v1alpha1

package
v0.0.0-...-85ffd96 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jun 10, 2019 License: Apache-2.0 Imports: 18 Imported by: 0

Documentation

Overview

+groupName=engine.kubevault.com

Index

Constants

View Source 
const (
	ResourceKindAWSAccessKeyRequest = "AWSAccessKeyRequest"
	ResourceAWSAccessKeyRequest     = "awsaccesskeyrequest"
	ResourceAWSAccessKeyRequests    = "awsaccesskeyrequests"
)
View Source 
const (
	ResourceKindAWSRole = "AWSRole"
	ResourceAWSRole     = "awsrole"
	ResourceAWSRoles    = "awsroles"
)
View Source 
const (
	AWSCredentialAccessKeyKey = "access_key"
	AWSCredentialSecretKeyKey = "secret_key"
)
View Source 
const (
	ResourceKindAzureAccessKeyRequest = "AzureAccessKeyRequest"
	ResourceAzureAccessKeyRequest     = "azureaccesskeyrequest"
	ResourceAzureAccessKeyRequests    = "azureaccesskeyrequests"
)
View Source 
const (
	ResourceKindAzureRole = "AzureRole"
	ResourceAzureRole     = "azurerole"
	ResourceAzureRoles    = "azureroles"
)
View Source 
const (
	AzureClientSecret   = "client-secret"
	AzureSubscriptionID = "subscription-id"
	AzureTenantID       = "tenant-id"
	AzureClientID       = "client-id"
)
View Source 
const (
	ResourceKindGCPAccessKeyRequest = "GCPAccessKeyRequest"
	ResourceGCPAccessKeyRequest     = "gcpaccesskeyrequest"
	ResourceGCPAccessKeyRequests    = "gcpaccesskeyrequests"
)
View Source 
const (
	ResourceKindGCPRole = "GCPRole"
	ResourceGCPRole     = "gcprole"
	ResourceGCPRoles    = "gcproles"
)
View Source 
const (
	GCPSACredentialJson = "sa.json"
)

Variables

View Source 
var (
	// TODO: move SchemeBuilder with zz_generated.deepcopy.go to k8s.io/api.
	// localSchemeBuilder and AddToScheme will stay in k8s.io/kubernetes.
	SchemeBuilder runtime.SchemeBuilder

	AddToScheme = localSchemeBuilder.AddToScheme
)
View Source 
var SchemeGroupVersion = schema.GroupVersion{Group: engine.GroupName, Version: "v1alpha1"}

Functions

func GetOpenAPIDefinitions 

func GetOpenAPIDefinitions(ref common.ReferenceCallback) map[string]common.OpenAPIDefinition

func Resource 

func Resource(resource string) schema.GroupResource

Resource takes an unqualified resource and returns a Group qualified GroupResource

Types

type AWSAccessKeyRequest 

type AWSAccessKeyRequest struct {
	metav1.TypeMeta   `json:",inline,omitempty"`
	metav1.ObjectMeta `json:"metadata,omitempty"`
	Spec              AWSAccessKeyRequestSpec   `json:"spec,omitempty"`
	Status            AWSAccessKeyRequestStatus `json:"status,omitempty"`
}

AWSAccessKeyRequest

func (AWSAccessKeyRequest) CustomResourceDefinition 

func (d AWSAccessKeyRequest) CustomResourceDefinition() *apiextensions.CustomResourceDefinition

func (*AWSAccessKeyRequest) DeepCopy 

func (in *AWSAccessKeyRequest) DeepCopy() *AWSAccessKeyRequest

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSAccessKeyRequest.

func (*AWSAccessKeyRequest) DeepCopyInto 

func (in *AWSAccessKeyRequest) DeepCopyInto(out *AWSAccessKeyRequest)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AWSAccessKeyRequest) DeepCopyObject 

func (in *AWSAccessKeyRequest) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (AWSAccessKeyRequest) IsValid 

func (d AWSAccessKeyRequest) IsValid() error

type AWSAccessKeyRequestCondition 

type AWSAccessKeyRequestCondition struct {
	// request approval state, currently Approved or Denied.
	Type RequestConditionType `json:"type"`

	// brief reason for the request state
	// +optional
	Reason string `json:"reason,omitempty"`

	// human readable message with details about the request state
	// +optional
	Message string `json:"message,omitempty"`

	// timestamp for the last update to this condition
	// +optional
	LastUpdateTime metav1.Time `json:"lastUpdateTime,omitempty"`
}

func (*AWSAccessKeyRequestCondition) DeepCopy 

func (in *AWSAccessKeyRequestCondition) DeepCopy() *AWSAccessKeyRequestCondition

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSAccessKeyRequestCondition.

func (*AWSAccessKeyRequestCondition) DeepCopyInto 

func (in *AWSAccessKeyRequestCondition) DeepCopyInto(out *AWSAccessKeyRequestCondition)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AWSAccessKeyRequestList 

type AWSAccessKeyRequestList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`

	// Items is a list of AWSAccessKeyRequest objects
	Items []AWSAccessKeyRequest `json:"items,omitempty"`
}

func (*AWSAccessKeyRequestList) DeepCopy 

func (in *AWSAccessKeyRequestList) DeepCopy() *AWSAccessKeyRequestList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSAccessKeyRequestList.

func (*AWSAccessKeyRequestList) DeepCopyInto 

func (in *AWSAccessKeyRequestList) DeepCopyInto(out *AWSAccessKeyRequestList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AWSAccessKeyRequestList) DeepCopyObject 

func (in *AWSAccessKeyRequestList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type AWSAccessKeyRequestSpec 

type AWSAccessKeyRequestSpec struct {
	// Contains vault aws role info
	RoleRef RoleReference `json:"roleRef"`

	Subjects []rbac.Subject `json:"subjects"`

	// The ARN of the role to assume if credential_type on the Vault role is assumed_role.
	// Must match one of the allowed role ARNs in the Vault role. Optional if the Vault role
	// only allows a single AWS role ARN; required otherwise.
	RoleARN string `json:"roleARN,omitempty"`

	// Specifies the TTL for the use of the STS token. This is specified as a string with a duration suffix.
	// Valid only when credential_type is assumed_role or federation_token. When not specified,
	// the default_sts_ttl set for the role will be used. If that is also not set, then the default value of
	// 3600s will be used. AWS places limits on the maximum TTL allowed. See the AWS documentation on the
	// DurationSeconds parameter for AssumeRole (for assumed_role credential types) and
	// GetFederationToken (for federation_token credential types) for more details.
	TTL string `json:"ttl,omitempty"`

	// If true, '/aws/sts' endpoint will be used to retrieve credential
	// Otherwise, '/aws/creds' endpoint will be used to retrieve credential
	UseSTS bool `json:"useSTS,omitempty"`
}

https://www.vaultproject.io/api/secret/aws/index.html#parameters-6 AWSAccessKeyRequestSpec contains information to request for vault aws credential

func (*AWSAccessKeyRequestSpec) DeepCopy 

func (in *AWSAccessKeyRequestSpec) DeepCopy() *AWSAccessKeyRequestSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSAccessKeyRequestSpec.

func (*AWSAccessKeyRequestSpec) DeepCopyInto 

func (in *AWSAccessKeyRequestSpec) DeepCopyInto(out *AWSAccessKeyRequestSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AWSAccessKeyRequestStatus 

type AWSAccessKeyRequestStatus struct {
	// Conditions applied to the request, such as approval or denial.
	// +optional
	Conditions []AWSAccessKeyRequestCondition `json:"conditions,omitempty"`

	// Name of the secret containing AWSCredential AWSCredentials
	Secret *core.LocalObjectReference `json:"secret,omitempty"`

	// Contains lease info
	Lease *Lease `json:"lease,omitempty"`
}

func (*AWSAccessKeyRequestStatus) DeepCopy 

func (in *AWSAccessKeyRequestStatus) DeepCopy() *AWSAccessKeyRequestStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSAccessKeyRequestStatus.

func (*AWSAccessKeyRequestStatus) DeepCopyInto 

func (in *AWSAccessKeyRequestStatus) DeepCopyInto(out *AWSAccessKeyRequestStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AWSConfig 

type AWSConfig struct {
	// Specifies the secret containing AWS access key ID and secret access key
	// secret.Data:
	//	- access_key=<value>
	//  - secret_key=<value>
	CredentialSecret string `json:"credentialSecret"`

	// Specifies the AWS region
	Region string `json:"region"`

	// Specifies a custom HTTP IAM enminidpoint to use
	IAMEndpoint string `json:"iamEndpoint,omitempty"`

	//Specifies a custom HTTP STS endpoint to use
	STSEndpoint string `json:"stsEndpoint,omitempty"`

	// Number of max retries the client should use for recoverable errors.
	// The default (-1) falls back to the AWS SDK's default behavior
	MaxRetries *int `json:"maxRetries,omitempty"`

	LeaseConfig *LeaseConfig `json:"leaseConfig,omitempty"`
}

https://www.vaultproject.io/api/secret/aws/index.html#configure-root-iam-credentials AWSConfig contains information to communicate with AWS

func (*AWSConfig) DeepCopy 

func (in *AWSConfig) DeepCopy() *AWSConfig

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSConfig.

