v1alpha1

package
v1.0.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 14, 2024 License: Apache-2.0 Imports: 9 Imported by: 0

Documentation

Overview

+kubebuilder:object:generate=true +groupName=gcp.vault.upbound.io +versionName=v1alpha1

Index

Constants

View Source 
const (
	CRDGroup   = "gcp.vault.upbound.io"
	CRDVersion = "v1alpha1"
)

Package type metadata.

Variables

View Source 
var (
	AuthBackend_Kind             = "AuthBackend"
	AuthBackend_GroupKind        = schema.GroupKind{Group: CRDGroup, Kind: AuthBackend_Kind}.String()
	AuthBackend_KindAPIVersion   = AuthBackend_Kind + "." + CRDGroupVersion.String()
	AuthBackend_GroupVersionKind = CRDGroupVersion.WithKind(AuthBackend_Kind)
)

Repository type metadata.

View Source 
var (
	AuthBackendRole_Kind             = "AuthBackendRole"
	AuthBackendRole_GroupKind        = schema.GroupKind{Group: CRDGroup, Kind: AuthBackendRole_Kind}.String()
	AuthBackendRole_KindAPIVersion   = AuthBackendRole_Kind + "." + CRDGroupVersion.String()
	AuthBackendRole_GroupVersionKind = CRDGroupVersion.WithKind(AuthBackendRole_Kind)
)

Repository type metadata.

View Source 
var (
	// CRDGroupVersion is the API Group Version used to register the objects
	CRDGroupVersion = schema.GroupVersion{Group: CRDGroup, Version: CRDVersion}

	// SchemeBuilder is used to add go types to the GroupVersionKind scheme
	SchemeBuilder = &scheme.Builder{GroupVersion: CRDGroupVersion}

	// AddToScheme adds the types in this group-version to the given scheme.
	AddToScheme = SchemeBuilder.AddToScheme
)
View Source 
var (
	SecretBackend_Kind             = "SecretBackend"
	SecretBackend_GroupKind        = schema.GroupKind{Group: CRDGroup, Kind: SecretBackend_Kind}.String()
	SecretBackend_KindAPIVersion   = SecretBackend_Kind + "." + CRDGroupVersion.String()
	SecretBackend_GroupVersionKind = CRDGroupVersion.WithKind(SecretBackend_Kind)
)

Repository type metadata.

View Source 
var (
	SecretImpersonatedAccount_Kind             = "SecretImpersonatedAccount"
	SecretImpersonatedAccount_GroupKind        = schema.GroupKind{Group: CRDGroup, Kind: SecretImpersonatedAccount_Kind}.String()
	SecretImpersonatedAccount_KindAPIVersion   = SecretImpersonatedAccount_Kind + "." + CRDGroupVersion.String()
	SecretImpersonatedAccount_GroupVersionKind = CRDGroupVersion.WithKind(SecretImpersonatedAccount_Kind)
)

Repository type metadata.

View Source 
var (
	SecretRoleset_Kind             = "SecretRoleset"
	SecretRoleset_GroupKind        = schema.GroupKind{Group: CRDGroup, Kind: SecretRoleset_Kind}.String()
	SecretRoleset_KindAPIVersion   = SecretRoleset_Kind + "." + CRDGroupVersion.String()
	SecretRoleset_GroupVersionKind = CRDGroupVersion.WithKind(SecretRoleset_Kind)
)

Repository type metadata.

View Source 
var (
	SecretStaticAccount_Kind             = "SecretStaticAccount"
	SecretStaticAccount_GroupKind        = schema.GroupKind{Group: CRDGroup, Kind: SecretStaticAccount_Kind}.String()
	SecretStaticAccount_KindAPIVersion   = SecretStaticAccount_Kind + "." + CRDGroupVersion.String()
	SecretStaticAccount_GroupVersionKind = CRDGroupVersion.WithKind(SecretStaticAccount_Kind)
)

Repository type metadata.

Functions

This section is empty.

Types

type AuthBackend 

type AuthBackend struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty"`
	Spec              AuthBackendSpec   `json:"spec"`
	Status            AuthBackendStatus `json:"status,omitempty"`
}

AuthBackend is the Schema for the AuthBackends API. <no value> +kubebuilder:printcolumn:name="READY",type="string",JSONPath=".status.conditions[?(@.type=='Ready')].status" +kubebuilder:printcolumn:name="SYNCED",type="string",JSONPath=".status.conditions[?(@.type=='Synced')].status" +kubebuilder:printcolumn:name="EXTERNAL-NAME",type="string",JSONPath=".metadata.annotations.crossplane\\.io/external-name" +kubebuilder:printcolumn:name="AGE",type="date",JSONPath=".metadata.creationTimestamp" +kubebuilder:subresource:status +kubebuilder:resource:scope=Cluster,categories={crossplane,managed,vault}

func (*AuthBackend) DeepCopy 

func (in *AuthBackend) DeepCopy() *AuthBackend

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackend.

func (*AuthBackend) DeepCopyInto 

func (in *AuthBackend) DeepCopyInto(out *AuthBackend)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AuthBackend) DeepCopyObject 

func (in *AuthBackend) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*AuthBackend) GetCondition 

func (mg *AuthBackend) GetCondition(ct xpv1.ConditionType) xpv1.Condition

GetCondition of this AuthBackend.

func (*AuthBackend) GetConnectionDetailsMapping 

func (tr *AuthBackend) GetConnectionDetailsMapping() map[string]string

GetConnectionDetailsMapping for this AuthBackend

func (*AuthBackend) GetDeletionPolicy 

func (mg *AuthBackend) GetDeletionPolicy() xpv1.DeletionPolicy

GetDeletionPolicy of this AuthBackend.

func (*AuthBackend) GetID 

func (tr *AuthBackend) GetID() string

GetID returns ID of underlying Terraform resource of this AuthBackend

func (*AuthBackend) GetInitParameters added in v0.2.0 

func (tr *AuthBackend) GetInitParameters() (map[string]any, error)

GetInitParameters of this AuthBackend

func (*AuthBackend) GetManagementPolicies added in v0.2.0 

func (mg *AuthBackend) GetManagementPolicies() xpv1.ManagementPolicies

GetManagementPolicies of this AuthBackend.

func (*AuthBackend) GetObservation 

func (tr *AuthBackend) GetObservation() (map[string]any, error)

GetObservation of this AuthBackend

func (*AuthBackend) GetParameters 

func (tr *AuthBackend) GetParameters() (map[string]any, error)

GetParameters of this AuthBackend

func (*AuthBackend) GetProviderConfigReference 

func (mg *AuthBackend) GetProviderConfigReference() *xpv1.Reference

GetProviderConfigReference of this AuthBackend.

func (*AuthBackend) GetProviderReference 

func (mg *AuthBackend) GetProviderReference() *xpv1.Reference

GetProviderReference of this AuthBackend. Deprecated: Use GetProviderConfigReference.

func (*AuthBackend) GetPublishConnectionDetailsTo 

func (mg *AuthBackend) GetPublishConnectionDetailsTo() *xpv1.PublishConnectionDetailsTo

GetPublishConnectionDetailsTo of this AuthBackend.

func (*AuthBackend) GetTerraformResourceType 

func (mg *AuthBackend) GetTerraformResourceType() string

GetTerraformResourceType returns Terraform resource type for this AuthBackend

func (*AuthBackend) GetTerraformSchemaVersion 

func (tr *AuthBackend) GetTerraformSchemaVersion() int

GetTerraformSchemaVersion returns the associated Terraform schema version

func (*AuthBackend) GetWriteConnectionSecretToReference 

func (mg *AuthBackend) GetWriteConnectionSecretToReference() *xpv1.SecretReference

GetWriteConnectionSecretToReference of this AuthBackend.

func (*AuthBackend) LateInitialize 

func (tr *AuthBackend) LateInitialize(attrs []byte) (bool, error)

LateInitialize this AuthBackend using its observed tfState. returns True if there are any spec changes for the resource.

func (*AuthBackend) SetConditions 

func (mg *AuthBackend) SetConditions(c ...xpv1.Condition)

SetConditions of this AuthBackend.

func (*AuthBackend) SetDeletionPolicy 

func (mg *AuthBackend) SetDeletionPolicy(r xpv1.DeletionPolicy)

SetDeletionPolicy of this AuthBackend.

func (*AuthBackend) SetManagementPolicies added in v0.2.0 

func (mg *AuthBackend) SetManagementPolicies(r xpv1.ManagementPolicies)

SetManagementPolicies of this AuthBackend.

func (*AuthBackend) SetObservation 

func (tr *AuthBackend) SetObservation(obs map[string]any) error

SetObservation for this AuthBackend

func (*AuthBackend) SetParameters 

func (tr *AuthBackend) SetParameters(params map[string]any) error

SetParameters for this AuthBackend

func (*AuthBackend) SetProviderConfigReference 

func (mg *AuthBackend) SetProviderConfigReference(r *xpv1.Reference)

SetProviderConfigReference of this AuthBackend.

func (*AuthBackend) SetProviderReference 

func (mg *AuthBackend) SetProviderReference(r *xpv1.Reference)

SetProviderReference of this AuthBackend. Deprecated: Use SetProviderConfigReference.

func (*AuthBackend) SetPublishConnectionDetailsTo 

func (mg *AuthBackend) SetPublishConnectionDetailsTo(r *xpv1.PublishConnectionDetailsTo)

SetPublishConnectionDetailsTo of this AuthBackend.

func (*AuthBackend) SetWriteConnectionSecretToReference 

func (mg *AuthBackend) SetWriteConnectionSecretToReference(r *xpv1.SecretReference)

SetWriteConnectionSecretToReference of this AuthBackend.

type AuthBackendInitParameters added in v0.2.0 

type AuthBackendInitParameters struct {
	ClientEmail *string `json:"clientEmail,omitempty" tf:"client_email,omitempty"`

	ClientID *string `json:"clientId,omitempty" tf:"client_id,omitempty"`

	// Specifies overrides to service endpoints used when making API requests to GCP.
	CustomEndpoint []CustomEndpointInitParameters `json:"customEndpoint,omitempty" tf:"custom_endpoint,omitempty"`

	Description *string `json:"description,omitempty" tf:"description,omitempty"`

	// If set, opts out of mount migration on path updates.
	DisableRemount *bool `json:"disableRemount,omitempty" tf:"disable_remount,omitempty"`

	// Specifies if the auth method is local only
	Local *bool `json:"local,omitempty" tf:"local,omitempty"`

	// Target namespace. (requires Enterprise)
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	Path *string `json:"path,omitempty" tf:"path,omitempty"`

	PrivateKeyID *string `json:"privateKeyId,omitempty" tf:"private_key_id,omitempty"`

	ProjectID *string `json:"projectId,omitempty" tf:"project_id,omitempty"`

	Tune []TuneInitParameters `json:"tune,omitempty" tf:"tune,omitempty"`
}

func (*AuthBackendInitParameters) DeepCopy added in v0.2.0 

func (in *AuthBackendInitParameters) DeepCopy() *AuthBackendInitParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendInitParameters.

func (*AuthBackendInitParameters) DeepCopyInto added in v0.2.0 

func (in *AuthBackendInitParameters) DeepCopyInto(out *AuthBackendInitParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuthBackendList 

type AuthBackendList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`
	Items           []AuthBackend `json:"items"`
}

AuthBackendList contains a list of AuthBackends

func (*AuthBackendList) DeepCopy 

func (in *AuthBackendList) DeepCopy() *AuthBackendList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendList.

func (*AuthBackendList) DeepCopyInto 

func (in *AuthBackendList) DeepCopyInto(out *AuthBackendList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AuthBackendList) DeepCopyObject 

func (in *AuthBackendList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*AuthBackendList) GetItems 

func (l *AuthBackendList) GetItems() []resource.Managed

GetItems of this AuthBackendList.

type AuthBackendObservation 

type AuthBackendObservation struct {

	// The accessor of the auth backend
	Accessor *string `json:"accessor,omitempty" tf:"accessor,omitempty"`

	ClientEmail *string `json:"clientEmail,omitempty" tf:"client_email,omitempty"`

	ClientID *string `json:"clientId,omitempty" tf:"client_id,omitempty"`

	// Specifies overrides to service endpoints used when making API requests to GCP.
	CustomEndpoint []CustomEndpointObservation `json:"customEndpoint,omitempty" tf:"custom_endpoint,omitempty"`

	Description *string `json:"description,omitempty" tf:"description,omitempty"`

	// If set, opts out of mount migration on path updates.
	DisableRemount *bool `json:"disableRemount,omitempty" tf:"disable_remount,omitempty"`

	ID *string `json:"id,omitempty" tf:"id,omitempty"`

	// Specifies if the auth method is local only
	Local *bool `json:"local,omitempty" tf:"local,omitempty"`

	// Target namespace. (requires Enterprise)
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	Path *string `json:"path,omitempty" tf:"path,omitempty"`

	PrivateKeyID *string `json:"privateKeyId,omitempty" tf:"private_key_id,omitempty"`

	ProjectID *string `json:"projectId,omitempty" tf:"project_id,omitempty"`

	Tune []TuneObservation `json:"tune,omitempty" tf:"tune,omitempty"`
}

func (*AuthBackendObservation) DeepCopy 

func (in *AuthBackendObservation) DeepCopy() *AuthBackendObservation

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendObservation.

func (*AuthBackendObservation) DeepCopyInto 

func (in *AuthBackendObservation) DeepCopyInto(out *AuthBackendObservation)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuthBackendParameters 

type AuthBackendParameters struct {

	// +kubebuilder:validation:Optional
	ClientEmail *string `json:"clientEmail,omitempty" tf:"client_email,omitempty"`

	// +kubebuilder:validation:Optional
	ClientID *string `json:"clientId,omitempty" tf:"client_id,omitempty"`

	// +kubebuilder:validation:Optional
	CredentialsSecretRef *v1.SecretKeySelector `json:"credentialsSecretRef,omitempty" tf:"-"`

	// Specifies overrides to service endpoints used when making API requests to GCP.
	// +kubebuilder:validation:Optional
	CustomEndpoint []CustomEndpointParameters `json:"customEndpoint,omitempty" tf:"custom_endpoint,omitempty"`

	// +kubebuilder:validation:Optional
	Description *string `json:"description,omitempty" tf:"description,omitempty"`

	// If set, opts out of mount migration on path updates.
	// +kubebuilder:validation:Optional
	DisableRemount *bool `json:"disableRemount,omitempty" tf:"disable_remount,omitempty"`

	// Specifies if the auth method is local only
	// +kubebuilder:validation:Optional
	Local *bool `json:"local,omitempty" tf:"local,omitempty"`

	// Target namespace. (requires Enterprise)
	// +kubebuilder:validation:Optional
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// +kubebuilder:validation:Optional
	Path *string `json:"path,omitempty" tf:"path,omitempty"`

