v1alpha1

package

v0.0.0-...-85a0c52 Latest Latest Go to latest Published: Aug 18, 2022 License: Apache-2.0 Imports: 4 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/aamoyel/vault-unsealer-operator

Links

Open Source Insights

Documentation ¶

Overview ¶

Package v1alpha1 contains API Schema definitions for the unsealer v1alpha1 API group +kubebuilder:object:generate=true +groupName=unsealer.amoyel.fr

Index ¶

Constants
Variables
type Unseal
type UnsealList
type UnsealSpec
- func (in *UnsealSpec) DeepCopy() *UnsealSpec
- func (in *UnsealSpec) DeepCopyInto(out *UnsealSpec)
type UnsealStatus
- func (in *UnsealStatus) DeepCopy() *UnsealStatus
- func (in *UnsealStatus) DeepCopyInto(out *UnsealStatus)

Constants ¶

View Source

const (
	// Unsealed: vault is unsealed, everything is ok -> check periodicaly if vault is unseal or not
	StatusUnsealed = "UNSEALED"
	// Changing: vault is in seal state -> launch unseal process
	StatusUnsealing = "UNSEALING"
	// Cleaning: remove job from cluster and wait for next seal
	StatusCleaning = "CLEANING"
)

Variables ¶

View Source

var (
	// GroupVersion is group version used to register these objects
	GroupVersion = schema.GroupVersion{Group: "unsealer.amoyel.fr", Version: "v1alpha1"}

	// SchemeBuilder is used to add go types to the GroupVersionKind scheme
	SchemeBuilder = &scheme.Builder{GroupVersion: GroupVersion}

	// AddToScheme adds the types in this group-version to the given scheme.
	AddToScheme = SchemeBuilder.AddToScheme
)

Functions ¶

This section is empty.

Types ¶

type Unseal ¶

type Unseal struct {
	metav1.TypeMeta   `json:",inline"`
	metav1.ObjectMeta `json:"metadata,omitempty"`

	Spec   UnsealSpec   `json:"spec,omitempty"`
	Status UnsealStatus `json:"status,omitempty"`
}

Unseal is the Schema for the unseals API

func (*Unseal) DeepCopy ¶

func (in *Unseal) DeepCopy() *Unseal

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new Unseal.

func (*Unseal) DeepCopyInto ¶

func (in *Unseal) DeepCopyInto(out *Unseal)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*Unseal) DeepCopyObject ¶

func (in *Unseal) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type UnsealList ¶

type UnsealList struct {
	metav1.TypeMeta `json:",inline"`
	metav1.ListMeta `json:"metadata,omitempty"`
	Items           []Unseal `json:"items"`
}

UnsealList contains a list of Unseal

func (*UnsealList) DeepCopy ¶

func (in *UnsealList) DeepCopy() *UnsealList

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new UnsealList.

func (*UnsealList) DeepCopyInto ¶

func (in *UnsealList) DeepCopyInto(out *UnsealList)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

func (*UnsealList) DeepCopyObject ¶

func (in *UnsealList) DeepCopyObject() runtime.Object

DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.

type UnsealSpec ¶

type UnsealSpec struct {

	// An array of vault instances to call api endpoints for unseal, example for one instance: https://myvault01.domain.local:8200
	//+kubebuilder:validation:Required
	VaultNodes []string `json:"vaultNodes"`
	// Secret name of your threshold keys. Threshold keys is unseal keys required to unseal you vault instance(s)
	// You need to create a secret with different key names for each unseal keys
	//+kubebuilder:validation:Required
	ThresholdKeysSecret string `json:"thresholdKeysSecret"`
	// Secret name of your CA certificate. Important to request vault with tls on a pki
	CaCertSecret string `json:"caCertSecret,omitempty"`
	// Boolean to define if you want to skip tls certificate validation. Set true of false (default is false)
	//+kubebuilder:default:=false
	TlsSkipVerify bool `json:"tlsSkipVerify,omitempty"`
	// Number of retry, default is 3
	//+kubebuilder:default:=3
	RetryCount int32 `json:"retryCount,omitempty"`
}

UnsealSpec defines the desired state of Unseal

func (*UnsealSpec) DeepCopy ¶

func (in *UnsealSpec) DeepCopy() *UnsealSpec

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new UnsealSpec.

func (*UnsealSpec) DeepCopyInto ¶

func (in *UnsealSpec) DeepCopyInto(out *UnsealSpec)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

type UnsealStatus ¶

type UnsealStatus struct {

	// Status of the vault
	VaultStatus string `json:"vaultStatus,omitempty"`
	// Sealed nodes
	SealedNodes []string `json:"sealedNodes,omitempty"`
}

UnsealStatus defines the observed state of Unseal

func (*UnsealStatus) DeepCopy ¶

func (in *UnsealStatus) DeepCopy() *UnsealStatus

DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new UnsealStatus.

func (*UnsealStatus) DeepCopyInto ¶

func (in *UnsealStatus) DeepCopyInto(out *UnsealStatus)

DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL