List Recent Connections Run in API Explorer
List information on recent connections to the cluster.
Query parameters
-
The maximum number of connections to return. If unspecified or 0, a default value may be applied. Note that paging is currently not fully supported, and this field only acts as a limit for the first page of data returned. Subsequent pages of data cannot be requested.
-
Filter expression to apply to the connection list. Uses a subset of AIP-160 filter syntax supporting:
- Field comparisons (
=,!=,<,>,<=,>=) - Logical AND chaining: condition1 AND condition2
- Nested field access: parent.child = value
- Escape sequences: field = "string with \"quotes\""
- Enum types
- RFC3339 timestamps and ISO-like duration
Limitations (not supported):
- Logical OR chaining
- Parentheses
()for grouping - Map and repeated types
- HAS (:) operator
- Negation (-, NOT)
- Bare literal matching
Example filters:
state = KAFKA_CONNECTION_STATE_OPENidle_duration > 30s AND total_request_statistics.request_count > 100authentication_info.user_principal = "my-producer"recent_request_statistics.produce_bytes > 1000 AND client_software_name = "kgo"open_time >= 2025-09-01T10:22:54Z
Reference: https://google.aip.dev/160
- Field comparisons (
-
Field-based ordering specification following AIP-132 syntax. Supports multiple fields with
asc/descdirection indicators. Examples:idle_duration desc- longest idle connections firstopen_time desc, total_request_statistics.request_count desc- newest connections first, then most activerecent_request_statistics.produce_bytes desc- connections with highest current produce throughput first
Reference: https://google.aip.dev/132#ordering
Responses
-
Recent connections
Hide response attributes Show response attributes object
-
The list of connections matching the request. Note that in addition to open connections, some recently-closed connections may also be included here. If you don't want to include closed connections, set the filter in the request to
state = KAFKA_CONNECTION_STATE_OPEN.Hide connections attributes Show connections attributes object
-
This map records, for each Kafka API, the highest version number observed in requests on this connection. It can be useful for understanding which protocol versions a client supports or has negotiated with the broker. Only APIs that were actually used (i.e. at least one request was seen) are included.
Example: { 0: 11, 1: 13 } means that for API key 0 (Produce), version 11 was the highest seen, and for API key 1 (Fetch), version 13 was the highest seen.
Reference:
-
Hide authentication_info attributes Show authentication_info attributes object
-
Values are
AUTHENTICATION_MECHANISM_MTLS,AUTHENTICATION_MECHANISM_SASL_SCRAM,AUTHENTICATION_MECHANISM_SASL_OAUTHBEARER,AUTHENTICATION_MECHANISM_SASL_PLAIN, orAUTHENTICATION_MECHANISM_SASL_GSSAPI. -
Values are
AUTHENTICATION_STATE_UNAUTHENTICATED,AUTHENTICATION_STATE_SUCCESS, orAUTHENTICATION_STATE_FAILURE.
-
-
Client identifier included in every request sent by the Kafka client. This is typically a configurable property (client.id) set by the application when creating a producer or consumer, and is often used for metrics, quotas, and debugging.
-
Name of the client library, reported automatically in ApiVersions v3+ requests. This is set by the client implementation and is not typically configurable by applications.
-
Version of the client library, reported automatically in ApiVersions v3+ requests. Like client_software_name, this is set by the client and not usually configurable by applications.
-
When the connection was closed. This field is set only when the connection state is "closed".
-
Most recent group ID seen in requests sent over this connection. This typically refers to a consumer group, but the Kafka group protocol is more general and may also be used by other types of clients that coordinate membership and assignments through the broker.
-
Most recent group instance ID seen in requests sent over this connection. This is used when static membership is enabled, allowing a specific client instance to retain its group membership across restarts.
-
Most recent group member ID seen in requests sent over this connection. This is the unique identifier assigned by the broker to a particular member of the group.
-
Hide in_flight_requests attributes Show in_flight_requests attributes object
-
Name of the Kafka listener that accepted this connection. A listener is a named broker endpoint (for example, "internal", "external", or "sasl_tls"). Each listener defines its network address and enforces its protocol and authentication policy.
-
- KAFKA_CONNECTION_STATE_OPEN: The connection is accepting requests.
- KAFKA_CONNECTION_STATE_ABORTING: The connection is aborting ongoing requests and about to be closed. This is a transient state between open and closed that should rarely be observable under normal circumstances.
