v1alpha1

package
v1.124.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Oct 15, 2024 License: Apache-2.0 Imports: 6 Imported by: 0

Documentation

Overview

Package v1alpha1 contains API Schema definitions for the kms v1alpha1 API group. +k8s:openapi-gen=true +k8s:deepcopy-gen=package,register +k8s:conversion-gen=github.com/GoogleCloudPlatform/k8s-config-connector/pkg/clients/generated/pkg/apis/kms +k8s:defaulter-gen=TypeMeta +groupName=kms.cnrm.cloud.google.com

Index

Constants

This section is empty.

Variables

View Source
var (
	// SchemeGroupVersion is the group version used to register these objects.
	SchemeGroupVersion = schema.GroupVersion{Group: "kms.cnrm.cloud.google.com", Version: "v1alpha1"}

	// SchemeBuilder is used to add go types to the GroupVersionKind scheme.
	SchemeBuilder = &scheme.Builder{GroupVersion: SchemeGroupVersion}

	// AddToScheme is a global function that registers this API group & version to a scheme
	AddToScheme = SchemeBuilder.AddToScheme

	KMSCryptoKeyVersionGVK = schema.GroupVersionKind{
		Group:   SchemeGroupVersion.Group,
		Version: SchemeGroupVersion.Version,
		Kind:    reflect.TypeOf(KMSCryptoKeyVersion{}).Name(),
	}

	KMSKeyRingImportJobGVK = schema.GroupVersionKind{
		Group:   SchemeGroupVersion.Group,
		Version: SchemeGroupVersion.Version,
		Kind:    reflect.TypeOf(KMSKeyRingImportJob{}).Name(),
	}

	KMSSecretCiphertextGVK = schema.GroupVersionKind{
		Group:   SchemeGroupVersion.Group,
		Version: SchemeGroupVersion.Version,
		Kind:    reflect.TypeOf(KMSSecretCiphertext{}).Name(),
	}
)

Functions

This section is empty.

Types

type CryptokeyversionAttestationStatus

type CryptokeyversionAttestationStatus struct {
	/* The certificate chains needed to validate the attestation. */
	// +optional
	CertChains *CryptokeyversionCertChainsStatus `json:"certChains,omitempty"`

	/* The attestation data provided by the HSM when the key operation was performed. */
	// +optional
	Content *string `json:"content,omitempty"`

	/* ExternalProtectionLevelOptions stores a group of additional fields for configuring a CryptoKeyVersion that are specific to the EXTERNAL protection level and EXTERNAL_VPC protection levels. */
	// +optional
	ExternalProtectionLevelOptions *CryptokeyversionExternalProtectionLevelOptionsStatus `json:"externalProtectionLevelOptions,omitempty"`

	/* The format of the attestation data. */
	// +optional
	Format *string `json:"format,omitempty"`
}

func (*CryptokeyversionAttestationStatus) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new CryptokeyversionAttestationStatus.

func (*CryptokeyversionAttestationStatus) DeepCopyInto

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type CryptokeyversionCertChainsStatus

type CryptokeyversionCertChainsStatus struct {
	/* Cavium certificate chain corresponding to the attestation. */
	// +optional
	CaviumCerts *string `json:"caviumCerts,omitempty"`

	/* Google card certificate chain corresponding to the attestation. */
	// +optional
	GoogleCardCerts *string `json:"googleCardCerts,omitempty"`

	/* Google partition certificate chain corresponding to the attestation. */
	// +optional
	GooglePartitionCerts *string `json:"googlePartitionCerts,omitempty"`
}

func (*CryptokeyversionCertChainsStatus) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new CryptokeyversionCertChainsStatus.

func (*CryptokeyversionCertChainsStatus) DeepCopyInto

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type CryptokeyversionExternalProtectionLevelOptionsStatus

type CryptokeyversionExternalProtectionLevelOptionsStatus struct {
	/* The path to the external key material on the EKM when using EkmConnection e.g., "v0/my/key". Set this field instead of externalKeyUri when using an EkmConnection. */
	// +optional
	EkmConnectionKeyPath *string `json:"ekmConnectionKeyPath,omitempty"`

	/* The URI for an external resource that this CryptoKeyVersion represents. */
	// +optional
	ExternalKeyUri *string `json:"externalKeyUri,omitempty"`
}

func (*CryptokeyversionExternalProtectionLevelOptionsStatus) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new CryptokeyversionExternalProtectionLevelOptionsStatus.

func (*CryptokeyversionExternalProtectionLevelOptionsStatus) DeepCopyInto

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type KMSCryptoKeyVersion

type KMSCryptoKeyVersion struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty"`

	Spec   KMSCryptoKeyVersionSpec   `json:"spec,omitempty"`
	Status KMSCryptoKeyVersionStatus `json:"status,omitempty"`
}

KMSCryptoKeyVersion is the Schema for the kms API +k8s:openapi-gen=true

func (*KMSCryptoKeyVersion) DeepCopy

func (in *KMSCryptoKeyVersion) DeepCopy() *KMSCryptoKeyVersion

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KMSCryptoKeyVersion.

func (*KMSCryptoKeyVersion) DeepCopyInto

func (in *KMSCryptoKeyVersion) DeepCopyInto(out *KMSCryptoKeyVersion)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*KMSCryptoKeyVersion) DeepCopyObject

func (in *KMSCryptoKeyVersion) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type KMSCryptoKeyVersionList

type KMSCryptoKeyVersionList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`
	Items           []KMSCryptoKeyVersion `json:"items"`
}

KMSCryptoKeyVersionList contains a list of KMSCryptoKeyVersion

func (*KMSCryptoKeyVersionList) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KMSCryptoKeyVersionList.

func (*KMSCryptoKeyVersionList) DeepCopyInto

func (in *KMSCryptoKeyVersionList) DeepCopyInto(out *KMSCryptoKeyVersionList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*KMSCryptoKeyVersionList) DeepCopyObject

func (in *KMSCryptoKeyVersionList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type KMSCryptoKeyVersionSpec

type KMSCryptoKeyVersionSpec struct {
	/* Immutable. The name of the cryptoKey associated with the CryptoKeyVersions.
	Format: ”projects/{{project}}/locations/{{location}}/keyRings/{{keyring}}/cryptoKeys/{{cryptoKey}}”. */
	CryptoKey string `json:"cryptoKey"`

	/* Immutable. Optional. The service-generated name of the resource. Used for acquisition only. Leave unset to create a new resource. */
	// +optional
	ResourceID *string `json:"resourceID,omitempty"`

	/* The current state of the CryptoKeyVersion. Possible values: ["PENDING_GENERATION", "ENABLED", "DISABLED", "DESTROYED", "DESTROY_SCHEDULED", "PENDING_IMPORT", "IMPORT_FAILED"]. */
	// +optional
	State *string `json:"state,omitempty"`
}

func (*KMSCryptoKeyVersionSpec) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KMSCryptoKeyVersionSpec.

func (*KMSCryptoKeyVersionSpec) DeepCopyInto

func (in *KMSCryptoKeyVersionSpec) DeepCopyInto(out *KMSCryptoKeyVersionSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type KMSCryptoKeyVersionStatus

type KMSCryptoKeyVersionStatus struct {
	/* Conditions represent the latest available observations of the
	   KMSCryptoKeyVersion's current state. */
	Conditions []v1alpha1.Condition `json:"conditions,omitempty"`
	/* The CryptoKeyVersionAlgorithm that this CryptoKeyVersion supports. */
	// +optional
	Algorithm *string `json:"algorithm,omitempty"`

	/* Statement that was generated and signed by the HSM at key creation time. Use this statement to verify attributes of the key as stored on the HSM, independently of Google.
	Only provided for key versions with protectionLevel HSM. */
	// +optional
	Attestation []CryptokeyversionAttestationStatus `json:"attestation,omitempty"`

	/* The time this CryptoKeyVersion key material was generated. */
	// +optional
	GenerateTime *string `json:"generateTime,omitempty"`

	/* The resource name for this CryptoKeyVersion. */
	// +optional
	Name *string `json:"name,omitempty"`

	/* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */
	// +optional
	ObservedGeneration *int64 `json:"observedGeneration,omitempty"`

	/* The ProtectionLevel describing how crypto operations are performed with this CryptoKeyVersion. */
	// +optional
	ProtectionLevel *string `json:"protectionLevel,omitempty"`
}

func (*KMSCryptoKeyVersionStatus) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KMSCryptoKeyVersionStatus.

func (*KMSCryptoKeyVersionStatus) DeepCopyInto

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type KMSKeyRingImportJob

type KMSKeyRingImportJob struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty"`

	Spec   KMSKeyRingImportJobSpec   `json:"spec,omitempty"`
	Status KMSKeyRingImportJobStatus `json:"status,omitempty"`
}

KMSKeyRingImportJob is the Schema for the kms API +k8s:openapi-gen=true

func (*KMSKeyRingImportJob) DeepCopy

func (in *KMSKeyRingImportJob) DeepCopy() *KMSKeyRingImportJob

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KMSKeyRingImportJob.

func (*KMSKeyRingImportJob) DeepCopyInto

func (in *KMSKeyRingImportJob) DeepCopyInto(out *KMSKeyRingImportJob)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*KMSKeyRingImportJob) DeepCopyObject

func (in *KMSKeyRingImportJob) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type KMSKeyRingImportJobList

type KMSKeyRingImportJobList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`
	Items           []KMSKeyRingImportJob `json:"items"`
}