func (*AWSConfig) DeepCopyInto 

func (in *AWSConfig) DeepCopyInto(out *AWSConfig)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AWSCredentialType 

type AWSCredentialType string
const (
	AWSCredentialIAMUser         AWSCredentialType = "iam_user"
	AWSCredentialAssumedRole     AWSCredentialType = "assumed_role"
	AWSCredentialFederationToken AWSCredentialType = "federation_token"
)

type AWSRole 

type AWSRole struct {
	metav1.TypeMeta   `json:",inline,omitempty"`
	metav1.ObjectMeta `json:"metadata,omitempty"`
	Spec              AWSRoleSpec   `json:"spec,omitempty"`
	Status            AWSRoleStatus `json:"status,omitempty"`
}

AWSRole

func (AWSRole) CustomResourceDefinition 

func (r AWSRole) CustomResourceDefinition() *apiextensions.CustomResourceDefinition

func (*AWSRole) DeepCopy 

func (in *AWSRole) DeepCopy() *AWSRole

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSRole.

func (*AWSRole) DeepCopyInto 

func (in *AWSRole) DeepCopyInto(out *AWSRole)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AWSRole) DeepCopyObject 

func (in *AWSRole) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (AWSRole) IsValid 

func (r AWSRole) IsValid() error

func (AWSRole) RoleName 

func (r AWSRole) RoleName() string

type AWSRoleCondition 

type AWSRoleCondition struct {
	// Type of AWSRole condition.
	Type string `json:"type,omitempty"`

	// Status of the condition, one of True, False, Unknown.
	Status core.ConditionStatus `json:"status,omitempty"`

	// The reason for the condition's.
	Reason string `json:"reason,omitempty"`

	// A human readable message indicating details about the transition.
	Message string `json:"message,omitempty"`
}

AWSRoleCondition describes the state of a AWSRole at a certain point.

func (*AWSRoleCondition) DeepCopy 

func (in *AWSRoleCondition) DeepCopy() *AWSRoleCondition

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSRoleCondition.

func (*AWSRoleCondition) DeepCopyInto 

func (in *AWSRoleCondition) DeepCopyInto(out *AWSRoleCondition)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AWSRoleList 

type AWSRoleList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`

	// Items is a list of AWSRole objects
	Items []AWSRole `json:"items,omitempty"`
}

func (*AWSRoleList) DeepCopy 

func (in *AWSRoleList) DeepCopy() *AWSRoleList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSRoleList.

func (*AWSRoleList) DeepCopyInto 

func (in *AWSRoleList) DeepCopyInto(out *AWSRoleList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AWSRoleList) DeepCopyObject 

func (in *AWSRoleList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type AWSRolePhase 

type AWSRolePhase string

type AWSRoleSpec 

type AWSRoleSpec struct {
	AuthManagerRef *appcat.AppReference `json:"authManagerRef,omitempty"`

	Config *AWSConfig `json:"config"`

	// Specifies the type of credential to be used when retrieving credentials from the role
	CredentialType AWSCredentialType `json:"credentialType"`

	// Specifies the ARNs of the AWS roles this Vault role is allowed to assume.
	// Required when credential_type is assumed_role and prohibited otherwise
	RoleARNs []string `json:"roleARNs,omitempty"`

	// Specifies the ARNs of the AWS managed policies to be attached to IAM users when they are requested.
	// Valid only when credential_type is iam_user. When credential_type is iam_user,
	// at least one of policy_arns or policy_document must be specified.
	PolicyARNs []string `json:"policyARNs,omitempty"`

	// The IAM policy document for the role. The behavior depends on the credential type.
	// With iam_user, the policy document will be attached to the IAM user generated and
	// augment the permissions the IAM user has. With assumed_role and federation_token,
	// the policy document will act as a filter on what the credentials can do.
	PolicyDocument string `json:"policyDocument,omitempty"`

	// The default TTL for STS credentials. When a TTL is not specified when STS credentials are requested,
	// and a default TTL is specified on the role, then this default TTL will be used.
	// Valid only when credential_type is one of assumed_role or federation_token
	DefaultSTSTTL string `json:"defaultSTSTTL,omitempty"`

	// The max allowed TTL for STS credentials (credentials TTL are capped to max_sts_ttl).
	// Valid only when credential_type is one of assumed_role or federation_token
	MaxSTSTTL string `json:"maxSTSTTL,omitempty"`

	// Specifies the IAM policy in JSON format.
	Policy string `json:"policy,omitempty"`

	// Specifies the full ARN reference to the desired existing policy.
	ARN string `json:"arn,omitempty"`
}

AWSRoleSpec contains connection information, AWS role info, etc

func (*AWSRoleSpec) DeepCopy 

func (in *AWSRoleSpec) DeepCopy() *AWSRoleSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSRoleSpec.

func (*AWSRoleSpec) DeepCopyInto 

func (in *AWSRoleSpec) DeepCopyInto(out *AWSRoleSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AWSRoleStatus 

type AWSRoleStatus struct {
	Phase AWSRolePhase `json:"phase,omitempty"`

	// observedGeneration is the most recent generation observed for this AWSRole. It corresponds to the
	// AWSRole's generation, which is updated on mutation by the API Server.
	ObservedGeneration *types.IntHash `json:"observedGeneration,omitempty"`

	// Represents the latest available observations of a AWSRole current state.
	Conditions []AWSRoleCondition `json:"conditions,omitempty"`
}

func (*AWSRoleStatus) DeepCopy 

func (in *AWSRoleStatus) DeepCopy() *AWSRoleStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AWSRoleStatus.

func (*AWSRoleStatus) DeepCopyInto 

func (in *AWSRoleStatus) DeepCopyInto(out *AWSRoleStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AzureAccessKeyRequest 

type AzureAccessKeyRequest struct {
	metav1.TypeMeta   `json:",inline,omitempty"`
	metav1.ObjectMeta `json:"metadata,omitempty"`
	Spec              AzureAccessKeyRequestSpec   `json:"spec,omitempty"`
	Status            AzureAccessKeyRequestStatus `json:"status,omitempty"`
}

AzureAccessKeyRequest structure

func (AzureAccessKeyRequest) CustomResourceDefinition 

func (d AzureAccessKeyRequest) CustomResourceDefinition() *apiextensions.CustomResourceDefinition

func (*AzureAccessKeyRequest) DeepCopy 

func (in *AzureAccessKeyRequest) DeepCopy() *AzureAccessKeyRequest

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureAccessKeyRequest.

func (*AzureAccessKeyRequest) DeepCopyInto 

func (in *AzureAccessKeyRequest) DeepCopyInto(out *AzureAccessKeyRequest)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AzureAccessKeyRequest) DeepCopyObject 

func (in *AzureAccessKeyRequest) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (AzureAccessKeyRequest) IsValid 

func (d AzureAccessKeyRequest) IsValid() error

type AzureAccessKeyRequestCondition 

type AzureAccessKeyRequestCondition struct {
	// request approval state, currently Approved or Denied.
	Type RequestConditionType `json:"type"`

	// brief reason for the request state
	// +optional
	Reason string `json:"reason,omitempty"`

	// human readable message with details about the request state
	// +optional
	Message string `json:"message,omitempty"`

	// timestamp for the last update to this condition
	// +optional
	LastUpdateTime metav1.Time `json:"lastUpdateTime,omitempty"`
}

func (*AzureAccessKeyRequestCondition) DeepCopy 

func (in *AzureAccessKeyRequestCondition) DeepCopy() *AzureAccessKeyRequestCondition

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureAccessKeyRequestCondition.

func (*AzureAccessKeyRequestCondition) DeepCopyInto 

func (in *AzureAccessKeyRequestCondition) DeepCopyInto(out *AzureAccessKeyRequestCondition)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AzureAccessKeyRequestList 

type AzureAccessKeyRequestList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`

	// Items is a list of AzureAccessKeyRequest objects
	Items []AzureAccessKeyRequest `json:"items,omitempty"`
}

func (*AzureAccessKeyRequestList) DeepCopy 

func (in *AzureAccessKeyRequestList) DeepCopy() *AzureAccessKeyRequestList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureAccessKeyRequestList.

func (*AzureAccessKeyRequestList) DeepCopyInto 

func (in *AzureAccessKeyRequestList) DeepCopyInto(out *AzureAccessKeyRequestList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AzureAccessKeyRequestList) DeepCopyObject 

func (in *AzureAccessKeyRequestList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type AzureAccessKeyRequestSpec 

type AzureAccessKeyRequestSpec struct {
	// Contains vault azure role info
	// +required
	RoleRef RoleReference `json:"roleRef"`

	// Contains a reference to the object or user identities the role binding is applied to
	// +required
	Subjects []rbac.Subject `json:"subjects"`
}

func (*AzureAccessKeyRequestSpec) DeepCopy 

func (in *AzureAccessKeyRequestSpec) DeepCopy() *AzureAccessKeyRequestSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureAccessKeyRequestSpec.

func (*AzureAccessKeyRequestSpec) DeepCopyInto 

func (in *AzureAccessKeyRequestSpec) DeepCopyInto(out *AzureAccessKeyRequestSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AzureAccessKeyRequestStatus 

type AzureAccessKeyRequestStatus struct {
	// Conditions applied to the request, such as approval or denial.
	// +optional
	Conditions []AzureAccessKeyRequestCondition `json:"conditions,omitempty"`

	// Name of the secret containing AzureCredential
	Secret *core.LocalObjectReference `json:"secret,omitempty"`

	// Contains lease info
	Lease *Lease `json:"lease,omitempty"`
}

func (*AzureAccessKeyRequestStatus) DeepCopy 

func (in *AzureAccessKeyRequestStatus) DeepCopy() *AzureAccessKeyRequestStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureAccessKeyRequestStatus.

func (*AzureAccessKeyRequestStatus) DeepCopyInto 

func (in *AzureAccessKeyRequestStatus) DeepCopyInto(out *AzureAccessKeyRequestStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AzureConfig 

type AzureConfig struct {

	// Specifies the secret name containing Azure credentials
	// secret.Data:
	// 	- subscription-id: <value>, The subscription id for the Azure Active Directory.
	//	- tenant-id: <value>, The tenant id for the Azure Active Directory.
	//	- client-id: <value>, The OAuth2 client id to connect to Azure.
	//	- client-secret: <value>, The OAuth2 client secret to connect to Azure.
	// +required
	CredentialSecret string `json:"credentialSecret"`

	// The Azure environment.
	// If not specified, Vault will use Azure Public Cloud.
	// +optional
	Environment string `json:"environment, omitempty"`
}

AzureConfig contains information to communicate with Azure

func (*AzureConfig) DeepCopy 

func (in *AzureConfig) DeepCopy() *AzureConfig

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureConfig.

func (*AzureConfig) DeepCopyInto 

func (in *AzureConfig) DeepCopyInto(out *AzureConfig)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AzureRole 

type AzureRole struct {
	metav1.TypeMeta   `json:",inline,omitempty"`
	metav1.ObjectMeta `json:"metadata,omitempty"`
	Spec              AzureRoleSpec   `json:"spec,omitempty"`
	Status            AzureRoleStatus `json:"status,omitempty"`
}

AzureRole

func (AzureRole) CustomResourceDefinition 

func (r AzureRole) CustomResourceDefinition() *apiextensions.CustomResourceDefinition

func (*AzureRole) DeepCopy 

func (in *AzureRole) DeepCopy() *AzureRole

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureRole.

func (*AzureRole) DeepCopyInto 

func (in *AzureRole) DeepCopyInto(out *AzureRole)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AzureRole) DeepCopyObject 

func (in *AzureRole) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (AzureRole) IsValid 

func (r AzureRole) IsValid() error

func (AzureRole) RoleName 

func (r AzureRole) RoleName() string

type AzureRoleCondition 

type AzureRoleCondition struct {
	// Type of AzureRole condition.
	Type string `json:"type,omitempty"`

	// Status of the condition, one of True, False, Unknown.
	Status core.ConditionStatus `json:"status,omitempty"`

	// The reason for the condition's.
	Reason string `json:"reason,omitempty"`

	// A human readable message indicating details about the transition.
	Message string `json:"message,omitempty"`
}

AzureRoleCondition describes the state of a AzureRole at a certain point.

func (*AzureRoleCondition) DeepCopy 

func (in *AzureRoleCondition) DeepCopy() *AzureRoleCondition

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureRoleCondition.

func (*AzureRoleCondition) DeepCopyInto 

func (in *AzureRoleCondition) DeepCopyInto(out *AzureRoleCondition)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AzureRoleList 

type AzureRoleList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata, omitempty"`

	// Items is a list of AzureRole objects
	Items []AzureRole `json:"items, omitempty"`
}

func (*AzureRoleList) DeepCopy 

func (in *AzureRoleList) DeepCopy() *AzureRoleList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureRoleList.

func (*AzureRoleList) DeepCopyInto 

func (in *AzureRoleList) DeepCopyInto(out *AzureRoleList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AzureRoleList) DeepCopyObject 

func (in *AzureRoleList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type AzureRolePhase 

type AzureRolePhase string

type AzureRoleSpec 

type AzureRoleSpec struct {
	AuthManagerRef *appcat.AppReference `json:"authManagerRef,omitempty"`
	Config         *AzureConfig         `json:"config"`

	// List of Azure roles to be assigned to the generated service principal.
	// The array must be in JSON format, properly escaped as a string
	AzureRoles string `json:"azureRoles,omitempty"`

	// Application Object ID for an existing service principal
	// that will be used instead of creating dynamic service principals.
	// If present, azure_roles will be ignored.
	ApplicationObjectID string `json:"applicationObjectID, omitempty"`

	// Specifies the default TTL for service principals generated using this role.
	// Accepts time suffixed strings ("1h") or an integer number of seconds.
	// Defaults to the system/engine default TTL time.
	TTL string `json:"ttl, omitempty"`

	// Specifies the maximum TTL for service principals
	// generated using this role. Accepts time suffixed strings ("1h")
	// or an integer number of seconds. Defaults to the system/engine max TTL time.
	MaxTTL string `json:"maxTTL, omitempty"`
}

AzureRoleSpec contains connection information, Azure role info, etc

func (*AzureRoleSpec) DeepCopy 

func (in *AzureRoleSpec) DeepCopy() *AzureRoleSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureRoleSpec.

func (*AzureRoleSpec) DeepCopyInto 

func (in *AzureRoleSpec) DeepCopyInto(out *AzureRoleSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AzureRoleStatus 

type AzureRoleStatus struct {
	Phase AzureRolePhase `json:"phase,omitempty"`

	// observedGeneration is the most recent generation observed for this AzureRole. It corresponds to the
	// AzureRole's generation, which is updated on mutation by the API Server.
	ObservedGeneration *types.IntHash `json:"observedGeneration,omitempty"`

	// Represents the latest available observations of a AzureRole current state.
	Conditions []AzureRoleCondition `json:"conditions,omitempty"`
}

func (*AzureRoleStatus) DeepCopy 

func (in *AzureRoleStatus) DeepCopy() *AzureRoleStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AzureRoleStatus.

func (*AzureRoleStatus) DeepCopyInto 

func (in *AzureRoleStatus) DeepCopyInto(out *AzureRoleStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AzureSecretType 

type AzureSecretType string

type GCPAccessKeyRequest 

type GCPAccessKeyRequest struct {
	metav1.TypeMeta   `json:",inline,omitempty"`
	metav1.ObjectMeta `json:"metadata,omitempty"`
	Spec              GCPAccessKeyRequestSpec   `json:"spec,omitempty"`
	Status            GCPAccessKeyRequestStatus `json:"status,omitempty"`
}

GCPAccessKeyRequest structure

func (GCPAccessKeyRequest) CustomResourceDefinition 

func (d GCPAccessKeyRequest) CustomResourceDefinition() *apiextensions.CustomResourceDefinition

func (*GCPAccessKeyRequest) DeepCopy 

func (in *GCPAccessKeyRequest) DeepCopy() *GCPAccessKeyRequest

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPAccessKeyRequest.

func (*GCPAccessKeyRequest) DeepCopyInto 

func (in *GCPAccessKeyRequest) DeepCopyInto(out *GCPAccessKeyRequest)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*GCPAccessKeyRequest) DeepCopyObject 

func (in *GCPAccessKeyRequest) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (GCPAccessKeyRequest) IsValid 

func (d GCPAccessKeyRequest) IsValid() error

type GCPAccessKeyRequestCondition 

type GCPAccessKeyRequestCondition struct {
	// request approval state, currently Approved or Denied.
	Type RequestConditionType `json:"type"`

	// brief reason for the request state
	// +optional
	Reason string `json:"reason,omitempty"`

	// human readable message with details about the request state
	// +optional
	Message string `json:"message,omitempty"`

	// timestamp for the last update to this condition
	// +optional
	LastUpdateTime metav1.Time `json:"lastUpdateTime,omitempty"`
}

func (*GCPAccessKeyRequestCondition) DeepCopy 

func (in *GCPAccessKeyRequestCondition) DeepCopy() *GCPAccessKeyRequestCondition

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPAccessKeyRequestCondition.

func (*GCPAccessKeyRequestCondition) DeepCopyInto 

func (in *GCPAccessKeyRequestCondition) DeepCopyInto(out *GCPAccessKeyRequestCondition)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type GCPAccessKeyRequestList 

type GCPAccessKeyRequestList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`

	// Items is a list of GCPAccessKeyRequest objects
	Items []GCPAccessKeyRequest `json:"items,omitempty"`
}

func (*GCPAccessKeyRequestList) DeepCopy 

func (in *GCPAccessKeyRequestList) DeepCopy() *GCPAccessKeyRequestList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPAccessKeyRequestList.

func (*GCPAccessKeyRequestList) DeepCopyInto 

func (in *GCPAccessKeyRequestList) DeepCopyInto(out *GCPAccessKeyRequestList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*GCPAccessKeyRequestList) DeepCopyObject 

func (in *GCPAccessKeyRequestList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type GCPAccessKeyRequestSpec 

type GCPAccessKeyRequestSpec struct {
	// Contains vault gcp role info
	// +required
	RoleRef RoleReference `json:"roleRef"`