	// +kubebuilder:validation:Optional
	PrivateKeyID *string `json:"privateKeyId,omitempty" tf:"private_key_id,omitempty"`

	// +kubebuilder:validation:Optional
	ProjectID *string `json:"projectId,omitempty" tf:"project_id,omitempty"`

	// +kubebuilder:validation:Optional
	Tune []TuneParameters `json:"tune,omitempty" tf:"tune,omitempty"`
}

func (*AuthBackendParameters) DeepCopy 

func (in *AuthBackendParameters) DeepCopy() *AuthBackendParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendParameters.

func (*AuthBackendParameters) DeepCopyInto 

func (in *AuthBackendParameters) DeepCopyInto(out *AuthBackendParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuthBackendRole 

type AuthBackendRole struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty"`
	// +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.role) || has(self.initProvider.role)",message="role is a required parameter"
	// +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.type) || has(self.initProvider.type)",message="type is a required parameter"
	Spec   AuthBackendRoleSpec   `json:"spec"`
	Status AuthBackendRoleStatus `json:"status,omitempty"`
}

AuthBackendRole is the Schema for the AuthBackendRoles API. Managing roles in an GCP auth backend in Vault +kubebuilder:printcolumn:name="READY",type="string",JSONPath=".status.conditions[?(@.type=='Ready')].status" +kubebuilder:printcolumn:name="SYNCED",type="string",JSONPath=".status.conditions[?(@.type=='Synced')].status" +kubebuilder:printcolumn:name="EXTERNAL-NAME",type="string",JSONPath=".metadata.annotations.crossplane\\.io/external-name" +kubebuilder:printcolumn:name="AGE",type="date",JSONPath=".metadata.creationTimestamp" +kubebuilder:subresource:status +kubebuilder:resource:scope=Cluster,categories={crossplane,managed,vault}

func (*AuthBackendRole) DeepCopy 

func (in *AuthBackendRole) DeepCopy() *AuthBackendRole

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendRole.

func (*AuthBackendRole) DeepCopyInto 

func (in *AuthBackendRole) DeepCopyInto(out *AuthBackendRole)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AuthBackendRole) DeepCopyObject 

func (in *AuthBackendRole) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*AuthBackendRole) GetCondition 

func (mg *AuthBackendRole) GetCondition(ct xpv1.ConditionType) xpv1.Condition

GetCondition of this AuthBackendRole.

func (*AuthBackendRole) GetConnectionDetailsMapping 

func (tr *AuthBackendRole) GetConnectionDetailsMapping() map[string]string

GetConnectionDetailsMapping for this AuthBackendRole

func (*AuthBackendRole) GetDeletionPolicy 

func (mg *AuthBackendRole) GetDeletionPolicy() xpv1.DeletionPolicy

GetDeletionPolicy of this AuthBackendRole.

func (*AuthBackendRole) GetID 

func (tr *AuthBackendRole) GetID() string

GetID returns ID of underlying Terraform resource of this AuthBackendRole

func (*AuthBackendRole) GetInitParameters added in v0.2.0 

func (tr *AuthBackendRole) GetInitParameters() (map[string]any, error)

GetInitParameters of this AuthBackendRole

func (*AuthBackendRole) GetManagementPolicies added in v0.2.0 

func (mg *AuthBackendRole) GetManagementPolicies() xpv1.ManagementPolicies

GetManagementPolicies of this AuthBackendRole.

func (*AuthBackendRole) GetObservation 

func (tr *AuthBackendRole) GetObservation() (map[string]any, error)

GetObservation of this AuthBackendRole

func (*AuthBackendRole) GetParameters 

func (tr *AuthBackendRole) GetParameters() (map[string]any, error)

GetParameters of this AuthBackendRole

func (*AuthBackendRole) GetProviderConfigReference 

func (mg *AuthBackendRole) GetProviderConfigReference() *xpv1.Reference

GetProviderConfigReference of this AuthBackendRole.

func (*AuthBackendRole) GetProviderReference 

func (mg *AuthBackendRole) GetProviderReference() *xpv1.Reference

GetProviderReference of this AuthBackendRole. Deprecated: Use GetProviderConfigReference.

func (*AuthBackendRole) GetPublishConnectionDetailsTo 

func (mg *AuthBackendRole) GetPublishConnectionDetailsTo() *xpv1.PublishConnectionDetailsTo

GetPublishConnectionDetailsTo of this AuthBackendRole.

func (*AuthBackendRole) GetTerraformResourceType 

func (mg *AuthBackendRole) GetTerraformResourceType() string

GetTerraformResourceType returns Terraform resource type for this AuthBackendRole

func (*AuthBackendRole) GetTerraformSchemaVersion 

func (tr *AuthBackendRole) GetTerraformSchemaVersion() int

GetTerraformSchemaVersion returns the associated Terraform schema version

func (*AuthBackendRole) GetWriteConnectionSecretToReference 

func (mg *AuthBackendRole) GetWriteConnectionSecretToReference() *xpv1.SecretReference

GetWriteConnectionSecretToReference of this AuthBackendRole.

func (*AuthBackendRole) LateInitialize 

func (tr *AuthBackendRole) LateInitialize(attrs []byte) (bool, error)

LateInitialize this AuthBackendRole using its observed tfState. returns True if there are any spec changes for the resource.

func (*AuthBackendRole) SetConditions 

func (mg *AuthBackendRole) SetConditions(c ...xpv1.Condition)

SetConditions of this AuthBackendRole.

func (*AuthBackendRole) SetDeletionPolicy 

func (mg *AuthBackendRole) SetDeletionPolicy(r xpv1.DeletionPolicy)

SetDeletionPolicy of this AuthBackendRole.

func (*AuthBackendRole) SetManagementPolicies added in v0.2.0 

func (mg *AuthBackendRole) SetManagementPolicies(r xpv1.ManagementPolicies)

SetManagementPolicies of this AuthBackendRole.

func (*AuthBackendRole) SetObservation 

func (tr *AuthBackendRole) SetObservation(obs map[string]any) error

SetObservation for this AuthBackendRole

func (*AuthBackendRole) SetParameters 

func (tr *AuthBackendRole) SetParameters(params map[string]any) error

SetParameters for this AuthBackendRole

func (*AuthBackendRole) SetProviderConfigReference 

func (mg *AuthBackendRole) SetProviderConfigReference(r *xpv1.Reference)

SetProviderConfigReference of this AuthBackendRole.

func (*AuthBackendRole) SetProviderReference 

func (mg *AuthBackendRole) SetProviderReference(r *xpv1.Reference)

SetProviderReference of this AuthBackendRole. Deprecated: Use SetProviderConfigReference.

func (*AuthBackendRole) SetPublishConnectionDetailsTo 

func (mg *AuthBackendRole) SetPublishConnectionDetailsTo(r *xpv1.PublishConnectionDetailsTo)

SetPublishConnectionDetailsTo of this AuthBackendRole.

func (*AuthBackendRole) SetWriteConnectionSecretToReference 

func (mg *AuthBackendRole) SetWriteConnectionSecretToReference(r *xpv1.SecretReference)

SetWriteConnectionSecretToReference of this AuthBackendRole.

type AuthBackendRoleInitParameters added in v0.2.0 

type AuthBackendRoleInitParameters struct {
	AddGroupAliases *bool `json:"addGroupAliases,omitempty" tf:"add_group_aliases,omitempty"`

	// A flag to determine if this role should allow GCE instances to authenticate by inferring service accounts from the GCE identity metadata token.
	AllowGceInference *bool `json:"allowGceInference,omitempty" tf:"allow_gce_inference,omitempty"`

	// Path to the mounted GCP auth backend
	Backend *string `json:"backend,omitempty" tf:"backend,omitempty"`

	// The instance groups that an authorized instance must belong to in order to be authenticated. If specified, either bound_zones or bound_regions must be set too.
	BoundInstanceGroups []*string `json:"boundInstanceGroups,omitempty" tf:"bound_instance_groups,omitempty"`

	// A comma-separated list of GCP labels formatted as "key:value" strings that must be set on authorized GCE instances. Because GCP labels are not currently ACL'd, we recommend that this be used in conjunction with other restrictions.
	BoundLabels []*string `json:"boundLabels,omitempty" tf:"bound_labels,omitempty"`

	// An array of GCP project IDs. Only entities belonging to this project can authenticate under the role.
	BoundProjects []*string `json:"boundProjects,omitempty" tf:"bound_projects,omitempty"`

	// The list of regions that a GCE instance must belong to in order to be authenticated. If bound_instance_groups is provided, it is assumed to be a regional group and the group must belong to this region. If bound_zones are provided, this attribute is ignored.
	BoundRegions []*string `json:"boundRegions,omitempty" tf:"bound_regions,omitempty"`

	// GCP Service Accounts allowed to issue tokens under this role. (Note: Required if role is iam)
	BoundServiceAccounts []*string `json:"boundServiceAccounts,omitempty" tf:"bound_service_accounts,omitempty"`

	// The list of zones that a GCE instance must belong to in order to be authenticated. If bound_instance_groups is provided, it is assumed to be a zonal group and the group must belong to this zone.
	BoundZones []*string `json:"boundZones,omitempty" tf:"bound_zones,omitempty"`

	// The number of seconds past the time of authentication that the login param JWT must expire within. For example, if a user attempts to login with a token that expires within an hour and this is set to 15 minutes, Vault will return an error prompting the user to create a new signed JWT with a shorter exp. The GCE metadata tokens currently do not allow the exp claim to be customized.
	MaxJwtExp *string `json:"maxJwtExp,omitempty" tf:"max_jwt_exp,omitempty"`

	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The namespace is always relative to the provider's configured namespace.
	// Available only for Vault Enterprise.
	// Target namespace. (requires Enterprise)
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// Name of the GCP role
	Role *string `json:"role,omitempty" tf:"role,omitempty"`

	// List of CIDR blocks; if set, specifies blocks of IP
	// addresses which can authenticate successfully, and ties the resulting token to these blocks
	// as well.
	// Specifies the blocks of IP addresses which are allowed to use the generated token
	TokenBoundCidrs []*string `json:"tokenBoundCidrs,omitempty" tf:"token_bound_cidrs,omitempty"`

	// If set, will encode an
	// explicit max TTL
	// onto the token in number of seconds. This is a hard cap even if token_ttl and
	// token_max_ttl would otherwise allow a renewal.
	// Generated Token's Explicit Maximum TTL in seconds
	TokenExplicitMaxTTL *float64 `json:"tokenExplicitMaxTtl,omitempty" tf:"token_explicit_max_ttl,omitempty"`

	// The maximum lifetime for generated tokens in number of seconds.
	// Its current value will be referenced at renewal time.
	// The maximum lifetime of the generated token
	TokenMaxTTL *float64 `json:"tokenMaxTtl,omitempty" tf:"token_max_ttl,omitempty"`

	// If set, the default policy will not be set on
	// generated tokens; otherwise it will be added to the policies set in token_policies.
	// If true, the 'default' policy will not automatically be added to generated tokens
	TokenNoDefaultPolicy *bool `json:"tokenNoDefaultPolicy,omitempty" tf:"token_no_default_policy,omitempty"`

	// The maximum number
	// of times a generated token may be used (within its lifetime); 0 means unlimited.
	// The maximum number of times a token may be used, a value of zero means unlimited
	TokenNumUses *float64 `json:"tokenNumUses,omitempty" tf:"token_num_uses,omitempty"`

	// If set, indicates that the
	// token generated using this role should never expire. The token should be renewed within the
	// duration specified by this value. At each renewal, the token's TTL will be set to the
	// value of this field. Specified in seconds.
	// Generated Token's Period
	TokenPeriod *float64 `json:"tokenPeriod,omitempty" tf:"token_period,omitempty"`

	// List of policies to encode onto generated tokens. Depending
	// on the auth method, this list may be supplemented by user/group/other values.
	// Generated Token's Policies
	TokenPolicies []*string `json:"tokenPolicies,omitempty" tf:"token_policies,omitempty"`

	// The incremental lifetime for generated tokens in number of seconds.
	// Its current value will be referenced at renewal time.
	// The initial ttl of the token to generate in seconds
	TokenTTL *float64 `json:"tokenTtl,omitempty" tf:"token_ttl,omitempty"`

	// The type of token that should be generated. Can be service,
	// batch, or default to use the mount's tuned default (which unless changed will be
	// service tokens). For token store roles, there are two additional possibilities:
	// default-service and default-batch which specify the type to return unless the client
	// requests a different type at generation time.
	// The type of token to generate, service or batch
	TokenType *string `json:"tokenType,omitempty" tf:"token_type,omitempty"`

	// Type of GCP authentication role (either gce or iam)
	Type *string `json:"type,omitempty" tf:"type,omitempty"`
}

func (*AuthBackendRoleInitParameters) DeepCopy added in v0.2.0 

func (in *AuthBackendRoleInitParameters) DeepCopy() *AuthBackendRoleInitParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendRoleInitParameters.

func (*AuthBackendRoleInitParameters) DeepCopyInto added in v0.2.0 

func (in *AuthBackendRoleInitParameters) DeepCopyInto(out *AuthBackendRoleInitParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuthBackendRoleList 

type AuthBackendRoleList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`
	Items           []AuthBackendRole `json:"items"`
}

AuthBackendRoleList contains a list of AuthBackendRoles

func (*AuthBackendRoleList) DeepCopy 

func (in *AuthBackendRoleList) DeepCopy() *AuthBackendRoleList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendRoleList.

func (*AuthBackendRoleList) DeepCopyInto 

func (in *AuthBackendRoleList) DeepCopyInto(out *AuthBackendRoleList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*AuthBackendRoleList) DeepCopyObject 

func (in *AuthBackendRoleList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*AuthBackendRoleList) GetItems 

func (l *AuthBackendRoleList) GetItems() []resource.Managed

GetItems of this AuthBackendRoleList.

type AuthBackendRoleObservation 

type AuthBackendRoleObservation struct {
	AddGroupAliases *bool `json:"addGroupAliases,omitempty" tf:"add_group_aliases,omitempty"`

	// A flag to determine if this role should allow GCE instances to authenticate by inferring service accounts from the GCE identity metadata token.
	AllowGceInference *bool `json:"allowGceInference,omitempty" tf:"allow_gce_inference,omitempty"`

	// Path to the mounted GCP auth backend
	Backend *string `json:"backend,omitempty" tf:"backend,omitempty"`

	// The instance groups that an authorized instance must belong to in order to be authenticated. If specified, either bound_zones or bound_regions must be set too.
	BoundInstanceGroups []*string `json:"boundInstanceGroups,omitempty" tf:"bound_instance_groups,omitempty"`

