Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

add openshift/certman-operator #314

Merged
merged 1 commit into from
Sep 15, 2024
Merged

add openshift/certman-operator #314

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 4 additions & 0 deletions .reuse/dep5
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -991,6 +991,10 @@ Files: crd-catalog/open-telemetry/opentelemetry-operator/*
Copyright: The open-telemetry/opentelemetry-operator Authors
License: Apache-2.0

Files: crd-catalog/openshift/certman-operator/*
Copyright: The openshift/certman-operator Authors
License: Apache-2.0

Files: crd-catalog/openshift/hive/*
Copyright: The openshift/hive Authors
License: Apache-2.0
Expand Down
7 changes: 7 additions & 0 deletions code-generator/src/catalog.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2504,6 +2504,13 @@ pub const CRD_V1_SOURCES: &'static [UpstreamSource] = &[
"https://github.com/open-telemetry/opentelemetry-operator/blob/main/config/crd/bases/opentelemetry.io_opentelemetrycollectors.yaml",
],
},
UpstreamSource {
project_name: "openshift/certman-operator",
license: APACHE_V2,
urls: &[
"https://github.com/openshift/certman-operator/blob/master/deploy/crds/certman.managed.openshift.io_certificaterequests.yaml",
],
},
UpstreamSource {
project_name: "openshift/hive",
license: APACHE_V2,
Expand Down
223 changes: 223 additions & 0 deletions ...openshift/certman-operator/certman.managed.openshift.io/v1alpha1/certificaterequests.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,223 @@
apiVersion: "apiextensions.k8s.io/v1"
kind: "CustomResourceDefinition"
metadata:
annotations:
controller-gen.kubebuilder.io/version: "v0.15.0"
name: "certificaterequests.certman.managed.openshift.io"
spec:
group: "certman.managed.openshift.io"
names:
kind: "CertificateRequest"
listKind: "CertificateRequestList"
plural: "certificaterequests"
singular: "certificaterequest"
scope: "Namespaced"
versions:
- additionalPrinterColumns:
- jsonPath: ".status.issuerName"
name: "IssuerName"
type: "string"
- jsonPath: ".status.notBefore"
name: "NotBefore"
type: "string"
- jsonPath: ".status.notAfter"
name: "NotAfter"
type: "string"
- jsonPath: ".spec.certificateSecret.name"
name: "Secret"
type: "string"
name: "v1alpha1"
schema:
openAPIV3Schema:
description: "CertificateRequest is the Schema for the certificaterequests API"
properties:
apiVersion:
description: "APIVersion defines the versioned schema of this representation of an object.\nServers should convert recognized schemas to the latest internal value, and\nmay reject unrecognized values.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources"
type: "string"
kind:
description: "Kind is a string value representing the REST resource this object represents.\nServers may infer this from the endpoint the client submits requests to.\nCannot be updated.\nIn CamelCase.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
type: "string"
metadata:
type: "object"
spec:
description: "CertificateRequestSpec defines the desired state of CertificateRequest"
properties:
acmeDNSDomain:
description: "ACMEDNSDomain is the DNS zone that will house the TXT records needed for the\ncertificate to be created.\nIn Route53 this would be the public Route53 hosted zone (the Domain Name not the ZoneID)"
type: "string"
apiURL:
description: "APIURL is the URL where the cluster's API can be accessed."
type: "string"
certificateSecret:
description: "CertificateSecret is the reference to the secret where certificates are stored."
properties:
apiVersion:
description: "API version of the referent."
type: "string"
fieldPath:
description: "If referring to a piece of an object instead of an entire object, this string\nshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].\nFor example, if the object reference is to a container within a pod, this would take on a value like:\n\"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered\nthe event) or if no container name is specified \"spec.containers[2]\" (container with\nindex 2 in this pod). This syntax is chosen only to have some well-defined way of\nreferencing a part of an object.\nTODO: this design is not final and this field is subject to change in the future."
type: "string"
kind:
description: "Kind of the referent.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds"
type: "string"
name:
description: "Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names"
type: "string"
namespace:
description: "Namespace of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/"
type: "string"
resourceVersion:
description: "Specific resourceVersion to which this reference is made, if any.\nMore info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency"
type: "string"
uid:
description: "UID of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids"
type: "string"
type: "object"
x-kubernetes-map-type: "atomic"
dnsNames:
description: "DNSNames is a list of subject alt names to be used on the Certificate."
items:
type: "string"
type: "array"
email:
description: "Let's Encrypt will use this to contact you about expiring certificates, and issues related to your account."
type: "string"
platform:
description: "Platform contains specific cloud provider information such as credentials and secrets for the cluster infrastructure."
properties:
aws:
description: "AWSPlatformSecrets contains secrets for clusters on the AWS platform."
properties:
credentials:
description: "Credentials refers to a secret that contains the AWS account access\ncredentials."
properties:
name:
description: "Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?"
type: "string"
type: "object"
x-kubernetes-map-type: "atomic"
region:
description: "Region specifies the AWS region where the cluster will be created."
type: "string"
required:
- "credentials"
- "region"
type: "object"
azure:
description: "AzurePlatformSecrets contains secrets for clusters on the Azure platform."
properties:
credentials:
description: "Credentials refers to a secret that contains the AZURE account access credentials."
properties:
name:
description: "Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?"
type: "string"
type: "object"
x-kubernetes-map-type: "atomic"
resourceGroupName:
description: "ResourceGroupName refers to the resource group that contains the dns zone."
type: "string"
required:
- "credentials"
- "resourceGroupName"
type: "object"
gcp:
description: "GCPPlatformSecrets contains secrets for clusters on the GCP platform."
properties:
credentials:
description: "Credentials refers to a secret that contains the GCP account access\ncredentials."
properties:
name:
description: "Name of the referent.\nMore info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names\nTODO: Add other useful fields. apiVersion, kind, uid?"
type: "string"
type: "object"
x-kubernetes-map-type: "atomic"
required:
- "credentials"
type: "object"
mock:
description: "MockPlatformSecrets indicates a mock client should be generated, which\ndoesn't interact with any platform"
properties:
answerDNSChallengeErrorString:
type: "string"
answerDNSChallengeFQDN:
description: "these options configure the return values for the mock client's functions"
type: "string"
deleteAcmeChallengeResourceRecordsErrorString:
type: "string"
validateDNSWriteAccessBool:
type: "boolean"
validateDNSWriteAccessErrorString:
type: "string"
type: "object"
type: "object"
renewBeforeDays:
description: "Number of days before expiration to reissue certificate.\nNOTE: Keeping \"renew\" in JSON for backward-compatibility."
type: "integer"
webConsoleURL:
description: "WebConsoleURL is the URL for the cluster's web console UI."
type: "string"
required:
- "acmeDNSDomain"
- "certificateSecret"
- "dnsNames"
- "email"
- "platform"
type: "object"
status:
description: "CertificateRequestStatus defines the observed state of CertificateRequest"
properties:
conditions:
description: "Conditions includes more detailed status for the Certificate Request"
items:
description: "CertificateRequestCondition defines conditions required for certificate requests."
properties:
lastProbeTime:
description: "LastProbeTime is the last time we probed the condition."
format: "date-time"
type: "string"
lastTransitionTime:
description: "LastTransitionTime is the last time the condition transitioned from one status to another."
format: "date-time"
type: "string"
message:
description: "Message is a human-readable message indicating details about last transition."
type: "string"
reason:
description: "Reason is a unique, one-word, CamelCase reason for the condition's last transition."
type: "string"
status:
description: "Status is the status of the condition."
type: "string"
type:
description: "Type is the type of the condition."
type: "string"
required:
- "status"
- "type"
type: "object"
type: "array"
issued:
description: "Issued is true once certificates have been issued."
type: "boolean"
issuerName:
description: "The entity that verified the information and signed the certificate."
type: "string"
notAfter:
description: "The expiration time of the certificate stored in the secret named by this resource in spec.secretName."
type: "string"
notBefore:
description: "The earliest time and date on which the certificate stored in the secret named by this resource in spec.secretName is valid."
type: "string"
serialNumber:
description: "The serial number of the certificate stored in the secret named by this resource in spec.secretName."
type: "string"
status:
description: "Status"
type: "string"
type: "object"
type: "object"
served: true
storage: true
subresources:
status: {}
1 change: 1 addition & 0 deletions kube-custom-resources-rs/Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -92,6 +92,7 @@ capsule_clastix_io = []
cassandra_datastax_com = []
ceph_rook_io = []
cert_manager_io = []
certman_managed_openshift_io = []
chainsaw_kyverno_io = []
chaos_mesh_org = []
chaosblade_io = []
Expand Down
1 change: 1 addition & 0 deletions kube-custom-resources-rs/src/certman_managed_openshift_io/mod.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
pub mod v1alpha1;
Loading