- KAFKA_CONNECTION_STATE_CLOSED: The connection has been closed.
Values are
KAFKA_CONNECTION_STATE_OPEN,KAFKA_CONNECTION_STATE_ABORTING, orKAFKA_CONNECTION_STATE_CLOSED. - KAFKA_CONNECTION_STATE_OPEN: The connection is accepting requests.
-
-
-
Unauthenticated.
Hide response attributes Show response attributes object
-
RPC status code, as described here.
Values are
OK,CANCELLED,UNKNOWN,INVALID_ARGUMENT,DEADLINE_EXCEEDED,NOT_FOUND,ALREADY_EXISTS,PERMISSION_DENIED,UNAUTHENTICATED,RESOURCE_EXHAUSTED,FAILED_PRECONDITION,ABORTED,OUT_OF_RANGE,UNIMPLEMENTED,INTERNAL,UNAVAILABLE, orDATA_LOSS. -
A list of messages that carries the error details.
Details of the error.
Details of the error.
One of: Describes violations in a client request. This error type focuses on the syntactic aspects of the request.
Hide attributes Show attributes
-
Fully qualified protobuf type name of the underlying response, prefixed with
type.googleapis.com/.Value is
type.googleapis.com/google.rpc.BadRequest. -
Describes all violations in a client request.
A message type used to describe a single bad request field.
Hide field_violations attributes Show field_violations attributes object
-
A description of why the request element is bad.
-
A path that leads to a field in the request body. The value will be a sequence of dot-separated identifiers that identify a protocol buffer field.
Consider the following:
message CreateContactRequest { message EmailAddress { enum Type { TYPE_UNSPECIFIED = 0; HOME = 1; WORK = 2; }
optional string email = 1; repeated EmailType type = 2; }
string full_name = 1; repeated EmailAddress email_addresses = 2; }
In this example, in proto
fieldcould take one of the following values:full_namefor a violation in thefull_namevalueemail_addresses[1].emailfor a violation in theemailfield of the firstemail_addressesmessageemail_addresses[3].type[2]for a violation in the secondtypevalue in the thirdemail_addressesmessage.
In JSON, the same values are represented as:
fullNamefor a violation in thefullNamevalueemailAddresses[1].emailfor a violation in theemailfield of the firstemailAddressesmessageemailAddresses[3].type[2]for a violation in the secondtypevalue in the thirdemailAddressesmessage.
-
Provides a localized error message that is safe to return to the user which can be attached to an RPC error.
-
The reason of the field-level error. This is a constant value that identifies the proximate cause of the field-level error. It should uniquely identify the type of the FieldViolation within the scope of the google.rpc.ErrorInfo.domain. This should be at most 63 characters and match a regular expression of
[A-Z][A-Z0-9_]+[A-Z0-9], which represents UPPER_SNAKE_CASE.
-
Describes the cause of the error with structured details.
Example of an error when contacting the "pubsub.googleapis.com" API when it is not enabled:
{ "reason": "API_DISABLED" "domain": "googleapis.com" "metadata": { "resource": "projects/123", "service": "pubsub.googleapis.com" } }
This response indicates that the pubsub.googleapis.com API is not enabled.
Example of an error that is returned when attempting to create a Spanner instance in a region that is out of stock:
{ "reason": "STOCKOUT" "domain": "spanner.googleapis.com", "metadata": { "availableRegions": "us-central1,us-east2" } }
Hide attributes Show attributes
-
Fully qualified protobuf type name of the underlying response, prefixed with
type.googleapis.com/.Value is
type.googleapis.com/google.rpc.ErrorInfo. -
The logical grouping to which the "reason" belongs. The error domain is typically the registered service name of the tool or product that generates the error. Example: "pubsub.googleapis.com". If the error is generated by some common infrastructure, the error domain must be a globally unique value that identifies the infrastructure. For Google API infrastructure, the error domain is "googleapis.com".
-
Additional structured details about this error.
Keys must match a regular expression of
[a-z][a-zA-Z0-9-_]+but should ideally be lowerCamelCase. Also, they must be limited to 64 characters in length. When identifying the current value of an exceeded limit, the units should be contained in the key, not the value. For example, rather than{"instanceLimit": "100/request"}, should be returned as,{"instanceLimitPerRequest": "100"}, if the client exceeds the number of instances that can be created in a single (batch) request. -
The reason of the error. This is a constant value that identifies the proximate cause of the error. Error reasons are unique within a particular domain of errors. This should be at most 63 characters and match a regular expression of
[A-Z][A-Z0-9_]+[A-Z0-9], which represents UPPER_SNAKE_CASE.
