crossplane
170 строк · 6.6 Кб
1apiVersion: apiextensions.k8s.io/v12kind: CustomResourceDefinition3metadata:4annotations:5controller-gen.kubebuilder.io/version: v0.14.06name: storeconfigs.secrets.crossplane.io7spec:8group: secrets.crossplane.io9names:10categories:11- crossplane12- store13kind: StoreConfig14listKind: StoreConfigList15plural: storeconfigs16singular: storeconfig17scope: Cluster18versions:19- additionalPrinterColumns:20- jsonPath: .metadata.creationTimestamp21name: AGE22type: date23- jsonPath: .spec.type24name: TYPE25type: string26- jsonPath: .spec.defaultScope27name: DEFAULT-SCOPE28type: string29name: v1alpha130schema:31openAPIV3Schema:32description: A StoreConfig configures how Crossplane controllers should store33connection details.34properties:35apiVersion:36description: |-37APIVersion defines the versioned schema of this representation of an object.38Servers should convert recognized schemas to the latest internal value, and39may reject unrecognized values.40More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources41type: string42kind:43description: |-44Kind is a string value representing the REST resource this object represents.45Servers may infer this from the endpoint the client submits requests to.46Cannot be updated.47In CamelCase.48More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds49type: string50metadata:51type: object52spec:53description: A StoreConfigSpec defines the desired state of a StoreConfig.54properties:55defaultScope:56description: |-57DefaultScope used for scoping secrets for "cluster-scoped" resources.58If store type is "Kubernetes", this would mean the default namespace to59store connection secrets for cluster scoped resources.60In case of "Vault", this would be used as the default parent path.61Typically, should be set as Crossplane installation namespace.62type: string63kubernetes:64description: |-65Kubernetes configures a Kubernetes secret store.66If the "type" is "Kubernetes" but no config provided, in cluster config67will be used.68properties:69auth:70description: Credentials used to connect to the Kubernetes API.71properties:72env:73description: |-74Env is a reference to an environment variable that contains credentials75that must be used to connect to the provider.76properties:77name:78description: Name is the name of an environment variable.79type: string80required:81- name82type: object83fs:84description: |-85Fs is a reference to a filesystem location that contains credentials that86must be used to connect to the provider.87properties:88path:89description: Path is a filesystem path.90type: string91required:92- path93type: object94secretRef:95description: |-96A SecretRef is a reference to a secret key that contains the credentials97that must be used to connect to the provider.98properties:99key:100description: The key to select.101type: string102name:103description: Name of the secret.104type: string105namespace:106description: Namespace of the secret.107type: string108required:109- key110- name111- namespace112type: object113source:114description: Source of the credentials.115enum:116- None117- Secret118- Environment119- Filesystem120type: string121required:122- source123type: object124required:125- auth126type: object127plugin:128description: Plugin configures External secret store as a plugin.129properties:130configRef:131description: ConfigRef contains store config reference info.132properties:133apiVersion:134description: APIVersion of the referenced config.135type: string136kind:137description: Kind of the referenced config.138type: string139name:140description: Name of the referenced config.141type: string142required:143- apiVersion144- kind145- name146type: object147endpoint:148description: Endpoint is the endpoint of the gRPC server.149type: string150type: object151type:152default: Kubernetes153description: |-154Type configures which secret store to be used. Only the configuration155block for this store will be used and others will be ignored if provided.156Default is Kubernetes.157enum:158- Kubernetes159- Vault160- Plugin161type: string162required:163- defaultScope164type: object165required:166- spec167type: object168served: true169storage: true170subresources: {}171