Documentation ¶
Overview ¶
+kubebuilder:object:generate=true +groupName=github.vault.upbound.io +versionName=v1alpha1
Index ¶
- Constants
- Variables
- type AuthBackend
- func (in *AuthBackend) DeepCopy() *AuthBackend
- func (in *AuthBackend) DeepCopyInto(out *AuthBackend)
- func (in *AuthBackend) DeepCopyObject() runtime.Object
- func (mg *AuthBackend) GetCondition(ct xpv1.ConditionType) xpv1.Condition
- func (tr *AuthBackend) GetConnectionDetailsMapping() map[string]string
- func (mg *AuthBackend) GetDeletionPolicy() xpv1.DeletionPolicy
- func (tr *AuthBackend) GetID() string
- func (tr *AuthBackend) GetInitParameters() (map[string]any, error)
- func (mg *AuthBackend) GetManagementPolicies() xpv1.ManagementPolicies
- func (tr *AuthBackend) GetObservation() (map[string]any, error)
- func (tr *AuthBackend) GetParameters() (map[string]any, error)
- func (mg *AuthBackend) GetProviderConfigReference() *xpv1.Reference
- func (mg *AuthBackend) GetProviderReference() *xpv1.Reference
- func (mg *AuthBackend) GetPublishConnectionDetailsTo() *xpv1.PublishConnectionDetailsTo
- func (mg *AuthBackend) GetTerraformResourceType() string
- func (tr *AuthBackend) GetTerraformSchemaVersion() int
- func (mg *AuthBackend) GetWriteConnectionSecretToReference() *xpv1.SecretReference
- func (tr *AuthBackend) LateInitialize(attrs []byte) (bool, error)
- func (mg *AuthBackend) SetConditions(c ...xpv1.Condition)
- func (mg *AuthBackend) SetDeletionPolicy(r xpv1.DeletionPolicy)
- func (mg *AuthBackend) SetManagementPolicies(r xpv1.ManagementPolicies)
- func (tr *AuthBackend) SetObservation(obs map[string]any) error
- func (tr *AuthBackend) SetParameters(params map[string]any) error
- func (mg *AuthBackend) SetProviderConfigReference(r *xpv1.Reference)
- func (mg *AuthBackend) SetProviderReference(r *xpv1.Reference)
- func (mg *AuthBackend) SetPublishConnectionDetailsTo(r *xpv1.PublishConnectionDetailsTo)
- func (mg *AuthBackend) SetWriteConnectionSecretToReference(r *xpv1.SecretReference)
- type AuthBackendInitParameters
- type AuthBackendList
- type AuthBackendObservation
- type AuthBackendParameters
- type AuthBackendSpec
- type AuthBackendStatus
- type Team
- func (in *Team) DeepCopy() *Team
- func (in *Team) DeepCopyInto(out *Team)
- func (in *Team) DeepCopyObject() runtime.Object
- func (mg *Team) GetCondition(ct xpv1.ConditionType) xpv1.Condition
- func (tr *Team) GetConnectionDetailsMapping() map[string]string
- func (mg *Team) GetDeletionPolicy() xpv1.DeletionPolicy
- func (tr *Team) GetID() string
- func (tr *Team) GetInitParameters() (map[string]any, error)
- func (mg *Team) GetManagementPolicies() xpv1.ManagementPolicies
- func (tr *Team) GetObservation() (map[string]any, error)
- func (tr *Team) GetParameters() (map[string]any, error)
- func (mg *Team) GetProviderConfigReference() *xpv1.Reference
- func (mg *Team) GetProviderReference() *xpv1.Reference
- func (mg *Team) GetPublishConnectionDetailsTo() *xpv1.PublishConnectionDetailsTo
- func (mg *Team) GetTerraformResourceType() string
- func (tr *Team) GetTerraformSchemaVersion() int
- func (mg *Team) GetWriteConnectionSecretToReference() *xpv1.SecretReference
- func (tr *Team) LateInitialize(attrs []byte) (bool, error)
- func (mg *Team) SetConditions(c ...xpv1.Condition)
- func (mg *Team) SetDeletionPolicy(r xpv1.DeletionPolicy)
- func (mg *Team) SetManagementPolicies(r xpv1.ManagementPolicies)
- func (tr *Team) SetObservation(obs map[string]any) error
- func (tr *Team) SetParameters(params map[string]any) error
- func (mg *Team) SetProviderConfigReference(r *xpv1.Reference)
- func (mg *Team) SetProviderReference(r *xpv1.Reference)
- func (mg *Team) SetPublishConnectionDetailsTo(r *xpv1.PublishConnectionDetailsTo)
- func (mg *Team) SetWriteConnectionSecretToReference(r *xpv1.SecretReference)
- type TeamInitParameters
- type TeamList
- type TeamObservation
- type TeamParameters
- type TeamSpec
- type TeamStatus
- type TuneInitParameters
- type TuneObservation
- type TuneParameters
- type User
- func (in *User) DeepCopy() *User
- func (in *User) DeepCopyInto(out *User)
- func (in *User) DeepCopyObject() runtime.Object
- func (mg *User) GetCondition(ct xpv1.ConditionType) xpv1.Condition
- func (tr *User) GetConnectionDetailsMapping() map[string]string
- func (mg *User) GetDeletionPolicy() xpv1.DeletionPolicy
- func (tr *User) GetID() string
- func (tr *User) GetInitParameters() (map[string]any, error)
- func (mg *User) GetManagementPolicies() xpv1.ManagementPolicies
- func (tr *User) GetObservation() (map[string]any, error)
- func (tr *User) GetParameters() (map[string]any, error)
- func (mg *User) GetProviderConfigReference() *xpv1.Reference
- func (mg *User) GetProviderReference() *xpv1.Reference
- func (mg *User) GetPublishConnectionDetailsTo() *xpv1.PublishConnectionDetailsTo
- func (mg *User) GetTerraformResourceType() string
- func (tr *User) GetTerraformSchemaVersion() int
- func (mg *User) GetWriteConnectionSecretToReference() *xpv1.SecretReference
- func (tr *User) LateInitialize(attrs []byte) (bool, error)
- func (mg *User) SetConditions(c ...xpv1.Condition)
- func (mg *User) SetDeletionPolicy(r xpv1.DeletionPolicy)
- func (mg *User) SetManagementPolicies(r xpv1.ManagementPolicies)
- func (tr *User) SetObservation(obs map[string]any) error
- func (tr *User) SetParameters(params map[string]any) error
- func (mg *User) SetProviderConfigReference(r *xpv1.Reference)
- func (mg *User) SetProviderReference(r *xpv1.Reference)
- func (mg *User) SetPublishConnectionDetailsTo(r *xpv1.PublishConnectionDetailsTo)
- func (mg *User) SetWriteConnectionSecretToReference(r *xpv1.SecretReference)
- type UserInitParameters
- type UserList
- type UserObservation
- type UserParameters
- type UserSpec
- type UserStatus
Constants ¶
const ( CRDGroup = "github.vault.upbound.io" CRDVersion = "v1alpha1" )
Package type metadata.