Describes how a quota check failed.
For example if a daily limit was exceeded for the calling project, a service could respond with a QuotaFailure detail containing the project id and the description of the quota limit that was exceeded. If the calling project hasn't enabled the service in the developer console, then a service could respond with the project id and set
service_disabledto true.Also see RetryInfo and Help types for other details about handling a quota failure.
Hide attributes Show attributes
-
Fully qualified protobuf type name of the underlying response, prefixed with
type.googleapis.com/.Value is
type.googleapis.com/google.rpc.QuotaFailure. -
Describes all quota violations.
A message type used to describe a single quota violation. For example, a daily quota or a custom quota that was exceeded.
Hide violations attributes Show violations attributes object
-
The API Service from which the
QuotaFailure.Violationorginates. In some cases, Quota issues originate from an API Service other than the one that was called. In other words, a dependency of the called API Service could be the cause of theQuotaFailure, and this field would have the dependency API service name.For example, if the called API is Kubernetes Engine API (container.googleapis.com), and a quota violation occurs in the Kubernetes Engine API itself, this field would be "container.googleapis.com". On the other hand, if the quota violation occurs when the Kubernetes Engine API creates VMs in the Compute Engine API (compute.googleapis.com), this field would be "compute.googleapis.com".
-
A description of how the quota check failed. Clients can use this description to find more about the quota configuration in the service's public documentation, or find the relevant quota limit to adjust through developer console.
For example: "Service disabled" or "Daily Limit for read operations exceeded".
-
The new quota value being rolled out at the time of the violation. At the completion of the rollout, this value will be enforced in place of quota_value. If no rollout is in progress at the time of the violation, this field is not set.
For example, if at the time of the violation a rollout is in progress changing the number of CPUs quota from 10 to 20, 20 would be the value of this field.
-
The dimensions of the violated quota. Every non-global quota is enforced on a set of dimensions. While quota metric defines what to count, the dimensions specify for what aspects the counter should be increased.
For example, the quota "CPUs per region per VM family" enforces a limit on the metric "compute.googleapis.com/cpus_per_vm_family" on dimensions "region" and "vm_family". And if the violation occurred in region "us-central1" and for VM family "n1", the quota_dimensions would be,
{ "region": "us-central1", "vm_family": "n1", }
When a quota is enforced globally, the quota_dimensions would always be empty.
-
The id of the violated quota. Also know as "limit name", this is the unique identifier of a quota in the context of an API service.
For example, "CPUS-PER-VM-FAMILY-per-project-region".
-
The metric of the violated quota. A quota metric is a named counter to measure usage, such as API requests or CPUs. When an activity occurs in a service, such as Virtual Machine allocation, one or more quota metrics may be affected.
For example, "compute.googleapis.com/cpus_per_vm_family", "storage.googleapis.com/internet_egress_bandwidth".
-
The enforced quota value at the time of the
QuotaFailure.For example, if the enforced quota value at the time of the
QuotaFailureon the number of CPUs is "10", then the value of this field would reflect this quantity. -
The subject on which the quota check failed. For example, "clientip:" or "project:".
-
Provides links to documentation or for performing an out of band action.
For example, if a quota check failed with an error indicating the calling project hasn't enabled the accessed service, this can contain a URL pointing directly to the right place in the developer console to flip the bit.
Hide attributes Show attributes
-
Fully qualified protobuf type name of the underlying response, prefixed with
type.googleapis.com/.Value is
type.googleapis.com/google.rpc.Help. -
URL(s) pointing to additional information on handling the current error.
Describes a URL link.
-
-
Detailed error message. No compatibility guarantees are given for the text contained in this message.
-
-
Internal Server Error. Reach out to support.
Hide response attributes Show response attributes object
-
RPC status code, as described here.
Values are
OK,CANCELLED,UNKNOWN,INVALID_ARGUMENT,DEADLINE_EXCEEDED,NOT_FOUND,ALREADY_EXISTS,PERMISSION_DENIED,UNAUTHENTICATED,RESOURCE_EXHAUSTED,FAILED_PRECONDITION,ABORTED,OUT_OF_RANGE,UNIMPLEMENTED,INTERNAL,UNAVAILABLE, orDATA_LOSS. -
A list of messages that carries the error details.