KMSKeyRingImportJobList contains a list of KMSKeyRingImportJob

func (*KMSKeyRingImportJobList) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KMSKeyRingImportJobList.

func (*KMSKeyRingImportJobList) DeepCopyInto

func (in *KMSKeyRingImportJobList) DeepCopyInto(out *KMSKeyRingImportJobList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*KMSKeyRingImportJobList) DeepCopyObject

func (in *KMSKeyRingImportJobList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type KMSKeyRingImportJobSpec

type KMSKeyRingImportJobSpec struct {
	/* Immutable. It must be unique within a KeyRing and match the regular expression [a-zA-Z0-9_-]{1,63}. */
	ImportJobId string `json:"importJobId"`

	/* Immutable. The wrapping method to be used for incoming key material. Possible values: ["RSA_OAEP_3072_SHA1_AES_256", "RSA_OAEP_4096_SHA1_AES_256"]. */
	ImportMethod string `json:"importMethod"`

	/* Immutable. The KeyRing that this import job belongs to.
	Format: ”projects/{{project}}/locations/{{location}}/keyRings/{{keyRing}}”. */
	KeyRing string `json:"keyRing"`

	/* Immutable. The protection level of the ImportJob. This must match the protectionLevel of the
	versionTemplate on the CryptoKey you attempt to import into. Possible values: ["SOFTWARE", "HSM", "EXTERNAL"]. */
	ProtectionLevel string `json:"protectionLevel"`

	/* Immutable. Optional. The service-generated name of the resource. Used for acquisition only. Leave unset to create a new resource. */
	// +optional
	ResourceID *string `json:"resourceID,omitempty"`
}

func (*KMSKeyRingImportJobSpec) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KMSKeyRingImportJobSpec.

func (*KMSKeyRingImportJobSpec) DeepCopyInto

func (in *KMSKeyRingImportJobSpec) DeepCopyInto(out *KMSKeyRingImportJobSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type KMSKeyRingImportJobStatus

type KMSKeyRingImportJobStatus struct {
	/* Conditions represent the latest available observations of the
	   KMSKeyRingImportJob's current state. */
	Conditions []v1alpha1.Condition `json:"conditions,omitempty"`
	/* Statement that was generated and signed by the key creator (for example, an HSM) at key creation time.
	Use this statement to verify attributes of the key as stored on the HSM, independently of Google.
	Only present if the chosen ImportMethod is one with a protection level of HSM. */
	// +optional
	Attestation []KeyringimportjobAttestationStatus `json:"attestation,omitempty"`

	/* The time at which this resource is scheduled for expiration and can no longer be used.
	This is in RFC3339 text format. */
	// +optional
	ExpireTime *string `json:"expireTime,omitempty"`

	/* The resource name for this ImportJob in the format projects/* /locations/* /keyRings/* /importJobs/*. */
	// +optional
	Name *string `json:"name,omitempty"`

	/* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */
	// +optional
	ObservedGeneration *int64 `json:"observedGeneration,omitempty"`

	/* The public key with which to wrap key material prior to import. Only returned if state is 'ACTIVE'. */
	// +optional
	PublicKey []KeyringimportjobPublicKeyStatus `json:"publicKey,omitempty"`

	/* The current state of the ImportJob, indicating if it can be used. */
	// +optional
	State *string `json:"state,omitempty"`
}

func (*KMSKeyRingImportJobStatus) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KMSKeyRingImportJobStatus.

func (*KMSKeyRingImportJobStatus) DeepCopyInto

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type KMSSecretCiphertext

type KMSSecretCiphertext struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty"`

	Spec   KMSSecretCiphertextSpec   `json:"spec,omitempty"`
	Status KMSSecretCiphertextStatus `json:"status,omitempty"`
}

KMSSecretCiphertext is the Schema for the kms API +k8s:openapi-gen=true

func (*KMSSecretCiphertext) DeepCopy

func (in *KMSSecretCiphertext) DeepCopy() *KMSSecretCiphertext

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KMSSecretCiphertext.

func (*KMSSecretCiphertext) DeepCopyInto

func (in *KMSSecretCiphertext) DeepCopyInto(out *KMSSecretCiphertext)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*KMSSecretCiphertext) DeepCopyObject

func (in *KMSSecretCiphertext) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type KMSSecretCiphertextList

type KMSSecretCiphertextList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`
	Items           []KMSSecretCiphertext `json:"items"`
}

KMSSecretCiphertextList contains a list of KMSSecretCiphertext

func (*KMSSecretCiphertextList) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KMSSecretCiphertextList.

