Tencent Kubernetes Engine
Last updated: 2025-12-04 09:14:53
Fundamental information
| Product | Abbreviation in CAM | Console | Authorization by Tag | Authorization Granularity | IP Restriction |
|---|---|---|---|---|---|
| Tencent Kubernetes Engine | tke | Supported | Supported | Resource level | Partially supported |
Note:
The authorization granularity of cloud products is divided into three levels: service level, operation level, and resource level, based on the degree of granularity.
- Service level: It defines whether a user has the permission to access the service as a whole. A user can have either full access or no access to the service. For the authorization granularity of cloud products at service level, the authorization of specific APIs are not supported.
- Operation level: It defines whether a user has the permission to call a specific API of the service. For example, granting an account read-only access to the CVM service is an authorization at the operation level.
- Resource level: It is the finest authorization granularity which defines whether a user has the permission to access specific resources. For example, granting an account read/write access to a specific CVM instance is an authorization at the resource level.
API authorization granularity
Two authorization granularity levels of API are supported: resource level, and operation level.
- Resource level: It supports the authorization of a specific resource.
- Operation level: It does not support the authorization of a specific resource. If the policy syntax restricts a specific resource during authorization, CAM will determine that this API is not within the scope of authorization, and deem it as unauthorized.
Write operations
| API | API Description | Authorization Granularity | Six-segment Resource Description | IP Restriction |
|---|---|---|---|---|
| AcquireClusterAdminRole | acquire cluster RBAC admin role | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| AcquireEKSClusterAdminRole | Acquire the EKS cluster administrator role | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ActivateEKSCluster | active eks cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| AddClusterCIDR | add cluster CIDRs to cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| AddExistedInstances | Add existed nodes to cluster | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId qcs::cvm:${region}:uin/${uin}:instance/$instanceId |
Supported |
| AddExistedInstancesToEISResourceGroup | add instance to eis cluster resource group | Resource level | qcs::tke:${Region}:uin/:eisCluster/${ClusterId} | not supported |
| AddNodeToNodePool | move nodes in a cluster to a node pool | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| AddSuperNodePrepaidQuota | Add Super Node Prepaid Quota | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| AddTkeEdgeAlarmPolicy | add alarm policy for edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterInstanceId} | Supported |
| CancelClusterRelease | Cancel release installing | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| CancelUpgradePlan | CancelUpgradePlan | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterID} | Supported |
| ClearExpiredClusterAuth | clear expired permission information in the cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ControlNativeTask | Native Task Control | Operation level | * | Supported |
| ConvertRegularToNativeNode | Convert regular node to native node | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterID} | Supported |
| CreateBackupStorageLocation | Create Backup Storage Location | Resource level | qcs::cos:${StorageRegion}:uid/${appId}:${Bucket}/${Path} | Supported |
| CreateBootstrapToken | Create BootstrapToken | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| CreateCLSLogConfig | create log config | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} qcs::cls:${region}:uin/${uin}:logset/${LogSet} qcs::cls:${region}:uin/${uin}:topic/${Topic} |
Supported |
| CreateCluster | Create cluster | Resource level | qcs::tke::uin/${uin}:cluster/* qcs::vpc:${region}:uin/${uin}:vpc/$VpcId qcs::vpc:${region}:uin/${uin}:subnet/$SubnetId qcs::cvm:${region}:uin/${uin}:instance/$InstanceId qcs::cvm:${region}:uin/${uin}:image/$ImageId |
not supported |
| CreateClusterEndpoint | Enable cluster access endpoint | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId qcs::cvm:${region}:uin/${uin}:sg/$sg/$SecurityGroupId qcs::vpc:${region}:uin/${uin}:bwp/$BandwidthPackageId qcs::vpc:${region}:uin/${uin}:subnet/$SubnetId |
Supported |
| CreateClusterEndpointVip | Enable cluster apiserver access endpoint | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId qcs::cvm:${region}:uin/${uin}:sg/$SecurityGroup |
Supported |
| CreateClusterInstances | Add nodes to cluster | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| CreateClusterMaintenanceWindowAndExclusions | CreateClusterMaintenanceWindowAndExclusions | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterID} | Supported |
| CreateClusterNodePool | create a node pool | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| CreateClusterRelease | Create release in cluster | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| CreateClusterRoute | create a cluster route in cluster route table | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${RouteTableName} | Supported |
| CreateClusterRouteTable | create a cluster route table | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${RouteTableName} qcs::vpc:${region}:uin/${uin}:vpc/${VpcId} |
Supported |
| CreateClusterVirtualNode | Create virtual node | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| CreateClusterVirtualNodePool | create virtual node pool | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| CreateDedicatedAPIServer | Create dedicated APIServer | Resource level | qcs::tke::uin/${uin}:cluster/$ClusterId | Supported |
| CreateECMInstances | Create TKEEdge ECM instance | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| CreateEISCluster | create eis cluster | Operation level | * | not supported |
| CreateEISClusterLogConfig | create log config for eis cluster | Resource level | qcs::tke:${Region}:uin/:eisCluster/${ClusterId} | not supported |
| CreateEISClusterMonitorConfig | create monitor for eis cluster | Resource level | qcs::tke::uin/:eisCluster/${ClusterId} | not supported |
| CreateEISModel | create inference model | Operation level | * | not supported |
| CreateEISResourceGroup | create eis resource group | Resource level | qcs::tke::uin/:eisCluster/${ClusterId} | not supported |
| CreateEKSContainerInstances | create EKS Container Instance | Operation level | * | Supported |
| CreateEKSOperationTask | CreateEKSOperationTask | Operation level | * | not supported |
| CreateEKSUpgradeTask | CreateEKSUpgradetask | Operation level | * | not supported |
| CreateEdgeCVMInstances | Create TKEEdge CVM instance | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| CreateEdgeLogConfig | Create TKEEdge cluster log collector config | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| CreateEksLogConfig | create eks cluster log config | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} qcs::cls:${region}:uin/${uin}:logset/${LogSet} qcs::cls:${region}:uin/${uin}:topic/${Topic} |
Supported |
| CreateExternalNodePool | create node pool with type of externalNode | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| CreateGlobalMaintenanceWindowAndExclusions | CreateGlobalMaintenanceWindowAndExclusions | Operation level | * | Supported |