Details of the error.
Details of the error.
One of: Describes violations in a client request. This error type focuses on the syntactic aspects of the request.
Hide attributes Show attributes
-
Fully qualified protobuf type name of the underlying response, prefixed with
type.googleapis.com/.Value is
type.googleapis.com/google.rpc.BadRequest. -
Describes all violations in a client request.
A message type used to describe a single bad request field.
Hide field_violations attributes Show field_violations attributes object
-
A description of why the request element is bad.
-
A path that leads to a field in the request body. The value will be a sequence of dot-separated identifiers that identify a protocol buffer field.
Consider the following:
message CreateContactRequest { message EmailAddress { enum Type { TYPE_UNSPECIFIED = 0; HOME = 1; WORK = 2; }
optional string email = 1; repeated EmailType type = 2; }
string full_name = 1; repeated EmailAddress email_addresses = 2; }
In this example, in proto
fieldcould take one of the following values:full_namefor a violation in thefull_namevalueemail_addresses[1].emailfor a violation in theemailfield of the firstemail_addressesmessageemail_addresses[3].type[2]for a violation in the secondtypevalue in the thirdemail_addressesmessage.
In JSON, the same values are represented as:
fullNamefor a violation in thefullNamevalueemailAddresses[1].emailfor a violation in theemailfield of the firstemailAddressesmessageemailAddresses[3].type[2]for a violation in the secondtypevalue in the thirdemailAddressesmessage.
-
Provides a localized error message that is safe to return to the user which can be attached to an RPC error.
-
The reason of the field-level error. This is a constant value that identifies the proximate cause of the field-level error. It should uniquely identify the type of the FieldViolation within the scope of the google.rpc.ErrorInfo.domain. This should be at most 63 characters and match a regular expression of
[A-Z][A-Z0-9_]+[A-Z0-9], which represents UPPER_SNAKE_CASE.
-
Describes the cause of the error with structured details.
Example of an error when contacting the "pubsub.googleapis.com" API when it is not enabled:
{ "reason": "API_DISABLED" "domain": "googleapis.com" "metadata": { "resource": "projects/123", "service": "pubsub.googleapis.com" } }
This response indicates that the pubsub.googleapis.com API is not enabled.
Example of an error that is returned when attempting to create a Spanner instance in a region that is out of stock:
{ "reason": "STOCKOUT" "domain": "spanner.googleapis.com", "metadata": { "availableRegions": "us-central1,us-east2" } }
Hide attributes Show attributes
-
Fully qualified protobuf type name of the underlying response, prefixed with
type.googleapis.com/.Value is
type.googleapis.com/google.rpc.ErrorInfo. -
The logical grouping to which the "reason" belongs. The error domain is typically the registered service name of the tool or product that generates the error. Example: "pubsub.googleapis.com". If the error is generated by some common infrastructure, the error domain must be a globally unique value that identifies the infrastructure. For Google API infrastructure, the error domain is "googleapis.com".
-
Additional structured details about this error.
Keys must match a regular expression of
[a-z][a-zA-Z0-9-_]+but should ideally be lowerCamelCase. Also, they must be limited to 64 characters in length. When identifying the current value of an exceeded limit, the units should be contained in the key, not the value. For example, rather than{"instanceLimit": "100/request"}, should be returned as,{"instanceLimitPerRequest": "100"}, if the client exceeds the number of instances that can be created in a single (batch) request. -
The reason of the error. This is a constant value that identifies the proximate cause of the error. Error reasons are unique within a particular domain of errors. This should be at most 63 characters and match a regular expression of
[A-Z][A-Z0-9_]+[A-Z0-9], which represents UPPER_SNAKE_CASE.
Describes how a quota check failed.
For example if a daily limit was exceeded for the calling project, a service could respond with a QuotaFailure detail containing the project id and the description of the quota limit that was exceeded. If the calling project hasn't enabled the service in the developer console, then a service could respond with the project id and set
service_disabledto true.Also see RetryInfo and Help types for other details about handling a quota failure.
Hide attributes Show attributes
-
Fully qualified protobuf type name of the underlying response, prefixed with
type.googleapis.com/.Value is
type.googleapis.com/google.rpc.QuotaFailure. -
Describes all quota violations.
A message type used to describe a single quota violation. For example, a daily quota or a custom quota that was exceeded.
