1<html><body> 2<style> 3 4body, h1, h2, h3, div, span, p, pre, a { 5 margin: 0; 6 padding: 0; 7 border: 0; 8 font-weight: inherit; 9 font-style: inherit; 10 font-size: 100%; 11 font-family: inherit; 12 vertical-align: baseline; 13} 14 15body { 16 font-size: 13px; 17 padding: 1em; 18} 19 20h1 { 21 font-size: 26px; 22 margin-bottom: 1em; 23} 24 25h2 { 26 font-size: 24px; 27 margin-bottom: 1em; 28} 29 30h3 { 31 font-size: 20px; 32 margin-bottom: 1em; 33 margin-top: 1em; 34} 35 36pre, code { 37 line-height: 1.5; 38 font-family: Monaco, 'DejaVu Sans Mono', 'Bitstream Vera Sans Mono', 'Lucida Console', monospace; 39} 40 41pre { 42 margin-top: 0.5em; 43} 44 45h1, h2, h3, p { 46 font-family: Arial, sans serif; 47} 48 49h1, h2, h3 { 50 border-bottom: solid #CCC 1px; 51} 52 53.toc_element { 54 margin-top: 0.5em; 55} 56 57.firstline { 58 margin-left: 2 em; 59} 60 61.method { 62 margin-top: 1em; 63 border: solid 1px #CCC; 64 padding: 1em; 65 background: #EEE; 66} 67 68.details { 69 font-weight: bold; 70 font-size: 14px; 71} 72 73</style> 74 75<h1><a href="dns_v1beta2.html">Cloud DNS API</a> . <a href="dns_v1beta2.managedZones.html">managedZones</a></h1> 76<h2>Instance Methods</h2> 77<p class="toc_element"> 78 <code><a href="#close">close()</a></code></p> 79<p class="firstline">Close httplib2 connections.</p> 80<p class="toc_element"> 81 <code><a href="#create">create(project, body=None, clientOperationId=None, x__xgafv=None)</a></code></p> 82<p class="firstline">Creates a new ManagedZone.</p> 83<p class="toc_element"> 84 <code><a href="#delete">delete(project, managedZone, clientOperationId=None, x__xgafv=None)</a></code></p> 85<p class="firstline">Deletes a previously created ManagedZone.</p> 86<p class="toc_element"> 87 <code><a href="#get">get(project, managedZone, clientOperationId=None, x__xgafv=None)</a></code></p> 88<p class="firstline">Fetches the representation of an existing ManagedZone.</p> 89<p class="toc_element"> 90 <code><a href="#list">list(project, dnsName=None, maxResults=None, pageToken=None, x__xgafv=None)</a></code></p> 91<p class="firstline">Enumerates ManagedZones that have been created but not yet deleted.</p> 92<p class="toc_element"> 93 <code><a href="#list_next">list_next(previous_request, previous_response)</a></code></p> 94<p class="firstline">Retrieves the next page of results.</p> 95<p class="toc_element"> 96 <code><a href="#patch">patch(project, managedZone, body=None, clientOperationId=None, x__xgafv=None)</a></code></p> 97<p class="firstline">Applies a partial update to an existing ManagedZone.</p> 98<p class="toc_element"> 99 <code><a href="#update">update(project, managedZone, body=None, clientOperationId=None, x__xgafv=None)</a></code></p> 100<p class="firstline">Updates an existing ManagedZone.</p> 101<h3>Method Details</h3> 102<div class="method"> 103 <code class="details" id="close">close()</code> 104 <pre>Close httplib2 connections.</pre> 105</div> 106 107<div class="method"> 108 <code class="details" id="create">create(project, body=None, clientOperationId=None, x__xgafv=None)</code> 109 <pre>Creates a new ManagedZone. 110 111Args: 112 project: string, Identifies the project addressed by this request. (required) 113 body: object, The request body. 114 The object takes the form of: 115 116{ # A zone is a subtree of the DNS namespace under one administrative responsibility. A ManagedZone is a resource that represents a DNS zone hosted by the Cloud DNS service. 117 "cloudLoggingConfig": { # Cloud Logging configurations for publicly visible zones. 118 "enableLogging": True or False, # If set, enable query logging for this ManagedZone. False by default, making logging opt-in. 119 "kind": "dns#managedZoneCloudLoggingConfig", 120 }, 121 "creationTime": "A String", # The time that this resource was created on the server. This is in RFC3339 text format. Output only. 122 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the managed zone's function. 123 "dnsName": "A String", # The DNS name of this managed zone, for instance "example.com.". 124 "dnssecConfig": { # DNSSEC configuration. 125 "defaultKeySpecs": [ # Specifies parameters for generating initial DnsKeys for this ManagedZone. Can only be changed while the state is OFF. 126 { # Parameters for DnsKey key generation. Used for generating initial keys for a new ManagedZone and as default when adding a new DnsKey. 127 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. 128 "keyLength": 42, # Length of the keys in bits. 129 "keyType": "A String", # Specifies whether this is a key signing key (KSK) or a zone signing key (ZSK). Key signing keys have the Secure Entry Point flag set and, when active, are only used to sign resource record sets of type DNSKEY. Zone signing keys do not have the Secure Entry Point flag set and are used to sign all other types of resource record sets. 130 "kind": "dns#dnsKeySpec", 131 }, 132 ], 133 "kind": "dns#managedZoneDnsSecConfig", 134 "nonExistence": "A String", # Specifies the mechanism for authenticated denial-of-existence responses. Can only be changed while the state is OFF. 135 "state": "A String", # Specifies whether DNSSEC is enabled, and what mode it is in. 136 }, 137 "forwardingConfig": { # The presence for this field indicates that outbound forwarding is enabled for this zone. The value of this field contains the set of destinations to forward to. 138 "kind": "dns#managedZoneForwardingConfig", 139 "targetNameServers": [ # List of target name servers to forward to. Cloud DNS selects the best available name server if more than one target is given. 140 { 141 "forwardingPath": "A String", # Forwarding path for this NameServerTarget. If unset or set to DEFAULT, Cloud DNS makes forwarding decisions based on IP address ranges; that is, RFC1918 addresses go to the VPC network, non-RFC1918 addresses go to the internet. When set to PRIVATE, Cloud DNS always sends queries through the VPC network for this target. 142 "ipv4Address": "A String", # IPv4 address of a target name server. 143 "ipv6Address": "A String", # IPv6 address of a target name server. Does not accept both fields (ipv4 & ipv6) being populated. 144 "kind": "dns#managedZoneForwardingConfigNameServerTarget", 145 }, 146 ], 147 }, 148 "id": "A String", # Unique identifier for the resource; defined by the server (output only) 149 "kind": "dns#managedZone", 150 "labels": { # User labels. 151 "a_key": "A String", 152 }, 153 "name": "A String", # User assigned name for this resource. Must be unique within the project. The name must be 1-63 characters long, must begin with a letter, end with a letter or digit, and only contain lowercase letters, digits or dashes. 154 "nameServerSet": "A String", # Optionally specifies the NameServerSet for this ManagedZone. A NameServerSet is a set of DNS name servers that all host the same ManagedZones. Most users leave this field unset. If you need to use this field, contact your account team. 155 "nameServers": [ # Delegate your managed_zone to these virtual name servers; defined by the server (output only) 156 "A String", 157 ], 158 "peeringConfig": { # The presence of this field indicates that DNS Peering is enabled for this zone. The value of this field contains the network to peer with. 159 "kind": "dns#managedZonePeeringConfig", 160 "targetNetwork": { # The network with which to peer. 161 "deactivateTime": "A String", # The time at which the zone was deactivated, in RFC 3339 date-time format. An empty string indicates that the peering connection is active. The producer network can deactivate a zone. The zone is automatically deactivated if the producer network that the zone targeted is deleted. Output only. 162 "kind": "dns#managedZonePeeringConfigTargetNetwork", 163 "networkUrl": "A String", # The fully qualified URL of the VPC network to forward queries to. This should be formatted like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 164 }, 165 }, 166 "privateVisibilityConfig": { # For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. 167 "gkeClusters": [ # The list of Google Kubernetes Engine clusters that can see this zone. 168 { 169 "gkeClusterName": "A String", # The resource name of the cluster to bind this ManagedZone to. This should be specified in the format like: projects/*/locations/*/clusters/*. This is referenced from GKE projects.locations.clusters.get API: https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1/projects.locations.clusters/get 170 "kind": "dns#managedZonePrivateVisibilityConfigGKECluster", 171 }, 172 ], 173 "kind": "dns#managedZonePrivateVisibilityConfig", 174 "networks": [ # The list of VPC networks that can see this zone. 175 { 176 "kind": "dns#managedZonePrivateVisibilityConfigNetwork", 177 "networkUrl": "A String", # The fully qualified URL of the VPC network to bind to. Format this URL like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 178 }, 179 ], 180 }, 181 "reverseLookupConfig": { # The presence of this field indicates that this is a managed reverse lookup zone and Cloud DNS resolves reverse lookup queries using automatically configured records for VPC resources. This only applies to networks listed under private_visibility_config. 182 "kind": "dns#managedZoneReverseLookupConfig", 183 }, 184 "serviceDirectoryConfig": { # Contains information about Service Directory-backed zones. # This field links to the associated service directory namespace. Do not set this field for public zones or forwarding zones. 185 "kind": "dns#managedZoneServiceDirectoryConfig", 186 "namespace": { # Contains information about the namespace associated with the zone. 187 "deletionTime": "A String", # The time that the namespace backing this zone was deleted; an empty string if it still exists. This is in RFC3339 text format. Output only. 188 "kind": "dns#managedZoneServiceDirectoryConfigNamespace", 189 "namespaceUrl": "A String", # The fully qualified URL of the namespace associated with the zone. Format must be https://servicedirectory.googleapis.com/v1/projects/{project}/locations/{location}/namespaces/{namespace} 190 }, 191 }, 192 "visibility": "A String", # The zone's visibility: public zones are exposed to the Internet, while private zones are visible only to Virtual Private Cloud resources. 193} 194 195 clientOperationId: string, For mutating operation requests only. An optional identifier specified by the client. Must be unique for operation resources in the Operations collection. 196 x__xgafv: string, V1 error format. 197 Allowed values 198 1 - v1 error format 199 2 - v2 error format 200 201Returns: 202 An object of the form: 203 204 { # A zone is a subtree of the DNS namespace under one administrative responsibility. A ManagedZone is a resource that represents a DNS zone hosted by the Cloud DNS service. 205 "cloudLoggingConfig": { # Cloud Logging configurations for publicly visible zones. 206 "enableLogging": True or False, # If set, enable query logging for this ManagedZone. False by default, making logging opt-in. 207 "kind": "dns#managedZoneCloudLoggingConfig", 208 }, 209 "creationTime": "A String", # The time that this resource was created on the server. This is in RFC3339 text format. Output only. 210 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the managed zone's function. 211 "dnsName": "A String", # The DNS name of this managed zone, for instance "example.com.". 212 "dnssecConfig": { # DNSSEC configuration. 