このページは日本語には対応しておりません。随時翻訳に取り組んでいます。
翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください

gcp_iam_workload_identity_pool

ancestors

Type: UNORDERED_LIST_STRING

description

Type: STRING
Provider name: description
Description: A description of the pool. Cannot exceed 256 characters.

disabled

Type: BOOLEAN
Provider name: disabled
Description: Whether the pool is disabled. You cannot use a disabled pool to exchange tokens, or use existing tokens to access resources. If the pool is re-enabled, existing tokens grant access again.

gcp_display_name

Type: STRING
Provider name: displayName
Description: A display name for the pool. Cannot exceed 32 characters.

identity_mode

Type: STRING
Provider name: identityMode
Description: Immutable. The identity mode of the pool.
Possible values:

  • IDENTITY_MODE_UNSPECIFIED - Existing pools will be in this mode. For existing worklod identity pools created through the public API, they will act as if they are set to FEDERATION_ONLY.
  • FEDERATION_ONLY - With FEDERATION_ONLY mode, providers can be created at the root level within the pool. Attribute mappings must specify a ‘google.subject’ claim that specifies the identity of the federation workload. Namespace or any sub-namespace resources is not allowed with this mode.
  • TRUST_DOMAIN - With TRUST_DOMAIN mode, providers can be created at the root level within the pool. Attribute mappings must specify the ‘google.namespace’ and ‘google.workload_identifier’ claims that, respectively, specify the namespace and individual sub-namespace identifier for the workload. Namespaces and sub-Namespace resources are allowed.

labels

Type: UNORDERED_LIST_STRING

name

Type: STRING
Provider name: name
Description: Output only. The resource name of the pool.

organization_id

Type: STRING

parent

Type: STRING

project_id

Type: STRING

project_number

Type: STRING

region_id

Type: STRING

resource_name

Type: STRING

state

Type: STRING
Provider name: state
Description: Output only. The state of the pool.
Possible values:

  • STATE_UNSPECIFIED - State unspecified.
  • ACTIVE - The pool is active, and may be used in Google Cloud policies.
  • DELETED - The pool is soft-deleted. Soft-deleted pools are permanently deleted after approximately 30 days. You can restore a soft-deleted pool using UndeleteWorkloadIdentityPool. You cannot reuse the ID of a soft-deleted pool until it is permanently deleted. While a pool is deleted, you cannot use it to exchange tokens, or use existing tokens to access resources. If the pool is undeleted, existing tokens grant access again.

tags

Type: UNORDERED_LIST_STRING

zone_id

Type: STRING