Variables ¶
var ( AuthBackend_Kind = "AuthBackend" AuthBackend_GroupKind = schema.GroupKind{Group: CRDGroup, Kind: AuthBackend_Kind}.String() AuthBackend_KindAPIVersion = AuthBackend_Kind + "." + CRDGroupVersion.String() AuthBackend_GroupVersionKind = CRDGroupVersion.WithKind(AuthBackend_Kind) )
Repository type metadata.
var ( // CRDGroupVersion is the API Group Version used to register the objects CRDGroupVersion = schema.GroupVersion{Group: CRDGroup, Version: CRDVersion} // SchemeBuilder is used to add go types to the GroupVersionKind scheme SchemeBuilder = &scheme.Builder{GroupVersion: CRDGroupVersion} // AddToScheme adds the types in this group-version to the given scheme. AddToScheme = SchemeBuilder.AddToScheme )
var ( Team_Kind = "Team" Team_GroupKind = schema.GroupKind{Group: CRDGroup, Kind: Team_Kind}.String() Team_KindAPIVersion = Team_Kind + "." + CRDGroupVersion.String() Team_GroupVersionKind = CRDGroupVersion.WithKind(Team_Kind) )
Repository type metadata.
var ( User_Kind = "User" User_GroupKind = schema.GroupKind{Group: CRDGroup, Kind: User_Kind}.String() User_KindAPIVersion = User_Kind + "." + CRDGroupVersion.String() User_GroupVersionKind = CRDGroupVersion.WithKind(User_Kind) )
Repository type metadata.
Functions ¶
This section is empty.
Types ¶
type AuthBackend ¶
type AuthBackend struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` // +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.organization) || has(self.initProvider.organization)",message="organization is a required parameter" Spec AuthBackendSpec `json:"spec"` Status AuthBackendStatus `json:"status,omitempty"` }
AuthBackend is the Schema for the AuthBackends API. Manages GitHub Auth mounts in Vault. +kubebuilder:printcolumn:name="READY",type="string",JSONPath=".status.conditions[?(@.type=='Ready')].status" +kubebuilder:printcolumn:name="SYNCED",type="string",JSONPath=".status.conditions[?(@.type=='Synced')].status" +kubebuilder:printcolumn:name="EXTERNAL-NAME",type="string",JSONPath=".metadata.annotations.crossplane\\.io/external-name" +kubebuilder:printcolumn:name="AGE",type="date",JSONPath=".metadata.creationTimestamp" +kubebuilder:subresource:status +kubebuilder:resource:scope=Cluster,categories={crossplane,managed,vault}
func (*AuthBackend) DeepCopy ¶
func (in *AuthBackend) DeepCopy() *AuthBackend
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackend.
func (*AuthBackend) DeepCopyInto ¶
func (in *AuthBackend) DeepCopyInto(out *AuthBackend)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*AuthBackend) DeepCopyObject ¶
func (in *AuthBackend) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*AuthBackend) GetCondition ¶
func (mg *AuthBackend) GetCondition(ct xpv1.ConditionType) xpv1.Condition
GetCondition of this AuthBackend.
func (*AuthBackend) GetConnectionDetailsMapping ¶
func (tr *AuthBackend) GetConnectionDetailsMapping() map[string]string
GetConnectionDetailsMapping for this AuthBackend
func (*AuthBackend) GetDeletionPolicy ¶
func (mg *AuthBackend) GetDeletionPolicy() xpv1.DeletionPolicy
GetDeletionPolicy of this AuthBackend.
func (*AuthBackend) GetID ¶
func (tr *AuthBackend) GetID() string
GetID returns ID of underlying Terraform resource of this AuthBackend
func (*AuthBackend) GetInitParameters ¶ added in v0.2.0
func (tr *AuthBackend) GetInitParameters() (map[string]any, error)
GetInitParameters of this AuthBackend
func (*AuthBackend) GetManagementPolicies ¶ added in v0.2.0
func (mg *AuthBackend) GetManagementPolicies() xpv1.ManagementPolicies
GetManagementPolicies of this AuthBackend.
func (*AuthBackend) GetObservation ¶
func (tr *AuthBackend) GetObservation() (map[string]any, error)
GetObservation of this AuthBackend
func (*AuthBackend) GetParameters ¶
func (tr *AuthBackend) GetParameters() (map[string]any, error)
GetParameters of this AuthBackend
func (*AuthBackend) GetProviderConfigReference ¶
func (mg *AuthBackend) GetProviderConfigReference() *xpv1.Reference
GetProviderConfigReference of this AuthBackend.
func (*AuthBackend) GetProviderReference ¶
func (mg *AuthBackend) GetProviderReference() *xpv1.Reference
GetProviderReference of this AuthBackend. Deprecated: Use GetProviderConfigReference.
func (*AuthBackend) GetPublishConnectionDetailsTo ¶
func (mg *AuthBackend) GetPublishConnectionDetailsTo() *xpv1.PublishConnectionDetailsTo
GetPublishConnectionDetailsTo of this AuthBackend.
func (*AuthBackend) GetTerraformResourceType ¶
func (mg *AuthBackend) GetTerraformResourceType() string
GetTerraformResourceType returns Terraform resource type for this AuthBackend
func (*AuthBackend) GetTerraformSchemaVersion ¶
func (tr *AuthBackend) GetTerraformSchemaVersion() int
GetTerraformSchemaVersion returns the associated Terraform schema version
func (*AuthBackend) GetWriteConnectionSecretToReference ¶
func (mg *AuthBackend) GetWriteConnectionSecretToReference() *xpv1.SecretReference
GetWriteConnectionSecretToReference of this AuthBackend.
func (*AuthBackend) LateInitialize ¶
func (tr *AuthBackend) LateInitialize(attrs []byte) (bool, error)
LateInitialize this AuthBackend using its observed tfState. returns True if there are any spec changes for the resource.
func (*AuthBackend) SetConditions ¶
func (mg *AuthBackend) SetConditions(c ...xpv1.Condition)
SetConditions of this AuthBackend.
func (*AuthBackend) SetDeletionPolicy ¶
func (mg *AuthBackend) SetDeletionPolicy(r xpv1.DeletionPolicy)
SetDeletionPolicy of this AuthBackend.
func (*AuthBackend) SetManagementPolicies ¶ added in v0.2.0
func (mg *AuthBackend) SetManagementPolicies(r xpv1.ManagementPolicies)
SetManagementPolicies of this AuthBackend.
func (*AuthBackend) SetObservation ¶
func (tr *AuthBackend) SetObservation(obs map[string]any) error
SetObservation for this AuthBackend
func (*AuthBackend) SetParameters ¶
func (tr *AuthBackend) SetParameters(params map[string]any) error
SetParameters for this AuthBackend
func (*AuthBackend) SetProviderConfigReference ¶
func (mg *AuthBackend) SetProviderConfigReference(r *xpv1.Reference)
SetProviderConfigReference of this AuthBackend.