213 "defaultKeySpecs": [ # Specifies parameters for generating initial DnsKeys for this ManagedZone. Can only be changed while the state is OFF. 214 { # Parameters for DnsKey key generation. Used for generating initial keys for a new ManagedZone and as default when adding a new DnsKey. 215 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. 216 "keyLength": 42, # Length of the keys in bits. 217 "keyType": "A String", # Specifies whether this is a key signing key (KSK) or a zone signing key (ZSK). Key signing keys have the Secure Entry Point flag set and, when active, are only used to sign resource record sets of type DNSKEY. Zone signing keys do not have the Secure Entry Point flag set and are used to sign all other types of resource record sets. 218 "kind": "dns#dnsKeySpec", 219 }, 220 ], 221 "kind": "dns#managedZoneDnsSecConfig", 222 "nonExistence": "A String", # Specifies the mechanism for authenticated denial-of-existence responses. Can only be changed while the state is OFF. 223 "state": "A String", # Specifies whether DNSSEC is enabled, and what mode it is in. 224 }, 225 "forwardingConfig": { # The presence for this field indicates that outbound forwarding is enabled for this zone. The value of this field contains the set of destinations to forward to. 226 "kind": "dns#managedZoneForwardingConfig", 227 "targetNameServers": [ # List of target name servers to forward to. Cloud DNS selects the best available name server if more than one target is given. 228 { 229 "forwardingPath": "A String", # Forwarding path for this NameServerTarget. If unset or set to DEFAULT, Cloud DNS makes forwarding decisions based on IP address ranges; that is, RFC1918 addresses go to the VPC network, non-RFC1918 addresses go to the internet. When set to PRIVATE, Cloud DNS always sends queries through the VPC network for this target. 230 "ipv4Address": "A String", # IPv4 address of a target name server. 231 "ipv6Address": "A String", # IPv6 address of a target name server. Does not accept both fields (ipv4 & ipv6) being populated. 232 "kind": "dns#managedZoneForwardingConfigNameServerTarget", 233 }, 234 ], 235 }, 236 "id": "A String", # Unique identifier for the resource; defined by the server (output only) 237 "kind": "dns#managedZone", 238 "labels": { # User labels. 239 "a_key": "A String", 240 }, 241 "name": "A String", # User assigned name for this resource. Must be unique within the project. The name must be 1-63 characters long, must begin with a letter, end with a letter or digit, and only contain lowercase letters, digits or dashes. 242 "nameServerSet": "A String", # Optionally specifies the NameServerSet for this ManagedZone. A NameServerSet is a set of DNS name servers that all host the same ManagedZones. Most users leave this field unset. If you need to use this field, contact your account team. 243 "nameServers": [ # Delegate your managed_zone to these virtual name servers; defined by the server (output only) 244 "A String", 245 ], 246 "peeringConfig": { # The presence of this field indicates that DNS Peering is enabled for this zone. The value of this field contains the network to peer with. 247 "kind": "dns#managedZonePeeringConfig", 248 "targetNetwork": { # The network with which to peer. 249 "deactivateTime": "A String", # The time at which the zone was deactivated, in RFC 3339 date-time format. An empty string indicates that the peering connection is active. The producer network can deactivate a zone. The zone is automatically deactivated if the producer network that the zone targeted is deleted. Output only. 250 "kind": "dns#managedZonePeeringConfigTargetNetwork", 251 "networkUrl": "A String", # The fully qualified URL of the VPC network to forward queries to. This should be formatted like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 252 }, 253 }, 254 "privateVisibilityConfig": { # For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. 255 "gkeClusters": [ # The list of Google Kubernetes Engine clusters that can see this zone. 256 { 257 "gkeClusterName": "A String", # The resource name of the cluster to bind this ManagedZone to. This should be specified in the format like: projects/*/locations/*/clusters/*. This is referenced from GKE projects.locations.clusters.get API: https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1/projects.locations.clusters/get 258 "kind": "dns#managedZonePrivateVisibilityConfigGKECluster", 259 }, 260 ], 261 "kind": "dns#managedZonePrivateVisibilityConfig", 262 "networks": [ # The list of VPC networks that can see this zone. 263 { 264 "kind": "dns#managedZonePrivateVisibilityConfigNetwork", 265 "networkUrl": "A String", # The fully qualified URL of the VPC network to bind to. Format this URL like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 266 }, 267 ], 268 }, 269 "reverseLookupConfig": { # The presence of this field indicates that this is a managed reverse lookup zone and Cloud DNS resolves reverse lookup queries using automatically configured records for VPC resources. This only applies to networks listed under private_visibility_config. 270 "kind": "dns#managedZoneReverseLookupConfig", 271 }, 272 "serviceDirectoryConfig": { # Contains information about Service Directory-backed zones. # This field links to the associated service directory namespace. Do not set this field for public zones or forwarding zones. 273 "kind": "dns#managedZoneServiceDirectoryConfig", 274 "namespace": { # Contains information about the namespace associated with the zone. 275 "deletionTime": "A String", # The time that the namespace backing this zone was deleted; an empty string if it still exists. This is in RFC3339 text format. Output only. 276 "kind": "dns#managedZoneServiceDirectoryConfigNamespace", 277 "namespaceUrl": "A String", # The fully qualified URL of the namespace associated with the zone. Format must be https://servicedirectory.googleapis.com/v1/projects/{project}/locations/{location}/namespaces/{namespace} 278 }, 279 }, 280 "visibility": "A String", # The zone's visibility: public zones are exposed to the Internet, while private zones are visible only to Virtual Private Cloud resources. 281}</pre> 282</div> 283 284<div class="method"> 285 <code class="details" id="delete">delete(project, managedZone, clientOperationId=None, x__xgafv=None)</code> 286 <pre>Deletes a previously created ManagedZone. 287 288Args: 289 project: string, Identifies the project addressed by this request. (required) 290 managedZone: string, Identifies the managed zone addressed by this request. Can be the managed zone name or ID. (required) 291 clientOperationId: string, For mutating operation requests only. An optional identifier specified by the client. Must be unique for operation resources in the Operations collection. 292 x__xgafv: string, V1 error format. 293 Allowed values 294 1 - v1 error format 295 2 - v2 error format 296</pre> 297</div> 298 299<div class="method"> 300 <code class="details" id="get">get(project, managedZone, clientOperationId=None, x__xgafv=None)</code> 301 <pre>Fetches the representation of an existing ManagedZone. 302 303Args: 304 project: string, Identifies the project addressed by this request. (required) 305 managedZone: string, Identifies the managed zone addressed by this request. Can be the managed zone name or ID. (required) 306 clientOperationId: string, For mutating operation requests only. An optional identifier specified by the client. Must be unique for operation resources in the Operations collection. 307 x__xgafv: string, V1 error format. 308 Allowed values 309 1 - v1 error format 310 2 - v2 error format 311 312Returns: 313 An object of the form: 314 315 { # A zone is a subtree of the DNS namespace under one administrative responsibility. A ManagedZone is a resource that represents a DNS zone hosted by the Cloud DNS service. 316 "cloudLoggingConfig": { # Cloud Logging configurations for publicly visible zones. 317 "enableLogging": True or False, # If set, enable query logging for this ManagedZone. False by default, making logging opt-in. 318 "kind": "dns#managedZoneCloudLoggingConfig", 319 }, 320 "creationTime": "A String", # The time that this resource was created on the server. This is in RFC3339 text format. Output only. 321 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the managed zone's function. 322 "dnsName": "A String", # The DNS name of this managed zone, for instance "example.com.". 323 "dnssecConfig": { # DNSSEC configuration. 324 "defaultKeySpecs": [ # Specifies parameters for generating initial DnsKeys for this ManagedZone. Can only be changed while the state is OFF. 325 { # Parameters for DnsKey key generation. Used for generating initial keys for a new ManagedZone and as default when adding a new DnsKey. 326 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. 327 "keyLength": 42, # Length of the keys in bits. 328 "keyType": "A String", # Specifies whether this is a key signing key (KSK) or a zone signing key (ZSK). Key signing keys have the Secure Entry Point flag set and, when active, are only used to sign resource record sets of type DNSKEY. Zone signing keys do not have the Secure Entry Point flag set and are used to sign all other types of resource record sets. 329 "kind": "dns#dnsKeySpec", 330 }, 331 ], 332 "kind": "dns#managedZoneDnsSecConfig", 333 "nonExistence": "A String", # Specifies the mechanism for authenticated denial-of-existence responses. Can only be changed while the state is OFF. 334 "state": "A String", # Specifies whether DNSSEC is enabled, and what mode it is in. 335 }, 336 "forwardingConfig": { # The presence for this field indicates that outbound forwarding is enabled for this zone. The value of this field contains the set of destinations to forward to. 337 "kind": "dns#managedZoneForwardingConfig", 338 "targetNameServers": [ # List of target name servers to forward to. Cloud DNS selects the best available name server if more than one target is given. 339 { 340 "forwardingPath": "A String", # Forwarding path for this NameServerTarget. If unset or set to DEFAULT, Cloud DNS makes forwarding decisions based on IP address ranges; that is, RFC1918 addresses go to the VPC network, non-RFC1918 addresses go to the internet. When set to PRIVATE, Cloud DNS always sends queries through the VPC network for this target. 341 "ipv4Address": "A String", # IPv4 address of a target name server. 342 "ipv6Address": "A String", # IPv6 address of a target name server. Does not accept both fields (ipv4 & ipv6) being populated. 343 "kind": "dns#managedZoneForwardingConfigNameServerTarget", 344 }, 345 ], 346 }, 347 "id": "A String", # Unique identifier for the resource; defined by the server (output only) 348 "kind": "dns#managedZone", 349 "labels": { # User labels. 350 "a_key": "A String", 351 }, 352 "name": "A String", # User assigned name for this resource. Must be unique within the project. The name must be 1-63 characters long, must begin with a letter, end with a letter or digit, and only contain lowercase letters, digits or dashes. 