Kyma

Appearance

GcpRedisCluster Custom Resource ​

WARNING

This is a beta feature available only per request for SAP-internal teams.

The gcprediscluster.cloud-resources.kyma-project.io is a namespace-scoped custom resource (CR).

It describes the Google Memorystore Redis Cluster instance.

Once the instance is provisioned, a Kubernetes Secret with endpoint and credential details is provided in the same namespace. By default, the created auth Secret has the same name as the GcpRedisCluster, unless specified otherwise.

Redis Cluster requires a range of IP Addresses. They can be allocated using the GcpSubnet CR. If a GcpSubnet CR is not specified in the GcpRedisCluster, then the default GcpSubnet is used. If the default GcpSubnet does not exist, it is automatically created. You can manually create a non-default GcpSubnet with specified Classless Inter-Domain Routing (CIDR) and use it only in advanced cases of network topology when you want to control the network segments to avoid range conflicts with other networks.

When creating GcpRedisCluster, redisTier, and shardCount fields are mandatory.

Optionally, you can specify the replicasPerShard field.

In-transit Encryption ​

In-transit encryption is always enabled. Communication with the Redis instance requires a certificate. The certificate can be found in the Secret on the .data.CaCert.pem path.

Persistence ​

Persistence is not supported. Data is not written to durable storage (i.e., data at rest).

Redis Tiers ​

In the Standard service tier, the instance does not have a replica. Thus, it cannot be considered highly available.

RedisTierCapacity (GiB)
C11.4
C36.5
C413
C658

Specification ​

This table lists the parameters of GcpRedisCluster, together with their descriptions:

ParameterTypeDescription
subnetobjectOptional. GcpSubnet reference. If omitted, the default GcpSubnet is used. If the default GcpSubnet does not exist, it will be created.
subnet.namestringRequired. Name of the existing GcpSubnet to use.
redisTierstringRequired. The Redis tier of the instance. Supported values are C1, C3, C4, C6.
shardCountintRequired. Number of shards. Minimum value is 1. Maximum number of shards is variable, and depends on selected number of replciasPerShard. Sum of all shards, and their respective replicas must be less or equal to 250.
replicasPerShardintOptional. Number of replicas per shard. Supported values are from 0 to 2. If left undefined, it defaults to 1. Without replicas, a single shard failure can result in permanent data loss.
authSecretobjectOptional. Auth Secret options.
authSecret.namestringOptional. Auth Secret name.
authSecret.labelsobjectOptional. Auth Secret labels. Keys and values must be a string.
authSecret.annotationsobjectOptional. Auth Secret annotations. Keys and values must be a string.
authSecret.extraDataobjectOptional. Additional Secret Data entries. Keys and values must be a string. Allows users to define additional data fields that will be present in the Secret. The well-known data fields can be used as templates. The templating follows the Golang templating syntax.

Auth Secret Details ​

The following table list the meaningful parameters of the auth Secret:

ParameterTypeDescription
.metadata.namestringName of the auth Secret. It will share the name with the GcpRedisCluster unless specified otherwise
.metadata.labelsobjectSpecified custom labels (if any)
.metadata.annotationsobjectSpecified custom annotations (if any)
.data.hoststringPrimary connection host.
.data.portstringPrimary connection port.
.data.primaryEndpointstringPrimary connection endpoint. Provided in <host>:<port> format.
.data.authStringstringAuth string. Provided if authEnabled is set to true.
.data.CaCert.pemstringCA Certificate that must be used for TLS. Provided if transit encryption is set to server authentication.

Sample Custom Resource ​

yaml
apiVersion: cloud-resources.kyma-project.io/v1beta1
kind: GcpRedisCluster
metadata:
  name: gcprediscluster-sample
spec:
  redisTier: C1
  shardCount: 3
  replicasPerShard: 2