Documentation
¶
Overview ¶
Package v1alpha3 contains API Schema definitions for the isindir v1alpha3 API group +kubebuilder:object:generate=true +groupName=isindir.github.com
Index ¶
Constants ¶
const ( // SopsSecretManagedAnnotation is the name for the annotation for // flagging the existing secret be managed by SopsSecret controller. SopsSecretManagedAnnotation = "sopssecret/managed" )
Variables ¶
var ( // GroupVersion is group version used to register these objects GroupVersion = schema.GroupVersion{Group: "isindir.github.com", Version: "v1alpha3"} // SchemeBuilder is used to add go types to the GroupVersionKind scheme SchemeBuilder = &scheme.Builder{GroupVersion: GroupVersion} // AddToScheme adds the types in this group-version to the given scheme. AddToScheme = SchemeBuilder.AddToScheme )
Functions ¶
This section is empty.
Types ¶
type AgeItem ¶
type AgeItem struct {
// Recipient which private key can be used for decription
//+optional
Recipient string `json:"recipient,omitempty"`
//+optional
EncryptedKey string `json:"enc,omitempty"`
}
AgeItem defines FiloSottile/age specific encryption details
func (*AgeItem) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AgeItem.
func (*AgeItem) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AzureKmsItem ¶
type AzureKmsItem struct {
// Azure KMS vault URL
//+optional
VaultURL string `json:"vault_url,omitempty"`
//+optional
KeyName string `json:"name,omitempty"`
//+optional
Version string `json:"version,omitempty"`
//+optional
EncryptedKey string `json:"enc,omitempty"`
// Object creation date
//+optional
CreationDate string `json:"created_at,omitempty"`
}
AzureKmsItem defines Azure Keyvault Key specific encryption details
func (*AzureKmsItem) DeepCopy ¶
func (in *AzureKmsItem) DeepCopy() *AzureKmsItem
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureKmsItem.
func (*AzureKmsItem) DeepCopyInto ¶
func (in *AzureKmsItem) DeepCopyInto(out *AzureKmsItem)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type GcpKmsDataItem ¶
type GcpKmsDataItem struct {
//+optional
VaultURL string `json:"resource_id,omitempty"`
//+optional
EncryptedKey string `json:"enc,omitempty"`
// Object creation date
//+optional
CreationDate string `json:"created_at,omitempty"`
}
GcpKmsDataItem defines GCP KMS Key specific encryption details
func (*GcpKmsDataItem) DeepCopy ¶
func (in *GcpKmsDataItem) DeepCopy() *GcpKmsDataItem
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GcpKmsDataItem.
func (*GcpKmsDataItem) DeepCopyInto ¶
func (in *GcpKmsDataItem) DeepCopyInto(out *GcpKmsDataItem)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type HcVaultItem ¶
type HcVaultItem struct {
//+optional
VaultAddress string `json:"vault_address,omitempty"`
//+optional
EnginePath string `json:"engine_path,omitempty"`
//+optional
KeyName string `json:"key_name,omitempty"`
//+optional
CreationDate string `json:"created_at,omitempty"`
//+optional
EncryptedKey string `json:"enc,omitempty"`
}
HcVaultItem defines Hashicorp Vault Key specific encryption details
func (*HcVaultItem) DeepCopy ¶
func (in *HcVaultItem) DeepCopy() *HcVaultItem
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new HcVaultItem.
func (*HcVaultItem) DeepCopyInto ¶
func (in *HcVaultItem) DeepCopyInto(out *HcVaultItem)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type KmsDataItem ¶
type KmsDataItem struct {
// Arn - KMS key ARN to use
//+optional
Arn string `json:"arn,omitempty"`
// AWS Iam Role
//+optional
Role string `json:"role,omitempty"`
//+optional
EncryptedKey string `json:"enc,omitempty"`
// Object creation date
//+optional
CreationDate string `json:"created_at,omitempty"`
//+optional
AwsProfile string `json:"aws_profile,omitempty"`
}
KmsDataItem defines AWS KMS specific encryption details
func (*KmsDataItem) DeepCopy ¶
func (in *KmsDataItem) DeepCopy() *KmsDataItem
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new KmsDataItem.
func (*KmsDataItem) DeepCopyInto ¶
func (in *KmsDataItem) DeepCopyInto(out *KmsDataItem)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type PgpDataItem ¶
type PgpDataItem struct {
//+optional
EncryptedKey string `json:"enc,omitempty"`
// Object creation date
//+optional
CreationDate string `json:"created_at,omitempty"`
// PGP FingerPrint of the key which can be used for decryption
//+optional
FingerPrint string `json:"fp,omitempty"`
}
PgpDataItem defines PGP specific encryption details
func (*PgpDataItem) DeepCopy ¶
func (in *PgpDataItem) DeepCopy() *PgpDataItem
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new PgpDataItem.
func (*PgpDataItem) DeepCopyInto ¶
func (in *PgpDataItem) DeepCopyInto(out *PgpDataItem)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type SopsMetadata ¶
type SopsMetadata struct {
// Aws KMS configuration
//+optional
AwsKms []KmsDataItem `json:"kms,omitempty"`
// PGP configuration
//+optional
Pgp []PgpDataItem `json:"pgp,omitempty"`
// Azure KMS configuration
//+optional
AzureKms []AzureKmsItem `json:"azure_kv,omitempty"`
// Hashicorp Vault KMS configurarion
//+optional
HcVault []HcVaultItem `json:"hc_vault,omitempty"`
// Gcp KMS configuration
//+optional
GcpKms []GcpKmsDataItem `json:"gcp_kms,omitempty"`
// Age configuration
//+optional
Age []AgeItem `json:"age,omitempty"`
// Mac - sops setting
//+optional
Mac string `json:"mac,omitempty"`
// LastModified date when SopsSecret was last modified
//+optional
LastModified string `json:"lastmodified,omitempty"`
// Version of the sops tool used to encrypt SopsSecret
//+optional
Version string `json:"version,omitempty"`
// Suffix used to encrypt SopsSecret resource
//+optional
EncryptedSuffix string `json:"encrypted_suffix,omitempty"`
// Regex used to encrypt SopsSecret resource
// This opstion should be used with more care, as it can make resource unapplicable to the cluster.
