Class MeshCertificates (2.20.0)

MeshCertificates(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Configuration for issuance of mTLS keys and certificates to Kubernetes pods.

Attribute

NameDescription
enable_certificates google.protobuf.wrappers_pb2.BoolValue
enable_certificates controls issuance of workload mTLS certificates. If set, the GKE Workload Identity Certificates controller and node agent will be deployed in the cluster, which can then be configured by creating a WorkloadCertificateConfig Custom Resource. Requires Workload Identity (workload_pool][google.container.v1alpha1.WorkloadIdentityConfig.workload_pool] must be non-empty).