Class: Google::Container::V1beta1::WorkloadMetadataConfig

Inherits:

Object

• Object
• Google::Container::V1beta1::WorkloadMetadataConfig

Defined in:

lib/google/cloud/container/v1beta1/doc/google/container/v1beta1/cluster_service.rb

Overview

WorkloadMetadataConfig defines the metadata configuration to expose to workloads on the node pool.

Defined Under Namespace

Modules: NodeMetadata

Instance Attribute Summary

• #node_metadata ⇒ Google::Container::V1beta1::WorkloadMetadataConfig::NodeMetadata

  NodeMetadata is the configuration for how to expose the node metadata to the workload running on the node.

Instance Attribute Details

#node_metadata ⇒ Google::Container::V1beta1::WorkloadMetadataConfig::NodeMetadata

Returns NodeMetadata is the configuration for how to expose the node metadata to the workload running on the node.

Returns:

• (Google::Container::V1beta1::WorkloadMetadataConfig::NodeMetadata) —

  NodeMetadata is the configuration for how to expose the node metadata to the workload running on the node.

# File 'lib/google/cloud/container/v1beta1/doc/google/container/v1beta1/cluster_service.rb', line 2049

class WorkloadMetadataConfig
  # NodeMetadata is the configuration for if and how to expose the node
  # metadata to the workload running on the node.
  module NodeMetadata
    # Not set.
    UNSPECIFIED = 0

    # Prevent workloads not in hostNetwork from accessing certain VM metadata,
    # specifically kube-env, which contains Kubelet credentials, and the
    # instance identity token.
    #
    # Metadata concealment is a temporary security solution available while the
    # bootstrapping process for cluster nodes is being redesigned with
    # significant security improvements.  This feature is scheduled to be
    # deprecated in the future and later removed.
    SECURE = 1

    # Expose all VM metadata to pods.
    EXPOSE = 2
  end
end