Documentation
¶
Overview ¶
Package v1alpha1 contains resources for generators +kubebuilder:object:generate=true +groupName=generators.external-secrets.io +versionName=v1alpha1
Index ¶
- Constants
- Variables
- func ForceRegister(kind string, g Generator)
- func Register(kind string, g Generator)
- type ACRAccessToken
- type ACRAccessTokenList
- type ACRAccessTokenSpec
- type ACRAuth
- type AWSAuth
- type AWSAuthSecretRef
- type AWSJWTAuth
- type AzureACRManagedIdentityAuth
- type AzureACRServicePrincipalAuth
- type AzureACRServicePrincipalAuthSecretRef
- type AzureACRWorkloadIdentityAuth
- type ControllerClassResource
- type ECRAuthorizationToken
- type ECRAuthorizationTokenList
- type ECRAuthorizationTokenSpec
- type Fake
- type FakeList
- type FakeSpec
- type GCPSMAuth
- type GCPSMAuthSecretRef
- type GCPWorkloadIdentity
- type GCRAccessToken
- type GCRAccessTokenList
- type GCRAccessTokenSpec
- type Generator
- type Password
- type PasswordList
- type PasswordSpec
- type VaultDynamicSecret
- type VaultDynamicSecretList
- type VaultDynamicSecretResultType
- type VaultDynamicSecretSpec
Constants ¶
const ( Group = "generators.external-secrets.io" Version = "v1alpha1" )
Package type metadata.
Variables ¶
var ( // SchemeGroupVersion is group version used to register these objects. SchemeGroupVersion = schema.GroupVersion{Group: Group, Version: Version} // SchemeBuilder is used to add go types to the GroupVersionKind scheme. SchemeBuilder = &scheme.Builder{GroupVersion: SchemeGroupVersion} AddToScheme = SchemeBuilder.AddToScheme )
var ( ECRAuthorizationTokenKind = reflect.TypeOf(ECRAuthorizationToken{}).Name() ECRAuthorizationTokenGroupKind = schema.GroupKind{Group: Group, Kind: ECRAuthorizationTokenKind}.String() ECRAuthorizationTokenKindAPIVersion = ECRAuthorizationTokenKind + "." + SchemeGroupVersion.String() ECRAuthorizationTokenGroupVersionKind = SchemeGroupVersion.WithKind(ECRAuthorizationTokenKind) )
ECRAuthorizationToken type metadata.
var ( GCRAccessTokenKind = reflect.TypeOf(GCRAccessToken{}).Name() GCRAccessTokenGroupKind = schema.GroupKind{Group: Group, Kind: GCRAccessTokenKind}.String() GCRAccessTokenKindAPIVersion = GCRAccessTokenKind + "." + SchemeGroupVersion.String() GCRAccessTokenGroupVersionKind = SchemeGroupVersion.WithKind(GCRAccessTokenKind) )
GCRAccessToken type metadata.
var ( ACRAccessTokenKind = reflect.TypeOf(ACRAccessToken{}).Name() ACRAccessTokenGroupKind = schema.GroupKind{Group: Group, Kind: ACRAccessTokenKind}.String() ACRAccessTokenKindAPIVersion = ACRAccessTokenKind + "." + SchemeGroupVersion.String() ACRAccessTokenGroupVersionKind = SchemeGroupVersion.WithKind(ACRAccessTokenKind) )
ACRAccessToken type metadata.
var ( PasswordKind = reflect.TypeOf(Password{}).Name() PasswordGroupKind = schema.GroupKind{Group: Group, Kind: PasswordKind}.String() PasswordKindAPIVersion = PasswordKind + "." + SchemeGroupVersion.String() PasswordGroupVersionKind = SchemeGroupVersion.WithKind(PasswordKind) )
Password type metadata.
var ( FakeKind = reflect.TypeOf(Fake{}).Name() FakeGroupKind = schema.GroupKind{Group: Group, Kind: FakeKind}.String() FakeKindAPIVersion = FakeKind + "." + SchemeGroupVersion.String() FakeGroupVersionKind = SchemeGroupVersion.WithKind(FakeKind) )
Fake type metadata.
var ( VaultDynamicSecretKind = reflect.TypeOf(VaultDynamicSecret{}).Name() VaultDynamicSecretGroupKind = schema.GroupKind{Group: Group, Kind: VaultDynamicSecretKind}.String() VaultDynamicSecretKindAPIVersion = VaultDynamicSecretKind + "." + SchemeGroupVersion.String() VaultDynamicSecretGroupVersionKind = SchemeGroupVersion.WithKind(VaultDynamicSecretKind) )
Vault type metadata.
Functions ¶
func ForceRegister ¶
ForceRegister adds to the schema, overwriting a generator if already registered. Should only be used for testing.
Types ¶
type ACRAccessToken ¶
type ACRAccessToken struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec ACRAccessTokenSpec `json:"spec,omitempty"`
}
ACRAccessToken returns a Azure Container Registry token that can be used for pushing/pulling images. Note: by default it will return an ACR Refresh Token with full access (depending on the identity). This can be scoped down to the repository level using .spec.scope. In case scope is defined it will return an ACR Access Token.
See docs: https://github.com/Azure/acr/blob/main/docs/AAD-OAuth.md
+kubebuilder:object:root=true +kubebuilder:storageversion +kubebuilder:subresource:status +kubebuilder:resource:scope=Namespaced,categories={acraccesstoken},shortName=acraccesstoken
func (*ACRAccessToken) DeepCopy ¶
func (in *ACRAccessToken) DeepCopy() *ACRAccessToken
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ACRAccessToken.
func (*ACRAccessToken) DeepCopyInto ¶
func (in *ACRAccessToken) DeepCopyInto(out *ACRAccessToken)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ACRAccessToken) DeepCopyObject ¶
func (in *ACRAccessToken) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type ACRAccessTokenList ¶
type ACRAccessTokenList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []ACRAccessToken `json:"items"`
}
ACRAccessTokenList contains a list of ExternalSecret resources.
func (*ACRAccessTokenList) DeepCopy ¶
func (in *ACRAccessTokenList) DeepCopy() *ACRAccessTokenList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ACRAccessTokenList.
func (*ACRAccessTokenList) DeepCopyInto ¶
func (in *ACRAccessTokenList) DeepCopyInto(out *ACRAccessTokenList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ACRAccessTokenList) DeepCopyObject ¶
func (in *ACRAccessTokenList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type ACRAccessTokenSpec ¶
type ACRAccessTokenSpec struct {
Auth ACRAuth `json:"auth"`
// TenantID configures the Azure Tenant to send requests to. Required for ServicePrincipal auth type.
TenantID string `json:"tenantId,omitempty"`
// the domain name of the ACR registry
// e.g. foobarexample.azurecr.io
ACRRegistry string `json:"registry"`
// Define the scope for the access token, e.g. pull/push access for a repository.
// if not provided it will return a refresh token that has full scope.
// Note: you need to pin it down to the repository level, there is no wildcard available.
//
// examples:
// repository:my-repository:pull,push
// repository:my-repository:pull
//
// see docs for details: https://docs.docker.com/registry/spec/auth/scope/
// +optional
Scope string `json:"scope,omitempty"`
// EnvironmentType specifies the Azure cloud environment endpoints to use for
// connecting and authenticating with Azure. By default it points to the public cloud AAD endpoint.
// The following endpoints are available, also see here: https://github.com/Azure/go-autorest/blob/main/autorest/azure/environments.go#L152
// PublicCloud, USGovernmentCloud, ChinaCloud, GermanCloud
// +kubebuilder:default=PublicCloud
EnvironmentType v1beta1.AzureEnvironmentType `json:"environmentType,omitempty"`
}
ACRAccessTokenSpec defines how to generate the access token e.g. how to authenticate and which registry to use. see: https://github.com/Azure/acr/blob/main/docs/AAD-OAuth.md#overview
func (*ACRAccessTokenSpec) DeepCopy ¶
func (in *ACRAccessTokenSpec) DeepCopy() *ACRAccessTokenSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ACRAccessTokenSpec.
func (*ACRAccessTokenSpec) DeepCopyInto ¶
func (in *ACRAccessTokenSpec) DeepCopyInto(out *ACRAccessTokenSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ACRAuth ¶
type ACRAuth struct {
// ServicePrincipal uses Azure Service Principal credentials to authenticate with Azure.
// +optional
ServicePrincipal *AzureACRServicePrincipalAuth `json:"servicePrincipal,omitempty"`
// ManagedIdentity uses Azure Managed Identity to authenticate with Azure.
// +optional
ManagedIdentity *AzureACRManagedIdentityAuth `json:"managedIdentity,omitempty"`
// WorkloadIdentity uses Azure Workload Identity to authenticate with Azure.
// +optional
WorkloadIdentity *AzureACRWorkloadIdentityAuth `json:"workloadIdentity,omitempty"`
}
func (*ACRAuth) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ACRAuth.
func (*ACRAuth) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AWSAuth ¶
type AWSAuth struct {
// +optional
SecretRef *AWSAuthSecretRef `json:"secretRef,omitempty"`
// +optional
JWTAuth *AWSJWTAuth `json:"jwt,omitempty"`
}
AWSAuth tells the controller how to do authentication with aws. Only one of secretRef or jwt can be specified. if none is specified the controller will load credentials using the aws sdk defaults.
func (*AWSAuth) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSAuth.
func (*AWSAuth) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AWSAuthSecretRef ¶
type AWSAuthSecretRef struct {
// The AccessKeyID is used for authentication
AccessKeyID esmeta.SecretKeySelector `json:"accessKeyIDSecretRef,omitempty"`
// The SecretAccessKey is used for authentication
SecretAccessKey esmeta.SecretKeySelector `json:"secretAccessKeySecretRef,omitempty"`
// The SessionToken used for authentication
// This must be defined if AccessKeyID and SecretAccessKey are temporary credentials
// see: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_use-resources.html
// +Optional
SessionToken *esmeta.SecretKeySelector `json:"sessionTokenSecretRef,omitempty"`
}
AWSAuthSecretRef holds secret references for AWS credentials both AccessKeyID and SecretAccessKey must be defined in order to properly authenticate.
func (*AWSAuthSecretRef) DeepCopy ¶
func (in *AWSAuthSecretRef) DeepCopy() *AWSAuthSecretRef
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSAuthSecretRef.
func (*AWSAuthSecretRef) DeepCopyInto ¶
func (in *AWSAuthSecretRef) DeepCopyInto(out *AWSAuthSecretRef)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AWSJWTAuth ¶
type AWSJWTAuth struct {
ServiceAccountRef *esmeta.ServiceAccountSelector `json:"serviceAccountRef,omitempty"`
}
Authenticate against AWS using service account tokens.
func (*AWSJWTAuth) DeepCopy ¶
func (in *AWSJWTAuth) DeepCopy() *AWSJWTAuth
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSJWTAuth.
func (*AWSJWTAuth) DeepCopyInto ¶
func (in *AWSJWTAuth) DeepCopyInto(out *AWSJWTAuth)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AzureACRManagedIdentityAuth ¶
type AzureACRManagedIdentityAuth struct {
// If multiple Managed Identity is assigned to the pod, you can select the one to be used
IdentityID string `json:"identityId,omitempty"`
}
func (*AzureACRManagedIdentityAuth) DeepCopy ¶
func (in *AzureACRManagedIdentityAuth) DeepCopy() *AzureACRManagedIdentityAuth
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureACRManagedIdentityAuth.
func (*AzureACRManagedIdentityAuth) DeepCopyInto ¶
func (in *AzureACRManagedIdentityAuth) DeepCopyInto(out *AzureACRManagedIdentityAuth)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AzureACRServicePrincipalAuth ¶
type AzureACRServicePrincipalAuth struct {
SecretRef AzureACRServicePrincipalAuthSecretRef `json:"secretRef"`
}
func (*AzureACRServicePrincipalAuth) DeepCopy ¶
func (in *AzureACRServicePrincipalAuth) DeepCopy() *AzureACRServicePrincipalAuth
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureACRServicePrincipalAuth.
func (*AzureACRServicePrincipalAuth) DeepCopyInto ¶
func (in *AzureACRServicePrincipalAuth) DeepCopyInto(out *AzureACRServicePrincipalAuth)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AzureACRServicePrincipalAuthSecretRef ¶
type AzureACRServicePrincipalAuthSecretRef struct {
// The Azure clientId of the service principle used for authentication.
ClientID smmeta.SecretKeySelector `json:"clientId,omitempty"`
// The Azure ClientSecret of the service principle used for authentication.
ClientSecret smmeta.SecretKeySelector `json:"clientSecret,omitempty"`
}
Configuration used to authenticate with Azure using static credentials stored in a Kind=Secret.
func (*AzureACRServicePrincipalAuthSecretRef) DeepCopy ¶
func (in *AzureACRServicePrincipalAuthSecretRef) DeepCopy() *AzureACRServicePrincipalAuthSecretRef
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureACRServicePrincipalAuthSecretRef.
func (*AzureACRServicePrincipalAuthSecretRef) DeepCopyInto ¶
func (in *AzureACRServicePrincipalAuthSecretRef) DeepCopyInto(out *AzureACRServicePrincipalAuthSecretRef)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AzureACRWorkloadIdentityAuth ¶
type AzureACRWorkloadIdentityAuth struct {
// ServiceAccountRef specified the service account
// that should be used when authenticating with WorkloadIdentity.
// +optional
ServiceAccountRef *smmeta.ServiceAccountSelector `json:"serviceAccountRef,omitempty"`
}
func (*AzureACRWorkloadIdentityAuth) DeepCopy ¶
func (in *AzureACRWorkloadIdentityAuth) DeepCopy() *AzureACRWorkloadIdentityAuth
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureACRWorkloadIdentityAuth.
func (*AzureACRWorkloadIdentityAuth) DeepCopyInto ¶
func (in *AzureACRWorkloadIdentityAuth) DeepCopyInto(out *AzureACRWorkloadIdentityAuth)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ControllerClassResource ¶ added in v0.7.3
type ControllerClassResource struct {
Spec struct {
ControllerClass string `json:"controller"`
} `json:"spec"`
}
func (*ControllerClassResource) DeepCopy ¶ added in v0.7.3
func (in *ControllerClassResource) DeepCopy() *ControllerClassResource
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ControllerClassResource.
func (*ControllerClassResource) DeepCopyInto ¶ added in v0.7.3
func (in *ControllerClassResource) DeepCopyInto(out *ControllerClassResource)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type ECRAuthorizationToken ¶
type ECRAuthorizationToken struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec ECRAuthorizationTokenSpec `json:"spec,omitempty"`
}
ECRAuthorizationTokenSpec uses the GetAuthorizationToken API to retrieve an authorization token. The authorization token is valid for 12 hours. The authorizationToken returned is a base64 encoded string that can be decoded and used in a docker login command to authenticate to a registry. For more information, see Registry authentication (https://docs.aws.amazon.com/AmazonECR/latest/userguide/Registries.html#registry_auth) in the Amazon Elastic Container Registry User Guide. +kubebuilder:object:root=true +kubebuilder:storageversion +kubebuilder:subresource:status +kubebuilder:resource:scope=Namespaced,categories={ecrauthorizationtoken},shortName=ecrauthorizationtoken
func (*ECRAuthorizationToken) DeepCopy ¶
func (in *ECRAuthorizationToken) DeepCopy() *ECRAuthorizationToken
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ECRAuthorizationToken.
func (*ECRAuthorizationToken) DeepCopyInto ¶
func (in *ECRAuthorizationToken) DeepCopyInto(out *ECRAuthorizationToken)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ECRAuthorizationToken) DeepCopyObject ¶
func (in *ECRAuthorizationToken) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type ECRAuthorizationTokenList ¶
type ECRAuthorizationTokenList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []ECRAuthorizationToken `json:"items"`
}
ECRAuthorizationTokenList contains a list of ExternalSecret resources.
func (*ECRAuthorizationTokenList) DeepCopy ¶
func (in *ECRAuthorizationTokenList) DeepCopy() *ECRAuthorizationTokenList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ECRAuthorizationTokenList.
func (*ECRAuthorizationTokenList) DeepCopyInto ¶
func (in *ECRAuthorizationTokenList) DeepCopyInto(out *ECRAuthorizationTokenList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*ECRAuthorizationTokenList) DeepCopyObject ¶
func (in *ECRAuthorizationTokenList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type ECRAuthorizationTokenSpec ¶
type ECRAuthorizationTokenSpec struct {
// Region specifies the region to operate in.
Region string `json:"region"`
// Auth defines how to authenticate with AWS
// +optional
Auth AWSAuth `json:"auth"`
// You can assume a role before making calls to the
// desired AWS service.
// +optional
Role string `json:"role"`
}
func (*ECRAuthorizationTokenSpec) DeepCopy ¶
func (in *ECRAuthorizationTokenSpec) DeepCopy() *ECRAuthorizationTokenSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ECRAuthorizationTokenSpec.
func (*ECRAuthorizationTokenSpec) DeepCopyInto ¶
func (in *ECRAuthorizationTokenSpec) DeepCopyInto(out *ECRAuthorizationTokenSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type Fake ¶
type Fake struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec FakeSpec `json:"spec,omitempty"`
}
Fake generator is used for testing. It lets you define a static set of credentials that is always returned. +kubebuilder:object:root=true +kubebuilder:storageversion +kubebuilder:subresource:status +kubebuilder:resource:scope=Namespaced,categories={fake},shortName=fake
func (*Fake) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Fake.
func (*Fake) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*Fake) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type FakeList ¶
type FakeList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []Fake `json:"items"`
}
FakeList contains a list of ExternalSecret resources.
func (*FakeList) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FakeList.
func (*FakeList) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*FakeList) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type FakeSpec ¶
type FakeSpec struct {
// Used to select the correct ESO controller (think: ingress.ingressClassName)
// The ESO controller is instantiated with a specific controller name and filters VDS based on this property
// +optional
Controller string `json:"controller"`
// Data defines the static data returned
// by this generator.
Data map[string]string `json:"data,omitempty"`
}
FakeSpec contains the static data.
func (*FakeSpec) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FakeSpec.
func (*FakeSpec) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type GCPSMAuth ¶
type GCPSMAuth struct {
// +optional
SecretRef *GCPSMAuthSecretRef `json:"secretRef,omitempty"`
// +optional
WorkloadIdentity *GCPWorkloadIdentity `json:"workloadIdentity,omitempty"`
}
func (*GCPSMAuth) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPSMAuth.
func (*GCPSMAuth) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type GCPSMAuthSecretRef ¶
type GCPSMAuthSecretRef struct {
// The SecretAccessKey is used for authentication
// +optional
SecretAccessKey esmeta.SecretKeySelector `json:"secretAccessKeySecretRef,omitempty"`
}
func (*GCPSMAuthSecretRef) DeepCopy ¶
func (in *GCPSMAuthSecretRef) DeepCopy() *GCPSMAuthSecretRef
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPSMAuthSecretRef.
func (*GCPSMAuthSecretRef) DeepCopyInto ¶
func (in *GCPSMAuthSecretRef) DeepCopyInto(out *GCPSMAuthSecretRef)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type GCPWorkloadIdentity ¶
type GCPWorkloadIdentity struct {
ServiceAccountRef esmeta.ServiceAccountSelector `json:"serviceAccountRef"`
ClusterLocation string `json:"clusterLocation"`
ClusterName string `json:"clusterName"`
ClusterProjectID string `json:"clusterProjectID,omitempty"`
}
func (*GCPWorkloadIdentity) DeepCopy ¶
func (in *GCPWorkloadIdentity) DeepCopy() *GCPWorkloadIdentity
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPWorkloadIdentity.
func (*GCPWorkloadIdentity) DeepCopyInto ¶
func (in *GCPWorkloadIdentity) DeepCopyInto(out *GCPWorkloadIdentity)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type GCRAccessToken ¶
type GCRAccessToken struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec GCRAccessTokenSpec `json:"spec,omitempty"`
}
GCRAccessToken generates an GCP access token that can be used to authenticate with GCR. +kubebuilder:object:root=true +kubebuilder:storageversion +kubebuilder:subresource:status +kubebuilder:resource:scope=Namespaced,categories={gcraccesstoken},shortName=gcraccesstoken
func (*GCRAccessToken) DeepCopy ¶
func (in *GCRAccessToken) DeepCopy() *GCRAccessToken
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCRAccessToken.
func (*GCRAccessToken) DeepCopyInto ¶
func (in *GCRAccessToken) DeepCopyInto(out *GCRAccessToken)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*GCRAccessToken) DeepCopyObject ¶
func (in *GCRAccessToken) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type GCRAccessTokenList ¶
type GCRAccessTokenList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []GCRAccessToken `json:"items"`
}
GCRAccessTokenList contains a list of ExternalSecret resources.
func (*GCRAccessTokenList) DeepCopy ¶
func (in *GCRAccessTokenList) DeepCopy() *GCRAccessTokenList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCRAccessTokenList.
func (*GCRAccessTokenList) DeepCopyInto ¶
func (in *GCRAccessTokenList) DeepCopyInto(out *GCRAccessTokenList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*GCRAccessTokenList) DeepCopyObject ¶
func (in *GCRAccessTokenList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type GCRAccessTokenSpec ¶
type GCRAccessTokenSpec struct {
// Auth defines the means for authenticating with GCP
Auth GCPSMAuth `json:"auth"`
// ProjectID defines which project to use to authenticate with
ProjectID string `json:"projectID"`
}
func (*GCRAccessTokenSpec) DeepCopy ¶
func (in *GCRAccessTokenSpec) DeepCopy() *GCRAccessTokenSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCRAccessTokenSpec.
func (*GCRAccessTokenSpec) DeepCopyInto ¶
func (in *GCRAccessTokenSpec) DeepCopyInto(out *GCRAccessTokenSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type Generator ¶
type Generator interface {
Generate(
ctx context.Context,
obj *apiextensions.JSON,
kube client.Client,
namespace string,
) (map[string][]byte, error)
}
+kubebuilder:object:root=false +kubebuilder:object:generate:false +k8s:deepcopy-gen:interfaces=nil +k8s:deepcopy-gen=nil
func GetGenerator ¶
func GetGenerator(obj *apiextensions.JSON) (Generator, error)
GetGenerator returns a implementation from a generator defined as json.
func GetGeneratorByName ¶
GetGeneratorByName returns the provider implementation by name.
type Password ¶
type Password struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec PasswordSpec `json:"spec,omitempty"`
}
Password generates a random password based on the configuration parameters in spec. You can specify the length, characterset and other attributes. +kubebuilder:object:root=true +kubebuilder:storageversion +kubebuilder:subresource:status +kubebuilder:resource:scope=Namespaced,categories={password},shortName=password
func (*Password) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Password.
func (*Password) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*Password) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type PasswordList ¶
type PasswordList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []Password `json:"items"`
}
PasswordList contains a list of ExternalSecret resources.
func (*PasswordList) DeepCopy ¶
func (in *PasswordList) DeepCopy() *PasswordList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PasswordList.
func (*PasswordList) DeepCopyInto ¶
func (in *PasswordList) DeepCopyInto(out *PasswordList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*PasswordList) DeepCopyObject ¶
func (in *PasswordList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type PasswordSpec ¶
type PasswordSpec struct {
// Length of the password to be generated.
// Defaults to 24
// +kubebuilder:default=24
Length int `json:"length"`
// Digits specifies the number of digits in the generated
// password. If omitted it defaults to 25% of the length of the password
Digits *int `json:"digits,omitempty"`
// Symbols specifies the number of symbol characters in the generated
// password. If omitted it defaults to 25% of the length of the password
Symbols *int `json:"symbols,omitempty"`
// SymbolCharacters specifies the special characters that should be used
// in the generated password.
SymbolCharacters *string `json:"symbolCharacters,omitempty"`
// Set NoUpper to disable uppercase characters
// +kubebuilder:default=false
NoUpper bool `json:"noUpper"`
// set AllowRepeat to true to allow repeating characters.
// +kubebuilder:default=false
AllowRepeat bool `json:"allowRepeat"`
}
PasswordSpec controls the behavior of the password generator.
func (*PasswordSpec) DeepCopy ¶
func (in *PasswordSpec) DeepCopy() *PasswordSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PasswordSpec.
func (*PasswordSpec) DeepCopyInto ¶
func (in *PasswordSpec) DeepCopyInto(out *PasswordSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type VaultDynamicSecret ¶ added in v0.7.3
type VaultDynamicSecret struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec VaultDynamicSecretSpec `json:"spec,omitempty"`
}
+kubebuilder:object:root=true +kubebuilder:storageversion +kubebuilder:subresource:status +kubebuilder:resource:scope=Namespaced,categories={vaultdynamicsecret},shortName=vaultdynamicsecret
func (*VaultDynamicSecret) DeepCopy ¶ added in v0.7.3
func (in *VaultDynamicSecret) DeepCopy() *VaultDynamicSecret
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VaultDynamicSecret.
func (*VaultDynamicSecret) DeepCopyInto ¶ added in v0.7.3
func (in *VaultDynamicSecret) DeepCopyInto(out *VaultDynamicSecret)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*VaultDynamicSecret) DeepCopyObject ¶ added in v0.7.3
func (in *VaultDynamicSecret) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type VaultDynamicSecretList ¶ added in v0.7.3
type VaultDynamicSecretList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []VaultDynamicSecret `json:"items"`
}
+kubebuilder:object:root=true
func (*VaultDynamicSecretList) DeepCopy ¶ added in v0.7.3
func (in *VaultDynamicSecretList) DeepCopy() *VaultDynamicSecretList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VaultDynamicSecretList.
func (*VaultDynamicSecretList) DeepCopyInto ¶ added in v0.7.3
func (in *VaultDynamicSecretList) DeepCopyInto(out *VaultDynamicSecretList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*VaultDynamicSecretList) DeepCopyObject ¶ added in v0.7.3
func (in *VaultDynamicSecretList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type VaultDynamicSecretResultType ¶ added in v0.7.3
type VaultDynamicSecretResultType string
const ( VaultDynamicSecretResultTypeData VaultDynamicSecretResultType = "Data" VaultDynamicSecretResultTypeAuth VaultDynamicSecretResultType = "Auth" )
type VaultDynamicSecretSpec ¶ added in v0.7.3
type VaultDynamicSecretSpec struct {
// Used to select the correct ESO controller (think: ingress.ingressClassName)
// The ESO controller is instantiated with a specific controller name and filters VDS based on this property
// +optional
Controller string `json:"controller"`
// Vault API method to use (GET/POST/other)
Method string `json:"method,omitempty"`
// Parameters to pass to Vault write (for non-GET methods)
Parameters *apiextensions.JSON `json:"parameters,omitempty"`
// Result type defines which data is returned from the generator.
// By default it is the "data" section of the Vault API response.
// When using e.g. /auth/token/create the "data" section is empty but
// the "auth" section contains the generated token.
// Please refer to the vault docs regarding the result data structure.
// +kubebuilder:default=Data
ResultType VaultDynamicSecretResultType `json:"resultType,omitempty"`
// Vault provider common spec
Provider *esv1beta1.VaultProvider `json:"provider"`
// Vault path to obtain the dynamic secret from
Path string `json:"path"`
}
func (*VaultDynamicSecretSpec) DeepCopy ¶ added in v0.7.3
func (in *VaultDynamicSecretSpec) DeepCopy() *VaultDynamicSecretSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VaultDynamicSecretSpec.
func (*VaultDynamicSecretSpec) DeepCopyInto ¶ added in v0.7.3
func (in *VaultDynamicSecretSpec) DeepCopyInto(out *VaultDynamicSecretSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
Source Files