353 "nameServerSet": "A String", # Optionally specifies the NameServerSet for this ManagedZone. A NameServerSet is a set of DNS name servers that all host the same ManagedZones. Most users leave this field unset. If you need to use this field, contact your account team. 354 "nameServers": [ # Delegate your managed_zone to these virtual name servers; defined by the server (output only) 355 "A String", 356 ], 357 "peeringConfig": { # The presence of this field indicates that DNS Peering is enabled for this zone. The value of this field contains the network to peer with. 358 "kind": "dns#managedZonePeeringConfig", 359 "targetNetwork": { # The network with which to peer. 360 "deactivateTime": "A String", # The time at which the zone was deactivated, in RFC 3339 date-time format. An empty string indicates that the peering connection is active. The producer network can deactivate a zone. The zone is automatically deactivated if the producer network that the zone targeted is deleted. Output only. 361 "kind": "dns#managedZonePeeringConfigTargetNetwork", 362 "networkUrl": "A String", # The fully qualified URL of the VPC network to forward queries to. This should be formatted like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 363 }, 364 }, 365 "privateVisibilityConfig": { # For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. 366 "gkeClusters": [ # The list of Google Kubernetes Engine clusters that can see this zone. 367 { 368 "gkeClusterName": "A String", # The resource name of the cluster to bind this ManagedZone to. This should be specified in the format like: projects/*/locations/*/clusters/*. This is referenced from GKE projects.locations.clusters.get API: https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1/projects.locations.clusters/get 369 "kind": "dns#managedZonePrivateVisibilityConfigGKECluster", 370 }, 371 ], 372 "kind": "dns#managedZonePrivateVisibilityConfig", 373 "networks": [ # The list of VPC networks that can see this zone. 374 { 375 "kind": "dns#managedZonePrivateVisibilityConfigNetwork", 376 "networkUrl": "A String", # The fully qualified URL of the VPC network to bind to. Format this URL like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 377 }, 378 ], 379 }, 380 "reverseLookupConfig": { # The presence of this field indicates that this is a managed reverse lookup zone and Cloud DNS resolves reverse lookup queries using automatically configured records for VPC resources. This only applies to networks listed under private_visibility_config. 381 "kind": "dns#managedZoneReverseLookupConfig", 382 }, 383 "serviceDirectoryConfig": { # Contains information about Service Directory-backed zones. # This field links to the associated service directory namespace. Do not set this field for public zones or forwarding zones. 384 "kind": "dns#managedZoneServiceDirectoryConfig", 385 "namespace": { # Contains information about the namespace associated with the zone. 386 "deletionTime": "A String", # The time that the namespace backing this zone was deleted; an empty string if it still exists. This is in RFC3339 text format. Output only. 387 "kind": "dns#managedZoneServiceDirectoryConfigNamespace", 388 "namespaceUrl": "A String", # The fully qualified URL of the namespace associated with the zone. Format must be https://servicedirectory.googleapis.com/v1/projects/{project}/locations/{location}/namespaces/{namespace} 389 }, 390 }, 391 "visibility": "A String", # The zone's visibility: public zones are exposed to the Internet, while private zones are visible only to Virtual Private Cloud resources. 392}</pre> 393</div> 394 395<div class="method"> 396 <code class="details" id="list">list(project, dnsName=None, maxResults=None, pageToken=None, x__xgafv=None)</code> 397 <pre>Enumerates ManagedZones that have been created but not yet deleted. 398 399Args: 400 project: string, Identifies the project addressed by this request. (required) 401 dnsName: string, Restricts the list to return only zones with this domain name. 402 maxResults: integer, Optional. Maximum number of results to be returned. If unspecified, the server decides how many results to return. 403 pageToken: string, Optional. A tag returned by a previous list request that was truncated. Use this parameter to continue a previous list request. 404 x__xgafv: string, V1 error format. 405 Allowed values 406 1 - v1 error format 407 2 - v2 error format 408 409Returns: 410 An object of the form: 411 412 { 413 "header": { # Elements common to every response. 414 "operationId": "A String", # For mutating operation requests that completed successfully. This is the client_operation_id if the client specified it, otherwise it is generated by the server (output only). 415 }, 416 "kind": "dns#managedZonesListResponse", # Type of resource. 417 "managedZones": [ # The managed zone resources. 418 { # A zone is a subtree of the DNS namespace under one administrative responsibility. A ManagedZone is a resource that represents a DNS zone hosted by the Cloud DNS service. 419 "cloudLoggingConfig": { # Cloud Logging configurations for publicly visible zones. 420 "enableLogging": True or False, # If set, enable query logging for this ManagedZone. False by default, making logging opt-in. 421 "kind": "dns#managedZoneCloudLoggingConfig", 422 }, 423 "creationTime": "A String", # The time that this resource was created on the server. This is in RFC3339 text format. Output only. 424 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the managed zone's function. 425 "dnsName": "A String", # The DNS name of this managed zone, for instance "example.com.". 426 "dnssecConfig": { # DNSSEC configuration. 427 "defaultKeySpecs": [ # Specifies parameters for generating initial DnsKeys for this ManagedZone. Can only be changed while the state is OFF. 428 { # Parameters for DnsKey key generation. Used for generating initial keys for a new ManagedZone and as default when adding a new DnsKey. 429 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. 430 "keyLength": 42, # Length of the keys in bits. 431 "keyType": "A String", # Specifies whether this is a key signing key (KSK) or a zone signing key (ZSK). Key signing keys have the Secure Entry Point flag set and, when active, are only used to sign resource record sets of type DNSKEY. Zone signing keys do not have the Secure Entry Point flag set and are used to sign all other types of resource record sets. 432 "kind": "dns#dnsKeySpec", 433 }, 434 ], 435 "kind": "dns#managedZoneDnsSecConfig", 436 "nonExistence": "A String", # Specifies the mechanism for authenticated denial-of-existence responses. Can only be changed while the state is OFF. 437 "state": "A String", # Specifies whether DNSSEC is enabled, and what mode it is in. 438 }, 439 "forwardingConfig": { # The presence for this field indicates that outbound forwarding is enabled for this zone. The value of this field contains the set of destinations to forward to. 440 "kind": "dns#managedZoneForwardingConfig", 441 "targetNameServers": [ # List of target name servers to forward to. Cloud DNS selects the best available name server if more than one target is given. 442 { 443 "forwardingPath": "A String", # Forwarding path for this NameServerTarget. If unset or set to DEFAULT, Cloud DNS makes forwarding decisions based on IP address ranges; that is, RFC1918 addresses go to the VPC network, non-RFC1918 addresses go to the internet. When set to PRIVATE, Cloud DNS always sends queries through the VPC network for this target. 444 "ipv4Address": "A String", # IPv4 address of a target name server. 445 "ipv6Address": "A String", # IPv6 address of a target name server. Does not accept both fields (ipv4 & ipv6) being populated. 446 "kind": "dns#managedZoneForwardingConfigNameServerTarget", 447 }, 448 ], 449 }, 450 "id": "A String", # Unique identifier for the resource; defined by the server (output only) 451 "kind": "dns#managedZone", 452 "labels": { # User labels. 453 "a_key": "A String", 454 }, 455 "name": "A String", # User assigned name for this resource. Must be unique within the project. The name must be 1-63 characters long, must begin with a letter, end with a letter or digit, and only contain lowercase letters, digits or dashes. 456 "nameServerSet": "A String", # Optionally specifies the NameServerSet for this ManagedZone. A NameServerSet is a set of DNS name servers that all host the same ManagedZones. Most users leave this field unset. If you need to use this field, contact your account team. 457 "nameServers": [ # Delegate your managed_zone to these virtual name servers; defined by the server (output only) 458 "A String", 459 ], 460 "peeringConfig": { # The presence of this field indicates that DNS Peering is enabled for this zone. The value of this field contains the network to peer with. 461 "kind": "dns#managedZonePeeringConfig", 462 "targetNetwork": { # The network with which to peer. 463 "deactivateTime": "A String", # The time at which the zone was deactivated, in RFC 3339 date-time format. An empty string indicates that the peering connection is active. The producer network can deactivate a zone. The zone is automatically deactivated if the producer network that the zone targeted is deleted. Output only. 464 "kind": "dns#managedZonePeeringConfigTargetNetwork", 465 "networkUrl": "A String", # The fully qualified URL of the VPC network to forward queries to. This should be formatted like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 466 }, 467 }, 468 "privateVisibilityConfig": { # For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. 469 "gkeClusters": [ # The list of Google Kubernetes Engine clusters that can see this zone. 470 { 471 "gkeClusterName": "A String", # The resource name of the cluster to bind this ManagedZone to. This should be specified in the format like: projects/*/locations/*/clusters/*. This is referenced from GKE projects.locations.clusters.get API: https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1/projects.locations.clusters/get 472 "kind": "dns#managedZonePrivateVisibilityConfigGKECluster", 473 }, 474 ], 475 "kind": "dns#managedZonePrivateVisibilityConfig", 476 "networks": [ # The list of VPC networks that can see this zone. 477 { 478 "kind": "dns#managedZonePrivateVisibilityConfigNetwork", 479 "networkUrl": "A String", # The fully qualified URL of the VPC network to bind to. Format this URL like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 480 }, 481 ], 482 }, 483 "reverseLookupConfig": { # The presence of this field indicates that this is a managed reverse lookup zone and Cloud DNS resolves reverse lookup queries using automatically configured records for VPC resources. This only applies to networks listed under private_visibility_config. 484 "kind": "dns#managedZoneReverseLookupConfig", 485 }, 486 "serviceDirectoryConfig": { # Contains information about Service Directory-backed zones. # This field links to the associated service directory namespace. Do not set this field for public zones or forwarding zones. 487 "kind": "dns#managedZoneServiceDirectoryConfig", 488 "namespace": { # Contains information about the namespace associated with the zone. 489 "deletionTime": "A String", # The time that the namespace backing this zone was deleted; an empty string if it still exists. This is in RFC3339 text format. Output only. 490 "kind": "dns#managedZoneServiceDirectoryConfigNamespace", 491 "namespaceUrl": "A String", # The fully qualified URL of the namespace associated with the zone. Format must be https://servicedirectory.googleapis.com/v1/projects/{project}/locations/{location}/namespaces/{namespace} 492 }, 493 }, 494 "visibility": "A String", # The zone's visibility: public zones are exposed to the Internet, while private zones are visible only to Virtual Private Cloud resources. 