Package com.hashicorp.cdktf.providers.google.gke_hub_feature

Interface GkeHubFeatureFleetDefaultMemberConfigPolicycontrollerPolicyControllerHubConfig

    • Method Detail

      • getInstallSpec

        @Stability(Stable)
@NotNull
String getInstallSpec()
        Configures the mode of the Policy Controller installation Possible values: ["INSTALL_SPEC_UNSPECIFIED", "INSTALL_SPEC_NOT_INSTALLED", "INSTALL_SPEC_ENABLED", "INSTALL_SPEC_SUSPENDED", "INSTALL_SPEC_DETACHED"].

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/gke_hub_feature#install_spec GkeHubFeature#install_spec}

      • getAuditIntervalSeconds

        @Stability(Stable)
@Nullable
default Number getAuditIntervalSeconds()
        Interval for Policy Controller Audit scans (in seconds). When set to 0, this disables audit functionality altogether.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/gke_hub_feature#audit_interval_seconds GkeHubFeature#audit_interval_seconds}

      • getConstraintViolationLimit

        @Stability(Stable)
@Nullable
default Number getConstraintViolationLimit()
        The maximum number of audit violations to be stored in a constraint.

        If not set, the internal default of 20 will be used. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/gke_hub_feature#constraint_violation_limit GkeHubFeature#constraint_violation_limit}

      • getDeploymentConfigs

        @Stability(Stable)
@Nullable
default Object getDeploymentConfigs()
        deployment_configs block.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/gke_hub_feature#deployment_configs GkeHubFeature#deployment_configs}

      • getExemptableNamespaces

        @Stability(Stable)
@Nullable
default List<String> getExemptableNamespaces()
        The set of namespaces that are excluded from Policy Controller checks.

        Namespaces do not need to currently exist on the cluster. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/gke_hub_feature#exemptable_namespaces GkeHubFeature#exemptable_namespaces}

      • getLogDeniesEnabled

        @Stability(Stable)
@Nullable
default Object getLogDeniesEnabled()
        Logs all denies and dry run failures.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/gke_hub_feature#log_denies_enabled GkeHubFeature#log_denies_enabled}

      • getMutationEnabled

        @Stability(Stable)
@Nullable
default Object getMutationEnabled()
        Enables the ability to mutate resources using Policy Controller.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/gke_hub_feature#mutation_enabled GkeHubFeature#mutation_enabled}

      • getReferentialRulesEnabled

        @Stability(Stable)
@Nullable
default Object getReferentialRulesEnabled()
        Enables the ability to use Constraint Templates that reference to objects other than the object currently being evaluated.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/gke_hub_feature#referential_rules_enabled GkeHubFeature#referential_rules_enabled}