| CreateHealthCheckPolicy | Create health check policy | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| CreateImageCache | Create image cache | Operation level | * | Supported |
| CreateImageRegistryCredential | create image registry credential | Operation level | * | Supported |
| CreateInferenceService | create inference service in eis cluster | Operation level | * | not supported |
| CreateInstantInspectJob | create instant inspect job for tke cluster | Resource level | qcs::tke:${region}:uin/:cluster/${ClusterId} | Supported |
| CreateNodePool | Create a TKE node pool | Resource level | qcs::tke:${region}:uin/${uin}:cluster/$ClusterId qcs::vpc:${region}:uin/${uin}:bwp/$bwpId qcs::cvm:${region}:uin/${uin}:sg/$sgId qcs::cvm:${region}:uin/${uin}:keypair/$skeyId qcs::vpc:${region}:uin/${uin}:subnet/$subnetId qcs::tke:${region}:uin/${uin}:machine/* qcs::vpc:${region}:uin/${uin}:eip/* qcs::cvm:${region}:uin/${uin}:datadisk/* |
Supported |
| CreatePod | create pod | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| CreatePrometheusAgent | create | Operation level | * | Supported |
| CreatePrometheusAlertPolicy | create | Operation level | * | Supported |
| CreatePrometheusAlertRule | create | Operation level | * | Supported |
| CreatePrometheusClusterAgent | create | Operation level | * | Supported |
| CreatePrometheusConfig | create | Operation level | * | Supported |
| CreatePrometheusDashboard | create | Operation level | * | Supported |
| CreatePrometheusGlobalNotification | create | Operation level | * | Supported |
| CreatePrometheusInstance | create | Operation level | * | Supported |
| CreatePrometheusRecordRule | create | Operation level | * | Supported |
| CreatePrometheusRecordRuleYaml | create | Operation level | * | Supported |
| CreatePrometheusTemp | create | Operation level | * | Supported |
| CreatePrometheusTemplate | create | Operation level | * | Supported |
| CreateReservedInstances | Create Reserved Instances | Operation level | * | Supported |
| CreateRollOutSequence | CreateRollOutSequence | Operation level | * | Supported |
| CreateSuperNodePrepaidQuota | Create Super Node Prepaid Quota | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| CreateTKEEdgeCluster | Create TKEEdge cluster | Operation level | * | Supported |
| CreateUpdateNodeUnit | create or update a node uint | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterName} | Supported |
| CreateUpgradeTask | CreateUpgradeTask | Operation level | * | not supported |
| DeleteAddon | delete addon | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DeleteBackupStorageLocation | delete backup storage location | Operation level | * | Supported |
| DeleteBootstrapTokens | Delete BootstrapToken | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteCluster | Delete clusters | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteClusterAsGroups | Delete cluster autoscaler groups | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| DeleteClusterEndpoint | Disable cluster access endpoint | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteClusterEndpointVip | Disable cluster apiserver access endpoint | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteClusterInstances | Delete nodes from cluster | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteClusterMachines | Delete a hosted node pool node | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteClusterMaintenanceWindowAndExclusion | DeleteClusterMaintenanceWindowAndExclusion | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterID} | Supported |
| DeleteClusterNodePool | delete a node pool | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DeleteClusterRoute | delete a cluster route in cluster route table | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${RouteTableName} | Supported |
| DeleteClusterRouteTable | delete a cluster route table | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${RouteTableName} | Supported |
| DeleteClusterVirtualNode | delete virtual node | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteClusterVirtualNodePool | delete a virtual node pool | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteDedicatedAPIServer | DeleteDedicatedAPIServer | Resource level | qcs::tke::uin/${uin}:cluster/$ClusterId | Supported |
| DeleteECMInstances | Delete TKEEdge ECM instance | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DeleteEISCluster | delete eis cluster | Resource level | qcs::tke:${Region}:uin/:eisCluster/${ClusterId} | not supported |
| DeleteEISModel | delete inference model | Operation level | * | not supported |
| DeleteEISResourceGroup | delete eis resource group | Resource level | qcs::tke:${Region}:uin/:eisCluster/${ClusterId} | not supported |
| DeleteEKSContainerInstances | delete EKS Container Instances | Operation level | * | Supported |
| DeleteEKSNode | delete eks node | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DeleteEdgeCVMInstances | Delete TKEEdge CVM instance | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DeleteEdgeClusterInstances | Delete TKEEdge cluster instance | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DeleteExternalNode | Delete External Node | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteExternalNodePool | delete node pool of external node type | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteGlobalMaintenanceWindowAndExclusion | DeleteGlobalMaintenanceWindowAndExclusion | Operation level | * | not supported |
| DeleteHealthCheckPolicy | Delete health check policy | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteImageCaches | Delete image cache | Resource level | qcs::tke::uin/${uin}:imagecache/${ImageCacheIds} | Supported |
| DeleteImageRegistryCredentials | delete image registry credentials | Resource level | qcs::tke::uin/${uin}:imgcred/${name} | Supported |
| DeleteInferenceService | delete inference service | Operation level | * | not supported |
| DeleteLogConfigs | delete log configs | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteNodePool | Delete TKE node pool | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DeleteNodeUnit | delete node unit | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterName} | Supported |
| DeletePod | delete pod | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DeletePostpaidQuota | Delete super node postpaid quota | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DeletePrometheusAgent | delete | Operation level | * | Supported |
| DeletePrometheusAlertPolicy | delete | Operation level | * | Supported |
| DeletePrometheusAlertRule | delete | Operation level | * | Supported |
| DeletePrometheusClusterAgent | delete | Operation level | * | Supported |
| DeletePrometheusConfig | delete | Operation level | * | Supported |
| DeletePrometheusDashboard | delete | Operation level | * | Supported |
| DeletePrometheusInstance | delete | Operation level | * | Supported |
| DeletePrometheusRecordRule | delete | Operation level | * | Supported |
| DeletePrometheusRecordRuleYaml | delete | Operation level | * | Supported |
| DeletePrometheusTemp | delete | Operation level | * | Supported |
| DeletePrometheusTempSync | delete | Operation level | * | Supported |
| DeletePrometheusTemplate | delete | Operation level | * | Supported |
| DeletePrometheusTemplateSync | delete | Operation level | * | Supported |
| DeleteReservedInstances | Delete Reserved Instances | Operation level | * | Supported |
