Documentation ¶
Overview ¶
Generate deepcopy object for iam/v1beta1 API group
Package v1beta1 contains API Schema definitions for the iam v1beta1 API group. +k8s:openapi-gen=true +k8s:deepcopy-gen=package,register +k8s:conversion-gen=github.com/GoogleCloudPlatform/k8s-config-connector/pkg/clients/generated/pkg/apis/iam +k8s:defaulter-gen=TypeMeta +groupName=iam.cnrm.cloud.google.com
Index ¶
- Variables
- type AuditconfigAuditLogConfigs
- type IAMAuditConfig
- type IAMAuditConfigList
- type IAMAuditConfigSpec
- type IAMAuditConfigStatus
- type IAMCustomRole
- type IAMCustomRoleList
- type IAMCustomRoleSpec
- type IAMCustomRoleStatus
- type IAMPartialPolicy
- type IAMPartialPolicyList
- type IAMPartialPolicySpec
- type IAMPartialPolicyStatus
- type IAMPolicy
- type IAMPolicyList
- type IAMPolicyMember
- type IAMPolicyMemberList
- type IAMPolicyMemberSpec
- type IAMPolicyMemberStatus
- type IAMPolicySpec
- type IAMPolicyStatus
- type IAMServiceAccount
- type IAMServiceAccountKey
- type IAMServiceAccountKeyList
- type IAMServiceAccountKeySpec
- type IAMServiceAccountKeyStatus
- type IAMServiceAccountList
- type IAMServiceAccountSpec
- type IAMServiceAccountStatus
- type IAMWorkforcePool
- type IAMWorkforcePoolList
- type IAMWorkforcePoolSpec
- type IAMWorkforcePoolStatus
- type IAMWorkloadIdentityPool
- type IAMWorkloadIdentityPoolList
- type IAMWorkloadIdentityPoolProvider
- type IAMWorkloadIdentityPoolProviderList
- type IAMWorkloadIdentityPoolProviderSpec
- type IAMWorkloadIdentityPoolProviderStatus
- type IAMWorkloadIdentityPoolSpec
- type IAMWorkloadIdentityPoolStatus
- type PartialpolicyAllBindingsStatus
- type PartialpolicyBindings
- type PartialpolicyCondition
- type PartialpolicyConditionStatus
- type PartialpolicyLastAppliedBindingsStatus
- type PartialpolicyMemberFrom
- type PartialpolicyMembers
- type PolicyAuditConfigs
- type PolicyAuditLogConfigs
- type PolicyBindings
- type PolicyCondition
- type PolicymemberCondition
- type PolicymemberMemberFrom
- type WorkloadidentitypoolproviderAws
- type WorkloadidentitypoolproviderOidc
Constants ¶
This section is empty.
Variables ¶
var ( // SchemeGroupVersion is the group version used to register these objects. SchemeGroupVersion = schema.GroupVersion{Group: "iam.cnrm.cloud.google.com", Version: "v1beta1"} // SchemeBuilder is used to add go types to the GroupVersionKind scheme. SchemeBuilder = &scheme.Builder{GroupVersion: SchemeGroupVersion} // AddToScheme is a global function that registers this API group & version to a scheme AddToScheme = SchemeBuilder.AddToScheme IAMAuditConfigGVK = schema.GroupVersionKind{ Group: SchemeGroupVersion.Group, Version: SchemeGroupVersion.Version, Kind: reflect.TypeOf(IAMAuditConfig{}).Name(), } IAMCustomRoleGVK = schema.GroupVersionKind{ Group: SchemeGroupVersion.Group, Version: SchemeGroupVersion.Version, Kind: reflect.TypeOf(IAMCustomRole{}).Name(), } IAMPartialPolicyGVK = schema.GroupVersionKind{ Group: SchemeGroupVersion.Group, Version: SchemeGroupVersion.Version, Kind: reflect.TypeOf(IAMPartialPolicy{}).Name(), } IAMPolicyGVK = schema.GroupVersionKind{ Group: SchemeGroupVersion.Group, Version: SchemeGroupVersion.Version, Kind: reflect.TypeOf(IAMPolicy{}).Name(), } IAMPolicyMemberGVK = schema.GroupVersionKind{ Group: SchemeGroupVersion.Group, Version: SchemeGroupVersion.Version, Kind: reflect.TypeOf(IAMPolicyMember{}).Name(), } IAMServiceAccountGVK = schema.GroupVersionKind{ Group: SchemeGroupVersion.Group, Version: SchemeGroupVersion.Version, Kind: reflect.TypeOf(IAMServiceAccount{}).Name(), } IAMServiceAccountKeyGVK = schema.GroupVersionKind{ Group: SchemeGroupVersion.Group, Version: SchemeGroupVersion.Version, Kind: reflect.TypeOf(IAMServiceAccountKey{}).Name(), } IAMWorkforcePoolGVK = schema.GroupVersionKind{ Group: SchemeGroupVersion.Group, Version: SchemeGroupVersion.Version, Kind: reflect.TypeOf(IAMWorkforcePool{}).Name(), } IAMWorkloadIdentityPoolGVK = schema.GroupVersionKind{ Group: SchemeGroupVersion.Group, Version: SchemeGroupVersion.Version, Kind: reflect.TypeOf(IAMWorkloadIdentityPool{}).Name(), } IAMWorkloadIdentityPoolProviderGVK = schema.GroupVersionKind{ Group: SchemeGroupVersion.Group, Version: SchemeGroupVersion.Version, Kind: reflect.TypeOf(IAMWorkloadIdentityPoolProvider{}).Name(), } )
Functions ¶
This section is empty.
Types ¶
type AuditconfigAuditLogConfigs ¶
type AuditconfigAuditLogConfigs struct { /* Identities that do not cause logging for this type of permission. The format is the same as that for 'members' in IAMPolicy/IAMPolicyMember. */ // +optional ExemptedMembers []string `json:"exemptedMembers,omitempty"` /* Permission type for which logging is to be configured. Must be one of 'DATA_READ', 'DATA_WRITE', or 'ADMIN_READ'. */ LogType string `json:"logType"` }
func (*AuditconfigAuditLogConfigs) DeepCopy ¶
func (in *AuditconfigAuditLogConfigs) DeepCopy() *AuditconfigAuditLogConfigs
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuditconfigAuditLogConfigs.
func (*AuditconfigAuditLogConfigs) DeepCopyInto ¶
func (in *AuditconfigAuditLogConfigs) DeepCopyInto(out *AuditconfigAuditLogConfigs)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMAuditConfig ¶
type IAMAuditConfig struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec IAMAuditConfigSpec `json:"spec,omitempty"` Status IAMAuditConfigStatus `json:"status,omitempty"` }
IAMAuditConfig is the Schema for the iam API +k8s:openapi-gen=true
func (*IAMAuditConfig) DeepCopy ¶
func (in *IAMAuditConfig) DeepCopy() *IAMAuditConfig
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMAuditConfig.
