-
Notifications
You must be signed in to change notification settings - Fork 5
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Signed-off-by: Sebastian Hoß <[email protected]>
- Loading branch information
Showing
20 changed files
with
4,357 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
1 change: 1 addition & 0 deletions
1
crd-catalog/3scale-ops/marin3r/marin3r.3scale.net/v1alpha1/envoyconfigrevisions.args
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
--derive=PartialEq |
388 changes: 388 additions & 0 deletions
388
crd-catalog/3scale-ops/marin3r/marin3r.3scale.net/v1alpha1/envoyconfigrevisions.yaml
Large diffs are not rendered by default.
Oops, something went wrong.
1 change: 1 addition & 0 deletions
1
crd-catalog/3scale-ops/marin3r/marin3r.3scale.net/v1alpha1/envoyconfigs.args
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
--derive=PartialEq |
393 changes: 393 additions & 0 deletions
393
crd-catalog/3scale-ops/marin3r/marin3r.3scale.net/v1alpha1/envoyconfigs.yaml
Large diffs are not rendered by default.
Oops, something went wrong.
178 changes: 178 additions & 0 deletions
178
...3scale-ops/marin3r/operator.marin3r.3scale.net/v1alpha1/discoveryservicecertificates.yaml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,178 @@ | ||
apiVersion: "apiextensions.k8s.io/v1" | ||
kind: "CustomResourceDefinition" | ||
metadata: | ||
annotations: | ||
controller-gen.kubebuilder.io/version: "v0.11.3" | ||
name: "discoveryservicecertificates.operator.marin3r.3scale.net" | ||
spec: | ||
group: "operator.marin3r.3scale.net" | ||
names: | ||
kind: "DiscoveryServiceCertificate" | ||
listKind: "DiscoveryServiceCertificateList" | ||
plural: "discoveryservicecertificates" | ||
singular: "discoveryservicecertificate" | ||
scope: "Namespaced" | ||
versions: | ||
- additionalPrinterColumns: | ||
- jsonPath: ".status.ready" | ||
name: "Ready" | ||
type: "boolean" | ||
- format: "date-time" | ||
jsonPath: ".status.notBefore" | ||
name: "Not Before" | ||
type: "string" | ||
- format: "date-time" | ||
jsonPath: ".status.notAfter" | ||
name: "Not After" | ||
type: "string" | ||
name: "v1alpha1" | ||
schema: | ||
openAPIV3Schema: | ||
description: "DiscoveryServiceCertificate is an internal resource used to create certificates. This resource is used by the DiscoveryService controller to create the required certificates for the different components. Direct use of DiscoveryServiceCertificate objects is discouraged." | ||
properties: | ||
apiVersion: | ||
description: "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources" | ||
type: "string" | ||
kind: | ||
description: "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds" | ||
type: "string" | ||
metadata: | ||
type: "object" | ||
spec: | ||
description: "DiscoveryServiceCertificateSpec defines the desired state of DiscoveryServiceCertificate" | ||
properties: | ||
certificateRenewal: | ||
description: "CertificateRenewalConfig configures the certificate renewal process. If unset default behavior is to renew the certificate but not notify of renewals." | ||
properties: | ||
enabled: | ||
description: "Enabled is a flag to enable or disable renewal of the certificate" | ||
type: "boolean" | ||
required: | ||
- "enabled" | ||
type: "object" | ||
commonName: | ||
description: "CommonName is the CommonName of the certificate" | ||
type: "string" | ||
hosts: | ||
description: "Hosts is the list of hosts the certificate is valid for. Only use when 'IsServerCertificate' is true. If unset, the CommonName field will be used to populate the valid hosts of the certificate." | ||
items: | ||
type: "string" | ||
type: "array" | ||
isCA: | ||
description: "IsCA is a boolean specifying that the certificate is a CA" | ||
type: "boolean" | ||
secretRef: | ||
description: "SecretRef is a reference to the secret that will hold the certificate and the private key." | ||
properties: | ||
name: | ||
description: "name is unique within a namespace to reference a secret resource." | ||
type: "string" | ||
namespace: | ||
description: "namespace defines the space within which the secret name must be unique." | ||
type: "string" | ||
type: "object" | ||
x-kubernetes-map-type: "atomic" | ||
server: | ||
