Documentation
¶
Overview ¶
Package v1alpha1 is the v1alpha1 version of the cainjector config API. +k8s:deepcopy-gen=package,register +groupName=cainjector.config.cert-manager.io
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var ( SchemeBuilder runtime.SchemeBuilder AddToScheme = localSchemeBuilder.AddToScheme )
View Source
var SchemeGroupVersion = schema.GroupVersion{Group: cainjector.GroupName, Version: "v1alpha1"}
SchemeGroupVersion is group version used to register these objects
Functions ¶
func Resource ¶
func Resource(resource string) schema.GroupResource
Resource takes an unqualified resource and returns a Group qualified GroupResource
Types ¶
type CAInjectorConfiguration ¶
type CAInjectorConfiguration struct {
metav1.TypeMeta `json:",inline"`
// kubeConfig is the kubeconfig file used to connect to the Kubernetes apiserver.
// If not specified, the cainjector will attempt to load the in-cluster-config.
KubeConfig string `json:"kubeConfig,omitempty"`
// If set, this limits the scope of cainjector to a single namespace.
// If set, cainjector will not update resources with certificates outside of the
// configured namespace.
Namespace string `json:"namespace,omitempty"`
// LeaderElectionConfig configures the behaviour of the leader election
LeaderElectionConfig LeaderElectionConfig `json:"leaderElectionConfig"`
// EnableDataSourceConfig determines whether cainjector's control loops will watch
// cert-manager resources as potential sources of CA data.
EnableDataSourceConfig EnableDataSourceConfig `json:"enableDataSourceConfig"`
// EnableInjectableConfig determines whether cainjector's control loops will watch
// cert-manager resources as potential targets for CA data injection.
EnableInjectableConfig EnableInjectableConfig `json:"enableInjectableConfig"`
// Enable profiling for cainjector.
EnablePprof bool `json:"enablePprof"`
// The host and port that Go profiler should listen on, i.e localhost:6060.
// Ensure that profiler is not exposed on a public address. Profiler will be
// served at /debug/pprof.
PprofAddress string `json:"pprofAddress,omitempty"`
// logging configures the logging behaviour of the cainjector.
// https://pkg.go.dev/k8s.io/component-base@v0.27.3/logs/api/v1#LoggingConfiguration
Logging logsapi.LoggingConfiguration `json:"logging"`
// featureGates is a map of feature names to bools that enable or disable experimental
// features.
// +optional
FeatureGates map[string]bool `json:"featureGates,omitempty"`
}
func (*CAInjectorConfiguration) DeepCopy ¶
func (in *CAInjectorConfiguration) DeepCopy() *CAInjectorConfiguration
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new CAInjectorConfiguration.
func (*CAInjectorConfiguration) DeepCopyInto ¶
func (in *CAInjectorConfiguration) DeepCopyInto(out *CAInjectorConfiguration)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*CAInjectorConfiguration) DeepCopyObject ¶
func (in *CAInjectorConfiguration) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type EnableDataSourceConfig ¶
type EnableDataSourceConfig struct {
// Certificates detemines whether cainjector's control loops will watch
// cert-manager Certificate resources as potential sources of CA data.
// If not set, defaults to true.
Certificates *bool `json:"certificates"`
}
func (*EnableDataSourceConfig) DeepCopy ¶
func (in *EnableDataSourceConfig) DeepCopy() *EnableDataSourceConfig
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new EnableDataSourceConfig.
func (*EnableDataSourceConfig) DeepCopyInto ¶
func (in *EnableDataSourceConfig) DeepCopyInto(out *EnableDataSourceConfig)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type EnableInjectableConfig ¶
type EnableInjectableConfig struct {
// ValidatingWebhookConfigurations determines whether cainjector
// will spin up a control loop to inject CA data to annotated
// ValidatingWebhookConfigurations
// If not set, defaults to true.
ValidatingWebhookConfigurations *bool `json:"validatingWebhookConfigurations"`
// MutatingWebhookConfigurations determines whether cainjector
// will spin up a control loop to inject CA data to annotated
// MutatingWebhookConfigurations
// If not set, defaults to true.
MutatingWebhookConfigurations *bool `json:"mutatingWebhookConfigurations"`
// CustomResourceDefinitions determines whether cainjector
// will spin up a control loop to inject CA data to annotated
// CustomResourceDefinitions
// If not set, defaults to true.
CustomResourceDefinitions *bool `json:"customResourceDefinitions"`
// APIServices determines whether cainjector
// will spin up a control loop to inject CA data to annotated
// APIServices
// If not set, defaults to true.
APIServices *bool `json:"apiServices"`
}
func (*EnableInjectableConfig) DeepCopy ¶
func (in *EnableInjectableConfig) DeepCopy() *EnableInjectableConfig
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new EnableInjectableConfig.
func (*EnableInjectableConfig) DeepCopyInto ¶
func (in *EnableInjectableConfig) DeepCopyInto(out *EnableInjectableConfig)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type LeaderElectionConfig ¶
type LeaderElectionConfig struct {
// If true, cert-manager will perform leader election between instances to
// ensure no more than one instance of cert-manager operates at a time
Enabled *bool `json:"enabled,omitempty"`
// Namespace used to perform leader election. Only used if leader election is enabled
Namespace string `json:"namespace,omitempty"`
// The duration that non-leader candidates will wait after observing a leadership
// renewal until attempting to acquire leadership of a led but unrenewed leader
// slot. This is effectively the maximum duration that a leader can be stopped
// before it is replaced by another candidate. This is only applicable if leader
// election is enabled.
LeaseDuration time.Duration `json:"leaseDuration,omitempty"`
// The interval between attempts by the acting master to renew a leadership slot
// before it stops leading. This must be less than or equal to the lease duration.
// This is only applicable if leader election is enabled.
RenewDeadline time.Duration `json:"renewDeadline,omitempty"`
// The duration the clients should wait between attempting acquisition and renewal
// of a leadership. This is only applicable if leader election is enabled.
RetryPeriod time.Duration `json:"retryPeriod,omitempty"`
}
func (*LeaderElectionConfig) DeepCopy ¶
func (in *LeaderElectionConfig) DeepCopy() *LeaderElectionConfig
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new LeaderElectionConfig.
func (*LeaderElectionConfig) DeepCopyInto ¶
func (in *LeaderElectionConfig) DeepCopyInto(out *LeaderElectionConfig)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
Source Files
Click to show internal directories.
Click to hide internal directories.