Hide violations attributes Show violations attributes object
-
The API Service from which the
QuotaFailure.Violationorginates. In some cases, Quota issues originate from an API Service other than the one that was called. In other words, a dependency of the called API Service could be the cause of theQuotaFailure, and this field would have the dependency API service name.For example, if the called API is Kubernetes Engine API (container.googleapis.com), and a quota violation occurs in the Kubernetes Engine API itself, this field would be "container.googleapis.com". On the other hand, if the quota violation occurs when the Kubernetes Engine API creates VMs in the Compute Engine API (compute.googleapis.com), this field would be "compute.googleapis.com".
-
A description of how the quota check failed. Clients can use this description to find more about the quota configuration in the service's public documentation, or find the relevant quota limit to adjust through developer console.
For example: "Service disabled" or "Daily Limit for read operations exceeded".
-
The new quota value being rolled out at the time of the violation. At the completion of the rollout, this value will be enforced in place of quota_value. If no rollout is in progress at the time of the violation, this field is not set.
For example, if at the time of the violation a rollout is in progress changing the number of CPUs quota from 10 to 20, 20 would be the value of this field.
-
The dimensions of the violated quota. Every non-global quota is enforced on a set of dimensions. While quota metric defines what to count, the dimensions specify for what aspects the counter should be increased.
For example, the quota "CPUs per region per VM family" enforces a limit on the metric "compute.googleapis.com/cpus_per_vm_family" on dimensions "region" and "vm_family". And if the violation occurred in region "us-central1" and for VM family "n1", the quota_dimensions would be,
{ "region": "us-central1", "vm_family": "n1", }
When a quota is enforced globally, the quota_dimensions would always be empty.
-
The id of the violated quota. Also know as "limit name", this is the unique identifier of a quota in the context of an API service.
For example, "CPUS-PER-VM-FAMILY-per-project-region".
-
The metric of the violated quota. A quota metric is a named counter to measure usage, such as API requests or CPUs. When an activity occurs in a service, such as Virtual Machine allocation, one or more quota metrics may be affected.
For example, "compute.googleapis.com/cpus_per_vm_family", "storage.googleapis.com/internet_egress_bandwidth".
-
The enforced quota value at the time of the
QuotaFailure.For example, if the enforced quota value at the time of the
QuotaFailureon the number of CPUs is "10", then the value of this field would reflect this quantity. -
The subject on which the quota check failed. For example, "clientip:" or "project:".
-
Provides links to documentation or for performing an out of band action.
For example, if a quota check failed with an error indicating the calling project hasn't enabled the accessed service, this can contain a URL pointing directly to the right place in the developer console to flip the bit.
Hide attributes Show attributes
-
Fully qualified protobuf type name of the underlying response, prefixed with
type.googleapis.com/.Value is
type.googleapis.com/google.rpc.Help. -
URL(s) pointing to additional information on handling the current error.
Describes a URL link.
-
-
Detailed error message. No compatibility guarantees are given for the text contained in this message.
-
-
An unexpected error response.
Hide response attributes Show response attributes object
-
RPC status code, as described here.
Values are
OK,CANCELLED,UNKNOWN,INVALID_ARGUMENT,DEADLINE_EXCEEDED,NOT_FOUND,ALREADY_EXISTS,PERMISSION_DENIED,UNAUTHENTICATED,RESOURCE_EXHAUSTED,FAILED_PRECONDITION,ABORTED,OUT_OF_RANGE,UNIMPLEMENTED,INTERNAL,UNAVAILABLE, orDATA_LOSS. -
A list of messages that carries the error details.
Details of the error.
Details of the error.
One of: Describes violations in a client request. This error type focuses on the syntactic aspects of the request.
Hide attributes Show attributes
-
Fully qualified protobuf type name of the underlying response, prefixed with
type.googleapis.com/.Value is
type.googleapis.com/google.rpc.BadRequest. -
Describes all violations in a client request.
A message type used to describe a single bad request field.
Hide field_violations attributes Show field_violations attributes object
-
A description of why the request element is bad.
-
A path that leads to a field in the request body. The value will be a sequence of dot-separated identifiers that identify a protocol buffer field.
Consider the following:
message CreateContactRequest { message EmailAddress { enum Type { TYPE_UNSPECIFIED = 0; HOME = 1; WORK = 2; }
optional string email = 1; repeated EmailType type = 2; }
string full_name = 1; repeated EmailAddress email_addresses = 2; }
In this example, in proto
fieldcould take one of the following values:full_namefor a violation in thefull_namevalueemail_addresses[1].emailfor a violation in theemailfield of the firstemail_addressesmessageemail_addresses[3].type[2]for a violation in the secondtypevalue in the thirdemail_addressesmessage.