495 }, 496 ], 497 "nextPageToken": "A String", # The presence of this field indicates that there exist more results following your last page of results in pagination order. To fetch them, make another list request using this value as your page token. This lets you the complete contents of even very large collections one page at a time. However, if the contents of the collection change between the first and last paginated list request, the set of all elements returned are an inconsistent view of the collection. You cannot retrieve a consistent snapshot of a collection larger than the maximum page size. 498}</pre> 499</div> 500 501<div class="method"> 502 <code class="details" id="list_next">list_next(previous_request, previous_response)</code> 503 <pre>Retrieves the next page of results. 504 505Args: 506 previous_request: The request for the previous page. (required) 507 previous_response: The response from the request for the previous page. (required) 508 509Returns: 510 A request object that you can call 'execute()' on to request the next 511 page. Returns None if there are no more items in the collection. 512 </pre> 513</div> 514 515<div class="method"> 516 <code class="details" id="patch">patch(project, managedZone, body=None, clientOperationId=None, x__xgafv=None)</code> 517 <pre>Applies a partial update to an existing ManagedZone. 518 519Args: 520 project: string, Identifies the project addressed by this request. (required) 521 managedZone: string, Identifies the managed zone addressed by this request. Can be the managed zone name or ID. (required) 522 body: object, The request body. 523 The object takes the form of: 524 525{ # A zone is a subtree of the DNS namespace under one administrative responsibility. A ManagedZone is a resource that represents a DNS zone hosted by the Cloud DNS service. 526 "cloudLoggingConfig": { # Cloud Logging configurations for publicly visible zones. 527 "enableLogging": True or False, # If set, enable query logging for this ManagedZone. False by default, making logging opt-in. 528 "kind": "dns#managedZoneCloudLoggingConfig", 529 }, 530 "creationTime": "A String", # The time that this resource was created on the server. This is in RFC3339 text format. Output only. 531 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the managed zone's function. 532 "dnsName": "A String", # The DNS name of this managed zone, for instance "example.com.". 533 "dnssecConfig": { # DNSSEC configuration. 534 "defaultKeySpecs": [ # Specifies parameters for generating initial DnsKeys for this ManagedZone. Can only be changed while the state is OFF. 535 { # Parameters for DnsKey key generation. Used for generating initial keys for a new ManagedZone and as default when adding a new DnsKey. 536 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. 537 "keyLength": 42, # Length of the keys in bits. 538 "keyType": "A String", # Specifies whether this is a key signing key (KSK) or a zone signing key (ZSK). Key signing keys have the Secure Entry Point flag set and, when active, are only used to sign resource record sets of type DNSKEY. Zone signing keys do not have the Secure Entry Point flag set and are used to sign all other types of resource record sets. 539 "kind": "dns#dnsKeySpec", 540 }, 541 ], 542 "kind": "dns#managedZoneDnsSecConfig", 543 "nonExistence": "A String", # Specifies the mechanism for authenticated denial-of-existence responses. Can only be changed while the state is OFF. 544 "state": "A String", # Specifies whether DNSSEC is enabled, and what mode it is in. 545 }, 546 "forwardingConfig": { # The presence for this field indicates that outbound forwarding is enabled for this zone. The value of this field contains the set of destinations to forward to. 547 "kind": "dns#managedZoneForwardingConfig", 548 "targetNameServers": [ # List of target name servers to forward to. Cloud DNS selects the best available name server if more than one target is given. 549 { 550 "forwardingPath": "A String", # Forwarding path for this NameServerTarget. If unset or set to DEFAULT, Cloud DNS makes forwarding decisions based on IP address ranges; that is, RFC1918 addresses go to the VPC network, non-RFC1918 addresses go to the internet. When set to PRIVATE, Cloud DNS always sends queries through the VPC network for this target. 551 "ipv4Address": "A String", # IPv4 address of a target name server. 552 "ipv6Address": "A String", # IPv6 address of a target name server. Does not accept both fields (ipv4 & ipv6) being populated. 553 "kind": "dns#managedZoneForwardingConfigNameServerTarget", 554 }, 555 ], 556 }, 557 "id": "A String", # Unique identifier for the resource; defined by the server (output only) 558 "kind": "dns#managedZone", 559 "labels": { # User labels. 560 "a_key": "A String", 561 }, 562 "name": "A String", # User assigned name for this resource. Must be unique within the project. The name must be 1-63 characters long, must begin with a letter, end with a letter or digit, and only contain lowercase letters, digits or dashes. 563 "nameServerSet": "A String", # Optionally specifies the NameServerSet for this ManagedZone. A NameServerSet is a set of DNS name servers that all host the same ManagedZones. Most users leave this field unset. If you need to use this field, contact your account team. 564 "nameServers": [ # Delegate your managed_zone to these virtual name servers; defined by the server (output only) 565 "A String", 566 ], 567 "peeringConfig": { # The presence of this field indicates that DNS Peering is enabled for this zone. The value of this field contains the network to peer with. 568 "kind": "dns#managedZonePeeringConfig", 569 "targetNetwork": { # The network with which to peer. 570 "deactivateTime": "A String", # The time at which the zone was deactivated, in RFC 3339 date-time format. An empty string indicates that the peering connection is active. The producer network can deactivate a zone. The zone is automatically deactivated if the producer network that the zone targeted is deleted. Output only. 571 "kind": "dns#managedZonePeeringConfigTargetNetwork", 572 "networkUrl": "A String", # The fully qualified URL of the VPC network to forward queries to. This should be formatted like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 573 }, 574 }, 575 "privateVisibilityConfig": { # For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. 576 "gkeClusters": [ # The list of Google Kubernetes Engine clusters that can see this zone. 577 { 578 "gkeClusterName": "A String", # The resource name of the cluster to bind this ManagedZone to. This should be specified in the format like: projects/*/locations/*/clusters/*. This is referenced from GKE projects.locations.clusters.get API: https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1/projects.locations.clusters/get 579 "kind": "dns#managedZonePrivateVisibilityConfigGKECluster", 580 }, 581 ], 582 "kind": "dns#managedZonePrivateVisibilityConfig", 583 "networks": [ # The list of VPC networks that can see this zone. 584 { 585 "kind": "dns#managedZonePrivateVisibilityConfigNetwork", 586 "networkUrl": "A String", # The fully qualified URL of the VPC network to bind to. Format this URL like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 587 }, 588 ], 589 }, 590 "reverseLookupConfig": { # The presence of this field indicates that this is a managed reverse lookup zone and Cloud DNS resolves reverse lookup queries using automatically configured records for VPC resources. This only applies to networks listed under private_visibility_config. 591 "kind": "dns#managedZoneReverseLookupConfig", 592 }, 593 "serviceDirectoryConfig": { # Contains information about Service Directory-backed zones. # This field links to the associated service directory namespace. Do not set this field for public zones or forwarding zones. 594 "kind": "dns#managedZoneServiceDirectoryConfig", 595 "namespace": { # Contains information about the namespace associated with the zone. 596 "deletionTime": "A String", # The time that the namespace backing this zone was deleted; an empty string if it still exists. This is in RFC3339 text format. Output only. 597 "kind": "dns#managedZoneServiceDirectoryConfigNamespace", 598 "namespaceUrl": "A String", # The fully qualified URL of the namespace associated with the zone. Format must be https://servicedirectory.googleapis.com/v1/projects/{project}/locations/{location}/namespaces/{namespace} 599 }, 600 }, 601 "visibility": "A String", # The zone's visibility: public zones are exposed to the Internet, while private zones are visible only to Virtual Private Cloud resources. 602} 603 604 clientOperationId: string, For mutating operation requests only. An optional identifier specified by the client. Must be unique for operation resources in the Operations collection. 605 x__xgafv: string, V1 error format. 606 Allowed values 607 1 - v1 error format 608 2 - v2 error format 609 610Returns: 611 An object of the form: 612 613 { # An operation represents a successful mutation performed on a Cloud DNS resource. Operations provide: - An audit log of server resource mutations. - A way to recover/retry API calls in the case where the response is never received by the caller. Use the caller specified client_operation_id. 614 "dnsKeyContext": { # Only populated if the operation targeted a DnsKey (output only). 615 "newValue": { # A DNSSEC key pair. # The post-operation DnsKey resource. 616 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. Immutable after creation time. 617 "creationTime": "A String", # The time that this resource was created in the control plane. This is in RFC3339 text format. Output only. 618 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the resource's function. 619 "digests": [ # Cryptographic hashes of the DNSKEY resource record associated with this DnsKey. These digests are needed to construct a DS record that points at this DNS key. Output only. 620 { 621 "digest": "A String", # The base-16 encoded bytes of this digest. Suitable for use in a DS resource record. 622 "type": "A String", # Specifies the algorithm used to calculate this digest. 623 }, 624 ], 625 "id": "A String", # Unique identifier for the resource; defined by the server (output only). 626 "isActive": True or False, # Active keys are used to sign subsequent changes to the ManagedZone. Inactive keys are still present as DNSKEY Resource Records for the use of resolvers validating existing signatures. 627 "keyLength": 42, # Length of the key in bits. Specified at creation time, and then immutable. 628 "keyTag": 42, # The key tag is a non-cryptographic hash of the a DNSKEY resource record associated with this DnsKey. The key tag can be used to identify a DNSKEY more quickly (but it is not a unique identifier). In particular, the key tag is used in a parent zone's DS record to point at the DNSKEY in this child ManagedZone. The key tag is a number in the range [0, 65535] and the algorithm to calculate it is specified in RFC4034 Appendix B. Output only. 629 "kind": "dns#dnsKey", 630 "publicKey": "A String", # Base64 encoded public half of this key. Output only. 631 "type": "A String", # One of "KEY_SIGNING" or "ZONE_SIGNING". Keys of type KEY_SIGNING have the Secure Entry Point flag set and, when active, are used to sign only resource record sets of type DNSKEY. Otherwise, the Secure Entry Point flag is cleared, and this key is used to sign only resource record sets of other types. Immutable after creation time. 632 }, 633 "oldValue": { # A DNSSEC key pair. # The pre-operation DnsKey resource. 