JJSrSSKJr SSKJr SSKJr SSKJr SrSrSr S r S r S r S r S rSrSrSrSrSrSrSrSrSrSrSrSrSrSrSrSrSrSr S r!S!r"S"r#S#r$S4S$jr%S%r&S&r'S'r(S(r)S)r*S*r+S+r,S,r-S-r.S.r/S/r0S0r1S1r2S2r3g3)5z5Flags and helpers for the container related commands.)absolute_import)division)unicode_literals) arg_parsersc$URSSS9 g)Nz--auth-provider-cmd-pathzV Path to the gcloud executable for the auth provider field in kubeconfig. help add_argumentparsers r;rcPSnURSU[R"5S9 g)z*Adds external load balancer address pools.a5 Path to a YAML/JSON file containing external load balancer pool configuration. External load balancer pools are used for data plane load balancing of local control plane clusters, with custom config such as address pool name. Either --external-lb-ipv4-address-pools or --external-lb-address-pools should be specified. Existing pools cannot be updated after cluster creation; only adding new pools is allowed currently. For example, ``` { "externalLoadBalancerAddressPools": [ { "addressPool": "MyLoadBalancerPool", "ipv4Range": ["10.200.0.200-10.200.0.204","10.200.0.300/30"], "avoidBuggyIps": "false", "manualAssign": "true" } ] } ``` *address_pool*::: Optional. A name that identifies an address pool. If a name is not specified, an auto-generated one will be used. *ipv4_range*::: Mandatory. One or more ipv4 address range, each must be specified as one of the following two types of values: 1. A IPv4 address range, for example, "10.0.0.1-10.0.0.10". A range that contains a single IP (e.g. "10.0.0.1-10.0.0.1") is allowed. 2. A IPv4 CIDR block, for example, "10.0.0.1/24" *ipv6_range*::: Optional. One or more ipv6 address range, each must be specified as one of the following two types of values: 1. A IPv6 address range, for example, "2001:db8::1-2001:db8::a". A range that contains a single IP (e.g. "2001:db8::1-2001:db8::1") is allowed. 2. A IPv6 CIDR block, for example, "2001:db8::/120" *avoid_buggy_ips*::: Optional. If true, the pool omits IP addresses ending in .0 and .255. Some network hardware drops traffic to these special addresses. Its default value is false. *manual_assign*::: Optional. If true, addresses in this pool are not automatically assigned to Kubernetes Services. If true, an IP address in this pool is used only when it is specified explicitly by a service. Its default value is false. z--external-lb-address-pools)r r Nr2)r *external_lb_config_address_pools_help_texts r#AddExternalLoadBalancerAddressPoolsrAs210,f # 5  ' ' )rc$URSSS9 g)Nz--control-plane-node-locationz_ Google Edge Cloud zone where the local control plane nodes will be created. rr r s rAddControlPlaneNodeLocationrCs% rc$URSSS9 g)Nz--control-plane-node-countz The number of local control plane nodes in a cluster. Use one to create a single-node control plane or use three to create a high availability control plane. Any other numbers of nodes will not be accepted. rr r s rAddControlPlaneNodeCountrE(s" rc$URSSS9 g)Nz--control-plane-machine-filterz Only machines matching this filter will be allowed to host local control plane nodes. The filtering language accepts strings like "name=", and is documented here: [AIP-160](https://google.aip.dev/160). rr r s rAddControlPlaneMachineFilterrG4s& rc$URSSS9 g)Nz(--control-plane-shared-deployment-policya Policy configuration about how user application is deployed for local control plane cluster. It supports two values, ALLOWED and DISALLOWED. ALLOWED means that user application can be deployed on control plane nodes. DISALLOWED means that user application can not be deployed on control plane nodes. Instead, it can only be deployed on worker nodes. By default, this value is DISALLOWED. The input is case insensitive. rr r s r%AddControlPlaneSharedDeploymentPolicyrI@s0  rc$URSSS9 g)Nz#--control-plane-node-storage-schemazA Name for the storage schema of control plane nodes. rr r s r AddControlPlaneNodeStorageSchemarKOs+ rc6URSS[SS/SS9 g)Nz.--control-plane-node-system-partition-size-gibTd,a Specifies the system partition size in GiB for the control plane nodes. This parameter is optional. Valid values are 100 and 300 to set the system partition size to 100GiB and 300GiB, respectively. If this parameter is not specified, the system partition is created using the default size specified in the system storage schema applicable to the control plane nodes. hiddenr choicesr r intr s r&AddControlPlaneNodeSystemPartitionSizerTXs*6  Cj  rc$URSSS9 g)Nz --lro-timeoutz8 Overwrite the default LRO maximum timeout. rr r s rAddLROMaximumTimeoutrVis rc$URSSS9 g)N --versionz; Target cluster version. For example: "1.5.0". rr r s r AddVersionrYrs rc&URSSSS9 g)Nz--release-channelRELEASE_CHANNEL_UNSPECIFIEDa Release channel a cluster is subscribed to. It supports two values, NONE and REGULAR. NONE is used to opt out of any release channel. Clusters subscribed to the REGULAR channel will be automatically upgraded to versions that are considered GA quality, and cannot be manually