In JSON, the same values are represented as:
fullNamefor a violation in thefullNamevalueemailAddresses[1].emailfor a violation in theemailfield of the firstemailAddressesmessageemailAddresses[3].type[2]for a violation in the secondtypevalue in the thirdemailAddressesmessage.
-
Provides a localized error message that is safe to return to the user which can be attached to an RPC error.
-
The reason of the field-level error. This is a constant value that identifies the proximate cause of the field-level error. It should uniquely identify the type of the FieldViolation within the scope of the google.rpc.ErrorInfo.domain. This should be at most 63 characters and match a regular expression of
[A-Z][A-Z0-9_]+[A-Z0-9], which represents UPPER_SNAKE_CASE.
-
Describes the cause of the error with structured details.
Example of an error when contacting the "pubsub.googleapis.com" API when it is not enabled:
{ "reason": "API_DISABLED" "domain": "googleapis.com" "metadata": { "resource": "projects/123", "service": "pubsub.googleapis.com" } }
This response indicates that the pubsub.googleapis.com API is not enabled.
Example of an error that is returned when attempting to create a Spanner instance in a region that is out of stock:
{ "reason": "STOCKOUT" "domain": "spanner.googleapis.com", "metadata": { "availableRegions": "us-central1,us-east2" } }
Hide attributes Show attributes
-
Fully qualified protobuf type name of the underlying response, prefixed with
type.googleapis.com/.Value is
type.googleapis.com/google.rpc.ErrorInfo. -
The logical grouping to which the "reason" belongs. The error domain is typically the registered service name of the tool or product that generates the error. Example: "pubsub.googleapis.com". If the error is generated by some common infrastructure, the error domain must be a globally unique value that identifies the infrastructure. For Google API infrastructure, the error domain is "googleapis.com".
-
Additional structured details about this error.
Keys must match a regular expression of
[a-z][a-zA-Z0-9-_]+but should ideally be lowerCamelCase. Also, they must be limited to 64 characters in length. When identifying the current value of an exceeded limit, the units should be contained in the key, not the value. For example, rather than{"instanceLimit": "100/request"}, should be returned as,{"instanceLimitPerRequest": "100"}, if the client exceeds the number of instances that can be created in a single (batch) request. -
The reason of the error. This is a constant value that identifies the proximate cause of the error. Error reasons are unique within a particular domain of errors. This should be at most 63 characters and match a regular expression of
[A-Z][A-Z0-9_]+[A-Z0-9], which represents UPPER_SNAKE_CASE.
Describes how a quota check failed.
For example if a daily limit was exceeded for the calling project, a service could respond with a QuotaFailure detail containing the project id and the description of the quota limit that was exceeded. If the calling project hasn't enabled the service in the developer console, then a service could respond with the project id and set
service_disabledto true.Also see RetryInfo and Help types for other details about handling a quota failure.
Hide attributes Show attributes
-
Fully qualified protobuf type name of the underlying response, prefixed with
type.googleapis.com/.Value is
type.googleapis.com/google.rpc.QuotaFailure. -
Describes all quota violations.
A message type used to describe a single quota violation. For example, a daily quota or a custom quota that was exceeded.
Hide violations attributes Show violations attributes object
-
The API Service from which the
QuotaFailure.Violationorginates. In some cases, Quota issues originate from an API Service other than the one that was called. In other words, a dependency of the called API Service could be the cause of theQuotaFailure, and this field would have the dependency API service name.For example, if the called API is Kubernetes Engine API (container.googleapis.com), and a quota violation occurs in the Kubernetes Engine API itself, this field would be "container.googleapis.com". On the other hand, if the quota violation occurs when the Kubernetes Engine API creates VMs in the Compute Engine API (compute.googleapis.com), this field would be "compute.googleapis.com".
-
A description of how the quota check failed. Clients can use this description to find more about the quota configuration in the service's public documentation, or find the relevant quota limit to adjust through developer console.
For example: "Service disabled" or "Daily Limit for read operations exceeded".
-
The new quota value being rolled out at the time of the violation. At the completion of the rollout, this value will be enforced in place of quota_value. If no rollout is in progress at the time of the violation, this field is not set.