	// Contains a reference to the object or user identities the role binding is applied to
	// +required
	Subjects []rbac.Subject `json:"subjects"`

	// Specifies the algorithm used to generate key.
	// Defaults to 2k RSA key.
	// Accepted values: KEY_ALG_UNSPECIFIED, KEY_ALG_RSA_1024, KEY_ALG_RSA_2048
	// +optional
	KeyAlgorithm string `json:"keyAlgorithm,omitempty"`

	// Specifies the private key type to generate.
	// Defaults to JSON credentials file
	// Accepted values: TYPE_UNSPECIFIED, TYPE_PKCS12_FILE, TYPE_GOOGLE_CREDENTIALS_FILE
	// +optional
	KeyType string `json:"keyType,omitempty"`
}

GCPAccessKeyRequestSpec contains information to request for vault gcp credentials

func (*GCPAccessKeyRequestSpec) DeepCopy 

func (in *GCPAccessKeyRequestSpec) DeepCopy() *GCPAccessKeyRequestSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPAccessKeyRequestSpec.

func (*GCPAccessKeyRequestSpec) DeepCopyInto 

func (in *GCPAccessKeyRequestSpec) DeepCopyInto(out *GCPAccessKeyRequestSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type GCPAccessKeyRequestStatus 

type GCPAccessKeyRequestStatus struct {
	// Conditions applied to the request, such as approval or denial.
	// +optional
	Conditions []GCPAccessKeyRequestCondition `json:"conditions,omitempty"`

	// Name of the secret containing GCPCredential
	Secret *core.LocalObjectReference `json:"secret,omitempty"`

	// Contains lease info
	Lease *Lease `json:"lease,omitempty"`
}

func (*GCPAccessKeyRequestStatus) DeepCopy 

func (in *GCPAccessKeyRequestStatus) DeepCopy() *GCPAccessKeyRequestStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPAccessKeyRequestStatus.

func (*GCPAccessKeyRequestStatus) DeepCopyInto 

func (in *GCPAccessKeyRequestStatus) DeepCopyInto(out *GCPAccessKeyRequestStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type GCPConfig 

type GCPConfig struct {
	// Specifies the secret containing GCP credentials
	// secret.Data:
	//	- sa.json
	CredentialSecret string `json:"credentialSecret"`

	// Specifies default config TTL for long-lived credentials
	// (i.e. service account keys).
	// +optional
	TTL string `json:"ttl,omitempty"`

	// Specifies the maximum config TTL for long-lived
	// credentials (i.e. service account keys).
	// +optional
	MaxTTL string `json:"maxTTL,omitempty"`
}

https://www.vaultproject.io/api/secret/gcp/index.html#write-config GCPConfig contains information to communicate with GCP

func (*GCPConfig) DeepCopy 

func (in *GCPConfig) DeepCopy() *GCPConfig

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPConfig.

func (*GCPConfig) DeepCopyInto 

func (in *GCPConfig) DeepCopyInto(out *GCPConfig)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type GCPRole 

type GCPRole struct {
	metav1.TypeMeta   `json:",inline,omitempty"`
	metav1.ObjectMeta `json:"metadata,omitempty"`
	Spec              GCPRoleSpec   `json:"spec,omitempty"`
	Status            GCPRoleStatus `json:"status,omitempty"`
}

GCPRole

func (GCPRole) CustomResourceDefinition 

func (r GCPRole) CustomResourceDefinition() *apiextensions.CustomResourceDefinition

func (*GCPRole) DeepCopy 

func (in *GCPRole) DeepCopy() *GCPRole

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPRole.

func (*GCPRole) DeepCopyInto 

func (in *GCPRole) DeepCopyInto(out *GCPRole)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*GCPRole) DeepCopyObject 

func (in *GCPRole) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (GCPRole) IsValid 

func (r GCPRole) IsValid() error

func (GCPRole) RoleName 

func (r GCPRole) RoleName() string

type GCPRoleCondition 

type GCPRoleCondition struct {
	// Type of GCPRole condition.
	Type string `json:"type,omitempty"`

	// Status of the condition, one of True, False, Unknown.
	Status core.ConditionStatus `json:"status,omitempty"`

	// The reason for the condition's.
	Reason string `json:"reason,omitempty"`

	// A human readable message indicating details about the transition.
	Message string `json:"message,omitempty"`
}

GCPRoleCondition describes the state of a GCPRole at a certain point.

func (*GCPRoleCondition) DeepCopy 

func (in *GCPRoleCondition) DeepCopy() *GCPRoleCondition

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPRoleCondition.

