name | string | Required. Name of the EndpointPolicy resource. It matches pattern projects/{project}/locations/global/endpointPolicies/{endpoint_policy} . |
description | string | Optional. A free-text description of the resource. Max length 1024 characters. |
authorizationPolicy | string | Optional. This field specifies the URL of AuthorizationPolicy resource that applies authorization policies to the inbound traffic at the matched endpoints. Refer to Authorization. If this field is not specified, authorization is disabled(no authz checks) for this endpoint. |
serverTlsPolicy | string | Optional. A URL referring to ServerTlsPolicy resource. ServerTlsPolicy is used to determine the authentication policy to be applied to terminate the inbound traffic at the identified backends. If this field is not set, authentication is disabled(open) for this endpoint. |
type | string | Required. The type of endpoint policy. This is primarily used to validate the configuration. |
clientTlsPolicy | string | Optional. A URL referring to a ClientTlsPolicy resource. ClientTlsPolicy can be set to specify the authentication for traffic from the proxy to the actual endpoints. More specifically, it is applied to the outgoing traffic from the proxy to the endpoint. This is typically used for sidecar model where the proxy identifies itself as endpoint to the control plane, with the connection between sidecar and endpoint requiring authentication. If this field is not set, authentication is disabled(open). Applicable only when EndpointPolicyType is SIDECAR_PROXY. |
createTime | string | Output only. The timestamp when the resource was created. |
endpointMatcher | object | A definition of a matcher that selects endpoints to which the policies should be applied. |
updateTime | string | Output only. The timestamp when the resource was updated. |
labels | object | Optional. Set of label tags associated with the EndpointPolicy resource. |
trafficPortSelector | object | Specification of a port-based selector. |