| DeleteRollOutSequence | DeleteRollOutSequence | Operation level | * | not supported |
| DeleteSuperNodePrepaidQuota | Delete Super Node Prepaid Quota | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| DeleteTKEEdgeCluster | Delete TKE Edge Cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DeleteTkeEdgeAlarmPolicies | delete alarm policy of edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterInstanceId} | Supported |
| DestroyPrometheusInstance | destory | Operation level | * | Supported |
| DisableClusterAudit | disable cluster audit | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} qcs::cls:${region}:uin/${uin}:logset/${LogSet} qcs::cls:${region}:uin/${uin}:topic/${Topic} |
Supported |
| DisableClusterDeletionProtection | Turn off cluster deletion protection | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DisableControlPlaneLogs | DisableControlPlaneLogs | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | not supported |
| DisableEdgeClusterAudit | Disable TKEEdge cluster audit | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DisableEdgeEventPersistence | Disable TKEEdge event persistence | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DisableEncryptionProtection | disable encrypted information protection | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DisableEventPersistence | disable cluster event persistenece | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} qcs::cls:${region}:uin/${uin}:logset/${LogSet} qcs::cls:${region}:uin/${uin}:topic/${Topic} |
Supported |
| DisableVpcCniNetworkType | disable vpc cni network of a cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DrainClusterNode | Drain nodes of clusters | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| DrainClusterVirtualNode | drain of virtual node | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DrainExternalNode | Drain External Node | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| EnableClusterAudit | enable cluster audit | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} qcs::cls:${region}:uin/${uin}:logset/${LogSet} qcs::cls:${region}:uin/${uin}:topic/${Topic} qcs::cls:${region}:uin/${uin}:machinegroup/${MachineGroup} |
Supported |
| EnableClusterDeletionProtection | Turn on cluster deletion protection | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| EnableControlPlaneLogs | EnableControlPlaneLogs | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | not supported |
| EnableEdgeClusterAudit | Enable TKEEdge cluster audit | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| EnableEdgeEventPersistence | Enable TKEEdge event persistence | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| EnableEncryptionProtection | Enable encrypted data protection | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} qcs::kms:${region}:uin/${uin}:key/creatorUin/*/$KeyId |
Supported |
| EnableEventPersistence | enable cluster event persistence | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} qcs::cls:${region}:uin/${uin}:logset/${LogSet} qcs::cls:${region}:uin/${uin}:topic/${Topic} qcs::cls:${region}:uin/${uin}:machinegroup/${MachineGroup} |
Supported |
| EnableExternalNodeSupport | enable externalNode feature to cluster | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| EnableMetaFeature | Cluster meta feature enabled | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| EnableMetaFeatureForEks | Enable cross-tenant elastic network interface cards in an EKS cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| EnableVpcCniNetworkType | enable vpc cni network of a cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} qcs::vpc:${region}:uin/${uin}:subnet/${Subnets} |
Supported |
| InstallAddon | install addon | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| InstallEdgeLogAgent | Install TKEEdge log agent | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| InstallLogAgent | install log component to cluster | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| MigrateNode | Migrate Native Node | Operation level | * | Supported |
| ModifyClusterAsGroupAttribute | Modify autoscaler group attribute of cluster | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| ModifyClusterAsGroupOptionAttribute | Modify autoscaler group options atrribute of cluster | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ModifyClusterAttribute | Modify attribute of cluster | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ModifyClusterAuthenticationOptions | Modify the cluster authentication configuration | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ModifyClusterDeletionProtectionState | Modifying the status of cluster deletion protection | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ModifyClusterEndpointSP | Modify security group of cluster apiserver access endpoint | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId qcs::cvm:${region}:uin/${uin}:sg/$SecurityGrouId |
Supported |
| ModifyClusterExtraArgs | modify cluster extra args | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyClusterExtraArgsTaskState | modify cluster extra args task state | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyClusterImage | modify the cluster image | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyClusterInspection | Update cluster inspection configuration | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ModifyClusterMachine | Update native node | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyClusterMaintenanceWindowAndExclusions | ModifyClusterMaintenanceWindowAndExclusions | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterID} | Supported |
| ModifyClusterNodePool | modify a node pool | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyClusterRollOutSequenceTags | ModifyClusterRollOutSequenceTags | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterID} | Supported |
| ModifyClusterRuntimeConfig | modify the cluster runtime configuration | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ModifyClusterSchedulerPolicy | Modify the cluster scheduling policy | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyClusterTags | modify cluster tags | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ModifyClusterUpgradingState | Cluster Upgrade Mission Control | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyClusterVirtualNodePool | modify virtual node pool | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ModifyEISCluster | modify eis cluster info | Resource level | qcs::tke:${Region}:uin/:eisCluster/${ClusterId} | not supported |
| ModifyEISResourceGroup | modify eis resource group info | Resource level | qcs::tke:${Region}:uin/:eisCluster/${ClusterId} | not supported |
| ModifyEKSOperationTask | ModifyEKSOperationTask | Operation level | * | not supported |
| ModifyEKSUpgradeTask | ModifyEKSUpgradeTask | Operation level | * | not supported |
| ModifyExternalNodePool | Modify node pool of ExternalNode type | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ModifyGlobalMaintenanceWindowAndExclusions | ModifyGlobalMaintenanceWindowAndExclusions | Operation level | * | Supported |
| ModifyGrafanaAdminPassword | mpdify | Operation level | * | Supported |
| ModifyHealthCheckPolicy | Modify health check policy | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ModifyInferenceService | modify inference service parameter | Resource level | qcs::tke:${Region}:uin/:eisCluster/${ClusterId} | not supported |
