Documentation ¶
Overview ¶
Package v1alpha1 contains API Schema definitions for the cert v1alpha1 API group +kubebuilder:object:generate=true +groupName=cert.dana.io
Index ¶
Constants ¶
This section is empty.
Variables ¶
var ( // GroupVersion is group version used to register these objects GroupVersion = schema.GroupVersion{Group: "cert.dana.io", Version: "v1alpha1"} // SchemeBuilder is used to add go types to the GroupVersionKind scheme SchemeBuilder = &scheme.Builder{GroupVersion: GroupVersion} // AddToScheme adds the types in this group-version to the given scheme. AddToScheme = SchemeBuilder.AddToScheme )
Functions ¶
This section is empty.
Types ¶
type ClusterIssuer ¶
type ClusterIssuer struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec IssuerSpec `json:"spec,omitempty"` Status IssuerStatus `json:"status,omitempty"` }
ClusterIssuer is the Schema for the clusterissuers API
func (*ClusterIssuer) DeepCopy ¶
func (in *ClusterIssuer) DeepCopy() *ClusterIssuer
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ClusterIssuer.
func (*ClusterIssuer) DeepCopyInto ¶
func (in *ClusterIssuer) DeepCopyInto(out *ClusterIssuer)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ClusterIssuer) DeepCopyObject ¶
func (in *ClusterIssuer) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type ClusterIssuerList ¶
type ClusterIssuerList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []ClusterIssuer `json:"items"` }
ClusterIssuerList contains a list of ClusterIssuer
func (*ClusterIssuerList) DeepCopy ¶
func (in *ClusterIssuerList) DeepCopy() *ClusterIssuerList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ClusterIssuerList.
func (*ClusterIssuerList) DeepCopyInto ¶
func (in *ClusterIssuerList) DeepCopyInto(out *ClusterIssuerList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ClusterIssuerList) DeepCopyObject ¶
func (in *ClusterIssuerList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type DomainRestrictions ¶
type DomainRestrictions struct { // AllowedDomains is a set of domains that are used on a Certificate // and are supported by the Issuer. // +optional AllowedDomains []string `json:"allowedDomains,omitempty"` // AllowedSubdomains is a set of Subdomains that are used on a Certificate // and are supported by the Issuer. // +optional AllowedSubdomains []string `json:"allowedSubdomains,omitempty"` }
DomainRestrictions represents the Domain restrictions imposed by the Issuer.
func (*DomainRestrictions) DeepCopy ¶
func (in *DomainRestrictions) DeepCopy() *DomainRestrictions
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new DomainRestrictions.
func (*DomainRestrictions) DeepCopyInto ¶
func (in *DomainRestrictions) DeepCopyInto(out *DomainRestrictions)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type HTTPConfig ¶
type HTTPConfig struct { // SkipVerifyTLS specifies whether to skip TLS verification in HTTP requests. SkipVerifyTLS bool `json:"skipVerifyTLS"` // WaitTimeout specifies the maximum time duration for waiting for response in HTTP requests. WaitTimeout *metav1.Duration `json:"waitTimeout,omitempty"` // RetryBackoff specifies the retry configuration in HTTP requests. RetryBackoff RetryBackoff `json:"retryBackoff,omitempty"` }
func (*HTTPConfig) DeepCopy ¶
func (in *HTTPConfig) DeepCopy() *HTTPConfig
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new HTTPConfig.
func (*HTTPConfig) DeepCopyInto ¶
func (in *HTTPConfig) DeepCopyInto(out *HTTPConfig)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type Issuer ¶
type Issuer struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` Spec IssuerSpec `json:"spec,omitempty"` Status IssuerStatus `json:"status,omitempty"` }
Issuer is the Schema for the issuers API
func (*Issuer) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Issuer.
func (*Issuer) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*Issuer) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IssuerList ¶
type IssuerList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []Issuer `json:"items"` }
IssuerList contains a list of Issuer
func (*IssuerList) DeepCopy ¶
func (in *IssuerList) DeepCopy() *IssuerList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IssuerList.
func (*IssuerList) DeepCopyInto ¶
func (in *IssuerList) DeepCopyInto(out *IssuerList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*IssuerList) DeepCopyObject ¶
func (in *IssuerList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type IssuerSpec ¶
type IssuerSpec struct { // APIEndpoint is the base URL for the endpoint of the Cert API service. APIEndpoint string `json:"apiEndpoint"` // APIEndpoint is the download URL for the endpoint of the Cert API service. DownloadEndpoint string `json:"downloadEndpoint"` // Form is the format of the Certificate that is downloaded from the Cert API service. // +kubebuilder:default:="chain" // +kubebuilder:validation:Enum=chain;public Form string `json:"form,omitempty"` // AuthSecretName is a reference to a Secret in the same namespace as the referent. If the // referent is a ClusterIssuer, the reference instead refers to the resource // with the given name in the configured 'cluster resource namespace', which // is set as a flag on the controller component (and defaults to the // namespace that the controller runs in). AuthSecretName string `json:"authSecretName"` // HTTPConfig specifies configuration relating to the HTTP client used to interact // with the cert API. HTTPConfig HTTPConfig `json:"httpConfig"` // CertificateRestrictions is a set of restrictions for a Certificate imposed by the Issuer. CertificateRestrictions Restrictions `json:"certificateRestrictions,omitempty"` }
IssuerSpec defines the desired state of Issuer.
func (*IssuerSpec) DeepCopy ¶
func (in *IssuerSpec) DeepCopy() *IssuerSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IssuerSpec.
func (*IssuerSpec) DeepCopyInto ¶
func (in *IssuerSpec) DeepCopyInto(out *IssuerSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type IssuerStatus ¶
type IssuerStatus struct { // List of status conditions to indicate the status of a CertificateRequest. // Known condition types are `Ready`. // +optional Conditions []metav1.Condition `json:"conditions,omitempty"` }
IssuerStatus defines the observed state of Issuer
func (*IssuerStatus) DeepCopy ¶
func (in *IssuerStatus) DeepCopy() *IssuerStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new IssuerStatus.
func (*IssuerStatus) DeepCopyInto ¶
func (in *IssuerStatus) DeepCopyInto(out *IssuerStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PrivateKeyRestrictions ¶
type PrivateKeyRestrictions struct { // AllowedPrivateKeyAlgorithms is a set of private key algorithms of the // corresponding private key for a Certificate which is supported by the Issuer. // +optional AllowedPrivateKeyAlgorithms []cmapi.PrivateKeyAlgorithm `json:"allowedPrivateKeyAlgorithms,omitempty"` // AllowedPrivateKeySizes is a set of key bit sizes of the // corresponding private key for a Certificate which is supported by the Issuer. // +optional AllowedPrivateKeySizes []int `json:"allowedPrivateKeySizes,omitempty"` }
PrivateKeyRestrictions represents the PrivateKey restrictions imposed by the Issuer.
func (*PrivateKeyRestrictions) DeepCopy ¶
func (in *PrivateKeyRestrictions) DeepCopy() *PrivateKeyRestrictions
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PrivateKeyRestrictions.
func (*PrivateKeyRestrictions) DeepCopyInto ¶
func (in *PrivateKeyRestrictions) DeepCopyInto(out *PrivateKeyRestrictions)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type Restrictions ¶
type Restrictions struct { // PrivateKeyRestrictions represents the PrivateKey restrictions imposed by the Issuer. // +optional PrivateKeyRestrictions PrivateKeyRestrictions `json:"privateKeyRestrictions,omitempty"` // SubjectRestrictions represents the Subject restrictions imposed by the Issuer. // +optional SubjectRestrictions SubjectRestrictions `json:"subjectRestrictions,omitempty"` // UsageRestrictions represents the Usages restrictions imposed by the Issuer. // +optional UsageRestrictions UsageRestrictions `json:"usageRestrictions,omitempty"` // DomainRestrictions represents the Domain restrictions imposed by the Issuer. // +optional DomainRestrictions DomainRestrictions `json:"domainRestrictions,omitempty"` // SubjectAltNamesRestrictions represents the SubjectAltNames restrictions imposed by the Issuer. // +optional SubjectAltNamesRestrictions SubjectAltNamesRestrictions `json:"subjectAltNamesRestrictions,omitempty"` }
Restrictions defines a set of restrictions for a Certificate imposed by the Issuer.
func (*Restrictions) DeepCopy ¶
func (in *Restrictions) DeepCopy() *Restrictions
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Restrictions.
func (*Restrictions) DeepCopyInto ¶
func (in *Restrictions) DeepCopyInto(out *Restrictions)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type RetryBackoff ¶
type RetryBackoff struct { // Duration is the initial duration. Duration metav1.Duration `json:"duration,omitempty"` // Factor multiplies duration in each iteration, if factor is not zero // and the limits imposed by Steps. Should not be negative. Factor string `json:"factor,omitempty"` // Jitter contributes to the sleep at each iteration. It is // the duration plus an additional amount chosen uniformly at // random from the interval between zero and `jitter*duration`. Jitter string `json:"jitter,omitempty"` // Steps is the remaining number of iterations in which the duration // parameter may change. If not positive, the duration is not // changed. Used for exponential backoff in combination with Factor. Steps int `json:"steps,omitempty"` }
RetryBackoff specifies the retry configuration in HTTP requests. It is the wait.Backoff but with json tags.
func (*RetryBackoff) DeepCopy ¶
func (in *RetryBackoff) DeepCopy() *RetryBackoff
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RetryBackoff.
func (*RetryBackoff) DeepCopyInto ¶
func (in *RetryBackoff) DeepCopyInto(out *RetryBackoff)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type SubjectAltNamesRestrictions ¶
type SubjectAltNamesRestrictions struct { // AllowDNSNames is a boolean indicating whether specifying DNSNames on the Certificate is allowed by the Issuer. AllowDNSNames bool `json:"allowDNSNames,omitempty"` // AllowIPAddresses is a boolean indicating whether specifying IPAddresses on the Certificate is allowed by the Issuer. AllowIPAddresses bool `json:"allowIPAddresses,omitempty"` // AllowedAllowedURISANs is a boolean indicating whether specifying URISANs on the Certificate is allowed by the Issuer. AllowURISANs bool `json:"allowAllowedURISANs,omitempty"` // AllowEmailSANs is a boolean indicating whether specifying EmailSANs on the Certificate is allowed by the Issuer. AllowEmailSANs bool `json:"allowAllowedEmailSANs,omitempty"` }
SubjectAltNamesRestrictions represents the SubjectAltNames restrictions imposed by the Issuer.
func (*SubjectAltNamesRestrictions) DeepCopy ¶
func (in *SubjectAltNamesRestrictions) DeepCopy() *SubjectAltNamesRestrictions
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SubjectAltNamesRestrictions.
func (*SubjectAltNamesRestrictions) DeepCopyInto ¶
func (in *SubjectAltNamesRestrictions) DeepCopyInto(out *SubjectAltNamesRestrictions)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type SubjectRestrictions ¶
type SubjectRestrictions struct { // AllowedOrganizations is a set of Organizations that can be used on a Certificate and are supported by the Issuer. // +optional AllowedOrganizations []string `json:"allowedOrganizations,omitempty"` // AllowedCountries is a set of Countries that can be used on a Certificate and are supported by the Issuer. // +optional AllowedCountries []string `json:"allowedCountries,omitempty"` // AllowedOrganizationalUnits is a set of OrganizationalUnits that can be used on a Certificate and are supported by the Issuer. // +optional AllowedOrganizationalUnits []string `json:"allowedOrganizationalUnits,omitempty"` // AllowedLocalities is a set of Localities that can be used on a Certificate and are supported by the Issuer. // +optional AllowedLocalities []string `json:"allowedLocalities,omitempty"` // AllowedProvinces is a set of Provinces that can be used on a Certificate and are supported by the Issuer. // +optional AllowedProvinces []string `json:"allowedProvinces,omitempty"` // AllowedStreetAddresses is a set of StreetAddresses that can be used on a Certificate and are supported by the Issuer. // +optional AllowedStreetAddresses []string `json:"allowedStreetAddresses,omitempty"` // AllowedPostalCodes is a set of PostalCodes that can be used on a Certificate and are supported by the Issuer. // +optional AllowedPostalCodes []string `json:"allowedPostalCodes,omitempty"` // AllowedSerialNumbers is a set of SerialNumbers that can be used on a Certificate and are supported by the Issuer. // +optional AllowedSerialNumbers []string `json:"allowedSerialNumbers,omitempty"` }
SubjectRestrictions represents the Subject restrictions imposed by the Issuer.
func (*SubjectRestrictions) DeepCopy ¶
func (in *SubjectRestrictions) DeepCopy() *SubjectRestrictions
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SubjectRestrictions.
func (*SubjectRestrictions) DeepCopyInto ¶
func (in *SubjectRestrictions) DeepCopyInto(out *SubjectRestrictions)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type UsageRestrictions ¶
type UsageRestrictions struct { // AllowedUsages is a set of x509 usages that are requested for a Certificate // and are supported by the Issuer. // +optional AllowedUsages []cmapi.KeyUsage `json:"allowedUsages,omitempty"` }
UsageRestrictions represents the Usage restrictions imposed by the Issuer.
func (*UsageRestrictions) DeepCopy ¶
func (in *UsageRestrictions) DeepCopy() *UsageRestrictions
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new UsageRestrictions.
func (*UsageRestrictions) DeepCopyInto ¶
func (in *UsageRestrictions) DeepCopyInto(out *UsageRestrictions)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.