Discuss with expertTry it for free
© 2026 Direct Cursus Technology L.L.C.

Configuring metadata service parameters for a function

Written by
Updated at May 14, 2026

You can configure metadata service parameters when creating a function version.

The following options are available:

  • awsV1HttpEndpoint: Provides access to metadata using the AWS format (IMDSv1). It can be either enabled or disabled. If set to disabled, the metadata request will fail with the 404 Not Found error. The default value is enabled.

    Note

    awsV1HttpEndpoint is enabled by default, but we recommend disabling it. The IMDSv1 format comes with a number of security vulnerabilities. Its most severe flaw is the high risk of attacks, such as SSRF. For more information, see the AWS official blog.

  • gceHttpEndpoint: Provides access to metadata using the Google Compute Engine format. It can be either enabled or disabled. If set to disabled, the metadata request will fail with the 404 Not Found error. The default value is enabled.

  1. In the management console, navigate to the folder containing the function.
  2. Go to Cloud Functions.
  3. Select the function.
  4. Navigate to the Editor tab.
  5. Expand Additional settings.
  6. Under Metadata service parameters, configure the parameters of the function metadata service: Access metadata using the Google Compute Engine format and Access metadata using the AWS format (IMDSv1).
  7. Click Save changes.

To configure metadata service parameters for a function, run this command:

yc serverless function version create \
  --function-id=<function_ID> \
  --runtime <runtime> \
  --entrypoint <entry_point> \
  --source-version-id <version_ID> \
  --metadata-options <option>=<enabled_or_disabled>

Where:

  • --function-id: ID of the function whose new version you want to create. To find out the function ID, get the list of functions in the folder.
  • --runtime: Runtime.
  • --entrypoint: Entry point in <function_file_name>.<handler_name> format.
  • --source-version-id: ID of the function version from which you want to copy the code. To find out the ID, get the list of function versions.
  • --metadata-options: Settings for the metadata service parameters, e.g., aws-v1-http-endpoint=disabled.

With Terraform, you can quickly create a cloud infrastructure in Yandex Cloud and manage it using configuration files. These files store the infrastructure description written in HashiCorp Configuration Language (HCL). If you change the configuration files, Terraform automatically detects which part of your configuration is already deployed, and what should be added or removed.

Terraform is distributed under the Business Source License. The Yandex Cloud provider for Terraform is distributed under the MPL-2.0 license.

For more information about the provider resources, see the relevant documentation on the Terraform website or its mirror.

If you do not have Terraform yet, install it and configure the Yandex Cloud provider.

To configure metadata service parameters for a function:

  1. Open the Terraform configuration file and add the metadata_options section to the function description:

    resource "yandex_function" "metadata_function" {
  name               = "<function_name>"
  user_hash          = "<function_hash>"
  runtime            = "<runtime>"
  entrypoint         = "<entry_point>"
  memory             = "<RAM_amount>"
  execution_timeout  = "<execution_timeout>"
  service_account_id = "<service_account_ID>"
  content {
    zip_filename = "<path_to_ZIP_archive>"
  }

  metadata_options {
    metadata_options.0.gce_http_endpoint = "0_or_1_or_2"
    metadata_options.0.aws_v1_http_endpoint = "0_or_1_or_2"
  }
}

    Where:

    • metadata_options: Settings for the metadata service parameters, e.g., metadata_options.0.gce_http_endpoint = "1". Specify the following:
      • 0 if you want to keep the default value.
      • 1 to enable the parameter.
      • 2 to disable the parameter.

    For more information about yandex_function resource properties, see this provider guide.

  2. Apply the changes:

    1. In the terminal, navigate to the configuration file directory.

    2. Make sure the configuration is correct using this command:

      terraform validate

      If the configuration is valid, you will get this message:

      Success! The configuration is valid.

    3. Run this command:

      terraform plan

      You will see a list of resources and their properties. No changes will be made at this step. Terraform will show any errors in the configuration.

    4. Apply the configuration changes:

      terraform apply

    5. Type yes and press Enter to confirm the changes.

You can check the function update and its new configuration using the management console or this CLI command:

yc serverless function version get <function_version_ID>

To create a function version, use the createVersion REST API method for the Function resource or the FunctionService/CreateVersion gRPC API call.

Previous
Getting information about a function version
Next
Making a function public