634 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. Immutable after creation time. 635 "creationTime": "A String", # The time that this resource was created in the control plane. This is in RFC3339 text format. Output only. 636 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the resource's function. 637 "digests": [ # Cryptographic hashes of the DNSKEY resource record associated with this DnsKey. These digests are needed to construct a DS record that points at this DNS key. Output only. 638 { 639 "digest": "A String", # The base-16 encoded bytes of this digest. Suitable for use in a DS resource record. 640 "type": "A String", # Specifies the algorithm used to calculate this digest. 641 }, 642 ], 643 "id": "A String", # Unique identifier for the resource; defined by the server (output only). 644 "isActive": True or False, # Active keys are used to sign subsequent changes to the ManagedZone. Inactive keys are still present as DNSKEY Resource Records for the use of resolvers validating existing signatures. 645 "keyLength": 42, # Length of the key in bits. Specified at creation time, and then immutable. 646 "keyTag": 42, # The key tag is a non-cryptographic hash of the a DNSKEY resource record associated with this DnsKey. The key tag can be used to identify a DNSKEY more quickly (but it is not a unique identifier). In particular, the key tag is used in a parent zone's DS record to point at the DNSKEY in this child ManagedZone. The key tag is a number in the range [0, 65535] and the algorithm to calculate it is specified in RFC4034 Appendix B. Output only. 647 "kind": "dns#dnsKey", 648 "publicKey": "A String", # Base64 encoded public half of this key. Output only. 649 "type": "A String", # One of "KEY_SIGNING" or "ZONE_SIGNING". Keys of type KEY_SIGNING have the Secure Entry Point flag set and, when active, are used to sign only resource record sets of type DNSKEY. Otherwise, the Secure Entry Point flag is cleared, and this key is used to sign only resource record sets of other types. Immutable after creation time. 650 }, 651 }, 652 "id": "A String", # Unique identifier for the resource. This is the client_operation_id if the client specified it when the mutation was initiated, otherwise, it is generated by the server. The name must be 1-63 characters long and match the regular expression [-a-z0-9]? (output only) 653 "kind": "dns#operation", 654 "startTime": "A String", # The time that this operation was started by the server. This is in RFC3339 text format (output only). 655 "status": "A String", # Status of the operation. Can be one of the following: "PENDING" or "DONE" (output only). A status of "DONE" means that the request to update the authoritative servers has been sent, but the servers might not be updated yet. 656 "type": "A String", # Type of the operation. Operations include insert, update, and delete (output only). 657 "user": "A String", # User who requested the operation, for example: [email protected]. cloud-dns-system for operations automatically done by the system. (output only) 658 "zoneContext": { # Only populated if the operation targeted a ManagedZone (output only). 659 "newValue": { # A zone is a subtree of the DNS namespace under one administrative responsibility. A ManagedZone is a resource that represents a DNS zone hosted by the Cloud DNS service. # The post-operation ManagedZone resource. 660 "cloudLoggingConfig": { # Cloud Logging configurations for publicly visible zones. 661 "enableLogging": True or False, # If set, enable query logging for this ManagedZone. False by default, making logging opt-in. 662 "kind": "dns#managedZoneCloudLoggingConfig", 663 }, 664 "creationTime": "A String", # The time that this resource was created on the server. This is in RFC3339 text format. Output only. 665 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the managed zone's function. 666 "dnsName": "A String", # The DNS name of this managed zone, for instance "example.com.". 667 "dnssecConfig": { # DNSSEC configuration. 668 "defaultKeySpecs": [ # Specifies parameters for generating initial DnsKeys for this ManagedZone. Can only be changed while the state is OFF. 669 { # Parameters for DnsKey key generation. Used for generating initial keys for a new ManagedZone and as default when adding a new DnsKey. 670 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. 671 "keyLength": 42, # Length of the keys in bits. 672 "keyType": "A String", # Specifies whether this is a key signing key (KSK) or a zone signing key (ZSK). Key signing keys have the Secure Entry Point flag set and, when active, are only used to sign resource record sets of type DNSKEY. Zone signing keys do not have the Secure Entry Point flag set and are used to sign all other types of resource record sets. 673 "kind": "dns#dnsKeySpec", 674 }, 675 ], 676 "kind": "dns#managedZoneDnsSecConfig", 677 "nonExistence": "A String", # Specifies the mechanism for authenticated denial-of-existence responses. Can only be changed while the state is OFF. 678 "state": "A String", # Specifies whether DNSSEC is enabled, and what mode it is in. 679 }, 680 "forwardingConfig": { # The presence for this field indicates that outbound forwarding is enabled for this zone. The value of this field contains the set of destinations to forward to. 681 "kind": "dns#managedZoneForwardingConfig", 682 "targetNameServers": [ # List of target name servers to forward to. Cloud DNS selects the best available name server if more than one target is given. 683 { 684 "forwardingPath": "A String", # Forwarding path for this NameServerTarget. If unset or set to DEFAULT, Cloud DNS makes forwarding decisions based on IP address ranges; that is, RFC1918 addresses go to the VPC network, non-RFC1918 addresses go to the internet. When set to PRIVATE, Cloud DNS always sends queries through the VPC network for this target. 685 "ipv4Address": "A String", # IPv4 address of a target name server. 686 "ipv6Address": "A String", # IPv6 address of a target name server. Does not accept both fields (ipv4 & ipv6) being populated. 687 "kind": "dns#managedZoneForwardingConfigNameServerTarget", 688 }, 689 ], 690 }, 691 "id": "A String", # Unique identifier for the resource; defined by the server (output only) 692 "kind": "dns#managedZone", 693 "labels": { # User labels. 694 "a_key": "A String", 695 }, 696 "name": "A String", # User assigned name for this resource. Must be unique within the project. The name must be 1-63 characters long, must begin with a letter, end with a letter or digit, and only contain lowercase letters, digits or dashes. 697 "nameServerSet": "A String", # Optionally specifies the NameServerSet for this ManagedZone. A NameServerSet is a set of DNS name servers that all host the same ManagedZones. Most users leave this field unset. If you need to use this field, contact your account team. 698 "nameServers": [ # Delegate your managed_zone to these virtual name servers; defined by the server (output only) 699 "A String", 700 ], 701 "peeringConfig": { # The presence of this field indicates that DNS Peering is enabled for this zone. The value of this field contains the network to peer with. 702 "kind": "dns#managedZonePeeringConfig", 703 "targetNetwork": { # The network with which to peer. 704 "deactivateTime": "A String", # The time at which the zone was deactivated, in RFC 3339 date-time format. An empty string indicates that the peering connection is active. The producer network can deactivate a zone. The zone is automatically deactivated if the producer network that the zone targeted is deleted. Output only. 705 "kind": "dns#managedZonePeeringConfigTargetNetwork", 706 "networkUrl": "A String", # The fully qualified URL of the VPC network to forward queries to. This should be formatted like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 707 }, 708 }, 709 "privateVisibilityConfig": { # For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. 710 "gkeClusters": [ # The list of Google Kubernetes Engine clusters that can see this zone. 711 { 712 "gkeClusterName": "A String", # The resource name of the cluster to bind this ManagedZone to. This should be specified in the format like: projects/*/locations/*/clusters/*. This is referenced from GKE projects.locations.clusters.get API: https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1/projects.locations.clusters/get 713 "kind": "dns#managedZonePrivateVisibilityConfigGKECluster", 714 }, 715 ], 716 "kind": "dns#managedZonePrivateVisibilityConfig", 717 "networks": [ # The list of VPC networks that can see this zone. 718 { 719 "kind": "dns#managedZonePrivateVisibilityConfigNetwork", 720 "networkUrl": "A String", # The fully qualified URL of the VPC network to bind to. Format this URL like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 721 }, 722 ], 723 }, 724 "reverseLookupConfig": { # The presence of this field indicates that this is a managed reverse lookup zone and Cloud DNS resolves reverse lookup queries using automatically configured records for VPC resources. This only applies to networks listed under private_visibility_config. 725 "kind": "dns#managedZoneReverseLookupConfig", 726 }, 727 "serviceDirectoryConfig": { # Contains information about Service Directory-backed zones. # This field links to the associated service directory namespace. Do not set this field for public zones or forwarding zones. 728 "kind": "dns#managedZoneServiceDirectoryConfig", 729 "namespace": { # Contains information about the namespace associated with the zone. 730 "deletionTime": "A String", # The time that the namespace backing this zone was deleted; an empty string if it still exists. This is in RFC3339 text format. Output only. 731 "kind": "dns#managedZoneServiceDirectoryConfigNamespace", 732 "namespaceUrl": "A String", # The fully qualified URL of the namespace associated with the zone. Format must be https://servicedirectory.googleapis.com/v1/projects/{project}/locations/{location}/namespaces/{namespace} 733 }, 734 }, 735 "visibility": "A String", # The zone's visibility: public zones are exposed to the Internet, while private zones are visible only to Virtual Private Cloud resources. 736 }, 737 "oldValue": { # A zone is a subtree of the DNS namespace under one administrative responsibility. A ManagedZone is a resource that represents a DNS zone hosted by the Cloud DNS service. # The pre-operation ManagedZone resource. 738 "cloudLoggingConfig": { # Cloud Logging configurations for publicly visible zones. 739 "enableLogging": True or False, # If set, enable query logging for this ManagedZone. False by default, making logging opt-in. 740 "kind": "dns#managedZoneCloudLoggingConfig", 741 }, 742 "creationTime": "A String", # The time that this resource was created on the server. This is in RFC3339 text format. Output only. 743 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the managed zone's function. 744 "dnsName": "A String", # The DNS name of this managed zone, for instance "example.com.". 745 "dnssecConfig": { # DNSSEC configuration. 