	// A comma-separated list of GCP labels formatted as "key:value" strings that must be set on authorized GCE instances. Because GCP labels are not currently ACL'd, we recommend that this be used in conjunction with other restrictions.
	BoundLabels []*string `json:"boundLabels,omitempty" tf:"bound_labels,omitempty"`

	// An array of GCP project IDs. Only entities belonging to this project can authenticate under the role.
	BoundProjects []*string `json:"boundProjects,omitempty" tf:"bound_projects,omitempty"`

	// The list of regions that a GCE instance must belong to in order to be authenticated. If bound_instance_groups is provided, it is assumed to be a regional group and the group must belong to this region. If bound_zones are provided, this attribute is ignored.
	BoundRegions []*string `json:"boundRegions,omitempty" tf:"bound_regions,omitempty"`

	// GCP Service Accounts allowed to issue tokens under this role. (Note: Required if role is iam)
	BoundServiceAccounts []*string `json:"boundServiceAccounts,omitempty" tf:"bound_service_accounts,omitempty"`

	// The list of zones that a GCE instance must belong to in order to be authenticated. If bound_instance_groups is provided, it is assumed to be a zonal group and the group must belong to this zone.
	BoundZones []*string `json:"boundZones,omitempty" tf:"bound_zones,omitempty"`

	ID *string `json:"id,omitempty" tf:"id,omitempty"`

	// The number of seconds past the time of authentication that the login param JWT must expire within. For example, if a user attempts to login with a token that expires within an hour and this is set to 15 minutes, Vault will return an error prompting the user to create a new signed JWT with a shorter exp. The GCE metadata tokens currently do not allow the exp claim to be customized.
	MaxJwtExp *string `json:"maxJwtExp,omitempty" tf:"max_jwt_exp,omitempty"`

	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The namespace is always relative to the provider's configured namespace.
	// Available only for Vault Enterprise.
	// Target namespace. (requires Enterprise)
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// Name of the GCP role
	Role *string `json:"role,omitempty" tf:"role,omitempty"`

	// List of CIDR blocks; if set, specifies blocks of IP
	// addresses which can authenticate successfully, and ties the resulting token to these blocks
	// as well.
	// Specifies the blocks of IP addresses which are allowed to use the generated token
	TokenBoundCidrs []*string `json:"tokenBoundCidrs,omitempty" tf:"token_bound_cidrs,omitempty"`

	// If set, will encode an
	// explicit max TTL
	// onto the token in number of seconds. This is a hard cap even if token_ttl and
	// token_max_ttl would otherwise allow a renewal.
	// Generated Token's Explicit Maximum TTL in seconds
	TokenExplicitMaxTTL *float64 `json:"tokenExplicitMaxTtl,omitempty" tf:"token_explicit_max_ttl,omitempty"`

	// The maximum lifetime for generated tokens in number of seconds.
	// Its current value will be referenced at renewal time.
	// The maximum lifetime of the generated token
	TokenMaxTTL *float64 `json:"tokenMaxTtl,omitempty" tf:"token_max_ttl,omitempty"`

	// If set, the default policy will not be set on
	// generated tokens; otherwise it will be added to the policies set in token_policies.
	// If true, the 'default' policy will not automatically be added to generated tokens
	TokenNoDefaultPolicy *bool `json:"tokenNoDefaultPolicy,omitempty" tf:"token_no_default_policy,omitempty"`

	// The maximum number
	// of times a generated token may be used (within its lifetime); 0 means unlimited.
	// The maximum number of times a token may be used, a value of zero means unlimited
	TokenNumUses *float64 `json:"tokenNumUses,omitempty" tf:"token_num_uses,omitempty"`

	// If set, indicates that the
	// token generated using this role should never expire. The token should be renewed within the
	// duration specified by this value. At each renewal, the token's TTL will be set to the
	// value of this field. Specified in seconds.
	// Generated Token's Period
	TokenPeriod *float64 `json:"tokenPeriod,omitempty" tf:"token_period,omitempty"`

	// List of policies to encode onto generated tokens. Depending
	// on the auth method, this list may be supplemented by user/group/other values.
	// Generated Token's Policies
	TokenPolicies []*string `json:"tokenPolicies,omitempty" tf:"token_policies,omitempty"`

	// The incremental lifetime for generated tokens in number of seconds.
	// Its current value will be referenced at renewal time.
	// The initial ttl of the token to generate in seconds
	TokenTTL *float64 `json:"tokenTtl,omitempty" tf:"token_ttl,omitempty"`

	// The type of token that should be generated. Can be service,
	// batch, or default to use the mount's tuned default (which unless changed will be
	// service tokens). For token store roles, there are two additional possibilities:
	// default-service and default-batch which specify the type to return unless the client
	// requests a different type at generation time.
	// The type of token to generate, service or batch
	TokenType *string `json:"tokenType,omitempty" tf:"token_type,omitempty"`

	// Type of GCP authentication role (either gce or iam)
	Type *string `json:"type,omitempty" tf:"type,omitempty"`
}

func (*AuthBackendRoleObservation) DeepCopy 

func (in *AuthBackendRoleObservation) DeepCopy() *AuthBackendRoleObservation

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendRoleObservation.

func (*AuthBackendRoleObservation) DeepCopyInto 

func (in *AuthBackendRoleObservation) DeepCopyInto(out *AuthBackendRoleObservation)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuthBackendRoleParameters 

type AuthBackendRoleParameters struct {

	// +kubebuilder:validation:Optional
	AddGroupAliases *bool `json:"addGroupAliases,omitempty" tf:"add_group_aliases,omitempty"`

	// A flag to determine if this role should allow GCE instances to authenticate by inferring service accounts from the GCE identity metadata token.
	// +kubebuilder:validation:Optional
	AllowGceInference *bool `json:"allowGceInference,omitempty" tf:"allow_gce_inference,omitempty"`

	// Path to the mounted GCP auth backend
	// +kubebuilder:validation:Optional
	Backend *string `json:"backend,omitempty" tf:"backend,omitempty"`

	// The instance groups that an authorized instance must belong to in order to be authenticated. If specified, either bound_zones or bound_regions must be set too.
	// +kubebuilder:validation:Optional
	BoundInstanceGroups []*string `json:"boundInstanceGroups,omitempty" tf:"bound_instance_groups,omitempty"`

	// A comma-separated list of GCP labels formatted as "key:value" strings that must be set on authorized GCE instances. Because GCP labels are not currently ACL'd, we recommend that this be used in conjunction with other restrictions.
	// +kubebuilder:validation:Optional
	BoundLabels []*string `json:"boundLabels,omitempty" tf:"bound_labels,omitempty"`

	// An array of GCP project IDs. Only entities belonging to this project can authenticate under the role.
	// +kubebuilder:validation:Optional
	BoundProjects []*string `json:"boundProjects,omitempty" tf:"bound_projects,omitempty"`

	// The list of regions that a GCE instance must belong to in order to be authenticated. If bound_instance_groups is provided, it is assumed to be a regional group and the group must belong to this region. If bound_zones are provided, this attribute is ignored.
	// +kubebuilder:validation:Optional
	BoundRegions []*string `json:"boundRegions,omitempty" tf:"bound_regions,omitempty"`

	// GCP Service Accounts allowed to issue tokens under this role. (Note: Required if role is iam)
	// +kubebuilder:validation:Optional
	BoundServiceAccounts []*string `json:"boundServiceAccounts,omitempty" tf:"bound_service_accounts,omitempty"`

	// The list of zones that a GCE instance must belong to in order to be authenticated. If bound_instance_groups is provided, it is assumed to be a zonal group and the group must belong to this zone.
	// +kubebuilder:validation:Optional
	BoundZones []*string `json:"boundZones,omitempty" tf:"bound_zones,omitempty"`

	// The number of seconds past the time of authentication that the login param JWT must expire within. For example, if a user attempts to login with a token that expires within an hour and this is set to 15 minutes, Vault will return an error prompting the user to create a new signed JWT with a shorter exp. The GCE metadata tokens currently do not allow the exp claim to be customized.
	// +kubebuilder:validation:Optional
	MaxJwtExp *string `json:"maxJwtExp,omitempty" tf:"max_jwt_exp,omitempty"`

	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The namespace is always relative to the provider's configured namespace.
	// Available only for Vault Enterprise.
	// Target namespace. (requires Enterprise)
	// +kubebuilder:validation:Optional
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// Name of the GCP role
	// +kubebuilder:validation:Optional
	Role *string `json:"role,omitempty" tf:"role,omitempty"`

	// List of CIDR blocks; if set, specifies blocks of IP
	// addresses which can authenticate successfully, and ties the resulting token to these blocks
	// as well.
	// Specifies the blocks of IP addresses which are allowed to use the generated token
	// +kubebuilder:validation:Optional
	TokenBoundCidrs []*string `json:"tokenBoundCidrs,omitempty" tf:"token_bound_cidrs,omitempty"`

	// If set, will encode an
	// explicit max TTL
	// onto the token in number of seconds. This is a hard cap even if token_ttl and
	// token_max_ttl would otherwise allow a renewal.
	// Generated Token's Explicit Maximum TTL in seconds
	// +kubebuilder:validation:Optional
	TokenExplicitMaxTTL *float64 `json:"tokenExplicitMaxTtl,omitempty" tf:"token_explicit_max_ttl,omitempty"`

	// The maximum lifetime for generated tokens in number of seconds.
	// Its current value will be referenced at renewal time.
	// The maximum lifetime of the generated token
	// +kubebuilder:validation:Optional
	TokenMaxTTL *float64 `json:"tokenMaxTtl,omitempty" tf:"token_max_ttl,omitempty"`

	// If set, the default policy will not be set on
	// generated tokens; otherwise it will be added to the policies set in token_policies.
	// If true, the 'default' policy will not automatically be added to generated tokens
	// +kubebuilder:validation:Optional
	TokenNoDefaultPolicy *bool `json:"tokenNoDefaultPolicy,omitempty" tf:"token_no_default_policy,omitempty"`

	// The maximum number
	// of times a generated token may be used (within its lifetime); 0 means unlimited.
	// The maximum number of times a token may be used, a value of zero means unlimited
	// +kubebuilder:validation:Optional
	TokenNumUses *float64 `json:"tokenNumUses,omitempty" tf:"token_num_uses,omitempty"`

	// If set, indicates that the
	// token generated using this role should never expire. The token should be renewed within the
	// duration specified by this value. At each renewal, the token's TTL will be set to the
	// value of this field. Specified in seconds.
	// Generated Token's Period
	// +kubebuilder:validation:Optional
	TokenPeriod *float64 `json:"tokenPeriod,omitempty" tf:"token_period,omitempty"`

	// List of policies to encode onto generated tokens. Depending
	// on the auth method, this list may be supplemented by user/group/other values.
	// Generated Token's Policies
	// +kubebuilder:validation:Optional
	TokenPolicies []*string `json:"tokenPolicies,omitempty" tf:"token_policies,omitempty"`

	// The incremental lifetime for generated tokens in number of seconds.
	// Its current value will be referenced at renewal time.
	// The initial ttl of the token to generate in seconds
	// +kubebuilder:validation:Optional
	TokenTTL *float64 `json:"tokenTtl,omitempty" tf:"token_ttl,omitempty"`

	// The type of token that should be generated. Can be service,
	// batch, or default to use the mount's tuned default (which unless changed will be
	// service tokens). For token store roles, there are two additional possibilities:
	// default-service and default-batch which specify the type to return unless the client
	// requests a different type at generation time.
	// The type of token to generate, service or batch
	// +kubebuilder:validation:Optional
	TokenType *string `json:"tokenType,omitempty" tf:"token_type,omitempty"`

	// Type of GCP authentication role (either gce or iam)
	// +kubebuilder:validation:Optional
	Type *string `json:"type,omitempty" tf:"type,omitempty"`
}

func (*AuthBackendRoleParameters) DeepCopy 

func (in *AuthBackendRoleParameters) DeepCopy() *AuthBackendRoleParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendRoleParameters.

func (*AuthBackendRoleParameters) DeepCopyInto 

func (in *AuthBackendRoleParameters) DeepCopyInto(out *AuthBackendRoleParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuthBackendRoleSpec 

type AuthBackendRoleSpec struct {
	v1.ResourceSpec `json:",inline"`
	ForProvider     AuthBackendRoleParameters `json:"forProvider"`
	// THIS IS AN ALPHA FIELD. Do not use it in production. It is not honored
	// unless the relevant Crossplane feature flag is enabled, and may be
	// changed or removed without notice.
	// InitProvider holds the same fields as ForProvider, with the exception
	// of Identifier and other resource reference fields. The fields that are
	// in InitProvider are merged into ForProvider when the resource is created.
	// The same fields are also added to the terraform ignore_changes hook, to
	// avoid updating them after creation. This is useful for fields that are
	// required on creation, but we do not desire to update them after creation,
	// for example because of an external controller is managing them, like an
	// autoscaler.
	InitProvider AuthBackendRoleInitParameters `json:"initProvider,omitempty"`
}

AuthBackendRoleSpec defines the desired state of AuthBackendRole

func (*AuthBackendRoleSpec) DeepCopy 

func (in *AuthBackendRoleSpec) DeepCopy() *AuthBackendRoleSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendRoleSpec.

func (*AuthBackendRoleSpec) DeepCopyInto 

func (in *AuthBackendRoleSpec) DeepCopyInto(out *AuthBackendRoleSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuthBackendRoleStatus 

type AuthBackendRoleStatus struct {
	v1.ResourceStatus `json:",inline"`
	AtProvider        AuthBackendRoleObservation `json:"atProvider,omitempty"`
}

AuthBackendRoleStatus defines the observed state of AuthBackendRole.

func (*AuthBackendRoleStatus) DeepCopy 

func (in *AuthBackendRoleStatus) DeepCopy() *AuthBackendRoleStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendRoleStatus.

func (*AuthBackendRoleStatus) DeepCopyInto 

func (in *AuthBackendRoleStatus) DeepCopyInto(out *AuthBackendRoleStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuthBackendSpec 

type AuthBackendSpec struct {
	v1.ResourceSpec `json:",inline"`
	ForProvider     AuthBackendParameters `json:"forProvider"`
	// THIS IS AN ALPHA FIELD. Do not use it in production. It is not honored
	// unless the relevant Crossplane feature flag is enabled, and may be
	// changed or removed without notice.
	// InitProvider holds the same fields as ForProvider, with the exception
	// of Identifier and other resource reference fields. The fields that are
	// in InitProvider are merged into ForProvider when the resource is created.
	// The same fields are also added to the terraform ignore_changes hook, to
	// avoid updating them after creation. This is useful for fields that are
	// required on creation, but we do not desire to update them after creation,
	// for example because of an external controller is managing them, like an
	// autoscaler.
	InitProvider AuthBackendInitParameters `json:"initProvider,omitempty"`
}