| ModifyInferenceServiceAutoScaler | modify inference service auto scaler setting | Operation level | * | not supported |
| ModifyK8sWorkload | modify the configuration of the workload | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyMachinesKeyIds | modify some machine keyIds | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} qcs::cvm:${region}:uin/${uin}:keypair/${skeyId} |
Supported |
| ModifyMasterComponent | modify the master components of a managed cluster | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyMasterVPAPolicy | Modify the master component load threshold | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyNodePool | Update TKE node pool | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} qcs::cvm:${Region}:uin/:sg/${sgId} qcs::cvm:${Region}:uin/:keypair/${skeyId} qcs::vpc:${Region}:uin/:bwp/${bwpId} qcs::vpc:${Region}:uin/:subnet/${subnetId} |
Supported |
| ModifyNodePoolDesiredCapacityAboutAsg | Modify the desired number of instances for the scaling group corresponding to the node pool | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyNodePoolInstanceTypes | modify nodepool instance types | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyOpenPolicyList | modify OPA policy list for TKE clusters | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyPostpaidQuota | modify super node postpaid quota | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyPrometheusAgentExternalLabels | modify | Operation level | * | Supported |
| ModifyPrometheusAlertPolicy | alert | Operation level | * | Supported |
| ModifyPrometheusAlertRule | modify | Operation level | * | Supported |
| ModifyPrometheusConfig | modify | Operation level | * | Supported |
| ModifyPrometheusDashboard | modify | Operation level | * | Supported |
| ModifyPrometheusGlobalNotification | modify | Operation level | * | Supported |
| ModifyPrometheusInstance | modify | Operation level | * | Supported |
| ModifyPrometheusRecordRule | modify | Operation level | * | Supported |
| ModifyPrometheusRecordRuleYaml | modify | Operation level | * | Supported |
| ModifyPrometheusTemp | modify | Operation level | * | Supported |
| ModifyPrometheusTemplate | modify | Operation level | * | Supported |
| ModifyReservedInstanceName | modify reserved instance name | Resource level | qcs::tke:${region}:uin/${uin}:eksri/${ReservedInstanceId} | Supported |
| ModifyReservedInstanceScope | Modify Reserved Instance Scope | Operation level | * | Supported |
| ModifyRollOutSequence | ModifyRollOutSequence | Operation level | * | not supported |
| ModifySuperNodeTag | modify super node tag | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ModifyTkeEdgeAlarmPolicy | modify alarm policy of edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterInstanceId} | Supported |
| ModifyUpgradeTask | ModifyUpgradeTask | Operation level | * | not supported |
| OpUpgradeClusterInstances | node upgrade task status control | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| RebootMachines | reboot tke native node | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| RemoveExistedInstancesFromEISCluster | remove instance from eis cluster | Resource level | qcs::tke:${Region}:uin/:eisCluster/${ClusterId} | not supported |
| RemoveNodeFromNodePool | remove nodes from a node pool but retain it in the cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| RenewReservedInstances | Renew Reserved Instances | Operation level | * | Supported |
| RenewSuperNodePrepaidQuota | Renew Super Node Prepaid Quota | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| RestartEKSContainerInstances | Restart EKS Container Instances | Operation level | * | Supported |
| RollbackClusterRelease | Rollback release | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| RunClusterInspections | run cluster inspections | Operation level | * | Supported |
| RunPrometheusInstance | init | Operation level | * | Supported |
| ScaleInClusterMaster | Reduce master nodes | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ScaleNodePool | Set the expected node number of TKE node pool | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| ScaleOutClusterMaster | Increase master nodes | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| SetMachineLogin | Set whether to enable node login | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} qcs::cvm:${Region}:uin/:keypair/${skeyId} |
Supported |
| SetMachineScaleDownProtection | Whether the node enables scaling protection settings | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| SetNodePoolNodeProtection | enable removal protection for the nodes automatically created by the scaling group in a node pool | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| StartEKSPod | Start EKS Pod | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| StartMachines | start machines | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| StopEKSPod | Stop EKS Pod | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| StopMachines | stop machines | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| SubtractSuperNodePrepaidQuota | Subtract Super Node Prepaid Quota | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| SwitchClusterEndpoint | Switching the cluster intranet access link | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| SwitchParameterCreateNativeNode | Switch Parameter Create NativeNode | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| SwitchParameterModifyNativeNode | SwitchParameterModifyNativeNode | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | not supported |
| SwitchParameterRenewNativeNode | Switch Parameter Renew NativeNode | Operation level | * | Supported |
| SyncPrometheusTemp | sync | Operation level | * | Supported |
| SyncPrometheusTemplate | sync | Operation level | * | Supported |
| TransferPrometheusInstance | trans | Operation level | * | Supported |
| UninstallClusterRelease | Uninstall release | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| UninstallEdgeLogAgent | Uninstall TKEEdge log agent | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| UninstallLogAgent | uninstall log component to cluster | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| UpdateAddon | update addon | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| UpdateClusterAuthStatus | enable or disable the cluster to automatically clean up expired sub-accounts | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| UpdateClusterKubeconfig | Update the kubeconfig information of the cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| UpdateClusterVersion | upgrade cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| UpdateEISModel | update inference model | Operation level | * | not supported |
| UpdateEKSContainerInstance | update EKS Container Instance | Operation level | * | Supported |
| UpdateEdgeClusterVersion | Update TKEEdge cluster version | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| UpdateEdgeEni | update support state of eni ethernet for edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterID} | Supported |
| UpdateEdgeSSH | update state of enable access node via ssh for edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterID} | Supported |
| UpdateGrayScaleDeploymentGrid | update gray scale of deployment grid in edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterName} | Supported |
| UpdateGrayScaleStatefulSetGrid | updatge statefulset grid for edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterName} | Supported |