func (*AuthBackend) SetProviderReference ¶
func (mg *AuthBackend) SetProviderReference(r *xpv1.Reference)
SetProviderReference of this AuthBackend. Deprecated: Use SetProviderConfigReference.
func (*AuthBackend) SetPublishConnectionDetailsTo ¶
func (mg *AuthBackend) SetPublishConnectionDetailsTo(r *xpv1.PublishConnectionDetailsTo)
SetPublishConnectionDetailsTo of this AuthBackend.
func (*AuthBackend) SetWriteConnectionSecretToReference ¶
func (mg *AuthBackend) SetWriteConnectionSecretToReference(r *xpv1.SecretReference)
SetWriteConnectionSecretToReference of this AuthBackend.
type AuthBackendInitParameters ¶ added in v0.2.0
type AuthBackendInitParameters struct { // The API endpoint to use. Useful if you // are running GitHub Enterprise or an API-compatible authentication server. // The API endpoint to use. Useful if you are running GitHub Enterprise or an API-compatible authentication server. BaseURL *string `json:"baseUrl,omitempty" tf:"base_url,omitempty"` // Specifies the description of the mount. // This overrides the current stored value, if any. // Specifies the description of the mount. This overrides the current stored value, if any. Description *string `json:"description,omitempty" tf:"description,omitempty"` // If set, opts out of mount migration on path updates. // See here for more info on Mount Migration // If set, opts out of mount migration on path updates. DisableRemount *bool `json:"disableRemount,omitempty" tf:"disable_remount,omitempty"` // The namespace to provision the resource in. // The value should not contain leading or trailing forward slashes. // The namespace is always relative to the provider's configured namespace. // Available only for Vault Enterprise. // Target namespace. (requires Enterprise) Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"` // The organization configured users must be part of. // The organization users must be part of. Organization *string `json:"organization,omitempty" tf:"organization,omitempty"` // The ID of the organization users must be part of. // Vault will attempt to fetch and set this value if it is not provided. (Vault 1.10+) // The ID of the organization users must be part of. Vault will attempt to fetch and set this value if it is not provided (vault-1.10+) OrganizationID *float64 `json:"organizationId,omitempty" tf:"organization_id,omitempty"` // Path where the auth backend is mounted. Defaults to auth/github // if not specified. // Path where the auth backend is mounted Path *string `json:"path,omitempty" tf:"path,omitempty"` // List of CIDR blocks; if set, specifies blocks of IP // addresses which can authenticate successfully, and ties the resulting token to these blocks // as well. // Specifies the blocks of IP addresses which are allowed to use the generated token TokenBoundCidrs []*string `json:"tokenBoundCidrs,omitempty" tf:"token_bound_cidrs,omitempty"` // If set, will encode an // explicit max TTL // onto the token in number of seconds. This is a hard cap even if token_ttl and // token_max_ttl would otherwise allow a renewal. // Generated Token's Explicit Maximum TTL in seconds TokenExplicitMaxTTL *float64 `json:"tokenExplicitMaxTtl,omitempty" tf:"token_explicit_max_ttl,omitempty"` // The maximum lifetime for generated tokens in number of seconds. // Its current value will be referenced at renewal time. // The maximum lifetime of the generated token TokenMaxTTL *float64 `json:"tokenMaxTtl,omitempty" tf:"token_max_ttl,omitempty"` // If set, the default policy will not be set on // generated tokens; otherwise it will be added to the policies set in token_policies. // If true, the 'default' policy will not automatically be added to generated tokens TokenNoDefaultPolicy *bool `json:"tokenNoDefaultPolicy,omitempty" tf:"token_no_default_policy,omitempty"` // The maximum number // of times a generated token may be used (within its lifetime); 0 means unlimited. // The maximum number of times a token may be used, a value of zero means unlimited TokenNumUses *float64 `json:"tokenNumUses,omitempty" tf:"token_num_uses,omitempty"` // If set, indicates that the // token generated using this role should never expire. The token should be renewed within the // duration specified by this value. At each renewal, the token's TTL will be set to the // value of this field. Specified in seconds. // Generated Token's Period TokenPeriod *float64 `json:"tokenPeriod,omitempty" tf:"token_period,omitempty"` // List of policies to encode onto generated tokens. Depending // on the auth method, this list may be supplemented by user/group/other values. // Generated Token's Policies TokenPolicies []*string `json:"tokenPolicies,omitempty" tf:"token_policies,omitempty"` // The incremental lifetime for generated tokens in number of seconds. // Its current value will be referenced at renewal time. // The initial ttl of the token to generate in seconds TokenTTL *float64 `json:"tokenTtl,omitempty" tf:"token_ttl,omitempty"` // The type of token that should be generated. Can be service, // batch, or default to use the mount's tuned default (which unless changed will be // service tokens). For token store roles, there are two additional possibilities: // default-service and default-batch which specify the type to return unless the client // requests a different type at generation time. // The type of token to generate, service or batch TokenType *string `json:"tokenType,omitempty" tf:"token_type,omitempty"` // Extra configuration block. Structure is documented below. Tune []TuneInitParameters `json:"tune,omitempty" tf:"tune,omitempty"` }
func (*AuthBackendInitParameters) DeepCopy ¶ added in v0.2.0
func (in *AuthBackendInitParameters) DeepCopy() *AuthBackendInitParameters
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendInitParameters.
func (*AuthBackendInitParameters) DeepCopyInto ¶ added in v0.2.0
func (in *AuthBackendInitParameters) DeepCopyInto(out *AuthBackendInitParameters)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AuthBackendList ¶
type AuthBackendList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []AuthBackend `json:"items"` }
AuthBackendList contains a list of AuthBackends
func (*AuthBackendList) DeepCopy ¶
func (in *AuthBackendList) DeepCopy() *AuthBackendList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendList.
func (*AuthBackendList) DeepCopyInto ¶
func (in *AuthBackendList) DeepCopyInto(out *AuthBackendList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*AuthBackendList) DeepCopyObject ¶
func (in *AuthBackendList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*AuthBackendList) GetItems ¶
func (l *AuthBackendList) GetItems() []resource.Managed
GetItems of this AuthBackendList.
type AuthBackendObservation ¶
type AuthBackendObservation struct { // The mount accessor related to the auth mount. It is useful for integration with Identity Secrets Engine. // The mount accessor related to the auth mount. Accessor *string `json:"accessor,omitempty" tf:"accessor,omitempty"` // The API endpoint to use. Useful if you // are running GitHub Enterprise or an API-compatible authentication server. // The API endpoint to use. Useful if you are running GitHub Enterprise or an API-compatible authentication server. BaseURL *string `json:"baseUrl,omitempty" tf:"base_url,omitempty"` // Specifies the description of the mount. // This overrides the current stored value, if any. // Specifies the description of the mount. This overrides the current stored value, if any. Description *string `json:"description,omitempty" tf:"description,omitempty"` // If set, opts out of mount migration on path updates. // See here for more info on Mount Migration // If set, opts out of mount migration on path updates. DisableRemount *bool `json:"disableRemount,omitempty" tf:"disable_remount,omitempty"` ID *string `json:"id,omitempty" tf:"id,omitempty"` // The namespace to provision the resource in. // The value should not contain leading or trailing forward slashes. // The namespace is always relative to the provider's configured namespace. // Available only for Vault Enterprise. // Target namespace. (requires Enterprise) Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"` // The organization configured users must be part of. // The organization users must be part of. Organization *string `json:"organization,omitempty" tf:"organization,omitempty"` // The ID of the organization users must be part of. // Vault will attempt to fetch and set this value if it is not provided. (Vault 1.10+) // The ID of the organization users must be part of. Vault will attempt to fetch and set this value if it is not provided (vault-1.10+) OrganizationID *float64 `json:"organizationId,omitempty" tf:"organization_id,omitempty"` // Path where the auth backend is mounted. Defaults to auth/github // if not specified. // Path where the auth backend is mounted Path *string `json:"path,omitempty" tf:"path,omitempty"` // List of CIDR blocks; if set, specifies blocks of IP // addresses which can authenticate successfully, and ties the resulting token to these blocks // as well. // Specifies the blocks of IP addresses which are allowed to use the generated token TokenBoundCidrs []*string `json:"tokenBoundCidrs,omitempty" tf:"token_bound_cidrs,omitempty"` // If set, will encode an // explicit max TTL // onto the token in number of seconds. This is a hard cap even if token_ttl and // token_max_ttl would otherwise allow a renewal. // Generated Token's Explicit Maximum TTL in seconds TokenExplicitMaxTTL *float64 `json:"tokenExplicitMaxTtl,omitempty" tf:"token_explicit_max_ttl,omitempty"` // The maximum lifetime for generated tokens in number of seconds. // Its current value will be referenced at renewal time. // The maximum lifetime of the generated token TokenMaxTTL *float64 `json:"tokenMaxTtl,omitempty" tf:"token_max_ttl,omitempty"` // If set, the default policy will not be set on // generated tokens; otherwise it will be added to the policies set in token_policies. // If true, the 'default' policy will not automatically be added to generated tokens TokenNoDefaultPolicy *bool `json:"tokenNoDefaultPolicy,omitempty" tf:"token_no_default_policy,omitempty"` // The maximum number // of times a generated token may be used (within its lifetime); 0 means unlimited. // The maximum number of times a token may be used, a value of zero means unlimited TokenNumUses *float64 `json:"tokenNumUses,omitempty" tf:"token_num_uses,omitempty"` // If set, indicates that the // token generated using this role should never expire. The token should be renewed within the // duration specified by this value. At each renewal, the token's TTL will be set to the // value of this field. Specified in seconds. // Generated Token's Period TokenPeriod *float64 `json:"tokenPeriod,omitempty" tf:"token_period,omitempty"` // List of policies to encode onto generated tokens. Depending // on the auth method, this list may be supplemented by user/group/other values. // Generated Token's Policies TokenPolicies []*string `json:"tokenPolicies,omitempty" tf:"token_policies,omitempty"` // The incremental lifetime for generated tokens in number of seconds. // Its current value will be referenced at renewal time. // The initial ttl of the token to generate in seconds TokenTTL *float64 `json:"tokenTtl,omitempty" tf:"token_ttl,omitempty"` // The type of token that should be generated. Can be service, // batch, or default to use the mount's tuned default (which unless changed will be // service tokens). For token store roles, there are two additional possibilities: // default-service and default-batch which specify the type to return unless the client // requests a different type at generation time. // The type of token to generate, service or batch TokenType *string `json:"tokenType,omitempty" tf:"token_type,omitempty"` // Extra configuration block. Structure is documented below. Tune []TuneObservation `json:"tune,omitempty" tf:"tune,omitempty"` }
func (*AuthBackendObservation) DeepCopy ¶
func (in *AuthBackendObservation) DeepCopy() *AuthBackendObservation
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendObservation.
func (*AuthBackendObservation) DeepCopyInto ¶
func (in *AuthBackendObservation) DeepCopyInto(out *AuthBackendObservation)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AuthBackendParameters ¶
type AuthBackendParameters struct { // The API endpoint to use. Useful if you // are running GitHub Enterprise or an API-compatible authentication server. // The API endpoint to use. Useful if you are running GitHub Enterprise or an API-compatible authentication server. // +kubebuilder:validation:Optional BaseURL *string `json:"baseUrl,omitempty" tf:"base_url,omitempty"` // Specifies the description of the mount. // This overrides the current stored value, if any. // Specifies the description of the mount. This overrides the current stored value, if any. // +kubebuilder:validation:Optional Description *string `json:"description,omitempty" tf:"description,omitempty"` // If set, opts out of mount migration on path updates. // See here for more info on Mount Migration // If set, opts out of mount migration on path updates. // +kubebuilder:validation:Optional DisableRemount *bool `json:"disableRemount,omitempty" tf:"disable_remount,omitempty"` // The namespace to provision the resource in. // The value should not contain leading or trailing forward slashes. // The namespace is always relative to the provider's configured namespace. // Available only for Vault Enterprise. // Target namespace. (requires Enterprise) // +kubebuilder:validation:Optional Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"` // The organization configured users must be part of. // The organization users must be part of. // +kubebuilder:validation:Optional Organization *string `json:"organization,omitempty" tf:"organization,omitempty"` // The ID of the organization users must be part of. // Vault will attempt to fetch and set this value if it is not provided. (Vault 1.10+) // The ID of the organization users must be part of. Vault will attempt to fetch and set this value if it is not provided (vault-1.10+) // +kubebuilder:validation:Optional OrganizationID *float64 `json:"organizationId,omitempty" tf:"organization_id,omitempty"` // Path where the auth backend is mounted. Defaults to auth/github // if not specified. // Path where the auth backend is mounted // +kubebuilder:validation:Optional Path *string `json:"path,omitempty" tf:"path,omitempty"` // List of CIDR blocks; if set, specifies blocks of IP // addresses which can authenticate successfully, and ties the resulting token to these blocks // as well. // Specifies the blocks of IP addresses which are allowed to use the generated token // +kubebuilder:validation:Optional TokenBoundCidrs []*string `json:"tokenBoundCidrs,omitempty" tf:"token_bound_cidrs,omitempty"` // If set, will encode an // explicit max TTL // onto the token in number of seconds. This is a hard cap even if token_ttl and // token_max_ttl would otherwise allow a renewal. // Generated Token's Explicit Maximum TTL in seconds // +kubebuilder:validation:Optional TokenExplicitMaxTTL *float64 `json:"tokenExplicitMaxTtl,omitempty" tf:"token_explicit_max_ttl,omitempty"` // The maximum lifetime for generated tokens in number of seconds. // Its current value will be referenced at renewal time. // The maximum lifetime of the generated token // +kubebuilder:validation:Optional TokenMaxTTL *float64 `json:"tokenMaxTtl,omitempty" tf:"token_max_ttl,omitempty"` // If set, the default policy will not be set on // generated tokens; otherwise it will be added to the policies set in token_policies. // If true, the 'default' policy will not automatically be added to generated tokens // +kubebuilder:validation:Optional TokenNoDefaultPolicy *bool `json:"tokenNoDefaultPolicy,omitempty" tf:"token_no_default_policy,omitempty"` // The maximum number // of times a generated token may be used (within its lifetime); 0 means unlimited. // The maximum number of times a token may be used, a value of zero means unlimited // +kubebuilder:validation:Optional TokenNumUses *float64 `json:"tokenNumUses,omitempty" tf:"token_num_uses,omitempty"` // If set, indicates that the // token generated using this role should never expire. The token should be renewed within the // duration specified by this value. At each renewal, the token's TTL will be set to the // value of this field. Specified in seconds. // Generated Token's Period // +kubebuilder:validation:Optional TokenPeriod *float64 `json:"tokenPeriod,omitempty" tf:"token_period,omitempty"` // List of policies to encode onto generated tokens. Depending // on the auth method, this list may be supplemented by user/group/other values. // Generated Token's Policies // +kubebuilder:validation:Optional TokenPolicies []*string `json:"tokenPolicies,omitempty" tf:"token_policies,omitempty"` // The incremental lifetime for generated tokens in number of seconds. // Its current value will be referenced at renewal time. // The initial ttl of the token to generate in seconds // +kubebuilder:validation:Optional TokenTTL *float64 `json:"tokenTtl,omitempty" tf:"token_ttl,omitempty"` // The type of token that should be generated. Can be service, // batch, or default to use the mount's tuned default (which unless changed will be // service tokens). For token store roles, there are two additional possibilities: // default-service and default-batch which specify the type to return unless the client // requests a different type at generation time. // The type of token to generate, service or batch // +kubebuilder:validation:Optional TokenType *string `json:"tokenType,omitempty" tf:"token_type,omitempty"` // Extra configuration block. Structure is documented below. // +kubebuilder:validation:Optional Tune []TuneParameters `json:"tune,omitempty" tf:"tune,omitempty"` }
func (*AuthBackendParameters) DeepCopy ¶
func (in *AuthBackendParameters) DeepCopy() *AuthBackendParameters
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendParameters.