upgraded. Additionally, if the REGULAR channel is used, a specific target version cannot be set with the 'version' flag. If left unspecified, the release channel will default to REGULAR. rr r s rAddReleaseChannelr\{s +  rc&URSSSS9 g)NrXTzI Target cluster version to upgrade to. For example: "1.5.1". requiredr r r s rAddUpgradeVersionr`s  rc&URSSSS9 g)Nz --scheduleTz{ Schedule to upgrade a cluster after the request is acknowledged by Google. Support values: IMMEDIATELY. r^r r s rAddUpgradeSchedulerbs  rc&URSSSS9 g)Nz--offline-credential store_truezV Once specified, an offline credential will be generated for the cluster. actionr r r s rAddOfflineCredentialrgs   rc&URSSSS9 g)Nz--use-google-managed-keyrdzl Once specified, a Google-managed key will be used for the control plane disk encryption. rer r s rAddUseGoogleManagedKeyris   rc&URSUSS9 g)Nz --node-countz7 Default nodeCount used by this node pool. r^r )r r_s r AddNodeCountrks  rc&URSSSS9 g)Nz--node-locationTzS Google Edge Cloud zone where nodes in this node pool will be created. r^r r s rAddNodeLocationrms  rc$URSSS9 g)Nz--machine-filterz Only machines matching this filter will be allowed to join the node pool. The filtering language accepts strings like "name=", and is documented in more detail at https://google.aip.dev/160. rr r s rAddMachineFilterros rc$URSSS9 g)Nz--local-disk-kms-keya, Google Cloud KMS key that will be used to secure local disks on nodes in this node pool. The Edge Container service account for this project must have `roles/cloudkms.cryptoKeyEncrypterDecrypter` on the key. If not provided, a Google-managed key will be used instead. rr r s rAddLocalDiskKMSKeyrqs  rcNURSSS[R"5S9 g)N --node-labelsz Comma-delimited list of key-value pairs that comprise labels for the individual nodes in the node pool. This flag sets the Kubernetes labels, unlike `--labels` which sets the cloud resource labels. rr rr r!r s rAddNodeLabelsForCreateNodePoolrus.      rcNURSSS[R"5S9 g)Nrsa Comma-delimited list of key-value pairs that comprise labels for the individual nodes in the node pool. This flag updates the Kubernetes labels, unlike `--update-labels`, `--remove-labels`, and `--clear-labels` which update the cloud resource labels. rrtr!r s rAddNodeLabelsForUpdateNodePoolrws.      rc$URSSS9 g)Nz--node-storage-schemaz: Name for the storage schema of worker nodes. rr r s rAddNodeStorageSchemarys rc6URSS[SS/SS9 g)Nz --node-system-partition-size-gibTrMrNa Specifies the system partition size in GiB for the worker nodes. This parameter is optional. Valid values are 100 and 300 to set the system partition size to 100GiB and 300GiB, respectively. If this parameter is not specified, the system partition is created using the default size specified in the system storage schema applicable to the worker nodes. rOrRr s rAddNodeSystemPartitionSizer{s*(  Cj  rcLURS[R"5SS9 g)Nz--offline-reboot-ttla Specifies the maximum duration a node can reboot offline (without connection to Google) and then rejoin its cluster to resume its designated workloads. This duration is relative to the machine's most recent connection to Google. The maximum allowed duration is 7 days. To disallow offline reboot, set the duration to "PT0S". The parameter should be an ISO 8601 duration string, for example, "P1DT1H2M3S". r1)r rDurationr s rAddOfflineRebootTtLr~s)    !  rc$URSSS9 g)Nz--zone-storage-kms-keya Google Cloud KMS key that will be used to encrypt and decrypt the root key for zone storage encryption. The zone storage KMS key is only applicable to the storage infra cluster. The Edge Container service account for this project must have `roles/cloudkms.cryptoKeyEncrypterDecrypter` on the key. If not provided, a Google-managed key will be used by default. rr r s rAddZoneStorageKMSKeyr$s  rc(URSSSSS9 g)Nz--enable-robin-cnsrdTa6 If set, Robin CNS will be enabled on the cluster. WARNING: Enabling Robin CNS is irreversible. Once enabled, it cannot be disabled. Enabling Robin CNS will take over all unused local Persistent Volumes (PVs) in the cluster. Any data on these PVs will be permanently lost. rfrPr r r s rAddEnableRobinCNSr3s#    rc$URSSS9 g)Nz!--container-default-runtime-classzm Name of the default runtime class for containers. It supports two values RUNC and GVISOR. rr r s rAddContainerDefaultRuntimeClassrCs) rc$URSSS9 g)Nz--enable-cluster-isolationzU If set, the cluster will be created in a secure cluster isolation mode. rr r s rAddEnableClusterIsolationrMs" rc&URSSSS9 g)Nz$--enable-google-group-authenticationrdzX If set, the cluster will be configured to use Google Group authentication. rer r s r"AddEnableGoogleGroupAuthenticationrVs ,  rc(URSSSSS9 g)Nz--enable-remote-backuprdTzT If set, the cluster will be created with remote backup featureenabled. rr r s rAddEnableRemoteBackupr`s#   rN)T)4__doc__ __future__rrrgooglecloudsdk.callioperrrrrrrr#r%r'r)r+r-r/r4r:r>rArCrErGrIrKrTrVrYr\r`rbrgrirkrmrorqrurwryr{r~rrrrrrrrrs<&'/    ,&&:z   "          r