AuthBackendSpec defines the desired state of AuthBackend

func (*AuthBackendSpec) DeepCopy 

func (in *AuthBackendSpec) DeepCopy() *AuthBackendSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendSpec.

func (*AuthBackendSpec) DeepCopyInto 

func (in *AuthBackendSpec) DeepCopyInto(out *AuthBackendSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type AuthBackendStatus 

type AuthBackendStatus struct {
	v1.ResourceStatus `json:",inline"`
	AtProvider        AuthBackendObservation `json:"atProvider,omitempty"`
}

AuthBackendStatus defines the observed state of AuthBackend.

func (*AuthBackendStatus) DeepCopy 

func (in *AuthBackendStatus) DeepCopy() *AuthBackendStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendStatus.

func (*AuthBackendStatus) DeepCopyInto 

func (in *AuthBackendStatus) DeepCopyInto(out *AuthBackendStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type BindingInitParameters added in v0.2.0 

type BindingInitParameters struct {

	// Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different formats.
	// Resource name
	Resource *string `json:"resource,omitempty" tf:"resource,omitempty"`

	// List of GCP IAM roles for the resource.
	// List of roles to apply to the resource
	Roles []*string `json:"roles,omitempty" tf:"roles,omitempty"`
}

func (*BindingInitParameters) DeepCopy added in v0.2.0 

func (in *BindingInitParameters) DeepCopy() *BindingInitParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new BindingInitParameters.

func (*BindingInitParameters) DeepCopyInto added in v0.2.0 

func (in *BindingInitParameters) DeepCopyInto(out *BindingInitParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type BindingObservation 

type BindingObservation struct {

	// Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different formats.
	// Resource name
	Resource *string `json:"resource,omitempty" tf:"resource,omitempty"`

	// List of GCP IAM roles for the resource.
	// List of roles to apply to the resource
	Roles []*string `json:"roles,omitempty" tf:"roles,omitempty"`
}

func (*BindingObservation) DeepCopy 

func (in *BindingObservation) DeepCopy() *BindingObservation

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new BindingObservation.

func (*BindingObservation) DeepCopyInto 

func (in *BindingObservation) DeepCopyInto(out *BindingObservation)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type BindingParameters 

type BindingParameters struct {

	// Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different formats.
	// Resource name
	// +kubebuilder:validation:Optional
	Resource *string `json:"resource,omitempty" tf:"resource,omitempty"`

	// List of GCP IAM roles for the resource.
	// List of roles to apply to the resource
	// +kubebuilder:validation:Optional
	Roles []*string `json:"roles,omitempty" tf:"roles,omitempty"`
}

func (*BindingParameters) DeepCopy 

func (in *BindingParameters) DeepCopy() *BindingParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new BindingParameters.

func (*BindingParameters) DeepCopyInto 

func (in *BindingParameters) DeepCopyInto(out *BindingParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type CustomEndpointInitParameters added in v0.2.0 

type CustomEndpointInitParameters struct {

	// Replaces the service endpoint used in API requests to https://www.googleapis.com.
	API *string `json:"api,omitempty" tf:"api,omitempty"`

	// Replaces the service endpoint used in API requests to `https://compute.googleapis.com`.
	Compute *string `json:"compute,omitempty" tf:"compute,omitempty"`

	// Replaces the service endpoint used in API requests to `https://cloudresourcemanager.googleapis.com`.
	Crm *string `json:"crm,omitempty" tf:"crm,omitempty"`

	// Replaces the service endpoint used in API requests to `https://iam.googleapis.com`.
	IAM *string `json:"iam,omitempty" tf:"iam,omitempty"`
}

func (*CustomEndpointInitParameters) DeepCopy added in v0.2.0 

func (in *CustomEndpointInitParameters) DeepCopy() *CustomEndpointInitParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new CustomEndpointInitParameters.

func (*CustomEndpointInitParameters) DeepCopyInto added in v0.2.0 

func (in *CustomEndpointInitParameters) DeepCopyInto(out *CustomEndpointInitParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type CustomEndpointObservation 

type CustomEndpointObservation struct {

	// Replaces the service endpoint used in API requests to https://www.googleapis.com.
	API *string `json:"api,omitempty" tf:"api,omitempty"`

	// Replaces the service endpoint used in API requests to `https://compute.googleapis.com`.
	Compute *string `json:"compute,omitempty" tf:"compute,omitempty"`

	// Replaces the service endpoint used in API requests to `https://cloudresourcemanager.googleapis.com`.
	Crm *string `json:"crm,omitempty" tf:"crm,omitempty"`

	// Replaces the service endpoint used in API requests to `https://iam.googleapis.com`.
	IAM *string `json:"iam,omitempty" tf:"iam,omitempty"`
}

func (*CustomEndpointObservation) DeepCopy 

func (in *CustomEndpointObservation) DeepCopy() *CustomEndpointObservation

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new CustomEndpointObservation.

func (*CustomEndpointObservation) DeepCopyInto 

func (in *CustomEndpointObservation) DeepCopyInto(out *CustomEndpointObservation)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type CustomEndpointParameters 

type CustomEndpointParameters struct {

	// Replaces the service endpoint used in API requests to https://www.googleapis.com.
	// +kubebuilder:validation:Optional
	API *string `json:"api,omitempty" tf:"api,omitempty"`

	// Replaces the service endpoint used in API requests to `https://compute.googleapis.com`.
	// +kubebuilder:validation:Optional
	Compute *string `json:"compute,omitempty" tf:"compute,omitempty"`

	// Replaces the service endpoint used in API requests to `https://cloudresourcemanager.googleapis.com`.
	// +kubebuilder:validation:Optional
	Crm *string `json:"crm,omitempty" tf:"crm,omitempty"`

	// Replaces the service endpoint used in API requests to `https://iam.googleapis.com`.
	// +kubebuilder:validation:Optional
	IAM *string `json:"iam,omitempty" tf:"iam,omitempty"`
}

func (*CustomEndpointParameters) DeepCopy 

func (in *CustomEndpointParameters) DeepCopy() *CustomEndpointParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new CustomEndpointParameters.

func (*CustomEndpointParameters) DeepCopyInto 

func (in *CustomEndpointParameters) DeepCopyInto(out *CustomEndpointParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretBackend 

type SecretBackend struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty"`
	Spec              SecretBackendSpec   `json:"spec"`
	Status            SecretBackendStatus `json:"status,omitempty"`
}

SecretBackend is the Schema for the SecretBackends API. Creates an GCP secret backend for Vault. +kubebuilder:printcolumn:name="READY",type="string",JSONPath=".status.conditions[?(@.type=='Ready')].status" +kubebuilder:printcolumn:name="SYNCED",type="string",JSONPath=".status.conditions[?(@.type=='Synced')].status" +kubebuilder:printcolumn:name="EXTERNAL-NAME",type="string",JSONPath=".metadata.annotations.crossplane\\.io/external-name" +kubebuilder:printcolumn:name="AGE",type="date",JSONPath=".metadata.creationTimestamp" +kubebuilder:subresource:status +kubebuilder:resource:scope=Cluster,categories={crossplane,managed,vault}

func (*SecretBackend) DeepCopy 

func (in *SecretBackend) DeepCopy() *SecretBackend

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretBackend.

func (*SecretBackend) DeepCopyInto 

func (in *SecretBackend) DeepCopyInto(out *SecretBackend)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*SecretBackend) DeepCopyObject 

func (in *SecretBackend) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*SecretBackend) GetCondition 

func (mg *SecretBackend) GetCondition(ct xpv1.ConditionType) xpv1.Condition

GetCondition of this SecretBackend.

func (*SecretBackend) GetConnectionDetailsMapping 

func (tr *SecretBackend) GetConnectionDetailsMapping() map[string]string

GetConnectionDetailsMapping for this SecretBackend

func (*SecretBackend) GetDeletionPolicy 

func (mg *SecretBackend) GetDeletionPolicy() xpv1.DeletionPolicy

GetDeletionPolicy of this SecretBackend.

func (*SecretBackend) GetID 

func (tr *SecretBackend) GetID() string

GetID returns ID of underlying Terraform resource of this SecretBackend

func (*SecretBackend) GetInitParameters added in v0.2.0 

func (tr *SecretBackend) GetInitParameters() (map[string]any, error)

GetInitParameters of this SecretBackend

func (*SecretBackend) GetManagementPolicies added in v0.2.0 

func (mg *SecretBackend) GetManagementPolicies() xpv1.ManagementPolicies

GetManagementPolicies of this SecretBackend.

func (*SecretBackend) GetObservation 

func (tr *SecretBackend) GetObservation() (map[string]any, error)

GetObservation of this SecretBackend

func (*SecretBackend) GetParameters 

func (tr *SecretBackend) GetParameters() (map[string]any, error)

GetParameters of this SecretBackend

func (*SecretBackend) GetProviderConfigReference 

func (mg *SecretBackend) GetProviderConfigReference() *xpv1.Reference

GetProviderConfigReference of this SecretBackend.

func (*SecretBackend) GetProviderReference 

func (mg *SecretBackend) GetProviderReference() *xpv1.Reference

GetProviderReference of this SecretBackend. Deprecated: Use GetProviderConfigReference.

func (*SecretBackend) GetPublishConnectionDetailsTo 

func (mg *SecretBackend) GetPublishConnectionDetailsTo() *xpv1.PublishConnectionDetailsTo

GetPublishConnectionDetailsTo of this SecretBackend.

func (*SecretBackend) GetTerraformResourceType 

func (mg *SecretBackend) GetTerraformResourceType() string

GetTerraformResourceType returns Terraform resource type for this SecretBackend

func (*SecretBackend) GetTerraformSchemaVersion 

func (tr *SecretBackend) GetTerraformSchemaVersion() int

GetTerraformSchemaVersion returns the associated Terraform schema version

func (*SecretBackend) GetWriteConnectionSecretToReference 

func (mg *SecretBackend) GetWriteConnectionSecretToReference() *xpv1.SecretReference

GetWriteConnectionSecretToReference of this SecretBackend.

func (*SecretBackend) LateInitialize 

func (tr *SecretBackend) LateInitialize(attrs []byte) (bool, error)

LateInitialize this SecretBackend using its observed tfState. returns True if there are any spec changes for the resource.

func (*SecretBackend) SetConditions 

func (mg *SecretBackend) SetConditions(c ...xpv1.Condition)

SetConditions of this SecretBackend.

func (*SecretBackend) SetDeletionPolicy 

func (mg *SecretBackend) SetDeletionPolicy(r xpv1.DeletionPolicy)

SetDeletionPolicy of this SecretBackend.

func (*SecretBackend) SetManagementPolicies added in v0.2.0 

func (mg *SecretBackend) SetManagementPolicies(r xpv1.ManagementPolicies)

SetManagementPolicies of this SecretBackend.

func (*SecretBackend) SetObservation 

func (tr *SecretBackend) SetObservation(obs map[string]any) error

SetObservation for this SecretBackend

func (*SecretBackend) SetParameters 

func (tr *SecretBackend) SetParameters(params map[string]any) error

SetParameters for this SecretBackend

func (*SecretBackend) SetProviderConfigReference 

func (mg *SecretBackend) SetProviderConfigReference(r *xpv1.Reference)

SetProviderConfigReference of this SecretBackend.

func (*SecretBackend) SetProviderReference 

func (mg *SecretBackend) SetProviderReference(r *xpv1.Reference)

SetProviderReference of this SecretBackend. Deprecated: Use SetProviderConfigReference.

func (*SecretBackend) SetPublishConnectionDetailsTo 

func (mg *SecretBackend) SetPublishConnectionDetailsTo(r *xpv1.PublishConnectionDetailsTo)

SetPublishConnectionDetailsTo of this SecretBackend.

func (*SecretBackend) SetWriteConnectionSecretToReference 

func (mg *SecretBackend) SetWriteConnectionSecretToReference(r *xpv1.SecretReference)

SetWriteConnectionSecretToReference of this SecretBackend.

type SecretBackendInitParameters added in v0.2.0 

type SecretBackendInitParameters struct {

	// The default TTL for credentials
	// issued by this backend. Defaults to '0'.
	// Default lease duration for secrets in seconds
	DefaultLeaseTTLSeconds *float64 `json:"defaultLeaseTtlSeconds,omitempty" tf:"default_lease_ttl_seconds,omitempty"`

	// A human-friendly description for this backend.
	// Human-friendly description of the mount for the backend.
	Description *string `json:"description,omitempty" tf:"description,omitempty"`

	// If set, opts out of mount migration on path updates.
	// See here for more info on Mount Migration
	// If set, opts out of mount migration on path updates.
	DisableRemount *bool `json:"disableRemount,omitempty" tf:"disable_remount,omitempty"`

	// Boolean flag that can be explicitly set to true to enforce local mount in HA environment
	// Local mount flag that can be explicitly set to true to enforce local mount in HA environment
	Local *bool `json:"local,omitempty" tf:"local,omitempty"`

	// The maximum TTL that can be requested
	// for credentials issued by this backend. Defaults to '0'.
	// Maximum possible lease duration for secrets in seconds
	MaxLeaseTTLSeconds *float64 `json:"maxLeaseTtlSeconds,omitempty" tf:"max_lease_ttl_seconds,omitempty"`

	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The namespace is always relative to the provider's configured namespace.
	// Available only for Vault Enterprise.
	// Target namespace. (requires Enterprise)
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// The unique path this backend should be mounted at. Must
	// not begin or end with a /. Defaults to gcp.
	// Path to mount the backend at.
	Path *string `json:"path,omitempty" tf:"path,omitempty"`
}

func (*SecretBackendInitParameters) DeepCopy added in v0.2.0 

func (in *SecretBackendInitParameters) DeepCopy() *SecretBackendInitParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretBackendInitParameters.

func (*SecretBackendInitParameters) DeepCopyInto added in v0.2.0 

func (in *SecretBackendInitParameters) DeepCopyInto(out *SecretBackendInitParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretBackendList 

type SecretBackendList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`
	Items           []SecretBackend `json:"items"`
}

SecretBackendList contains a list of SecretBackends

func (*SecretBackendList) DeepCopy 

func (in *SecretBackendList) DeepCopy() *SecretBackendList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretBackendList.

func (*SecretBackendList) DeepCopyInto 

func (in *SecretBackendList) DeepCopyInto(out *SecretBackendList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*SecretBackendList) DeepCopyObject 

func (in *SecretBackendList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*SecretBackendList) GetItems 

func (l *SecretBackendList) GetItems() []resource.Managed

GetItems of this SecretBackendList.

type SecretBackendObservation 

type SecretBackendObservation struct {

	// The default TTL for credentials
	// issued by this backend. Defaults to '0'.
	// Default lease duration for secrets in seconds
	DefaultLeaseTTLSeconds *float64 `json:"defaultLeaseTtlSeconds,omitempty" tf:"default_lease_ttl_seconds,omitempty"`

	// A human-friendly description for this backend.
	// Human-friendly description of the mount for the backend.
	Description *string `json:"description,omitempty" tf:"description,omitempty"`

	// If set, opts out of mount migration on path updates.
	// See here for more info on Mount Migration
	// If set, opts out of mount migration on path updates.
	DisableRemount *bool `json:"disableRemount,omitempty" tf:"disable_remount,omitempty"`

	ID *string `json:"id,omitempty" tf:"id,omitempty"`

	// Boolean flag that can be explicitly set to true to enforce local mount in HA environment
	// Local mount flag that can be explicitly set to true to enforce local mount in HA environment
	Local *bool `json:"local,omitempty" tf:"local,omitempty"`

	// The maximum TTL that can be requested
	// for credentials issued by this backend. Defaults to '0'.
	// Maximum possible lease duration for secrets in seconds
	MaxLeaseTTLSeconds *float64 `json:"maxLeaseTtlSeconds,omitempty" tf:"max_lease_ttl_seconds,omitempty"`

	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The namespace is always relative to the provider's configured namespace.
	// Available only for Vault Enterprise.
	// Target namespace. (requires Enterprise)
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// The unique path this backend should be mounted at. Must
	// not begin or end with a /. Defaults to gcp.
	// Path to mount the backend at.
	Path *string `json:"path,omitempty" tf:"path,omitempty"`
}

func (*SecretBackendObservation) DeepCopy 

func (in *SecretBackendObservation) DeepCopy() *SecretBackendObservation

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretBackendObservation.

func (*SecretBackendObservation) DeepCopyInto 

func (in *SecretBackendObservation) DeepCopyInto(out *SecretBackendObservation)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretBackendParameters 

type SecretBackendParameters struct {

	// The GCP service account credentials in JSON format.
	// JSON-encoded credentials to use to connect to GCP
	// +kubebuilder:validation:Optional
	CredentialsSecretRef *v1.SecretKeySelector `json:"credentialsSecretRef,omitempty" tf:"-"`

	// The default TTL for credentials
	// issued by this backend. Defaults to '0'.
	// Default lease duration for secrets in seconds
	// +kubebuilder:validation:Optional
	DefaultLeaseTTLSeconds *float64 `json:"defaultLeaseTtlSeconds,omitempty" tf:"default_lease_ttl_seconds,omitempty"`

	// A human-friendly description for this backend.
	// Human-friendly description of the mount for the backend.
	// +kubebuilder:validation:Optional
	Description *string `json:"description,omitempty" tf:"description,omitempty"`

	// If set, opts out of mount migration on path updates.
	// See here for more info on Mount Migration
	// If set, opts out of mount migration on path updates.
	// +kubebuilder:validation:Optional
	DisableRemount *bool `json:"disableRemount,omitempty" tf:"disable_remount,omitempty"`

	// Boolean flag that can be explicitly set to true to enforce local mount in HA environment
	// Local mount flag that can be explicitly set to true to enforce local mount in HA environment
	// +kubebuilder:validation:Optional
	Local *bool `json:"local,omitempty" tf:"local,omitempty"`

	// The maximum TTL that can be requested
	// for credentials issued by this backend. Defaults to '0'.
	// Maximum possible lease duration for secrets in seconds
	// +kubebuilder:validation:Optional
	MaxLeaseTTLSeconds *float64 `json:"maxLeaseTtlSeconds,omitempty" tf:"max_lease_ttl_seconds,omitempty"`

	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The namespace is always relative to the provider's configured namespace.
	// Available only for Vault Enterprise.
	// Target namespace. (requires Enterprise)
	// +kubebuilder:validation:Optional
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// The unique path this backend should be mounted at. Must
	// not begin or end with a /. Defaults to gcp.
	// Path to mount the backend at.
	// +kubebuilder:validation:Optional
	Path *string `json:"path,omitempty" tf:"path,omitempty"`
}

func (*SecretBackendParameters) DeepCopy 

func (in *SecretBackendParameters) DeepCopy() *SecretBackendParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretBackendParameters.

func (*SecretBackendParameters) DeepCopyInto 

func (in *SecretBackendParameters) DeepCopyInto(out *SecretBackendParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretBackendSpec 

type SecretBackendSpec struct {
	v1.ResourceSpec `json:",inline"`
	ForProvider     SecretBackendParameters `json:"forProvider"`
	// THIS IS AN ALPHA FIELD. Do not use it in production. It is not honored
	// unless the relevant Crossplane feature flag is enabled, and may be
	// changed or removed without notice.
	// InitProvider holds the same fields as ForProvider, with the exception
	// of Identifier and other resource reference fields. The fields that are
	// in InitProvider are merged into ForProvider when the resource is created.
	// The same fields are also added to the terraform ignore_changes hook, to
	// avoid updating them after creation. This is useful for fields that are
	// required on creation, but we do not desire to update them after creation,
	// for example because of an external controller is managing them, like an
	// autoscaler.
	InitProvider SecretBackendInitParameters `json:"initProvider,omitempty"`
}

SecretBackendSpec defines the desired state of SecretBackend

func (*SecretBackendSpec) DeepCopy 

func (in *SecretBackendSpec) DeepCopy() *SecretBackendSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretBackendSpec.

func (*SecretBackendSpec) DeepCopyInto 

func (in *SecretBackendSpec) DeepCopyInto(out *SecretBackendSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretBackendStatus 

type SecretBackendStatus struct {
	v1.ResourceStatus `json:",inline"`
	AtProvider        SecretBackendObservation `json:"atProvider,omitempty"`
}

SecretBackendStatus defines the observed state of SecretBackend.

func (*SecretBackendStatus) DeepCopy 

func (in *SecretBackendStatus) DeepCopy() *SecretBackendStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretBackendStatus.

func (*SecretBackendStatus) DeepCopyInto 

func (in *SecretBackendStatus) DeepCopyInto(out *SecretBackendStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretImpersonatedAccount 

type SecretImpersonatedAccount struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty"`
	// +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.backend) || has(self.initProvider.backend)",message="backend is a required parameter"
	// +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.impersonatedAccount) || has(self.initProvider.impersonatedAccount)",message="impersonatedAccount is a required parameter"
	// +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.serviceAccountEmail) || has(self.initProvider.serviceAccountEmail)",message="serviceAccountEmail is a required parameter"
	Spec   SecretImpersonatedAccountSpec   `json:"spec"`
	Status SecretImpersonatedAccountStatus `json:"status,omitempty"`
}

SecretImpersonatedAccount is the Schema for the SecretImpersonatedAccounts API. Creates a Impersonated Account for the GCP Secret Backend for Vault. +kubebuilder:printcolumn:name="READY",type="string",JSONPath=".status.conditions[?(@.type=='Ready')].status" +kubebuilder:printcolumn:name="SYNCED",type="string",JSONPath=".status.conditions[?(@.type=='Synced')].status" +kubebuilder:printcolumn:name="EXTERNAL-NAME",type="string",JSONPath=".metadata.annotations.crossplane\\.io/external-name" +kubebuilder:printcolumn:name="AGE",type="date",JSONPath=".metadata.creationTimestamp" +kubebuilder:subresource:status +kubebuilder:resource:scope=Cluster,categories={crossplane,managed,vault}

func (*SecretImpersonatedAccount) DeepCopy 

func (in *SecretImpersonatedAccount) DeepCopy() *SecretImpersonatedAccount

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretImpersonatedAccount.

func (*SecretImpersonatedAccount) DeepCopyInto 

func (in *SecretImpersonatedAccount) DeepCopyInto(out *SecretImpersonatedAccount)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*SecretImpersonatedAccount) DeepCopyObject 

func (in *SecretImpersonatedAccount) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*SecretImpersonatedAccount) GetCondition 

func (mg *SecretImpersonatedAccount) GetCondition(ct xpv1.ConditionType) xpv1.Condition

GetCondition of this SecretImpersonatedAccount.

func (*SecretImpersonatedAccount) GetConnectionDetailsMapping 

func (tr *SecretImpersonatedAccount) GetConnectionDetailsMapping() map[string]string

GetConnectionDetailsMapping for this SecretImpersonatedAccount

func (*SecretImpersonatedAccount) GetDeletionPolicy 

func (mg *SecretImpersonatedAccount) GetDeletionPolicy() xpv1.DeletionPolicy

GetDeletionPolicy of this SecretImpersonatedAccount.

func (*SecretImpersonatedAccount) GetID 

func (tr *SecretImpersonatedAccount) GetID() string

GetID returns ID of underlying Terraform resource of this SecretImpersonatedAccount

func (*SecretImpersonatedAccount) GetInitParameters added in v0.2.0 

func (tr *SecretImpersonatedAccount) GetInitParameters() (map[string]any, error)

GetInitParameters of this SecretImpersonatedAccount

func (*SecretImpersonatedAccount) GetManagementPolicies added in v0.2.0 

func (mg *SecretImpersonatedAccount) GetManagementPolicies() xpv1.ManagementPolicies

GetManagementPolicies of this SecretImpersonatedAccount.

func (*SecretImpersonatedAccount) GetObservation 

func (tr *SecretImpersonatedAccount) GetObservation() (map[string]any, error)

GetObservation of this SecretImpersonatedAccount

func (*SecretImpersonatedAccount) GetParameters 

func (tr *SecretImpersonatedAccount) GetParameters() (map[string]any, error)

GetParameters of this SecretImpersonatedAccount

func (*SecretImpersonatedAccount) GetProviderConfigReference 

func (mg *SecretImpersonatedAccount) GetProviderConfigReference() *xpv1.Reference

GetProviderConfigReference of this SecretImpersonatedAccount.

func (*SecretImpersonatedAccount) GetProviderReference 

func (mg *SecretImpersonatedAccount) GetProviderReference() *xpv1.Reference

GetProviderReference of this SecretImpersonatedAccount. Deprecated: Use GetProviderConfigReference.

func (*SecretImpersonatedAccount) GetPublishConnectionDetailsTo 

func (mg *SecretImpersonatedAccount) GetPublishConnectionDetailsTo() *xpv1.PublishConnectionDetailsTo

GetPublishConnectionDetailsTo of this SecretImpersonatedAccount.

func (*SecretImpersonatedAccount) GetTerraformResourceType 

func (mg *SecretImpersonatedAccount) GetTerraformResourceType() string

GetTerraformResourceType returns Terraform resource type for this SecretImpersonatedAccount

func (*SecretImpersonatedAccount) GetTerraformSchemaVersion 

func (tr *SecretImpersonatedAccount) GetTerraformSchemaVersion() int

GetTerraformSchemaVersion returns the associated Terraform schema version

func (*SecretImpersonatedAccount) GetWriteConnectionSecretToReference 

func (mg *SecretImpersonatedAccount) GetWriteConnectionSecretToReference() *xpv1.SecretReference

GetWriteConnectionSecretToReference of this SecretImpersonatedAccount.

func (*SecretImpersonatedAccount) LateInitialize 

func (tr *SecretImpersonatedAccount) LateInitialize(attrs []byte) (bool, error)

LateInitialize this SecretImpersonatedAccount using its observed tfState. returns True if there are any spec changes for the resource.

func (*SecretImpersonatedAccount) SetConditions 

func (mg *SecretImpersonatedAccount) SetConditions(c ...xpv1.Condition)

SetConditions of this SecretImpersonatedAccount.

func (*SecretImpersonatedAccount) SetDeletionPolicy 

func (mg *SecretImpersonatedAccount) SetDeletionPolicy(r xpv1.DeletionPolicy)

SetDeletionPolicy of this SecretImpersonatedAccount.

func (*SecretImpersonatedAccount) SetManagementPolicies added in v0.2.0 

func (mg *SecretImpersonatedAccount) SetManagementPolicies(r xpv1.ManagementPolicies)

SetManagementPolicies of this SecretImpersonatedAccount.

func (*SecretImpersonatedAccount) SetObservation 

func (tr *SecretImpersonatedAccount) SetObservation(obs map[string]any) error

SetObservation for this SecretImpersonatedAccount

func (*SecretImpersonatedAccount) SetParameters 

func (tr *SecretImpersonatedAccount) SetParameters(params map[string]any) error

SetParameters for this SecretImpersonatedAccount

func (*SecretImpersonatedAccount) SetProviderConfigReference 

func (mg *SecretImpersonatedAccount) SetProviderConfigReference(r *xpv1.Reference)

SetProviderConfigReference of this SecretImpersonatedAccount.

func (*SecretImpersonatedAccount) SetProviderReference 

func (mg *SecretImpersonatedAccount) SetProviderReference(r *xpv1.Reference)

SetProviderReference of this SecretImpersonatedAccount. Deprecated: Use SetProviderConfigReference.

func (*SecretImpersonatedAccount) SetPublishConnectionDetailsTo 

func (mg *SecretImpersonatedAccount) SetPublishConnectionDetailsTo(r *xpv1.PublishConnectionDetailsTo)

SetPublishConnectionDetailsTo of this SecretImpersonatedAccount.

func (*SecretImpersonatedAccount) SetWriteConnectionSecretToReference 

func (mg *SecretImpersonatedAccount) SetWriteConnectionSecretToReference(r *xpv1.SecretReference)

SetWriteConnectionSecretToReference of this SecretImpersonatedAccount.

type SecretImpersonatedAccountInitParameters added in v0.2.0 

type SecretImpersonatedAccountInitParameters struct {

	// Path where the GCP Secrets Engine is mounted
	// Path where the GCP secrets engine is mounted.
	Backend *string `json:"backend,omitempty" tf:"backend,omitempty"`

	// Name of the Impersonated Account to create
	// Name of the Impersonated Account to create
	ImpersonatedAccount *string `json:"impersonatedAccount,omitempty" tf:"impersonated_account,omitempty"`

	// Target namespace. (requires Enterprise)
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// Email of the GCP service account to impersonate.
	// Email of the GCP service account.
	ServiceAccountEmail *string `json:"serviceAccountEmail,omitempty" tf:"service_account_email,omitempty"`

	// List of OAuth scopes to assign to access tokens generated under this impersonated account.
	// List of OAuth scopes to assign to `access_token` secrets generated under this impersonated account (`access_token` impersonated accounts only)
	TokenScopes []*string `json:"tokenScopes,omitempty" tf:"token_scopes,omitempty"`
}

func (*SecretImpersonatedAccountInitParameters) DeepCopy added in v0.2.0 

func (in *SecretImpersonatedAccountInitParameters) DeepCopy() *SecretImpersonatedAccountInitParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretImpersonatedAccountInitParameters.

func (*SecretImpersonatedAccountInitParameters) DeepCopyInto added in v0.2.0 

func (in *SecretImpersonatedAccountInitParameters) DeepCopyInto(out *SecretImpersonatedAccountInitParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretImpersonatedAccountList 

type SecretImpersonatedAccountList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`
	Items           []SecretImpersonatedAccount `json:"items"`
}

SecretImpersonatedAccountList contains a list of SecretImpersonatedAccounts

func (*SecretImpersonatedAccountList) DeepCopy 

func (in *SecretImpersonatedAccountList) DeepCopy() *SecretImpersonatedAccountList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretImpersonatedAccountList.

func (*SecretImpersonatedAccountList) DeepCopyInto 

func (in *SecretImpersonatedAccountList) DeepCopyInto(out *SecretImpersonatedAccountList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*SecretImpersonatedAccountList) DeepCopyObject 

func (in *SecretImpersonatedAccountList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*SecretImpersonatedAccountList) GetItems 

func (l *SecretImpersonatedAccountList) GetItems() []resource.Managed

GetItems of this SecretImpersonatedAccountList.

type SecretImpersonatedAccountObservation 

type SecretImpersonatedAccountObservation struct {

	// Path where the GCP Secrets Engine is mounted
	// Path where the GCP secrets engine is mounted.
	Backend *string `json:"backend,omitempty" tf:"backend,omitempty"`

	ID *string `json:"id,omitempty" tf:"id,omitempty"`

	// Name of the Impersonated Account to create
	// Name of the Impersonated Account to create
	ImpersonatedAccount *string `json:"impersonatedAccount,omitempty" tf:"impersonated_account,omitempty"`

	// Target namespace. (requires Enterprise)
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// Email of the GCP service account to impersonate.
	// Email of the GCP service account.
	ServiceAccountEmail *string `json:"serviceAccountEmail,omitempty" tf:"service_account_email,omitempty"`

	// Project the service account belongs to.
	// Project of the GCP Service Account managed by this impersonated account
	ServiceAccountProject *string `json:"serviceAccountProject,omitempty" tf:"service_account_project,omitempty"`

	// List of OAuth scopes to assign to access tokens generated under this impersonated account.
	// List of OAuth scopes to assign to `access_token` secrets generated under this impersonated account (`access_token` impersonated accounts only)
	TokenScopes []*string `json:"tokenScopes,omitempty" tf:"token_scopes,omitempty"`
}

func (*SecretImpersonatedAccountObservation) DeepCopy 

func (in *SecretImpersonatedAccountObservation) DeepCopy() *SecretImpersonatedAccountObservation

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretImpersonatedAccountObservation.

func (*SecretImpersonatedAccountObservation) DeepCopyInto 

func (in *SecretImpersonatedAccountObservation) DeepCopyInto(out *SecretImpersonatedAccountObservation)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretImpersonatedAccountParameters 

type SecretImpersonatedAccountParameters struct {

	// Path where the GCP Secrets Engine is mounted
	// Path where the GCP secrets engine is mounted.
	// +kubebuilder:validation:Optional
	Backend *string `json:"backend,omitempty" tf:"backend,omitempty"`

	// Name of the Impersonated Account to create
	// Name of the Impersonated Account to create
	// +kubebuilder:validation:Optional
	ImpersonatedAccount *string `json:"impersonatedAccount,omitempty" tf:"impersonated_account,omitempty"`

	// Target namespace. (requires Enterprise)
	// +kubebuilder:validation:Optional
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// Email of the GCP service account to impersonate.
	// Email of the GCP service account.
	// +kubebuilder:validation:Optional
	ServiceAccountEmail *string `json:"serviceAccountEmail,omitempty" tf:"service_account_email,omitempty"`

	// List of OAuth scopes to assign to access tokens generated under this impersonated account.
	// List of OAuth scopes to assign to `access_token` secrets generated under this impersonated account (`access_token` impersonated accounts only)
	// +kubebuilder:validation:Optional
	TokenScopes []*string `json:"tokenScopes,omitempty" tf:"token_scopes,omitempty"`
}

func (*SecretImpersonatedAccountParameters) DeepCopy 

func (in *SecretImpersonatedAccountParameters) DeepCopy() *SecretImpersonatedAccountParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretImpersonatedAccountParameters.

func (*SecretImpersonatedAccountParameters) DeepCopyInto 

func (in *SecretImpersonatedAccountParameters) DeepCopyInto(out *SecretImpersonatedAccountParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretImpersonatedAccountSpec 

type SecretImpersonatedAccountSpec struct {
	v1.ResourceSpec `json:",inline"`
	ForProvider     SecretImpersonatedAccountParameters `json:"forProvider"`
	// THIS IS AN ALPHA FIELD. Do not use it in production. It is not honored
	// unless the relevant Crossplane feature flag is enabled, and may be
	// changed or removed without notice.
	// InitProvider holds the same fields as ForProvider, with the exception
	// of Identifier and other resource reference fields. The fields that are
	// in InitProvider are merged into ForProvider when the resource is created.
	// The same fields are also added to the terraform ignore_changes hook, to
	// avoid updating them after creation. This is useful for fields that are
	// required on creation, but we do not desire to update them after creation,
	// for example because of an external controller is managing them, like an
	// autoscaler.
	InitProvider SecretImpersonatedAccountInitParameters `json:"initProvider,omitempty"`
}

SecretImpersonatedAccountSpec defines the desired state of SecretImpersonatedAccount

func (*SecretImpersonatedAccountSpec) DeepCopy 

func (in *SecretImpersonatedAccountSpec) DeepCopy() *SecretImpersonatedAccountSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretImpersonatedAccountSpec.

func (*SecretImpersonatedAccountSpec) DeepCopyInto 

func (in *SecretImpersonatedAccountSpec) DeepCopyInto(out *SecretImpersonatedAccountSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretImpersonatedAccountStatus 

type SecretImpersonatedAccountStatus struct {
	v1.ResourceStatus `json:",inline"`
	AtProvider        SecretImpersonatedAccountObservation `json:"atProvider,omitempty"`
}

SecretImpersonatedAccountStatus defines the observed state of SecretImpersonatedAccount.

func (*SecretImpersonatedAccountStatus) DeepCopy 

func (in *SecretImpersonatedAccountStatus) DeepCopy() *SecretImpersonatedAccountStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretImpersonatedAccountStatus.

func (*SecretImpersonatedAccountStatus) DeepCopyInto 

func (in *SecretImpersonatedAccountStatus) DeepCopyInto(out *SecretImpersonatedAccountStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretRoleset 

type SecretRoleset struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty"`
	// +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.backend) || has(self.initProvider.backend)",message="backend is a required parameter"
	// +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.binding) || has(self.initProvider.binding)",message="binding is a required parameter"
	// +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.project) || has(self.initProvider.project)",message="project is a required parameter"
	// +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.roleset) || has(self.initProvider.roleset)",message="roleset is a required parameter"
	Spec   SecretRolesetSpec   `json:"spec"`
	Status SecretRolesetStatus `json:"status,omitempty"`
}

SecretRoleset is the Schema for the SecretRolesets API. Creates a Roleset for the GCP Secret Backend for Vault. +kubebuilder:printcolumn:name="READY",type="string",JSONPath=".status.conditions[?(@.type=='Ready')].status" +kubebuilder:printcolumn:name="SYNCED",type="string",JSONPath=".status.conditions[?(@.type=='Synced')].status" +kubebuilder:printcolumn:name="EXTERNAL-NAME",type="string",JSONPath=".metadata.annotations.crossplane\\.io/external-name" +kubebuilder:printcolumn:name="AGE",type="date",JSONPath=".metadata.creationTimestamp" +kubebuilder:subresource:status +kubebuilder:resource:scope=Cluster,categories={crossplane,managed,vault}

func (*SecretRoleset) DeepCopy 

func (in *SecretRoleset) DeepCopy() *SecretRoleset

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretRoleset.

func (*SecretRoleset) DeepCopyInto 

func (in *SecretRoleset) DeepCopyInto(out *SecretRoleset)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*SecretRoleset) DeepCopyObject 

func (in *SecretRoleset) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*SecretRoleset) GetCondition 

func (mg *SecretRoleset) GetCondition(ct xpv1.ConditionType) xpv1.Condition

GetCondition of this SecretRoleset.

func (*SecretRoleset) GetConnectionDetailsMapping 

func (tr *SecretRoleset) GetConnectionDetailsMapping() map[string]string

GetConnectionDetailsMapping for this SecretRoleset

func (*SecretRoleset) GetDeletionPolicy 

func (mg *SecretRoleset) GetDeletionPolicy() xpv1.DeletionPolicy

GetDeletionPolicy of this SecretRoleset.

func (*SecretRoleset) GetID 

func (tr *SecretRoleset) GetID() string

GetID returns ID of underlying Terraform resource of this SecretRoleset

func (*SecretRoleset) GetInitParameters added in v0.2.0 

func (tr *SecretRoleset) GetInitParameters() (map[string]any, error)

GetInitParameters of this SecretRoleset

func (*SecretRoleset) GetManagementPolicies added in v0.2.0 

func (mg *SecretRoleset) GetManagementPolicies() xpv1.ManagementPolicies

GetManagementPolicies of this SecretRoleset.

func (*SecretRoleset) GetObservation 

func (tr *SecretRoleset) GetObservation() (map[string]any, error)

GetObservation of this SecretRoleset

func (*SecretRoleset) GetParameters 

func (tr *SecretRoleset) GetParameters() (map[string]any, error)

GetParameters of this SecretRoleset

func (*SecretRoleset) GetProviderConfigReference 

func (mg *SecretRoleset) GetProviderConfigReference() *xpv1.Reference

GetProviderConfigReference of this SecretRoleset.

func (*SecretRoleset) GetProviderReference 

func (mg *SecretRoleset) GetProviderReference() *xpv1.Reference

GetProviderReference of this SecretRoleset. Deprecated: Use GetProviderConfigReference.

func (*SecretRoleset) GetPublishConnectionDetailsTo 

func (mg *SecretRoleset) GetPublishConnectionDetailsTo() *xpv1.PublishConnectionDetailsTo

GetPublishConnectionDetailsTo of this SecretRoleset.

func (*SecretRoleset) GetTerraformResourceType 

func (mg *SecretRoleset) GetTerraformResourceType() string

GetTerraformResourceType returns Terraform resource type for this SecretRoleset

func (*SecretRoleset) GetTerraformSchemaVersion 

func (tr *SecretRoleset) GetTerraformSchemaVersion() int

GetTerraformSchemaVersion returns the associated Terraform schema version

func (*SecretRoleset) GetWriteConnectionSecretToReference 

func (mg *SecretRoleset) GetWriteConnectionSecretToReference() *xpv1.SecretReference

GetWriteConnectionSecretToReference of this SecretRoleset.

func (*SecretRoleset) LateInitialize 

func (tr *SecretRoleset) LateInitialize(attrs []byte) (bool, error)

LateInitialize this SecretRoleset using its observed tfState. returns True if there are any spec changes for the resource.

func (*SecretRoleset) SetConditions 

func (mg *SecretRoleset) SetConditions(c ...xpv1.Condition)

SetConditions of this SecretRoleset.

func (*SecretRoleset) SetDeletionPolicy 

func (mg *SecretRoleset) SetDeletionPolicy(r xpv1.DeletionPolicy)

SetDeletionPolicy of this SecretRoleset.

func (*SecretRoleset) SetManagementPolicies added in v0.2.0 

func (mg *SecretRoleset) SetManagementPolicies(r xpv1.ManagementPolicies)

SetManagementPolicies of this SecretRoleset.

func (*SecretRoleset) SetObservation 

func (tr *SecretRoleset) SetObservation(obs map[string]any) error

SetObservation for this SecretRoleset

func (*SecretRoleset) SetParameters 

func (tr *SecretRoleset) SetParameters(params map[string]any) error

SetParameters for this SecretRoleset

func (*SecretRoleset) SetProviderConfigReference 

func (mg *SecretRoleset) SetProviderConfigReference(r *xpv1.Reference)

SetProviderConfigReference of this SecretRoleset.

func (*SecretRoleset) SetProviderReference 

func (mg *SecretRoleset) SetProviderReference(r *xpv1.Reference)

SetProviderReference of this SecretRoleset. Deprecated: Use SetProviderConfigReference.

func (*SecretRoleset) SetPublishConnectionDetailsTo 

func (mg *SecretRoleset) SetPublishConnectionDetailsTo(r *xpv1.PublishConnectionDetailsTo)

SetPublishConnectionDetailsTo of this SecretRoleset.

func (*SecretRoleset) SetWriteConnectionSecretToReference 

func (mg *SecretRoleset) SetWriteConnectionSecretToReference(r *xpv1.SecretReference)

SetWriteConnectionSecretToReference of this SecretRoleset.

type SecretRolesetInitParameters added in v0.2.0 

type SecretRolesetInitParameters struct {

	// Path where the GCP Secrets Engine is mounted
	// Path where the GCP secrets engine is mounted.
	Backend *string `json:"backend,omitempty" tf:"backend,omitempty"`

	// Bindings to create for this roleset. This can be specified multiple times for multiple bindings. Structure is documented below.
	Binding []BindingInitParameters `json:"binding,omitempty" tf:"binding,omitempty"`

	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The namespace is always relative to the provider's configured namespace.
	// Available only for Vault Enterprise.
	// Target namespace. (requires Enterprise)
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// Name of the GCP project that this roleset's service account will belong to.
	// Name of the GCP project that this roleset's service account will belong to.
	Project *string `json:"project,omitempty" tf:"project,omitempty"`

	// Name of the Roleset to create
	// Name of the RoleSet to create
	Roleset *string `json:"roleset,omitempty" tf:"roleset,omitempty"`

	// Type of secret generated for this role set. Accepted values: access_token, service_account_key. Defaults to access_token.
	// Type of secret generated for this role set. Defaults to `access_token`. Accepted values: `access_token`, `service_account_key`
	SecretType *string `json:"secretType,omitempty" tf:"secret_type,omitempty"`

	// List of OAuth scopes to assign to access_token secrets generated under this role set (access_token role sets only).
	// List of OAuth scopes to assign to `access_token` secrets generated under this role set (`access_token` role sets only)
	TokenScopes []*string `json:"tokenScopes,omitempty" tf:"token_scopes,omitempty"`
}

func (*SecretRolesetInitParameters) DeepCopy added in v0.2.0 

func (in *SecretRolesetInitParameters) DeepCopy() *SecretRolesetInitParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretRolesetInitParameters.

func (*SecretRolesetInitParameters) DeepCopyInto added in v0.2.0 

func (in *SecretRolesetInitParameters) DeepCopyInto(out *SecretRolesetInitParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretRolesetList 

type SecretRolesetList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`
	Items           []SecretRoleset `json:"items"`
}