func (*AuthBackendParameters) DeepCopyInto ¶
func (in *AuthBackendParameters) DeepCopyInto(out *AuthBackendParameters)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AuthBackendSpec ¶
type AuthBackendSpec struct { v1.ResourceSpec `json:",inline"` ForProvider AuthBackendParameters `json:"forProvider"` // THIS IS AN ALPHA FIELD. Do not use it in production. It is not honored // unless the relevant Crossplane feature flag is enabled, and may be // changed or removed without notice. // InitProvider holds the same fields as ForProvider, with the exception // of Identifier and other resource reference fields. The fields that are // in InitProvider are merged into ForProvider when the resource is created. // The same fields are also added to the terraform ignore_changes hook, to // avoid updating them after creation. This is useful for fields that are // required on creation, but we do not desire to update them after creation, // for example because of an external controller is managing them, like an // autoscaler. InitProvider AuthBackendInitParameters `json:"initProvider,omitempty"` }
AuthBackendSpec defines the desired state of AuthBackend
func (*AuthBackendSpec) DeepCopy ¶
func (in *AuthBackendSpec) DeepCopy() *AuthBackendSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendSpec.
func (*AuthBackendSpec) DeepCopyInto ¶
func (in *AuthBackendSpec) DeepCopyInto(out *AuthBackendSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type AuthBackendStatus ¶
type AuthBackendStatus struct { v1.ResourceStatus `json:",inline"` AtProvider AuthBackendObservation `json:"atProvider,omitempty"` }
AuthBackendStatus defines the observed state of AuthBackend.
func (*AuthBackendStatus) DeepCopy ¶
func (in *AuthBackendStatus) DeepCopy() *AuthBackendStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new AuthBackendStatus.
func (*AuthBackendStatus) DeepCopyInto ¶
func (in *AuthBackendStatus) DeepCopyInto(out *AuthBackendStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type Team ¶
type Team struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` // +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.team) || has(self.initProvider.team)",message="team is a required parameter" Spec TeamSpec `json:"spec"` Status TeamStatus `json:"status,omitempty"` }
Team is the Schema for the Teams API. Manages Team mappings for Github Auth backend mounts in Vault. +kubebuilder:printcolumn:name="READY",type="string",JSONPath=".status.conditions[?(@.type=='Ready')].status" +kubebuilder:printcolumn:name="SYNCED",type="string",JSONPath=".status.conditions[?(@.type=='Synced')].status" +kubebuilder:printcolumn:name="EXTERNAL-NAME",type="string",JSONPath=".metadata.annotations.crossplane\\.io/external-name" +kubebuilder:printcolumn:name="AGE",type="date",JSONPath=".metadata.creationTimestamp" +kubebuilder:subresource:status +kubebuilder:resource:scope=Cluster,categories={crossplane,managed,vault}
func (*Team) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Team.
func (*Team) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*Team) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*Team) GetCondition ¶
func (mg *Team) GetCondition(ct xpv1.ConditionType) xpv1.Condition
GetCondition of this Team.
func (*Team) GetConnectionDetailsMapping ¶
GetConnectionDetailsMapping for this Team
func (*Team) GetDeletionPolicy ¶
func (mg *Team) GetDeletionPolicy() xpv1.DeletionPolicy
GetDeletionPolicy of this Team.
func (*Team) GetInitParameters ¶ added in v0.2.0
GetInitParameters of this Team
func (*Team) GetManagementPolicies ¶ added in v0.2.0
func (mg *Team) GetManagementPolicies() xpv1.ManagementPolicies
GetManagementPolicies of this Team.
func (*Team) GetObservation ¶
GetObservation of this Team
func (*Team) GetParameters ¶
GetParameters of this Team
func (*Team) GetProviderConfigReference ¶
GetProviderConfigReference of this Team.
func (*Team) GetProviderReference ¶
GetProviderReference of this Team. Deprecated: Use GetProviderConfigReference.
func (*Team) GetPublishConnectionDetailsTo ¶
func (mg *Team) GetPublishConnectionDetailsTo() *xpv1.PublishConnectionDetailsTo
GetPublishConnectionDetailsTo of this Team.
func (*Team) GetTerraformResourceType ¶
GetTerraformResourceType returns Terraform resource type for this Team
func (*Team) GetTerraformSchemaVersion ¶
GetTerraformSchemaVersion returns the associated Terraform schema version
func (*Team) GetWriteConnectionSecretToReference ¶
func (mg *Team) GetWriteConnectionSecretToReference() *xpv1.SecretReference
GetWriteConnectionSecretToReference of this Team.
func (*Team) LateInitialize ¶
LateInitialize this Team using its observed tfState. returns True if there are any spec changes for the resource.
func (*Team) SetConditions ¶
SetConditions of this Team.
func (*Team) SetDeletionPolicy ¶
func (mg *Team) SetDeletionPolicy(r xpv1.DeletionPolicy)
SetDeletionPolicy of this Team.
func (*Team) SetManagementPolicies ¶ added in v0.2.0
func (mg *Team) SetManagementPolicies(r xpv1.ManagementPolicies)
SetManagementPolicies of this Team.
func (*Team) SetObservation ¶
SetObservation for this Team
func (*Team) SetParameters ¶
SetParameters for this Team
func (*Team) SetProviderConfigReference ¶
SetProviderConfigReference of this Team.
func (*Team) SetProviderReference ¶
SetProviderReference of this Team. Deprecated: Use SetProviderConfigReference.
func (*Team) SetPublishConnectionDetailsTo ¶
func (mg *Team) SetPublishConnectionDetailsTo(r *xpv1.PublishConnectionDetailsTo)
SetPublishConnectionDetailsTo of this Team.
func (*Team) SetWriteConnectionSecretToReference ¶
func (mg *Team) SetWriteConnectionSecretToReference(r *xpv1.SecretReference)
SetWriteConnectionSecretToReference of this Team.
type TeamInitParameters ¶ added in v0.2.0
type TeamInitParameters struct { // Path where the github auth backend is mounted. Defaults to github // if not specified. // Auth backend to which team mapping will be configured. Backend *string `json:"backend,omitempty" tf:"backend,omitempty"` // The namespace to provision the resource in. // The value should not contain leading or trailing forward slashes. // The namespace is always relative to the provider's configured namespace. // Available only for Vault Enterprise. // Target namespace. (requires Enterprise) Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"` // An array of strings specifying the policies to be set on tokens // issued using this role. // Policies to be assigned to this team. Policies []*string `json:"policies,omitempty" tf:"policies,omitempty"` // GitHub team name in "slugified" format. Team *string `json:"team,omitempty" tf:"team,omitempty"` }
func (*TeamInitParameters) DeepCopy ¶ added in v0.2.0
func (in *TeamInitParameters) DeepCopy() *TeamInitParameters
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TeamInitParameters.
func (*TeamInitParameters) DeepCopyInto ¶ added in v0.2.0
func (in *TeamInitParameters) DeepCopyInto(out *TeamInitParameters)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TeamList ¶
type TeamList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []Team `json:"items"` }
TeamList contains a list of Teams
func (*TeamList) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TeamList.
func (*TeamList) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*TeamList) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type TeamObservation ¶
type TeamObservation struct { // Path where the github auth backend is mounted. Defaults to github // if not specified. // Auth backend to which team mapping will be configured. Backend *string `json:"backend,omitempty" tf:"backend,omitempty"` ID *string `json:"id,omitempty" tf:"id,omitempty"` // The namespace to provision the resource in. // The value should not contain leading or trailing forward slashes. // The namespace is always relative to the provider's configured namespace. // Available only for Vault Enterprise. // Target namespace. (requires Enterprise) Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"` // An array of strings specifying the policies to be set on tokens // issued using this role. // Policies to be assigned to this team. Policies []*string `json:"policies,omitempty" tf:"policies,omitempty"` // GitHub team name in "slugified" format. Team *string `json:"team,omitempty" tf:"team,omitempty"` }
func (*TeamObservation) DeepCopy ¶
func (in *TeamObservation) DeepCopy() *TeamObservation
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TeamObservation.
func (*TeamObservation) DeepCopyInto ¶
func (in *TeamObservation) DeepCopyInto(out *TeamObservation)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TeamParameters ¶
type TeamParameters struct { // Path where the github auth backend is mounted. Defaults to github // if not specified. // Auth backend to which team mapping will be configured. // +kubebuilder:validation:Optional Backend *string `json:"backend,omitempty" tf:"backend,omitempty"` // The namespace to provision the resource in. // The value should not contain leading or trailing forward slashes. // The namespace is always relative to the provider's configured namespace. // Available only for Vault Enterprise. // Target namespace. (requires Enterprise) // +kubebuilder:validation:Optional Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"` // An array of strings specifying the policies to be set on tokens // issued using this role. // Policies to be assigned to this team. // +kubebuilder:validation:Optional Policies []*string `json:"policies,omitempty" tf:"policies,omitempty"` // GitHub team name in "slugified" format. // +kubebuilder:validation:Optional Team *string `json:"team,omitempty" tf:"team,omitempty"` }
func (*TeamParameters) DeepCopy ¶
func (in *TeamParameters) DeepCopy() *TeamParameters
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TeamParameters.
func (*TeamParameters) DeepCopyInto ¶
func (in *TeamParameters) DeepCopyInto(out *TeamParameters)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TeamSpec ¶
type TeamSpec struct { v1.ResourceSpec `json:",inline"` ForProvider TeamParameters `json:"forProvider"` // THIS IS AN ALPHA FIELD. Do not use it in production. It is not honored // unless the relevant Crossplane feature flag is enabled, and may be // changed or removed without notice. // InitProvider holds the same fields as ForProvider, with the exception // of Identifier and other resource reference fields. The fields that are // in InitProvider are merged into ForProvider when the resource is created. // The same fields are also added to the terraform ignore_changes hook, to // avoid updating them after creation. This is useful for fields that are // required on creation, but we do not desire to update them after creation, // for example because of an external controller is managing them, like an // autoscaler. InitProvider TeamInitParameters `json:"initProvider,omitempty"` }
TeamSpec defines the desired state of Team
func (*TeamSpec) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TeamSpec.
func (*TeamSpec) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TeamStatus ¶
type TeamStatus struct { v1.ResourceStatus `json:",inline"` AtProvider TeamObservation `json:"atProvider,omitempty"` }
TeamStatus defines the observed state of Team.
func (*TeamStatus) DeepCopy ¶
func (in *TeamStatus) DeepCopy() *TeamStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TeamStatus.
func (*TeamStatus) DeepCopyInto ¶
func (in *TeamStatus) DeepCopyInto(out *TeamStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TuneInitParameters ¶ added in v0.2.0
type TuneInitParameters struct { // List of headers to whitelist and allowing // a plugin to include them in the response. AllowedResponseHeaders []*string `json:"allowedResponseHeaders,omitempty" tf:"allowed_response_headers"` // Specifies the list of keys that will // not be HMAC'd by audit devices in the request data object. AuditNonHMACRequestKeys []*string `json:"auditNonHmacRequestKeys,omitempty" tf:"audit_non_hmac_request_keys"` // Specifies the list of keys that will // not be HMAC'd by audit devices in the response data object. AuditNonHMACResponseKeys []*string `json:"auditNonHmacResponseKeys,omitempty" tf:"audit_non_hmac_response_keys"` // Specifies the default time-to-live. // If set, this overrides the global default. // Must be a valid duration string DefaultLeaseTTL *string `json:"defaultLeaseTtl,omitempty" tf:"default_lease_ttl"` // Specifies whether to show this mount in // the UI-specific listing endpoint. Valid values are "unauth" or "hidden". ListingVisibility *string `json:"listingVisibility,omitempty" tf:"listing_visibility"` // Specifies the maximum time-to-live. // If set, this overrides the global default. // Must be a valid duration string MaxLeaseTTL *string `json:"maxLeaseTtl,omitempty" tf:"max_lease_ttl"` // List of headers to whitelist and // pass from the request to the backend. PassthroughRequestHeaders []*string `json:"passthroughRequestHeaders,omitempty" tf:"passthrough_request_headers"` // Specifies the type of tokens that should be returned by // the mount. Valid values are "default-service", "default-batch", "service", "batch". TokenType *string `json:"tokenType,omitempty" tf:"token_type"` }
func (*TuneInitParameters) DeepCopy ¶ added in v0.2.0
func (in *TuneInitParameters) DeepCopy() *TuneInitParameters
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TuneInitParameters.
