/
types_kubeapiserver.go
83 lines (68 loc) · 3.32 KB
/
types_kubeapiserver.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
package v1
import (
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
)
// +genclient
// +genclient:nonNamespaced
// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
// +kubebuilder:object:root=true
// +kubebuilder:resource:path=kubeapiservers,scope=Cluster,categories=coreoperators
// +kubebuilder:subresource:status
// +openshift:api-approved.openshift.io=https://github.com/openshift/api/pull/475
// +openshift:file-pattern=cvoRunLevel=0000_20,operatorName=kube-apiserver,operatorOrdering=01
// KubeAPIServer provides information to configure an operator to manage kube-apiserver.
//
// Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).
// +openshift:compatibility-gen:level=1
// +openshift:compatibility-gen:level=1
type KubeAPIServer struct {
metav1.TypeMeta `json:",inline"`
// metadata is the standard object's metadata.
// More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
metav1.ObjectMeta `json:"metadata"`
// spec is the specification of the desired behavior of the Kubernetes API Server
// +kubebuilder:validation:Required
// +required
Spec KubeAPIServerSpec `json:"spec"`
// status is the most recently observed status of the Kubernetes API Server
// +optional
Status KubeAPIServerStatus `json:"status"`
}
type KubeAPIServerSpec struct {
StaticPodOperatorSpec `json:",inline"`
}
type KubeAPIServerStatus struct {
StaticPodOperatorStatus `json:",inline"`
// serviceAccountIssuers tracks history of used service account issuers.
// The item without expiration time represents the currently used service account issuer.
// The other items represents service account issuers that were used previously and are still being trusted.
// The default expiration for the items is set by the platform and it defaults to 24h.
// see: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection
// +optional
ServiceAccountIssuers []ServiceAccountIssuerStatus `json:"serviceAccountIssuers,omitempty"`
}
type ServiceAccountIssuerStatus struct {
// name is the name of the service account issuer
// ---
// + This value comes from the serviceAccountIssuer field on the authentication.config.openshift.io/v1 resource.
// + As the authentication field is not validated, we cannot apply validation here else this may cause the controller
// + to error when trying to update this status field.
Name string `json:"name"`
// expirationTime is the time after which this service account issuer will be pruned and removed from the trusted list
// of service account issuers.
// +optional
ExpirationTime *metav1.Time `json:"expirationTime,omitempty"`
}
// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
// KubeAPIServerList is a collection of items
//
// Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).
// +openshift:compatibility-gen:level=1
type KubeAPIServerList struct {
metav1.TypeMeta `json:",inline"`
// metadata is the standard list's metadata.
// More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
metav1.ListMeta `json:"metadata"`
// Items contains the items
Items []KubeAPIServer `json:"items"`
}