description: "IsServerCertificate is a boolean specifying if the certificate should be issued with server auth usage enabled" | ||
type: "boolean" | ||
signer: | ||
description: "Signer specifies the signer to use to create this certificate. Supported signers are CertManager and SelfSigned." | ||
properties: | ||
caSigned: | ||
description: "CASigned holds specific configuration for the CASigned signer" | ||
properties: | ||
caSecretRef: | ||
description: "A reference to a Secret containing the CA" | ||
properties: | ||
name: | ||
description: "name is unique within a namespace to reference a secret resource." | ||
type: "string" | ||
namespace: | ||
description: "namespace defines the space within which the secret name must be unique." | ||
type: "string" | ||
type: "object" | ||
x-kubernetes-map-type: "atomic" | ||
required: | ||
- "caSecretRef" | ||
type: "object" | ||
selfSigned: | ||
description: "SelfSigned holds specific configuration for the SelfSigned signer" | ||
type: "object" | ||
type: "object" | ||
validFor: | ||
description: "ValidFor specifies the validity of the certificate in seconds" | ||
format: "int64" | ||
type: "integer" | ||
required: | ||
- "commonName" | ||
- "secretRef" | ||
- "signer" | ||
- "validFor" | ||
type: "object" | ||
status: | ||
description: "DiscoveryServiceCertificateStatus defines the observed state of DiscoveryServiceCertificate" | ||
properties: | ||
certificateHash: | ||
description: "CertificateHash stores the current hash of the certificate. It is used for other controllers to validate if a certificate has been re-issued." | ||
type: "string" | ||
conditions: | ||
description: "Conditions represent the latest available observations of an object's state" | ||
items: | ||
description: "Condition contains details for one aspect of the current state of this API Resource. --- This struct is intended for direct use as an array at the field path .status.conditions. For example, \n type FooStatus struct{ // Represents the observations of a foo's current state. // Known .status.conditions.type are: \"Available\", \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge // +listType=map // +listMapKey=type Conditions []metav1.Condition `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }" | ||
properties: | ||
lastTransitionTime: | ||
description: "lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable." | ||
format: "date-time" | ||
type: "string" | ||
message: | ||
description: "message is a human readable message indicating details about the transition. This may be an empty string." | ||
maxLength: 32768 | ||
type: "string" | ||
observedGeneration: | ||
description: "observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance." | ||
format: "int64" | ||
minimum: 0.0 | ||
type: "integer" | ||
reason: | ||
description: "reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty." | ||
maxLength: 1024 | ||
minLength: 1 | ||
pattern: "^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$" | ||
type: "string" | ||
status: | ||
description: "status of the condition, one of True, False, Unknown." | ||
enum: | ||
- "True" | ||
- "False" | ||
- "Unknown" | ||
type: "string" | ||
type: | ||
description: "type of condition in CamelCase or in foo.example.com/CamelCase. --- Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be useful (see .node.status.conditions), the ability to deconflict is important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)" | ||
maxLength: 316 | ||
pattern: "^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$" | ||
type: "string" | ||
required: | ||
- "lastTransitionTime" | ||
- "message" | ||
- "reason" | ||
- "status" | ||
- "type" | ||
type: "object" | ||
type: "array" | ||
notAfter: | ||
description: "NotAfter is the time at which the certificate expires" | ||
format: "date-time" | ||
type: "string" | ||
notBefore: | ||
description: "NotBefore is the time at which the certificate starts being valid" | ||
format: "date-time" | ||
type: "string" | ||
ready: | ||
description: "Ready is a boolean that specifies if the certificate is ready to be used" | ||
type: "boolean" | ||
type: "object" | ||
type: "object" | ||
served: true | ||
storage: true | ||
subresources: | ||
status: {} |
Oops, something went wrong.