func (*GCPRoleCondition) DeepCopyInto 

func (in *GCPRoleCondition) DeepCopyInto(out *GCPRoleCondition)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type GCPRoleList 

type GCPRoleList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`

	// Items is a list of GCPRole objects
	Items []GCPRole `json:"items,omitempty"`
}

func (*GCPRoleList) DeepCopy 

func (in *GCPRoleList) DeepCopy() *GCPRoleList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPRoleList.

func (*GCPRoleList) DeepCopyInto 

func (in *GCPRoleList) DeepCopyInto(out *GCPRoleList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*GCPRoleList) DeepCopyObject 

func (in *GCPRoleList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type GCPRolePhase 

type GCPRolePhase string

type GCPRoleSpec 

type GCPRoleSpec struct {
	AuthManagerRef *appcat.AppReference `json:"authManagerRef,omitempty"`

	Config *GCPConfig `json:"config"`

	// Specifies the type of secret generated for this role set
	SecretType GCPSecretType `json:"secretType"`

	// Name of the GCP project that this roleset's service account will belong to.
	// Cannot be updated.
	Project string `json:"project"`

	// Bindings configuration string (expects HCL or JSON format in raw
	// or base64-encoded string)
	Bindings string `json:"bindings"`

	// List of OAuth scopes to assign to access_token secrets generated
	// under this role set (access_token role sets only)
	// +optional
	TokenScopes []string `json:"tokenScopes,omitempty"`
}

GCPRoleSpec contains connection information, GCP role info, etc

func (*GCPRoleSpec) DeepCopy 

func (in *GCPRoleSpec) DeepCopy() *GCPRoleSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPRoleSpec.

func (*GCPRoleSpec) DeepCopyInto 

func (in *GCPRoleSpec) DeepCopyInto(out *GCPRoleSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type GCPRoleStatus 

type GCPRoleStatus struct {
	Phase GCPRolePhase `json:"phase,omitempty"`

	// observedGeneration is the most recent generation observed for this GCPRole. It corresponds to the
	// GCPRole's generation, which is updated on mutation by the API Server.
	ObservedGeneration *types.IntHash `json:"observedGeneration,omitempty"`

	// Represents the latest available observations of a GCPRole current state.
	Conditions []GCPRoleCondition `json:"conditions,omitempty"`
}

func (*GCPRoleStatus) DeepCopy 

func (in *GCPRoleStatus) DeepCopy() *GCPRoleStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GCPRoleStatus.

func (*GCPRoleStatus) DeepCopyInto 

func (in *GCPRoleStatus) DeepCopyInto(out *GCPRoleStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type GCPSecretType 

type GCPSecretType string
const (
	GCPSecretAccessToken       GCPSecretType = "access_token"
	GCPSecretServiceAccountKey GCPSecretType = "service_account_key"
)

type Lease 

type Lease struct {
	// lease id
	ID string `json:"id,omitempty"`

	// lease duration
	Duration metav1.Duration `json:"duration,omitempty"`

	// Specifies whether this lease is renewable
	Renewable bool `json:"renewable,omitempty"`
}

Lease contains lease info

func (*Lease) DeepCopy 

func (in *Lease) DeepCopy() *Lease

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Lease.

func (*Lease) DeepCopyInto 

func (in *Lease) DeepCopyInto(out *Lease)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type LeaseConfig 

type LeaseConfig struct {
	// Specifies the lease value provided as a string duration with time suffix.
	// "h" (hour) is the largest suffix.
	Lease string `json:"lease"`

	// Specifies the maximum lease value provided as a string duration with time suffix.
	// "h" (hour) is the largest suffix
	LeaseMax string `json:"leaseMax"`
}

https://www.vaultproject.io/api/secret/aws/index.html#configure-lease LeaseConfig contains lease configuration

func (*LeaseConfig) DeepCopy 

func (in *LeaseConfig) DeepCopy() *LeaseConfig

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new LeaseConfig.

func (*LeaseConfig) DeepCopyInto 

func (in *LeaseConfig) DeepCopyInto(out *LeaseConfig)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type RequestConditionType 

type RequestConditionType string
const (
	AccessApproved RequestConditionType = "Approved"
	AccessDenied   RequestConditionType = "Denied"
)

These are the possible conditions for a certificate request.

type RoleReference 

type RoleReference struct {
	// Name of the object being referenced.
	Name string `json:"name"`

	// Namespace of the referenced object.
	Namespace string `json:"namespace"`
}

func (*RoleReference) DeepCopy 

func (in *RoleReference) DeepCopy() *RoleReference

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RoleReference.

func (*RoleReference) DeepCopyInto 

func (in *RoleReference) DeepCopyInto(out *RoleReference)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.