746 "defaultKeySpecs": [ # Specifies parameters for generating initial DnsKeys for this ManagedZone. Can only be changed while the state is OFF. 747 { # Parameters for DnsKey key generation. Used for generating initial keys for a new ManagedZone and as default when adding a new DnsKey. 748 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. 749 "keyLength": 42, # Length of the keys in bits. 750 "keyType": "A String", # Specifies whether this is a key signing key (KSK) or a zone signing key (ZSK). Key signing keys have the Secure Entry Point flag set and, when active, are only used to sign resource record sets of type DNSKEY. Zone signing keys do not have the Secure Entry Point flag set and are used to sign all other types of resource record sets. 751 "kind": "dns#dnsKeySpec", 752 }, 753 ], 754 "kind": "dns#managedZoneDnsSecConfig", 755 "nonExistence": "A String", # Specifies the mechanism for authenticated denial-of-existence responses. Can only be changed while the state is OFF. 756 "state": "A String", # Specifies whether DNSSEC is enabled, and what mode it is in. 757 }, 758 "forwardingConfig": { # The presence for this field indicates that outbound forwarding is enabled for this zone. The value of this field contains the set of destinations to forward to. 759 "kind": "dns#managedZoneForwardingConfig", 760 "targetNameServers": [ # List of target name servers to forward to. Cloud DNS selects the best available name server if more than one target is given. 761 { 762 "forwardingPath": "A String", # Forwarding path for this NameServerTarget. If unset or set to DEFAULT, Cloud DNS makes forwarding decisions based on IP address ranges; that is, RFC1918 addresses go to the VPC network, non-RFC1918 addresses go to the internet. When set to PRIVATE, Cloud DNS always sends queries through the VPC network for this target. 763 "ipv4Address": "A String", # IPv4 address of a target name server. 764 "ipv6Address": "A String", # IPv6 address of a target name server. Does not accept both fields (ipv4 & ipv6) being populated. 765 "kind": "dns#managedZoneForwardingConfigNameServerTarget", 766 }, 767 ], 768 }, 769 "id": "A String", # Unique identifier for the resource; defined by the server (output only) 770 "kind": "dns#managedZone", 771 "labels": { # User labels. 772 "a_key": "A String", 773 }, 774 "name": "A String", # User assigned name for this resource. Must be unique within the project. The name must be 1-63 characters long, must begin with a letter, end with a letter or digit, and only contain lowercase letters, digits or dashes. 775 "nameServerSet": "A String", # Optionally specifies the NameServerSet for this ManagedZone. A NameServerSet is a set of DNS name servers that all host the same ManagedZones. Most users leave this field unset. If you need to use this field, contact your account team. 776 "nameServers": [ # Delegate your managed_zone to these virtual name servers; defined by the server (output only) 777 "A String", 778 ], 779 "peeringConfig": { # The presence of this field indicates that DNS Peering is enabled for this zone. The value of this field contains the network to peer with. 780 "kind": "dns#managedZonePeeringConfig", 781 "targetNetwork": { # The network with which to peer. 782 "deactivateTime": "A String", # The time at which the zone was deactivated, in RFC 3339 date-time format. An empty string indicates that the peering connection is active. The producer network can deactivate a zone. The zone is automatically deactivated if the producer network that the zone targeted is deleted. Output only. 783 "kind": "dns#managedZonePeeringConfigTargetNetwork", 784 "networkUrl": "A String", # The fully qualified URL of the VPC network to forward queries to. This should be formatted like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 785 }, 786 }, 787 "privateVisibilityConfig": { # For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. 788 "gkeClusters": [ # The list of Google Kubernetes Engine clusters that can see this zone. 789 { 790 "gkeClusterName": "A String", # The resource name of the cluster to bind this ManagedZone to. This should be specified in the format like: projects/*/locations/*/clusters/*. This is referenced from GKE projects.locations.clusters.get API: https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1/projects.locations.clusters/get 791 "kind": "dns#managedZonePrivateVisibilityConfigGKECluster", 792 }, 793 ], 794 "kind": "dns#managedZonePrivateVisibilityConfig", 795 "networks": [ # The list of VPC networks that can see this zone. 796 { 797 "kind": "dns#managedZonePrivateVisibilityConfigNetwork", 798 "networkUrl": "A String", # The fully qualified URL of the VPC network to bind to. Format this URL like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 799 }, 800 ], 801 }, 802 "reverseLookupConfig": { # The presence of this field indicates that this is a managed reverse lookup zone and Cloud DNS resolves reverse lookup queries using automatically configured records for VPC resources. This only applies to networks listed under private_visibility_config. 803 "kind": "dns#managedZoneReverseLookupConfig", 804 }, 805 "serviceDirectoryConfig": { # Contains information about Service Directory-backed zones. # This field links to the associated service directory namespace. Do not set this field for public zones or forwarding zones. 806 "kind": "dns#managedZoneServiceDirectoryConfig", 807 "namespace": { # Contains information about the namespace associated with the zone. 808 "deletionTime": "A String", # The time that the namespace backing this zone was deleted; an empty string if it still exists. This is in RFC3339 text format. Output only. 809 "kind": "dns#managedZoneServiceDirectoryConfigNamespace", 810 "namespaceUrl": "A String", # The fully qualified URL of the namespace associated with the zone. Format must be https://servicedirectory.googleapis.com/v1/projects/{project}/locations/{location}/namespaces/{namespace} 811 }, 812 }, 813 "visibility": "A String", # The zone's visibility: public zones are exposed to the Internet, while private zones are visible only to Virtual Private Cloud resources. 814 }, 815 }, 816}</pre> 817</div> 818 819<div class="method"> 820 <code class="details" id="update">update(project, managedZone, body=None, clientOperationId=None, x__xgafv=None)</code> 821 <pre>Updates an existing ManagedZone. 822 823Args: 824 project: string, Identifies the project addressed by this request. (required) 825 managedZone: string, Identifies the managed zone addressed by this request. Can be the managed zone name or ID. (required) 826 body: object, The request body. 827 The object takes the form of: 828 829{ # A zone is a subtree of the DNS namespace under one administrative responsibility. A ManagedZone is a resource that represents a DNS zone hosted by the Cloud DNS service. 830 "cloudLoggingConfig": { # Cloud Logging configurations for publicly visible zones. 831 "enableLogging": True or False, # If set, enable query logging for this ManagedZone. False by default, making logging opt-in. 832 "kind": "dns#managedZoneCloudLoggingConfig", 833 }, 834 "creationTime": "A String", # The time that this resource was created on the server. This is in RFC3339 text format. Output only. 835 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the managed zone's function. 836 "dnsName": "A String", # The DNS name of this managed zone, for instance "example.com.". 837 "dnssecConfig": { # DNSSEC configuration. 838 "defaultKeySpecs": [ # Specifies parameters for generating initial DnsKeys for this ManagedZone. Can only be changed while the state is OFF. 839 { # Parameters for DnsKey key generation. Used for generating initial keys for a new ManagedZone and as default when adding a new DnsKey. 840 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. 841 "keyLength": 42, # Length of the keys in bits. 842 "keyType": "A String", # Specifies whether this is a key signing key (KSK) or a zone signing key (ZSK). Key signing keys have the Secure Entry Point flag set and, when active, are only used to sign resource record sets of type DNSKEY. Zone signing keys do not have the Secure Entry Point flag set and are used to sign all other types of resource record sets. 843 "kind": "dns#dnsKeySpec", 844 }, 845 ], 846 "kind": "dns#managedZoneDnsSecConfig", 847 "nonExistence": "A String", # Specifies the mechanism for authenticated denial-of-existence responses. Can only be changed while the state is OFF. 848 "state": "A String", # Specifies whether DNSSEC is enabled, and what mode it is in. 849 }, 850 "forwardingConfig": { # The presence for this field indicates that outbound forwarding is enabled for this zone. The value of this field contains the set of destinations to forward to. 851 "kind": "dns#managedZoneForwardingConfig", 852 "targetNameServers": [ # List of target name servers to forward to. Cloud DNS selects the best available name server if more than one target is given. 853 { 854 "forwardingPath": "A String", # Forwarding path for this NameServerTarget. If unset or set to DEFAULT, Cloud DNS makes forwarding decisions based on IP address ranges; that is, RFC1918 addresses go to the VPC network, non-RFC1918 addresses go to the internet. When set to PRIVATE, Cloud DNS always sends queries through the VPC network for this target. 855 "ipv4Address": "A String", # IPv4 address of a target name server. 856 "ipv6Address": "A String", # IPv6 address of a target name server. Does not accept both fields (ipv4 & ipv6) being populated. 857 "kind": "dns#managedZoneForwardingConfigNameServerTarget", 858 }, 859 ], 860 }, 861 "id": "A String", # Unique identifier for the resource; defined by the server (output only) 862 "kind": "dns#managedZone", 863 "labels": { # User labels. 864 "a_key": "A String", 865 }, 866 "name": "A String", # User assigned name for this resource. Must be unique within the project. The name must be 1-63 characters long, must begin with a letter, end with a letter or digit, and only contain lowercase letters, digits or dashes. 867 "nameServerSet": "A String", # Optionally specifies the NameServerSet for this ManagedZone. A NameServerSet is a set of DNS name servers that all host the same ManagedZones. Most users leave this field unset. If you need to use this field, contact your account team. 868 "nameServers": [ # Delegate your managed_zone to these virtual name servers; defined by the server (output only) 869 "A String", 870 ], 871 "peeringConfig": { # The presence of this field indicates that DNS Peering is enabled for this zone. The value of this field contains the network to peer with. 872 "kind": "dns#managedZonePeeringConfig", 873 "targetNetwork": { # The network with which to peer. 874 "deactivateTime": "A String", # The time at which the zone was deactivated, in RFC 3339 date-time format. An empty string indicates that the peering connection is active. The producer network can deactivate a zone. The zone is automatically deactivated if the producer network that the zone targeted is deleted. Output only. 875 "kind": "dns#managedZonePeeringConfigTargetNetwork", 876 "networkUrl": "A String", # The fully qualified URL of the VPC network to forward queries to. This should be formatted like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 877 }, 878 }, 879 "privateVisibilityConfig": { # For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. 880 "gkeClusters": [ # The list of Google Kubernetes Engine clusters that can see this zone. 881 { 882 "gkeClusterName": "A String", # The resource name of the cluster to bind this ManagedZone to. This should be specified in the format like: projects/*/locations/*/clusters/*. This is referenced from GKE projects.locations.clusters.get API: https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1/projects.locations.clusters/get 883 "kind": "dns#managedZonePrivateVisibilityConfigGKECluster", 884 }, 885 ], 886 "kind": "dns#managedZonePrivateVisibilityConfig", 887 "networks": [ # The list of VPC networks that can see this zone. 888 { 889 "kind": "dns#managedZonePrivateVisibilityConfigNetwork", 890 "networkUrl": "A String", # The fully qualified URL of the VPC network to bind to. Format this URL like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 891 }, 892 ], 893 }, 894 "reverseLookupConfig": { # The presence of this field indicates that this is a managed reverse lookup zone and Cloud DNS resolves reverse lookup queries using automatically configured records for VPC resources. This only applies to networks listed under private_visibility_config. 895 "kind": "dns#managedZoneReverseLookupConfig", 896 }, 897 "serviceDirectoryConfig": { # Contains information about Service Directory-backed zones. # This field links to the associated service directory namespace. Do not set this field for public zones or forwarding zones. 898 "kind": "dns#managedZoneServiceDirectoryConfig", 899 "namespace": { # Contains information about the namespace associated with the zone. 900 "deletionTime": "A String", # The time that the namespace backing this zone was deleted; an empty string if it still exists. This is in RFC3339 text format. Output only. 901 "kind": "dns#managedZoneServiceDirectoryConfigNamespace", 902 "namespaceUrl": "A String", # The fully qualified URL of the namespace associated with the zone. Format must be https://servicedirectory.googleapis.com/v1/projects/{project}/locations/{location}/namespaces/{namespace} 903 }, 904 }, 905 "visibility": "A String", # The zone's visibility: public zones are exposed to the Internet, while private zones are visible only to Virtual Private Cloud resources. 906} 907 908 clientOperationId: string, For mutating operation requests only. An optional identifier specified by the client. Must be unique for operation resources in the Operations collection. 909 x__xgafv: string, V1 error format. 910 Allowed values 911 1 - v1 error format 912 2 - v2 error format 913 914Returns: 915 An object of the form: 916 917 { # An operation represents a successful mutation performed on a Cloud DNS resource. Operations provide: - An audit log of server resource mutations. - A way to recover/retry API calls in the case where the response is never received by the caller. Use the caller specified client_operation_id. 918 "dnsKeyContext": { # Only populated if the operation targeted a DnsKey (output only). 919 "newValue": { # A DNSSEC key pair. # The post-operation DnsKey resource. 920 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. Immutable after creation time. 921 "creationTime": "A String", # The time that this resource was created in the control plane. This is in RFC3339 text format. Output only. 922 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the resource's function. 923 "digests": [ # Cryptographic hashes of the DNSKEY resource record associated with this DnsKey. These digests are needed to construct a DS record that points at this DNS key. Output only. 924 { 925 "digest": "A String", # The base-16 encoded bytes of this digest. Suitable for use in a DS resource record. 926 "type": "A String", # Specifies the algorithm used to calculate this digest. 927 }, 928 ], 929 "id": "A String", # Unique identifier for the resource; defined by the server (output only). 930 "isActive": True or False, # Active keys are used to sign subsequent changes to the ManagedZone. Inactive keys are still present as DNSKEY Resource Records for the use of resolvers validating existing signatures. 931 "keyLength": 42, # Length of the key in bits. Specified at creation time, and then immutable. 932 "keyTag": 42, # The key tag is a non-cryptographic hash of the a DNSKEY resource record associated with this DnsKey. The key tag can be used to identify a DNSKEY more quickly (but it is not a unique identifier). In particular, the key tag is used in a parent zone's DS record to point at the DNSKEY in this child ManagedZone. The key tag is a number in the range [0, 65535] and the algorithm to calculate it is specified in RFC4034 Appendix B. Output only. 933 "kind": "dns#dnsKey", 934 "publicKey": "A String", # Base64 encoded public half of this key. Output only. 935 "type": "A String", # One of "KEY_SIGNING" or "ZONE_SIGNING". Keys of type KEY_SIGNING have the Secure Entry Point flag set and, when active, are used to sign only resource record sets of type DNSKEY. Otherwise, the Secure Entry Point flag is cleared, and this key is used to sign only resource record sets of other types. Immutable after creation time. 936 }, 937 "oldValue": { # A DNSSEC key pair. # The pre-operation DnsKey resource. 938 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. Immutable after creation time. 939 "creationTime": "A String", # The time that this resource was created in the control plane. This is in RFC3339 text format. Output only. 940 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the resource's function. 941 "digests": [ # Cryptographic hashes of the DNSKEY resource record associated with this DnsKey. These digests are needed to construct a DS record that points at this DNS key. Output only. 942 { 943 "digest": "A String", # The base-16 encoded bytes of this digest. Suitable for use in a DS resource record. 944 "type": "A String", # Specifies the algorithm used to calculate this digest. 945 }, 946 ], 947 "id": "A String", # Unique identifier for the resource; defined by the server (output only). 948 "isActive": True or False, # Active keys are used to sign subsequent changes to the ManagedZone. Inactive keys are still present as DNSKEY Resource Records for the use of resolvers validating existing signatures. 949 "keyLength": 42, # Length of the key in bits. Specified at creation time, and then immutable. 950 "keyTag": 42, # The key tag is a non-cryptographic hash of the a DNSKEY resource record associated with this DnsKey. The key tag can be used to identify a DNSKEY more quickly (but it is not a unique identifier). In particular, the key tag is used in a parent zone's DS record to point at the DNSKEY in this child ManagedZone. The key tag is a number in the range [0, 65535] and the algorithm to calculate it is specified in RFC4034 Appendix B. Output only. 951 "kind": "dns#dnsKey", 952 "publicKey": "A String", # Base64 encoded public half of this key. Output only. 953 "type": "A String", # One of "KEY_SIGNING" or "ZONE_SIGNING". Keys of type KEY_SIGNING have the Secure Entry Point flag set and, when active, are used to sign only resource record sets of type DNSKEY. Otherwise, the Secure Entry Point flag is cleared, and this key is used to sign only resource record sets of other types. Immutable after creation time. 954 }, 955 }, 956 "id": "A String", # Unique identifier for the resource. This is the client_operation_id if the client specified it when the mutation was initiated, otherwise, it is generated by the server. The name must be 1-63 characters long and match the regular expression [-a-z0-9]? (output only) 957 "kind": "dns#operation", 958 "startTime": "A String", # The time that this operation was started by the server. This is in RFC3339 text format (output only). 959 "status": "A String", # Status of the operation. Can be one of the following: "PENDING" or "DONE" (output only). A status of "DONE" means that the request to update the authoritative servers has been sent, but the servers might not be updated yet. 960 "type": "A String", # Type of the operation. Operations include insert, update, and delete (output only). 961 "user": "A String", # User who requested the operation, for example: [email protected]. cloud-dns-system for operations automatically done by the system. (output only) 962 "zoneContext": { # Only populated if the operation targeted a ManagedZone (output only). 963 "newValue": { # A zone is a subtree of the DNS namespace under one administrative responsibility. A ManagedZone is a resource that represents a DNS zone hosted by the Cloud DNS service. # The post-operation ManagedZone resource. 964 "cloudLoggingConfig": { # Cloud Logging configurations for publicly visible zones. 965 "enableLogging": True or False, # If set, enable query logging for this ManagedZone. False by default, making logging opt-in. 966 "kind": "dns#managedZoneCloudLoggingConfig", 967 }, 968 "creationTime": "A String", # The time that this resource was created on the server. This is in RFC3339 text format. Output only. 969 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the managed zone's function. 970 "dnsName": "A String", # The DNS name of this managed zone, for instance "example.com.". 971 "dnssecConfig": { # DNSSEC configuration. 972 "defaultKeySpecs": [ # Specifies parameters for generating initial DnsKeys for this ManagedZone. Can only be changed while the state is OFF. 973 { # Parameters for DnsKey key generation. Used for generating initial keys for a new ManagedZone and as default when adding a new DnsKey. 974 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. 975 "keyLength": 42, # Length of the keys in bits. 976 "keyType": "A String", # Specifies whether this is a key signing key (KSK) or a zone signing key (ZSK). Key signing keys have the Secure Entry Point flag set and, when active, are only used to sign resource record sets of type DNSKEY. Zone signing keys do not have the Secure Entry Point flag set and are used to sign all other types of resource record sets. 977 "kind": "dns#dnsKeySpec", 978 }, 979 ], 980 "kind": "dns#managedZoneDnsSecConfig", 981 "nonExistence": "A String", # Specifies the mechanism for authenticated denial-of-existence responses. Can only be changed while the state is OFF. 982 "state": "A String", # Specifies whether DNSSEC is enabled, and what mode it is in. 983 }, 984 "forwardingConfig": { # The presence for this field indicates that outbound forwarding is enabled for this zone. The value of this field contains the set of destinations to forward to. 985 "kind": "dns#managedZoneForwardingConfig", 986 "targetNameServers": [ # List of target name servers to forward to. Cloud DNS selects the best available name server if more than one target is given. 987 { 988 "forwardingPath": "A String", # Forwarding path for this NameServerTarget. If unset or set to DEFAULT, Cloud DNS makes forwarding decisions based on IP address ranges; that is, RFC1918 addresses go to the VPC network, non-RFC1918 addresses go to the internet. When set to PRIVATE, Cloud DNS always sends queries through the VPC network for this target. 989 "ipv4Address": "A String", # IPv4 address of a target name server. 990 "ipv6Address": "A String", # IPv6 address of a target name server. Does not accept both fields (ipv4 & ipv6) being populated. 991 "kind": "dns#managedZoneForwardingConfigNameServerTarget", 992 }, 993 ], 994 }, 995 "id": "A String", # Unique identifier for the resource; defined by the server (output only) 996 "kind": "dns#managedZone", 997 "labels": { # User labels. 998 "a_key": "A String", 999 }, 1000 "name": "A String", # User assigned name for this resource. Must be unique within the project. The name must be 1-63 characters long, must begin with a letter, end with a letter or digit, and only contain lowercase letters, digits or dashes. 1001 "nameServerSet": "A String", # Optionally specifies the NameServerSet for this ManagedZone. A NameServerSet is a set of DNS name servers that all host the same ManagedZones. Most users leave this field unset. If you need to use this field, contact your account team. 1002 "nameServers": [ # Delegate your managed_zone to these virtual name servers; defined by the server (output only) 1003 "A String", 1004 ], 1005 "peeringConfig": { # The presence of this field indicates that DNS Peering is enabled for this zone. The value of this field contains the network to peer with. 1006 "kind": "dns#managedZonePeeringConfig", 1007 "targetNetwork": { # The network with which to peer. 1008 "deactivateTime": "A String", # The time at which the zone was deactivated, in RFC 3339 date-time format. An empty string indicates that the peering connection is active. The producer network can deactivate a zone. The zone is automatically deactivated if the producer network that the zone targeted is deleted. Output only. 1009 "kind": "dns#managedZonePeeringConfigTargetNetwork", 1010 "networkUrl": "A String", # The fully qualified URL of the VPC network to forward queries to. This should be formatted like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 1011 }, 1012 }, 1013 "privateVisibilityConfig": { # For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. 1014 "gkeClusters": [ # The list of Google Kubernetes Engine clusters that can see this zone. 1015 { 1016 "gkeClusterName": "A String", # The resource name of the cluster to bind this ManagedZone to. This should be specified in the format like: projects/*/locations/*/clusters/*. This is referenced from GKE projects.locations.clusters.get API: https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1/projects.locations.clusters/get 1017 "kind": "dns#managedZonePrivateVisibilityConfigGKECluster", 1018 }, 1019 ], 1020 "kind": "dns#managedZonePrivateVisibilityConfig", 1021 "networks": [ # The list of VPC networks that can see this zone. 1022 { 1023 "kind": "dns#managedZonePrivateVisibilityConfigNetwork", 1024 "networkUrl": "A String", # The fully qualified URL of the VPC network to bind to. Format this URL like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 1025 }, 1026 ], 1027 }, 1028 "reverseLookupConfig": { # The presence of this field indicates that this is a managed reverse lookup zone and Cloud DNS resolves reverse lookup queries using automatically configured records for VPC resources. This only applies to networks listed under private_visibility_config. 1029 "kind": "dns#managedZoneReverseLookupConfig", 1030 }, 1031 "serviceDirectoryConfig": { # Contains information about Service Directory-backed zones. # This field links to the associated service directory namespace. Do not set this field for public zones or forwarding zones. 1032 "kind": "dns#managedZoneServiceDirectoryConfig", 1033 "namespace": { # Contains information about the namespace associated with the zone. 1034 "deletionTime": "A String", # The time that the namespace backing this zone was deleted; an empty string if it still exists. This is in RFC3339 text format. Output only. 1035 "kind": "dns#managedZoneServiceDirectoryConfigNamespace", 1036 "namespaceUrl": "A String", # The fully qualified URL of the namespace associated with the zone. Format must be https://servicedirectory.googleapis.com/v1/projects/{project}/locations/{location}/namespaces/{namespace} 1037 }, 1038 }, 1039 "visibility": "A String", # The zone's visibility: public zones are exposed to the Internet, while private zones are visible only to Virtual Private Cloud resources. 1040 }, 1041 "oldValue": { # A zone is a subtree of the DNS namespace under one administrative responsibility. A ManagedZone is a resource that represents a DNS zone hosted by the Cloud DNS service. # The pre-operation ManagedZone resource. 1042 "cloudLoggingConfig": { # Cloud Logging configurations for publicly visible zones. 1043 "enableLogging": True or False, # If set, enable query logging for this ManagedZone. False by default, making logging opt-in. 1044 "kind": "dns#managedZoneCloudLoggingConfig", 1045 }, 1046 "creationTime": "A String", # The time that this resource was created on the server. This is in RFC3339 text format. Output only. 1047 "description": "A String", # A mutable string of at most 1024 characters associated with this resource for the user's convenience. Has no effect on the managed zone's function. 1048 "dnsName": "A String", # The DNS name of this managed zone, for instance "example.com.". 1049 "dnssecConfig": { # DNSSEC configuration. 1050 "defaultKeySpecs": [ # Specifies parameters for generating initial DnsKeys for this ManagedZone. Can only be changed while the state is OFF. 1051 { # Parameters for DnsKey key generation. Used for generating initial keys for a new ManagedZone and as default when adding a new DnsKey. 1052 "algorithm": "A String", # String mnemonic specifying the DNSSEC algorithm of this key. 1053 "keyLength": 42, # Length of the keys in bits. 1054 "keyType": "A String", # Specifies whether this is a key signing key (KSK) or a zone signing key (ZSK). Key signing keys have the Secure Entry Point flag set and, when active, are only used to sign resource record sets of type DNSKEY. Zone signing keys do not have the Secure Entry Point flag set and are used to sign all other types of resource record sets. 1055 "kind": "dns#dnsKeySpec", 1056 }, 1057 ], 1058 "kind": "dns#managedZoneDnsSecConfig", 1059 "nonExistence": "A String", # Specifies the mechanism for authenticated denial-of-existence responses. Can only be changed while the state is OFF. 1060 "state": "A String", # Specifies whether DNSSEC is enabled, and what mode it is in. 1061 }, 1062 "forwardingConfig": { # The presence for this field indicates that outbound forwarding is enabled for this zone. The value of this field contains the set of destinations to forward to. 1063 "kind": "dns#managedZoneForwardingConfig", 1064 "targetNameServers": [ # List of target name servers to forward to. Cloud DNS selects the best available name server if more than one target is given. 1065 { 1066 "forwardingPath": "A String", # Forwarding path for this NameServerTarget. If unset or set to DEFAULT, Cloud DNS makes forwarding decisions based on IP address ranges; that is, RFC1918 addresses go to the VPC network, non-RFC1918 addresses go to the internet. When set to PRIVATE, Cloud DNS always sends queries through the VPC network for this target. 1067 "ipv4Address": "A String", # IPv4 address of a target name server. 1068 "ipv6Address": "A String", # IPv6 address of a target name server. Does not accept both fields (ipv4 & ipv6) being populated. 1069 "kind": "dns#managedZoneForwardingConfigNameServerTarget", 1070 }, 1071 ], 1072 }, 1073 "id": "A String", # Unique identifier for the resource; defined by the server (output only) 1074 "kind": "dns#managedZone", 1075 "labels": { # User labels. 1076 "a_key": "A String", 1077 }, 1078 "name": "A String", # User assigned name for this resource. Must be unique within the project. The name must be 1-63 characters long, must begin with a letter, end with a letter or digit, and only contain lowercase letters, digits or dashes. 1079 "nameServerSet": "A String", # Optionally specifies the NameServerSet for this ManagedZone. A NameServerSet is a set of DNS name servers that all host the same ManagedZones. Most users leave this field unset. If you need to use this field, contact your account team. 1080 "nameServers": [ # Delegate your managed_zone to these virtual name servers; defined by the server (output only) 1081 "A String", 1082 ], 1083 "peeringConfig": { # The presence of this field indicates that DNS Peering is enabled for this zone. The value of this field contains the network to peer with. 1084 "kind": "dns#managedZonePeeringConfig", 1085 "targetNetwork": { # The network with which to peer. 1086 "deactivateTime": "A String", # The time at which the zone was deactivated, in RFC 3339 date-time format. An empty string indicates that the peering connection is active. The producer network can deactivate a zone. The zone is automatically deactivated if the producer network that the zone targeted is deleted. Output only. 1087 "kind": "dns#managedZonePeeringConfigTargetNetwork", 1088 "networkUrl": "A String", # The fully qualified URL of the VPC network to forward queries to. This should be formatted like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 1089 }, 1090 }, 1091 "privateVisibilityConfig": { # For privately visible zones, the set of Virtual Private Cloud resources that the zone is visible from. 1092 "gkeClusters": [ # The list of Google Kubernetes Engine clusters that can see this zone. 1093 { 1094 "gkeClusterName": "A String", # The resource name of the cluster to bind this ManagedZone to. This should be specified in the format like: projects/*/locations/*/clusters/*. This is referenced from GKE projects.locations.clusters.get API: https://cloud.google.com/kubernetes-engine/docs/reference/rest/v1/projects.locations.clusters/get 1095 "kind": "dns#managedZonePrivateVisibilityConfigGKECluster", 1096 }, 1097 ], 1098 "kind": "dns#managedZonePrivateVisibilityConfig", 1099 "networks": [ # The list of VPC networks that can see this zone. 1100 { 1101 "kind": "dns#managedZonePrivateVisibilityConfigNetwork", 1102 "networkUrl": "A String", # The fully qualified URL of the VPC network to bind to. Format this URL like https://www.googleapis.com/compute/v1/projects/{project}/global/networks/{network} 1103 }, 1104 ], 1105 }, 1106 "reverseLookupConfig": { # The presence of this field indicates that this is a managed reverse lookup zone and Cloud DNS resolves reverse lookup queries using automatically configured records for VPC resources. This only applies to networks listed under private_visibility_config. 1107 "kind": "dns#managedZoneReverseLookupConfig", 1108 }, 1109 "serviceDirectoryConfig": { # Contains information about Service Directory-backed zones. # This field links to the associated service directory namespace. Do not set this field for public zones or forwarding zones. 1110 "kind": "dns#managedZoneServiceDirectoryConfig", 1111 "namespace": { # Contains information about the namespace associated with the zone. 1112 "deletionTime": "A String", # The time that the namespace backing this zone was deleted; an empty string if it still exists. This is in RFC3339 text format. Output only. 1113 "kind": "dns#managedZoneServiceDirectoryConfigNamespace", 1114 "namespaceUrl": "A String", # The fully qualified URL of the namespace associated with the zone. Format must be https://servicedirectory.googleapis.com/v1/projects/{project}/locations/{location}/namespaces/{namespace} 1115 }, 1116 }, 1117 "visibility": "A String", # The zone's visibility: public zones are exposed to the Internet, while private zones are visible only to Virtual Private Cloud resources. 1118 }, 1119 }, 1120}</pre> 1121</div> 1122 1123</body></html>