func (*KMSSecretCiphertextList) DeepCopyInto

func (in *KMSSecretCiphertextList) DeepCopyInto(out *KMSSecretCiphertextList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*KMSSecretCiphertextList) DeepCopyObject

func (in *KMSSecretCiphertextList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type KMSSecretCiphertextSpec

type KMSSecretCiphertextSpec struct {
	/* Immutable. The additional authenticated data used for integrity checks during encryption and decryption. */
	// +optional
	AdditionalAuthenticatedData *SecretciphertextAdditionalAuthenticatedData `json:"additionalAuthenticatedData,omitempty"`

	/* Immutable. The full name of the CryptoKey that will be used to encrypt the provided plaintext.
	Format: ”projects/{{project}}/locations/{{location}}/keyRings/{{keyRing}}/cryptoKeys/{{cryptoKey}}”. */
	CryptoKey string `json:"cryptoKey"`

	/* Immutable. The plaintext to be encrypted. */
	Plaintext SecretciphertextPlaintext `json:"plaintext"`

	/* Immutable. Optional. The service-generated ciphertext of the resource. Used for acquisition only. Leave unset to create a new resource. */
	// +optional
	ResourceID *string `json:"resourceID,omitempty"`
}

func (*KMSSecretCiphertextSpec) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KMSSecretCiphertextSpec.

func (*KMSSecretCiphertextSpec) DeepCopyInto

func (in *KMSSecretCiphertextSpec) DeepCopyInto(out *KMSSecretCiphertextSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type KMSSecretCiphertextStatus

type KMSSecretCiphertextStatus struct {
	/* Conditions represent the latest available observations of the
	   KMSSecretCiphertext's current state. */
	Conditions []v1alpha1.Condition `json:"conditions,omitempty"`
	/* Contains the result of encrypting the provided plaintext, encoded in base64. */
	// +optional
	Ciphertext *string `json:"ciphertext,omitempty"`

	/* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */
	// +optional
	ObservedGeneration *int64 `json:"observedGeneration,omitempty"`
}

func (*KMSSecretCiphertextStatus) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KMSSecretCiphertextStatus.

func (*KMSSecretCiphertextStatus) DeepCopyInto

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type KeyringimportjobAttestationStatus

type KeyringimportjobAttestationStatus struct {
	/* The attestation data provided by the HSM when the key operation was performed.
	A base64-encoded string. */
	// +optional
	Content *string `json:"content,omitempty"`

	/* The format of the attestation data. */
	// +optional
	Format *string `json:"format,omitempty"`
}

func (*KeyringimportjobAttestationStatus) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KeyringimportjobAttestationStatus.

func (*KeyringimportjobAttestationStatus) DeepCopyInto

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type KeyringimportjobPublicKeyStatus

type KeyringimportjobPublicKeyStatus struct {
	/* The public key, encoded in PEM format. For more information, see the RFC 7468 sections
	for General Considerations and Textual Encoding of Subject Public Key Info. */
	// +optional
	Pem *string `json:"pem,omitempty"`
}

func (*KeyringimportjobPublicKeyStatus) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KeyringimportjobPublicKeyStatus.

func (*KeyringimportjobPublicKeyStatus) DeepCopyInto

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretciphertextAdditionalAuthenticatedData

type SecretciphertextAdditionalAuthenticatedData struct {
	/* Value of the field. Cannot be used if 'valueFrom' is specified. */
	// +optional
	Value *string `json:"value,omitempty"`

	/* Source for the field's value. Cannot be used if 'value' is specified. */
	// +optional
	ValueFrom *SecretciphertextValueFrom `json:"valueFrom,omitempty"`
}

func (*SecretciphertextAdditionalAuthenticatedData) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretciphertextAdditionalAuthenticatedData.

func (*SecretciphertextAdditionalAuthenticatedData) DeepCopyInto

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretciphertextPlaintext

type SecretciphertextPlaintext struct {
	/* Value of the field. Cannot be used if 'valueFrom' is specified. */
	// +optional
	Value *string `json:"value,omitempty"`

	/* Source for the field's value. Cannot be used if 'value' is specified. */
	// +optional
	ValueFrom *SecretciphertextValueFrom `json:"valueFrom,omitempty"`
}

func (*SecretciphertextPlaintext) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretciphertextPlaintext.

func (*SecretciphertextPlaintext) DeepCopyInto

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretciphertextValueFrom

type SecretciphertextValueFrom struct {
	/* Reference to a value with the given key in the given Secret in the resource's namespace. */
	// +optional
	SecretKeyRef *v1alpha1.SecretKeyRef `json:"secretKeyRef,omitempty"`
}

func (*SecretciphertextValueFrom) DeepCopy

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretciphertextValueFrom.

func (*SecretciphertextValueFrom) DeepCopyInto

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL