diff --git a/pkg/templates/managed-serviceaccount/crds/authentication.open-cluster-management.io_managedserviceaccounts.yaml b/pkg/templates/managed-serviceaccount/crds/authentication.open-cluster-management.io_managedserviceaccounts.yaml index c5721dbc6..8194a90ee 100644 --- a/pkg/templates/managed-serviceaccount/crds/authentication.open-cluster-management.io_managedserviceaccounts.yaml +++ b/pkg/templates/managed-serviceaccount/crds/authentication.open-cluster-management.io_managedserviceaccounts.yaml @@ -1,11 +1,9 @@ - --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.6.2 - creationTimestamp: null + controller-gen.kubebuilder.io/version: v0.14.0 name: managedserviceaccounts.authentication.open-cluster-management.io spec: group: authentication.open-cluster-management.io @@ -27,14 +25,19 @@ spec: API properties: apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object @@ -46,8 +49,9 @@ spec: properties: enabled: default: true - description: Enabled prescribes whether the ServiceAccount token - will be rotated from the upstream + description: |- + Enabled prescribes whether the ServiceAccount token will + be rotated from the upstream type: boolean validity: default: 8640h0m0s @@ -56,15 +60,15 @@ spec: type: string type: object ttlSecondsAfterCreation: - description: ttlSecondsAfterCreation limits the lifetime of a ManagedServiceAccount. - If the ttlSecondsAfterCreation field is set, the ManagedServiceAccount - will be automatically deleted regardless of the ManagedServiceAccount's - status. When the ManagedServiceAccount is deleted, its lifecycle - guarantees (e.g. finalizers) will be honored. If this field is unset, - the ManagedServiceAccount won't be automatically deleted. If this - field is set to zero, the ManagedServiceAccount becomes eligible - for deletion immediately after its creation. In order to use ttlSecondsAfterCreation, - the EphemeralIdentity feature gate must be enabled. + description: |- + ttlSecondsAfterCreation limits the lifetime of a ManagedServiceAccount. + If the ttlSecondsAfterCreation field is set, the ManagedServiceAccount will be + automatically deleted regardless of the ManagedServiceAccount's status. + When the ManagedServiceAccount is deleted, its lifecycle guarantees + (e.g. finalizers) will be honored. If this field is unset, the ManagedServiceAccount + won't be automatically deleted. If this field is set to zero, the + ManagedServiceAccount becomes eligible for deletion immediately after its creation. + In order to use ttlSecondsAfterCreation, the EphemeralIdentity feature gate must be enabled. exclusiveMinimum: true format: int32 minimum: 0 @@ -80,44 +84,42 @@ spec: description: Conditions is the condition list. items: description: "Condition contains details for one aspect of the current - state of this API Resource. --- This struct is intended for direct - use as an array at the field path .status.conditions. For example, - \n \ttype FooStatus struct{ \t // Represents the observations - of a foo's current state. \t // Known .status.conditions.type - are: \"Available\", \"Progressing\", and \"Degraded\" \t // - +patchMergeKey=type \t // +patchStrategy=merge \t // +listType=map - \t // +listMapKey=type \t Conditions []metav1.Condition - `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" - protobuf:\"bytes,1,rep,name=conditions\"` \n \t // other fields - \t}" + state of this API Resource.\n---\nThis struct is intended for + direct use as an array at the field path .status.conditions. For + example,\n\n\n\ttype FooStatus struct{\n\t // Represents the + observations of a foo's current state.\n\t // Known .status.conditions.type + are: \"Available\", \"Progressing\", and \"Degraded\"\n\t // + +patchMergeKey=type\n\t // +patchStrategy=merge\n\t // +listType=map\n\t + \ // +listMapKey=type\n\t Conditions []metav1.Condition `json:\"conditions,omitempty\" + patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"`\n\n\n\t + \ // other fields\n\t}" properties: lastTransitionTime: - description: lastTransitionTime is the last time the condition - transitioned from one status to another. This should be when - the underlying condition changed. If that is not known, then - using the time when the API field changed is acceptable. + description: |- + lastTransitionTime is the last time the condition transitioned from one status to another. + This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. format: date-time type: string message: - description: message is a human readable message indicating - details about the transition. This may be an empty string. + description: |- + message is a human readable message indicating details about the transition. + This may be an empty string. maxLength: 32768 type: string observedGeneration: - description: observedGeneration represents the .metadata.generation - that the condition was set based upon. For instance, if .metadata.generation - is currently 12, but the .status.conditions[x].observedGeneration - is 9, the condition is out of date with respect to the current - state of the instance. + description: |- + observedGeneration represents the .metadata.generation that the condition was set based upon. + For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date + with respect to the current state of the instance. format: int64 minimum: 0 type: integer reason: - description: reason contains a programmatic identifier indicating - the reason for the condition's last transition. Producers - of specific condition types may define expected values and - meanings for this field, and whether the values are considered - a guaranteed API. The value should be a CamelCase string. + description: |- + reason contains a programmatic identifier indicating the reason for the condition's last transition. + Producers of specific condition types may define expected values and meanings for this field, + and whether the values are considered a guaranteed API. + The value should be a CamelCase string. This field may not be empty. maxLength: 1024 minLength: 1 @@ -131,11 +133,12 @@ spec: - Unknown type: string type: - description: type of condition in CamelCase or in foo.example.com/CamelCase. - --- Many .condition.type values are consistent across resources - like Available, but because arbitrary conditions can be useful - (see .node.status.conditions), the ability to deconflict is - important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt) + description: |- + type of condition in CamelCase or in foo.example.com/CamelCase. + --- + Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be + useful (see .node.status.conditions), the ability to deconflict is important. + The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt) maxLength: 316 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ type: string @@ -152,13 +155,14 @@ spec: format: date-time type: string tokenSecretRef: - description: TokenSecretRef is a reference to the corresponding ServiceAccount's - Secret, which stores the CA certficate and token from the managed - cluster. + description: |- + TokenSecretRef is a reference to the corresponding ServiceAccount's Secret, which stores + the CA certficate and token from the managed cluster. properties: lastRefreshTimestamp: - description: LastRefreshTimestamp is the timestamp indicating - when the token in the Secret is refreshed. + description: |- + LastRefreshTimestamp is the timestamp indicating when the token in the Secret + is refreshed. format: date-time type: string name: @@ -181,14 +185,19 @@ spec: API properties: apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object @@ -200,8 +209,9 @@ spec: properties: enabled: default: true - description: Enabled prescribes whether the ServiceAccount token - will be rotated from the upstream + description: |- + Enabled prescribes whether the ServiceAccount token will + be rotated from the upstream type: boolean validity: default: 8640h0m0s @@ -210,15 +220,15 @@ spec: type: string type: object ttlSecondsAfterCreation: - description: ttlSecondsAfterCreation limits the lifetime of a ManagedServiceAccount. - If the ttlSecondsAfterCreation field is set, the ManagedServiceAccount - will be automatically deleted regardless of the ManagedServiceAccount's - status. When the ManagedServiceAccount is deleted, its lifecycle - guarantees (e.g. finalizers) will be honored. If this field is unset, - the ManagedServiceAccount won't be automatically deleted. If this - field is set to zero, the ManagedServiceAccount becomes eligible - for deletion immediately after its creation. In order to use ttlSecondsAfterCreation, - the EphemeralIdentity feature gate must be enabled. + description: |- + ttlSecondsAfterCreation limits the lifetime of a ManagedServiceAccount. + If the ttlSecondsAfterCreation field is set, the ManagedServiceAccount will be + automatically deleted regardless of the ManagedServiceAccount's status. + When the ManagedServiceAccount is deleted, its lifecycle guarantees + (e.g. finalizers) will be honored. If this field is unset, the ManagedServiceAccount + won't be automatically deleted. If this field is set to zero, the + ManagedServiceAccount becomes eligible for deletion immediately after its creation. + In order to use ttlSecondsAfterCreation, the EphemeralIdentity feature gate must be enabled. exclusiveMinimum: true format: int32 minimum: 0 @@ -234,44 +244,42 @@ spec: description: Conditions is the condition list. items: description: "Condition contains details for one aspect of the current - state of this API Resource. --- This struct is intended for direct - use as an array at the field path .status.conditions. For example, - \n \ttype FooStatus struct{ \t // Represents the observations - of a foo's current state. \t // Known .status.conditions.type - are: \"Available\", \"Progressing\", and \"Degraded\" \t // - +patchMergeKey=type \t // +patchStrategy=merge \t // +listType=map - \t // +listMapKey=type \t Conditions []metav1.Condition - `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\" - protobuf:\"bytes,1,rep,name=conditions\"` \n \t // other fields - \t}" + state of this API Resource.