//+optional
EncryptedRegex string `json:"encrypted_regex,omitempty"`
}
SopsMetadata defines the encryption details
func (*SopsMetadata) DeepCopy ¶
func (in *SopsMetadata) DeepCopy() *SopsMetadata
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SopsMetadata.
func (*SopsMetadata) DeepCopyInto ¶
func (in *SopsMetadata) DeepCopyInto(out *SopsMetadata)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type SopsSecret ¶
type SopsSecret struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
// SopsSecret Spec definition
Spec SopsSecretSpec `json:"spec,omitempty"`
// SopsSecret Status information
Status SopsSecretStatus `json:"status,omitempty"`
// SopsSecret metadata
Sops SopsMetadata `json:"sops,omitempty"`
}
SopsSecret is the Schema for the sopssecrets API +kubebuilder:resource:shortName=sops,scope=Namespaced +kubebuilder:subresource:status +kubebuilder:storageversion +kubebuilder:printcolumn:name="Status",type=string,JSONPath=`.status.message`
func (*SopsSecret) DeepCopy ¶
func (in *SopsSecret) DeepCopy() *SopsSecret
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SopsSecret.
func (*SopsSecret) DeepCopyInto ¶
func (in *SopsSecret) DeepCopyInto(out *SopsSecret)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*SopsSecret) DeepCopyObject ¶
func (in *SopsSecret) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type SopsSecretList ¶
type SopsSecretList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []SopsSecret `json:"items"`
}
SopsSecretList contains a list of SopsSecret
func (*SopsSecretList) DeepCopy ¶
func (in *SopsSecretList) DeepCopy() *SopsSecretList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SopsSecretList.
func (*SopsSecretList) DeepCopyInto ¶
func (in *SopsSecretList) DeepCopyInto(out *SopsSecretList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*SopsSecretList) DeepCopyObject ¶
func (in *SopsSecretList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type SopsSecretSpec ¶
type SopsSecretSpec struct {
// Secrets template is a list of definitions to create Kubernetes Secrets
//+kubebuilder:validation:MinItems=1
//+required
SecretsTemplate []SopsSecretTemplate `json:"secretTemplates"`
// This flag tells the controller to suspend the reconciliation of this source.
//+optional
Suspend bool `json:"suspend,omitempty"`
}
SopsSecretSpec defines the desired state of SopsSecret
func (*SopsSecretSpec) DeepCopy ¶
func (in *SopsSecretSpec) DeepCopy() *SopsSecretSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SopsSecretSpec.
func (*SopsSecretSpec) DeepCopyInto ¶
func (in *SopsSecretSpec) DeepCopyInto(out *SopsSecretSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type SopsSecretStatus ¶
type SopsSecretStatus struct {
// SopsSecret status message
//+optional
Message string `json:"message,omitempty"`
}
SopsSecretStatus defines the observed state of SopsSecret
func (*SopsSecretStatus) DeepCopy ¶
func (in *SopsSecretStatus) DeepCopy() *SopsSecretStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SopsSecretStatus.
func (*SopsSecretStatus) DeepCopyInto ¶
func (in *SopsSecretStatus) DeepCopyInto(out *SopsSecretStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type SopsSecretTemplate ¶
type SopsSecretTemplate struct {
// Name of the Kubernetes secret to create
//+required
Name string `json:"name"`
// Annotations to apply to Kubernetes secret
//+optional
Annotations map[string]string `json:"annotations,omitempty"`
// Labels to apply to Kubernetes secret
//+optional
Labels map[string]string `json:"labels,omitempty"`
// Kubernetes secret type. Default: Opauqe. Possible values: Opauqe,
// kubernetes.io/service-account-token, kubernetes.io/dockercfg,
// kubernetes.io/dockerconfigjson, kubernetes.io/basic-auth,
// kubernetes.io/ssh-auth, kubernetes.io/tls, bootstrap.kubernetes.io/token
//+optional
Type string `json:"type,omitempty"`
// Data map to use in Kubernetes secret (equivalent to Kubernetes Secret object data, please see for more
// information: https://kubernetes.io/docs/concepts/configuration/secret/#overview-of-secrets)
//+optional
Data map[string]string `json:"data,omitempty"`
// stringData map to use in Kubernetes secret (equivalent to Kubernetes Secret object stringData, please see for more
// information: https://kubernetes.io/docs/concepts/configuration/secret/#overview-of-secrets)
//+optional
StringData map[string]string `json:"stringData,omitempty"`
}
SopsSecretTemplate defines the map of secrets to create
func (*SopsSecretTemplate) DeepCopy ¶
func (in *SopsSecretTemplate) DeepCopy() *SopsSecretTemplate
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SopsSecretTemplate.
func (*SopsSecretTemplate) DeepCopyInto ¶
func (in *SopsSecretTemplate) DeepCopyInto(out *SopsSecretTemplate)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
Source Files