v1beta1

package
Version: v3.10.1 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Nov 19, 2021 License: Apache-2.0 Imports: 9 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type AllowedCSIDriver

type AllowedCSIDriver struct {
	// Name is the registered name of the CSI driver
	Name string `pulumi:"name"`
}

AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.

type AllowedCSIDriverArgs

type AllowedCSIDriverArgs struct {
	// Name is the registered name of the CSI driver
	Name pulumi.StringInput `pulumi:"name"`
}

AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.

func (AllowedCSIDriverArgs) ElementType

func (AllowedCSIDriverArgs) ElementType() reflect.Type

func (AllowedCSIDriverArgs) ToAllowedCSIDriverOutput

func (i AllowedCSIDriverArgs) ToAllowedCSIDriverOutput() AllowedCSIDriverOutput

func (AllowedCSIDriverArgs) ToAllowedCSIDriverOutputWithContext

func (i AllowedCSIDriverArgs) ToAllowedCSIDriverOutputWithContext(ctx context.Context) AllowedCSIDriverOutput

type AllowedCSIDriverArray

type AllowedCSIDriverArray []AllowedCSIDriverInput

func (AllowedCSIDriverArray) ElementType

func (AllowedCSIDriverArray) ElementType() reflect.Type

func (AllowedCSIDriverArray) ToAllowedCSIDriverArrayOutput

func (i AllowedCSIDriverArray) ToAllowedCSIDriverArrayOutput() AllowedCSIDriverArrayOutput

func (AllowedCSIDriverArray) ToAllowedCSIDriverArrayOutputWithContext

func (i AllowedCSIDriverArray) ToAllowedCSIDriverArrayOutputWithContext(ctx context.Context) AllowedCSIDriverArrayOutput

type AllowedCSIDriverArrayInput

type AllowedCSIDriverArrayInput interface {
	pulumi.Input

	ToAllowedCSIDriverArrayOutput() AllowedCSIDriverArrayOutput
	ToAllowedCSIDriverArrayOutputWithContext(context.Context) AllowedCSIDriverArrayOutput
}

AllowedCSIDriverArrayInput is an input type that accepts AllowedCSIDriverArray and AllowedCSIDriverArrayOutput values. You can construct a concrete instance of `AllowedCSIDriverArrayInput` via:

AllowedCSIDriverArray{ AllowedCSIDriverArgs{...} }

type AllowedCSIDriverArrayOutput

type AllowedCSIDriverArrayOutput struct{ *pulumi.OutputState }

func (AllowedCSIDriverArrayOutput) ElementType

func (AllowedCSIDriverArrayOutput) Index

func (AllowedCSIDriverArrayOutput) ToAllowedCSIDriverArrayOutput

func (o AllowedCSIDriverArrayOutput) ToAllowedCSIDriverArrayOutput() AllowedCSIDriverArrayOutput

func (AllowedCSIDriverArrayOutput) ToAllowedCSIDriverArrayOutputWithContext

func (o AllowedCSIDriverArrayOutput) ToAllowedCSIDriverArrayOutputWithContext(ctx context.Context) AllowedCSIDriverArrayOutput

type AllowedCSIDriverInput

type AllowedCSIDriverInput interface {
	pulumi.Input

	ToAllowedCSIDriverOutput() AllowedCSIDriverOutput
	ToAllowedCSIDriverOutputWithContext(context.Context) AllowedCSIDriverOutput
}

AllowedCSIDriverInput is an input type that accepts AllowedCSIDriverArgs and AllowedCSIDriverOutput values. You can construct a concrete instance of `AllowedCSIDriverInput` via:

AllowedCSIDriverArgs{...}

type AllowedCSIDriverOutput

type AllowedCSIDriverOutput struct{ *pulumi.OutputState }

AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.

func (AllowedCSIDriverOutput) ElementType

func (AllowedCSIDriverOutput) ElementType() reflect.Type

func (AllowedCSIDriverOutput) Name

Name is the registered name of the CSI driver

func (AllowedCSIDriverOutput) ToAllowedCSIDriverOutput

func (o AllowedCSIDriverOutput) ToAllowedCSIDriverOutput() AllowedCSIDriverOutput

func (AllowedCSIDriverOutput) ToAllowedCSIDriverOutputWithContext

func (o AllowedCSIDriverOutput) ToAllowedCSIDriverOutputWithContext(ctx context.Context) AllowedCSIDriverOutput

type AllowedFlexVolume

type AllowedFlexVolume struct {
	// driver is the name of the Flexvolume driver.
	Driver string `pulumi:"driver"`
}

AllowedFlexVolume represents a single Flexvolume that is allowed to be used.

type AllowedFlexVolumeArgs

type AllowedFlexVolumeArgs struct {
	// driver is the name of the Flexvolume driver.
	Driver pulumi.StringInput `pulumi:"driver"`
}

AllowedFlexVolume represents a single Flexvolume that is allowed to be used.

func (AllowedFlexVolumeArgs) ElementType

func (AllowedFlexVolumeArgs) ElementType() reflect.Type

func (AllowedFlexVolumeArgs) ToAllowedFlexVolumeOutput

func (i AllowedFlexVolumeArgs) ToAllowedFlexVolumeOutput() AllowedFlexVolumeOutput

func (AllowedFlexVolumeArgs) ToAllowedFlexVolumeOutputWithContext

func (i AllowedFlexVolumeArgs) ToAllowedFlexVolumeOutputWithContext(ctx context.Context) AllowedFlexVolumeOutput

type AllowedFlexVolumeArray

type AllowedFlexVolumeArray []AllowedFlexVolumeInput

func (AllowedFlexVolumeArray) ElementType

func (AllowedFlexVolumeArray) ElementType() reflect.Type

func (AllowedFlexVolumeArray) ToAllowedFlexVolumeArrayOutput

func (i AllowedFlexVolumeArray) ToAllowedFlexVolumeArrayOutput() AllowedFlexVolumeArrayOutput

func (AllowedFlexVolumeArray) ToAllowedFlexVolumeArrayOutputWithContext

func (i AllowedFlexVolumeArray) ToAllowedFlexVolumeArrayOutputWithContext(ctx context.Context) AllowedFlexVolumeArrayOutput

type AllowedFlexVolumeArrayInput

type AllowedFlexVolumeArrayInput interface {
	pulumi.Input

	ToAllowedFlexVolumeArrayOutput() AllowedFlexVolumeArrayOutput
	ToAllowedFlexVolumeArrayOutputWithContext(context.Context) AllowedFlexVolumeArrayOutput
}

AllowedFlexVolumeArrayInput is an input type that accepts AllowedFlexVolumeArray and AllowedFlexVolumeArrayOutput values. You can construct a concrete instance of `AllowedFlexVolumeArrayInput` via:

AllowedFlexVolumeArray{ AllowedFlexVolumeArgs{...} }

type AllowedFlexVolumeArrayOutput

type AllowedFlexVolumeArrayOutput struct{ *pulumi.OutputState }

func (AllowedFlexVolumeArrayOutput) ElementType

func (AllowedFlexVolumeArrayOutput) Index

func (AllowedFlexVolumeArrayOutput) ToAllowedFlexVolumeArrayOutput

func (o AllowedFlexVolumeArrayOutput) ToAllowedFlexVolumeArrayOutput() AllowedFlexVolumeArrayOutput

func (AllowedFlexVolumeArrayOutput) ToAllowedFlexVolumeArrayOutputWithContext

func (o AllowedFlexVolumeArrayOutput) ToAllowedFlexVolumeArrayOutputWithContext(ctx context.Context) AllowedFlexVolumeArrayOutput

type AllowedFlexVolumeInput

type AllowedFlexVolumeInput interface {
	pulumi.Input

	ToAllowedFlexVolumeOutput() AllowedFlexVolumeOutput
	ToAllowedFlexVolumeOutputWithContext(context.Context) AllowedFlexVolumeOutput
}

AllowedFlexVolumeInput is an input type that accepts AllowedFlexVolumeArgs and AllowedFlexVolumeOutput values. You can construct a concrete instance of `AllowedFlexVolumeInput` via:

AllowedFlexVolumeArgs{...}

type AllowedFlexVolumeOutput

type AllowedFlexVolumeOutput struct{ *pulumi.OutputState }

AllowedFlexVolume represents a single Flexvolume that is allowed to be used.

func (AllowedFlexVolumeOutput) Driver

driver is the name of the Flexvolume driver.

func (AllowedFlexVolumeOutput) ElementType

func (AllowedFlexVolumeOutput) ElementType() reflect.Type

func (AllowedFlexVolumeOutput) ToAllowedFlexVolumeOutput

func (o AllowedFlexVolumeOutput) ToAllowedFlexVolumeOutput() AllowedFlexVolumeOutput

func (AllowedFlexVolumeOutput) ToAllowedFlexVolumeOutputWithContext

func (o AllowedFlexVolumeOutput) ToAllowedFlexVolumeOutputWithContext(ctx context.Context) AllowedFlexVolumeOutput

type AllowedHostPath

type AllowedHostPath struct {
	// pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
	//
	// Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`
	PathPrefix *string `pulumi:"pathPrefix"`
	// when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
	ReadOnly *bool `pulumi:"readOnly"`
}

AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.

type AllowedHostPathArgs

type AllowedHostPathArgs struct {
	// pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
	//
	// Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`
	PathPrefix pulumi.StringPtrInput `pulumi:"pathPrefix"`
	// when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
	ReadOnly pulumi.BoolPtrInput `pulumi:"readOnly"`
}

AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.

func (AllowedHostPathArgs) ElementType

func (AllowedHostPathArgs) ElementType() reflect.Type

func (AllowedHostPathArgs) ToAllowedHostPathOutput

func (i AllowedHostPathArgs) ToAllowedHostPathOutput() AllowedHostPathOutput

func (AllowedHostPathArgs) ToAllowedHostPathOutputWithContext

func (i AllowedHostPathArgs) ToAllowedHostPathOutputWithContext(ctx context.Context) AllowedHostPathOutput

type AllowedHostPathArray

type AllowedHostPathArray []AllowedHostPathInput

func (AllowedHostPathArray) ElementType

func (AllowedHostPathArray) ElementType() reflect.Type

func (AllowedHostPathArray) ToAllowedHostPathArrayOutput

func (i AllowedHostPathArray) ToAllowedHostPathArrayOutput() AllowedHostPathArrayOutput

func (AllowedHostPathArray) ToAllowedHostPathArrayOutputWithContext

func (i AllowedHostPathArray) ToAllowedHostPathArrayOutputWithContext(ctx context.Context) AllowedHostPathArrayOutput

type AllowedHostPathArrayInput

type AllowedHostPathArrayInput interface {
	pulumi.Input

	ToAllowedHostPathArrayOutput() AllowedHostPathArrayOutput
	ToAllowedHostPathArrayOutputWithContext(context.Context) AllowedHostPathArrayOutput
}

AllowedHostPathArrayInput is an input type that accepts AllowedHostPathArray and AllowedHostPathArrayOutput values. You can construct a concrete instance of `AllowedHostPathArrayInput` via:

AllowedHostPathArray{ AllowedHostPathArgs{...} }

type AllowedHostPathArrayOutput

type AllowedHostPathArrayOutput struct{ *pulumi.OutputState }

func (AllowedHostPathArrayOutput) ElementType

func (AllowedHostPathArrayOutput) ElementType() reflect.Type

func (AllowedHostPathArrayOutput) Index

func (AllowedHostPathArrayOutput) ToAllowedHostPathArrayOutput

func (o AllowedHostPathArrayOutput) ToAllowedHostPathArrayOutput() AllowedHostPathArrayOutput

func (AllowedHostPathArrayOutput) ToAllowedHostPathArrayOutputWithContext

func (o AllowedHostPathArrayOutput) ToAllowedHostPathArrayOutputWithContext(ctx context.Context) AllowedHostPathArrayOutput

type AllowedHostPathInput

type AllowedHostPathInput interface {
	pulumi.Input

	ToAllowedHostPathOutput() AllowedHostPathOutput
	ToAllowedHostPathOutputWithContext(context.Context) AllowedHostPathOutput
}

AllowedHostPathInput is an input type that accepts AllowedHostPathArgs and AllowedHostPathOutput values. You can construct a concrete instance of `AllowedHostPathInput` via:

AllowedHostPathArgs{...}

type AllowedHostPathOutput

type AllowedHostPathOutput struct{ *pulumi.OutputState }

AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.

func (AllowedHostPathOutput) ElementType

func (AllowedHostPathOutput) ElementType() reflect.Type

func (AllowedHostPathOutput) PathPrefix

pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.

Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`

func (AllowedHostPathOutput) ReadOnly

when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.

func (AllowedHostPathOutput) ToAllowedHostPathOutput

func (o AllowedHostPathOutput) ToAllowedHostPathOutput() AllowedHostPathOutput

func (AllowedHostPathOutput) ToAllowedHostPathOutputWithContext

func (o AllowedHostPathOutput) ToAllowedHostPathOutputWithContext(ctx context.Context) AllowedHostPathOutput

type Eviction

type Eviction struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion *string `pulumi:"apiVersion"`
	// DeleteOptions may be provided
	DeleteOptions *metav1.DeleteOptions `pulumi:"deleteOptions"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind *string `pulumi:"kind"`
	// ObjectMeta describes the pod that is being evicted.
	Metadata *metav1.ObjectMeta `pulumi:"metadata"`
}

Eviction evicts a pod from its node subject to certain policies and safety constraints. This is a subresource of Pod. A request to cause such an eviction is created by POSTing to .../pods/<pod name>/evictions.

type EvictionArgs

type EvictionArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput `pulumi:"apiVersion"`
	// DeleteOptions may be provided
	DeleteOptions metav1.DeleteOptionsPtrInput `pulumi:"deleteOptions"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput `pulumi:"kind"`
	// ObjectMeta describes the pod that is being evicted.
	Metadata metav1.ObjectMetaPtrInput `pulumi:"metadata"`
}

Eviction evicts a pod from its node subject to certain policies and safety constraints. This is a subresource of Pod. A request to cause such an eviction is created by POSTing to .../pods/<pod name>/evictions.

func (EvictionArgs) ElementType

func (EvictionArgs) ElementType() reflect.Type

func (EvictionArgs) ToEvictionOutput

func (i EvictionArgs) ToEvictionOutput() EvictionOutput

func (EvictionArgs) ToEvictionOutputWithContext

func (i EvictionArgs) ToEvictionOutputWithContext(ctx context.Context) EvictionOutput

type EvictionInput

type EvictionInput interface {
	pulumi.Input

	ToEvictionOutput() EvictionOutput
	ToEvictionOutputWithContext(context.Context) EvictionOutput
}

EvictionInput is an input type that accepts EvictionArgs and EvictionOutput values. You can construct a concrete instance of `EvictionInput` via:

EvictionArgs{...}

type EvictionOutput

type EvictionOutput struct{ *pulumi.OutputState }

Eviction evicts a pod from its node subject to certain policies and safety constraints. This is a subresource of Pod. A request to cause such an eviction is created by POSTing to .../pods/<pod name>/evictions.

func (EvictionOutput) ApiVersion

func (o EvictionOutput) ApiVersion() pulumi.StringPtrOutput

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

func (EvictionOutput) DeleteOptions

func (o EvictionOutput) DeleteOptions() metav1.DeleteOptionsPtrOutput

DeleteOptions may be provided

func (EvictionOutput) ElementType

func (EvictionOutput) ElementType() reflect.Type

func (EvictionOutput) Kind

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

func (EvictionOutput) Metadata

ObjectMeta describes the pod that is being evicted.

func (EvictionOutput) ToEvictionOutput

func (o EvictionOutput) ToEvictionOutput() EvictionOutput

func (EvictionOutput) ToEvictionOutputWithContext

func (o EvictionOutput) ToEvictionOutputWithContext(ctx context.Context) EvictionOutput

type FSGroupStrategyOptions

type FSGroupStrategyOptions struct {
	// ranges are the allowed ranges of fs groups.  If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.
	Ranges []IDRange `pulumi:"ranges"`
	// rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
	Rule *string `pulumi:"rule"`
}

FSGroupStrategyOptions defines the strategy type and options used to create the strategy.

type FSGroupStrategyOptionsArgs

type FSGroupStrategyOptionsArgs struct {
	// ranges are the allowed ranges of fs groups.  If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.
	Ranges IDRangeArrayInput `pulumi:"ranges"`
	// rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
	Rule pulumi.StringPtrInput `pulumi:"rule"`
}

FSGroupStrategyOptions defines the strategy type and options used to create the strategy.

func (FSGroupStrategyOptionsArgs) ElementType

func (FSGroupStrategyOptionsArgs) ElementType() reflect.Type

func (FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsOutput

func (i FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsOutput() FSGroupStrategyOptionsOutput

func (FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsOutputWithContext

func (i FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsOutputWithContext(ctx context.Context) FSGroupStrategyOptionsOutput

func (FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsPtrOutput

func (i FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsPtrOutput() FSGroupStrategyOptionsPtrOutput

func (FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsPtrOutputWithContext

func (i FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsPtrOutputWithContext(ctx context.Context) FSGroupStrategyOptionsPtrOutput

type FSGroupStrategyOptionsInput

type FSGroupStrategyOptionsInput interface {
	pulumi.Input

	ToFSGroupStrategyOptionsOutput() FSGroupStrategyOptionsOutput
	ToFSGroupStrategyOptionsOutputWithContext(context.Context) FSGroupStrategyOptionsOutput
}

FSGroupStrategyOptionsInput is an input type that accepts FSGroupStrategyOptionsArgs and FSGroupStrategyOptionsOutput values. You can construct a concrete instance of `FSGroupStrategyOptionsInput` via:

FSGroupStrategyOptionsArgs{...}

type FSGroupStrategyOptionsOutput

type FSGroupStrategyOptionsOutput struct{ *pulumi.OutputState }

FSGroupStrategyOptions defines the strategy type and options used to create the strategy.

func (FSGroupStrategyOptionsOutput) ElementType

func (FSGroupStrategyOptionsOutput) Ranges

ranges are the allowed ranges of fs groups. If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.

func (FSGroupStrategyOptionsOutput) Rule

rule is the strategy that will dictate what FSGroup is used in the SecurityContext.

func (FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsOutput

func (o FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsOutput() FSGroupStrategyOptionsOutput

func (FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsOutputWithContext

func (o FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsOutputWithContext(ctx context.Context) FSGroupStrategyOptionsOutput

func (FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsPtrOutput

func (o FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsPtrOutput() FSGroupStrategyOptionsPtrOutput

func (FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsPtrOutputWithContext

func (o FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsPtrOutputWithContext(ctx context.Context) FSGroupStrategyOptionsPtrOutput

type FSGroupStrategyOptionsPtrInput

type FSGroupStrategyOptionsPtrInput interface {
	pulumi.Input

	ToFSGroupStrategyOptionsPtrOutput() FSGroupStrategyOptionsPtrOutput
	ToFSGroupStrategyOptionsPtrOutputWithContext(context.Context) FSGroupStrategyOptionsPtrOutput
}

FSGroupStrategyOptionsPtrInput is an input type that accepts FSGroupStrategyOptionsArgs, FSGroupStrategyOptionsPtr and FSGroupStrategyOptionsPtrOutput values. You can construct a concrete instance of `FSGroupStrategyOptionsPtrInput` via:

        FSGroupStrategyOptionsArgs{...}

or:

        nil

type FSGroupStrategyOptionsPtrOutput

type FSGroupStrategyOptionsPtrOutput struct{ *pulumi.OutputState }

func (FSGroupStrategyOptionsPtrOutput) Elem

func (FSGroupStrategyOptionsPtrOutput) ElementType

func (FSGroupStrategyOptionsPtrOutput) Ranges

ranges are the allowed ranges of fs groups. If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.

func (FSGroupStrategyOptionsPtrOutput) Rule

rule is the strategy that will dictate what FSGroup is used in the SecurityContext.

func (FSGroupStrategyOptionsPtrOutput) ToFSGroupStrategyOptionsPtrOutput

func (o FSGroupStrategyOptionsPtrOutput) ToFSGroupStrategyOptionsPtrOutput() FSGroupStrategyOptionsPtrOutput

func (FSGroupStrategyOptionsPtrOutput) ToFSGroupStrategyOptionsPtrOutputWithContext

func (o FSGroupStrategyOptionsPtrOutput) ToFSGroupStrategyOptionsPtrOutputWithContext(ctx context.Context) FSGroupStrategyOptionsPtrOutput

type HostPortRange

type HostPortRange struct {
	// max is the end of the range, inclusive.
	Max int `pulumi:"max"`
	// min is the start of the range, inclusive.
	Min int `pulumi:"min"`
}

HostPortRange defines a range of host ports that will be enabled by a policy for pods to use. It requires both the start and end to be defined.

type HostPortRangeArgs

type HostPortRangeArgs struct {
	// max is the end of the range, inclusive.
	Max pulumi.IntInput `pulumi:"max"`
	// min is the start of the range, inclusive.
	Min pulumi.IntInput `pulumi:"min"`
}

HostPortRange defines a range of host ports that will be enabled by a policy for pods to use. It requires both the start and end to be defined.

func (HostPortRangeArgs) ElementType

func (HostPortRangeArgs) ElementType() reflect.Type

func (HostPortRangeArgs) ToHostPortRangeOutput

func (i HostPortRangeArgs) ToHostPortRangeOutput() HostPortRangeOutput

func (HostPortRangeArgs) ToHostPortRangeOutputWithContext

func (i HostPortRangeArgs) ToHostPortRangeOutputWithContext(ctx context.Context) HostPortRangeOutput

type HostPortRangeArray

type HostPortRangeArray []HostPortRangeInput

func (HostPortRangeArray) ElementType

func (HostPortRangeArray) ElementType() reflect.Type

func (HostPortRangeArray) ToHostPortRangeArrayOutput

func (i HostPortRangeArray) ToHostPortRangeArrayOutput() HostPortRangeArrayOutput

func (HostPortRangeArray) ToHostPortRangeArrayOutputWithContext

func (i HostPortRangeArray) ToHostPortRangeArrayOutputWithContext(ctx context.Context) HostPortRangeArrayOutput

type HostPortRangeArrayInput

type HostPortRangeArrayInput interface {
	pulumi.Input

	ToHostPortRangeArrayOutput() HostPortRangeArrayOutput
	ToHostPortRangeArrayOutputWithContext(context.Context) HostPortRangeArrayOutput
}

HostPortRangeArrayInput is an input type that accepts HostPortRangeArray and HostPortRangeArrayOutput values. You can construct a concrete instance of `HostPortRangeArrayInput` via:

HostPortRangeArray{ HostPortRangeArgs{...} }

type HostPortRangeArrayOutput

type HostPortRangeArrayOutput struct{ *pulumi.OutputState }

func (HostPortRangeArrayOutput) ElementType

func (HostPortRangeArrayOutput) ElementType() reflect.Type

func (HostPortRangeArrayOutput) Index

func (HostPortRangeArrayOutput) ToHostPortRangeArrayOutput

func (o HostPortRangeArrayOutput) ToHostPortRangeArrayOutput() HostPortRangeArrayOutput

func (HostPortRangeArrayOutput) ToHostPortRangeArrayOutputWithContext

func (o HostPortRangeArrayOutput) ToHostPortRangeArrayOutputWithContext(ctx context.Context) HostPortRangeArrayOutput

type HostPortRangeInput

type HostPortRangeInput interface {
	pulumi.Input

	ToHostPortRangeOutput() HostPortRangeOutput
	ToHostPortRangeOutputWithContext(context.Context) HostPortRangeOutput
}

HostPortRangeInput is an input type that accepts HostPortRangeArgs and HostPortRangeOutput values. You can construct a concrete instance of `HostPortRangeInput` via:

HostPortRangeArgs{...}

type HostPortRangeOutput

type HostPortRangeOutput struct{ *pulumi.OutputState }

HostPortRange defines a range of host ports that will be enabled by a policy for pods to use. It requires both the start and end to be defined.

func (HostPortRangeOutput) ElementType

func (HostPortRangeOutput) ElementType() reflect.Type

func (HostPortRangeOutput) Max

max is the end of the range, inclusive.

func (HostPortRangeOutput) Min

min is the start of the range, inclusive.

func (HostPortRangeOutput) ToHostPortRangeOutput

func (o HostPortRangeOutput) ToHostPortRangeOutput() HostPortRangeOutput

func (HostPortRangeOutput) ToHostPortRangeOutputWithContext

func (o HostPortRangeOutput) ToHostPortRangeOutputWithContext(ctx context.Context) HostPortRangeOutput

type IDRange

type IDRange struct {
	// max is the end of the range, inclusive.
	Max int `pulumi:"max"`
	// min is the start of the range, inclusive.
	Min int `pulumi:"min"`
}

IDRange provides a min/max of an allowed range of IDs.

type IDRangeArgs

type IDRangeArgs struct {
	// max is the end of the range, inclusive.
	Max pulumi.IntInput `pulumi:"max"`
	// min is the start of the range, inclusive.
	Min pulumi.IntInput `pulumi:"min"`
}

IDRange provides a min/max of an allowed range of IDs.

func (IDRangeArgs) ElementType

func (IDRangeArgs) ElementType() reflect.Type

func (IDRangeArgs) ToIDRangeOutput

func (i IDRangeArgs) ToIDRangeOutput() IDRangeOutput

func (IDRangeArgs) ToIDRangeOutputWithContext

func (i IDRangeArgs) ToIDRangeOutputWithContext(ctx context.Context) IDRangeOutput

type IDRangeArray

type IDRangeArray []IDRangeInput

func (IDRangeArray) ElementType

func (IDRangeArray) ElementType() reflect.Type

func (IDRangeArray) ToIDRangeArrayOutput

func (i IDRangeArray) ToIDRangeArrayOutput() IDRangeArrayOutput

func (IDRangeArray) ToIDRangeArrayOutputWithContext

func (i IDRangeArray) ToIDRangeArrayOutputWithContext(ctx context.Context) IDRangeArrayOutput

type IDRangeArrayInput

type IDRangeArrayInput interface {
	pulumi.Input

	ToIDRangeArrayOutput() IDRangeArrayOutput
	ToIDRangeArrayOutputWithContext(context.Context) IDRangeArrayOutput
}

IDRangeArrayInput is an input type that accepts IDRangeArray and IDRangeArrayOutput values. You can construct a concrete instance of `IDRangeArrayInput` via:

IDRangeArray{ IDRangeArgs{...} }

type IDRangeArrayOutput

type IDRangeArrayOutput struct{ *pulumi.OutputState }

func (IDRangeArrayOutput) ElementType

func (IDRangeArrayOutput) ElementType() reflect.Type

func (IDRangeArrayOutput) Index

func (IDRangeArrayOutput) ToIDRangeArrayOutput

func (o IDRangeArrayOutput) ToIDRangeArrayOutput() IDRangeArrayOutput

func (IDRangeArrayOutput) ToIDRangeArrayOutputWithContext

func (o IDRangeArrayOutput) ToIDRangeArrayOutputWithContext(ctx context.Context) IDRangeArrayOutput

type IDRangeInput

type IDRangeInput interface {
	pulumi.Input

	ToIDRangeOutput() IDRangeOutput
	ToIDRangeOutputWithContext(context.Context) IDRangeOutput
}

IDRangeInput is an input type that accepts IDRangeArgs and IDRangeOutput values. You can construct a concrete instance of `IDRangeInput` via:

IDRangeArgs{...}

type IDRangeOutput

type IDRangeOutput struct{ *pulumi.OutputState }

IDRange provides a min/max of an allowed range of IDs.

func (IDRangeOutput) ElementType

func (IDRangeOutput) ElementType() reflect.Type

func (IDRangeOutput) Max

func (o IDRangeOutput) Max() pulumi.IntOutput

max is the end of the range, inclusive.

func (IDRangeOutput) Min

func (o IDRangeOutput) Min() pulumi.IntOutput

min is the start of the range, inclusive.

func (IDRangeOutput) ToIDRangeOutput

func (o IDRangeOutput) ToIDRangeOutput() IDRangeOutput

func (IDRangeOutput) ToIDRangeOutputWithContext

func (o IDRangeOutput) ToIDRangeOutputWithContext(ctx context.Context) IDRangeOutput

type PodDisruptionBudget

type PodDisruptionBudget struct {
	pulumi.CustomResourceState

	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrOutput `pulumi:"apiVersion"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrOutput `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ObjectMetaPtrOutput `pulumi:"metadata"`
	// Specification of the desired behavior of the PodDisruptionBudget.
	Spec PodDisruptionBudgetSpecPtrOutput `pulumi:"spec"`
	// Most recently observed status of the PodDisruptionBudget.
	Status PodDisruptionBudgetStatusPtrOutput `pulumi:"status"`
}

PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods

func GetPodDisruptionBudget

func GetPodDisruptionBudget(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PodDisruptionBudgetState, opts ...pulumi.ResourceOption) (*PodDisruptionBudget, error)

GetPodDisruptionBudget gets an existing PodDisruptionBudget resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPodDisruptionBudget

func NewPodDisruptionBudget(ctx *pulumi.Context,
	name string, args *PodDisruptionBudgetArgs, opts ...pulumi.ResourceOption) (*PodDisruptionBudget, error)

NewPodDisruptionBudget registers a new resource with the given unique name, arguments, and options.

func (*PodDisruptionBudget) ElementType

func (*PodDisruptionBudget) ElementType() reflect.Type

func (*PodDisruptionBudget) ToPodDisruptionBudgetOutput

func (i *PodDisruptionBudget) ToPodDisruptionBudgetOutput() PodDisruptionBudgetOutput

func (*PodDisruptionBudget) ToPodDisruptionBudgetOutputWithContext

func (i *PodDisruptionBudget) ToPodDisruptionBudgetOutputWithContext(ctx context.Context) PodDisruptionBudgetOutput

func (*PodDisruptionBudget) ToPodDisruptionBudgetPtrOutput

func (i *PodDisruptionBudget) ToPodDisruptionBudgetPtrOutput() PodDisruptionBudgetPtrOutput

func (*PodDisruptionBudget) ToPodDisruptionBudgetPtrOutputWithContext

func (i *PodDisruptionBudget) ToPodDisruptionBudgetPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetPtrOutput

type PodDisruptionBudgetArgs

type PodDisruptionBudgetArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ObjectMetaPtrInput
	// Specification of the desired behavior of the PodDisruptionBudget.
	Spec PodDisruptionBudgetSpecPtrInput
}

The set of arguments for constructing a PodDisruptionBudget resource.

func (PodDisruptionBudgetArgs) ElementType

func (PodDisruptionBudgetArgs) ElementType() reflect.Type

type PodDisruptionBudgetArray

type PodDisruptionBudgetArray []PodDisruptionBudgetInput

func (PodDisruptionBudgetArray) ElementType

func (PodDisruptionBudgetArray) ElementType() reflect.Type

func (PodDisruptionBudgetArray) ToPodDisruptionBudgetArrayOutput

func (i PodDisruptionBudgetArray) ToPodDisruptionBudgetArrayOutput() PodDisruptionBudgetArrayOutput

func (PodDisruptionBudgetArray) ToPodDisruptionBudgetArrayOutputWithContext

func (i PodDisruptionBudgetArray) ToPodDisruptionBudgetArrayOutputWithContext(ctx context.Context) PodDisruptionBudgetArrayOutput

type PodDisruptionBudgetArrayInput

type PodDisruptionBudgetArrayInput interface {
	pulumi.Input

	ToPodDisruptionBudgetArrayOutput() PodDisruptionBudgetArrayOutput
	ToPodDisruptionBudgetArrayOutputWithContext(context.Context) PodDisruptionBudgetArrayOutput
}

PodDisruptionBudgetArrayInput is an input type that accepts PodDisruptionBudgetArray and PodDisruptionBudgetArrayOutput values. You can construct a concrete instance of `PodDisruptionBudgetArrayInput` via:

PodDisruptionBudgetArray{ PodDisruptionBudgetArgs{...} }

type PodDisruptionBudgetArrayOutput

type PodDisruptionBudgetArrayOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetArrayOutput) ElementType

func (PodDisruptionBudgetArrayOutput) Index

func (PodDisruptionBudgetArrayOutput) ToPodDisruptionBudgetArrayOutput

func (o PodDisruptionBudgetArrayOutput) ToPodDisruptionBudgetArrayOutput() PodDisruptionBudgetArrayOutput

func (PodDisruptionBudgetArrayOutput) ToPodDisruptionBudgetArrayOutputWithContext

func (o PodDisruptionBudgetArrayOutput) ToPodDisruptionBudgetArrayOutputWithContext(ctx context.Context) PodDisruptionBudgetArrayOutput

type PodDisruptionBudgetInput

type PodDisruptionBudgetInput interface {
	pulumi.Input

	ToPodDisruptionBudgetOutput() PodDisruptionBudgetOutput
	ToPodDisruptionBudgetOutputWithContext(ctx context.Context) PodDisruptionBudgetOutput
}

type PodDisruptionBudgetList

type PodDisruptionBudgetList struct {
	pulumi.CustomResourceState

	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrOutput `pulumi:"apiVersion"`
	// items list individual PodDisruptionBudget objects
	Items PodDisruptionBudgetTypeArrayOutput `pulumi:"items"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrOutput `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ListMetaPtrOutput `pulumi:"metadata"`
}

PodDisruptionBudgetList is a collection of PodDisruptionBudgets.

func GetPodDisruptionBudgetList

func GetPodDisruptionBudgetList(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PodDisruptionBudgetListState, opts ...pulumi.ResourceOption) (*PodDisruptionBudgetList, error)

GetPodDisruptionBudgetList gets an existing PodDisruptionBudgetList resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPodDisruptionBudgetList

func NewPodDisruptionBudgetList(ctx *pulumi.Context,
	name string, args *PodDisruptionBudgetListArgs, opts ...pulumi.ResourceOption) (*PodDisruptionBudgetList, error)

NewPodDisruptionBudgetList registers a new resource with the given unique name, arguments, and options.

func (*PodDisruptionBudgetList) ElementType

func (*PodDisruptionBudgetList) ElementType() reflect.Type

func (*PodDisruptionBudgetList) ToPodDisruptionBudgetListOutput

func (i *PodDisruptionBudgetList) ToPodDisruptionBudgetListOutput() PodDisruptionBudgetListOutput

func (*PodDisruptionBudgetList) ToPodDisruptionBudgetListOutputWithContext

func (i *PodDisruptionBudgetList) ToPodDisruptionBudgetListOutputWithContext(ctx context.Context) PodDisruptionBudgetListOutput

func (*PodDisruptionBudgetList) ToPodDisruptionBudgetListPtrOutput

func (i *PodDisruptionBudgetList) ToPodDisruptionBudgetListPtrOutput() PodDisruptionBudgetListPtrOutput

func (*PodDisruptionBudgetList) ToPodDisruptionBudgetListPtrOutputWithContext

func (i *PodDisruptionBudgetList) ToPodDisruptionBudgetListPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetListPtrOutput

type PodDisruptionBudgetListArgs

type PodDisruptionBudgetListArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput
	// items list individual PodDisruptionBudget objects
	Items PodDisruptionBudgetTypeArrayInput
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ListMetaPtrInput
}

The set of arguments for constructing a PodDisruptionBudgetList resource.

func (PodDisruptionBudgetListArgs) ElementType

type PodDisruptionBudgetListArray

type PodDisruptionBudgetListArray []PodDisruptionBudgetListInput

func (PodDisruptionBudgetListArray) ElementType

func (PodDisruptionBudgetListArray) ToPodDisruptionBudgetListArrayOutput

func (i PodDisruptionBudgetListArray) ToPodDisruptionBudgetListArrayOutput() PodDisruptionBudgetListArrayOutput

func (PodDisruptionBudgetListArray) ToPodDisruptionBudgetListArrayOutputWithContext

func (i PodDisruptionBudgetListArray) ToPodDisruptionBudgetListArrayOutputWithContext(ctx context.Context) PodDisruptionBudgetListArrayOutput

type PodDisruptionBudgetListArrayInput

type PodDisruptionBudgetListArrayInput interface {
	pulumi.Input

	ToPodDisruptionBudgetListArrayOutput() PodDisruptionBudgetListArrayOutput
	ToPodDisruptionBudgetListArrayOutputWithContext(context.Context) PodDisruptionBudgetListArrayOutput
}

PodDisruptionBudgetListArrayInput is an input type that accepts PodDisruptionBudgetListArray and PodDisruptionBudgetListArrayOutput values. You can construct a concrete instance of `PodDisruptionBudgetListArrayInput` via:

PodDisruptionBudgetListArray{ PodDisruptionBudgetListArgs{...} }

type PodDisruptionBudgetListArrayOutput

type PodDisruptionBudgetListArrayOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetListArrayOutput) ElementType

func (PodDisruptionBudgetListArrayOutput) Index

func (PodDisruptionBudgetListArrayOutput) ToPodDisruptionBudgetListArrayOutput

func (o PodDisruptionBudgetListArrayOutput) ToPodDisruptionBudgetListArrayOutput() PodDisruptionBudgetListArrayOutput

func (PodDisruptionBudgetListArrayOutput) ToPodDisruptionBudgetListArrayOutputWithContext

func (o PodDisruptionBudgetListArrayOutput) ToPodDisruptionBudgetListArrayOutputWithContext(ctx context.Context) PodDisruptionBudgetListArrayOutput

type PodDisruptionBudgetListInput

type PodDisruptionBudgetListInput interface {
	pulumi.Input

	ToPodDisruptionBudgetListOutput() PodDisruptionBudgetListOutput
	ToPodDisruptionBudgetListOutputWithContext(ctx context.Context) PodDisruptionBudgetListOutput
}

type PodDisruptionBudgetListMap

type PodDisruptionBudgetListMap map[string]PodDisruptionBudgetListInput

func (PodDisruptionBudgetListMap) ElementType

func (PodDisruptionBudgetListMap) ElementType() reflect.Type

func (PodDisruptionBudgetListMap) ToPodDisruptionBudgetListMapOutput

func (i PodDisruptionBudgetListMap) ToPodDisruptionBudgetListMapOutput() PodDisruptionBudgetListMapOutput

func (PodDisruptionBudgetListMap) ToPodDisruptionBudgetListMapOutputWithContext

func (i PodDisruptionBudgetListMap) ToPodDisruptionBudgetListMapOutputWithContext(ctx context.Context) PodDisruptionBudgetListMapOutput

type PodDisruptionBudgetListMapInput

type PodDisruptionBudgetListMapInput interface {
	pulumi.Input

	ToPodDisruptionBudgetListMapOutput() PodDisruptionBudgetListMapOutput
	ToPodDisruptionBudgetListMapOutputWithContext(context.Context) PodDisruptionBudgetListMapOutput
}

PodDisruptionBudgetListMapInput is an input type that accepts PodDisruptionBudgetListMap and PodDisruptionBudgetListMapOutput values. You can construct a concrete instance of `PodDisruptionBudgetListMapInput` via:

PodDisruptionBudgetListMap{ "key": PodDisruptionBudgetListArgs{...} }

type PodDisruptionBudgetListMapOutput

type PodDisruptionBudgetListMapOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetListMapOutput) ElementType

func (PodDisruptionBudgetListMapOutput) MapIndex

func (PodDisruptionBudgetListMapOutput) ToPodDisruptionBudgetListMapOutput

func (o PodDisruptionBudgetListMapOutput) ToPodDisruptionBudgetListMapOutput() PodDisruptionBudgetListMapOutput

func (PodDisruptionBudgetListMapOutput) ToPodDisruptionBudgetListMapOutputWithContext

func (o PodDisruptionBudgetListMapOutput) ToPodDisruptionBudgetListMapOutputWithContext(ctx context.Context) PodDisruptionBudgetListMapOutput

type PodDisruptionBudgetListOutput

type PodDisruptionBudgetListOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetListOutput) ElementType

func (PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListOutput

func (o PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListOutput() PodDisruptionBudgetListOutput

func (PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListOutputWithContext

func (o PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListOutputWithContext(ctx context.Context) PodDisruptionBudgetListOutput

func (PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListPtrOutput

func (o PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListPtrOutput() PodDisruptionBudgetListPtrOutput

func (PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListPtrOutputWithContext

func (o PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetListPtrOutput

type PodDisruptionBudgetListPtrInput

type PodDisruptionBudgetListPtrInput interface {
	pulumi.Input

	ToPodDisruptionBudgetListPtrOutput() PodDisruptionBudgetListPtrOutput
	ToPodDisruptionBudgetListPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetListPtrOutput
}

type PodDisruptionBudgetListPtrOutput

type PodDisruptionBudgetListPtrOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetListPtrOutput) Elem added in v3.7.2

func (PodDisruptionBudgetListPtrOutput) ElementType

func (PodDisruptionBudgetListPtrOutput) ToPodDisruptionBudgetListPtrOutput

func (o PodDisruptionBudgetListPtrOutput) ToPodDisruptionBudgetListPtrOutput() PodDisruptionBudgetListPtrOutput

func (PodDisruptionBudgetListPtrOutput) ToPodDisruptionBudgetListPtrOutputWithContext

func (o PodDisruptionBudgetListPtrOutput) ToPodDisruptionBudgetListPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetListPtrOutput

type PodDisruptionBudgetListState

type PodDisruptionBudgetListState struct {
}

func (PodDisruptionBudgetListState) ElementType

type PodDisruptionBudgetListType

type PodDisruptionBudgetListType struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion *string `pulumi:"apiVersion"`
	// items list individual PodDisruptionBudget objects
	Items []PodDisruptionBudgetType `pulumi:"items"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind *string `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata *metav1.ListMeta `pulumi:"metadata"`
}

PodDisruptionBudgetList is a collection of PodDisruptionBudgets.

type PodDisruptionBudgetListTypeArgs

type PodDisruptionBudgetListTypeArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput `pulumi:"apiVersion"`
	// items list individual PodDisruptionBudget objects
	Items PodDisruptionBudgetTypeArrayInput `pulumi:"items"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ListMetaPtrInput `pulumi:"metadata"`
}

PodDisruptionBudgetList is a collection of PodDisruptionBudgets.

func (PodDisruptionBudgetListTypeArgs) ElementType

func (PodDisruptionBudgetListTypeArgs) ToPodDisruptionBudgetListTypeOutput

func (i PodDisruptionBudgetListTypeArgs) ToPodDisruptionBudgetListTypeOutput() PodDisruptionBudgetListTypeOutput

func (PodDisruptionBudgetListTypeArgs) ToPodDisruptionBudgetListTypeOutputWithContext

func (i PodDisruptionBudgetListTypeArgs) ToPodDisruptionBudgetListTypeOutputWithContext(ctx context.Context) PodDisruptionBudgetListTypeOutput

type PodDisruptionBudgetListTypeInput

type PodDisruptionBudgetListTypeInput interface {
	pulumi.Input

	ToPodDisruptionBudgetListTypeOutput() PodDisruptionBudgetListTypeOutput
	ToPodDisruptionBudgetListTypeOutputWithContext(context.Context) PodDisruptionBudgetListTypeOutput
}

PodDisruptionBudgetListTypeInput is an input type that accepts PodDisruptionBudgetListTypeArgs and PodDisruptionBudgetListTypeOutput values. You can construct a concrete instance of `PodDisruptionBudgetListTypeInput` via:

PodDisruptionBudgetListTypeArgs{...}

type PodDisruptionBudgetListTypeOutput

type PodDisruptionBudgetListTypeOutput struct{ *pulumi.OutputState }

PodDisruptionBudgetList is a collection of PodDisruptionBudgets.

func (PodDisruptionBudgetListTypeOutput) ApiVersion

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

func (PodDisruptionBudgetListTypeOutput) ElementType

func (PodDisruptionBudgetListTypeOutput) Items

items list individual PodDisruptionBudget objects

func (PodDisruptionBudgetListTypeOutput) Kind

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

func (PodDisruptionBudgetListTypeOutput) Metadata

Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata

func (PodDisruptionBudgetListTypeOutput) ToPodDisruptionBudgetListTypeOutput

func (o PodDisruptionBudgetListTypeOutput) ToPodDisruptionBudgetListTypeOutput() PodDisruptionBudgetListTypeOutput

func (PodDisruptionBudgetListTypeOutput) ToPodDisruptionBudgetListTypeOutputWithContext

func (o PodDisruptionBudgetListTypeOutput) ToPodDisruptionBudgetListTypeOutputWithContext(ctx context.Context) PodDisruptionBudgetListTypeOutput

type PodDisruptionBudgetMap

type PodDisruptionBudgetMap map[string]PodDisruptionBudgetInput

func (PodDisruptionBudgetMap) ElementType

func (PodDisruptionBudgetMap) ElementType() reflect.Type

func (PodDisruptionBudgetMap) ToPodDisruptionBudgetMapOutput

func (i PodDisruptionBudgetMap) ToPodDisruptionBudgetMapOutput() PodDisruptionBudgetMapOutput

func (PodDisruptionBudgetMap) ToPodDisruptionBudgetMapOutputWithContext

func (i PodDisruptionBudgetMap) ToPodDisruptionBudgetMapOutputWithContext(ctx context.Context) PodDisruptionBudgetMapOutput

type PodDisruptionBudgetMapInput

type PodDisruptionBudgetMapInput interface {
	pulumi.Input

	ToPodDisruptionBudgetMapOutput() PodDisruptionBudgetMapOutput
	ToPodDisruptionBudgetMapOutputWithContext(context.Context) PodDisruptionBudgetMapOutput
}

PodDisruptionBudgetMapInput is an input type that accepts PodDisruptionBudgetMap and PodDisruptionBudgetMapOutput values. You can construct a concrete instance of `PodDisruptionBudgetMapInput` via:

PodDisruptionBudgetMap{ "key": PodDisruptionBudgetArgs{...} }

type PodDisruptionBudgetMapOutput

type PodDisruptionBudgetMapOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetMapOutput) ElementType

func (PodDisruptionBudgetMapOutput) MapIndex

func (PodDisruptionBudgetMapOutput) ToPodDisruptionBudgetMapOutput

func (o PodDisruptionBudgetMapOutput) ToPodDisruptionBudgetMapOutput() PodDisruptionBudgetMapOutput

func (PodDisruptionBudgetMapOutput) ToPodDisruptionBudgetMapOutputWithContext

func (o PodDisruptionBudgetMapOutput) ToPodDisruptionBudgetMapOutputWithContext(ctx context.Context) PodDisruptionBudgetMapOutput

type PodDisruptionBudgetOutput

type PodDisruptionBudgetOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetOutput) ElementType

func (PodDisruptionBudgetOutput) ElementType() reflect.Type

func (PodDisruptionBudgetOutput) ToPodDisruptionBudgetOutput

func (o PodDisruptionBudgetOutput) ToPodDisruptionBudgetOutput() PodDisruptionBudgetOutput

func (PodDisruptionBudgetOutput) ToPodDisruptionBudgetOutputWithContext

func (o PodDisruptionBudgetOutput) ToPodDisruptionBudgetOutputWithContext(ctx context.Context) PodDisruptionBudgetOutput

func (PodDisruptionBudgetOutput) ToPodDisruptionBudgetPtrOutput

func (o PodDisruptionBudgetOutput) ToPodDisruptionBudgetPtrOutput() PodDisruptionBudgetPtrOutput

func (PodDisruptionBudgetOutput) ToPodDisruptionBudgetPtrOutputWithContext

func (o PodDisruptionBudgetOutput) ToPodDisruptionBudgetPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetPtrOutput

type PodDisruptionBudgetPtrInput

type PodDisruptionBudgetPtrInput interface {
	pulumi.Input

	ToPodDisruptionBudgetPtrOutput() PodDisruptionBudgetPtrOutput
	ToPodDisruptionBudgetPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetPtrOutput
}

type PodDisruptionBudgetPtrOutput

type PodDisruptionBudgetPtrOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetPtrOutput) Elem added in v3.7.2

func (PodDisruptionBudgetPtrOutput) ElementType

func (PodDisruptionBudgetPtrOutput) ToPodDisruptionBudgetPtrOutput

func (o PodDisruptionBudgetPtrOutput) ToPodDisruptionBudgetPtrOutput() PodDisruptionBudgetPtrOutput

func (PodDisruptionBudgetPtrOutput) ToPodDisruptionBudgetPtrOutputWithContext

func (o PodDisruptionBudgetPtrOutput) ToPodDisruptionBudgetPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetPtrOutput

type PodDisruptionBudgetSpec

type PodDisruptionBudgetSpec struct {
	// An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
	MaxUnavailable interface{} `pulumi:"maxUnavailable"`
	// An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
	MinAvailable interface{} `pulumi:"minAvailable"`
	// Label query over pods whose evictions are managed by the disruption budget. A null selector selects no pods. An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. In policy/v1, an empty selector will select all pods in the namespace.
	Selector *metav1.LabelSelector `pulumi:"selector"`
}

PodDisruptionBudgetSpec is a description of a PodDisruptionBudget.

type PodDisruptionBudgetSpecArgs

type PodDisruptionBudgetSpecArgs struct {
	// An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
	MaxUnavailable pulumi.Input `pulumi:"maxUnavailable"`
	// An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
	MinAvailable pulumi.Input `pulumi:"minAvailable"`
	// Label query over pods whose evictions are managed by the disruption budget. A null selector selects no pods. An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. In policy/v1, an empty selector will select all pods in the namespace.
	Selector metav1.LabelSelectorPtrInput `pulumi:"selector"`
}

PodDisruptionBudgetSpec is a description of a PodDisruptionBudget.

func (PodDisruptionBudgetSpecArgs) ElementType

func (PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecOutput

func (i PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecOutput() PodDisruptionBudgetSpecOutput

func (PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecOutputWithContext

func (i PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecOutputWithContext(ctx context.Context) PodDisruptionBudgetSpecOutput

func (PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecPtrOutput

func (i PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecPtrOutput() PodDisruptionBudgetSpecPtrOutput

func (PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecPtrOutputWithContext

func (i PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetSpecPtrOutput

type PodDisruptionBudgetSpecInput

type PodDisruptionBudgetSpecInput interface {
	pulumi.Input

	ToPodDisruptionBudgetSpecOutput() PodDisruptionBudgetSpecOutput
	ToPodDisruptionBudgetSpecOutputWithContext(context.Context) PodDisruptionBudgetSpecOutput
}

PodDisruptionBudgetSpecInput is an input type that accepts PodDisruptionBudgetSpecArgs and PodDisruptionBudgetSpecOutput values. You can construct a concrete instance of `PodDisruptionBudgetSpecInput` via:

PodDisruptionBudgetSpecArgs{...}

type PodDisruptionBudgetSpecOutput

type PodDisruptionBudgetSpecOutput struct{ *pulumi.OutputState }

PodDisruptionBudgetSpec is a description of a PodDisruptionBudget.

func (PodDisruptionBudgetSpecOutput) ElementType

func (PodDisruptionBudgetSpecOutput) MaxUnavailable

func (o PodDisruptionBudgetSpecOutput) MaxUnavailable() pulumi.AnyOutput

An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".

func (PodDisruptionBudgetSpecOutput) MinAvailable

An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod. So for example you can prevent all voluntary evictions by specifying "100%".

func (PodDisruptionBudgetSpecOutput) Selector

Label query over pods whose evictions are managed by the disruption budget. A null selector selects no pods. An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. In policy/v1, an empty selector will select all pods in the namespace.

func (PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecOutput

func (o PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecOutput() PodDisruptionBudgetSpecOutput

func (PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecOutputWithContext

func (o PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecOutputWithContext(ctx context.Context) PodDisruptionBudgetSpecOutput

func (PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecPtrOutput

func (o PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecPtrOutput() PodDisruptionBudgetSpecPtrOutput

func (PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecPtrOutputWithContext

func (o PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetSpecPtrOutput

type PodDisruptionBudgetSpecPtrInput

type PodDisruptionBudgetSpecPtrInput interface {
	pulumi.Input

	ToPodDisruptionBudgetSpecPtrOutput() PodDisruptionBudgetSpecPtrOutput
	ToPodDisruptionBudgetSpecPtrOutputWithContext(context.Context) PodDisruptionBudgetSpecPtrOutput
}

