-
Notifications
You must be signed in to change notification settings - Fork 86
/
secrets.hashicorp.com_vaultconnections.yaml
81 lines (80 loc) · 2.89 KB
/
secrets.hashicorp.com_vaultconnections.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
# Copyright (c) HashiCorp, Inc.
# SPDX-License-Identifier: BUSL-1.1
---
apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
annotations:
controller-gen.kubebuilder.io/version: v0.14.0
name: vaultconnections.secrets.hashicorp.com
spec:
group: secrets.hashicorp.com
names:
kind: VaultConnection
listKind: VaultConnectionList
plural: vaultconnections
singular: vaultconnection
scope: Namespaced
versions:
- name: v1beta1
schema:
openAPIV3Schema:
description: VaultConnection is the Schema for the vaultconnections API
properties:
apiVersion:
description: |-
APIVersion defines the versioned schema of this representation of an object.
Servers should convert recognized schemas to the latest internal value, and
may reject unrecognized values.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
type: string
kind:
description: |-
Kind is a string value representing the REST resource this object represents.
Servers may infer this from the endpoint the client submits requests to.
Cannot be updated.
In CamelCase.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
type: string
metadata:
type: object
spec:
description: VaultConnectionSpec defines the desired state of VaultConnection
properties:
address:
description: Address of the Vault server
type: string
caCertSecretRef:
description: CACertSecretRef is the name of a Kubernetes secret containing
the trusted PEM encoded CA certificate chain as `ca.crt`.
type: string
headers:
additionalProperties:
type: string
description: Headers to be included in all Vault requests.
type: object
skipTLSVerify:
default: false
description: SkipTLSVerify for TLS connections.
type: boolean
tlsServerName:
description: TLSServerName to use as the SNI host for TLS connections.
type: string
required:
- address
- skipTLSVerify
type: object
status:
description: VaultConnectionStatus defines the observed state of VaultConnection
properties:
valid:
description: Valid auth mechanism.
type: boolean
required:
- valid
type: object
type: object
served: true
storage: true
subresources:
status: {}