\n---\nThis struct is intended for + direct use as an array at the field path .status.conditions. For + example,\n\n\n\ttype FooStatus struct{\n\t // Represents the + observations of a foo's current state.\n\t // Known .status.conditions.type + are: \"Available\", \"Progressing\", and \"Degraded\"\n\t // + +patchMergeKey=type\n\t // +patchStrategy=merge\n\t // +listType=map\n\t + \ // +listMapKey=type\n\t Conditions []metav1.Condition `json:\"conditions,omitempty\" + patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"`\n\n\n\t + \ // other fields\n\t}" properties: lastTransitionTime: - description: lastTransitionTime is the last time the condition - transitioned from one status to another. This should be when - the underlying condition changed. If that is not known, then - using the time when the API field changed is acceptable. + description: |- + lastTransitionTime is the last time the condition transitioned from one status to another. + This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. format: date-time type: string message: - description: message is a human readable message indicating - details about the transition. This may be an empty string. + description: |- + message is a human readable message indicating details about the transition. + This may be an empty string. maxLength: 32768 type: string observedGeneration: - description: observedGeneration represents the .metadata.generation - that the condition was set based upon. For instance, if .metadata.generation - is currently 12, but the .status.conditions[x].observedGeneration - is 9, the condition is out of date with respect to the current - state of the instance. + description: |- + observedGeneration represents the .metadata.generation that the condition was set based upon. + For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date + with respect to the current state of the instance. format: int64 minimum: 0 type: integer reason: - description: reason contains a programmatic identifier indicating - the reason for the condition's last transition. Producers - of specific condition types may define expected values and - meanings for this field, and whether the values are considered - a guaranteed API. The value should be a CamelCase string. + description: |- + reason contains a programmatic identifier indicating the reason for the condition's last transition. + Producers of specific condition types may define expected values and meanings for this field, + and whether the values are considered a guaranteed API. + The value should be a CamelCase string. This field may not be empty. maxLength: 1024 minLength: 1 @@ -285,11 +293,12 @@ spec: - Unknown type: string type: - description: type of condition in CamelCase or in foo.example.com/CamelCase. - --- Many .condition.type values are consistent across resources - like Available, but because arbitrary conditions can be useful - (see .node.status.conditions), the ability to deconflict is - important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt) + description: |- + type of condition in CamelCase or in foo.example.com/CamelCase. + --- + Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be + useful (see .node.status.conditions), the ability to deconflict is important. + The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt) maxLength: 316 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ type: string @@ -306,13 +315,14 @@ spec: format: date-time type: string tokenSecretRef: - description: TokenSecretRef is a reference to the corresponding ServiceAccount's - Secret, which stores the CA certficate and token from the managed - cluster. + description: |- + TokenSecretRef is a reference to the corresponding ServiceAccount's Secret, which stores + the CA certficate and token from the managed cluster. properties: lastRefreshTimestamp: - description: LastRefreshTimestamp is the timestamp indicating - when the token in the Secret is refreshed. + description: |- + LastRefreshTimestamp is the timestamp indicating when the token in the Secret + is refreshed. format: date-time type: string name: @@ -328,9 +338,3 @@ spec: storage: true subresources: status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: []