + DIRECTION is ingress. + + --src-threat-intelligence=[SOURCE_THREAT_INTELLIGENCE_LISTS,...] + Source Threat Intelligence lists to match for this rule. Can only be + specified if DIRECTION is ingress. The available lists can be found + here: + https://cloud.google.com/vpc/docs/firewall-policies-rule-details#threat-intelligence-fw-policy. + --target-resources=[TARGET_RESOURCES,...] List of URLs of target resources to which the rule is applied. diff --git a/gcloud/compute/firewall-policies/rules/update b/gcloud/compute/firewall-policies/rules/update index f721c34b9..ec851145b 100644 --- a/gcloud/compute/firewall-policies/rules/update +++ b/gcloud/compute/firewall-policies/rules/update @@ -5,10 +5,18 @@ NAME SYNOPSIS gcloud compute firewall-policies rules update PRIORITY --firewall-policy=FIREWALL_POLICY [--action=ACTION] - [--description=DESCRIPTION] [--dest-ip-ranges=[DEST_IP_RANGE,...]] + [--description=DESCRIPTION] + [--dest-address-groups=[DEST_ADDRESS_GROUPS,...]] + [--dest-fqdns=[DEST_FQDNS,...]] [--dest-ip-ranges=[DEST_IP_RANGE,...]] + [--dest-region-codes=[DEST_REGION_CODES,...]] + [--dest-threat-intelligence=[DEST_THREAT_INTELLIGENCE_LISTS,...]] [--direction=DIRECTION] [--[no-]disabled] [--[no-]enable-logging] [--layer4-configs=[LAYER4_CONFIG,...]] [--new-priority=NEW_PRIORITY] - [--organization=ORGANIZATION] [--src-ip-ranges=[SRC_IP_RANGE,...]] + [--organization=ORGANIZATION] + [--src-address-groups=[SOURCE_ADDRESS_GROUPS,...]] + [--src-fqdns=[SOURCE_FQDNS,...]] [--src-ip-ranges=[SRC_IP_RANGE,...]] + [--src-region-codes=[SOURCE_REGION_CODES,...]] + [--src-threat-intelligence=[SOURCE_THREAT_INTELLIGENCE_LISTS,...]] [--target-resources=[TARGET_RESOURCES,...]] [--target-service-accounts=[TARGET_SERVICE_ACCOUNTS,...]] [GCLOUD_WIDE_FLAG ...] @@ -43,9 +51,27 @@ OPTIONAL FLAGS --description=DESCRIPTION An optional, textual description for the rule. + --dest-address-groups=[DEST_ADDRESS_GROUPS,...] + Dest address groups to match for this rule. Can only be specified if + DIRECTION is egress. + + --dest-fqdns=[DEST_FQDNS,...] + Dest FQDNs to match for this rule. Can only be specified if DIRECTION + is egress. + --dest-ip-ranges=[DEST_IP_RANGE,...] Destination IP ranges to match for this rule. + --dest-region-codes=[DEST_REGION_CODES,...] + Dest Region Code to match for this rule. Can only be specified if + DIRECTION is egress. + + --dest-threat-intelligence=[DEST_THREAT_INTELLIGENCE_LISTS,...] + Destination Threat Intelligence lists to match for this rule. Can only + be specified if DIRECTION is egress. The available lists can be found + here: + https://cloud.google.com/vpc/docs/firewall-policies-rule-details#threat-intelligence-fw-policy. + --direction=DIRECTION Direction of the traffic the rule is applied. The default is to apply on incoming traffic. DIRECTION must be one of: INGRESS, EGRESS. @@ -70,9 +96,27 @@ OPTIONAL FLAGS Organization which the organization firewall policy belongs to. Must be set if FIREWALL_POLICY is short name. + --src-address-groups=[SOURCE_ADDRESS_GROUPS,...] + Source address groups to match for this rule. Can only be specified if + DIRECTION is ingress. + + --src-fqdns=[SOURCE_FQDNS,...] + Source FQDNs to match for this rule. Can only be specified if DIRECTION + is ingress. + --src-ip-ranges=[SRC_IP_RANGE,...] Source IP ranges to match for this rule. + --src-region-codes=[SOURCE_REGION_CODES,...] + Source Region Code to match for this rule. Can only be specified if + DIRECTION is ingress. + + --src-threat-intelligence=[SOURCE_THREAT_INTELLIGENCE_LISTS,...] + Source Threat Intelligence lists to match for this rule. Can only be + specified if DIRECTION is ingress. The available lists can be found + here: + https://cloud.google.com/vpc/docs/firewall-policies-rule-details#threat-intelligence-fw-policy. + --target-resources=[TARGET_RESOURCES,...] List of URLs of target resources to which the rule is applied. diff --git a/gcloud/compute/forwarding-rules/create b/gcloud/compute/forwarding-rules/create index f566c0fb7..6d707993c 100644 --- a/gcloud/compute/forwarding-rules/create +++ b/gcloud/compute/forwarding-rules/create @@ -14,9 +14,10 @@ SYNOPSIS | --target-ssl-proxy=TARGET_SSL_PROXY | --target-tcp-proxy=TARGET_TCP_PROXY | --target-vpn-gateway=TARGET_VPN_GATEWAY) [--address=ADDRESS] - [--allow-global-access] [--description=DESCRIPTION] - [--disable-automate-dns-zone] [--ip-protocol=IP_PROTOCOL] - [--ip-version=IP_VERSION] [--is-mirroring-collector] + [--allow-global-access] [--allow-psc-global-access] + [--description=DESCRIPTION] [--disable-automate-dns-zone] + [--ip-protocol=IP_PROTOCOL] [--ip-version=IP_VERSION] + [--is-mirroring-collector] [--load-balancing-scheme=LOAD_BALANCING_SCHEME] [--network=NETWORK] [--network-tier=NETWORK_TIER] [--service-directory-registration=SERVICE_DIRECTORY_REGISTRATION] @@ -199,6 +200,11 @@ OPTIONAL FLAGS forwarding rules of type INTERNAL, the target must be either a backend service or a target instance. + --allow-psc-global-access + If specified, clients from all regions can access this Private Service + Connect forwarding rule. This can only be specified if the forwarding + rule's target is a service attachment (--target-service-attachment). + --description=DESCRIPTION Optional textual description for the forwarding rule. diff --git a/gcloud/compute/forwarding-rules/update b/gcloud/compute/forwarding-rules/update index f00b4ad7b..3e0222f40 100644 --- a/gcloud/compute/forwarding-rules/update +++ b/gcloud/compute/forwarding-rules/update @@ -4,7 +4,7 @@ NAME SYNOPSIS gcloud compute forwarding-rules update NAME [--allow-global-access] - [--source-ip-ranges=SOURCE_IP_RANGE,[...]] + [--allow-psc-global-access] [--source-ip-ranges=SOURCE_IP_RANGE,[...]] [--update-labels=[KEY=VALUE,...]] [--clear-labels | --remove-labels=[KEY,...]] [--global | --region=REGION] [GCLOUD_WIDE_FLAG ...] @@ -46,6 +46,11 @@ FLAGS forwarding rules of type INTERNAL, the target must be either a backend service or a target instance. + --allow-psc-global-access + If specified, clients from all regions can access this Private Service + Connect forwarding rule. This can only be specified if the forwarding + rule's target is a service attachment (--target-service-attachment). + --source-ip-ranges=SOURCE_IP_RANGE,[...] List of comma-separated IP addresses or IP ranges. If set, this forwarding rule only forwards traffic when the packet's source IP diff --git a/gcloud/compute/network-firewall-policies/rules/create b/gcloud/compute/network-firewall-policies/rules/create index 10f4aaf68..502c1cd65 100644 --- a/gcloud/compute/network-firewall-policies/rules/create +++ b/gcloud/compute/network-firewall-policies/rules/create @@ -5,11 +5,18 @@ NAME SYNOPSIS gcloud compute network-firewall-policies rules create PRIORITY --action=ACTION --firewall-policy=FIREWALL_POLICY - [--description=DESCRIPTION] [--dest-ip-ranges=[DEST_IP_RANGE,...]] + [--description=DESCRIPTION] + [--dest-address-groups=[DEST_ADDRESS_GROUPS,...]] + [--dest-fqdns=[DEST_FQDNS,...]] [--dest-ip-ranges=[DEST_IP_RANGE,...]] + [--dest-region-codes=[DEST_REGION_CODES,...]] + [--dest-threat-intelligence=[DEST_THREAT_INTELLIGENCE_LISTS,...]] [--direction=DIRECTION] [--[no-]disabled] [--[no-]enable-logging] [--layer4-configs=[LAYER4_CONFIG,...]] - [--src-ip-ranges=[SRC_IP_RANGE,...]] + [--src-address-groups=[SOURCE_ADDRESS_GROUPS,...]] + [--src-fqdns=[SOURCE_FQDNS,...]] [--src-ip-ranges=[SRC_IP_RANGE,...]] + [--src-region-codes=[SOURCE_REGION_CODES,...]] [--src-secure-tags=[SOURCE_SECURE_TAGS,...]] + [--src-threat-intelligence=[SOURCE_THREAT_INTELLIGENCE_LISTS,...]] [--target-secure-tags=[TARGET_SECURE_TAGS,...]] [--target-service-accounts=[TARGET_SERVICE_ACCOUNTS,...]] [--firewall-policy-region=FIREWALL_POLICY_REGION @@ -51,9 +58,27 @@ OPTIONAL FLAGS --description=DESCRIPTION An optional, textual description for the rule. + --dest-address-groups=[DEST_ADDRESS_GROUPS,...] + Dest address groups to match for this rule. Can only be specified if + DIRECTION is engress. + + --dest-fqdns=[DEST_FQDNS,...] + Dest FQDNs to match for this rule. Can only be specified if DIRECTION + is egress. + --dest-ip-ranges=[DEST_IP_RANGE,...] Destination IP ranges to match for this rule. + --dest-region-codes=[DEST_REGION_CODES,...] + Dest Region Code to match for this rule. Can only be specified if + DIRECTION is egress. + + --dest-threat-intelligence=[DEST_THREAT_INTELLIGENCE_LISTS,...] + Destination Threat Intelligence lists to match for this rule. Can only + be specified if DIRECTION is egress. The available lists can be found + here: + https://cloud.google.com/vpc/docs/firewall-policies-rule-details#threat-intelligence-fw-policy. + --direction=DIRECTION Direction of the traffic the rule is applied. The default is to apply on incoming traffic. DIRECTION must be one of: INGRESS, EGRESS. @@ -71,6 +96,14 @@ OPTIONAL FLAGS A list of destination protocols and ports to which the firewall rule will apply. + --src-address-groups=[SOURCE_ADDRESS_GROUPS,...] + Source address groups to match for this rule. Can only be specified if + DIRECTION is ingress. + + --src-fqdns=[SOURCE_FQDNS,...] + Source FQDNs to match for this rule. Can only be specified if DIRECTION + is ingress. + --src-ip-ranges=[SRC_IP_RANGE,...] A list of IP address blocks that are allowed to make inbound connections that match the firewall rule to the instances on the @@ -83,6 +116,10 @@ OPTIONAL FLAGS --src-secure-tags.Multiple IP address blocks can be specified if they are separated by commas. + --src-region-codes=[SOURCE_REGION_CODES,...] + Source Region Code to match for this rule. Can only be specified if + DIRECTION is ingress. + --src-secure-tags=[SOURCE_SECURE_TAGS,...] A list of instance secure tags indicating the set of instances on the network to which the rule applies if all other fields match. Either @@ -93,6 +130,12 @@ OPTIONAL FLAGS --src-secure-tags. Secure Tags can be assigned to instances during instance creation. + --src-threat-intelligence=[SOURCE_THREAT_INTELLIGENCE_LISTS,...] + Source Threat Intelligence lists to match for this rule. Can only be + specified if DIRECTION is ingress. The available lists can be found + here: + https://cloud.google.com/vpc/docs/firewall-policies-rule-details#threat-intelligence-fw-policy. + --target-secure-tags=[TARGET_SECURE_TAGS,...] An optional, list of target secure tags with a name of the format tagValues/ or full namespaced name diff --git a/gcloud/compute/network-firewall-policies/rules/update b/gcloud/compute/network-firewall-policies/rules/update index 913948ba5..ee74d9c70 100644 --- a/gcloud/compute/network-firewall-policies/rules/update +++ b/gcloud/compute/network-firewall-policies/rules/update @@ -5,11 +5,18 @@ NAME SYNOPSIS gcloud compute network-firewall-policies rules update PRIORITY --firewall-policy=FIREWALL_POLICY [--action=ACTION] - [--description=DESCRIPTION] [--dest-ip-ranges=[DEST_IP_RANGE,...]] + [--description=DESCRIPTION] + [--dest-address-groups=[DEST_ADDRESS_GROUPS,...]] + [--dest-fqdns=[DEST_FQDNS,...]] [--dest-ip-ranges=[DEST_IP_RANGE,...]] + [--dest-region-codes=[DEST_REGION_CODES,...]] + [--dest-threat-intelligence=[DEST_THREAT_INTELLIGENCE_LISTS,...]] [--direction=DIRECTION] [--[no-]disabled] [--[no-]enable-logging] [--layer4-configs=[LAYER4_CONFIG,...]] [--new-priority=NEW_PRIORITY] - [--src-ip-ranges=[SRC_IP_RANGE,...]] + [--src-address-groups=[SOURCE_ADDRESS_GROUPS,...]] + [--src-fqdns=[SOURCE_FQDNS,...]] [--src-ip-ranges=[SRC_IP_RANGE,...]] + [--src-region-codes=[SOURCE_REGION_CODES,...]] [--src-secure-tags=[SOURCE_SECURE_TAGS,...]] + [--src-threat-intelligence=[SOURCE_THREAT_INTELLIGENCE_LISTS,...]] [--target-secure-tags=[TARGET_SECURE_TAGS,...]] [--target-service-accounts=[TARGET_SERVICE_ACCOUNTS,...]] [--firewall-policy-region=FIREWALL_POLICY_REGION @@ -44,9 +51,27 @@ OPTIONAL FLAGS --description=DESCRIPTION An optional, textual description for the rule. + --dest-address-groups=[DEST_ADDRESS_GROUPS,...] + Dest address groups to match for this rule. Can only be specified if + DIRECTION is engress. + + --dest-fqdns=[DEST_FQDNS,...] + Dest FQDNs to match for this rule. Can only be specified if DIRECTION + is egress. + --dest-ip-ranges=[DEST_IP_RANGE,...] Destination IP ranges to match for this rule. + --dest-region-codes=[DEST_REGION_CODES,...] + Dest Region Code to match for this rule. Can only be specified if + DIRECTION is egress. + + --dest-threat-intelligence=[DEST_THREAT_INTELLIGENCE_LISTS,...] + Destination Threat Intelligence lists to match for this rule. Can only + be specified if DIRECTION is egress. The available lists can be found + here: + https://cloud.google.com/vpc/docs/firewall-policies-rule-details#threat-intelligence-fw-policy. + --direction=DIRECTION Direction of the traffic the rule is applied. The default is to apply on incoming traffic. DIRECTION must be one of: INGRESS, EGRESS. @@ -67,6 +92,14 @@ OPTIONAL FLAGS --new-priority=NEW_PRIORITY New priority for the rule to update. Valid in [0, 65535]. + --src-address-groups=[SOURCE_ADDRESS_GROUPS,...] + Source address groups to match for this rule. Can only be specified if + DIRECTION is ingress. + + --src-fqdns=[SOURCE_FQDNS,...] + Source FQDNs to match for this rule. Can only be specified if DIRECTION + is ingress. + --src-ip-ranges=[SRC_IP_RANGE,...] A list of IP address blocks that are allowed to make inbound connections that match the firewall rule to the instances on the @@ -79,6 +112,10 @@ OPTIONAL FLAGS --src-secure-tags.Multiple IP address blocks can be specified if they are separated by commas. + --src-region-codes=[SOURCE_REGION_CODES,...] + Source Region Code to match for this rule. Can only be specified if + DIRECTION is ingress. + --src-secure-tags=[SOURCE_SECURE_TAGS,...] A list of instance secure tags indicating the set of instances on the network to which the rule applies if all other fields match. Either @@ -89,6 +126,12 @@ OPTIONAL FLAGS --src-secure-tags. Secure Tags can be assigned to instances during instance creation. + --src-threat-intelligence=[SOURCE_THREAT_INTELLIGENCE_LISTS,...] + Source Threat Intelligence lists to match for this rule. Can only be + specified if DIRECTION is ingress. The available lists can be found + here: + https://cloud.google.com/vpc/docs/firewall-policies-rule-details#threat-intelligence-fw-policy. + --target-secure-tags=[TARGET_SECURE_TAGS,...] An optional, list of target secure tags with a name of the format tagValues/ or full namespaced name diff --git a/gcloud/compute/security-policies/rules/create b/gcloud/compute/security-policies/rules/create index cbf250836..efc090035 100644 --- a/gcloud/compute/security-policies/rules/create +++ b/gcloud/compute/security-policies/rules/create @@ -10,6 +10,9 @@ SYNOPSIS [--ban-threshold-interval-sec=BAN_THRESHOLD_INTERVAL_SEC] [--conform-action=CONFORM_ACTION] [--description=DESCRIPTION] [--enforce-on-key=ENFORCE_ON_KEY] + [--enforce-on-key-configs=[[all],[ip],[xff-ip], + [http-cookie=HTTP_COOKIE], + [http-header=HTTP_HEADER],[http-path],[sni],[region-code]],[...]] [--enforce-on-key-name=ENFORCE_ON_KEY_NAME] [--exceed-action=EXCEED_ACTION] [--exceed-redirect-target=EXCEED_REDIRECT_TARGET] @@ -128,6 +131,29 @@ OPTIONAL FLAGS ENFORCE_ON_KEY must be one of: ip, all, http-header, xff-ip, http-cookie, http-path, sni, region-code. + --enforce-on-key-configs=[[all],[ip],[xff-ip],[http-cookie=HTTP_COOKIE],[http-header=HTTP_HEADER],[http-path],[sni],[region-code]],[...] + Specify up to 3 key type/name pairs to rate limit. Valid key types are: + + ◆ ip: each client IP address has this limit enforced separately + ◆ all: a single limit is applied to all requests matching this rule + ◆ http-header: key type takes the value of the HTTP header configured + in enforce-on-key-name as the key value + ◆ xff-ip: takes the original IP address specified in the + X-Forwarded-For header as the key + ◆ http-cookie: key type takes the value of the HTTP cookie configured + in enforce-on-key-name as the key value + ◆ http-path: key type takes the value of the URL path in the request + ◆ sni: key type takes the value of the server name indication from + the TLS session of the HTTPS request + ◆ region-code: key type takes the value of the region code from which + the request originates + + Key names are only applicable to the following key types: + ◆ http-header: The name of the HTTP header whose value is taken as + the key value. + ◆ http-cookie: The name of the HTTP cookie whose value is taken as + the key value. + --enforce-on-key-name=ENFORCE_ON_KEY_NAME Determines the key name for the rate limit key. Applicable only for the following rate limit key types: diff --git a/gcloud/compute/security-policies/rules/update b/gcloud/compute/security-policies/rules/update index 16690b5c8..e4c1d8f5e 100644 --- a/gcloud/compute/security-policies/rules/update +++ b/gcloud/compute/security-policies/rules/update @@ -9,6 +9,9 @@ SYNOPSIS [--ban-threshold-interval-sec=BAN_THRESHOLD_INTERVAL_SEC] [--conform-action=CONFORM_ACTION] [--description=DESCRIPTION] [--enforce-on-key=ENFORCE_ON_KEY] + [--enforce-on-key-configs=[[all],[ip],[xff-ip], + [http-cookie=HTTP_COOKIE], + [http-header=HTTP_HEADER],[http-path],[sni],[region-code]],[...]] [--enforce-on-key-name=ENFORCE_ON_KEY_NAME] [--exceed-action=EXCEED_ACTION] [--exceed-redirect-target=EXCEED_REDIRECT_TARGET] @@ -117,6 +120,29 @@ FLAGS ENFORCE_ON_KEY must be one of: ip, all, http-header, xff-ip, http-cookie, http-path, sni, region-code. + --enforce-on-key-configs=[[all],[ip],[xff-ip],[http-cookie=HTTP_COOKIE],[http-header=HTTP_HEADER],[http-path],[sni],[region-code]],[...] + Specify up to 3 key type/name pairs to rate limit. Valid key types are: + + ◆ ip: each client IP address has this limit enforced separately + ◆ all: a single limit is applied to all requests matching this rule + ◆ http-header: key type takes the value of the HTTP header configured + in enforce-on-key-name as the key value + ◆ xff-ip: takes the original IP address specified in the + X-Forwarded-For header as the key + ◆ http-cookie: key type takes the value of the HTTP cookie configured + in enforce-on-key-name as the key value + ◆ http-path: key type takes the value of the URL path in the request + ◆ sni: key type takes the value of the server name indication from + the TLS session of the HTTPS request + ◆ region-code: key type takes the value of the region code from which + the request originates + + Key names are only applicable to the following key types: + ◆ http-header: The name of the HTTP header whose value is taken as + the key value. + ◆ http-cookie: The name of the HTTP cookie whose value is taken as + the key value. + --enforce-on-key-name=ENFORCE_ON_KEY_NAME Determines the key name for the rate limit key. Applicable only for the following rate limit key types: diff --git a/gcloud/compute/target-https-proxies/create b/gcloud/compute/target-https-proxies/create index 8e0feb110..62b9c3142 100644 --- a/gcloud/compute/target-https-proxies/create +++ b/gcloud/compute/target-https-proxies/create @@ -5,7 +5,9 @@ SYNOPSIS gcloud compute target-https-proxies create NAME --url-map=URL_MAP [--certificate-map=CERTIFICATE_MAP] [--description=DESCRIPTION] [--quic-override=QUIC_OVERRIDE; default="NONE"] - [--ssl-certificates=SSL_CERTIFICATE,[...]] [--ssl-policy=SSL_POLICY] + [--ssl-policy=SSL_POLICY] + [--certificate-manager-certificates=[CERTIFICATE_MANAGER_CERTIFICATES, + ...] | --ssl-certificates=SSL_CERTIFICATE,[...]] [--global | --region=REGION] [--global-ssl-certificates | --ssl-certificates-region=SSL_CERTIFICATES_REGION] @@ -81,19 +83,39 @@ OPTIONAL FLAGS NONE Allows Google to control when QUIC is rolled out. - --ssl-certificates=SSL_CERTIFICATE,[...] - References to at most 15 SSL certificate resources that are used for - server-side authentication. The first SSL certificate in this list is - considered the primary SSL certificate associated with the load - balancer. The SSL certificates must exist and cannot be deleted while - referenced by a target HTTPS proxy. - --ssl-policy=SSL_POLICY A reference to an SSL policy resource that defines the server-side support for SSL features and affects the connections between clients and the HTTPS proxy load balancer. The SSL policy must exist and cannot be deleted while referenced by a target HTTPS proxy. + At most one of these can be specified: + + Certificate resource - certificate-manager-certificates to attach. This + represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ▸ provide the argument --certificate-manager-certificates on the + command line with a fully specified name; + ▸ provide the argument --project on the command line; + ▸ set the property core/project. To set the location attribute: + ▸ provide the argument --certificate-manager-certificates on the + command line with a fully specified name; + ▸ default value of location is [global]. + + --certificate-manager-certificates=[CERTIFICATE_MANAGER_CERTIFICATES,...] + IDs of the certificates or fully qualified identifiers for the + certificates. To set the certificate attribute: + ▫ provide the argument --certificate-manager-certificates on the + command line. + + --ssl-certificates=SSL_CERTIFICATE,[...] + References to at most 15 SSL certificate resources that are used for + server-side authentication. The first SSL certificate in this list is + considered the primary SSL certificate associated with the load + balancer. The SSL certificates must exist and cannot be deleted while + referenced by a target HTTPS proxy. + At most one of these can be specified: --global diff --git a/gcloud/compute/target-https-proxies/update b/gcloud/compute/target-https-proxies/update index b1962dfe1..1e2e2ec2a 100644 --- a/gcloud/compute/target-https-proxies/update +++ b/gcloud/compute/target-https-proxies/update @@ -4,9 +4,11 @@ NAME SYNOPSIS gcloud compute target-https-proxies update NAME [--quic-override=QUIC_OVERRIDE] [--url-map=URL_MAP] - [--certificate-map=CERTIFICATE_MAP | --clear-certificate-map + [--certificate-manager-certificates=[CERTIFICATE_MANAGER_CERTIFICATES, + ...] | --clear-ssl-certificates | --ssl-certificates=SSL_CERTIFICATE,[...] --global-ssl-certificates - | --ssl-certificates-region=SSL_CERTIFICATES_REGION] + | --ssl-certificates-region=SSL_CERTIFICATES_REGION + | --certificate-map=CERTIFICATE_MAP | --clear-certificate-map] [--clear-ssl-policy | --ssl-policy=SSL_POLICY --global-ssl-policy | --ssl-policy-region=SSL_POLICY_REGION] [--global | --region=REGION] [--global-url-map | --url-map-region=URL_MAP_REGION] @@ -72,32 +74,33 @@ FLAGS At most one of these can be specified: - Certificate map resource - The certificate map to attach. This - represents a Cloud resource. (NOTE) Some attributes are not given + Certificate resource - certificate-manager-certificates to attach. + This represents a Cloud resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute: - ▫ provide the argument --certificate-map on the command line with a - fully specified name; + ▫ provide the argument --certificate-manager-certificates on the + command line with a fully specified name; ▫ provide the argument --project on the command line; ▫ set the property core/project. To set the location attribute: - ▫ provide the argument --certificate-map on the command line with a - fully specified name; + ▫ provide the argument --certificate-manager-certificates on the + command line with a fully specified name; ▫ default value of location is [global]. - --certificate-map=CERTIFICATE_MAP - ID of the certificate map or fully qualified identifier for the - certificate map. To set the map attribute: - ◇ provide the argument --certificate-map on the command line. + --certificate-manager-certificates=[CERTIFICATE_MANAGER_CERTIFICATES,...] + IDs of the certificates or fully qualified identifiers for the + certificates. To set the certificate attribute: + ◇ provide the argument --certificate-manager-certificates on + the command line. - --clear-certificate-map - Removes any attached certificate map from the HTTPS proxy. + --clear-ssl-certificates + Remove any attached SSL certificates from the HTTPS proxy. - --ssl-certificates=SSL_CERTIFICATE,[...] - References to at most 15 SSL certificate resources that are used for - server-side authentication. The first SSL certificate in this list is - considered the primary SSL certificate associated with the load - balancer. The SSL certificates must exist and cannot be deleted while - referenced by a target HTTPS proxy. + --ssl-certificates=SSL_CERTIFICATE,[...] + References to at most 15 SSL certificate resources that are used + for server-side authentication. The first SSL certificate in this + list is considered the primary SSL certificate associated with the + load balancer. The SSL certificates must exist and cannot be + deleted while referenced by a target HTTPS proxy. At most one of these can be specified: @@ -124,6 +127,28 @@ FLAGS Alternatively, the region can be stored in the environment variable CLOUDSDK_COMPUTE_REGION. + At most one of these can be specified: + + Certificate map resource - The certificate map to attach. This + represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the + project attribute: + ▫ provide the argument --certificate-map on the command line with a + fully specified name; + ▫ provide the argument --project on the command line; + ▫ set the property core/project. To set the location attribute: + ▫ provide the argument --certificate-map on the command line with a + fully specified name; + ▫ default value of location is [global]. + + --certificate-map=CERTIFICATE_MAP + ID of the certificate map or fully qualified identifier for the + certificate map. To set the map attribute: + ◇ provide the argument --certificate-map on the command line. + + --clear-certificate-map + Removes any attached certificate map from the HTTPS proxy. + At most one of these can be specified: --clear-ssl-policy diff --git a/gcloud/compute/target-ssl-proxies/update b/gcloud/compute/target-ssl-proxies/update index f4e7b0e16..0bdab2bed 100644 --- a/gcloud/compute/target-ssl-proxies/update +++ b/gcloud/compute/target-ssl-proxies/update @@ -69,7 +69,7 @@ FLAGS referenced by a target SSL proxy. --clear-ssl-certificates - Removes any attached SSL Certificates from the SSL proxy. + Remove any attached SSL certificates from the SSL proxy. Certificate map resource - The certificate map to attach. This represents a Cloud resource. (NOTE) Some attributes are not given diff --git a/gcloud/container/aws/clusters/create b/gcloud/container/aws/clusters/create index 4f139494b..05fc925bb 100644 --- a/gcloud/container/aws/clusters/create +++ b/gcloud/container/aws/clusters/create @@ -13,8 +13,8 @@ SYNOPSIS --subnet-ids=[SUBNET_ID,...] --vpc-id=VPC_ID [--admin-users=USER,[USER,...]] [--annotations=ANNOTATION,[ANNOTATION,...]] [--async] - [--description=DESCRIPTION] [--instance-type=INSTANCE_TYPE] - [--logging=COMPONENT,[COMPONENT,...]] + [--description=DESCRIPTION] [--enable-managed-prometheus] + [--instance-type=INSTANCE_TYPE] [--logging=COMPONENT,[COMPONENT,...]] [--main-volume-iops=MAIN_VOLUME_IOPS] [--main-volume-kms-key-arn=MAIN_VOLUME_KMS_KEY_ARN] [--main-volume-size=MAIN_VOLUME_SIZE] @@ -127,6 +127,9 @@ OPTIONAL FLAGS --description=DESCRIPTION Description for the cluster. + --enable-managed-prometheus + Enable managed collection for Managed Service for Prometheus. + --instance-type=INSTANCE_TYPE AWS EC2 instance type for the control plane's nodes. diff --git a/gcloud/container/aws/clusters/update b/gcloud/container/aws/clusters/update index 39ee914d8..2830ec146 100644 --- a/gcloud/container/aws/clusters/update +++ b/gcloud/container/aws/clusters/update @@ -20,7 +20,9 @@ SYNOPSIS [--clear-security-group-ids | --security-group-ids=[SECURITY_GROUP_ID,...]] [--clear-ssh-ec2-key-pair | --ssh-ec2-key-pair=SSH_EC2_KEY_PAIR] - [--clear-tags | --tags=TAG,[TAG,...]] [GCLOUD_WIDE_FLAG ...] + [--clear-tags | --tags=TAG,[TAG,...]] + [--disable-managed-prometheus | --enable-managed-prometheus] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION Update an Anthos cluster on AWS. @@ -189,6 +191,16 @@ FLAGS $ gcloud container aws clusters update EXAMPLE_CONTROL_PLANE \ --tags=tag1=one,tag2=two + Monitoring Config + + At most one of these can be specified: + + --disable-managed-prometheus + Disable managed collection for Managed Service for Prometheus. + + --enable-managed-prometheus + Enable managed collection for Managed Service for Prometheus. + GCLOUD WIDE FLAGS These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, diff --git a/gcloud/container/aws/node-pools/create b/gcloud/container/aws/node-pools/create index 75dfa0c10..9804c168b 100644 --- a/gcloud/container/aws/node-pools/create +++ b/gcloud/container/aws/node-pools/create @@ -6,10 +6,11 @@ SYNOPSIS gcloud container aws node-pools create (NODE_POOL : --cluster=CLUSTER --location=LOCATION) --config-encryption-kms-key-arn=CONFIG_ENCRYPTION_KMS_KEY_ARN - --iam-instance-profile=IAM_INSTANCE_PROFILE --node-version=NODE_VERSION - --subnet-id=SUBNET_ID [--annotations=ANNOTATION,[ANNOTATION,...]] - [--async] [--instance-type=INSTANCE_TYPE] - [--max-pods-per-node=MAX_PODS_PER_NODE] + --iam-instance-profile=IAM_INSTANCE_PROFILE + --max-pods-per-node=MAX_PODS_PER_NODE --node-version=NODE_VERSION + --subnet-id=SUBNET_ID (--max-nodes=MAX_NODES --min-nodes=MIN_NODES) + [--annotations=ANNOTATION,[ANNOTATION,...]] [--async] + [--instance-type=INSTANCE_TYPE] [--node-labels=NODE_LABEL,[NODE_LABEL,...]] [--node-taints=NODE_TAINT,[NODE_TAINT,...]] [--root-volume-iops=ROOT_VOLUME_IOPS] @@ -21,7 +22,6 @@ SYNOPSIS [--validate-only] [--autoscaling-metrics-granularity=AUTOSCALING_METRICS_GRANULARITY : --autoscaling-metrics=[AUTOSCALING_METRIC,...]] - [--max-nodes=MAX_NODES --min-nodes=MIN_NODES] [--proxy-secret-arn=PROXY_SECRET_ARN --proxy-secret-version-id=PROXY_SECRET_VERSION_ID] [GCLOUD_WIDE_FLAG ...] @@ -79,12 +79,31 @@ REQUIRED FLAGS --iam-instance-profile=IAM_INSTANCE_PROFILE Name or ARN of the IAM instance profile associated with the node pool. + --max-pods-per-node=MAX_PODS_PER_NODE + Maximum number of pods per node. + --node-version=NODE_VERSION Kubernetes version to use for the node pool. --subnet-id=SUBNET_ID Subnet ID of an existing VNET to use for the node pool. + Node pool autoscaling + + This must be specified. + + --max-nodes=MAX_NODES + Maximum number of nodes in the node pool. + + This flag argument must be specified if any of the other arguments in + this group are specified. + + --min-nodes=MIN_NODES + Minimum number of nodes in the node pool. + + This flag argument must be specified if any of the other arguments in + this group are specified. + OPTIONAL FLAGS --annotations=ANNOTATION,[ANNOTATION,...] Annotations for the node pool. @@ -98,9 +117,6 @@ OPTIONAL FLAGS --instance-type=INSTANCE_TYPE AWS EC2 instance type for the node pool's nodes. - --max-pods-per-node=MAX_PODS_PER_NODE - Maximum number of pods per node. - --node-labels=NODE_LABEL,[NODE_LABEL,...] Labels assigned to nodes of the node pool. @@ -155,20 +171,6 @@ OPTIONAL FLAGS If granularity is specified but not any metrics, all metrics are enabled. - Node pool autoscaling - - --max-nodes=MAX_NODES - Maximum number of nodes in the node pool. - - This flag argument must be specified if any of the other arguments in - this group are specified. - - --min-nodes=MIN_NODES - Minimum number of nodes in the node pool. - - This flag argument must be specified if any of the other arguments in - this group are specified. - Proxy config --proxy-secret-arn=PROXY_SECRET_ARN diff --git a/gcloud/container/azure/clusters/create b/gcloud/container/azure/clusters/create index e098d82c6..7fd364006 100644 --- a/gcloud/container/azure/clusters/create +++ b/gcloud/container/azure/clusters/create @@ -15,7 +15,8 @@ SYNOPSIS [--config-encryption-key-id=CONFIG_ENCRYPTION_KEY_ID] [--config-encryption-public-key=CONFIG_ENCRYPTION_PUBLIC_KEY] [--database-encryption-key-id=DATABASE_ENCRYPTION_KEY_ID] - [--description=DESCRIPTION] [--endpoint-subnet-id=ENDPOINT_SUBNET_ID] + [--description=DESCRIPTION] [--enable-managed-prometheus] + [--endpoint-subnet-id=ENDPOINT_SUBNET_ID] [--logging=COMPONENT,[COMPONENT,...]] [--main-volume-size=MAIN_VOLUME_SIZE] [--replica-placements=[REPLICA_PLACEMENT,...]] @@ -158,6 +159,9 @@ OPTIONAL FLAGS --description=DESCRIPTION Description for the cluster. + --enable-managed-prometheus + Enable managed collection for Managed Service for Prometheus. + --endpoint-subnet-id=ENDPOINT_SUBNET_ID ARM ID of the subnet where the control plane load balancer is deployed. When unspecified, it defaults to the control plane subnet ID. diff --git a/gcloud/container/azure/clusters/update b/gcloud/container/azure/clusters/update index 1cc9aa67d..082ae3c44 100644 --- a/gcloud/container/azure/clusters/update +++ b/gcloud/container/azure/clusters/update @@ -11,6 +11,7 @@ SYNOPSIS [--clear-description | --description=DESCRIPTION] [--client=CLIENT | --azure-application-id=AZURE_APPLICATION_ID --azure-tenant-id=AZURE_TENANT_ID --clear-client] + [--disable-managed-prometheus | --enable-managed-prometheus] [GCLOUD_WIDE_FLAG ...] DESCRIPTION @@ -135,6 +136,16 @@ FLAGS Azure workload identity federation from Azure client to manage Azure resources. + Monitoring Config + + At most one of these can be specified: + + --disable-managed-prometheus + Disable managed collection for Managed Service for Prometheus. + + --enable-managed-prometheus + Enable managed collection for Managed Service for Prometheus. + GCLOUD WIDE FLAGS These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, diff --git a/gcloud/container/azure/node-pools/create b/gcloud/container/azure/node-pools/create index 2718af5dc..099e317b1 100644 --- a/gcloud/container/azure/node-pools/create +++ b/gcloud/container/azure/node-pools/create @@ -5,17 +5,17 @@ NAME SYNOPSIS gcloud container azure node-pools create (NODE_POOL : --cluster=CLUSTER --location=LOCATION) - --node-version=NODE_VERSION --ssh-public-key=SSH_PUBLIC_KEY - --subnet-id=SUBNET_ID [--annotations=ANNOTATION,[ANNOTATION,...]] - [--async] [--azure-availability-zone=AZURE_AVAILABILITY_ZONE] + --max-pods-per-node=MAX_PODS_PER_NODE --node-version=NODE_VERSION + --ssh-public-key=SSH_PUBLIC_KEY --subnet-id=SUBNET_ID + (--max-nodes=MAX_NODES --min-nodes=MIN_NODES) + [--annotations=ANNOTATION,[ANNOTATION,...]] [--async] + [--azure-availability-zone=AZURE_AVAILABILITY_ZONE] [--config-encryption-key-id=CONFIG_ENCRYPTION_KEY_ID] [--config-encryption-public-key=CONFIG_ENCRYPTION_PUBLIC_KEY] - [--max-pods-per-node=MAX_PODS_PER_NODE] [--node-labels=NODE_LABEL,[NODE_LABEL,...]] [--node-taints=NODE_TAINT,[NODE_TAINT,...]] [--root-volume-size=ROOT_VOLUME_SIZE] [--tags=TAG,[TAG,...]] [--validate-only] [--vm-size=VM_SIZE] - [--max-nodes=MAX_NODES --min-nodes=MIN_NODES] [--proxy-resource-group-id=PROXY_RESOURCE_GROUP_ID --proxy-secret-id=PROXY_SECRET_ID] [GCLOUD_WIDE_FLAG ...] @@ -66,6 +66,9 @@ POSITIONAL ARGUMENTS ▸ set the property container_azure/location. REQUIRED FLAGS + --max-pods-per-node=MAX_PODS_PER_NODE + Maximum number of pods per node. + --node-version=NODE_VERSION Kubernetes version to use for the node pool. @@ -75,6 +78,22 @@ REQUIRED FLAGS --subnet-id=SUBNET_ID Subnet ID of an existing VNET to use for the node pool. + Node pool autoscaling + + This must be specified. + + --max-nodes=MAX_NODES + Maximum number of nodes in the node pool. + + This flag argument must be specified if any of the other arguments in + this group are specified. + + --min-nodes=MIN_NODES + Minimum number of nodes in the node pool. + + This flag argument must be specified if any of the other arguments in + this group are specified. + OPTIONAL FLAGS --annotations=ANNOTATION,[ANNOTATION,...] Annotations for the node pool. @@ -94,9 +113,6 @@ OPTIONAL FLAGS RSA key of the Azure Key Vault public key to use for encrypting config data. - --max-pods-per-node=MAX_PODS_PER_NODE - Maximum number of pods per node. - --node-labels=NODE_LABEL,[NODE_LABEL,...] Labels assigned to nodes of the node pool. @@ -122,20 +138,6 @@ OPTIONAL FLAGS --vm-size=VM_SIZE Azure Virtual Machine Size (e.g. Standard_DS1_v). - Node pool autoscaling - - --max-nodes=MAX_NODES - Maximum number of nodes in the node pool. - - This flag argument must be specified if any of the other arguments in - this group are specified. - - --min-nodes=MIN_NODES - Minimum number of nodes in the node pool. - - This flag argument must be specified if any of the other arguments in - this group are specified. - Proxy config --proxy-resource-group-id=PROXY_RESOURCE_GROUP_ID diff --git a/gcloud/container/clusters/create b/gcloud/container/clusters/create index 0a78bc24d..615f92fd4 100644 --- a/gcloud/container/clusters/create +++ b/gcloud/container/clusters/create @@ -94,12 +94,12 @@ SYNOPSIS [--ephemeral-storage-local-ssd=[count=COUNT] | --local-nvme-ssd-block=[count=COUNT] | --local-ssd-count=LOCAL_SSD_COUNT] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--maintenance-window=START_TIME | --maintenance-window-end=TIME_STAMP --maintenance-window-recurrence=RRULE --maintenance-window-start=TIME_STAMP] [--password=PASSWORD --enable-basic-auth | --username=USERNAME, -u USERNAME] - [--region=REGION | --zone=ZONE, -z ZONE] [--reservation=RESERVATION --reservation-affinity=RESERVATION_AFFINITY] [--scopes=[SCOPE,...]; default="gke-default" --service-account=SERVICE_ACCOUNT] @@ -733,11 +733,12 @@ FLAGS --node-locations=ZONE,[ZONE,...] The set of zones in which the specified node footprint should be replicated. All zones must be in the same region as the cluster's - master(s), specified by the --zone or --region flag. Additionally, for - zonal clusters, --node-locations must contain the cluster's primary - zone. If not specified, all nodes will be in the cluster's primary zone - (for zonal clusters) or spread across three randomly chosen zones - within the cluster's region (for regional clusters). + master(s), specified by the -location, --zone, or --region flag. + Additionally, for zonal clusters, --node-locations must contain the + cluster's primary zone. If not specified, all nodes will be in the + cluster's primary zone (for zonal clusters) or spread across three + randomly chosen zones within the cluster's region (for regional + clusters). Note that NUM_NODES nodes will be created in each zone, such that if you specify --num-nodes=4 and choose two locations, 8 nodes will be @@ -746,7 +747,7 @@ FLAGS Multiple locations can be specified, separated by commas. For example: $ gcloud container clusters create example-cluster \ - --zone us-central1-a \ + --location us-central1-a \ --node-locations us-central1-a,us-central1-b --node-taints=[NODE_TAINT,...] @@ -1501,6 +1502,19 @@ FLAGS zone. See https://cloud.google.com/compute/docs/disks/local-ssd for more information. + At most one of these can be specified: + + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + + --region=REGION + Compute region (e.g. us-central1) for the cluster. + + --zone=ZONE, -z ZONE + Compute zone (e.g. us-central1-a) for the cluster. Overrides the + default compute/zone property value for this command invocation. + One of either maintenance-window or the group of maintenance-window flags can be set. @@ -1594,15 +1608,6 @@ FLAGS to specify a password; if not, the server will randomly generate one. - At most one of these can be specified: - - --region=REGION - Compute region (e.g. us-central1) for the cluster. - - --zone=ZONE, -z ZONE - Compute zone (e.g. us-central1-a) for the cluster. Overrides the - default compute/zone property value for this command invocation. - Specifies the reservation for the default initial node pool. --reservation=RESERVATION diff --git a/gcloud/container/clusters/create-auto b/gcloud/container/clusters/create-auto index ac6218d04..dc324aa8b 100644 --- a/gcloud/container/clusters/create-auto +++ b/gcloud/container/clusters/create-auto @@ -20,7 +20,7 @@ SYNOPSIS --master-authorized-networks=NETWORK,[NETWORK,...]] [--enable-private-endpoint --enable-private-nodes --master-ipv4-cidr=MASTER_IPV4_CIDR] - [--region=REGION | --zone=ZONE, -z ZONE] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--scopes=[SCOPE,...]; default="gke-default" --service-account=SERVICE_ACCOUNT] [GCLOUD_WIDE_FLAG ...] @@ -277,6 +277,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/clusters/delete b/gcloud/container/clusters/delete index 63961fab9..a9571ef75 100644 --- a/gcloud/container/clusters/delete +++ b/gcloud/container/clusters/delete @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud container clusters delete NAME [NAME ...] [--async] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION When you delete a cluster, the following resources are deleted: @@ -39,6 +40,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/clusters/describe b/gcloud/container/clusters/describe index 7cad8e4d6..b9ed207d4 100644 --- a/gcloud/container/clusters/describe +++ b/gcloud/container/clusters/describe @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud container clusters describe NAME - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION Describe an existing cluster for running containers. @@ -21,6 +22,10 @@ POSITIONAL ARGUMENTS FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/clusters/get-credentials b/gcloud/container/clusters/get-credentials index 1c4905ea5..2f9615dbe 100644 --- a/gcloud/container/clusters/get-credentials +++ b/gcloud/container/clusters/get-credentials @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud container clusters get-credentials NAME [--internal-ip] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION gcloud container clusters get-credentials updates a kubeconfig file with @@ -37,7 +38,7 @@ EXAMPLES To switch to working on your cluster 'sample-cluster', run: $ gcloud container clusters get-credentials sample-cluster \ - --zone=us-central1-f + --location=us-central1-f POSITIONAL ARGUMENTS NAME @@ -50,6 +51,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/clusters/help b/gcloud/container/clusters/help index da12b3479..5293001ce 100644 --- a/gcloud/container/clusters/help +++ b/gcloud/container/clusters/help @@ -3,7 +3,8 @@ NAME clusters SYNOPSIS - gcloud container clusters COMMAND [--region=REGION | --zone=ZONE, -z ZONE] + gcloud container clusters COMMAND + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] DESCRIPTION @@ -16,6 +17,10 @@ DESCRIPTION FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/clusters/list b/gcloud/container/clusters/list index bb1a6f9af..ffd7d902a 100644 --- a/gcloud/container/clusters/list +++ b/gcloud/container/clusters/list @@ -3,15 +3,16 @@ NAME containers SYNOPSIS - gcloud container clusters list [--region=REGION | --zone=ZONE, -z ZONE] + gcloud container clusters list + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] DESCRIPTION List existing clusters for running containers. - This command queries cluster across all locations unless either '--region' - or '--zone' are specified. + This command queries cluster across all locations unless either + '--location', '--region', or '--zone' are specified. EXAMPLES To list existing clusters in all locations, run: @@ -21,6 +22,10 @@ EXAMPLES FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/clusters/resize b/gcloud/container/clusters/resize index aa4fc09a9..483a199f8 100644 --- a/gcloud/container/clusters/resize +++ b/gcloud/container/clusters/resize @@ -5,7 +5,8 @@ NAME SYNOPSIS gcloud container clusters resize NAME (--num-nodes=NUM_NODES | --size=NUM_NODES) [--async] - [--node-pool=NODE_POOL] [--region=REGION | --zone=ZONE, -z ZONE] + [--node-pool=NODE_POOL] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] DESCRIPTION @@ -65,6 +66,10 @@ OPTIONAL FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/clusters/update b/gcloud/container/clusters/update index c9e52c970..4ee04cf2a 100644 --- a/gcloud/container/clusters/update +++ b/gcloud/container/clusters/update @@ -71,10 +71,11 @@ SYNOPSIS [--cloud-run-config=[load-balancer-type=EXTERNAL,...]] [--master-authorized-networks=NETWORK,[NETWORK,...]] [--node-pool=NODE_POOL] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--location-policy=LOCATION_POLICY --max-nodes=MAX_NODES --min-nodes=MIN_NODES --total-max-nodes=TOTAL_MAX_NODES --total-min-nodes=TOTAL_MIN_NODES] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION Update cluster settings for an existing container cluster. @@ -339,11 +340,12 @@ REQUIRED FLAGS --node-locations=ZONE,[ZONE,...] The set of zones in which the specified node footprint should be replicated. All zones must be in the same region as the cluster's - master(s), specified by the --zone or --region flag. Additionally, - for zonal clusters, --node-locations must contain the cluster's - primary zone. If not specified, all nodes will be in the cluster's - primary zone (for zonal clusters) or spread across three randomly - chosen zones within the cluster's region (for regional clusters). + master(s), specified by the -location, --zone, or --region flag. + Additionally, for zonal clusters, --node-locations must contain the + cluster's primary zone. If not specified, all nodes will be in the + cluster's primary zone (for zonal clusters) or spread across three + randomly chosen zones within the cluster's region (for regional + clusters). Note that NUM_NODES nodes will be created in each zone, such that if you specify --num-nodes=4 and choose two locations, 8 nodes will be @@ -353,7 +355,7 @@ REQUIRED FLAGS example: $ gcloud container clusters update example-cluster \ - --zone us-central1-a \ + --location us-central1-a \ --node-locations us-central1-a,us-central1-b --notification-config=[pubsub=ENABLED|DISABLED,pubsub-topic=TOPIC,...] @@ -1054,6 +1056,19 @@ OPTIONAL FLAGS --node-pool=NODE_POOL Node pool to be updated. + At most one of these can be specified: + + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + + --region=REGION + Compute region (e.g. us-central1) for the cluster. + + --zone=ZONE, -z ZONE + Compute zone (e.g. us-central1-a) for the cluster. Overrides the + default compute/zone property value for this command invocation. + Cluster autoscaling --location-policy=LOCATION_POLICY @@ -1095,15 +1110,6 @@ OPTIONAL FLAGS --node-pool (or default node pool if unspecified) can scale. Ignored unless --enable-autoscaling is also specified. - At most one of these can be specified: - - --region=REGION - Compute region (e.g. us-central1) for the cluster. - - --zone=ZONE, -z ZONE - Compute zone (e.g. us-central1-a) for the cluster. Overrides the - default compute/zone property value for this command invocation. - GCLOUD WIDE FLAGS These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, diff --git a/gcloud/container/clusters/upgrade b/gcloud/container/clusters/upgrade index 65b499692..b3a2b0f0c 100644 --- a/gcloud/container/clusters/upgrade +++ b/gcloud/container/clusters/upgrade @@ -6,7 +6,8 @@ SYNOPSIS gcloud container clusters upgrade NAME [--async] [--cluster-version=CLUSTER_VERSION] [--image-type=IMAGE_TYPE] [--master] [--node-pool=NODE_POOL] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION Upgrades the Kubernetes version of an existing container cluster. @@ -91,6 +92,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/get-server-config b/gcloud/container/get-server-config index 369c01fcc..01a03f8d1 100644 --- a/gcloud/container/get-server-config +++ b/gcloud/container/get-server-config @@ -2,7 +2,8 @@ NAME gcloud container get-server-config - get Kubernetes Engine server config SYNOPSIS - gcloud container get-server-config [--region=REGION | --zone=ZONE, -z ZONE] + gcloud container get-server-config + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--filter=EXPRESSION] [--limit=LIMIT] [--sort-by=[FIELD,...]] [GCLOUD_WIDE_FLAG ...] @@ -17,6 +18,10 @@ EXAMPLES FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/node-pools/complete-upgrade b/gcloud/container/node-pools/complete-upgrade index 466081919..6018dc54f 100644 --- a/gcloud/container/node-pools/complete-upgrade +++ b/gcloud/container/node-pools/complete-upgrade @@ -3,7 +3,8 @@ NAME SYNOPSIS gcloud container node-pools complete-upgrade NAME [--cluster=CLUSTER] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION Complete a node pool upgrade. @@ -29,6 +30,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/node-pools/create b/gcloud/container/node-pools/create index 7076e861f..b27f0df59 100644 --- a/gcloud/container/node-pools/create +++ b/gcloud/container/node-pools/create @@ -45,7 +45,7 @@ SYNOPSIS [--ephemeral-storage-local-ssd=[count=COUNT] | --local-nvme-ssd-block=[count=COUNT] | --local-ssd-count=LOCAL_SSD_COUNT] - [--region=REGION | --zone=ZONE, -z ZONE] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--reservation=RESERVATION --reservation-affinity=RESERVATION_AFFINITY] [--scopes=[SCOPE,...]; default="gke-default" --service-account=SERVICE_ACCOUNT] @@ -353,7 +353,7 @@ FLAGS To create a sole tenant node group, run: $ gcloud compute sole-tenancy node-groups create [GROUP_NAME] \ - --zone [ZONE] --node-template [TEMPLATE_NAME] \ + --location [ZONE] --node-template [TEMPLATE_NAME] \ --target-size [TARGET_SIZE] See https://cloud.google.com/compute/docs/nodes for more information on @@ -727,6 +727,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/node-pools/delete b/gcloud/container/node-pools/delete index 743005ca3..182b93fce 100644 --- a/gcloud/container/node-pools/delete +++ b/gcloud/container/node-pools/delete @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud container node-pools delete NAME [--async] [--cluster=CLUSTER] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION gcloud container node-pools delete deletes a node pool from a Google @@ -37,6 +38,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/node-pools/describe b/gcloud/container/node-pools/describe index 696c8c0c3..1d4f05498 100644 --- a/gcloud/container/node-pools/describe +++ b/gcloud/container/node-pools/describe @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud container node-pools describe NAME [--cluster=CLUSTER] - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION gcloud container node-pools describe displays all data associated with the @@ -27,6 +28,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/node-pools/help b/gcloud/container/node-pools/help index 77c9adb45..dbd41eced 100644 --- a/gcloud/container/node-pools/help +++ b/gcloud/container/node-pools/help @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud container node-pools COMMAND - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION Create and delete operations for Google Kubernetes Engine node pools. @@ -12,6 +13,10 @@ DESCRIPTION FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/node-pools/list b/gcloud/container/node-pools/list index 883992e12..5869da1b5 100644 --- a/gcloud/container/node-pools/list +++ b/gcloud/container/node-pools/list @@ -3,9 +3,9 @@ NAME SYNOPSIS gcloud container node-pools list [--cluster=CLUSTER] - [--region=REGION | --zone=ZONE, -z ZONE] [--filter=EXPRESSION] - [--limit=LIMIT] [--page-size=PAGE_SIZE] [--sort-by=[FIELD,...]] [--uri] - [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] + [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] DESCRIPTION gcloud container node-pools list displays all node pools in the Google @@ -23,6 +23,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/node-pools/rollback b/gcloud/container/node-pools/rollback index 8b7d12cd9..5cdd9f2e8 100644 --- a/gcloud/container/node-pools/rollback +++ b/gcloud/container/node-pools/rollback @@ -3,7 +3,8 @@ NAME SYNOPSIS gcloud container node-pools rollback NAME [--async] [--cluster=CLUSTER] - [--respect-pdb=RESPECT_PDB] [--region=REGION | --zone=ZONE, -z ZONE] + [--respect-pdb=RESPECT_PDB] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] DESCRIPTION @@ -38,6 +39,10 @@ FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/node-pools/update b/gcloud/container/node-pools/update index 74c8af9fb..e8ffeec0b 100644 --- a/gcloud/container/node-pools/update +++ b/gcloud/container/node-pools/update @@ -24,7 +24,8 @@ SYNOPSIS --standard-rollout-policy=[batch-node-count=BATCH_NODE_COUNT, batch-percent=BATCH_NODE_PERCENTAGE, batch-soak-duration=BATCH_SOAK_DURATION,...]) [--async] - [--cluster=CLUSTER] [--region=REGION | --zone=ZONE, -z ZONE] + [--cluster=CLUSTER] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] DESCRIPTION @@ -386,6 +387,10 @@ OPTIONAL FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/operations/cancel b/gcloud/container/operations/cancel index 6af3d4dae..c5cffa1c1 100644 --- a/gcloud/container/operations/cancel +++ b/gcloud/container/operations/cancel @@ -3,7 +3,8 @@ NAME SYNOPSIS gcloud container operations cancel OPERATION_ID - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION Cancel a running operation. @@ -28,6 +29,10 @@ POSITIONAL ARGUMENTS FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/operations/describe b/gcloud/container/operations/describe index 1f795b282..77909698a 100644 --- a/gcloud/container/operations/describe +++ b/gcloud/container/operations/describe @@ -3,7 +3,8 @@ NAME SYNOPSIS gcloud container operations describe OPERATION_ID - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION Describe an operation. @@ -20,6 +21,10 @@ POSITIONAL ARGUMENTS FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/operations/help b/gcloud/container/operations/help index a2efa5c28..b31aef337 100644 --- a/gcloud/container/operations/help +++ b/gcloud/container/operations/help @@ -4,7 +4,8 @@ NAME SYNOPSIS gcloud container operations COMMAND - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION Get and list operations for Google Kubernetes Engine clusters. @@ -12,6 +13,10 @@ DESCRIPTION FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/operations/list b/gcloud/container/operations/list index 5b7ab67e4..a4299454c 100644 --- a/gcloud/container/operations/list +++ b/gcloud/container/operations/list @@ -2,7 +2,8 @@ NAME gcloud container operations list - list operations for container clusters SYNOPSIS - gcloud container operations list [--region=REGION | --zone=ZONE, -z ZONE] + gcloud container operations list + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] [--sort-by=[FIELD,...]] [GCLOUD_WIDE_FLAG ...] @@ -17,6 +18,10 @@ EXAMPLES FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/container/operations/wait b/gcloud/container/operations/wait index 15f58362a..8da51d186 100644 --- a/gcloud/container/operations/wait +++ b/gcloud/container/operations/wait @@ -3,7 +3,8 @@ NAME SYNOPSIS gcloud container operations wait OPERATION_ID - [--region=REGION | --zone=ZONE, -z ZONE] [GCLOUD_WIDE_FLAG ...] + [--location=LOCATION | --region=REGION | --zone=ZONE, -z ZONE] + [GCLOUD_WIDE_FLAG ...] DESCRIPTION Poll an operation for completion. @@ -20,6 +21,10 @@ POSITIONAL ARGUMENTS FLAGS At most one of these can be specified: + --location=LOCATION + Compute zone or region (e.g. us-central1-a or us-central1) for the + cluster. + --region=REGION Compute region (e.g. us-central1) for the cluster. diff --git a/gcloud/database-migration/connection-profiles/create/cloudsql b/gcloud/database-migration/connection-profiles/create/cloudsql index c15945754..e1f26c95b 100644 --- a/gcloud/database-migration/connection-profiles/create/cloudsql +++ b/gcloud/database-migration/connection-profiles/create/cloudsql @@ -20,7 +20,8 @@ SYNOPSIS DESCRIPTION Create a Database Migration Service destination connection profile for - Cloud SQL. This will create a Cloud SQL replica. + Cloud SQL. This will create a Cloud SQL replica. Used for PostgreSQL and + MySQL migrations. EXAMPLES To create a connection profile for Cloud SQL with database version MySQL diff --git a/gcloud/database-migration/migration-jobs/create b/gcloud/database-migration/migration-jobs/create index 1031ead95..7079d74be 100644 --- a/gcloud/database-migration/migration-jobs/create +++ b/gcloud/database-migration/migration-jobs/create @@ -16,7 +16,9 @@ DESCRIPTION creating the migration job: ▪ Create a source connection profile. See prerequisites here (https://cloud.google.com/database-migration/docs/mysql/configure-source-database). - ▪ Create a destination connection profile. + ▪ Create a destination connection profile. For MySQL and PostgreSQL + migrations, use the cloudsql connection profile for DMS to create the + CloudSQL replica for you. ▪ Configure the connectivity method. See prerequisites here (https://cloud.google.com/database-migration/docs/mysql/configure-connectivity). diff --git a/gcloud/datastream/streams/create b/gcloud/datastream/streams/create index 4ab6fedd7..35af16019 100644 --- a/gcloud/datastream/streams/create +++ b/gcloud/datastream/streams/create @@ -18,7 +18,9 @@ SYNOPSIS [GCLOUD_WIDE_FLAG ...] DESCRIPTION - Create a Datastream stream + Create a Datastream stream. If successful, the response body contains a + newly created instance of Operation. To get the operation result, call: + describe OPERATION EXAMPLES To create a stream with an Oracle source and a Google Cloud Storage diff --git a/gcloud/datastream/streams/update b/gcloud/datastream/streams/update index ca088b8af..f2ec87020 100644 --- a/gcloud/datastream/streams/update +++ b/gcloud/datastream/streams/update @@ -20,7 +20,9 @@ SYNOPSIS [GCLOUD_WIDE_FLAG ...] DESCRIPTION - Create a Datastream stream + Update a Datastream stream. If successful, the response body contains a + newly created instance of Operation. To get the operation result, call: + describe OPERATION EXAMPLES To update a stream with a new source and new display name: diff --git a/gcloud/functions/deploy b/gcloud/functions/deploy index 5b2e674f9..404910163 100644 --- a/gcloud/functions/deploy +++ b/gcloud/functions/deploy @@ -2,9 +2,10 @@ NAME gcloud functions deploy - create or update a Google Cloud Function SYNOPSIS - gcloud functions deploy (NAME : --region=REGION) [--allow-unauthenticated] - [--docker-registry=DOCKER_REGISTRY] [--egress-settings=EGRESS_SETTINGS] - [--entry-point=ENTRY_POINT] [--gen2] [--ignore-file=IGNORE_FILE] + gcloud functions deploy (NAME : --region=REGION) + [--[no-]allow-unauthenticated] [--docker-registry=DOCKER_REGISTRY] + [--egress-settings=EGRESS_SETTINGS] [--entry-point=ENTRY_POINT] + [--gen2] [--ignore-file=IGNORE_FILE] [--ingress-settings=INGRESS_SETTINGS] [--memory=MEMORY] [--retry] [--run-service-account=RUN_SERVICE_ACCOUNT] [--runtime=RUNTIME] [--security-level=SECURITY_LEVEL; default="secure-always"] @@ -90,9 +91,10 @@ POSITIONAL ARGUMENTS ▸ set the property functions/region. FLAGS - --allow-unauthenticated + --[no-]allow-unauthenticated If set, makes this a public function. This will allow all callers, - without checking authentication. + without checking authentication. Use --allow-unauthenticated to enable + and --no-allow-unauthenticated to disable. --docker-registry=DOCKER_REGISTRY Docker Registry to use for storing the function's Docker images. The diff --git a/gcloud/network-security/gateway-security-policies/delete b/gcloud/network-security/gateway-security-policies/delete new file mode 100644 index 000000000..df7599c57 --- /dev/null +++ b/gcloud/network-security/gateway-security-policies/delete @@ -0,0 +1,73 @@ +NAME + gcloud network-security gateway-security-policies delete - delete Gateway + Security Policy + +SYNOPSIS + gcloud network-security gateway-security-policies delete + (GATEWAY_SECURITY_POLICY : --location=LOCATION) [--async] + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Delete the specified Gateway Security Policy. + +EXAMPLES + To delete a Gateway Security Policy called 'my-gateway-security-policy', + run: + + $ gcloud network-security gateway-security-policies delete \ + my-gateway-security-policy --location=global + +POSITIONAL ARGUMENTS + Gateway security policy resource - Name of the Gateway Security Policy you + want to delete. The arguments in this group can be used to specify the + attributes of this resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ◆ provide the argument gateway_security_policy on the command line with + a fully specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + GATEWAY_SECURITY_POLICY + ID of the gateway security policy or fully qualified identifier for + the gateway security policy. To set the gateway_security_policy + attribute: + ▸ provide the argument gateway_security_policy on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument gateway_security_policy on the command line + with a fully specified name; + ▸ provide the argument --location on the command line. + +FLAGS + --async + Return immediately, without waiting for the operation in progress to + complete. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security gateway-security-policies delete + + $ gcloud beta network-security gateway-security-policies delete + diff --git a/gcloud/network-security/gateway-security-policies/export b/gcloud/network-security/gateway-security-policies/export new file mode 100644 index 000000000..ca3fa1bd0 --- /dev/null +++ b/gcloud/network-security/gateway-security-policies/export @@ -0,0 +1,76 @@ +NAME + gcloud network-security gateway-security-policies export - export Gateway + Security Policy + +SYNOPSIS + gcloud network-security gateway-security-policies export + (GATEWAY_SECURITY_POLICY : --location=LOCATION) + [--destination=DESTINATION] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Export a Gateway Security Policy. + +EXAMPLES + To export a Gateway Security Policy, run: + + $ gcloud network-security gateway-security-policies export \ + my-gateway-security-policy \ + --destination=my-gateway-security-policy-list.yaml \ + --location=global + +POSITIONAL ARGUMENTS + Gateway security policy resource - Name of the Gateway Security Policy to + export. The arguments in this group can be used to specify the attributes + of this resource. (NOTE) Some attributes are not given arguments in this + group but can be set in other ways. To set the project attribute: + ◆ provide the argument gateway_security_policy on the command line with + a fully specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + GATEWAY_SECURITY_POLICY + ID of the gateway security policy or fully qualified identifier for + the gateway security policy. To set the gateway_security_policy + attribute: + ▸ provide the argument gateway_security_policy on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument gateway_security_policy on the command line + with a fully specified name; + ▸ provide the argument --location on the command line. + +FLAGS + --destination=DESTINATION + Path to a YAML file where the configuration will be exported. The + exported data will not contain any output-only fields. Alternatively, + you may omit this flag to write to standard output. For a schema + describing the export/import format, see + $CLOUDSDKROOT/lib/googlecloudsdk/schemas/... + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security gateway-security-policies export + + $ gcloud beta network-security gateway-security-policies export + diff --git a/gcloud/network-security/gateway-security-policies/help b/gcloud/network-security/gateway-security-policies/help new file mode 100644 index 000000000..fb9870520 --- /dev/null +++ b/gcloud/network-security/gateway-security-policies/help @@ -0,0 +1,44 @@ +NAME + gcloud network-security gateway-security-policies - manage Network Security + Gateway Security Policies + +SYNOPSIS + gcloud network-security gateway-security-policies GROUP | COMMAND + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Manage Network Security Gateway Security Policies. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --help. + + Run $ gcloud help for details. + +GROUPS + GROUP is one of the following: + + rules + Manage Network Security Gateway Security Policy Rules. + +COMMANDS + COMMAND is one of the following: + + delete + Delete Gateway Security Policy. + + export + Export Gateway Security Policy. + + import + Import Gateway Security Policy. + + list + List Gateway Security Policies. + +NOTES + These variants are also available: + + $ gcloud alpha network-security gateway-security-policies + + $ gcloud beta network-security gateway-security-policies + diff --git a/gcloud/network-security/gateway-security-policies/import b/gcloud/network-security/gateway-security-policies/import new file mode 100644 index 000000000..5ab63530e --- /dev/null +++ b/gcloud/network-security/gateway-security-policies/import @@ -0,0 +1,82 @@ +NAME + gcloud network-security gateway-security-policies import - import Gateway + Security Policy + +SYNOPSIS + gcloud network-security gateway-security-policies import + (GATEWAY_SECURITY_POLICY : --location=LOCATION) [--async] + [--source=SOURCE] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Import a Gateway Security Policy. + +EXAMPLES + To import a Gateway Security Policy from a YAML file, run: + + $ gcloud network-security gateway-security-policies import \ + my-gateway-security-policy \ + --source=my-gateway-security-policy-list.yaml --location=global + +POSITIONAL ARGUMENTS + Gateway security policy resource - Name of the Gateway Security Policy to + import. The arguments in this group can be used to specify the attributes + of this resource. (NOTE) Some attributes are not given arguments in this + group but can be set in other ways. To set the project attribute: + ◆ provide the argument gateway_security_policy on the command line with + a fully specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + GATEWAY_SECURITY_POLICY + ID of the gateway security policy or fully qualified identifier for + the gateway security policy. To set the gateway_security_policy + attribute: + ▸ provide the argument gateway_security_policy on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument gateway_security_policy on the command line + with a fully specified name; + ▸ provide the argument --location on the command line. + +FLAGS + --async + Return immediately, without waiting for the operation in progress to + complete. + + --source=SOURCE + Path to a YAML file containing the configuration export data. The YAML + file must not contain any output-only fields. Alternatively, you may + omit this flag to read from standard input. For a schema describing the + export/import format, see: $CLOUDSDKROOT/lib/googlecloudsdk/schemas/... + + $CLOUDSDKROOT is can be obtained with the following command: + + $ gcloud info --format='value(installation.sdk_root)' + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security gateway-security-policies import + + $ gcloud beta network-security gateway-security-policies import + diff --git a/gcloud/network-security/gateway-security-policies/list b/gcloud/network-security/gateway-security-policies/list new file mode 100644 index 000000000..724f947ac --- /dev/null +++ b/gcloud/network-security/gateway-security-policies/list @@ -0,0 +1,87 @@ +NAME + gcloud network-security gateway-security-policies list - list Gateway + Security Policies + +SYNOPSIS + gcloud network-security gateway-security-policies list --location=LOCATION + [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] + [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + List all Gateway Security Policies in the specified location of the current + project. + +EXAMPLES + To list Gateway Security Policies in the current project, run: + + $ gcloud network-security gateway-security-policies list \ + --location=global + +REQUIRED FLAGS + Location resource - The project of the Gateway Security Policies to + display. This represents a Cloud resource. (NOTE) Some attributes are not + given arguments in this group but can be set in other ways. To set the + project attribute: + ◆ provide the argument --location on the command line with a fully + specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + --location=LOCATION + ID of the location or fully qualified identifier for the location. To + set the location attribute: + ▸ provide the argument --location on the command line. + +LIST COMMAND FLAGS + --filter=EXPRESSION + Apply a Boolean filter EXPRESSION to each resource item to be listed. + If the expression evaluates True, then that item is listed. For more + details and examples of filter expressions, run $ gcloud topic filters. + This flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --limit=LIMIT + Maximum number of resources to list. The default is unlimited. This + flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --page-size=PAGE_SIZE + Some services group resource list output into pages. This flag + specifies the maximum number of resources per page. The default is + determined by the service if it supports paging, otherwise it is + unlimited (no paging). Paging may be applied before or after --filter + and --limit depending on the service. + + --sort-by=[FIELD,...] + Comma-separated list of resource field key names to sort by. The + default order is ascending. Prefix a field with ``~'' for descending + order on that field. This flag interacts with other flags that are + applied in this order: --flatten, --sort-by, --filter, --limit. + + --uri + Print a list of resource URIs instead of the default output, and change + the command output to a list of URIs. If this flag is used with + --format, the formatting is applied on this URI list. To display URIs + alongside other keys instead, use the uri() transform. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security gateway-security-policies list + + $ gcloud beta network-security gateway-security-policies list + diff --git a/gcloud/network-security/gateway-security-policies/rules/delete b/gcloud/network-security/gateway-security-policies/rules/delete new file mode 100644 index 000000000..642a6ac3d --- /dev/null +++ b/gcloud/network-security/gateway-security-policies/rules/delete @@ -0,0 +1,84 @@ +NAME + gcloud network-security gateway-security-policies rules delete - delete + Gateway Security Policy Rule + +SYNOPSIS + gcloud network-security gateway-security-policies rules delete + (GATEWAY_SECURITY_POLICY_RULE + : --gateway-security-policy=GATEWAY_SECURITY_POLICY + --location=LOCATION) [--async] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Delete the specified Gateway Security Policy Rule. + +EXAMPLES + To delete a Gateway Security Policy Rule called 'my-rule', run: + + $ gcloud network-security gateway-security-policies rules delete \ + my-rule --location={region} \ + --gateway-security-policy={policy-name} + +POSITIONAL ARGUMENTS + Gateway security policy rule resource - Name of the Gateway Security + Policy Rule you want to delete. The arguments in this group can be used to + specify the attributes of this resource. (NOTE) Some attributes are not + given arguments in this group but can be set in other ways. To set the + project attribute: + ◆ provide the argument gateway_security_policy_rule on the command line + with a fully specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + GATEWAY_SECURITY_POLICY_RULE + ID of the gateway security policy rule or fully qualified identifier + for the gateway security policy rule. To set the + gateway_security_policy_rule attribute: + ▸ provide the argument gateway_security_policy_rule on the command + line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --gateway-security-policy=GATEWAY_SECURITY_POLICY + Id of the gateway security policy. To set the gateway-security-policy + attribute: + ▸ provide the argument gateway_security_policy_rule on the command + line with a fully specified name; + ▸ provide the argument --gateway-security-policy on the command + line. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument gateway_security_policy_rule on the command + line with a fully specified name; + ▸ provide the argument --location on the command line. + +FLAGS + --async + Return immediately, without waiting for the operation in progress to + complete. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security gateway-security-policies rules \ + delete + + $ gcloud beta network-security gateway-security-policies rules delete + diff --git a/gcloud/network-security/gateway-security-policies/rules/export b/gcloud/network-security/gateway-security-policies/rules/export new file mode 100644 index 000000000..0ef26a00b --- /dev/null +++ b/gcloud/network-security/gateway-security-policies/rules/export @@ -0,0 +1,88 @@ +NAME + gcloud network-security gateway-security-policies rules export - export + Gateway Security Policy Rule + +SYNOPSIS + gcloud network-security gateway-security-policies rules export + (GATEWAY_SECURITY_POLICY_RULE + : --gateway-security-policy=GATEWAY_SECURITY_POLICY + --location=LOCATION) [--destination=DESTINATION] + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Export a Gateway Security Policy Rule. + +EXAMPLES + To export a Gateway Security Policy Rule, run: + + $ gcloud network-security gateway-security-policies rules export \ + my-rule --destination=my-rule.yaml --location={region} \ + --gateway-security-policy={policy-name} + +POSITIONAL ARGUMENTS + Gateway security policy rule resource - Name of the Gateway Security + Policy Rule to export. The arguments in this group can be used to specify + the attributes of this resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ◆ provide the argument gateway_security_policy_rule on the command line + with a fully specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + GATEWAY_SECURITY_POLICY_RULE + ID of the gateway security policy rule or fully qualified identifier + for the gateway security policy rule. To set the + gateway_security_policy_rule attribute: + ▸ provide the argument gateway_security_policy_rule on the command + line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --gateway-security-policy=GATEWAY_SECURITY_POLICY + Id of the gateway security policy. To set the gateway-security-policy + attribute: + ▸ provide the argument gateway_security_policy_rule on the command + line with a fully specified name; + ▸ provide the argument --gateway-security-policy on the command + line. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument gateway_security_policy_rule on the command + line with a fully specified name; + ▸ provide the argument --location on the command line. + +FLAGS + --destination=DESTINATION + Path to a YAML file where the configuration will be exported. The + exported data will not contain any output-only fields. Alternatively, + you may omit this flag to write to standard output. For a schema + describing the export/import format, see + $CLOUDSDKROOT/lib/googlecloudsdk/schemas/... + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security gateway-security-policies rules \ + export + + $ gcloud beta network-security gateway-security-policies rules export + diff --git a/gcloud/network-security/gateway-security-policies/rules/help b/gcloud/network-security/gateway-security-policies/rules/help new file mode 100644 index 000000000..19e7658e8 --- /dev/null +++ b/gcloud/network-security/gateway-security-policies/rules/help @@ -0,0 +1,38 @@ +NAME + gcloud network-security gateway-security-policies rules - manage Network + Security Gateway Security Policy Rules + +SYNOPSIS + gcloud network-security gateway-security-policies rules COMMAND + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Manage Network Security Gateway Security Policy Rules. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --help. + + Run $ gcloud help for details. + +COMMANDS + COMMAND is one of the following: + + delete + Delete Gateway Security Policy Rule. + + export + Export Gateway Security Policy Rule. + + import + Import Gateway Security Policy Rule. + + list + List Gateway Security Policy Rules. + +NOTES + These variants are also available: + + $ gcloud alpha network-security gateway-security-policies rules + + $ gcloud beta network-security gateway-security-policies rules + diff --git a/gcloud/network-security/gateway-security-policies/rules/import b/gcloud/network-security/gateway-security-policies/rules/import new file mode 100644 index 000000000..273454a47 --- /dev/null +++ b/gcloud/network-security/gateway-security-policies/rules/import @@ -0,0 +1,95 @@ +NAME + gcloud network-security gateway-security-policies rules import - import + Gateway Security Policy Rule + +SYNOPSIS + gcloud network-security gateway-security-policies rules import + (GATEWAY_SECURITY_POLICY_RULE + : --gateway-security-policy=GATEWAY_SECURITY_POLICY + --location=LOCATION) [--async] [--source=SOURCE] + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Import a Gateway Security Policy Rule. + +EXAMPLES + To import a Gateway Security Policy Rule from a YAML file, run: + + $ gcloud network-security gateway-security-policies rules import \ + my-rule --source=my-rule.yaml --location={region} \ + --gateway-security-policy={policy-name} + +POSITIONAL ARGUMENTS + Gateway security policy rule resource - Name of the Gateway Security + Policy Rule to import. The arguments in this group can be used to specify + the attributes of this resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ◆ provide the argument gateway_security_policy_rule on the command line + with a fully specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + GATEWAY_SECURITY_POLICY_RULE + ID of the gateway security policy rule or fully qualified identifier + for the gateway security policy rule. To set the + gateway_security_policy_rule attribute: + ▸ provide the argument gateway_security_policy_rule on the command + line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --gateway-security-policy=GATEWAY_SECURITY_POLICY + Id of the gateway security policy. To set the gateway-security-policy + attribute: + ▸ provide the argument gateway_security_policy_rule on the command + line with a fully specified name; + ▸ provide the argument --gateway-security-policy on the command + line. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument gateway_security_policy_rule on the command + line with a fully specified name; + ▸ provide the argument --location on the command line. + +FLAGS + --async + Return immediately, without waiting for the operation in progress to + complete. + + --source=SOURCE + Path to a YAML file containing the configuration export data. The YAML + file must not contain any output-only fields. Alternatively, you may + omit this flag to read from standard input. For a schema describing the + export/import format, see: $CLOUDSDKROOT/lib/googlecloudsdk/schemas/... + + $CLOUDSDKROOT is can be obtained with the following command: + + $ gcloud info --format='value(installation.sdk_root)' + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security gateway-security-policies rules \ + import + + $ gcloud beta network-security gateway-security-policies rules import + diff --git a/gcloud/network-security/gateway-security-policies/rules/list b/gcloud/network-security/gateway-security-policies/rules/list new file mode 100644 index 000000000..4258b131e --- /dev/null +++ b/gcloud/network-security/gateway-security-policies/rules/list @@ -0,0 +1,103 @@ +NAME + gcloud network-security gateway-security-policies rules list - list Gateway + Security Policy Rules + +SYNOPSIS + gcloud network-security gateway-security-policies rules list + (--gateway-security-policy=GATEWAY_SECURITY_POLICY + : --location=LOCATION) [--filter=EXPRESSION] [--limit=LIMIT] + [--page-size=PAGE_SIZE] [--sort-by=[FIELD,...]] [--uri] + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + List all Gateway Security Policy Rules in the specified location of the + current project. + +EXAMPLES + To list Gateway Security Policy Rules in the current project, run: + + $ gcloud network-security gateway-security-policies rules list \ + --location={region} --gateway-security-policy={policy-name} + +REQUIRED FLAGS + Gateway security policy resource - The project of the Gateway Security + Policy Rules to display. The arguments in this group can be used to + specify the attributes of this resource. (NOTE) Some attributes are not + given arguments in this group but can be set in other ways. To set the + project attribute: + ◆ provide the argument --gateway-security-policy on the command line + with a fully specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + --gateway-security-policy=GATEWAY_SECURITY_POLICY + ID of the gateway security policy or fully qualified identifier for + the gateway security policy. To set the gateway-security-policy + attribute: + ▸ provide the argument --gateway-security-policy on the command + line. + + This flag argument must be specified if any of the other arguments in + this group are specified. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument --gateway-security-policy on the command + line with a fully specified name; + ▸ provide the argument --location on the command line. + +LIST COMMAND FLAGS + --filter=EXPRESSION + Apply a Boolean filter EXPRESSION to each resource item to be listed. + If the expression evaluates True, then that item is listed. For more + details and examples of filter expressions, run $ gcloud topic filters. + This flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --limit=LIMIT + Maximum number of resources to list. The default is unlimited. This + flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --page-size=PAGE_SIZE + Some services group resource list output into pages. This flag + specifies the maximum number of resources per page. The default is + determined by the service if it supports paging, otherwise it is + unlimited (no paging). Paging may be applied before or after --filter + and --limit depending on the service. + + --sort-by=[FIELD,...] + Comma-separated list of resource field key names to sort by. The + default order is ascending. Prefix a field with ``~'' for descending + order on that field. This flag interacts with other flags that are + applied in this order: --flatten, --sort-by, --filter, --limit. + + --uri + Print a list of resource URIs instead of the default output, and change + the command output to a list of URIs. If this flag is used with + --format, the formatting is applied on this URI list. To display URIs + alongside other keys instead, use the uri() transform. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security gateway-security-policies rules list + + $ gcloud beta network-security gateway-security-policies rules list + diff --git a/gcloud/network-security/help b/gcloud/network-security/help index 907843441..0ab1d1830 100644 --- a/gcloud/network-security/help +++ b/gcloud/network-security/help @@ -21,9 +21,18 @@ GROUPS client-tls-policies Manage Network Security ClientTlsPolicies. + gateway-security-policies + Manage Network Security Gateway Security Policies. + server-tls-policies Manage Network Security ServerTlsPolicies. + tls-inspection-policies + Manage Network Security TLS Inspection Policies. + + url-lists + Manage Network Security Url Lists. + NOTES These variants are also available: diff --git a/gcloud/network-security/tls-inspection-policies/delete b/gcloud/network-security/tls-inspection-policies/delete new file mode 100644 index 000000000..ac6ee6830 --- /dev/null +++ b/gcloud/network-security/tls-inspection-policies/delete @@ -0,0 +1,71 @@ +NAME + gcloud network-security tls-inspection-policies delete - delete TLS + Inspection Policy + +SYNOPSIS + gcloud network-security tls-inspection-policies delete + (TLS_INSPECTION_POLICY : --location=LOCATION) [--async] + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Delete the specified TLS Inspection Policy. + +EXAMPLES + To delete a TLS Inspection Policy called 'my-tls-inspection-policy', run: + + $ gcloud network-security tls-inspection-policies delete \ + my-tls-inspection-policy --location=$REGION + +POSITIONAL ARGUMENTS + Tls inspection policy resource - Name of the TLS Inspection Policy you + want to delete. The arguments in this group can be used to specify the + attributes of this resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ◆ provide the argument tls_inspection_policy on the command line with a + fully specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + TLS_INSPECTION_POLICY + ID of the tls inspection policy or fully qualified identifier for the + tls inspection policy. To set the tls_inspection_policy attribute: + ▸ provide the argument tls_inspection_policy on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument tls_inspection_policy on the command line + with a fully specified name; + ▸ provide the argument --location on the command line. + +FLAGS + --async + Return immediately, without waiting for the operation in progress to + complete. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security tls-inspection-policies delete + + $ gcloud beta network-security tls-inspection-policies delete + diff --git a/gcloud/network-security/tls-inspection-policies/export b/gcloud/network-security/tls-inspection-policies/export new file mode 100644 index 000000000..b902daae4 --- /dev/null +++ b/gcloud/network-security/tls-inspection-policies/export @@ -0,0 +1,74 @@ +NAME + gcloud network-security tls-inspection-policies export - export TLS + Inspection Policy + +SYNOPSIS + gcloud network-security tls-inspection-policies export + (TLS_INSPECTION_POLICY : --location=LOCATION) + [--destination=DESTINATION] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Export a TLS Inspection Policy. + +EXAMPLES + To export a TLS Inspection Policy, run: + + $ gcloud network-security tls-inspection-policies export \ + my-tls-inspection-policy \ + --destination=my-tls-inspection-policy.yaml --location=$REGION + +POSITIONAL ARGUMENTS + Tls inspection policy resource - The arguments in this group can be used + to specify the attributes of this resource. (NOTE) Some attributes are not + given arguments in this group but can be set in other ways. To set the + project attribute: + ◆ provide the argument tls_inspection_policy on the command line with a + fully specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + TLS_INSPECTION_POLICY + ID of the tls inspection policy or fully qualified identifier for the + tls inspection policy. To set the tls_inspection_policy attribute: + ▸ provide the argument tls_inspection_policy on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument tls_inspection_policy on the command line + with a fully specified name; + ▸ provide the argument --location on the command line. + +FLAGS + --destination=DESTINATION + Path to a YAML file where the configuration will be exported. The + exported data will not contain any output-only fields. Alternatively, + you may omit this flag to write to standard output. For a schema + describing the export/import format, see + $CLOUDSDKROOT/lib/googlecloudsdk/schemas/... + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security tls-inspection-policies export + + $ gcloud beta network-security tls-inspection-policies export + diff --git a/gcloud/network-security/tls-inspection-policies/help b/gcloud/network-security/tls-inspection-policies/help new file mode 100644 index 000000000..825644f28 --- /dev/null +++ b/gcloud/network-security/tls-inspection-policies/help @@ -0,0 +1,38 @@ +NAME + gcloud network-security tls-inspection-policies - manage Network Security + TLS Inspection Policies + +SYNOPSIS + gcloud network-security tls-inspection-policies COMMAND + [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Manage Network Security TLS Inspection Policies. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --help. + + Run $ gcloud help for details. + +COMMANDS + COMMAND is one of the following: + + delete + Delete TLS Inspection Policy. + + export + Export TLS Inspection Policy. + + import + Import TLS Inspection Policy. + + list + List TLS Inspection Policies. + +NOTES + These variants are also available: + + $ gcloud alpha network-security tls-inspection-policies + + $ gcloud beta network-security tls-inspection-policies + diff --git a/gcloud/network-security/tls-inspection-policies/import b/gcloud/network-security/tls-inspection-policies/import new file mode 100644 index 000000000..45cc99439 --- /dev/null +++ b/gcloud/network-security/tls-inspection-policies/import @@ -0,0 +1,79 @@ +NAME + gcloud network-security tls-inspection-policies import - import TLS + Inspection Policy + +SYNOPSIS + gcloud network-security tls-inspection-policies import + (TLS_INSPECTION_POLICY : --location=LOCATION) [--async] + [--source=SOURCE] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Import a TLS Inspection Policy. + +EXAMPLES + To import a TLS Inspection Policy from a YAML file, run: $ gcloud network-security tls-inspection-policies import \ + my-tls-inspection-policy \ + --source=my-tls-inspection-policy.yaml --location=$REGION + +POSITIONAL ARGUMENTS + Tls inspection policy resource - Name of the TLS Inspection Policy to + import. The arguments in this group can be used to specify the attributes + of this resource. (NOTE) Some attributes are not given arguments in this + group but can be set in other ways. To set the project attribute: + ◆ provide the argument tls_inspection_policy on the command line with a + fully specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + TLS_INSPECTION_POLICY + ID of the tls inspection policy or fully qualified identifier for the + tls inspection policy. To set the tls_inspection_policy attribute: + ▸ provide the argument tls_inspection_policy on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument tls_inspection_policy on the command line + with a fully specified name; + ▸ provide the argument --location on the command line. + +FLAGS + --async + Return immediately, without waiting for the operation in progress to + complete. + + --source=SOURCE + Path to a YAML file containing the configuration export data. The YAML + file must not contain any output-only fields. Alternatively, you may + omit this flag to read from standard input. For a schema describing the + export/import format, see: $CLOUDSDKROOT/lib/googlecloudsdk/schemas/... + + $CLOUDSDKROOT is can be obtained with the following command: + + $ gcloud info --format='value(installation.sdk_root)' + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security tls-inspection-policies import + + $ gcloud beta network-security tls-inspection-policies import + diff --git a/gcloud/network-security/tls-inspection-policies/list b/gcloud/network-security/tls-inspection-policies/list new file mode 100644 index 000000000..47b40dae1 --- /dev/null +++ b/gcloud/network-security/tls-inspection-policies/list @@ -0,0 +1,85 @@ +NAME + gcloud network-security tls-inspection-policies list - list TLS Inspection + Policies + +SYNOPSIS + gcloud network-security tls-inspection-policies list --location=LOCATION + [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] + [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + List all TLS Inspection Policies in the specified location of the current + project. + +EXAMPLES + To list TLS Inspection Policies in the current project, run: $ gcloud network-security tls-inspection-policies list \ + --location=$REGION + +REQUIRED FLAGS + Location resource - The project of the TLS Inspection Policies to display. + This represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ◆ provide the argument --location on the command line with a fully + specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + --location=LOCATION + ID of the location or fully qualified identifier for the location. To + set the location attribute: + ▸ provide the argument --location on the command line. + +LIST COMMAND FLAGS + --filter=EXPRESSION + Apply a Boolean filter EXPRESSION to each resource item to be listed. + If the expression evaluates True, then that item is listed. For more + details and examples of filter expressions, run $ gcloud topic filters. + This flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --limit=LIMIT + Maximum number of resources to list. The default is unlimited. This + flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --page-size=PAGE_SIZE + Some services group resource list output into pages. This flag + specifies the maximum number of resources per page. The default is + determined by the service if it supports paging, otherwise it is + unlimited (no paging). Paging may be applied before or after --filter + and --limit depending on the service. + + --sort-by=[FIELD,...] + Comma-separated list of resource field key names to sort by. The + default order is ascending. Prefix a field with ``~'' for descending + order on that field. This flag interacts with other flags that are + applied in this order: --flatten, --sort-by, --filter, --limit. + + --uri + Print a list of resource URIs instead of the default output, and change + the command output to a list of URIs. If this flag is used with + --format, the formatting is applied on this URI list. To display URIs + alongside other keys instead, use the uri() transform. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security tls-inspection-policies list + + $ gcloud beta network-security tls-inspection-policies list + diff --git a/gcloud/network-security/url-lists/delete b/gcloud/network-security/url-lists/delete new file mode 100644 index 000000000..c88aac567 --- /dev/null +++ b/gcloud/network-security/url-lists/delete @@ -0,0 +1,68 @@ +NAME + gcloud network-security url-lists delete - delete Url List + +SYNOPSIS + gcloud network-security url-lists delete (URL_LIST : --location=LOCATION) + [--async] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Delete the specified Url List. + +EXAMPLES + To delete a Url List called 'my-url-list', run: + + $ gcloud network-security url-lists delete my-url-list \ + --location=global + +POSITIONAL ARGUMENTS + Url list resource - Name of the Url List you want to delete. The arguments + in this group can be used to specify the attributes of this resource. + (NOTE) Some attributes are not given arguments in this group but can be + set in other ways. To set the project attribute: + ◆ provide the argument url_list on the command line with a fully + specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + URL_LIST + ID of the url list or fully qualified identifier for the url list. To + set the url_list attribute: + ▸ provide the argument url_list on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument url_list on the command line with a fully + specified name; + ▸ provide the argument --location on the command line. + +FLAGS + --async + Return immediately, without waiting for the operation in progress to + complete. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security url-lists delete + + $ gcloud beta network-security url-lists delete + diff --git a/gcloud/network-security/url-lists/export b/gcloud/network-security/url-lists/export new file mode 100644 index 000000000..c4f581a00 --- /dev/null +++ b/gcloud/network-security/url-lists/export @@ -0,0 +1,71 @@ +NAME + gcloud network-security url-lists export - export Url List + +SYNOPSIS + gcloud network-security url-lists export (URL_LIST : --location=LOCATION) + [--destination=DESTINATION] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Export a Url List. + +EXAMPLES + To export a Url List, run: + + $ gcloud network-security url-lists export my-url-list \ + --destination=my-url-list.yaml --location=global + +POSITIONAL ARGUMENTS + Url list resource - Name of the Url List to export. The arguments in this + group can be used to specify the attributes of this resource. (NOTE) Some + attributes are not given arguments in this group but can be set in other + ways. To set the project attribute: + ◆ provide the argument url_list on the command line with a fully + specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + URL_LIST + ID of the url list or fully qualified identifier for the url list. To + set the url_list attribute: + ▸ provide the argument url_list on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument url_list on the command line with a fully + specified name; + ▸ provide the argument --location on the command line. + +FLAGS + --destination=DESTINATION + Path to a YAML file where the configuration will be exported. The + exported data will not contain any output-only fields. Alternatively, + you may omit this flag to write to standard output. For a schema + describing the export/import format, see + $CLOUDSDKROOT/lib/googlecloudsdk/schemas/... + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security url-lists export + + $ gcloud beta network-security url-lists export + diff --git a/gcloud/network-security/url-lists/help b/gcloud/network-security/url-lists/help new file mode 100644 index 000000000..54957cf5b --- /dev/null +++ b/gcloud/network-security/url-lists/help @@ -0,0 +1,36 @@ +NAME + gcloud network-security url-lists - manage Network Security Url Lists + +SYNOPSIS + gcloud network-security url-lists COMMAND [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Manage Network Security Url Lists. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --help. + + Run $ gcloud help for details. + +COMMANDS + COMMAND is one of the following: + + delete + Delete Url List. + + export + Export Url List. + + import + Import Url List. + + list + List Url Lists. + +NOTES + These variants are also available: + + $ gcloud alpha network-security url-lists + + $ gcloud beta network-security url-lists + diff --git a/gcloud/network-security/url-lists/import b/gcloud/network-security/url-lists/import new file mode 100644 index 000000000..83d7d703e --- /dev/null +++ b/gcloud/network-security/url-lists/import @@ -0,0 +1,78 @@ +NAME + gcloud network-security url-lists import - import Url List + +SYNOPSIS + gcloud network-security url-lists import (URL_LIST : --location=LOCATION) + [--async] [--source=SOURCE] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Import a Url List. + +EXAMPLES + To import a Url List from a YAML file, run: + + $ gcloud network-security url-lists import my-url-list \ + --source=my-url-list.yaml --location=global + +POSITIONAL ARGUMENTS + Url list resource - Name of the Url List to import. The arguments in this + group can be used to specify the attributes of this resource. (NOTE) Some + attributes are not given arguments in this group but can be set in other + ways. To set the project attribute: + ◆ provide the argument url_list on the command line with a fully + specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + URL_LIST + ID of the url list or fully qualified identifier for the url list. To + set the url_list attribute: + ▸ provide the argument url_list on the command line. + + This positional argument must be specified if any of the other + arguments in this group are specified. + + --location=LOCATION + The location Id. + + To set the location attribute: + ▸ provide the argument url_list on the command line with a fully + specified name; + ▸ provide the argument --location on the command line. + +FLAGS + --async + Return immediately, without waiting for the operation in progress to + complete. + + --source=SOURCE + Path to a YAML file containing the configuration export data. The YAML + file must not contain any output-only fields. Alternatively, you may + omit this flag to read from standard input. For a schema describing the + export/import format, see: $CLOUDSDKROOT/lib/googlecloudsdk/schemas/... + + $CLOUDSDKROOT is can be obtained with the following command: + + $ gcloud info --format='value(installation.sdk_root)' + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security url-lists import + + $ gcloud beta network-security url-lists import + diff --git a/gcloud/network-security/url-lists/list b/gcloud/network-security/url-lists/list new file mode 100644 index 000000000..eabc55517 --- /dev/null +++ b/gcloud/network-security/url-lists/list @@ -0,0 +1,84 @@ +NAME + gcloud network-security url-lists list - list Url Lists + +SYNOPSIS + gcloud network-security url-lists list --location=LOCATION + [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] + [--sort-by=[FIELD,...]] [--uri] [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + List all Url Lists in the specified location of the current project. + +EXAMPLES + To list Url Lists in the current project, run: + + $ gcloud network-security url-lists list --location=global + +REQUIRED FLAGS + Location resource - The project of the Url Lists to display. This + represents a Cloud resource. (NOTE) Some attributes are not given + arguments in this group but can be set in other ways. To set the project + attribute: + ◆ provide the argument --location on the command line with a fully + specified name; + ◆ set the property core/project; + ◆ provide the argument --project on the command line. + + This must be specified. + + --location=LOCATION + ID of the location or fully qualified identifier for the location. To + set the location attribute: + ▸ provide the argument --location on the command line. + +LIST COMMAND FLAGS + --filter=EXPRESSION + Apply a Boolean filter EXPRESSION to each resource item to be listed. + If the expression evaluates True, then that item is listed. For more + details and examples of filter expressions, run $ gcloud topic filters. + This flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --limit=LIMIT + Maximum number of resources to list. The default is unlimited. This + flag interacts with other flags that are applied in this order: + --flatten, --sort-by, --filter, --limit. + + --page-size=PAGE_SIZE + Some services group resource list output into pages. This flag + specifies the maximum number of resources per page. The default is + determined by the service if it supports paging, otherwise it is + unlimited (no paging). Paging may be applied before or after --filter + and --limit depending on the service. + + --sort-by=[FIELD,...] + Comma-separated list of resource field key names to sort by. The + default order is ascending. Prefix a field with ``~'' for descending + order on that field. This flag interacts with other flags that are + applied in this order: --flatten, --sort-by, --filter, --limit. + + --uri + Print a list of resource URIs instead of the default output, and change + the command output to a list of URIs. If this flag is used with + --format, the formatting is applied on this URI list. To display URIs + alongside other keys instead, use the uri() transform. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +API REFERENCE + This command uses the networksecurity/v1 API. The full documentation for + this API can be found at: https://cloud.google.com/networking + +NOTES + These variants are also available: + + $ gcloud alpha network-security url-lists list + + $ gcloud beta network-security url-lists list + diff --git a/gcloud/publicca/external-account-keys/create b/gcloud/publicca/external-account-keys/create new file mode 100644 index 000000000..a20388214 --- /dev/null +++ b/gcloud/publicca/external-account-keys/create @@ -0,0 +1,37 @@ +NAME + gcloud publicca external-account-keys create - create a new external + account key + +SYNOPSIS + gcloud publicca external-account-keys create + [--key-output-file=KEY_OUTPUT_FILE] [GCLOUD_WIDE_FLAG ...] + +EXAMPLES + To create an external account key: + + $ gcloud publicca external-account-keys create + + To create an external account key and save it to a file: + + $ gcloud publicca external-account-keys create \ + --key-output-file=./external_account_key.txt + +FLAGS + --key-output-file=KEY_OUTPUT_FILE + The path where the generated external account key is written. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --access-token-file, --account, + --billing-project, --configuration, --flags-file, --flatten, --format, + --help, --impersonate-service-account, --log-http, --project, --quiet, + --trace-token, --user-output-enabled, --verbosity. + + Run $ gcloud help for details. + +NOTES + These variants are also available: + + $ gcloud alpha publicca external-account-keys create + + $ gcloud beta publicca external-account-keys create + diff --git a/gcloud/publicca/external-account-keys/help b/gcloud/publicca/external-account-keys/help new file mode 100644 index 000000000..361ce4414 --- /dev/null +++ b/gcloud/publicca/external-account-keys/help @@ -0,0 +1,36 @@ +NAME + gcloud publicca external-account-keys - create ACME external account + binding keys + +SYNOPSIS + gcloud publicca external-account-keys COMMAND [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + gcloud publicca external-account-keys lets you create an external account + key associated with Google Trust Services' publicly trusted certificate + authority. + + The external account key will be associated with the Cloud project and it + may be bound to an Automatic Certificate Management Environment (ACME) + account following RFC 8555. + + See https://tools.ietf.org/html/rfc8555#section-7.3.4 for more details. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --help. + + Run $ gcloud help for details. + +COMMANDS + COMMAND is one of the following: + + create + Create a new external account key. + +NOTES + These variants are also available: + + $ gcloud alpha publicca external-account-keys + + $ gcloud beta publicca external-account-keys + diff --git a/gcloud/publicca/help b/gcloud/publicca/help new file mode 100644 index 000000000..42119643e --- /dev/null +++ b/gcloud/publicca/help @@ -0,0 +1,29 @@ +NAME + gcloud publicca - manage accounts for Google Trust Services' Certificate + Authority + +SYNOPSIS + gcloud publicca GROUP [GCLOUD_WIDE_FLAG ...] + +DESCRIPTION + Publicca command group lets you create an external account key used for + binding to an Automatic Certificate Management Environment (ACME) account. + +GCLOUD WIDE FLAGS + These flags are available to all commands: --help. + + Run $ gcloud help for details. + +GROUPS + GROUP is one of the following: + + external-account-keys + Create ACME external account binding keys. + +NOTES + These variants are also available: + + $ gcloud alpha publicca + + $ gcloud beta publicca + diff --git a/gcloud/run/jobs/create b/gcloud/run/jobs/create index 63afa8dfc..4bdeb64be 100644 --- a/gcloud/run/jobs/create +++ b/gcloud/run/jobs/create @@ -4,7 +4,7 @@ NAME SYNOPSIS gcloud run jobs create [JOB] --image=IMAGE [--args=[ARG,...]] [--binary-authorization=POLICY] [--breakglass=JUSTIFICATION] - [--command=[COMMAND,...]] [--cpu=CPU] [--execute-now] [--key=KEY] + [--command=[COMMAND,...]] [--cpu=CPU] [--key=KEY] [--labels=[KEY=VALUE,...]] [--max-retries=MAX_RETRIES] [--memory=MEMORY] [--parallelism=PARALLELISM] [--region=REGION] [--service-account=SERVICE_ACCOUNT] @@ -12,7 +12,7 @@ SYNOPSIS [--set-secrets=[KEY=SECRET_NAME:SECRET_VERSION,...]] [--task-timeout=TASK_TIMEOUT] [--tasks=TASKS; default=1] [--vpc-connector=VPC_CONNECTOR] [--vpc-egress=VPC_EGRESS] - [--async | --wait] + [--async | --execute-now --wait] [--env-vars-file=FILE_PATH | --set-env-vars=[KEY=VALUE,...]] [GCLOUD_WIDE_FLAG ...] @@ -82,9 +82,6 @@ OPTIONAL FLAGS (fully managed), 4 cpus also requires a minimum 2Gi --memory value. Examples 2, 2.0, 2000m - --execute-now - Execute the job immediately after creation. - --key=KEY CMEK key reference to encrypt the container with. @@ -161,10 +158,17 @@ OPTIONAL FLAGS Return immediately, without waiting for the operation in progress to complete. - --wait - Wait until the execution has completed running before exiting. If not - set, gcloud exits successfully when the execution has started. - Implies --execute-now. + --async cannot be used if executing the job after the update. + + --execute-now + Execute the job immediately after the creation or update completes. + gcloud exits once the job has started unless the --wait flag is + set. + + --wait + Wait until the execution has completed running before exiting. If + not set, gcloud exits successfully when the execution has started. + Implies --execute-now. At most one of these can be specified: diff --git a/gcloud/run/jobs/update b/gcloud/run/jobs/update index cb6196cc7..3995bf30c 100644 --- a/gcloud/run/jobs/update +++ b/gcloud/run/jobs/update @@ -4,8 +4,8 @@ NAME SYNOPSIS gcloud run jobs update [JOB] [--args=[ARG,...]] [--breakglass=JUSTIFICATION] [--clear-vpc-connector] - [--command=[COMMAND,...]] [--cpu=CPU] [--execute-now] [--image=IMAGE] - [--key=KEY] [--max-retries=MAX_RETRIES] [--memory=MEMORY] + [--command=[COMMAND,...]] [--cpu=CPU] [--image=IMAGE] [--key=KEY] + [--max-retries=MAX_RETRIES] [--memory=MEMORY] [--parallelism=PARALLELISM] [--region=REGION] [--service-account=SERVICE_ACCOUNT] [--task-timeout=TASK_TIMEOUT] [--tasks=TASKS; default=1] [--vpc-connector=VPC_CONNECTOR] @@ -14,7 +14,7 @@ SYNOPSIS | --clear-cloudsql-instances | --remove-cloudsql-instances=[CLOUDSQL-INSTANCES,...] | --set-cloudsql-instances=[CLOUDSQL-INSTANCES,...]] - [--async | --wait] + [--async | --execute-now --wait] [--binary-authorization=POLICY | --clear-binary-authorization] [--clear-env-vars | --env-vars-file=FILE_PATH | --set-env-vars=[KEY=VALUE,...] @@ -80,9 +80,6 @@ FLAGS (fully managed), 4 cpus also requires a minimum 2Gi --memory value. Examples 2, 2.0, 2000m - --execute-now - Execute the job immediately after creation. - --image=IMAGE Name of the container image to deploy (e.g. us-docker.pkg.dev/cloudrun/container/job:latest). @@ -168,10 +165,17 @@ FLAGS Return immediately, without waiting for the operation in progress to complete. - --wait - Wait until the execution has completed running before exiting. If not - set, gcloud exits successfully when the execution has started. - Implies --execute-now. + --async cannot be used if executing the job after the update. + + --execute-now + Execute the job immediately after the creation or update completes. + gcloud exits once the job has started unless the --wait flag is + set. + + --wait + Wait until the execution has completed running before exiting. If + not set, gcloud exits successfully when the execution has started. + Implies --execute-now. At most one of these can be specified: diff --git a/gcloud/storage/buckets/list b/gcloud/storage/buckets/list index 30b7ba8ed..25bfb4560 100644 --- a/gcloud/storage/buckets/list +++ b/gcloud/storage/buckets/list @@ -14,11 +14,11 @@ EXAMPLES $ gcloud storage buckets list - List buckets beginning with "b": + List buckets beginning with ``b'': $ gcloud storage buckets list gs://b* - List buckets with JSON formatting, only returning the "name" key: + List buckets with JSON formatting, only returning the name key: $ gcloud storage buckets list --format="json(name)" diff --git a/gcloud/storage/ls b/gcloud/storage/ls index 55337467f..5a1e56fbb 100644 --- a/gcloud/storage/ls +++ b/gcloud/storage/ls @@ -26,39 +26,32 @@ EXAMPLES $ gcloud storage ls gs://my-bucket - You can use wildcards to match multiple paths (including multiple buckets). - Bucket wildcards are expanded to match only buckets contained in your - current project. The following command matches .txt objects that begin with - log and that are stored in buckets in your project that begin with my-b: + You can use wildcards (https://cloud.google.com/storage/docs/wildcards) to + match multiple paths (including multiple buckets). Bucket wildcards are + expanded to match only buckets contained in your current project. The + following command matches .txt objects that begin with log and that are + stored in buckets in your project that begin with my-b: $ gcloud storage ls gs://my-b*/log*.txt - The following wildcards are valid and match only within the current - directory: - - *: Matches zero or more characters - ?: Matches zero or one characters - []: Matches a character range (ex. [a-z] or [0-9]) - You can use double-star wildcards to match zero or more directory levels in a path. The following command matches all .txt objects in a bucket. $ gcloud storage ls gs://my-bucket/**/*.txt - ** retrieves a flat list of objects in a single API call and will not match - prefixes. The following command would not match gs://my-bucket/dir/log.txt: + The wildcard ** retrieves a flat list of objects in a single API call and + does not match prefixes. The following command would not match + gs://my-bucket/dir/log.txt: $ gcloud storage ls gs://my-bucket/**/dir Double-star expansion also can not be combined with other expressions in a given path segment and operates as a single star in that context. For - example: + example, the command gs://my-bucket/dir**/log.txt is treated as + gs://my-bucket/dir*/log.txt. To get the recursive behavior, the command + should instead be written the following way: - gs://my-bucket/dir**/log.txt is treated as: - - gs://my-bucket/dir*/log.txt and instead should be written as: - - gs://my-bucket/dir*/**/log.txt to get the recursive behavior. + gs://my-bucket/dir*/**/log.txt The following command lists all items recursively with formatting by using --recursive: diff --git a/gcloud/storage/objects/list b/gcloud/storage/objects/list index 1f2a2c753..9aab408ab 100644 --- a/gcloud/storage/objects/list +++ b/gcloud/storage/objects/list @@ -11,20 +11,20 @@ SYNOPSIS DESCRIPTION List Cloud Storage objects. - Bucket URLs like "gs://bucket" will match all the objects inside a bucket, - but "gs://b" will error because it matches a list of buckets. + Bucket URLs like gs://bucket match all the objects inside a bucket, but + gs://b* fails because it matches a list of buckets. EXAMPLES - List all objects in bucket "my-bucket": + List all objects in bucket my-bucket: $ gcloud storage objects list gs://my-bucket - List all objects in bucket beginning with "o": + List all objects in bucket beginning with ``o'': $ gcloud storage objects list gs://my-bucket/o* List all objects in bucket with JSON formatting, only returning the value - of the "name" metadata field: + of the name metadata field: $ gcloud storage objects list gs://my-bucket --format="json(name)" diff --git a/gcloud/transcoder/jobs/create b/gcloud/transcoder/jobs/create index 5acfab11a..de5c104c2 100644 --- a/gcloud/transcoder/jobs/create +++ b/gcloud/transcoder/jobs/create @@ -3,7 +3,7 @@ NAME SYNOPSIS gcloud transcoder jobs create [--input-uri=INPUT_URI] - [--labels=[KEY=VALUE,...]] [--location=LOCATION] + [--labels=[KEY=VALUE,...]] [--location=LOCATION] [--mode=MODE] [--output-uri=OUTPUT_URI] [--file=FILE | --json=JSON | --template-id=TEMPLATE_ID] [GCLOUD_WIDE_FLAG ...] @@ -35,15 +35,18 @@ EXAMPLES $ gcloud transcoder jobs create --location=us-central1 \ --file="config.json" - To Create a transcoder job with labels: + To create a transcoder job with labels: $ gcloud transcoder jobs create --location=us-central1 \ --file="config.json" --labels=key=value + To create a transcoder job in batch mode: $ gcloud transcoder jobs create --location=us-central1 \ + --file="config.json" --mode=PROCESSING_MODE_BATCH + FLAGS --input-uri=INPUT_URI - Google Cloud Storage URI. If inputs URI exists in job config, this - value will be ignored + Google Cloud Storage URI. This value will override input URI in job + config. --labels=[KEY=VALUE,...] List of label KEY=VALUE pairs to add. @@ -68,9 +71,14 @@ FLAGS ▸ provide the argument --location on the command line; ▸ set the property transcoder/location. + --mode=MODE + Processing mode of transcode job. This value will override mode in job + config. MODE must be one of: PROCESSING_MODE_INTERACTIVE, + PROCESSING_MODE_BATCH. + --output-uri=OUTPUT_URI Google Cloud Storage directory URI (followed by a trailing forward - slash). If output URIexists in job config, this value will be ignored. + slash). This value will override output URI in job config. At most one of these can be specified: diff --git a/gcloud/transfer/jobs/create b/gcloud/transfer/jobs/create index 0c0f0e3da..73b5aecaf 100644 --- a/gcloud/transfer/jobs/create +++ b/gcloud/transfer/jobs/create @@ -151,10 +151,13 @@ FLAGS interact with any of your existing Cloud Storage data. --manifest-file=MANIFEST_FILE - Path to a .csv file in a Google Cloud Storage bucket containing a - list of files to transfer from your source. E.g., - gs://mybucket/manifest.csv. For manifest file formatting, see - https://cloud.google.com/storage-transfer/docs/manifest. + Path to a .csv file containing a list of files to transfer from your + source. For manifest files in Cloud Storage, specify the absolute + path (e.g., gs://mybucket/manifest.csv). For manifest files stored in + a source or destination POSIX file system, provide the relative path + (e.g., source://path/to/manfest.csv or + destination://path/to/manifest.csv). For manifest file formatting, + see https://cloud.google.com/storage-transfer/docs/manifest. EVENT STREAM diff --git a/gcloud/transfer/jobs/update b/gcloud/transfer/jobs/update index 29cb771a0..86f7c9d89 100644 --- a/gcloud/transfer/jobs/update +++ b/gcloud/transfer/jobs/update @@ -175,10 +175,13 @@ FLAGS interact with any of your existing Cloud Storage data. --manifest-file=MANIFEST_FILE - Path to a .csv file in a Google Cloud Storage bucket containing a - list of files to transfer from your source. E.g., - gs://mybucket/manifest.csv. For manifest file formatting, see - https://cloud.google.com/storage-transfer/docs/manifest. + Path to a .csv file containing a list of files to transfer from your + source. For manifest files in Cloud Storage, specify the absolute + path (e.g., gs://mybucket/manifest.csv). For manifest files stored in + a source or destination POSIX file system, provide the relative path + (e.g., source://path/to/manfest.csv or + destination://path/to/manifest.csv). For manifest file formatting, + see https://cloud.google.com/storage-transfer/docs/manifest. EVENT STREAM diff --git a/gcloud/vmware/private-clouds/clusters/help b/gcloud/vmware/private-clouds/clusters/help index 26b787920..c36006b2b 100644 --- a/gcloud/vmware/private-clouds/clusters/help +++ b/gcloud/vmware/private-clouds/clusters/help @@ -3,7 +3,8 @@ NAME VMware Engine SYNOPSIS - gcloud vmware private-clouds clusters COMMAND [GCLOUD_WIDE_FLAG ...] + gcloud vmware private-clouds clusters GROUP | COMMAND + [GCLOUD_WIDE_FLAG ...] DESCRIPTION Manage clusters in Google Cloud VMware Engine.