SecretRolesetList contains a list of SecretRolesets

func (*SecretRolesetList) DeepCopy 

func (in *SecretRolesetList) DeepCopy() *SecretRolesetList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretRolesetList.

func (*SecretRolesetList) DeepCopyInto 

func (in *SecretRolesetList) DeepCopyInto(out *SecretRolesetList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*SecretRolesetList) DeepCopyObject 

func (in *SecretRolesetList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*SecretRolesetList) GetItems 

func (l *SecretRolesetList) GetItems() []resource.Managed

GetItems of this SecretRolesetList.

type SecretRolesetObservation 

type SecretRolesetObservation struct {

	// Path where the GCP Secrets Engine is mounted
	// Path where the GCP secrets engine is mounted.
	Backend *string `json:"backend,omitempty" tf:"backend,omitempty"`

	// Bindings to create for this roleset. This can be specified multiple times for multiple bindings. Structure is documented below.
	Binding []BindingObservation `json:"binding,omitempty" tf:"binding,omitempty"`

	ID *string `json:"id,omitempty" tf:"id,omitempty"`

	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The namespace is always relative to the provider's configured namespace.
	// Available only for Vault Enterprise.
	// Target namespace. (requires Enterprise)
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// Name of the GCP project that this roleset's service account will belong to.
	// Name of the GCP project that this roleset's service account will belong to.
	Project *string `json:"project,omitempty" tf:"project,omitempty"`

	// Name of the Roleset to create
	// Name of the RoleSet to create
	Roleset *string `json:"roleset,omitempty" tf:"roleset,omitempty"`

	// Type of secret generated for this role set. Accepted values: access_token, service_account_key. Defaults to access_token.
	// Type of secret generated for this role set. Defaults to `access_token`. Accepted values: `access_token`, `service_account_key`
	SecretType *string `json:"secretType,omitempty" tf:"secret_type,omitempty"`

	// Email of the service account created by Vault for this Roleset.
	// Email of the service account created by Vault for this Roleset
	ServiceAccountEmail *string `json:"serviceAccountEmail,omitempty" tf:"service_account_email,omitempty"`

	// List of OAuth scopes to assign to access_token secrets generated under this role set (access_token role sets only).
	// List of OAuth scopes to assign to `access_token` secrets generated under this role set (`access_token` role sets only)
	TokenScopes []*string `json:"tokenScopes,omitempty" tf:"token_scopes,omitempty"`
}

func (*SecretRolesetObservation) DeepCopy 

func (in *SecretRolesetObservation) DeepCopy() *SecretRolesetObservation

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretRolesetObservation.

func (*SecretRolesetObservation) DeepCopyInto 

func (in *SecretRolesetObservation) DeepCopyInto(out *SecretRolesetObservation)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretRolesetParameters 

type SecretRolesetParameters struct {

	// Path where the GCP Secrets Engine is mounted
	// Path where the GCP secrets engine is mounted.
	// +kubebuilder:validation:Optional
	Backend *string `json:"backend,omitempty" tf:"backend,omitempty"`

	// Bindings to create for this roleset. This can be specified multiple times for multiple bindings. Structure is documented below.
	// +kubebuilder:validation:Optional
	Binding []BindingParameters `json:"binding,omitempty" tf:"binding,omitempty"`

	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The namespace is always relative to the provider's configured namespace.
	// Available only for Vault Enterprise.
	// Target namespace. (requires Enterprise)
	// +kubebuilder:validation:Optional
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// Name of the GCP project that this roleset's service account will belong to.
	// Name of the GCP project that this roleset's service account will belong to.
	// +kubebuilder:validation:Optional
	Project *string `json:"project,omitempty" tf:"project,omitempty"`

	// Name of the Roleset to create
	// Name of the RoleSet to create
	// +kubebuilder:validation:Optional
	Roleset *string `json:"roleset,omitempty" tf:"roleset,omitempty"`

	// Type of secret generated for this role set. Accepted values: access_token, service_account_key. Defaults to access_token.
	// Type of secret generated for this role set. Defaults to `access_token`. Accepted values: `access_token`, `service_account_key`
	// +kubebuilder:validation:Optional
	SecretType *string `json:"secretType,omitempty" tf:"secret_type,omitempty"`

	// List of OAuth scopes to assign to access_token secrets generated under this role set (access_token role sets only).
	// List of OAuth scopes to assign to `access_token` secrets generated under this role set (`access_token` role sets only)
	// +kubebuilder:validation:Optional
	TokenScopes []*string `json:"tokenScopes,omitempty" tf:"token_scopes,omitempty"`
}

func (*SecretRolesetParameters) DeepCopy 

func (in *SecretRolesetParameters) DeepCopy() *SecretRolesetParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretRolesetParameters.

func (*SecretRolesetParameters) DeepCopyInto 

func (in *SecretRolesetParameters) DeepCopyInto(out *SecretRolesetParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretRolesetSpec 

type SecretRolesetSpec struct {
	v1.ResourceSpec `json:",inline"`
	ForProvider     SecretRolesetParameters `json:"forProvider"`
	// THIS IS AN ALPHA FIELD. Do not use it in production. It is not honored
	// unless the relevant Crossplane feature flag is enabled, and may be
	// changed or removed without notice.
	// InitProvider holds the same fields as ForProvider, with the exception
	// of Identifier and other resource reference fields. The fields that are
	// in InitProvider are merged into ForProvider when the resource is created.
	// The same fields are also added to the terraform ignore_changes hook, to
	// avoid updating them after creation. This is useful for fields that are
	// required on creation, but we do not desire to update them after creation,
	// for example because of an external controller is managing them, like an
	// autoscaler.
	InitProvider SecretRolesetInitParameters `json:"initProvider,omitempty"`
}

SecretRolesetSpec defines the desired state of SecretRoleset

func (*SecretRolesetSpec) DeepCopy 

func (in *SecretRolesetSpec) DeepCopy() *SecretRolesetSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretRolesetSpec.

func (*SecretRolesetSpec) DeepCopyInto 

func (in *SecretRolesetSpec) DeepCopyInto(out *SecretRolesetSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretRolesetStatus 

type SecretRolesetStatus struct {
	v1.ResourceStatus `json:",inline"`
	AtProvider        SecretRolesetObservation `json:"atProvider,omitempty"`
}

SecretRolesetStatus defines the observed state of SecretRoleset.

func (*SecretRolesetStatus) DeepCopy 

func (in *SecretRolesetStatus) DeepCopy() *SecretRolesetStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretRolesetStatus.

func (*SecretRolesetStatus) DeepCopyInto 

func (in *SecretRolesetStatus) DeepCopyInto(out *SecretRolesetStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretStaticAccount 

type SecretStaticAccount struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty"`
	// +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.backend) || has(self.initProvider.backend)",message="backend is a required parameter"
	// +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.serviceAccountEmail) || has(self.initProvider.serviceAccountEmail)",message="serviceAccountEmail is a required parameter"
	// +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.staticAccount) || has(self.initProvider.staticAccount)",message="staticAccount is a required parameter"
	Spec   SecretStaticAccountSpec   `json:"spec"`
	Status SecretStaticAccountStatus `json:"status,omitempty"`
}

SecretStaticAccount is the Schema for the SecretStaticAccounts API. Creates a Static Account for the GCP Secret Backend for Vault. +kubebuilder:printcolumn:name="READY",type="string",JSONPath=".status.conditions[?(@.type=='Ready')].status" +kubebuilder:printcolumn:name="SYNCED",type="string",JSONPath=".status.conditions[?(@.type=='Synced')].status" +kubebuilder:printcolumn:name="EXTERNAL-NAME",type="string",JSONPath=".metadata.annotations.crossplane\\.io/external-name" +kubebuilder:printcolumn:name="AGE",type="date",JSONPath=".metadata.creationTimestamp" +kubebuilder:subresource:status +kubebuilder:resource:scope=Cluster,categories={crossplane,managed,vault}

func (*SecretStaticAccount) DeepCopy 

func (in *SecretStaticAccount) DeepCopy() *SecretStaticAccount

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretStaticAccount.

func (*SecretStaticAccount) DeepCopyInto 

func (in *SecretStaticAccount) DeepCopyInto(out *SecretStaticAccount)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*SecretStaticAccount) DeepCopyObject 

func (in *SecretStaticAccount) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*SecretStaticAccount) GetCondition 

func (mg *SecretStaticAccount) GetCondition(ct xpv1.ConditionType) xpv1.Condition

GetCondition of this SecretStaticAccount.

func (*SecretStaticAccount) GetConnectionDetailsMapping 

func (tr *SecretStaticAccount) GetConnectionDetailsMapping() map[string]string

GetConnectionDetailsMapping for this SecretStaticAccount

func (*SecretStaticAccount) GetDeletionPolicy 

func (mg *SecretStaticAccount) GetDeletionPolicy() xpv1.DeletionPolicy

GetDeletionPolicy of this SecretStaticAccount.

func (*SecretStaticAccount) GetID 

func (tr *SecretStaticAccount) GetID() string

GetID returns ID of underlying Terraform resource of this SecretStaticAccount

func (*SecretStaticAccount) GetInitParameters added in v0.2.0 

func (tr *SecretStaticAccount) GetInitParameters() (map[string]any, error)

GetInitParameters of this SecretStaticAccount

func (*SecretStaticAccount) GetManagementPolicies added in v0.2.0 

func (mg *SecretStaticAccount) GetManagementPolicies() xpv1.ManagementPolicies

GetManagementPolicies of this SecretStaticAccount.

func (*SecretStaticAccount) GetObservation 

func (tr *SecretStaticAccount) GetObservation() (map[string]any, error)

GetObservation of this SecretStaticAccount

func (*SecretStaticAccount) GetParameters 

func (tr *SecretStaticAccount) GetParameters() (map[string]any, error)

GetParameters of this SecretStaticAccount

func (*SecretStaticAccount) GetProviderConfigReference 

func (mg *SecretStaticAccount) GetProviderConfigReference() *xpv1.Reference

GetProviderConfigReference of this SecretStaticAccount.

func (*SecretStaticAccount) GetProviderReference 

func (mg *SecretStaticAccount) GetProviderReference() *xpv1.Reference

GetProviderReference of this SecretStaticAccount. Deprecated: Use GetProviderConfigReference.

func (*SecretStaticAccount) GetPublishConnectionDetailsTo 

func (mg *SecretStaticAccount) GetPublishConnectionDetailsTo() *xpv1.PublishConnectionDetailsTo

GetPublishConnectionDetailsTo of this SecretStaticAccount.

func (*SecretStaticAccount) GetTerraformResourceType 

func (mg *SecretStaticAccount) GetTerraformResourceType() string

GetTerraformResourceType returns Terraform resource type for this SecretStaticAccount

func (*SecretStaticAccount) GetTerraformSchemaVersion 

func (tr *SecretStaticAccount) GetTerraformSchemaVersion() int

GetTerraformSchemaVersion returns the associated Terraform schema version

func (*SecretStaticAccount) GetWriteConnectionSecretToReference 

func (mg *SecretStaticAccount) GetWriteConnectionSecretToReference() *xpv1.SecretReference

GetWriteConnectionSecretToReference of this SecretStaticAccount.

func (*SecretStaticAccount) LateInitialize 

func (tr *SecretStaticAccount) LateInitialize(attrs []byte) (bool, error)

LateInitialize this SecretStaticAccount using its observed tfState. returns True if there are any spec changes for the resource.

func (*SecretStaticAccount) SetConditions 

func (mg *SecretStaticAccount) SetConditions(c ...xpv1.Condition)

SetConditions of this SecretStaticAccount.

func (*SecretStaticAccount) SetDeletionPolicy 

func (mg *SecretStaticAccount) SetDeletionPolicy(r xpv1.DeletionPolicy)

SetDeletionPolicy of this SecretStaticAccount.

func (*SecretStaticAccount) SetManagementPolicies added in v0.2.0 

func (mg *SecretStaticAccount) SetManagementPolicies(r xpv1.ManagementPolicies)

SetManagementPolicies of this SecretStaticAccount.

func (*SecretStaticAccount) SetObservation 

func (tr *SecretStaticAccount) SetObservation(obs map[string]any) error

SetObservation for this SecretStaticAccount

func (*SecretStaticAccount) SetParameters 

func (tr *SecretStaticAccount) SetParameters(params map[string]any) error

SetParameters for this SecretStaticAccount

func (*SecretStaticAccount) SetProviderConfigReference 

func (mg *SecretStaticAccount) SetProviderConfigReference(r *xpv1.Reference)

SetProviderConfigReference of this SecretStaticAccount.

func (*SecretStaticAccount) SetProviderReference 

func (mg *SecretStaticAccount) SetProviderReference(r *xpv1.Reference)

SetProviderReference of this SecretStaticAccount. Deprecated: Use SetProviderConfigReference.

func (*SecretStaticAccount) SetPublishConnectionDetailsTo 

func (mg *SecretStaticAccount) SetPublishConnectionDetailsTo(r *xpv1.PublishConnectionDetailsTo)

SetPublishConnectionDetailsTo of this SecretStaticAccount.

func (*SecretStaticAccount) SetWriteConnectionSecretToReference 

func (mg *SecretStaticAccount) SetWriteConnectionSecretToReference(r *xpv1.SecretReference)

SetWriteConnectionSecretToReference of this SecretStaticAccount.

type SecretStaticAccountBindingInitParameters added in v0.2.0 

type SecretStaticAccountBindingInitParameters struct {

	// Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different formats.
	// Resource name
	Resource *string `json:"resource,omitempty" tf:"resource,omitempty"`

	// List of GCP IAM roles for the resource.
	// List of roles to apply to the resource
	Roles []*string `json:"roles,omitempty" tf:"roles,omitempty"`
}

func (*SecretStaticAccountBindingInitParameters) DeepCopy added in v0.2.0 

func (in *SecretStaticAccountBindingInitParameters) DeepCopy() *SecretStaticAccountBindingInitParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretStaticAccountBindingInitParameters.

func (*SecretStaticAccountBindingInitParameters) DeepCopyInto added in v0.2.0 

func (in *SecretStaticAccountBindingInitParameters) DeepCopyInto(out *SecretStaticAccountBindingInitParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretStaticAccountBindingObservation 

type SecretStaticAccountBindingObservation struct {

	// Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different formats.
	// Resource name
	Resource *string `json:"resource,omitempty" tf:"resource,omitempty"`

	// List of GCP IAM roles for the resource.
	// List of roles to apply to the resource
	Roles []*string `json:"roles,omitempty" tf:"roles,omitempty"`
}

func (*SecretStaticAccountBindingObservation) DeepCopy 

func (in *SecretStaticAccountBindingObservation) DeepCopy() *SecretStaticAccountBindingObservation

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretStaticAccountBindingObservation.

func (*SecretStaticAccountBindingObservation) DeepCopyInto 

func (in *SecretStaticAccountBindingObservation) DeepCopyInto(out *SecretStaticAccountBindingObservation)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretStaticAccountBindingParameters 

type SecretStaticAccountBindingParameters struct {

	// Resource or resource path for which IAM policy information will be bound. The resource path may be specified in a few different formats.
	// Resource name
	// +kubebuilder:validation:Optional
	Resource *string `json:"resource,omitempty" tf:"resource,omitempty"`

	// List of GCP IAM roles for the resource.
	// List of roles to apply to the resource
	// +kubebuilder:validation:Optional
	Roles []*string `json:"roles,omitempty" tf:"roles,omitempty"`
}

func (*SecretStaticAccountBindingParameters) DeepCopy 

func (in *SecretStaticAccountBindingParameters) DeepCopy() *SecretStaticAccountBindingParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretStaticAccountBindingParameters.

func (*SecretStaticAccountBindingParameters) DeepCopyInto 

func (in *SecretStaticAccountBindingParameters) DeepCopyInto(out *SecretStaticAccountBindingParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretStaticAccountInitParameters added in v0.2.0 

type SecretStaticAccountInitParameters struct {

	// Path where the GCP Secrets Engine is mounted
	// Path where the GCP secrets engine is mounted.
	Backend *string `json:"backend,omitempty" tf:"backend,omitempty"`

	// Bindings to create for this static account. This can be specified multiple times for multiple bindings. Structure is documented below.
	Binding []SecretStaticAccountBindingInitParameters `json:"binding,omitempty" tf:"binding,omitempty"`

	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The namespace is always relative to the provider's configured namespace.
	// Available only for Vault Enterprise.
	// Target namespace. (requires Enterprise)
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// Type of secret generated for this static account. Accepted values: access_token, service_account_key. Defaults to access_token.
	// Type of secret generated for this static account. Defaults to `access_token`. Accepted values: `access_token`, `service_account_key`
	SecretType *string `json:"secretType,omitempty" tf:"secret_type,omitempty"`

	// Email of the GCP service account to manage.
	// Email of the GCP service account.
	ServiceAccountEmail *string `json:"serviceAccountEmail,omitempty" tf:"service_account_email,omitempty"`

	// Name of the Static Account to create
	// Name of the Static Account to create
	StaticAccount *string `json:"staticAccount,omitempty" tf:"static_account,omitempty"`

	// List of OAuth scopes to assign to access_token secrets generated under this static account (access_token static accounts only).
	// List of OAuth scopes to assign to `access_token` secrets generated under this static account (`access_token` static accounts only)
	TokenScopes []*string `json:"tokenScopes,omitempty" tf:"token_scopes,omitempty"`
}

func (*SecretStaticAccountInitParameters) DeepCopy added in v0.2.0 

func (in *SecretStaticAccountInitParameters) DeepCopy() *SecretStaticAccountInitParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretStaticAccountInitParameters.

func (*SecretStaticAccountInitParameters) DeepCopyInto added in v0.2.0 

func (in *SecretStaticAccountInitParameters) DeepCopyInto(out *SecretStaticAccountInitParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretStaticAccountList 

type SecretStaticAccountList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`
	Items           []SecretStaticAccount `json:"items"`
}

SecretStaticAccountList contains a list of SecretStaticAccounts

func (*SecretStaticAccountList) DeepCopy 

func (in *SecretStaticAccountList) DeepCopy() *SecretStaticAccountList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretStaticAccountList.

func (*SecretStaticAccountList) DeepCopyInto 

func (in *SecretStaticAccountList) DeepCopyInto(out *SecretStaticAccountList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*SecretStaticAccountList) DeepCopyObject 

func (in *SecretStaticAccountList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

func (*SecretStaticAccountList) GetItems 

func (l *SecretStaticAccountList) GetItems() []resource.Managed

GetItems of this SecretStaticAccountList.

type SecretStaticAccountObservation 

type SecretStaticAccountObservation struct {

	// Path where the GCP Secrets Engine is mounted
	// Path where the GCP secrets engine is mounted.
	Backend *string `json:"backend,omitempty" tf:"backend,omitempty"`

	// Bindings to create for this static account. This can be specified multiple times for multiple bindings. Structure is documented below.
	Binding []SecretStaticAccountBindingObservation `json:"binding,omitempty" tf:"binding,omitempty"`

	ID *string `json:"id,omitempty" tf:"id,omitempty"`

	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The namespace is always relative to the provider's configured namespace.
	// Available only for Vault Enterprise.
	// Target namespace. (requires Enterprise)
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// Type of secret generated for this static account. Accepted values: access_token, service_account_key. Defaults to access_token.
	// Type of secret generated for this static account. Defaults to `access_token`. Accepted values: `access_token`, `service_account_key`
	SecretType *string `json:"secretType,omitempty" tf:"secret_type,omitempty"`

	// Email of the GCP service account to manage.
	// Email of the GCP service account.
	ServiceAccountEmail *string `json:"serviceAccountEmail,omitempty" tf:"service_account_email,omitempty"`

	// Project the service account belongs to.
	// Project of the GCP Service Account managed by this static account
	ServiceAccountProject *string `json:"serviceAccountProject,omitempty" tf:"service_account_project,omitempty"`

	// Name of the Static Account to create
	// Name of the Static Account to create
	StaticAccount *string `json:"staticAccount,omitempty" tf:"static_account,omitempty"`

	// List of OAuth scopes to assign to access_token secrets generated under this static account (access_token static accounts only).
	// List of OAuth scopes to assign to `access_token` secrets generated under this static account (`access_token` static accounts only)
	TokenScopes []*string `json:"tokenScopes,omitempty" tf:"token_scopes,omitempty"`
}

func (*SecretStaticAccountObservation) DeepCopy 

func (in *SecretStaticAccountObservation) DeepCopy() *SecretStaticAccountObservation

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretStaticAccountObservation.

func (*SecretStaticAccountObservation) DeepCopyInto 

func (in *SecretStaticAccountObservation) DeepCopyInto(out *SecretStaticAccountObservation)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretStaticAccountParameters 

type SecretStaticAccountParameters struct {

	// Path where the GCP Secrets Engine is mounted
	// Path where the GCP secrets engine is mounted.
	// +kubebuilder:validation:Optional
	Backend *string `json:"backend,omitempty" tf:"backend,omitempty"`

	// Bindings to create for this static account. This can be specified multiple times for multiple bindings. Structure is documented below.
	// +kubebuilder:validation:Optional
	Binding []SecretStaticAccountBindingParameters `json:"binding,omitempty" tf:"binding,omitempty"`

	// The namespace to provision the resource in.
	// The value should not contain leading or trailing forward slashes.
	// The namespace is always relative to the provider's configured namespace.
	// Available only for Vault Enterprise.
	// Target namespace. (requires Enterprise)
	// +kubebuilder:validation:Optional
	Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"`

	// Type of secret generated for this static account. Accepted values: access_token, service_account_key. Defaults to access_token.
	// Type of secret generated for this static account. Defaults to `access_token`. Accepted values: `access_token`, `service_account_key`
	// +kubebuilder:validation:Optional
	SecretType *string `json:"secretType,omitempty" tf:"secret_type,omitempty"`

	// Email of the GCP service account to manage.
	// Email of the GCP service account.
	// +kubebuilder:validation:Optional
	ServiceAccountEmail *string `json:"serviceAccountEmail,omitempty" tf:"service_account_email,omitempty"`

	// Name of the Static Account to create
	// Name of the Static Account to create
	// +kubebuilder:validation:Optional
	StaticAccount *string `json:"staticAccount,omitempty" tf:"static_account,omitempty"`

	// List of OAuth scopes to assign to access_token secrets generated under this static account (access_token static accounts only).
	// List of OAuth scopes to assign to `access_token` secrets generated under this static account (`access_token` static accounts only)
	// +kubebuilder:validation:Optional
	TokenScopes []*string `json:"tokenScopes,omitempty" tf:"token_scopes,omitempty"`
}

func (*SecretStaticAccountParameters) DeepCopy 

func (in *SecretStaticAccountParameters) DeepCopy() *SecretStaticAccountParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretStaticAccountParameters.

func (*SecretStaticAccountParameters) DeepCopyInto 

func (in *SecretStaticAccountParameters) DeepCopyInto(out *SecretStaticAccountParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretStaticAccountSpec 

type SecretStaticAccountSpec struct {
	v1.ResourceSpec `json:",inline"`
	ForProvider     SecretStaticAccountParameters `json:"forProvider"`
	// THIS IS AN ALPHA FIELD. Do not use it in production. It is not honored
	// unless the relevant Crossplane feature flag is enabled, and may be
	// changed or removed without notice.
	// InitProvider holds the same fields as ForProvider, with the exception
	// of Identifier and other resource reference fields. The fields that are
	// in InitProvider are merged into ForProvider when the resource is created.
	// The same fields are also added to the terraform ignore_changes hook, to
	// avoid updating them after creation. This is useful for fields that are
	// required on creation, but we do not desire to update them after creation,
	// for example because of an external controller is managing them, like an
	// autoscaler.
	InitProvider SecretStaticAccountInitParameters `json:"initProvider,omitempty"`
}

SecretStaticAccountSpec defines the desired state of SecretStaticAccount

func (*SecretStaticAccountSpec) DeepCopy 

func (in *SecretStaticAccountSpec) DeepCopy() *SecretStaticAccountSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretStaticAccountSpec.

func (*SecretStaticAccountSpec) DeepCopyInto 

func (in *SecretStaticAccountSpec) DeepCopyInto(out *SecretStaticAccountSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type SecretStaticAccountStatus 

type SecretStaticAccountStatus struct {
	v1.ResourceStatus `json:",inline"`
	AtProvider        SecretStaticAccountObservation `json:"atProvider,omitempty"`
}

SecretStaticAccountStatus defines the observed state of SecretStaticAccount.

func (*SecretStaticAccountStatus) DeepCopy 

func (in *SecretStaticAccountStatus) DeepCopy() *SecretStaticAccountStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new SecretStaticAccountStatus.

func (*SecretStaticAccountStatus) DeepCopyInto 

func (in *SecretStaticAccountStatus) DeepCopyInto(out *SecretStaticAccountStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type TuneInitParameters added in v0.4.0 

type TuneInitParameters struct {
	AllowedResponseHeaders []*string `json:"allowedResponseHeaders,omitempty" tf:"allowed_response_headers"`

	AuditNonHMACRequestKeys []*string `json:"auditNonHmacRequestKeys,omitempty" tf:"audit_non_hmac_request_keys"`

	AuditNonHMACResponseKeys []*string `json:"auditNonHmacResponseKeys,omitempty" tf:"audit_non_hmac_response_keys"`

	DefaultLeaseTTL *string `json:"defaultLeaseTtl,omitempty" tf:"default_lease_ttl"`

	ListingVisibility *string `json:"listingVisibility,omitempty" tf:"listing_visibility"`

	MaxLeaseTTL *string `json:"maxLeaseTtl,omitempty" tf:"max_lease_ttl"`

	PassthroughRequestHeaders []*string `json:"passthroughRequestHeaders,omitempty" tf:"passthrough_request_headers"`

	TokenType *string `json:"tokenType,omitempty" tf:"token_type"`
}

func (*TuneInitParameters) DeepCopy added in v0.4.0 

func (in *TuneInitParameters) DeepCopy() *TuneInitParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TuneInitParameters.

func (*TuneInitParameters) DeepCopyInto added in v0.4.0 

func (in *TuneInitParameters) DeepCopyInto(out *TuneInitParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type TuneObservation added in v0.4.0 

type TuneObservation struct {
	AllowedResponseHeaders []*string `json:"allowedResponseHeaders,omitempty" tf:"allowed_response_headers,omitempty"`

	AuditNonHMACRequestKeys []*string `json:"auditNonHmacRequestKeys,omitempty" tf:"audit_non_hmac_request_keys,omitempty"`

	AuditNonHMACResponseKeys []*string `json:"auditNonHmacResponseKeys,omitempty" tf:"audit_non_hmac_response_keys,omitempty"`

	DefaultLeaseTTL *string `json:"defaultLeaseTtl,omitempty" tf:"default_lease_ttl,omitempty"`

	ListingVisibility *string `json:"listingVisibility,omitempty" tf:"listing_visibility,omitempty"`

	MaxLeaseTTL *string `json:"maxLeaseTtl,omitempty" tf:"max_lease_ttl,omitempty"`

	PassthroughRequestHeaders []*string `json:"passthroughRequestHeaders,omitempty" tf:"passthrough_request_headers,omitempty"`

	TokenType *string `json:"tokenType,omitempty" tf:"token_type,omitempty"`
}

func (*TuneObservation) DeepCopy added in v0.4.0 

func (in *TuneObservation) DeepCopy() *TuneObservation

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TuneObservation.

func (*TuneObservation) DeepCopyInto added in v0.4.0 

func (in *TuneObservation) DeepCopyInto(out *TuneObservation)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type TuneParameters added in v0.4.0 

type TuneParameters struct {

	// +kubebuilder:validation:Optional
	AllowedResponseHeaders []*string `json:"allowedResponseHeaders,omitempty" tf:"allowed_response_headers"`

	// +kubebuilder:validation:Optional
	AuditNonHMACRequestKeys []*string `json:"auditNonHmacRequestKeys,omitempty" tf:"audit_non_hmac_request_keys"`

	// +kubebuilder:validation:Optional
	AuditNonHMACResponseKeys []*string `json:"auditNonHmacResponseKeys,omitempty" tf:"audit_non_hmac_response_keys"`

	// +kubebuilder:validation:Optional
	DefaultLeaseTTL *string `json:"defaultLeaseTtl,omitempty" tf:"default_lease_ttl"`

	// +kubebuilder:validation:Optional
	ListingVisibility *string `json:"listingVisibility,omitempty" tf:"listing_visibility"`

	// +kubebuilder:validation:Optional
	MaxLeaseTTL *string `json:"maxLeaseTtl,omitempty" tf:"max_lease_ttl"`

	// +kubebuilder:validation:Optional
	PassthroughRequestHeaders []*string `json:"passthroughRequestHeaders,omitempty" tf:"passthrough_request_headers"`

	// +kubebuilder:validation:Optional
	TokenType *string `json:"tokenType,omitempty" tf:"token_type"`
}

func (*TuneParameters) DeepCopy added in v0.4.0 

func (in *TuneParameters) DeepCopy() *TuneParameters

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TuneParameters.

func (*TuneParameters) DeepCopyInto added in v0.4.0 

func (in *TuneParameters) DeepCopyInto(out *TuneParameters)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.