mode property

The mode the pool is operating in.

Immutable. Possible string values are:

"MODE_UNSPECIFIED" : State unspecified. New pools should not use this mode. Pools with an unspecified mode will operate as if they are in federation-only mode.
"FEDERATION_ONLY" : Federation-only mode. Federation-only pools can only be used for federating external workload identities into Google Cloud. Unless otherwise noted, no structure or format constraints are applied to workload identities in a federation-only pool, and you cannot create any resources within the pool besides providers.
"TRUST_DOMAIN" : Trust-domain mode. Trust-domain pools can be used to assign identities to Google Cloud workloads. All identities within a trust-domain pool must consist of a single namespace and individual workload identifier. The subject identifier for all identities must conform to the following format: ns//sa/ WorkloadIdentityPoolProviders cannot be created within trust-domain pools.

Implementation