-
Notifications
You must be signed in to change notification settings - Fork 59
/
zz_targethttpsproxy_types.go
executable file
·334 lines (274 loc) · 18.7 KB
/
zz_targethttpsproxy_types.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
// SPDX-FileCopyrightText: 2024 The Crossplane Authors <https://crossplane.io>
//
// SPDX-License-Identifier: Apache-2.0
// Code generated by upjet. DO NOT EDIT.
package v1beta1
import (
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/apimachinery/pkg/runtime/schema"
v1 "github.com/crossplane/crossplane-runtime/apis/common/v1"
)
type TargetHTTPSProxyInitParameters struct {
// URLs to certificate manager certificate resources that are used to authenticate connections between users and the load balancer.
// Currently, you may specify up to 15 certificates. Certificate manager certificates do not apply when the load balancing scheme is set to INTERNAL_SELF_MANAGED.
// sslCertificates and certificateManagerCertificates fields can not be defined together.
// Accepted format is //certificatemanager.googleapis.com/projects/{project}/locations/{location}/certificates/{resourceName} or just the self_link projects/{project}/locations/{location}/certificates/{resourceName}
CertificateManagerCertificates []*string `json:"certificateManagerCertificates,omitempty" tf:"certificate_manager_certificates,omitempty"`
// A reference to the CertificateMap resource uri that identifies a certificate map
// associated with the given target proxy. This field can only be set for global target proxies.
// Accepted format is //certificatemanager.googleapis.com/projects/{project}/locations/{location}/certificateMaps/{resourceName}.
CertificateMap *string `json:"certificateMap,omitempty" tf:"certificate_map,omitempty"`
// An optional description of this resource.
Description *string `json:"description,omitempty" tf:"description,omitempty"`
// Specifies how long to keep a connection open, after completing a response,
// while there is no matching traffic (in seconds). If an HTTP keepalive is
// not specified, a default value (610 seconds) will be used. For Global
// external HTTP(S) load balancer, the minimum allowed value is 5 seconds and
// the maximum allowed value is 1200 seconds. For Global external HTTP(S)
// load balancer (classic), this option is not available publicly.
HTTPKeepAliveTimeoutSec *float64 `json:"httpKeepAliveTimeoutSec,omitempty" tf:"http_keep_alive_timeout_sec,omitempty"`
// The ID of the project in which the resource belongs.
// If it is not provided, the provider project is used.
Project *string `json:"project,omitempty" tf:"project,omitempty"`
// This field only applies when the forwarding rule that references
// this target proxy has a loadBalancingScheme set to INTERNAL_SELF_MANAGED.
ProxyBind *bool `json:"proxyBind,omitempty" tf:"proxy_bind,omitempty"`
// Specifies the QUIC override policy for this resource. This determines
// whether the load balancer will attempt to negotiate QUIC with clients
// or not. Can specify one of NONE, ENABLE, or DISABLE. If NONE is
// specified, Google manages whether QUIC is used.
// Default value is NONE.
// Possible values are: NONE, ENABLE, DISABLE.
QuicOverride *string `json:"quicOverride,omitempty" tf:"quic_override,omitempty"`
// URLs to SslCertificate resources that are used to authenticate connections between users and the load balancer.
// Currently, you may specify up to 15 SSL certificates. sslCertificates do not apply when the load balancing scheme is set to INTERNAL_SELF_MANAGED.
// sslCertificates and certificateManagerCertificates can not be defined together.
// +crossplane:generate:reference:type=github.com/upbound/provider-gcp/apis/compute/v1beta1.SSLCertificate
SSLCertificates []*string `json:"sslCertificates,omitempty" tf:"ssl_certificates,omitempty"`
// References to SSLCertificate in compute to populate sslCertificates.
// +kubebuilder:validation:Optional
SSLCertificatesRefs []v1.Reference `json:"sslCertificatesRefs,omitempty" tf:"-"`
// Selector for a list of SSLCertificate in compute to populate sslCertificates.
// +kubebuilder:validation:Optional
SSLCertificatesSelector *v1.Selector `json:"sslCertificatesSelector,omitempty" tf:"-"`
// A reference to the SslPolicy resource that will be associated with
// the TargetHttpsProxy resource. If not set, the TargetHttpsProxy
// resource will not have any SSL policy configured.
SSLPolicy *string `json:"sslPolicy,omitempty" tf:"ssl_policy,omitempty"`
// A URL referring to a networksecurity.ServerTlsPolicy
// resource that describes how the proxy should authenticate inbound
// traffic. serverTlsPolicy only applies to a global TargetHttpsProxy
// attached to globalForwardingRules with the loadBalancingScheme
// set to INTERNAL_SELF_MANAGED or EXTERNAL or EXTERNAL_MANAGED.
// For details which ServerTlsPolicy resources are accepted with
// INTERNAL_SELF_MANAGED and which with EXTERNAL, EXTERNAL_MANAGED
// loadBalancingScheme consult ServerTlsPolicy documentation.
// If left blank, communications are not encrypted.
ServerTLSPolicy *string `json:"serverTlsPolicy,omitempty" tf:"server_tls_policy,omitempty"`
// A reference to the UrlMap resource that defines the mapping from URL
// to the BackendService.
// +crossplane:generate:reference:type=github.com/upbound/provider-gcp/apis/compute/v1beta2.URLMap
// +crossplane:generate:reference:extractor=github.com/crossplane/upjet/pkg/resource.ExtractResourceID()
URLMap *string `json:"urlMap,omitempty" tf:"url_map,omitempty"`
// Reference to a URLMap in compute to populate urlMap.
// +kubebuilder:validation:Optional
URLMapRef *v1.Reference `json:"urlMapRef,omitempty" tf:"-"`
// Selector for a URLMap in compute to populate urlMap.
// +kubebuilder:validation:Optional
URLMapSelector *v1.Selector `json:"urlMapSelector,omitempty" tf:"-"`
}
type TargetHTTPSProxyObservation struct {
// URLs to certificate manager certificate resources that are used to authenticate connections between users and the load balancer.
// Currently, you may specify up to 15 certificates. Certificate manager certificates do not apply when the load balancing scheme is set to INTERNAL_SELF_MANAGED.
// sslCertificates and certificateManagerCertificates fields can not be defined together.
// Accepted format is //certificatemanager.googleapis.com/projects/{project}/locations/{location}/certificates/{resourceName} or just the self_link projects/{project}/locations/{location}/certificates/{resourceName}
CertificateManagerCertificates []*string `json:"certificateManagerCertificates,omitempty" tf:"certificate_manager_certificates,omitempty"`
// A reference to the CertificateMap resource uri that identifies a certificate map
// associated with the given target proxy. This field can only be set for global target proxies.
// Accepted format is //certificatemanager.googleapis.com/projects/{project}/locations/{location}/certificateMaps/{resourceName}.
CertificateMap *string `json:"certificateMap,omitempty" tf:"certificate_map,omitempty"`
// Creation timestamp in RFC3339 text format.
CreationTimestamp *string `json:"creationTimestamp,omitempty" tf:"creation_timestamp,omitempty"`
// An optional description of this resource.
Description *string `json:"description,omitempty" tf:"description,omitempty"`
// Specifies how long to keep a connection open, after completing a response,
// while there is no matching traffic (in seconds). If an HTTP keepalive is
// not specified, a default value (610 seconds) will be used. For Global
// external HTTP(S) load balancer, the minimum allowed value is 5 seconds and
// the maximum allowed value is 1200 seconds. For Global external HTTP(S)
// load balancer (classic), this option is not available publicly.
HTTPKeepAliveTimeoutSec *float64 `json:"httpKeepAliveTimeoutSec,omitempty" tf:"http_keep_alive_timeout_sec,omitempty"`
// an identifier for the resource with format projects/{{project}}/global/targetHttpsProxies/{{name}}
ID *string `json:"id,omitempty" tf:"id,omitempty"`
// The ID of the project in which the resource belongs.
// If it is not provided, the provider project is used.
Project *string `json:"project,omitempty" tf:"project,omitempty"`
// This field only applies when the forwarding rule that references
// this target proxy has a loadBalancingScheme set to INTERNAL_SELF_MANAGED.
ProxyBind *bool `json:"proxyBind,omitempty" tf:"proxy_bind,omitempty"`
// The unique identifier for the resource.
ProxyID *float64 `json:"proxyId,omitempty" tf:"proxy_id,omitempty"`
// Specifies the QUIC override policy for this resource. This determines
// whether the load balancer will attempt to negotiate QUIC with clients
// or not. Can specify one of NONE, ENABLE, or DISABLE. If NONE is
// specified, Google manages whether QUIC is used.
// Default value is NONE.
// Possible values are: NONE, ENABLE, DISABLE.
QuicOverride *string `json:"quicOverride,omitempty" tf:"quic_override,omitempty"`
// URLs to SslCertificate resources that are used to authenticate connections between users and the load balancer.
// Currently, you may specify up to 15 SSL certificates. sslCertificates do not apply when the load balancing scheme is set to INTERNAL_SELF_MANAGED.
// sslCertificates and certificateManagerCertificates can not be defined together.
SSLCertificates []*string `json:"sslCertificates,omitempty" tf:"ssl_certificates,omitempty"`
// A reference to the SslPolicy resource that will be associated with
// the TargetHttpsProxy resource. If not set, the TargetHttpsProxy
// resource will not have any SSL policy configured.
SSLPolicy *string `json:"sslPolicy,omitempty" tf:"ssl_policy,omitempty"`
// The URI of the created resource.
SelfLink *string `json:"selfLink,omitempty" tf:"self_link,omitempty"`
// A URL referring to a networksecurity.ServerTlsPolicy
// resource that describes how the proxy should authenticate inbound
// traffic. serverTlsPolicy only applies to a global TargetHttpsProxy
// attached to globalForwardingRules with the loadBalancingScheme
// set to INTERNAL_SELF_MANAGED or EXTERNAL or EXTERNAL_MANAGED.
// For details which ServerTlsPolicy resources are accepted with
// INTERNAL_SELF_MANAGED and which with EXTERNAL, EXTERNAL_MANAGED
// loadBalancingScheme consult ServerTlsPolicy documentation.
// If left blank, communications are not encrypted.
ServerTLSPolicy *string `json:"serverTlsPolicy,omitempty" tf:"server_tls_policy,omitempty"`
// A reference to the UrlMap resource that defines the mapping from URL
// to the BackendService.
URLMap *string `json:"urlMap,omitempty" tf:"url_map,omitempty"`
}
type TargetHTTPSProxyParameters struct {
// URLs to certificate manager certificate resources that are used to authenticate connections between users and the load balancer.
// Currently, you may specify up to 15 certificates. Certificate manager certificates do not apply when the load balancing scheme is set to INTERNAL_SELF_MANAGED.
// sslCertificates and certificateManagerCertificates fields can not be defined together.
// Accepted format is //certificatemanager.googleapis.com/projects/{project}/locations/{location}/certificates/{resourceName} or just the self_link projects/{project}/locations/{location}/certificates/{resourceName}
// +kubebuilder:validation:Optional
CertificateManagerCertificates []*string `json:"certificateManagerCertificates,omitempty" tf:"certificate_manager_certificates,omitempty"`
// A reference to the CertificateMap resource uri that identifies a certificate map
// associated with the given target proxy. This field can only be set for global target proxies.
// Accepted format is //certificatemanager.googleapis.com/projects/{project}/locations/{location}/certificateMaps/{resourceName}.
// +kubebuilder:validation:Optional
CertificateMap *string `json:"certificateMap,omitempty" tf:"certificate_map,omitempty"`
// An optional description of this resource.
// +kubebuilder:validation:Optional
Description *string `json:"description,omitempty" tf:"description,omitempty"`
// Specifies how long to keep a connection open, after completing a response,
// while there is no matching traffic (in seconds). If an HTTP keepalive is
// not specified, a default value (610 seconds) will be used. For Global
// external HTTP(S) load balancer, the minimum allowed value is 5 seconds and
// the maximum allowed value is 1200 seconds. For Global external HTTP(S)
// load balancer (classic), this option is not available publicly.
// +kubebuilder:validation:Optional
HTTPKeepAliveTimeoutSec *float64 `json:"httpKeepAliveTimeoutSec,omitempty" tf:"http_keep_alive_timeout_sec,omitempty"`
// The ID of the project in which the resource belongs.
// If it is not provided, the provider project is used.
// +kubebuilder:validation:Optional
Project *string `json:"project,omitempty" tf:"project,omitempty"`
// This field only applies when the forwarding rule that references
// this target proxy has a loadBalancingScheme set to INTERNAL_SELF_MANAGED.
// +kubebuilder:validation:Optional
ProxyBind *bool `json:"proxyBind,omitempty" tf:"proxy_bind,omitempty"`
// Specifies the QUIC override policy for this resource. This determines
// whether the load balancer will attempt to negotiate QUIC with clients
// or not. Can specify one of NONE, ENABLE, or DISABLE. If NONE is
// specified, Google manages whether QUIC is used.
// Default value is NONE.
// Possible values are: NONE, ENABLE, DISABLE.
// +kubebuilder:validation:Optional
QuicOverride *string `json:"quicOverride,omitempty" tf:"quic_override,omitempty"`
// URLs to SslCertificate resources that are used to authenticate connections between users and the load balancer.
// Currently, you may specify up to 15 SSL certificates. sslCertificates do not apply when the load balancing scheme is set to INTERNAL_SELF_MANAGED.
// sslCertificates and certificateManagerCertificates can not be defined together.
// +crossplane:generate:reference:type=github.com/upbound/provider-gcp/apis/compute/v1beta1.SSLCertificate
// +kubebuilder:validation:Optional
SSLCertificates []*string `json:"sslCertificates,omitempty" tf:"ssl_certificates,omitempty"`
// References to SSLCertificate in compute to populate sslCertificates.
// +kubebuilder:validation:Optional
SSLCertificatesRefs []v1.Reference `json:"sslCertificatesRefs,omitempty" tf:"-"`
// Selector for a list of SSLCertificate in compute to populate sslCertificates.
// +kubebuilder:validation:Optional
SSLCertificatesSelector *v1.Selector `json:"sslCertificatesSelector,omitempty" tf:"-"`
// A reference to the SslPolicy resource that will be associated with
// the TargetHttpsProxy resource. If not set, the TargetHttpsProxy
// resource will not have any SSL policy configured.
// +kubebuilder:validation:Optional
SSLPolicy *string `json:"sslPolicy,omitempty" tf:"ssl_policy,omitempty"`
// A URL referring to a networksecurity.ServerTlsPolicy
// resource that describes how the proxy should authenticate inbound
// traffic. serverTlsPolicy only applies to a global TargetHttpsProxy
// attached to globalForwardingRules with the loadBalancingScheme
// set to INTERNAL_SELF_MANAGED or EXTERNAL or EXTERNAL_MANAGED.
// For details which ServerTlsPolicy resources are accepted with
// INTERNAL_SELF_MANAGED and which with EXTERNAL, EXTERNAL_MANAGED
// loadBalancingScheme consult ServerTlsPolicy documentation.
// If left blank, communications are not encrypted.
// +kubebuilder:validation:Optional
ServerTLSPolicy *string `json:"serverTlsPolicy,omitempty" tf:"server_tls_policy,omitempty"`
// A reference to the UrlMap resource that defines the mapping from URL
// to the BackendService.
// +crossplane:generate:reference:type=github.com/upbound/provider-gcp/apis/compute/v1beta2.URLMap
// +crossplane:generate:reference:extractor=github.com/crossplane/upjet/pkg/resource.ExtractResourceID()
// +kubebuilder:validation:Optional
URLMap *string `json:"urlMap,omitempty" tf:"url_map,omitempty"`
// Reference to a URLMap in compute to populate urlMap.
// +kubebuilder:validation:Optional
URLMapRef *v1.Reference `json:"urlMapRef,omitempty" tf:"-"`
// Selector for a URLMap in compute to populate urlMap.
// +kubebuilder:validation:Optional
URLMapSelector *v1.Selector `json:"urlMapSelector,omitempty" tf:"-"`
}
// TargetHTTPSProxySpec defines the desired state of TargetHTTPSProxy
type TargetHTTPSProxySpec struct {
v1.ResourceSpec `json:",inline"`
ForProvider TargetHTTPSProxyParameters `json:"forProvider"`
// THIS IS A BETA FIELD. It will be honored
// unless the Management Policies feature flag is disabled.
// InitProvider holds the same fields as ForProvider, with the exception
// of Identifier and other resource reference fields. The fields that are
// in InitProvider are merged into ForProvider when the resource is created.
// The same fields are also added to the terraform ignore_changes hook, to
// avoid updating them after creation. This is useful for fields that are
// required on creation, but we do not desire to update them after creation,
// for example because of an external controller is managing them, like an
// autoscaler.
InitProvider TargetHTTPSProxyInitParameters `json:"initProvider,omitempty"`
}
// TargetHTTPSProxyStatus defines the observed state of TargetHTTPSProxy.
type TargetHTTPSProxyStatus struct {
v1.ResourceStatus `json:",inline"`
AtProvider TargetHTTPSProxyObservation `json:"atProvider,omitempty"`
}
// +kubebuilder:object:root=true
// +kubebuilder:subresource:status
// +kubebuilder:storageversion
// TargetHTTPSProxy is the Schema for the TargetHTTPSProxys API. Represents a TargetHttpsProxy resource, which is used by one or more global forwarding rule to route incoming HTTPS requests to a URL map.
// +kubebuilder:printcolumn:name="SYNCED",type="string",JSONPath=".status.conditions[?(@.type=='Synced')].status"
// +kubebuilder:printcolumn:name="READY",type="string",JSONPath=".status.conditions[?(@.type=='Ready')].status"
// +kubebuilder:printcolumn:name="EXTERNAL-NAME",type="string",JSONPath=".metadata.annotations.crossplane\\.io/external-name"
// +kubebuilder:printcolumn:name="AGE",type="date",JSONPath=".metadata.creationTimestamp"
// +kubebuilder:resource:scope=Cluster,categories={crossplane,managed,gcp}
type TargetHTTPSProxy struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec TargetHTTPSProxySpec `json:"spec"`
Status TargetHTTPSProxyStatus `json:"status,omitempty"`
}
// +kubebuilder:object:root=true
// TargetHTTPSProxyList contains a list of TargetHTTPSProxys
type TargetHTTPSProxyList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []TargetHTTPSProxy `json:"items"`
}
// Repository type metadata.
var (
TargetHTTPSProxy_Kind = "TargetHTTPSProxy"
TargetHTTPSProxy_GroupKind = schema.GroupKind{Group: CRDGroup, Kind: TargetHTTPSProxy_Kind}.String()
TargetHTTPSProxy_KindAPIVersion = TargetHTTPSProxy_Kind + "." + CRDGroupVersion.String()
TargetHTTPSProxy_GroupVersionKind = CRDGroupVersion.WithKind(TargetHTTPSProxy_Kind)
)
func init() {
SchemeBuilder.Register(&TargetHTTPSProxy{}, &TargetHTTPSProxyList{})
}