| UpdateImageCache | Update image cache | Resource level | qcs::tke::uin/${uin}:imagecache/${ImageCacheId} | Supported |
| UpdateImageRegistryCredential | update image registry credential | Resource level | qcs::tke::uin/${uin}:imgcred/${name} | Supported |
| UpdateMetaFeatureForEks | EKS cluster updates cross-tenant elastic network card configuration | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| UpdateTKEEdgeCluster | Update TKEEdge cluster information | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| UpdateTKEEdgeExternalKubeconfig | Update TKEEdge external kubeconfig | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| UpdateUnitCluster | Enable the public network access of the kins cluster of the edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| UpgradeClusterAuthorizationMode | upgrade cluster authorization mode to RBAC | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| UpgradeClusterInstances | upgrade cluster nodes | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| UpgradeClusterRelease | Upgrade release | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| UpgradeEKSClusterAuthorizationMode | Upgrade the EKS cluster authorization mode to RBAC | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| UpgradeLogAgent | upgrade log component | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
Read operations
| API | API Description | Authorization Granularity | Six-segment Resource Description | IP Restriction |
|---|---|---|---|---|
| CheckClusterCIDR | check if cluster CIDRs are conflict with others | Operation level | * | Supported |
| CheckClusterExtraArgs | check cluster extra args | Operation level | * | Supported |
| CheckClusterHostName | check cluster host name | Operation level | * | Supported |
| CheckClusterImage | check cluster image | Operation level | * | Supported |
| CheckClusterRuntimeConfig | check cluster runtime | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| CheckComponentVersion | check component version | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| CheckEdgeClusterCIDR | check whether cidr of edge cluster is conflict | Operation level | * | Supported |
| CheckEksClusterCIDR | check eks cluster cidr | Operation level | * | Supported |
| CheckInstancesUpgradeAble | whether the node can be upgraded | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| CheckSubaccountAuthority | verify sub-account permissions | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| CheckUseTKE | check use TKE | Operation level | * | Supported |
| DescribeAddon | describe addon | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeAddonValues | describe addon values | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeAggregationData | Display the aggregated data | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeAvailableClusterVersion | get all versions that the cluster can upgrade | Operation level | * | Supported |
| DescribeAvailableInstanceConfigInfo | describe available instance configInfo | Operation level | * | Supported |
| DescribeAvailableMajorVersion | Obtain in batches whether the cluster can be upgraded to a major version | Operation level | * | Supported |
| DescribeAvailableTKEEdgeVersion | get available k8s version for edge cluster | Operation level | * | Supported |
| DescribeBackupStorageLocations | describe backup storage locations | Operation level | * | Supported |
| DescribeBatchModifyTagsStatus | describe batch modify tags status | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeBootstrapTokens | Describe BootstrapTokens | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeCcnInstances | query the list of ccn instances of a vpc | Resource level | qcs::vpc:${region}:uin/${uin}:vpc/${VpcId} | Supported |
| DescribeCcnRoutes | query the list of ccn routes of a cluster CIDR | Resource level | qcs::vpc:${region}:uin/${uin}:vpc/${VpcId} | Supported |
| DescribeClusterAsGroupOption | Get autoscaler group options of cluster | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeClusterAuthStatus | whether the cluster automatically cleans up expired sub-accounts | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterAuthenticationOptions | Describe the cluster authentiaton configuration | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeClusterAuthorizationMode | get cluster authorization mode | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterAvailableExtraArgs | query the custom parameters available to the cluster | Operation level | * | Supported |
| DescribeClusterCIDRs | query the list of cluster CIDRs of a vpc | Operation level | * | Supported |
| DescribeClusterCloudResources | describe cluster cloud resources | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterCommonNames | obtain the mapping relationship of the cluster sub-account CommonName | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterControllers | query the status of the Kubernetes controller | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterCreateProgress | get cluster creation progress | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterEndpointStatus | Query status of cluster access endpoint | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeClusterEndpointVipStatus | Query status of enabling cluster apiserver access endpoint | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeClusterEndpoints | get the cluster access address | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterExtraArgs | query cluster custom parameters | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterGlobalStat | describe cluster global stat | Operation level | * | Supported |
| DescribeClusterGlobalStatistics | obtain statistics on the number of all geographical clusters | Operation level | * | Supported |
| DescribeClusterHealthyStatus | query cluster health status | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterInspectionOverviews | Get a list of cluster health checks | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterInspectionReport | Get the details of the cluster inspection report page | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterInspectionResultsOverview | Query the overview information of all cluster inspection results in the user\'s region. | Operation level | * | Supported |
| DescribeClusterInspections | Cluster inspection overview | Operation level | * | Supported |
| DescribeClusterInstanceIds | get a list of cluster node IDs | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterKubeconfig | DescribeClusterKubeconfig | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterLevelAttribute | Describe Cluster Level Attribute | Operation level | * | Supported |
| DescribeClusterLevelChangeRecords | Describe Cluster Level Change Records | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterID} | Supported |
| DescribeClusterMaintenanceWindowAndExclusions | DescribeClusterMaintenanceWindowAndExclusions | Operation level | * | Supported |
| DescribeClusterMetricsData | Obtain cluster monitoring data | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterMigration | describe cluster migration | Operation level | * | Supported |