For example, if at the time of the violation a rollout is in progress changing the number of CPUs quota from 10 to 20, 20 would be the value of this field.
-
The dimensions of the violated quota. Every non-global quota is enforced on a set of dimensions. While quota metric defines what to count, the dimensions specify for what aspects the counter should be increased.
For example, the quota "CPUs per region per VM family" enforces a limit on the metric "compute.googleapis.com/cpus_per_vm_family" on dimensions "region" and "vm_family". And if the violation occurred in region "us-central1" and for VM family "n1", the quota_dimensions would be,
{ "region": "us-central1", "vm_family": "n1", }
When a quota is enforced globally, the quota_dimensions would always be empty.
-
The id of the violated quota. Also know as "limit name", this is the unique identifier of a quota in the context of an API service.
For example, "CPUS-PER-VM-FAMILY-per-project-region".
-
The metric of the violated quota. A quota metric is a named counter to measure usage, such as API requests or CPUs. When an activity occurs in a service, such as Virtual Machine allocation, one or more quota metrics may be affected.
For example, "compute.googleapis.com/cpus_per_vm_family", "storage.googleapis.com/internet_egress_bandwidth".
-
The enforced quota value at the time of the
QuotaFailure.For example, if the enforced quota value at the time of the
QuotaFailureon the number of CPUs is "10", then the value of this field would reflect this quantity. -
The subject on which the quota check failed. For example, "clientip:" or "project:".
-
Provides links to documentation or for performing an out of band action.
For example, if a quota check failed with an error indicating the calling project hasn't enabled the accessed service, this can contain a URL pointing directly to the right place in the developer console to flip the bit.
Hide attributes Show attributes
-
Fully qualified protobuf type name of the underlying response, prefixed with
type.googleapis.com/.Value is
type.googleapis.com/google.rpc.Help. -
URL(s) pointing to additional information on handling the current error.
Describes a URL link.
-
-
Detailed error message. No compatibility guarantees are given for the text contained in this message.
-
curl \
--request GET 'https://{dataplane_api_subdomain}.cloud.redpanda.com/v1/monitoring/kafka/connections' \
--header "Authorization: Bearer $ACCESS_TOKEN"{
"connections": [
{
"api_versions": {
"additionalProperty1": 42,
"additionalProperty2": 42
},
"authentication_info": {
"mechanism": "AUTHENTICATION_MECHANISM_MTLS",
"state": "AUTHENTICATION_STATE_UNAUTHENTICATED",
"user_principal": "string"
},
"client_id": "string",
"client_software_name": "string",
"client_software_version": "string",
"close_time": "2025-05-04T09:42:00Z",
"group_id": "string",
"group_instance_id": "string",
"group_member_id": "string",
"idle_duration": "string",
"in_flight_requests": {
"has_more_requests": true,
"sampled_in_flight_requests": [
{
"api_key": 42,
"in_flight_duration": "string"
}
]
},
"listener_name": "string",
"node_id": 42,
"open_time": "2025-05-04T09:42:00Z",
"recent_request_statistics": {
"fetch_bytes": "string",
"produce_batch_count": "string",
"produce_bytes": "string",
"request_count": "string"
},
"shard_id": 42,
"source": {
"ip_address": "string",
"port": 42
},
"state": "KAFKA_CONNECTION_STATE_OPEN",
"tls_info": {
"enabled": true
},
"total_request_statistics": {
"fetch_bytes": "string",
"produce_batch_count": "string",
"produce_bytes": "string",
"request_count": "string"
},
"transactional_id": "string",
"uid": "string"
}
],
"total_size": "string"
}{
"code": "OK",
"details": [
{
"@type": "type.googleapis.com/google.rpc.BadRequest",
"field_violations": [
{
"description": "string",
"field": "string",
"localized_message": {
"locale": "string",
"message": "string"
},
"reason": "string"
}
]
}
],
"message": "string"
}{
"code": "OK",
"details": [
{
"@type": "type.googleapis.com/google.rpc.BadRequest",
"field_violations": [
{
"description": "string",
"field": "string",
"localized_message": {
"locale": "string",
"message": "string"
},
"reason": "string"
}
]
}
],
"message": "string"
}{
"code": "OK",
"details": [
{
"@type": "type.googleapis.com/google.rpc.BadRequest",
"field_violations": [
{
"description": "string",
"field": "string",
"localized_message": {
"locale": "string",
"message": "string"
},
"reason": "string"
}
]
}
],
"message": "string"
}