PodDisruptionBudgetSpecPtrInput is an input type that accepts PodDisruptionBudgetSpecArgs, PodDisruptionBudgetSpecPtr and PodDisruptionBudgetSpecPtrOutput values. You can construct a concrete instance of `PodDisruptionBudgetSpecPtrInput` via:

        PodDisruptionBudgetSpecArgs{...}

or:

        nil

type PodDisruptionBudgetSpecPtrOutput

type PodDisruptionBudgetSpecPtrOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetSpecPtrOutput) Elem

func (PodDisruptionBudgetSpecPtrOutput) ElementType

func (PodDisruptionBudgetSpecPtrOutput) MaxUnavailable

An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".

func (PodDisruptionBudgetSpecPtrOutput) MinAvailable

An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod. So for example you can prevent all voluntary evictions by specifying "100%".

func (PodDisruptionBudgetSpecPtrOutput) Selector

Label query over pods whose evictions are managed by the disruption budget. A null selector selects no pods. An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. In policy/v1, an empty selector will select all pods in the namespace.

func (PodDisruptionBudgetSpecPtrOutput) ToPodDisruptionBudgetSpecPtrOutput

func (o PodDisruptionBudgetSpecPtrOutput) ToPodDisruptionBudgetSpecPtrOutput() PodDisruptionBudgetSpecPtrOutput

func (PodDisruptionBudgetSpecPtrOutput) ToPodDisruptionBudgetSpecPtrOutputWithContext

func (o PodDisruptionBudgetSpecPtrOutput) ToPodDisruptionBudgetSpecPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetSpecPtrOutput

type PodDisruptionBudgetState

type PodDisruptionBudgetState struct {
}

func (PodDisruptionBudgetState) ElementType

func (PodDisruptionBudgetState) ElementType() reflect.Type

type PodDisruptionBudgetStatus

type PodDisruptionBudgetStatus struct {
	// Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn't able to compute
	//               the number of allowed disruptions. Therefore no disruptions are
	//               allowed and the status of the condition will be False.
	// - InsufficientPods: The number of pods are either at or below the number
	//                     required by the PodDisruptionBudget. No disruptions are
	//                     allowed and the status of the condition will be False.
	// - SufficientPods: There are more pods than required by the PodDisruptionBudget.
	//                   The condition will be True, and the number of allowed
	//                   disruptions are provided by the disruptionsAllowed property.
	Conditions []metav1.Condition `pulumi:"conditions"`
	// current number of healthy pods
	CurrentHealthy int `pulumi:"currentHealthy"`
	// minimum desired number of healthy pods
	DesiredHealthy int `pulumi:"desiredHealthy"`
	// DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.
	DisruptedPods map[string]string `pulumi:"disruptedPods"`
	// Number of pod disruptions that are currently allowed.
	DisruptionsAllowed int `pulumi:"disruptionsAllowed"`
	// total number of pods counted by this disruption budget
	ExpectedPods int `pulumi:"expectedPods"`
	// Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.
	ObservedGeneration *int `pulumi:"observedGeneration"`
}

PodDisruptionBudgetStatus represents information about the status of a PodDisruptionBudget. Status may trail the actual state of a system.

type PodDisruptionBudgetStatusArgs

type PodDisruptionBudgetStatusArgs struct {
	// Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn't able to compute
	//               the number of allowed disruptions. Therefore no disruptions are
	//               allowed and the status of the condition will be False.
	// - InsufficientPods: The number of pods are either at or below the number
	//                     required by the PodDisruptionBudget. No disruptions are
	//                     allowed and the status of the condition will be False.
	// - SufficientPods: There are more pods than required by the PodDisruptionBudget.
	//                   The condition will be True, and the number of allowed
	//                   disruptions are provided by the disruptionsAllowed property.
	Conditions metav1.ConditionArrayInput `pulumi:"conditions"`
	// current number of healthy pods
	CurrentHealthy pulumi.IntInput `pulumi:"currentHealthy"`
	// minimum desired number of healthy pods
	DesiredHealthy pulumi.IntInput `pulumi:"desiredHealthy"`
	// DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.
	DisruptedPods pulumi.StringMapInput `pulumi:"disruptedPods"`
	// Number of pod disruptions that are currently allowed.
	DisruptionsAllowed pulumi.IntInput `pulumi:"disruptionsAllowed"`
	// total number of pods counted by this disruption budget
	ExpectedPods pulumi.IntInput `pulumi:"expectedPods"`
	// Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.
	ObservedGeneration pulumi.IntPtrInput `pulumi:"observedGeneration"`
}

PodDisruptionBudgetStatus represents information about the status of a PodDisruptionBudget. Status may trail the actual state of a system.

func (PodDisruptionBudgetStatusArgs) ElementType

func (PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusOutput

func (i PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusOutput() PodDisruptionBudgetStatusOutput

func (PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusOutputWithContext

func (i PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusOutputWithContext(ctx context.Context) PodDisruptionBudgetStatusOutput

func (PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusPtrOutput

func (i PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusPtrOutput() PodDisruptionBudgetStatusPtrOutput

func (PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusPtrOutputWithContext

func (i PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetStatusPtrOutput

type PodDisruptionBudgetStatusInput

type PodDisruptionBudgetStatusInput interface {
	pulumi.Input

	ToPodDisruptionBudgetStatusOutput() PodDisruptionBudgetStatusOutput
	ToPodDisruptionBudgetStatusOutputWithContext(context.Context) PodDisruptionBudgetStatusOutput
}

PodDisruptionBudgetStatusInput is an input type that accepts PodDisruptionBudgetStatusArgs and PodDisruptionBudgetStatusOutput values. You can construct a concrete instance of `PodDisruptionBudgetStatusInput` via:

PodDisruptionBudgetStatusArgs{...}

type PodDisruptionBudgetStatusOutput

type PodDisruptionBudgetStatusOutput struct{ *pulumi.OutputState }

PodDisruptionBudgetStatus represents information about the status of a PodDisruptionBudget. Status may trail the actual state of a system.

func (PodDisruptionBudgetStatusOutput) Conditions

Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn't able to compute

the number of allowed disruptions. Therefore no disruptions are
allowed and the status of the condition will be False.

- InsufficientPods: The number of pods are either at or below the number

required by the PodDisruptionBudget. No disruptions are
allowed and the status of the condition will be False.

- SufficientPods: There are more pods than required by the PodDisruptionBudget.

The condition will be True, and the number of allowed
disruptions are provided by the disruptionsAllowed property.

func (PodDisruptionBudgetStatusOutput) CurrentHealthy

current number of healthy pods

func (PodDisruptionBudgetStatusOutput) DesiredHealthy

minimum desired number of healthy pods

func (PodDisruptionBudgetStatusOutput) DisruptedPods

DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.

func (PodDisruptionBudgetStatusOutput) DisruptionsAllowed

func (o PodDisruptionBudgetStatusOutput) DisruptionsAllowed() pulumi.IntOutput

Number of pod disruptions that are currently allowed.

func (PodDisruptionBudgetStatusOutput) ElementType

func (PodDisruptionBudgetStatusOutput) ExpectedPods

total number of pods counted by this disruption budget

func (PodDisruptionBudgetStatusOutput) ObservedGeneration

func (o PodDisruptionBudgetStatusOutput) ObservedGeneration() pulumi.IntPtrOutput

Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.

func (PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusOutput

func (o PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusOutput() PodDisruptionBudgetStatusOutput

func (PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusOutputWithContext

func (o PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusOutputWithContext(ctx context.Context) PodDisruptionBudgetStatusOutput

func (PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusPtrOutput

func (o PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusPtrOutput() PodDisruptionBudgetStatusPtrOutput

func (PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusPtrOutputWithContext

func (o PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetStatusPtrOutput

type PodDisruptionBudgetStatusPtrInput

type PodDisruptionBudgetStatusPtrInput interface {
	pulumi.Input

	ToPodDisruptionBudgetStatusPtrOutput() PodDisruptionBudgetStatusPtrOutput
	ToPodDisruptionBudgetStatusPtrOutputWithContext(context.Context) PodDisruptionBudgetStatusPtrOutput
}

PodDisruptionBudgetStatusPtrInput is an input type that accepts PodDisruptionBudgetStatusArgs, PodDisruptionBudgetStatusPtr and PodDisruptionBudgetStatusPtrOutput values. You can construct a concrete instance of `PodDisruptionBudgetStatusPtrInput` via:

        PodDisruptionBudgetStatusArgs{...}

or:

        nil

type PodDisruptionBudgetStatusPtrOutput

type PodDisruptionBudgetStatusPtrOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetStatusPtrOutput) Conditions

Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn't able to compute

the number of allowed disruptions. Therefore no disruptions are
allowed and the status of the condition will be False.

- InsufficientPods: The number of pods are either at or below the number

required by the PodDisruptionBudget. No disruptions are
allowed and the status of the condition will be False.

- SufficientPods: There are more pods than required by the PodDisruptionBudget.

The condition will be True, and the number of allowed
disruptions are provided by the disruptionsAllowed property.

func (PodDisruptionBudgetStatusPtrOutput) CurrentHealthy

current number of healthy pods

func (PodDisruptionBudgetStatusPtrOutput) DesiredHealthy

minimum desired number of healthy pods

func (PodDisruptionBudgetStatusPtrOutput) DisruptedPods

DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.

func (PodDisruptionBudgetStatusPtrOutput) DisruptionsAllowed

Number of pod disruptions that are currently allowed.

func (PodDisruptionBudgetStatusPtrOutput) Elem

func (PodDisruptionBudgetStatusPtrOutput) ElementType

func (PodDisruptionBudgetStatusPtrOutput) ExpectedPods

total number of pods counted by this disruption budget

func (PodDisruptionBudgetStatusPtrOutput) ObservedGeneration

Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.

func (PodDisruptionBudgetStatusPtrOutput) ToPodDisruptionBudgetStatusPtrOutput

func (o PodDisruptionBudgetStatusPtrOutput) ToPodDisruptionBudgetStatusPtrOutput() PodDisruptionBudgetStatusPtrOutput

func (PodDisruptionBudgetStatusPtrOutput) ToPodDisruptionBudgetStatusPtrOutputWithContext

func (o PodDisruptionBudgetStatusPtrOutput) ToPodDisruptionBudgetStatusPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetStatusPtrOutput

type PodDisruptionBudgetType

type PodDisruptionBudgetType struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion *string `pulumi:"apiVersion"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind *string `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata *metav1.ObjectMeta `pulumi:"metadata"`
	// Specification of the desired behavior of the PodDisruptionBudget.
	Spec *PodDisruptionBudgetSpec `pulumi:"spec"`
	// Most recently observed status of the PodDisruptionBudget.
	Status *PodDisruptionBudgetStatus `pulumi:"status"`
}

PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods

type PodDisruptionBudgetTypeArgs

type PodDisruptionBudgetTypeArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput `pulumi:"apiVersion"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ObjectMetaPtrInput `pulumi:"metadata"`
	// Specification of the desired behavior of the PodDisruptionBudget.
	Spec PodDisruptionBudgetSpecPtrInput `pulumi:"spec"`
	// Most recently observed status of the PodDisruptionBudget.
	Status PodDisruptionBudgetStatusPtrInput `pulumi:"status"`
}

PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods

func (PodDisruptionBudgetTypeArgs) ElementType

func (PodDisruptionBudgetTypeArgs) ToPodDisruptionBudgetTypeOutput

func (i PodDisruptionBudgetTypeArgs) ToPodDisruptionBudgetTypeOutput() PodDisruptionBudgetTypeOutput

func (PodDisruptionBudgetTypeArgs) ToPodDisruptionBudgetTypeOutputWithContext

func (i PodDisruptionBudgetTypeArgs) ToPodDisruptionBudgetTypeOutputWithContext(ctx context.Context) PodDisruptionBudgetTypeOutput

type PodDisruptionBudgetTypeArray

type PodDisruptionBudgetTypeArray []PodDisruptionBudgetTypeInput

func (PodDisruptionBudgetTypeArray) ElementType

func (PodDisruptionBudgetTypeArray) ToPodDisruptionBudgetTypeArrayOutput

func (i PodDisruptionBudgetTypeArray) ToPodDisruptionBudgetTypeArrayOutput() PodDisruptionBudgetTypeArrayOutput

func (PodDisruptionBudgetTypeArray) ToPodDisruptionBudgetTypeArrayOutputWithContext

func (i PodDisruptionBudgetTypeArray) ToPodDisruptionBudgetTypeArrayOutputWithContext(ctx context.Context) PodDisruptionBudgetTypeArrayOutput

type PodDisruptionBudgetTypeArrayInput

type PodDisruptionBudgetTypeArrayInput interface {
	pulumi.Input

	ToPodDisruptionBudgetTypeArrayOutput() PodDisruptionBudgetTypeArrayOutput
	ToPodDisruptionBudgetTypeArrayOutputWithContext(context.Context) PodDisruptionBudgetTypeArrayOutput
}

PodDisruptionBudgetTypeArrayInput is an input type that accepts PodDisruptionBudgetTypeArray and PodDisruptionBudgetTypeArrayOutput values. You can construct a concrete instance of `PodDisruptionBudgetTypeArrayInput` via:

PodDisruptionBudgetTypeArray{ PodDisruptionBudgetTypeArgs{...} }

type PodDisruptionBudgetTypeArrayOutput

type PodDisruptionBudgetTypeArrayOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetTypeArrayOutput) ElementType

func (PodDisruptionBudgetTypeArrayOutput) Index

func (PodDisruptionBudgetTypeArrayOutput) ToPodDisruptionBudgetTypeArrayOutput

func (o PodDisruptionBudgetTypeArrayOutput) ToPodDisruptionBudgetTypeArrayOutput() PodDisruptionBudgetTypeArrayOutput

func (PodDisruptionBudgetTypeArrayOutput) ToPodDisruptionBudgetTypeArrayOutputWithContext

func (o PodDisruptionBudgetTypeArrayOutput) ToPodDisruptionBudgetTypeArrayOutputWithContext(ctx context.Context) PodDisruptionBudgetTypeArrayOutput

type PodDisruptionBudgetTypeInput

type PodDisruptionBudgetTypeInput interface {
	pulumi.Input

	ToPodDisruptionBudgetTypeOutput() PodDisruptionBudgetTypeOutput
	ToPodDisruptionBudgetTypeOutputWithContext(context.Context) PodDisruptionBudgetTypeOutput
}

PodDisruptionBudgetTypeInput is an input type that accepts PodDisruptionBudgetTypeArgs and PodDisruptionBudgetTypeOutput values. You can construct a concrete instance of `PodDisruptionBudgetTypeInput` via:

PodDisruptionBudgetTypeArgs{...}

type PodDisruptionBudgetTypeOutput

type PodDisruptionBudgetTypeOutput struct{ *pulumi.OutputState }

PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods

func (PodDisruptionBudgetTypeOutput) ApiVersion

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

func (PodDisruptionBudgetTypeOutput) ElementType

func (PodDisruptionBudgetTypeOutput) Kind

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

func (PodDisruptionBudgetTypeOutput) Spec

Specification of the desired behavior of the PodDisruptionBudget.

func (PodDisruptionBudgetTypeOutput) Status

Most recently observed status of the PodDisruptionBudget.

func (PodDisruptionBudgetTypeOutput) ToPodDisruptionBudgetTypeOutput

func (o PodDisruptionBudgetTypeOutput) ToPodDisruptionBudgetTypeOutput() PodDisruptionBudgetTypeOutput

func (PodDisruptionBudgetTypeOutput) ToPodDisruptionBudgetTypeOutputWithContext

func (o PodDisruptionBudgetTypeOutput) ToPodDisruptionBudgetTypeOutputWithContext(ctx context.Context) PodDisruptionBudgetTypeOutput

type PodSecurityPolicy

type PodSecurityPolicy struct {
	pulumi.CustomResourceState

	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrOutput `pulumi:"apiVersion"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrOutput `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ObjectMetaPtrOutput `pulumi:"metadata"`
	// spec defines the policy enforced.
	Spec PodSecurityPolicySpecPtrOutput `pulumi:"spec"`
}

PodSecurityPolicy governs the ability to make requests that affect the Security Context that will be applied to a pod and container. Deprecated in 1.21.

func GetPodSecurityPolicy

func GetPodSecurityPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PodSecurityPolicyState, opts ...pulumi.ResourceOption) (*PodSecurityPolicy, error)

GetPodSecurityPolicy gets an existing PodSecurityPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPodSecurityPolicy

func NewPodSecurityPolicy(ctx *pulumi.Context,
	name string, args *PodSecurityPolicyArgs, opts ...pulumi.ResourceOption) (*PodSecurityPolicy, error)

NewPodSecurityPolicy registers a new resource with the given unique name, arguments, and options.

func (*PodSecurityPolicy) ElementType

func (*PodSecurityPolicy) ElementType() reflect.Type

func (*PodSecurityPolicy) ToPodSecurityPolicyOutput

func (i *PodSecurityPolicy) ToPodSecurityPolicyOutput() PodSecurityPolicyOutput

func (*PodSecurityPolicy) ToPodSecurityPolicyOutputWithContext

func (i *PodSecurityPolicy) ToPodSecurityPolicyOutputWithContext(ctx context.Context) PodSecurityPolicyOutput

func (*PodSecurityPolicy) ToPodSecurityPolicyPtrOutput

func (i *PodSecurityPolicy) ToPodSecurityPolicyPtrOutput() PodSecurityPolicyPtrOutput

func (*PodSecurityPolicy) ToPodSecurityPolicyPtrOutputWithContext

func (i *PodSecurityPolicy) ToPodSecurityPolicyPtrOutputWithContext(ctx context.Context) PodSecurityPolicyPtrOutput

type PodSecurityPolicyArgs

type PodSecurityPolicyArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ObjectMetaPtrInput
	// spec defines the policy enforced.
	Spec PodSecurityPolicySpecPtrInput
}

The set of arguments for constructing a PodSecurityPolicy resource.

func (PodSecurityPolicyArgs) ElementType

func (PodSecurityPolicyArgs) ElementType() reflect.Type

type PodSecurityPolicyArray

type PodSecurityPolicyArray []PodSecurityPolicyInput

func (PodSecurityPolicyArray) ElementType

func (PodSecurityPolicyArray) ElementType() reflect.Type

func (PodSecurityPolicyArray) ToPodSecurityPolicyArrayOutput

func (i PodSecurityPolicyArray) ToPodSecurityPolicyArrayOutput() PodSecurityPolicyArrayOutput

func (PodSecurityPolicyArray) ToPodSecurityPolicyArrayOutputWithContext

func (i PodSecurityPolicyArray) ToPodSecurityPolicyArrayOutputWithContext(ctx context.Context) PodSecurityPolicyArrayOutput

type PodSecurityPolicyArrayInput

type PodSecurityPolicyArrayInput interface {
	pulumi.Input

	ToPodSecurityPolicyArrayOutput() PodSecurityPolicyArrayOutput
	ToPodSecurityPolicyArrayOutputWithContext(context.Context) PodSecurityPolicyArrayOutput
}

PodSecurityPolicyArrayInput is an input type that accepts PodSecurityPolicyArray and PodSecurityPolicyArrayOutput values. You can construct a concrete instance of `PodSecurityPolicyArrayInput` via:

PodSecurityPolicyArray{ PodSecurityPolicyArgs{...} }

type PodSecurityPolicyArrayOutput

type PodSecurityPolicyArrayOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyArrayOutput) ElementType

func (PodSecurityPolicyArrayOutput) Index

func (PodSecurityPolicyArrayOutput) ToPodSecurityPolicyArrayOutput

func (o PodSecurityPolicyArrayOutput) ToPodSecurityPolicyArrayOutput() PodSecurityPolicyArrayOutput

func (PodSecurityPolicyArrayOutput) ToPodSecurityPolicyArrayOutputWithContext

func (o PodSecurityPolicyArrayOutput) ToPodSecurityPolicyArrayOutputWithContext(ctx context.Context) PodSecurityPolicyArrayOutput

type PodSecurityPolicyInput

type PodSecurityPolicyInput interface {
	pulumi.Input

	ToPodSecurityPolicyOutput() PodSecurityPolicyOutput
	ToPodSecurityPolicyOutputWithContext(ctx context.Context) PodSecurityPolicyOutput
}

type PodSecurityPolicyList

type PodSecurityPolicyList struct {
	pulumi.CustomResourceState

	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrOutput `pulumi:"apiVersion"`
	// items is a list of schema objects.
	Items PodSecurityPolicyTypeArrayOutput `pulumi:"items"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrOutput `pulumi:"kind"`
	// Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ListMetaPtrOutput `pulumi:"metadata"`
}

PodSecurityPolicyList is a list of PodSecurityPolicy objects.

func GetPodSecurityPolicyList

func GetPodSecurityPolicyList(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PodSecurityPolicyListState, opts ...pulumi.ResourceOption) (*PodSecurityPolicyList, error)

GetPodSecurityPolicyList gets an existing PodSecurityPolicyList resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPodSecurityPolicyList

func NewPodSecurityPolicyList(ctx *pulumi.Context,
	name string, args *PodSecurityPolicyListArgs, opts ...pulumi.ResourceOption) (*PodSecurityPolicyList, error)