func (*IAMAuditConfig) DeepCopyInto ¶
func (in *IAMAuditConfig) DeepCopyInto(out *IAMAuditConfig)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMAuditConfig) DeepCopyObject ¶
func (in *IAMAuditConfig) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMAuditConfigList ¶
type IAMAuditConfigList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []IAMAuditConfig `json:"items"` }
IAMAuditConfigList contains a list of IAMAuditConfig
func (*IAMAuditConfigList) DeepCopy ¶
func (in *IAMAuditConfigList) DeepCopy() *IAMAuditConfigList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMAuditConfigList.
func (*IAMAuditConfigList) DeepCopyInto ¶
func (in *IAMAuditConfigList) DeepCopyInto(out *IAMAuditConfigList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMAuditConfigList) DeepCopyObject ¶
func (in *IAMAuditConfigList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMAuditConfigSpec ¶
type IAMAuditConfigSpec struct { /* Required. The configuration for logging of each type of permission. */ AuditLogConfigs []AuditconfigAuditLogConfigs `json:"auditLogConfigs"` /* Immutable. Required. The GCP resource to set the IAMAuditConfig on (e.g. project). */ ResourceRef v1alpha1.IAMResourceRef `json:"resourceRef"` /* Immutable. Required. The service for which to enable Data Access audit logs. The special value 'allServices' covers all services. Note that if there are audit configs covering both 'allServices' and a specific service, then the union of the two audit configs is used for that service: the 'logTypes' specified in each 'auditLogConfig' are enabled, and the 'exemptedMembers' in each 'auditLogConfg' are exempted. */ Service string `json:"service"` }
func (*IAMAuditConfigSpec) DeepCopy ¶
func (in *IAMAuditConfigSpec) DeepCopy() *IAMAuditConfigSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMAuditConfigSpec.
func (*IAMAuditConfigSpec) DeepCopyInto ¶
func (in *IAMAuditConfigSpec) DeepCopyInto(out *IAMAuditConfigSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMAuditConfigStatus ¶
type IAMAuditConfigStatus struct { /* Conditions represent the latest available observations of the IAMAuditConfig's current state. */ Conditions []v1alpha1.Condition `json:"conditions,omitempty"` /* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */ ObservedGeneration int `json:"observedGeneration,omitempty"` }
func (*IAMAuditConfigStatus) DeepCopy ¶
func (in *IAMAuditConfigStatus) DeepCopy() *IAMAuditConfigStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMAuditConfigStatus.
func (*IAMAuditConfigStatus) DeepCopyInto ¶
func (in *IAMAuditConfigStatus) DeepCopyInto(out *IAMAuditConfigStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMCustomRole ¶
type IAMCustomRole struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec IAMCustomRoleSpec `json:"spec,omitempty"` Status IAMCustomRoleStatus `json:"status,omitempty"` }
IAMCustomRole is the Schema for the iam API +k8s:openapi-gen=true
func (*IAMCustomRole) DeepCopy ¶
func (in *IAMCustomRole) DeepCopy() *IAMCustomRole
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMCustomRole.
func (*IAMCustomRole) DeepCopyInto ¶
func (in *IAMCustomRole) DeepCopyInto(out *IAMCustomRole)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMCustomRole) DeepCopyObject ¶
func (in *IAMCustomRole) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMCustomRoleList ¶
type IAMCustomRoleList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []IAMCustomRole `json:"items"` }
IAMCustomRoleList contains a list of IAMCustomRole
func (*IAMCustomRoleList) DeepCopy ¶
func (in *IAMCustomRoleList) DeepCopy() *IAMCustomRoleList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMCustomRoleList.
func (*IAMCustomRoleList) DeepCopyInto ¶
func (in *IAMCustomRoleList) DeepCopyInto(out *IAMCustomRoleList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMCustomRoleList) DeepCopyObject ¶
func (in *IAMCustomRoleList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMCustomRoleSpec ¶
type IAMCustomRoleSpec struct { /* A human-readable description for the role. */ // +optional Description *string `json:"description,omitempty"` /* The names of the permissions this role grants when bound in an IAM policy. At least one permission must be specified. */ Permissions []string `json:"permissions"` /* Immutable. Optional. The roleId of the resource. Used for creation and acquisition. When unset, the value of `metadata.name` is used as the default. */ // +optional ResourceID *string `json:"resourceID,omitempty"` /* The current launch stage of the role. Defaults to GA. */ // +optional Stage *string `json:"stage,omitempty"` /* A human-readable title for the role. */ Title string `json:"title"` }
func (*IAMCustomRoleSpec) DeepCopy ¶
func (in *IAMCustomRoleSpec) DeepCopy() *IAMCustomRoleSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMCustomRoleSpec.
func (*IAMCustomRoleSpec) DeepCopyInto ¶
func (in *IAMCustomRoleSpec) DeepCopyInto(out *IAMCustomRoleSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMCustomRoleStatus ¶
type IAMCustomRoleStatus struct { /* Conditions represent the latest available observations of the IAMCustomRole's current state. */ Conditions []v1alpha1.Condition `json:"conditions,omitempty"` /* The current deleted state of the role. */ Deleted bool `json:"deleted,omitempty"` /* The full name of the role. */ Name string `json:"name,omitempty"` /* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */ ObservedGeneration int `json:"observedGeneration,omitempty"` }
func (*IAMCustomRoleStatus) DeepCopy ¶
func (in *IAMCustomRoleStatus) DeepCopy() *IAMCustomRoleStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMCustomRoleStatus.
func (*IAMCustomRoleStatus) DeepCopyInto ¶
func (in *IAMCustomRoleStatus) DeepCopyInto(out *IAMCustomRoleStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMPartialPolicy ¶
type IAMPartialPolicy struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec IAMPartialPolicySpec `json:"spec,omitempty"` Status IAMPartialPolicyStatus `json:"status,omitempty"` }
IAMPartialPolicy is the Schema for the iam API +k8s:openapi-gen=true
func (*IAMPartialPolicy) DeepCopy ¶
func (in *IAMPartialPolicy) DeepCopy() *IAMPartialPolicy
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMPartialPolicy.
func (*IAMPartialPolicy) DeepCopyInto ¶
func (in *IAMPartialPolicy) DeepCopyInto(out *IAMPartialPolicy)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMPartialPolicy) DeepCopyObject ¶
func (in *IAMPartialPolicy) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMPartialPolicyList ¶
type IAMPartialPolicyList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []IAMPartialPolicy `json:"items"` }
IAMPartialPolicyList contains a list of IAMPartialPolicy
func (*IAMPartialPolicyList) DeepCopy ¶
func (in *IAMPartialPolicyList) DeepCopy() *IAMPartialPolicyList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMPartialPolicyList.
func (*IAMPartialPolicyList) DeepCopyInto ¶
func (in *IAMPartialPolicyList) DeepCopyInto(out *IAMPartialPolicyList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMPartialPolicyList) DeepCopyObject ¶
func (in *IAMPartialPolicyList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMPartialPolicySpec ¶
type IAMPartialPolicySpec struct { /* Optional. The list of IAM bindings managed by Config Connector. */ // +optional Bindings []PartialpolicyBindings `json:"bindings,omitempty"` /* Immutable. Required. The GCP resource to set the IAM policy on. */ ResourceRef v1alpha1.IAMResourceRef `json:"resourceRef"` }
func (*IAMPartialPolicySpec) DeepCopy ¶
func (in *IAMPartialPolicySpec) DeepCopy() *IAMPartialPolicySpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMPartialPolicySpec.
func (*IAMPartialPolicySpec) DeepCopyInto ¶
func (in *IAMPartialPolicySpec) DeepCopyInto(out *IAMPartialPolicySpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMPartialPolicyStatus ¶
type IAMPartialPolicyStatus struct { /* Conditions represent the latest available observations of the IAMPartialPolicy's current state. */ Conditions []v1alpha1.Condition `json:"conditions,omitempty"` /* AllBindings surfaces all IAM bindings for the referenced resource. */ AllBindings []PartialpolicyAllBindingsStatus `json:"allBindings,omitempty"` /* LastAppliedBindings is the list of IAM bindings that were most recently applied by Config Connector. */ LastAppliedBindings []PartialpolicyLastAppliedBindingsStatus `json:"lastAppliedBindings,omitempty"` /* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */ ObservedGeneration int `json:"observedGeneration,omitempty"` }
func (*IAMPartialPolicyStatus) DeepCopy ¶
func (in *IAMPartialPolicyStatus) DeepCopy() *IAMPartialPolicyStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMPartialPolicyStatus.
func (*IAMPartialPolicyStatus) DeepCopyInto ¶
func (in *IAMPartialPolicyStatus) DeepCopyInto(out *IAMPartialPolicyStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMPolicy ¶
type IAMPolicy struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec IAMPolicySpec `json:"spec,omitempty"` Status IAMPolicyStatus `json:"status,omitempty"` }
IAMPolicy is the Schema for the iam API +k8s:openapi-gen=true
func (*IAMPolicy) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMPolicy.
func (*IAMPolicy) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMPolicy) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMPolicyList ¶
type IAMPolicyList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []IAMPolicy `json:"items"` }
IAMPolicyList contains a list of IAMPolicy
func (*IAMPolicyList) DeepCopy ¶
func (in *IAMPolicyList) DeepCopy() *IAMPolicyList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMPolicyList.
func (*IAMPolicyList) DeepCopyInto ¶
func (in *IAMPolicyList) DeepCopyInto(out *IAMPolicyList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMPolicyList) DeepCopyObject ¶
func (in *IAMPolicyList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMPolicyMember ¶
type IAMPolicyMember struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec IAMPolicyMemberSpec `json:"spec,omitempty"` Status IAMPolicyMemberStatus `json:"status,omitempty"` }
IAMPolicyMember is the Schema for the iam API +k8s:openapi-gen=true
func (*IAMPolicyMember) DeepCopy ¶
func (in *IAMPolicyMember) DeepCopy() *IAMPolicyMember
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMPolicyMember.
func (*IAMPolicyMember) DeepCopyInto ¶
func (in *IAMPolicyMember) DeepCopyInto(out *IAMPolicyMember)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMPolicyMember) DeepCopyObject ¶
func (in *IAMPolicyMember) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMPolicyMemberList ¶
type IAMPolicyMemberList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []IAMPolicyMember `json:"items"` }
IAMPolicyMemberList contains a list of IAMPolicyMember
func (*IAMPolicyMemberList) DeepCopy ¶
func (in *IAMPolicyMemberList) DeepCopy() *IAMPolicyMemberList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMPolicyMemberList.
func (*IAMPolicyMemberList) DeepCopyInto ¶
func (in *IAMPolicyMemberList) DeepCopyInto(out *IAMPolicyMemberList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMPolicyMemberList) DeepCopyObject ¶
func (in *IAMPolicyMemberList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMPolicyMemberSpec ¶
type IAMPolicyMemberSpec struct { /* Immutable. Optional. The condition under which the binding applies. */ // +optional Condition *PolicymemberCondition `json:"condition,omitempty"` /* Immutable. The IAM identity to be bound to the role. Exactly one of 'member' or 'memberFrom' must be used. */ // +optional Member *string `json:"member,omitempty"` /* Immutable. The IAM identity to be bound to the role. Exactly one of 'member' or 'memberFrom' must be used, and only one subfield within 'memberFrom' can be used. */ // +optional MemberFrom *PolicymemberMemberFrom `json:"memberFrom,omitempty"` /* Immutable. Required. The GCP resource to set the IAM policy on. */ ResourceRef v1alpha1.IAMResourceRef `json:"resourceRef"` /* Immutable. Required. The role for which the Member will be bound. */ Role string `json:"role"` }
func (*IAMPolicyMemberSpec) DeepCopy ¶
func (in *IAMPolicyMemberSpec) DeepCopy() *IAMPolicyMemberSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMPolicyMemberSpec.
func (*IAMPolicyMemberSpec) DeepCopyInto ¶
func (in *IAMPolicyMemberSpec) DeepCopyInto(out *IAMPolicyMemberSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMPolicyMemberStatus ¶
type IAMPolicyMemberStatus struct { /* Conditions represent the latest available observations of the IAMPolicyMember's current state. */ Conditions []v1alpha1.Condition `json:"conditions,omitempty"` /* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */ ObservedGeneration int `json:"observedGeneration,omitempty"` }
func (*IAMPolicyMemberStatus) DeepCopy ¶
func (in *IAMPolicyMemberStatus) DeepCopy() *IAMPolicyMemberStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMPolicyMemberStatus.
func (*IAMPolicyMemberStatus) DeepCopyInto ¶
func (in *IAMPolicyMemberStatus) DeepCopyInto(out *IAMPolicyMemberStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMPolicySpec ¶
type IAMPolicySpec struct { /* Optional. The list of IAM audit configs. */ // +optional AuditConfigs []PolicyAuditConfigs `json:"auditConfigs,omitempty"` /* Optional. The list of IAM bindings. */ // +optional Bindings []PolicyBindings `json:"bindings,omitempty"` /* Immutable. Required. The GCP resource to set the IAM policy on. */ ResourceRef v1alpha1.IAMResourceRef `json:"resourceRef"` }
func (*IAMPolicySpec) DeepCopy ¶
func (in *IAMPolicySpec) DeepCopy() *IAMPolicySpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMPolicySpec.
func (*IAMPolicySpec) DeepCopyInto ¶
func (in *IAMPolicySpec) DeepCopyInto(out *IAMPolicySpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMPolicyStatus ¶
type IAMPolicyStatus struct { /* Conditions represent the latest available observations of the IAMPolicy's current state. */ Conditions []v1alpha1.Condition `json:"conditions,omitempty"` /* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */ ObservedGeneration int `json:"observedGeneration,omitempty"` }
func (*IAMPolicyStatus) DeepCopy ¶
func (in *IAMPolicyStatus) DeepCopy() *IAMPolicyStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMPolicyStatus.
func (*IAMPolicyStatus) DeepCopyInto ¶
func (in *IAMPolicyStatus) DeepCopyInto(out *IAMPolicyStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMServiceAccount ¶
type IAMServiceAccount struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec IAMServiceAccountSpec `json:"spec,omitempty"` Status IAMServiceAccountStatus `json:"status,omitempty"` }
IAMServiceAccount is the Schema for the iam API +k8s:openapi-gen=true
func (*IAMServiceAccount) DeepCopy ¶
func (in *IAMServiceAccount) DeepCopy() *IAMServiceAccount
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMServiceAccount.
func (*IAMServiceAccount) DeepCopyInto ¶
func (in *IAMServiceAccount) DeepCopyInto(out *IAMServiceAccount)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMServiceAccount) DeepCopyObject ¶
func (in *IAMServiceAccount) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMServiceAccountKey ¶
type IAMServiceAccountKey struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec IAMServiceAccountKeySpec `json:"spec,omitempty"` Status IAMServiceAccountKeyStatus `json:"status,omitempty"` }
IAMServiceAccountKey is the Schema for the iam API +k8s:openapi-gen=true
func (*IAMServiceAccountKey) DeepCopy ¶
func (in *IAMServiceAccountKey) DeepCopy() *IAMServiceAccountKey
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMServiceAccountKey.
func (*IAMServiceAccountKey) DeepCopyInto ¶
func (in *IAMServiceAccountKey) DeepCopyInto(out *IAMServiceAccountKey)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMServiceAccountKey) DeepCopyObject ¶
func (in *IAMServiceAccountKey) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMServiceAccountKeyList ¶
type IAMServiceAccountKeyList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []IAMServiceAccountKey `json:"items"` }
IAMServiceAccountKeyList contains a list of IAMServiceAccountKey
func (*IAMServiceAccountKeyList) DeepCopy ¶
func (in *IAMServiceAccountKeyList) DeepCopy() *IAMServiceAccountKeyList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMServiceAccountKeyList.
func (*IAMServiceAccountKeyList) DeepCopyInto ¶
func (in *IAMServiceAccountKeyList) DeepCopyInto(out *IAMServiceAccountKeyList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMServiceAccountKeyList) DeepCopyObject ¶
func (in *IAMServiceAccountKeyList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMServiceAccountKeySpec ¶
type IAMServiceAccountKeySpec struct { /* Immutable. The algorithm used to generate the key, used only on create. KEY_ALG_RSA_2048 is the default algorithm. Valid values are: "KEY_ALG_RSA_1024", "KEY_ALG_RSA_2048". */ // +optional KeyAlgorithm *string `json:"keyAlgorithm,omitempty"` /* Immutable. */ // +optional PrivateKeyType *string `json:"privateKeyType,omitempty"` /* Immutable. A field that allows clients to upload their own public key. If set, use this public key data to create a service account key for given service account. Please note, the expected format for this field is a base64 encoded X509_PEM. */ // +optional PublicKeyData *string `json:"publicKeyData,omitempty"` /* Immutable. */ // +optional PublicKeyType *string `json:"publicKeyType,omitempty"` /* */ ServiceAccountRef v1alpha1.ResourceRef `json:"serviceAccountRef"` }
func (*IAMServiceAccountKeySpec) DeepCopy ¶
func (in *IAMServiceAccountKeySpec) DeepCopy() *IAMServiceAccountKeySpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMServiceAccountKeySpec.
func (*IAMServiceAccountKeySpec) DeepCopyInto ¶
func (in *IAMServiceAccountKeySpec) DeepCopyInto(out *IAMServiceAccountKeySpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMServiceAccountKeyStatus ¶
type IAMServiceAccountKeyStatus struct { /* Conditions represent the latest available observations of the IAMServiceAccountKey's current state. */ Conditions []v1alpha1.Condition `json:"conditions,omitempty"` /* Immutable. The name used for this key pair. */ Name string `json:"name,omitempty"` /* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */ ObservedGeneration int `json:"observedGeneration,omitempty"` /* The private key in JSON format, base64 encoded. This is what you normally get as a file when creating service account keys through the CLI or web console. This is only populated when creating a new key. */ PrivateKey string `json:"privateKey,omitempty"` /* Immutable. The public key, base64 encoded. */ PublicKey string `json:"publicKey,omitempty"` /* The key can be used after this timestamp. A timestamp in RFC3339 UTC "Zulu" format, accurate to nanoseconds. Example: "2014-10-02T15:01:23.045123456Z". */ ValidAfter string `json:"validAfter,omitempty"` /* The key can be used before this timestamp. A timestamp in RFC3339 UTC "Zulu" format, accurate to nanoseconds. Example: "2014-10-02T15:01:23.045123456Z". */ ValidBefore string `json:"validBefore,omitempty"` }
func (*IAMServiceAccountKeyStatus) DeepCopy ¶
func (in *IAMServiceAccountKeyStatus) DeepCopy() *IAMServiceAccountKeyStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMServiceAccountKeyStatus.
func (*IAMServiceAccountKeyStatus) DeepCopyInto ¶
func (in *IAMServiceAccountKeyStatus) DeepCopyInto(out *IAMServiceAccountKeyStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMServiceAccountList ¶
type IAMServiceAccountList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []IAMServiceAccount `json:"items"` }
IAMServiceAccountList contains a list of IAMServiceAccount
func (*IAMServiceAccountList) DeepCopy ¶
func (in *IAMServiceAccountList) DeepCopy() *IAMServiceAccountList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMServiceAccountList.
func (*IAMServiceAccountList) DeepCopyInto ¶
func (in *IAMServiceAccountList) DeepCopyInto(out *IAMServiceAccountList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMServiceAccountList) DeepCopyObject ¶
func (in *IAMServiceAccountList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMServiceAccountSpec ¶
type IAMServiceAccountSpec struct { /* A text description of the service account. Must be less than or equal to 256 UTF-8 bytes. */ // +optional Description *string `json:"description,omitempty"` /* Whether the service account is disabled. Defaults to false. */ // +optional Disabled *bool `json:"disabled,omitempty"` /* The display name for the service account. Can be updated without creating a new resource. */ // +optional DisplayName *string `json:"displayName,omitempty"` /* Immutable. Optional. The accountId of the resource. Used for creation and acquisition. When unset, the value of `metadata.name` is used as the default. */ // +optional ResourceID *string `json:"resourceID,omitempty"` }
func (*IAMServiceAccountSpec) DeepCopy ¶
func (in *IAMServiceAccountSpec) DeepCopy() *IAMServiceAccountSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMServiceAccountSpec.
func (*IAMServiceAccountSpec) DeepCopyInto ¶
func (in *IAMServiceAccountSpec) DeepCopyInto(out *IAMServiceAccountSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMServiceAccountStatus ¶
type IAMServiceAccountStatus struct { /* Conditions represent the latest available observations of the IAMServiceAccount's current state. */ Conditions []v1alpha1.Condition `json:"conditions,omitempty"` /* The e-mail address of the service account. This value should be referenced from any google_iam_policy data sources that would grant the service account privileges. */ Email string `json:"email,omitempty"` /* The fully-qualified name of the service account. */ Name string `json:"name,omitempty"` /* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */ ObservedGeneration int `json:"observedGeneration,omitempty"` /* The unique id of the service account. */ UniqueId string `json:"uniqueId,omitempty"` }
func (*IAMServiceAccountStatus) DeepCopy ¶
func (in *IAMServiceAccountStatus) DeepCopy() *IAMServiceAccountStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMServiceAccountStatus.
func (*IAMServiceAccountStatus) DeepCopyInto ¶
func (in *IAMServiceAccountStatus) DeepCopyInto(out *IAMServiceAccountStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMWorkforcePool ¶ added in v1.91.0
type IAMWorkforcePool struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec IAMWorkforcePoolSpec `json:"spec,omitempty"` Status IAMWorkforcePoolStatus `json:"status,omitempty"` }
IAMWorkforcePool is the Schema for the iam API +k8s:openapi-gen=true
func (*IAMWorkforcePool) DeepCopy ¶ added in v1.91.0
func (in *IAMWorkforcePool) DeepCopy() *IAMWorkforcePool
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMWorkforcePool.
func (*IAMWorkforcePool) DeepCopyInto ¶ added in v1.91.0
func (in *IAMWorkforcePool) DeepCopyInto(out *IAMWorkforcePool)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMWorkforcePool) DeepCopyObject ¶ added in v1.91.0
func (in *IAMWorkforcePool) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMWorkforcePoolList ¶ added in v1.91.0
type IAMWorkforcePoolList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []IAMWorkforcePool `json:"items"` }
IAMWorkforcePoolList contains a list of IAMWorkforcePool
func (*IAMWorkforcePoolList) DeepCopy ¶ added in v1.91.0
func (in *IAMWorkforcePoolList) DeepCopy() *IAMWorkforcePoolList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMWorkforcePoolList.
func (*IAMWorkforcePoolList) DeepCopyInto ¶ added in v1.91.0
func (in *IAMWorkforcePoolList) DeepCopyInto(out *IAMWorkforcePoolList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMWorkforcePoolList) DeepCopyObject ¶ added in v1.91.0
func (in *IAMWorkforcePoolList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMWorkforcePoolSpec ¶ added in v1.91.0
type IAMWorkforcePoolSpec struct { /* A user-specified description of the pool. Cannot exceed 256 characters. */ // +optional Description *string `json:"description,omitempty"` /* Whether the pool is disabled. You cannot use a disabled pool to exchange tokens, or use existing tokens to access resources. If the pool is re-enabled, existing tokens grant access again. */ // +optional Disabled *bool `json:"disabled,omitempty"` /* A user-specified display name of the pool in Google Cloud Console. Cannot exceed 32 characters. */ // +optional DisplayName *string `json:"displayName,omitempty"` /* Immutable. The location for the resource */ Location string `json:"location"` /* Immutable. The Organization that this resource belongs to. Only one of [organizationRef] may be specified. */ OrganizationRef v1alpha1.ResourceRef `json:"organizationRef"` /* Immutable. Optional. The name of the resource. Used for creation and acquisition. When unset, the value of `metadata.name` is used as the default. */ // +optional ResourceID *string `json:"resourceID,omitempty"` /* How long the Google Cloud access tokens, console sign-in sessions, and gcloud sign-in sessions from this pool are valid. Must be greater than 15 minutes (900s) and less than 12 hours (43200s). If `session_duration` is not configured, minted credentials will have a default duration of one hour (3600s). */ // +optional SessionDuration *string `json:"sessionDuration,omitempty"` }
func (*IAMWorkforcePoolSpec) DeepCopy ¶ added in v1.91.0
func (in *IAMWorkforcePoolSpec) DeepCopy() *IAMWorkforcePoolSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMWorkforcePoolSpec.
func (*IAMWorkforcePoolSpec) DeepCopyInto ¶ added in v1.91.0
func (in *IAMWorkforcePoolSpec) DeepCopyInto(out *IAMWorkforcePoolSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMWorkforcePoolStatus ¶ added in v1.91.0
type IAMWorkforcePoolStatus struct { /* Conditions represent the latest available observations of the IAMWorkforcePool's current state. */ Conditions []v1alpha1.Condition `json:"conditions,omitempty"` /* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */ ObservedGeneration int `json:"observedGeneration,omitempty"` /* Output only. The resource name of the pool. Format: `locations/{location}/workforcePools/{workforce_pool_id}` */ SelfLink string `json:"selfLink,omitempty"` /* Output only. The state of the pool. Possible values: STATE_UNSPECIFIED, ACTIVE, DELETED */ State string `json:"state,omitempty"` }
func (*IAMWorkforcePoolStatus) DeepCopy ¶ added in v1.91.0
func (in *IAMWorkforcePoolStatus) DeepCopy() *IAMWorkforcePoolStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMWorkforcePoolStatus.
func (*IAMWorkforcePoolStatus) DeepCopyInto ¶ added in v1.91.0
func (in *IAMWorkforcePoolStatus) DeepCopyInto(out *IAMWorkforcePoolStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMWorkloadIdentityPool ¶
type IAMWorkloadIdentityPool struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec IAMWorkloadIdentityPoolSpec `json:"spec,omitempty"` Status IAMWorkloadIdentityPoolStatus `json:"status,omitempty"` }
IAMWorkloadIdentityPool is the Schema for the iam API +k8s:openapi-gen=true
func (*IAMWorkloadIdentityPool) DeepCopy ¶
func (in *IAMWorkloadIdentityPool) DeepCopy() *IAMWorkloadIdentityPool
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMWorkloadIdentityPool.
func (*IAMWorkloadIdentityPool) DeepCopyInto ¶
func (in *IAMWorkloadIdentityPool) DeepCopyInto(out *IAMWorkloadIdentityPool)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMWorkloadIdentityPool) DeepCopyObject ¶
func (in *IAMWorkloadIdentityPool) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMWorkloadIdentityPoolList ¶
type IAMWorkloadIdentityPoolList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []IAMWorkloadIdentityPool `json:"items"` }
IAMWorkloadIdentityPoolList contains a list of IAMWorkloadIdentityPool
func (*IAMWorkloadIdentityPoolList) DeepCopy ¶
func (in *IAMWorkloadIdentityPoolList) DeepCopy() *IAMWorkloadIdentityPoolList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMWorkloadIdentityPoolList.
func (*IAMWorkloadIdentityPoolList) DeepCopyInto ¶
func (in *IAMWorkloadIdentityPoolList) DeepCopyInto(out *IAMWorkloadIdentityPoolList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMWorkloadIdentityPoolList) DeepCopyObject ¶
func (in *IAMWorkloadIdentityPoolList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMWorkloadIdentityPoolProvider ¶
type IAMWorkloadIdentityPoolProvider struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec IAMWorkloadIdentityPoolProviderSpec `json:"spec,omitempty"` Status IAMWorkloadIdentityPoolProviderStatus `json:"status,omitempty"` }
IAMWorkloadIdentityPoolProvider is the Schema for the iam API +k8s:openapi-gen=true
func (*IAMWorkloadIdentityPoolProvider) DeepCopy ¶
func (in *IAMWorkloadIdentityPoolProvider) DeepCopy() *IAMWorkloadIdentityPoolProvider
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMWorkloadIdentityPoolProvider.
func (*IAMWorkloadIdentityPoolProvider) DeepCopyInto ¶
func (in *IAMWorkloadIdentityPoolProvider) DeepCopyInto(out *IAMWorkloadIdentityPoolProvider)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMWorkloadIdentityPoolProvider) DeepCopyObject ¶
func (in *IAMWorkloadIdentityPoolProvider) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMWorkloadIdentityPoolProviderList ¶
type IAMWorkloadIdentityPoolProviderList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []IAMWorkloadIdentityPoolProvider `json:"items"` }
IAMWorkloadIdentityPoolProviderList contains a list of IAMWorkloadIdentityPoolProvider
func (*IAMWorkloadIdentityPoolProviderList) DeepCopy ¶
func (in *IAMWorkloadIdentityPoolProviderList) DeepCopy() *IAMWorkloadIdentityPoolProviderList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMWorkloadIdentityPoolProviderList.
func (*IAMWorkloadIdentityPoolProviderList) DeepCopyInto ¶
func (in *IAMWorkloadIdentityPoolProviderList) DeepCopyInto(out *IAMWorkloadIdentityPoolProviderList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IAMWorkloadIdentityPoolProviderList) DeepCopyObject ¶
func (in *IAMWorkloadIdentityPoolProviderList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IAMWorkloadIdentityPoolProviderSpec ¶
type IAMWorkloadIdentityPoolProviderSpec struct { /* [A Common Expression Language](https://opensource.google/projects/cel) expression, in plain text, to restrict what otherwise valid authentication credentials issued by the provider should not be accepted. The expression must output a boolean representing whether to allow the federation. The following keywords may be referenced in the expressions: * `assertion`: JSON representing the authentication credential issued by the provider. * `google`: The Google attributes mapped from the assertion in the `attribute_mappings`. * `attribute`: The custom attributes mapped from the assertion in the `attribute_mappings`. The maximum length of the attribute condition expression is 4096 characters. If unspecified, all valid authentication credential are accepted. The following example shows how to only allow credentials with a mapped `google.groups` value of `admins`: “` "'admins' in google.groups" “` */ // +optional AttributeCondition *string `json:"attributeCondition,omitempty"` /* Maps attributes from authentication credentials issued by an external identity provider to Google Cloud attributes, such as `subject` and `segment`. Each key must be a string specifying the Google Cloud IAM attribute to map to. The following keys are supported: * `google.subject`: The principal IAM is authenticating. You can reference this value in IAM bindings. This is also the subject that appears in Cloud Logging logs. Cannot exceed 127 characters. * `google.groups`: Groups the external identity belongs to. You can grant groups access to resources using an IAM `principalSet` binding; access applies to all members of the group. You can also provide custom attributes by specifying `attribute.{custom_attribute}`, where `{custom_attribute}` is the name of the custom attribute to be mapped. You can define a maximum of 50 custom attributes. The maximum length of a mapped attribute key is 100 characters, and the key may only contain the characters [a-z0-9_]. You can reference these attributes in IAM policies to define fine-grained access for a workload to Google Cloud resources. For example: * `google.subject`: `principal://iam.googleapis.com/projects/{project}/locations/{location}/workloadIdentityPools/{pool}/subject/{value}` * `google.groups`: `principalSet://iam.googleapis.com/projects/{project}/locations/{location}/workloadIdentityPools/{pool}/group/{value}` * `attribute.{custom_attribute}`: `principalSet://iam.googleapis.com/projects/{project}/locations/{location}/workloadIdentityPools/{pool}/attribute.{custom_attribute}/{value}` Each value must be a [Common Expression Language] (https://opensource.google/projects/cel) function that maps an identity provider credential to the normalized attribute specified by the corresponding map key. You can use the `assertion` keyword in the expression to access a JSON representation of the authentication credential issued by the provider. The maximum length of an attribute mapping expression is 2048 characters. When evaluated, the total size of all mapped attributes must not exceed 8KB. For AWS providers, if no attribute mapping is defined, the following default mapping applies: “` { "google.subject":"assertion.arn", "attribute.aws_role": "assertion.arn.contains('assumed-role')" " ? assertion.arn.extract('{account_arn}assumed-role/')" " + 'assumed-role/'" " + assertion.arn.extract('assumed-role/{role_name}/')" " : assertion.arn", } “` If any custom attribute mappings are defined, they must include a mapping to the `google.subject` attribute. For OIDC providers, you must supply a custom mapping, which must include the `google.subject` attribute. For example, the following maps the `sub` claim of the incoming credential to the `subject` attribute on a Google token: “` {"google.subject": "assertion.sub"} “` */ // +optional AttributeMapping map[string]string `json:"attributeMapping,omitempty"` /* An Amazon Web Services identity provider. */ // +optional Aws *WorkloadidentitypoolproviderAws `json:"aws,omitempty"` /* A description for the provider. Cannot exceed 256 characters. */ // +optional Description *string `json:"description,omitempty"` /* Whether the provider is disabled. You cannot use a disabled provider to exchange tokens. However, existing tokens still grant access. */ // +optional Disabled *bool `json:"disabled,omitempty"` /* A display name for the provider. Cannot exceed 32 characters. */ // +optional DisplayName *string `json:"displayName,omitempty"` /* Immutable. The location for the resource */ Location string `json:"location"` /* An OpenId Connect 1.0 identity provider. */ // +optional Oidc *WorkloadidentitypoolproviderOidc `json:"oidc,omitempty"` /* Immutable. The Project that this resource belongs to. */ ProjectRef v1alpha1.ResourceRef `json:"projectRef"` /* Immutable. Optional. The name of the resource. Used for creation and acquisition. When unset, the value of `metadata.name` is used as the default. */ // +optional ResourceID *string `json:"resourceID,omitempty"` /* Immutable. */ WorkloadIdentityPoolRef v1alpha1.ResourceRef `json:"workloadIdentityPoolRef"` }
func (*IAMWorkloadIdentityPoolProviderSpec) DeepCopy ¶
func (in *IAMWorkloadIdentityPoolProviderSpec) DeepCopy() *IAMWorkloadIdentityPoolProviderSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMWorkloadIdentityPoolProviderSpec.
func (*IAMWorkloadIdentityPoolProviderSpec) DeepCopyInto ¶
func (in *IAMWorkloadIdentityPoolProviderSpec) DeepCopyInto(out *IAMWorkloadIdentityPoolProviderSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMWorkloadIdentityPoolProviderStatus ¶
type IAMWorkloadIdentityPoolProviderStatus struct { /* Conditions represent the latest available observations of the IAMWorkloadIdentityPoolProvider's current state. */ Conditions []v1alpha1.Condition `json:"conditions,omitempty"` /* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */ ObservedGeneration int `json:"observedGeneration,omitempty"` /* Output only. The state of the provider. Possible values: STATE_UNSPECIFIED, ACTIVE, DELETED */ State string `json:"state,omitempty"` }
func (*IAMWorkloadIdentityPoolProviderStatus) DeepCopy ¶
func (in *IAMWorkloadIdentityPoolProviderStatus) DeepCopy() *IAMWorkloadIdentityPoolProviderStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMWorkloadIdentityPoolProviderStatus.
func (*IAMWorkloadIdentityPoolProviderStatus) DeepCopyInto ¶
func (in *IAMWorkloadIdentityPoolProviderStatus) DeepCopyInto(out *IAMWorkloadIdentityPoolProviderStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMWorkloadIdentityPoolSpec ¶
type IAMWorkloadIdentityPoolSpec struct { /* A description of the pool. Cannot exceed 256 characters. */ // +optional Description *string `json:"description,omitempty"` /* Whether the pool is disabled. You cannot use a disabled pool to exchange tokens, or use existing tokens to access resources. If the pool is re-enabled, existing tokens grant access again. */ // +optional Disabled *bool `json:"disabled,omitempty"` /* A display name for the pool. Cannot exceed 32 characters. */ // +optional DisplayName *string `json:"displayName,omitempty"` /* Immutable. The location for the resource */ Location string `json:"location"` /* Immutable. The Project that this resource belongs to. */ ProjectRef v1alpha1.ResourceRef `json:"projectRef"` /* Immutable. Optional. The name of the resource. Used for creation and acquisition. When unset, the value of `metadata.name` is used as the default. */ // +optional ResourceID *string `json:"resourceID,omitempty"` }
func (*IAMWorkloadIdentityPoolSpec) DeepCopy ¶
func (in *IAMWorkloadIdentityPoolSpec) DeepCopy() *IAMWorkloadIdentityPoolSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMWorkloadIdentityPoolSpec.
func (*IAMWorkloadIdentityPoolSpec) DeepCopyInto ¶
func (in *IAMWorkloadIdentityPoolSpec) DeepCopyInto(out *IAMWorkloadIdentityPoolSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IAMWorkloadIdentityPoolStatus ¶
type IAMWorkloadIdentityPoolStatus struct { /* Conditions represent the latest available observations of the IAMWorkloadIdentityPool's current state. */ Conditions []v1alpha1.Condition `json:"conditions,omitempty"` /* ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */ ObservedGeneration int `json:"observedGeneration,omitempty"` /* Output only. The state of the pool. Possible values: STATE_UNSPECIFIED, ACTIVE, DELETED */ State string `json:"state,omitempty"` }
func (*IAMWorkloadIdentityPoolStatus) DeepCopy ¶
func (in *IAMWorkloadIdentityPoolStatus) DeepCopy() *IAMWorkloadIdentityPoolStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IAMWorkloadIdentityPoolStatus.
func (*IAMWorkloadIdentityPoolStatus) DeepCopyInto ¶
func (in *IAMWorkloadIdentityPoolStatus) DeepCopyInto(out *IAMWorkloadIdentityPoolStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PartialpolicyAllBindingsStatus ¶
type PartialpolicyAllBindingsStatus struct { /* Optional. The condition under which the binding applies. */ Condition PartialpolicyConditionStatus `json:"condition,omitempty"` /* Optional. The list of IAM users to be bound to the role. */ Members []string `json:"members,omitempty"` /* Required. The role to bind the users to. */ Role string `json:"role"` }
func (*PartialpolicyAllBindingsStatus) DeepCopy ¶
func (in *PartialpolicyAllBindingsStatus) DeepCopy() *PartialpolicyAllBindingsStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PartialpolicyAllBindingsStatus.
func (*PartialpolicyAllBindingsStatus) DeepCopyInto ¶
func (in *PartialpolicyAllBindingsStatus) DeepCopyInto(out *PartialpolicyAllBindingsStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PartialpolicyBindings ¶
type PartialpolicyBindings struct { /* Optional. The condition under which the binding applies. */ // +optional Condition *PartialpolicyCondition `json:"condition,omitempty"` /* Optional. The list of IAM users to be bound to the role. */ // +optional Members []PartialpolicyMembers `json:"members,omitempty"` /* Required. The role to bind the users to. */ Role string `json:"role"` }
func (*PartialpolicyBindings) DeepCopy ¶
func (in *PartialpolicyBindings) DeepCopy() *PartialpolicyBindings
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PartialpolicyBindings.
func (*PartialpolicyBindings) DeepCopyInto ¶
func (in *PartialpolicyBindings) DeepCopyInto(out *PartialpolicyBindings)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PartialpolicyCondition ¶
type PartialpolicyCondition struct { /* */ // +optional Description *string `json:"description,omitempty"` /* */ Expression string `json:"expression"` /* */ Title string `json:"title"` }
func (*PartialpolicyCondition) DeepCopy ¶
func (in *PartialpolicyCondition) DeepCopy() *PartialpolicyCondition
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PartialpolicyCondition.
func (*PartialpolicyCondition) DeepCopyInto ¶
func (in *PartialpolicyCondition) DeepCopyInto(out *PartialpolicyCondition)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PartialpolicyConditionStatus ¶
type PartialpolicyConditionStatus struct { /* */ Description string `json:"description,omitempty"` /* */ Expression string `json:"expression"` /* */ Title string `json:"title"` }
func (*PartialpolicyConditionStatus) DeepCopy ¶
func (in *PartialpolicyConditionStatus) DeepCopy() *PartialpolicyConditionStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PartialpolicyConditionStatus.
func (*PartialpolicyConditionStatus) DeepCopyInto ¶
func (in *PartialpolicyConditionStatus) DeepCopyInto(out *PartialpolicyConditionStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PartialpolicyLastAppliedBindingsStatus ¶
type PartialpolicyLastAppliedBindingsStatus struct { /* Optional. The condition under which the binding applies. */ Condition PartialpolicyConditionStatus `json:"condition,omitempty"` /* Optional. The list of IAM users to be bound to the role. */ Members []string `json:"members,omitempty"` /* Required. The role to bind the users to. */ Role string `json:"role"` }
func (*PartialpolicyLastAppliedBindingsStatus) DeepCopy ¶
func (in *PartialpolicyLastAppliedBindingsStatus) DeepCopy() *PartialpolicyLastAppliedBindingsStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PartialpolicyLastAppliedBindingsStatus.
func (*PartialpolicyLastAppliedBindingsStatus) DeepCopyInto ¶
func (in *PartialpolicyLastAppliedBindingsStatus) DeepCopyInto(out *PartialpolicyLastAppliedBindingsStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PartialpolicyMemberFrom ¶
type PartialpolicyMemberFrom struct { /* The LoggingLogSink whose writer identity (i.e. its 'status.writerIdentity') is to be bound to the role. */ // +optional LogSinkRef *v1alpha1.IAMResourceRef `json:"logSinkRef,omitempty"` /* The IAMServiceAccount to be bound to the role. */ // +optional ServiceAccountRef *v1alpha1.IAMResourceRef `json:"serviceAccountRef,omitempty"` }
func (*PartialpolicyMemberFrom) DeepCopy ¶
func (in *PartialpolicyMemberFrom) DeepCopy() *PartialpolicyMemberFrom
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PartialpolicyMemberFrom.
func (*PartialpolicyMemberFrom) DeepCopyInto ¶
func (in *PartialpolicyMemberFrom) DeepCopyInto(out *PartialpolicyMemberFrom)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PartialpolicyMembers ¶
type PartialpolicyMembers struct { /* The IAM identity to be bound to the role. Exactly one of 'member' or 'memberFrom' must be used. */ // +optional Member *string `json:"member,omitempty"` /* The IAM identity to be bound to the role. Exactly one of 'member' or 'memberFrom' must be used, and only one subfield within 'memberFrom' can be used. */ // +optional MemberFrom *PartialpolicyMemberFrom `json:"memberFrom,omitempty"` }
func (*PartialpolicyMembers) DeepCopy ¶
func (in *PartialpolicyMembers) DeepCopy() *PartialpolicyMembers
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PartialpolicyMembers.
func (*PartialpolicyMembers) DeepCopyInto ¶
func (in *PartialpolicyMembers) DeepCopyInto(out *PartialpolicyMembers)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PolicyAuditConfigs ¶
type PolicyAuditConfigs struct { /* Required. The configuration for logging of each type of permission. */ AuditLogConfigs []PolicyAuditLogConfigs `json:"auditLogConfigs"` /* Required. The service for which to enable Data Access audit logs. The special value 'allServices' covers all services. Note that if there are audit configs covering both 'allServices' and a specific service, then the union of the two audit configs is used for that service: the 'logTypes' specified in each 'auditLogConfig' are enabled, and the 'exemptedMembers' in each 'auditLogConfg' are exempted. */ Service string `json:"service"` }
func (*PolicyAuditConfigs) DeepCopy ¶
func (in *PolicyAuditConfigs) DeepCopy() *PolicyAuditConfigs
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicyAuditConfigs.
func (*PolicyAuditConfigs) DeepCopyInto ¶
func (in *PolicyAuditConfigs) DeepCopyInto(out *PolicyAuditConfigs)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PolicyAuditLogConfigs ¶
type PolicyAuditLogConfigs struct { /* Identities that do not cause logging for this type of permission. The format is the same as that for 'members' in IAMPolicy/IAMPolicyMember. */ // +optional ExemptedMembers []string `json:"exemptedMembers,omitempty"` /* Permission type for which logging is to be configured. Must be one of 'DATA_READ', 'DATA_WRITE', or 'ADMIN_READ'. */ LogType string `json:"logType"` }
func (*PolicyAuditLogConfigs) DeepCopy ¶
func (in *PolicyAuditLogConfigs) DeepCopy() *PolicyAuditLogConfigs
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicyAuditLogConfigs.
func (*PolicyAuditLogConfigs) DeepCopyInto ¶
func (in *PolicyAuditLogConfigs) DeepCopyInto(out *PolicyAuditLogConfigs)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PolicyBindings ¶
type PolicyBindings struct { /* Optional. The condition under which the binding applies. */ // +optional Condition *PolicyCondition `json:"condition,omitempty"` /* Optional. The list of IAM users to be bound to the role. */ // +optional Members []string `json:"members,omitempty"` /* Required. The role to bind the users to. */ Role string `json:"role"` }
func (*PolicyBindings) DeepCopy ¶
func (in *PolicyBindings) DeepCopy() *PolicyBindings
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicyBindings.
func (*PolicyBindings) DeepCopyInto ¶
func (in *PolicyBindings) DeepCopyInto(out *PolicyBindings)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PolicyCondition ¶
type PolicyCondition struct { /* */ // +optional Description *string `json:"description,omitempty"` /* */ Expression string `json:"expression"` /* */ Title string `json:"title"` }
func (*PolicyCondition) DeepCopy ¶
func (in *PolicyCondition) DeepCopy() *PolicyCondition
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicyCondition.
func (*PolicyCondition) DeepCopyInto ¶
func (in *PolicyCondition) DeepCopyInto(out *PolicyCondition)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PolicymemberCondition ¶
type PolicymemberCondition struct { /* */ // +optional Description *string `json:"description,omitempty"` /* */ Expression string `json:"expression"` /* */ Title string `json:"title"` }
func (*PolicymemberCondition) DeepCopy ¶
func (in *PolicymemberCondition) DeepCopy() *PolicymemberCondition
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicymemberCondition.
func (*PolicymemberCondition) DeepCopyInto ¶
func (in *PolicymemberCondition) DeepCopyInto(out *PolicymemberCondition)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PolicymemberMemberFrom ¶
type PolicymemberMemberFrom struct { /* The LoggingLogSink whose writer identity (i.e. its 'status.writerIdentity') is to be bound to the role. */ // +optional LogSinkRef *v1alpha1.IAMResourceRef `json:"logSinkRef,omitempty"` /* The IAMServiceAccount to be bound to the role. */ // +optional ServiceAccountRef *v1alpha1.IAMResourceRef `json:"serviceAccountRef,omitempty"` }
func (*PolicymemberMemberFrom) DeepCopy ¶
func (in *PolicymemberMemberFrom) DeepCopy() *PolicymemberMemberFrom
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PolicymemberMemberFrom.
func (*PolicymemberMemberFrom) DeepCopyInto ¶
func (in *PolicymemberMemberFrom) DeepCopyInto(out *PolicymemberMemberFrom)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type WorkloadidentitypoolproviderAws ¶
type WorkloadidentitypoolproviderAws struct { /* Required. The AWS account ID. */ AccountId string `json:"accountId"` /* A list of AWS STS URIs that can be used when exchanging credentials. If not provided, any valid AWS STS URI is allowed. URIs must use the form `https://sts.amazonaws.com` or `https://sts.{region}.amazonaws.com`, where {region} is a valid AWS region. You can specify a maximum of 25 URIs. */ // +optional StsUri []string `json:"stsUri,omitempty"` }
func (*WorkloadidentitypoolproviderAws) DeepCopy ¶
func (in *WorkloadidentitypoolproviderAws) DeepCopy() *WorkloadidentitypoolproviderAws
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new WorkloadidentitypoolproviderAws.
func (*WorkloadidentitypoolproviderAws) DeepCopyInto ¶
func (in *WorkloadidentitypoolproviderAws) DeepCopyInto(out *WorkloadidentitypoolproviderAws)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type WorkloadidentitypoolproviderOidc ¶
type WorkloadidentitypoolproviderOidc struct { /* Acceptable values for the `aud` field (audience) in the OIDC token. Token exchange requests are rejected if the token audience does not match one of the configured values. Each audience may be at most 256 characters. A maximum of 10 audiences may be configured. If this list is empty, the OIDC token audience must be equal to the full canonical resource name of the WorkloadIdentityPoolProvider, with or without the HTTPS prefix. For example: “` //iam.googleapis.com/projects//locations//workloadIdentityPools//providers/ https://iam.googleapis.com/projects//locations//workloadIdentityPools//providers/ “` */ // +optional AllowedAudiences []string `json:"allowedAudiences,omitempty"` /* Required. The OIDC issuer URL. Must be an HTTPS endpoint. */ IssuerUri string `json:"issuerUri"` }
func (*WorkloadidentitypoolproviderOidc) DeepCopy ¶
func (in *WorkloadidentitypoolproviderOidc) DeepCopy() *WorkloadidentitypoolproviderOidc
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new WorkloadidentitypoolproviderOidc.
func (*WorkloadidentitypoolproviderOidc) DeepCopyInto ¶
func (in *WorkloadidentitypoolproviderOidc) DeepCopyInto(out *WorkloadidentitypoolproviderOidc)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
Source Files ¶
- doc.go
- iamauditconfig_types.go
- iamcustomrole_types.go
- iampartialpolicy_types.go
- iampolicy_types.go
- iampolicymember_types.go
- iamserviceaccount_types.go
- iamserviceaccountkey_types.go
- iamworkforcepool_types.go
- iamworkloadidentitypool_types.go
- iamworkloadidentitypoolprovider_types.go
- register.go
- zz_generated.deepcopy.go