| DescribeClusterNamespaces | describe cluster namespaces | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterNodePoolDetail | query detailed information of a node pool | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterPendingReleases | Describe installing applications | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| DescribeClusterPods | describe cluster pods | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterReleaseDetails | Describe release details | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| DescribeClusterReleaseHistory | Describe release history | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| DescribeClusterResourceDetails | Obtain detailed information about the resources corresponding to the cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterRollOutSequenceTags | DescribeClusterRollOutSequenceTags | Operation level | * | Supported |
| DescribeClusterRouteTables | Query the cluster routing table | Operation level | * | Supported |
| DescribeClusterRoutes | query the list of cluster routes of a cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${RouteTableName} | Supported |
| DescribeClusterRuntimeVersion | query the cluster runtime version information | Operation level | * | Supported |
| DescribeClusterSchedulerPolicy | describe the cluster scheduling policy | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterSecurity | Query the secret key of cluster | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeClusterSecurityGroup | query cluster security group information | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterServices | describe cluster services | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterStaticInstaller | describe cluster static installer | Operation level | * | Supported |
| DescribeClusterStatus | view the list of cluster status | Operation level | * | Supported |
| DescribeClusterVirtualNode | describe the list of virtual nodes | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeClusterVirtualNodePools | describe the list of virtual node pools | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeClustersResourceStatus | describe clusters resource status | Operation level | * | Supported |
| DescribeControlPlaneLogs | DescribeControlPlaneLogs | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | not supported |
| DescribeDedicatedAPIServers | view the cluster\'s dedicated APIServer list | Resource level | qcs::tke::uin/${uin}:cluster/$ClusterId | Supported |
| DescribeDeletionEvents | get the list of cluster deletion interception events | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeECMInstances | get ecm instances info | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterID} | Supported |
| DescribeEISClusterObservabilityConfig | describe cluster observability config | Operation level | * | not supported |
| DescribeEISClusterTaskList | get eis cluster\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\'s task info | Resource level | qcs::tke:${Region}:uin/:eisCluster/${ClusterId} | not supported |
| DescribeEISModelList | get eis model list | Operation level | * | not supported |
| DescribeEISResourceGroupInstanceList | describe eis resource group instance list | Resource level | qcs::tke:${Region}:uin/:eisCluster/${ClusterId} | not supported |
| DescribeEISResourceGroupList | describe eis resource group list | Resource level | qcs::tke:${Region}:uin/:eisCluster/${ClusterId} | not supported |
| DescribeEISResourceGroupStats | get resource stats for eis cluster resource group | Resource level | qcs::tke:${Region}:uin/:eisCluster/${ClusterId} | not supported |
| DescribeEKSClusterAuthorizationMode | describe eks cluster authorization mode | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeEKSClusterCredential | describe eks cluster credential | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeEKSClusterStatus | describe cluster status | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeEKSContainerInstanceEvent | describe EKS container instance events | Resource level | qcs::tke:${region}:uin/${uin}:eksciId/${EksCiIds} | Supported |
| DescribeEKSContainerInstances | describe EKS Container Instances | Operation level | * | Supported |
| DescribeEKSTask | Query EKS Task Result | Operation level | * | Supported |
| DescribeEKSUpgradeTask | DescribeEKSUpgradeTask | Operation level | * | not supported |
| DescribeEdgeAvailableExtraArgs | get avaliable args for edge cluster | Operation level | * | Supported |
| DescribeEdgeCVMInstances | describe cvm instance info of edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterID} | Supported |
| DescribeEdgeClusterExtraArgs | describe available extra args of edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeEdgeClusterInstances | describe node info of edge clusters | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterID} | Supported |
| DescribeEdgeClusterUpgradeInfo | describe upgrade info of edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeEdgeDashboardID | describe dashboard id of edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeEdgeEni | check whether edge cluster support enable eni ethernet | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterID} | Supported |
| DescribeEdgeLogSwitches | describe logs witches of edge cluster | Operation level | * | Supported |
| DescribeEdgeNodeScript | Get the script link for TKE edge clusters | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeEdgeRegion | get region list which support edge cluster | Operation level | * | Supported |
| DescribeEdgeSSH | describe whether support access node via ssh in edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterID} | Supported |
| DescribeEdgeUserBillingWhiteList | check whether uin is in billing white list for edge cluster | Operation level | * | Supported |
| DescribeEksContainerInstanceLog | describe EKS container instance log | Resource level | qcs::tke:${region}:uin/${uin}:eksciId/${EksCiIds} | Supported |
| DescribeEksMetaFeatureProgress | Query the activation status of cross-tenant elastic network cards in the EKS cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeEksTaskResult | Query Task Result | Operation level | * | Supported |
| DescribeEnableVpcCniProgress | query the progress of enabling vpc cni network for a cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeEncryptionStatus | Query whether etcd data is encrypted | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeExactTypes | Describe exact types | Operation level | * | Supported |
| DescribeExistedInstances | Query existing nodes to judge if they can join the cluster | Operation level | * | Supported |
| DescribeExternalNode | describe node details of externalNode type | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeExternalNodePools | list node pools of ExternalNode type | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeExternalNodeScript | get script which can ben used to add externalNode into cluster | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeExternalNodeSupportConfig | describe the configuration for enable ExternalNode feature | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeGPUInfo | Describe GPU Info | Operation level | * | Supported |
| DescribeGlobalMaintenanceWindowAndExclusions | DescribeGlobalMaintenanceWindowAndExclusions | Operation level | * | Supported |
| DescribeHealthCheckPolicies | DescribeHealthCheckPolicies | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeHealthCheckPolicyBindings | DescribeHealthCheckPolicyBindings | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeHealthCheckTemplate | query health check template | Operation level | * | Supported |
| DescribeIPAMD | query the status of eniipamd component | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeImageRegistryCredentials | describe image registry credentials | Resource level | qcs::tke::uin/${uin}:imgcred/${name} | Supported |
| DescribeImages | describe images | Operation level | * | Supported |
| DescribeInferenceServiceApiKey | describe inference apikey | Resource level | qcs::tke::uin/:eisCluster/${ClusterId} | not supported |
| DescribeInferenceServiceList | get inference service list | Operation level | * | not supported |
| DescribeInferenceServiceSupportedFrameworkList | Get the list of inference framework supported by the eis platform | Operation level | * | not supported |
| DescribeInferenceServiceSupportedFrameworkParameter | get parameter list for framework | Operation level | * | not supported |
| DescribeInstanceCreateProgress | get node creation progress | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeInstanceTypesForDirectENI | query the list of supported instance types for tke direct eni | Operation level | * | Supported |
| DescribeInstancesVersion | query version statistics of worker nodes | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeInstantInspectTask | describe cluster inspect task result | Operation level | * | Supported |
| DescribeK8sWorkload | query the configuration of the workload | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeK8sWorkloadPods | query the list of Pods for the workload | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeLogConfigs | describe log configs | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeMasterComponent | Query the status of master components in managed clusters | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeMasterVPAPolicy | Get the master components vpa policy | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeMetaFeatureProgress | Query the progress of enabling cross-tenant features | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeNativeTasks | Describe Native Tasks | Operation level | * | Supported |
| DescribeNodeGroup | describe nodegroup info of edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterName} | Supported |
| DescribeNodeParamUpdateProcess | Describe native node param update process | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeNodeUnit | describe node unit info of edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterName} | Supported |
| DescribeOSImageId | describe OS image id | Operation level | * | Supported |
| DescribeOSImages | describe OS images | Operation level | * | Supported |
| DescribeOldStaticIPSubnets | query the old vpc cni mode used subnets | Operation level | * | Supported |
| DescribeOpenPolicyList | Get the opa policy list for TKE edge clusters | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeOperationEvents | DescribeOperationEvents | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribePodChargeInfo | Query Pod’s billing information | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribePodDeductionRate | query pod deduction rate | Operation level | * | Supported |
| DescribePodsBySpec | query pods by spec | Operation level | * | Supported |
| DescribePostNodeResources | Query Post Node Resources | Operation level | * | Supported |
| DescribePostpaidQuota | Describe super node postpaid quota | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeProductVersionDetails | describe product version details | Operation level | * | Supported |
| DescribeProductVersions | describe product versions | Operation level | * | Supported |
| DescribeProducts | describe products | Operation level | * | Supported |
| DescribePrometheusConfig | config | Operation level | * | Supported |
| DescribePrometheusCreatingProgress | info | Operation level | * | Supported |
| DescribePrometheusGlobalConfig | config | Operation level | * | Supported |
| DescribePrometheusGlobalNotification | get | Operation level | * | Supported |
| DescribePrometheusInstance | info | Operation level | * | Supported |
| DescribePrometheusInstanceDetail | detail | Operation level | * | Supported |
| DescribePrometheusInstanceInitStatus | status | Operation level | * | Supported |
| DescribePrometheusRecordRule | get | Operation level | * | Supported |
| DescribePrometheusRecordRules | get | Operation level | * | Supported |
| DescribePrometheusScrapeStatistics | get | Operation level | * | Supported |
| DescribePrometheusTargets | targets | Operation level | * | Supported |
| DescribePrometheusTempSync | info | Operation level | * | Supported |
| DescribePrometheusTransferProgress | status | Operation level | * | Supported |
| DescribeQuota | describe quota | Operation level | * | Supported |
| DescribeRIUtilizationDetail | Reserved instance usage query | Operation level | * | Supported |
| DescribeRegionStat | describe region stat | Operation level | * | Supported |
| DescribeRegions | describe regions | Operation level | * | Supported |
| DescribeReservedInstanceUtilizationRate | query reserved instance utilization rate | Operation level | * | Supported |
| DescribeReservedInstances | Query the list of reserved instances | Operation level | * | Supported |
| DescribeResourceUsage | get cluster resource usage | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeRollOutSequences | DescribeRollOutSequences | Operation level | * | Supported |
| DescribeRouteTableConflicts | query the list of route table conflicts. | Operation level | * | Supported |
| DescribeSuperNodePostResource | Describe super node post resources | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeSuperNodeResource | Describe super node quotas and resources | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeSupportedInstanceFamilies | Describe supported instance families list | Operation level | * | Supported |
| DescribeSupportedRuntime | describe supported runtime | Operation level | * | Supported |
| DescribeTKEEdgeAppChartList | get app list of tkeedge cluster | Operation level | * | Supported |
| DescribeTKEEdgeClusterCredential | Describe TKEEdge cluster credential | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeTKEEdgeClusterResources | get resources of edge cluster | Operation level | * | Supported |
| DescribeTKEEdgeClusterStatus | describe status of edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeTKEEdgeDefaultsettings | describe default setting of edge cluster | Operation level | * | Supported |
| DescribeTKEEdgeExternalKubeconfig | Describe TKEEdge external kubeconfig | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeTKEEdgeInternalKubeconfig | Describe TKEEdge internal kubeconfig | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterID} | Supported |
| DescribeTKEEdgeScript | Describe TKEEdge node adding script link | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeTasks | describe task related information | Operation level | * | Supported |
| DescribeTkeEdgeAlarmPolicies | describe alarm polices of edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterInstanceId} | Supported |
| DescribeTkeEdgeAlarmSetting | check whetcher monitor alarm for edge cluster is setted | Operation level | * | Supported |
| DescribeTradeTypes | Describe Trade Types | Operation level | * | Supported |
| DescribeUnitClusterKubeconfig | Obtain the kubeconfig of the k3s cluster deployed on the edge nodes of the edge cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeUpgradeClusterProgress | get cluster upgrade progress | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeUpgradeTask | DescribeUpgradeTask | Operation level | * | not supported |
| DescribeUpgradeTaskDetail | DescribeUpgradeTaskDetail | Operation level | * | Supported |
| DescribeUpgradeTasks | DescribeUpgradeTasks | Operation level | * | Supported |
| DescribeVersions | describe versions | Operation level | * | Supported |
| DescribeVpcCniPodLimits | query the maximum number of Pods in the VPC-CNI mode by instance types | Operation level | * | Supported |
| DescribeZoneInstanceConfigInfos | Describe Zone Instance Config Infos | Operation level | * | Supported |
| GetAccountType | get account type | Operation level | * | Supported |
| GetClusterLevelPrice | Get Cluster Level Price | Operation level | * | Supported |
| GetEISModelSummary | get eis model summary info | Operation level | * | not supported |
| GetEKSClusterResources | get cluster resources | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| GetEksSpecs | get pod specs | Operation level | * | Supported |
| GetPodChargeInfo | get pod charge info | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| GetPodSpecification | get pod specification | Operation level | * | Supported |
| GetPrice | get pod price | Operation level | * | Supported |
| GetPrometheusTransMapping | mapping | Operation level | * | Supported |
| GetTidePoolResource | get tide pool resources | Operation level | * | not supported |
| GetTkeAppChartList | get app chart list of tke | Operation level | * | Supported |
| GetTkeAppDiff | get application diff info for tke cluster | Resource level | qcs::tke::uin/${uin}:cluster/${ClusterId} | Supported |
| GetTkeAppUpgradeInfo | get app upgarde info of tke cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| GetUpgradeInstanceProgress | get the current progress of node upgrade | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| InquirePriceConvertNativeNode | inquire convert native node price | Operation level | * | Supported |
| InquirePriceHousekeeper | Inquire Price Housekeeper | Operation level | * | Supported |
| InquirePriceModifyNativeNode | Native node modify inquire | Operation level | * | Supported |
| InquirePricePurchaseNativeNode | inquire purchase native node price | Operation level | * | Supported |
| InquirePriceRefundNativeNode | Inquire Price Refund NativeNode | Operation level | * | Supported |
| InquirePriceRenewNativeNode | Inquire Price Renew NativeNode | Operation level | * | Supported |
| ListClusterCertificates | get a list of cluster certificates | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ListClusterInspectionResults | Query the details of the inspection results of the specified cluster. | Operation level | * | Supported |
| ListClusterInspectionResultsItems | Query the list of group inspection history reports. | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ListEKSClusterCertificates | list eks cluster certificates | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ListEKSK8SVersion | list k8s versions | Operation level | * | Supported |
| ListEKSPods | list eks pod infos | Operation level | * | Supported |
| ListEKSRegion | list eks regions | Operation level | * | Supported |
| ListEKSZone | list eks zone | Operation level | * | Supported |
| ListExpiredClusterAuth | get expired permission information in the cluster | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| ListHousekeeperRegion | List Housekeeper Region | Operation level | * | Supported |
| MigrateClusterControlPlanePreCheck | MigrateClusterControlPlanePreCheck | Operation level | * | Supported |
| RestartInferenceService | restart inference service | Operation level | * | not supported |
| ValidateClusterAddVirtualNodeConditions | Verify the conditions for adding virtual nodes to the cluster | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| VerifyQGPU | This interface is designed to validate the compatibility of the InstanceType and GPU driver version in the input parameters, in order to ensure the pr | Operation level | * | Supported |
Other Operations
| API | API Description | Authorization Granularity | Six-segment Resource Description | IP Restriction |
|---|---|---|---|---|
| CheckIsPrometheusNewUser | check | Operation level | * | Supported |
| MigrateClusterControlPlane | MigrateClusterControlPlane | Operation level | * | not supported |
| MigrateClusterControlPlaneRollback | MigrateClusterControlPlaneRollback | Operation level | * | not supported |
| ModifyLastTaskState | ModifyLastTaskState | Operation level | * | not supported |
| ProbePrometheusTargets | probe | Operation level | * | Supported |
List Operations
| API | API Description | Authorization Granularity | Six-segment Resource Description | IP Restriction |
|---|---|---|---|---|
| DescribeClusterAsGroups | Get autoscaler groups list of cluster | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| DescribeClusterInstances | Query cluster nodes | Resource level | qcs::tke:${Region}:uin/:cluster/${ClusterId} | Supported |
| DescribeClusterMachines | query native node list | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterNodePools | query the node pool list | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusterReleases | Describe all installed applications in cluster | Resource level | qcs::tke:$Region:uin/:cluster/$ClusterId | Supported |
| DescribeClusterResourceLabels | query the list of cluster resource tags | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeClusters | Access to the list of clusters | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribeEISClusterList | get eis cluster list | Operation level | * | not supported |
| DescribeEtcdOverrideConfigs | view the etcd configuration list of cluster metadata split storage | Resource level | qcs::tke::uin/${uin}:cluster/$ClusterId | Supported |
| DescribeImageCaches | Describe image cache information | Operation level | * | Supported |
| DescribeLogSwitches | describe log switches | Operation level | * | Supported |
| DescribeNodePools | query the node pool list | Resource level | qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} | Supported |
| DescribePrometheusAgentInstances | list | Operation level | * | Supported |
| DescribePrometheusAgents | clusters | Operation level | * | Supported |
| DescribePrometheusAlertHistory | history | Operation level | * | Supported |
| DescribePrometheusAlertPolicy | list | Operation level | * | Supported |
| DescribePrometheusAlertRule | alert | Operation level | * | Supported |
| DescribePrometheusBasicMetrics | list | Operation level | * | Supported |
| DescribePrometheusClusterAgents | agents | Operation level | * | Supported |
| DescribePrometheusDashboard | dashboard | Operation level | * | Supported |
| DescribePrometheusInstancesOverview | list | Operation level | * | Supported |
| DescribePrometheusOverviews | instances | Operation level | * | Supported |
| DescribePrometheusRecordRuleYaml | list | Operation level | * | Supported |
| DescribePrometheusRegions | describe regions | Operation level | * | Supported |
| DescribePrometheusTemp | list | Operation level | * | Supported |
| DescribePrometheusTemplateSync | template | Operation level | * | Supported |
| DescribePrometheusTemplates | template | Operation level | * | Supported |
| DescribeTKEEdgeClusters | Describe TKEEdge clusters | Operation level | * | Supported |
Was this page helpful?
You can also Contact Sales or Submit a Ticket for help.
Yes
No
Feedback