Documentation
¶
Overview ¶
Package v1alpha1 contains API Schema definitions for the falcon v1alpha1 API group +kubebuilder:object:generate=true +groupName=falcon.crowdstrike.com
Index ¶
- Constants
- Variables
- type FalconAPI
- type FalconContainer
- type FalconContainerInjectorSpec
- type FalconContainerInjectorTLS
- type FalconContainerList
- type FalconContainerServiceAccount
- type FalconContainerSpec
- type FalconContainerStatus
- type FalconNodeSensor
- type FalconNodeSensorConfig
- type FalconNodeSensorList
- type FalconNodeSensorSpec
- type FalconNodeSensorStatus
- type FalconNodeServiceAccount
- type FalconNodeUpdateStrategy
- type FalconSensor
- type RegistrySpec
- type RegistryTLSSpec
- type RegistryTypeSpec
Constants ¶
View Source
const ( ConditionSuccess string = "Success" ConditionFailed string = "Failed" ConditionPending string = "Pending" ConditionImageReady string = "ImageReady" ConditionConfigMapReady string = "ConfigMapReady" ConditionDaemonSetReady string = "DaemonSetReady" ConditionDeploymentReady string = "DeploymentReady" ConditionServiceReady string = "ServiceReady" ConditionRouteReady string = "RouteReady" ConditionSecretReady string = "SecretReady" ConditionWebhookReady string = "WebhookReady" ReasonReqNotMet string = "RequirementsNotMet" ReasonReqMet string = "RequirementsMet" ReasonInstallSucceeded string = "InstallSucceeded" ReasonInstallFailed string = "InstallFailed" ReasonSucceeded string = "Succeeded" ReasonUpdateSucceeded string = "UpdateSucceeded" ReasonUpdateFailed string = "UpdateFailed" ReasonFailed string = "Failed" ReasonDiscovered string = "Discovered" )
Variables ¶
View Source
var ( // GroupVersion is group version used to register these objects GroupVersion = schema.GroupVersion{Group: "falcon.crowdstrike.com", Version: "v1alpha1"} // SchemeBuilder is used to add go types to the GroupVersionKind scheme SchemeBuilder = &scheme.Builder{GroupVersion: GroupVersion} // AddToScheme adds the types in this group-version to the given scheme. AddToScheme = SchemeBuilder.AddToScheme )
Functions ¶
This section is empty.
Types ¶
type FalconAPI ¶
type FalconAPI struct {
// Cloud Region defines CrowdStrike Falcon Cloud Region to which the operator will connect and register.
// +kubebuilder:validation:Enum=autodiscover;us-1;us-2;eu-1;us-gov-1
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="CrowdStrike Falcon Cloud Region",order=3
CloudRegion string `json:"cloud_region"`
// Falcon OAuth2 API Client ID
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Client ID",order=1
ClientId string `json:"client_id"`
// Falcon OAuth2 API Client Secret
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Client Secret",order=2
ClientSecret string `json:"client_secret"`
// Falcon Customer ID (CID) Override (optional, default is derived from the API Key pair)
// +kubebuilder:validation:Pattern="^[0-9a-fA-F]{32}-[0-9a-fA-F]{2}$"
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Customer ID (CID)",order=4
CID *string `json:"cid,omitempty"`
}
FalconAPI configures connection from your local Falcon operator to CrowdStrike Falcon platform.
func (*FalconAPI) DeepCopy ¶
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconAPI.
func (*FalconAPI) DeepCopyInto ¶
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FalconContainer ¶
type FalconContainer struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec FalconContainerSpec `json:"spec,omitempty"`
Status FalconContainerStatus `json:"status,omitempty"`
}
FalconContainer is the Schema for the falconcontainers API
func (*FalconContainer) DeepCopy ¶
func (in *FalconContainer) DeepCopy() *FalconContainer
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconContainer.
func (*FalconContainer) DeepCopyInto ¶
func (in *FalconContainer) DeepCopyInto(out *FalconContainer)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*FalconContainer) DeepCopyObject ¶
func (in *FalconContainer) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type FalconContainerInjectorSpec ¶ added in v0.5.0
type FalconContainerInjectorSpec struct {
// Define annotations that will be passed down to injector service account. This is useful for passing along AWS IAM Role or GCP Workload Identity.
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Service Account Configuration",order=1
ServiceAccount FalconContainerServiceAccount `json:"serviceAccount,omitempty"`
// +kubebuilder:default:=4433
// +kubebuilder:validation:XIntOrString
// +kubebuilder:validation:Minimum:=0
// +kubebuilder:validation:Maximum:=65535
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Container Injector Listen Port",order=2
ListenPort *int32 `json:"listenPort,omitempty"`
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Container Injector TLS Configuration",order=3
TLS FalconContainerInjectorTLS `json:"tls,omitempty"`
// +kubebuilder:default:=Always
// +kubebuilder:validation:Enum=Always;IfNotPresent;Never
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Container Image Pull Policy",order=4
ImagePullPolicy corev1.PullPolicy `json:"imagePullPolicy,omitempty"`
// +kubebuilder:default=crowdstrike-falcon-pull-secret
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Container Image Pull Secret Name",order=5
ImagePullSecretName string `json:"imagePullSecret,omitempty"`
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Container Shared Log Volume",order=6
LogVolume *corev1.Volume `json:"logVolume,omitempty"`
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Container Injector Resources",order=7
Resources *corev1.ResourceRequirements `json:"resources,omitempty"`
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Container Sensor Resources",order=8
SensorResources *corev1.ResourceRequirements `json:"sensorResources,omitempty"`
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Container Additional Environment Variables",order=9
AdditionalEnvironmentVariables *map[string]string `json:"additionalEnvironmentVariables,omitempty"`
// +kubebuilder:default=false
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Disable Default Namespace Injection",order=10
DisableDefaultNSInjection bool `json:"disableDefaultNamespaceInjection,omitempty"`
// +kubebuilder:default=false
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Disable Default Pod Injection",order=11
DisableDefaultPodInjection bool `json:"disableDefaultPodInjection,omitempty"`
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Azure Config file path",order=12
AzureConfigPath string `json:"azureConfigPath,omitempty"`
// +kubebuilder:default:=2
// +kubebuilder:validation:XIntOrString
// +kubebuilder:validation:Minimum:=0
// +kubebuilder:validation:Maximum:=65535
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Injector replica count",order=13
Replicas *int32 `json:"replicas,omitempty"`
}
func (*FalconContainerInjectorSpec) DeepCopy ¶ added in v0.5.0
func (in *FalconContainerInjectorSpec) DeepCopy() *FalconContainerInjectorSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconContainerInjectorSpec.
func (*FalconContainerInjectorSpec) DeepCopyInto ¶ added in v0.5.0
func (in *FalconContainerInjectorSpec) DeepCopyInto(out *FalconContainerInjectorSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FalconContainerInjectorTLS ¶ added in v0.7.0
type FalconContainerInjectorTLS struct {
// +kubebuilder:validation:XIntOrString
// +kubebuilder:validation:Pattern="^[0-9]{1-4}$"
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Container Injector TLS Validity Length (days)",order=1
Validity *int `json:"validity,omitempty"`
}
func (*FalconContainerInjectorTLS) DeepCopy ¶ added in v0.7.0
func (in *FalconContainerInjectorTLS) DeepCopy() *FalconContainerInjectorTLS
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconContainerInjectorTLS.
func (*FalconContainerInjectorTLS) DeepCopyInto ¶ added in v0.7.0
func (in *FalconContainerInjectorTLS) DeepCopyInto(out *FalconContainerInjectorTLS)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FalconContainerList ¶
type FalconContainerList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []FalconContainer `json:"items"`
}
FalconContainerList contains a list of FalconContainer
func (*FalconContainerList) DeepCopy ¶
func (in *FalconContainerList) DeepCopy() *FalconContainerList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconContainerList.
func (*FalconContainerList) DeepCopyInto ¶
func (in *FalconContainerList) DeepCopyInto(out *FalconContainerList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*FalconContainerList) DeepCopyObject ¶
func (in *FalconContainerList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type FalconContainerServiceAccount ¶ added in v0.7.0
type FalconContainerServiceAccount struct {
// Define annotations that will be passed down to the Service Account. This is useful for passing along AWS IAM Role or GCP Workload Identity.
// +operator-sdk:csv:customresourcedefinitions:type=spec
Annotations map[string]string `json:"annotations,omitempty"`
}
func (*FalconContainerServiceAccount) DeepCopy ¶ added in v0.7.0
func (in *FalconContainerServiceAccount) DeepCopy() *FalconContainerServiceAccount
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconContainerServiceAccount.
func (*FalconContainerServiceAccount) DeepCopyInto ¶ added in v0.7.0
func (in *FalconContainerServiceAccount) DeepCopyInto(out *FalconContainerServiceAccount)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FalconContainerSpec ¶
type FalconContainerSpec struct {
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Sensor Configuration",order=1
Falcon FalconSensor `json:"falcon,omitempty"`
// FalconAPI configures connection from your local Falcon operator to CrowdStrike Falcon platform.
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Platform API Configuration",order=2
FalconAPI *FalconAPI `json:"falcon_api,omitempty"`
// Registry configures container image registry to which the Falcon Container image will be pushed
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Container Image Registry Configuration",order=3
Registry RegistrySpec `json:"registry,omitempty"`
// Injector represents additional configuration for Falcon Container Injector
// +kubebuilder:default:={imagePullPolicy:Always}
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Container Injector Configuration",order=4
Injector FalconContainerInjectorSpec `json:"injector,omitempty"`
// +kubebuilder:validation:Pattern="^.*:.*$"
// +operator-sdk:cv:customresourcedefinitions:type=spec,displayName="Falcon Container Image URI",order=5
Image *string `json:"image,omitempty"`
// Falcon Container Version. The latest version will be selected when version specifier is missing; ignored when Image is set.
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Container Image Version",order=6
Version *string `json:"version,omitempty"`
}
FalconContainerSpec defines the desired state of FalconContainer +k8s:openapi-gen=true
func (*FalconContainerSpec) DeepCopy ¶
func (in *FalconContainerSpec) DeepCopy() *FalconContainerSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconContainerSpec.
func (*FalconContainerSpec) DeepCopyInto ¶
func (in *FalconContainerSpec) DeepCopyInto(out *FalconContainerSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FalconContainerStatus ¶
type FalconContainerStatus struct {
// Version of the CrowdStrike Falcon Sensor
Sensor *string `json:"sensor,omitempty"`
// Version of the CrowdStrike Falcon Operator
Version string `json:"version,omitempty"`
// +optional
Conditions []metav1.Condition `json:"conditions,omitempty"`
}
FalconContainerStatus defines the observed state of FalconContainer +k8s:openapi-gen=true
func (*FalconContainerStatus) DeepCopy ¶
func (in *FalconContainerStatus) DeepCopy() *FalconContainerStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconContainerStatus.
func (*FalconContainerStatus) DeepCopyInto ¶
func (in *FalconContainerStatus) DeepCopyInto(out *FalconContainerStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FalconNodeSensor ¶ added in v0.3.0
type FalconNodeSensor struct {
metav1.TypeMeta `json:",inline"`
metav1.ObjectMeta `json:"metadata,omitempty"`
Spec FalconNodeSensorSpec `json:"spec,omitempty"`
Status FalconNodeSensorStatus `json:"status,omitempty"`
}
FalconNodeSensor is the Schema for the falconnodesensors API +k8s:openapi-gen=true
func (*FalconNodeSensor) DeepCopy ¶ added in v0.3.0
func (in *FalconNodeSensor) DeepCopy() *FalconNodeSensor
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconNodeSensor.
func (*FalconNodeSensor) DeepCopyInto ¶ added in v0.3.0
func (in *FalconNodeSensor) DeepCopyInto(out *FalconNodeSensor)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*FalconNodeSensor) DeepCopyObject ¶ added in v0.3.0
func (in *FalconNodeSensor) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
func (*FalconNodeSensor) TargetNs ¶ added in v0.5.0
func (n *FalconNodeSensor) TargetNs() string
TargetNs returns a namespace to which the node sensor should be installed to
type FalconNodeSensorConfig ¶ added in v0.3.1
type FalconNodeSensorConfig struct {
// Specifies tolerations for custom taints. Defaults to allowing scheduling on all nodes.
// +kubebuilder:default:={{key: "node-role.kubernetes.io/master", operator: "Exists", effect: "NoSchedule"}, {key: "node-role.kubernetes.io/control-plane", operator: "Exists", effect: "NoSchedule"}}
// +operator-sdk:csv:customresourcedefinitions:type=spec,order=4
Tolerations []corev1.Toleration `json:"tolerations,omitempty"`
// Specifies node affinity for scheduling the DaemonSet. Defaults to allowing scheduling on all nodes.
// +operator-sdk:csv:customresourcedefinitions:type=spec,order=5
NodeAffinity corev1.NodeAffinity `json:"nodeAffinity,omitempty"`
// +kubebuilder:default=Always
// +kubebuilder:validation:Enum=Always;IfNotPresent;Never
// +operator-sdk:csv:customresourcedefinitions:type=spec,order=3
ImagePullPolicy corev1.PullPolicy `json:"imagePullPolicy,omitempty"`
// Location of the Falcon Sensor image. Use only in cases when you mirror the original image to your repository/name:tag
// +kubebuilder:validation:Pattern="^.*:.*$"
// +operator-sdk:csv:customresourcedefinitions:type=spec,order=2
Image string `json:"image,omitempty"`
// ImagePullSecrets is an optional list of references to secrets in the falcon-system namespace to use for pulling image from image_override location.
// +operator-sdk:csv:customresourcedefinitions:type=spec,order=1
ImagePullSecrets []corev1.LocalObjectReference `json:"imagePullSecrets,omitempty"`
// Type of DaemonSet update. Can be "RollingUpdate" or "OnDelete". Default is RollingUpdate.
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="DaemonSet Update Strategy",order=6
DSUpdateStrategy FalconNodeUpdateStrategy `json:"updateStrategy,omitempty"`
// Kills pod after a specificed amount of time (in seconds). Default is 30 seconds.
// +kubebuilder:default:=30
// +operator-sdk:csv:customresourcedefinitions:type=spec,order=7
TerminationGracePeriod int64 `json:"terminationGracePeriod,omitempty"`
// Add metadata to the DaemonSet Service Account for IAM roles.
// +operator-sdk:csv:customresourcedefinitions:type=spec
ServiceAccount FalconNodeServiceAccount `json:"serviceAccount,omitempty"`
// Disables the cleanup of the sensor through DaemonSet on the nodes.
// Disabling might have unintended consequences for certain operations such as sensor downgrading.
// +kubebuilder:default=false
// +operator-sdk:csv:customresourcedefinitions:type=spec,order=8
NodeCleanup *bool `json:"disableCleanup,omitempty"`
// Sets the backend to be used by the DaemonSet Sensor.
// +kubebuilder:default=kernel
// +kubebuilder:validation:Enum=kernel;bpf
// +operator-sdk-csv:customresourcedefinitions:type=spec,order=9
Backend string `json:"backend,omitempty"`
// Version of the sensor to be installed. The latest version will be selected when this version specifier is missing.
Version *string `json:"version,omitempty"`
}
FalconNodeSensorConfig defines aspects about how the daemonset works. +k8s:openapi-gen=true
func (*FalconNodeSensorConfig) DeepCopy ¶ added in v0.3.1
func (in *FalconNodeSensorConfig) DeepCopy() *FalconNodeSensorConfig
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconNodeSensorConfig.
func (*FalconNodeSensorConfig) DeepCopyInto ¶ added in v0.3.1
func (in *FalconNodeSensorConfig) DeepCopyInto(out *FalconNodeSensorConfig)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FalconNodeSensorList ¶ added in v0.3.0
type FalconNodeSensorList struct {
metav1.TypeMeta `json:",inline"`
metav1.ListMeta `json:"metadata,omitempty"`
Items []FalconNodeSensor `json:"items"`
}
FalconNodeSensorList contains a list of FalconNodeSensor
func (*FalconNodeSensorList) DeepCopy ¶ added in v0.3.0
func (in *FalconNodeSensorList) DeepCopy() *FalconNodeSensorList
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconNodeSensorList.
func (*FalconNodeSensorList) DeepCopyInto ¶ added in v0.3.0
func (in *FalconNodeSensorList) DeepCopyInto(out *FalconNodeSensorList)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (*FalconNodeSensorList) DeepCopyObject ¶ added in v0.3.0
func (in *FalconNodeSensorList) DeepCopyObject() runtime.Object
DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
type FalconNodeSensorSpec ¶ added in v0.3.0
type FalconNodeSensorSpec struct {
// Various configuration for DaemonSet Deployment
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="DaemonSet Configuration",order=3
Node FalconNodeSensorConfig `json:"node,omitempty"`
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Sensor Configuration",order=2
Falcon FalconSensor `json:"falcon,omitempty"`
// FalconAPI configures connection from your local Falcon operator to CrowdStrike Falcon platform.
//
// When configured, it will pull the sensor from registry.crowdstrike.com and deploy the appropriate sensor to the cluster.
//
// If using the API is not desired, the sensor can be manually configured.
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Platform API Configuration",order=1
FalconAPI *FalconAPI `json:"falcon_api,omitempty"`
}
FalconNodeSensorSpec defines the desired state of FalconNodeSensor +k8s:openapi-gen=true
func (*FalconNodeSensorSpec) DeepCopy ¶ added in v0.3.0
func (in *FalconNodeSensorSpec) DeepCopy() *FalconNodeSensorSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconNodeSensorSpec.
func (*FalconNodeSensorSpec) DeepCopyInto ¶ added in v0.3.0
func (in *FalconNodeSensorSpec) DeepCopyInto(out *FalconNodeSensorSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FalconNodeSensorStatus ¶ added in v0.3.0
type FalconNodeSensorStatus struct {
// Version of the CrowdStrike Falcon Sensor
Sensor *string `json:"sensor,omitempty"`
// Version of the CrowdStrike Falcon Operator
Version string `json:"version,omitempty"`
// Conditions represent the latest available observations of an object's state
Conditions []metav1.Condition `json:"conditions,omitempty"`
}
FalconNodeSensorStatus defines the observed state of FalconNodeSensor +k8s:openapi-gen=true
func (*FalconNodeSensorStatus) DeepCopy ¶ added in v0.3.0
func (in *FalconNodeSensorStatus) DeepCopy() *FalconNodeSensorStatus
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconNodeSensorStatus.
func (*FalconNodeSensorStatus) DeepCopyInto ¶ added in v0.3.0
func (in *FalconNodeSensorStatus) DeepCopyInto(out *FalconNodeSensorStatus)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FalconNodeServiceAccount ¶ added in v0.5.4
type FalconNodeServiceAccount struct {
// Define annotations that will be passed down to the Service Account. This is useful for passing along AWS IAM Role or GCP Workload Identity.
// +operator-sdk:csv:customresourcedefinitions:type=spec
Annotations map[string]string `json:"annotations,omitempty"`
}
func (*FalconNodeServiceAccount) DeepCopy ¶ added in v0.5.4
func (in *FalconNodeServiceAccount) DeepCopy() *FalconNodeServiceAccount
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconNodeServiceAccount.
func (*FalconNodeServiceAccount) DeepCopyInto ¶ added in v0.5.4
func (in *FalconNodeServiceAccount) DeepCopyInto(out *FalconNodeServiceAccount)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FalconNodeUpdateStrategy ¶ added in v0.5.4
type FalconNodeUpdateStrategy struct {
// +kubebuilder:default=RollingUpdate
// +kubebuilder:validation:Enum=RollingUpdate;OnDelete
// +operator-sdk:csv:customresourcedefinitions:type=spec
Type appsv1.DaemonSetUpdateStrategyType `json:"type,omitempty"`
RollingUpdate appsv1.RollingUpdateDaemonSet `json:"rollingUpdate,omitempty"`
}
func (*FalconNodeUpdateStrategy) DeepCopy ¶ added in v0.5.4
func (in *FalconNodeUpdateStrategy) DeepCopy() *FalconNodeUpdateStrategy
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconNodeUpdateStrategy.
func (*FalconNodeUpdateStrategy) DeepCopyInto ¶ added in v0.5.4
func (in *FalconNodeUpdateStrategy) DeepCopyInto(out *FalconNodeUpdateStrategy)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type FalconSensor ¶ added in v0.3.1
type FalconSensor struct {
// Falcon Customer ID (CID)
// +kubebuilder:validation:Pattern:="^[0-9a-fA-F]{32}-[0-9a-fA-F]{2}$"
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Customer ID (CID)",order=1
CID *string `json:"cid,omitempty"`
// Disable the Falcon Sensor's use of a proxy.
// +kubebuilder:default:=false
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Disable Falcon Proxy",order=3
APD *bool `json:"apd,omitempty"`
// The application proxy host to use for Falcon sensor proxy configuration.
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Disable Falcon Proxy Host",order=4
APH string `json:"aph,omitempty"`
// The application proxy port to use for Falcon sensor proxy configuration.
// +kubebuilder:validation:Minimum:=0
// +kubebuilder:validation:Maximum:=65535
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Falcon Proxy Port",order=5
APP *int `json:"app,omitempty"`
// Utilize default or Pay-As-You-Go billing.
// +kubebuilder:validation:Enum:=default;metered
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Billing",order=8
Billing string `json:"billing,omitempty"`
// Installation token that prevents unauthorized hosts from being accidentally or maliciously added to your customer ID (CID).
// +kubebuilder:validation:Pattern:="^[0-9a-fA-F]{8}$"
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Provisioning Token",order=2
PToken string `json:"provisioning_token,omitempty"`
// Sensor grouping tags are optional, user-defined identifiers that can used to group and filter hosts. Allowed characters: all alphanumerics, '/', '-', and '_'.
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Sensor Grouping Tags",order=6
Tags []string `json:"tags,omitempty"`
// Set sensor trace level.
// +kubebuilder:validation:Enum:=none;err;warn;info;debug
// +kubebuilder:default:=none
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Trace Level",order=7
Trace string `json:"trace,omitempty"`
}
CrowdStrike Falcon Sensor configuration settings. +k8s:openapi-gen=true
func (*FalconSensor) DeepCopy ¶ added in v0.3.1
func (in *FalconSensor) DeepCopy() *FalconSensor
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new FalconSensor.
func (*FalconSensor) DeepCopyInto ¶ added in v0.3.1
func (in *FalconSensor) DeepCopyInto(out *FalconSensor)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type RegistrySpec ¶
type RegistrySpec struct {
// Type of the registry to be used
// +kubebuilder:validation:Enum=acr;ecr;gcr;crowdstrike;openshift
Type RegistryTypeSpec `json:"type"`
// TLS configures TLS connection for push of Falcon Container image to the registry
TLS RegistryTLSSpec `json:"tls,omitempty"`
// Azure Container Registry Name represents the name of the ACR for the Falcon Container push. Only applicable to Azure cloud.
AcrName *string `json:"acr_name,omitempty"`
}
RegistrySpec configures container image registry to which the Falcon Container image will be pushed
func (*RegistrySpec) DeepCopy ¶
func (in *RegistrySpec) DeepCopy() *RegistrySpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RegistrySpec.
func (*RegistrySpec) DeepCopyInto ¶
func (in *RegistrySpec) DeepCopyInto(out *RegistrySpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type RegistryTLSSpec ¶
type RegistryTLSSpec struct {
// Allow pushing to docker registries over HTTPS with failed TLS verification. Note that this does not affect other TLS connections.
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Skip Registry TLS Verification",order=1
InsecureSkipVerify bool `json:"insecure_skip_verify,omitempty"`
// Allow for users to provide a CA Cert Bundle, as either a string or base64 encoded string
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="Registry CA Certificate Bundle; optionally (double) base64 encoded",order=2
CACertificate string `json:"caCertificate,omitempty"`
// Allow for users to provide a ConfigMap containing a CA Cert Bundle under a key ending in .crt
// +operator-sdk:csv:customresourcedefinitions:type=spec,displayName="ConfigMap containing Registry CA Certificate Bundle",order=3
CACertificateConfigMap string `json:"caCertificateConfigMap,omitempty"`
}
RegistryTLSSpec configures TLS for registry pushing
func (*RegistryTLSSpec) DeepCopy ¶
func (in *RegistryTLSSpec) DeepCopy() *RegistryTLSSpec
DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new RegistryTLSSpec.
func (*RegistryTLSSpec) DeepCopyInto ¶
func (in *RegistryTLSSpec) DeepCopyInto(out *RegistryTLSSpec)
DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
type RegistryTypeSpec ¶
type RegistryTypeSpec string
const ( // RegistryTypeOpenshift represents OpenShift Image Stream RegistryTypeOpenshift RegistryTypeSpec = "openshift" // RegistryTypeGCR represents Google Container Registry RegistryTypeGCR RegistryTypeSpec = "gcr" // RegistryTypeECR represents AWS Elastic Container Registry RegistryTypeECR RegistryTypeSpec = "ecr" // RegistryTypeACR represents Azure Container Registry RegistryTypeACR RegistryTypeSpec = "acr" // RegistryTypeCrowdStrike represents deployment that won't push Falcon Container to local registry, instead CrowdStrike registry will be used. RegistryTypeCrowdStrike RegistryTypeSpec = "crowdstrike" )
Source Files
Click to show internal directories.
Click to hide internal directories.