func (*TuneInitParameters) DeepCopyInto ¶ added in v0.2.0
func (in *TuneInitParameters) DeepCopyInto(out *TuneInitParameters)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TuneObservation ¶
type TuneObservation struct { // List of headers to whitelist and allowing // a plugin to include them in the response. AllowedResponseHeaders []*string `json:"allowedResponseHeaders,omitempty" tf:"allowed_response_headers,omitempty"` // Specifies the list of keys that will // not be HMAC'd by audit devices in the request data object. AuditNonHMACRequestKeys []*string `json:"auditNonHmacRequestKeys,omitempty" tf:"audit_non_hmac_request_keys,omitempty"` // Specifies the list of keys that will // not be HMAC'd by audit devices in the response data object. AuditNonHMACResponseKeys []*string `json:"auditNonHmacResponseKeys,omitempty" tf:"audit_non_hmac_response_keys,omitempty"` // Specifies the default time-to-live. // If set, this overrides the global default. // Must be a valid duration string DefaultLeaseTTL *string `json:"defaultLeaseTtl,omitempty" tf:"default_lease_ttl,omitempty"` // Specifies whether to show this mount in // the UI-specific listing endpoint. Valid values are "unauth" or "hidden". ListingVisibility *string `json:"listingVisibility,omitempty" tf:"listing_visibility,omitempty"` // Specifies the maximum time-to-live. // If set, this overrides the global default. // Must be a valid duration string MaxLeaseTTL *string `json:"maxLeaseTtl,omitempty" tf:"max_lease_ttl,omitempty"` // List of headers to whitelist and // pass from the request to the backend. PassthroughRequestHeaders []*string `json:"passthroughRequestHeaders,omitempty" tf:"passthrough_request_headers,omitempty"` // Specifies the type of tokens that should be returned by // the mount. Valid values are "default-service", "default-batch", "service", "batch". TokenType *string `json:"tokenType,omitempty" tf:"token_type,omitempty"` }
func (*TuneObservation) DeepCopy ¶
func (in *TuneObservation) DeepCopy() *TuneObservation
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TuneObservation.
func (*TuneObservation) DeepCopyInto ¶
func (in *TuneObservation) DeepCopyInto(out *TuneObservation)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type TuneParameters ¶
type TuneParameters struct { // List of headers to whitelist and allowing // a plugin to include them in the response. // +kubebuilder:validation:Optional AllowedResponseHeaders []*string `json:"allowedResponseHeaders,omitempty" tf:"allowed_response_headers"` // Specifies the list of keys that will // not be HMAC'd by audit devices in the request data object. // +kubebuilder:validation:Optional AuditNonHMACRequestKeys []*string `json:"auditNonHmacRequestKeys,omitempty" tf:"audit_non_hmac_request_keys"` // Specifies the list of keys that will // not be HMAC'd by audit devices in the response data object. // +kubebuilder:validation:Optional AuditNonHMACResponseKeys []*string `json:"auditNonHmacResponseKeys,omitempty" tf:"audit_non_hmac_response_keys"` // Specifies the default time-to-live. // If set, this overrides the global default. // Must be a valid duration string // +kubebuilder:validation:Optional DefaultLeaseTTL *string `json:"defaultLeaseTtl,omitempty" tf:"default_lease_ttl"` // Specifies whether to show this mount in // the UI-specific listing endpoint. Valid values are "unauth" or "hidden". // +kubebuilder:validation:Optional ListingVisibility *string `json:"listingVisibility,omitempty" tf:"listing_visibility"` // Specifies the maximum time-to-live. // If set, this overrides the global default. // Must be a valid duration string // +kubebuilder:validation:Optional MaxLeaseTTL *string `json:"maxLeaseTtl,omitempty" tf:"max_lease_ttl"` // List of headers to whitelist and // pass from the request to the backend. // +kubebuilder:validation:Optional PassthroughRequestHeaders []*string `json:"passthroughRequestHeaders,omitempty" tf:"passthrough_request_headers"` // Specifies the type of tokens that should be returned by // the mount. Valid values are "default-service", "default-batch", "service", "batch". // +kubebuilder:validation:Optional TokenType *string `json:"tokenType,omitempty" tf:"token_type"` }
func (*TuneParameters) DeepCopy ¶
func (in *TuneParameters) DeepCopy() *TuneParameters
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new TuneParameters.
func (*TuneParameters) DeepCopyInto ¶
func (in *TuneParameters) DeepCopyInto(out *TuneParameters)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type User ¶
type User struct { metav1.TypeMeta `json:",inline"` metav1.ObjectMeta `json:"metadata,omitempty"` // +kubebuilder:validation:XValidation:rule="!('*' in self.managementPolicies || 'Create' in self.managementPolicies || 'Update' in self.managementPolicies) || has(self.forProvider.user) || has(self.initProvider.user)",message="user is a required parameter" Spec UserSpec `json:"spec"` Status UserStatus `json:"status,omitempty"` }
User is the Schema for the Users API. Manages User mappings for Github Auth backend mounts in Vault. +kubebuilder:printcolumn:name="READY",type="string",JSONPath=".status.conditions[?(@.type=='Ready')].status" +kubebuilder:printcolumn:name="SYNCED",type="string",JSONPath=".status.conditions[?(@.type=='Synced')].status" +kubebuilder:printcolumn:name="EXTERNAL-NAME",type="string",JSONPath=".metadata.annotations.crossplane\\.io/external-name" +kubebuilder:printcolumn:name="AGE",type="date",JSONPath=".metadata.creationTimestamp" +kubebuilder:subresource:status +kubebuilder:resource:scope=Cluster,categories={crossplane,managed,vault}
func (*User) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new User.
func (*User) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*User) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*User) GetCondition ¶
func (mg *User) GetCondition(ct xpv1.ConditionType) xpv1.Condition
GetCondition of this User.
func (*User) GetConnectionDetailsMapping ¶
GetConnectionDetailsMapping for this User
func (*User) GetDeletionPolicy ¶
func (mg *User) GetDeletionPolicy() xpv1.DeletionPolicy
GetDeletionPolicy of this User.
func (*User) GetInitParameters ¶ added in v0.2.0
GetInitParameters of this User
func (*User) GetManagementPolicies ¶ added in v0.2.0
func (mg *User) GetManagementPolicies() xpv1.ManagementPolicies
GetManagementPolicies of this User.
func (*User) GetObservation ¶
GetObservation of this User
func (*User) GetParameters ¶
GetParameters of this User
func (*User) GetProviderConfigReference ¶
GetProviderConfigReference of this User.
func (*User) GetProviderReference ¶
GetProviderReference of this User. Deprecated: Use GetProviderConfigReference.
func (*User) GetPublishConnectionDetailsTo ¶
func (mg *User) GetPublishConnectionDetailsTo() *xpv1.PublishConnectionDetailsTo
GetPublishConnectionDetailsTo of this User.
func (*User) GetTerraformResourceType ¶
GetTerraformResourceType returns Terraform resource type for this User
func (*User) GetTerraformSchemaVersion ¶
GetTerraformSchemaVersion returns the associated Terraform schema version
func (*User) GetWriteConnectionSecretToReference ¶
func (mg *User) GetWriteConnectionSecretToReference() *xpv1.SecretReference
GetWriteConnectionSecretToReference of this User.
func (*User) LateInitialize ¶
LateInitialize this User using its observed tfState. returns True if there are any spec changes for the resource.
func (*User) SetConditions ¶
SetConditions of this User.
func (*User) SetDeletionPolicy ¶
func (mg *User) SetDeletionPolicy(r xpv1.DeletionPolicy)
SetDeletionPolicy of this User.
func (*User) SetManagementPolicies ¶ added in v0.2.0
func (mg *User) SetManagementPolicies(r xpv1.ManagementPolicies)
SetManagementPolicies of this User.
func (*User) SetObservation ¶
SetObservation for this User
func (*User) SetParameters ¶
SetParameters for this User
func (*User) SetProviderConfigReference ¶
SetProviderConfigReference of this User.
func (*User) SetProviderReference ¶
SetProviderReference of this User. Deprecated: Use SetProviderConfigReference.
func (*User) SetPublishConnectionDetailsTo ¶
func (mg *User) SetPublishConnectionDetailsTo(r *xpv1.PublishConnectionDetailsTo)
SetPublishConnectionDetailsTo of this User.
func (*User) SetWriteConnectionSecretToReference ¶
func (mg *User) SetWriteConnectionSecretToReference(r *xpv1.SecretReference)
SetWriteConnectionSecretToReference of this User.
type UserInitParameters ¶ added in v0.2.0
type UserInitParameters struct { // Path where the github auth backend is mounted. Defaults to github // if not specified. // Auth backend to which user mapping will be congigured. Backend *string `json:"backend,omitempty" tf:"backend,omitempty"` // The namespace to provision the resource in. // The value should not contain leading or trailing forward slashes. // The namespace is always relative to the provider's configured namespace. // Available only for Vault Enterprise. // Target namespace. (requires Enterprise) Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"` // An array of strings specifying the policies to be set on tokens issued // using this role. // Policies to be assigned to this user. Policies []*string `json:"policies,omitempty" tf:"policies,omitempty"` // GitHub user name. // GitHub user name. User *string `json:"user,omitempty" tf:"user,omitempty"` }
func (*UserInitParameters) DeepCopy ¶ added in v0.2.0
func (in *UserInitParameters) DeepCopy() *UserInitParameters
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new UserInitParameters.
func (*UserInitParameters) DeepCopyInto ¶ added in v0.2.0
func (in *UserInitParameters) DeepCopyInto(out *UserInitParameters)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type UserList ¶
type UserList struct { metav1.TypeMeta `json:",inline"` metav1.ListMeta `json:"metadata,omitempty"` Items []User `json:"items"` }
UserList contains a list of Users
func (*UserList) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new UserList.
func (*UserList) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*UserList) DeepCopyObject ¶
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type UserObservation ¶
type UserObservation struct { // Path where the github auth backend is mounted. Defaults to github // if not specified. // Auth backend to which user mapping will be congigured. Backend *string `json:"backend,omitempty" tf:"backend,omitempty"` ID *string `json:"id,omitempty" tf:"id,omitempty"` // The namespace to provision the resource in. // The value should not contain leading or trailing forward slashes. // The namespace is always relative to the provider's configured namespace. // Available only for Vault Enterprise. // Target namespace. (requires Enterprise) Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"` // An array of strings specifying the policies to be set on tokens issued // using this role. // Policies to be assigned to this user. Policies []*string `json:"policies,omitempty" tf:"policies,omitempty"` // GitHub user name. // GitHub user name. User *string `json:"user,omitempty" tf:"user,omitempty"` }
func (*UserObservation) DeepCopy ¶
func (in *UserObservation) DeepCopy() *UserObservation
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new UserObservation.
func (*UserObservation) DeepCopyInto ¶
func (in *UserObservation) DeepCopyInto(out *UserObservation)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type UserParameters ¶
type UserParameters struct { // Path where the github auth backend is mounted. Defaults to github // if not specified. // Auth backend to which user mapping will be congigured. // +kubebuilder:validation:Optional Backend *string `json:"backend,omitempty" tf:"backend,omitempty"` // The namespace to provision the resource in. // The value should not contain leading or trailing forward slashes. // The namespace is always relative to the provider's configured namespace. // Available only for Vault Enterprise. // Target namespace. (requires Enterprise) // +kubebuilder:validation:Optional Namespace *string `json:"namespace,omitempty" tf:"namespace,omitempty"` // An array of strings specifying the policies to be set on tokens issued // using this role. // Policies to be assigned to this user. // +kubebuilder:validation:Optional Policies []*string `json:"policies,omitempty" tf:"policies,omitempty"` // GitHub user name. // GitHub user name. // +kubebuilder:validation:Optional User *string `json:"user,omitempty" tf:"user,omitempty"` }
func (*UserParameters) DeepCopy ¶
func (in *UserParameters) DeepCopy() *UserParameters
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new UserParameters.
func (*UserParameters) DeepCopyInto ¶
func (in *UserParameters) DeepCopyInto(out *UserParameters)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type UserSpec ¶
type UserSpec struct { v1.ResourceSpec `json:",inline"` ForProvider UserParameters `json:"forProvider"` // THIS IS AN ALPHA FIELD. Do not use it in production. It is not honored // unless the relevant Crossplane feature flag is enabled, and may be // changed or removed without notice. // InitProvider holds the same fields as ForProvider, with the exception // of Identifier and other resource reference fields. The fields that are // in InitProvider are merged into ForProvider when the resource is created. // The same fields are also added to the terraform ignore_changes hook, to // avoid updating them after creation. This is useful for fields that are // required on creation, but we do not desire to update them after creation, // for example because of an external controller is managing them, like an // autoscaler. InitProvider UserInitParameters `json:"initProvider,omitempty"` }
UserSpec defines the desired state of User
func (*UserSpec) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new UserSpec.
func (*UserSpec) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type UserStatus ¶
type UserStatus struct { v1.ResourceStatus `json:",inline"` AtProvider UserObservation `json:"atProvider,omitempty"` }
UserStatus defines the observed state of User.
func (*UserStatus) DeepCopy ¶
func (in *UserStatus) DeepCopy() *UserStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new UserStatus.
func (*UserStatus) DeepCopyInto ¶
func (in *UserStatus) DeepCopyInto(out *UserStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.