NewPodSecurityPolicyList registers a new resource with the given unique name, arguments, and options.

func (*PodSecurityPolicyList) ElementType

func (*PodSecurityPolicyList) ElementType() reflect.Type

func (*PodSecurityPolicyList) ToPodSecurityPolicyListOutput

func (i *PodSecurityPolicyList) ToPodSecurityPolicyListOutput() PodSecurityPolicyListOutput

func (*PodSecurityPolicyList) ToPodSecurityPolicyListOutputWithContext

func (i *PodSecurityPolicyList) ToPodSecurityPolicyListOutputWithContext(ctx context.Context) PodSecurityPolicyListOutput

func (*PodSecurityPolicyList) ToPodSecurityPolicyListPtrOutput

func (i *PodSecurityPolicyList) ToPodSecurityPolicyListPtrOutput() PodSecurityPolicyListPtrOutput

func (*PodSecurityPolicyList) ToPodSecurityPolicyListPtrOutputWithContext

func (i *PodSecurityPolicyList) ToPodSecurityPolicyListPtrOutputWithContext(ctx context.Context) PodSecurityPolicyListPtrOutput

type PodSecurityPolicyListArgs

type PodSecurityPolicyListArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput
	// items is a list of schema objects.
	Items PodSecurityPolicyTypeArrayInput
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput
	// Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ListMetaPtrInput
}

The set of arguments for constructing a PodSecurityPolicyList resource.

func (PodSecurityPolicyListArgs) ElementType

func (PodSecurityPolicyListArgs) ElementType() reflect.Type

type PodSecurityPolicyListArray

type PodSecurityPolicyListArray []PodSecurityPolicyListInput

func (PodSecurityPolicyListArray) ElementType

func (PodSecurityPolicyListArray) ElementType() reflect.Type

func (PodSecurityPolicyListArray) ToPodSecurityPolicyListArrayOutput

func (i PodSecurityPolicyListArray) ToPodSecurityPolicyListArrayOutput() PodSecurityPolicyListArrayOutput

func (PodSecurityPolicyListArray) ToPodSecurityPolicyListArrayOutputWithContext

func (i PodSecurityPolicyListArray) ToPodSecurityPolicyListArrayOutputWithContext(ctx context.Context) PodSecurityPolicyListArrayOutput

type PodSecurityPolicyListArrayInput

type PodSecurityPolicyListArrayInput interface {
	pulumi.Input

	ToPodSecurityPolicyListArrayOutput() PodSecurityPolicyListArrayOutput
	ToPodSecurityPolicyListArrayOutputWithContext(context.Context) PodSecurityPolicyListArrayOutput
}

PodSecurityPolicyListArrayInput is an input type that accepts PodSecurityPolicyListArray and PodSecurityPolicyListArrayOutput values. You can construct a concrete instance of `PodSecurityPolicyListArrayInput` via:

PodSecurityPolicyListArray{ PodSecurityPolicyListArgs{...} }

type PodSecurityPolicyListArrayOutput

type PodSecurityPolicyListArrayOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyListArrayOutput) ElementType

func (PodSecurityPolicyListArrayOutput) Index

func (PodSecurityPolicyListArrayOutput) ToPodSecurityPolicyListArrayOutput

func (o PodSecurityPolicyListArrayOutput) ToPodSecurityPolicyListArrayOutput() PodSecurityPolicyListArrayOutput

func (PodSecurityPolicyListArrayOutput) ToPodSecurityPolicyListArrayOutputWithContext

func (o PodSecurityPolicyListArrayOutput) ToPodSecurityPolicyListArrayOutputWithContext(ctx context.Context) PodSecurityPolicyListArrayOutput

type PodSecurityPolicyListInput

type PodSecurityPolicyListInput interface {
	pulumi.Input

	ToPodSecurityPolicyListOutput() PodSecurityPolicyListOutput
	ToPodSecurityPolicyListOutputWithContext(ctx context.Context) PodSecurityPolicyListOutput
}

type PodSecurityPolicyListMap

type PodSecurityPolicyListMap map[string]PodSecurityPolicyListInput

func (PodSecurityPolicyListMap) ElementType

func (PodSecurityPolicyListMap) ElementType() reflect.Type

func (PodSecurityPolicyListMap) ToPodSecurityPolicyListMapOutput

func (i PodSecurityPolicyListMap) ToPodSecurityPolicyListMapOutput() PodSecurityPolicyListMapOutput

func (PodSecurityPolicyListMap) ToPodSecurityPolicyListMapOutputWithContext

func (i PodSecurityPolicyListMap) ToPodSecurityPolicyListMapOutputWithContext(ctx context.Context) PodSecurityPolicyListMapOutput

type PodSecurityPolicyListMapInput

type PodSecurityPolicyListMapInput interface {
	pulumi.Input

	ToPodSecurityPolicyListMapOutput() PodSecurityPolicyListMapOutput
	ToPodSecurityPolicyListMapOutputWithContext(context.Context) PodSecurityPolicyListMapOutput
}

PodSecurityPolicyListMapInput is an input type that accepts PodSecurityPolicyListMap and PodSecurityPolicyListMapOutput values. You can construct a concrete instance of `PodSecurityPolicyListMapInput` via:

PodSecurityPolicyListMap{ "key": PodSecurityPolicyListArgs{...} }

type PodSecurityPolicyListMapOutput

type PodSecurityPolicyListMapOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyListMapOutput) ElementType

func (PodSecurityPolicyListMapOutput) MapIndex

func (PodSecurityPolicyListMapOutput) ToPodSecurityPolicyListMapOutput

func (o PodSecurityPolicyListMapOutput) ToPodSecurityPolicyListMapOutput() PodSecurityPolicyListMapOutput

func (PodSecurityPolicyListMapOutput) ToPodSecurityPolicyListMapOutputWithContext

func (o PodSecurityPolicyListMapOutput) ToPodSecurityPolicyListMapOutputWithContext(ctx context.Context) PodSecurityPolicyListMapOutput

type PodSecurityPolicyListOutput

type PodSecurityPolicyListOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyListOutput) ElementType

func (PodSecurityPolicyListOutput) ToPodSecurityPolicyListOutput

func (o PodSecurityPolicyListOutput) ToPodSecurityPolicyListOutput() PodSecurityPolicyListOutput

func (PodSecurityPolicyListOutput) ToPodSecurityPolicyListOutputWithContext

func (o PodSecurityPolicyListOutput) ToPodSecurityPolicyListOutputWithContext(ctx context.Context) PodSecurityPolicyListOutput

func (PodSecurityPolicyListOutput) ToPodSecurityPolicyListPtrOutput

func (o PodSecurityPolicyListOutput) ToPodSecurityPolicyListPtrOutput() PodSecurityPolicyListPtrOutput

func (PodSecurityPolicyListOutput) ToPodSecurityPolicyListPtrOutputWithContext

func (o PodSecurityPolicyListOutput) ToPodSecurityPolicyListPtrOutputWithContext(ctx context.Context) PodSecurityPolicyListPtrOutput

type PodSecurityPolicyListPtrInput

type PodSecurityPolicyListPtrInput interface {
	pulumi.Input

	ToPodSecurityPolicyListPtrOutput() PodSecurityPolicyListPtrOutput
	ToPodSecurityPolicyListPtrOutputWithContext(ctx context.Context) PodSecurityPolicyListPtrOutput
}

type PodSecurityPolicyListPtrOutput

type PodSecurityPolicyListPtrOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyListPtrOutput) Elem added in v3.7.2

func (PodSecurityPolicyListPtrOutput) ElementType

func (PodSecurityPolicyListPtrOutput) ToPodSecurityPolicyListPtrOutput

func (o PodSecurityPolicyListPtrOutput) ToPodSecurityPolicyListPtrOutput() PodSecurityPolicyListPtrOutput

func (PodSecurityPolicyListPtrOutput) ToPodSecurityPolicyListPtrOutputWithContext

func (o PodSecurityPolicyListPtrOutput) ToPodSecurityPolicyListPtrOutputWithContext(ctx context.Context) PodSecurityPolicyListPtrOutput

type PodSecurityPolicyListState

type PodSecurityPolicyListState struct {
}

func (PodSecurityPolicyListState) ElementType

func (PodSecurityPolicyListState) ElementType() reflect.Type

type PodSecurityPolicyListType

type PodSecurityPolicyListType struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion *string `pulumi:"apiVersion"`
	// items is a list of schema objects.
	Items []PodSecurityPolicyType `pulumi:"items"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind *string `pulumi:"kind"`
	// Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata *metav1.ListMeta `pulumi:"metadata"`
}

PodSecurityPolicyList is a list of PodSecurityPolicy objects.

type PodSecurityPolicyListTypeArgs

type PodSecurityPolicyListTypeArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput `pulumi:"apiVersion"`
	// items is a list of schema objects.
	Items PodSecurityPolicyTypeArrayInput `pulumi:"items"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput `pulumi:"kind"`
	// Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ListMetaPtrInput `pulumi:"metadata"`
}

PodSecurityPolicyList is a list of PodSecurityPolicy objects.

func (PodSecurityPolicyListTypeArgs) ElementType

func (PodSecurityPolicyListTypeArgs) ToPodSecurityPolicyListTypeOutput

func (i PodSecurityPolicyListTypeArgs) ToPodSecurityPolicyListTypeOutput() PodSecurityPolicyListTypeOutput

func (PodSecurityPolicyListTypeArgs) ToPodSecurityPolicyListTypeOutputWithContext

func (i PodSecurityPolicyListTypeArgs) ToPodSecurityPolicyListTypeOutputWithContext(ctx context.Context) PodSecurityPolicyListTypeOutput

type PodSecurityPolicyListTypeInput

type PodSecurityPolicyListTypeInput interface {
	pulumi.Input

	ToPodSecurityPolicyListTypeOutput() PodSecurityPolicyListTypeOutput
	ToPodSecurityPolicyListTypeOutputWithContext(context.Context) PodSecurityPolicyListTypeOutput
}

PodSecurityPolicyListTypeInput is an input type that accepts PodSecurityPolicyListTypeArgs and PodSecurityPolicyListTypeOutput values. You can construct a concrete instance of `PodSecurityPolicyListTypeInput` via:

PodSecurityPolicyListTypeArgs{...}

type PodSecurityPolicyListTypeOutput

type PodSecurityPolicyListTypeOutput struct{ *pulumi.OutputState }

PodSecurityPolicyList is a list of PodSecurityPolicy objects.

func (PodSecurityPolicyListTypeOutput) ApiVersion

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

func (PodSecurityPolicyListTypeOutput) ElementType

func (PodSecurityPolicyListTypeOutput) Items

items is a list of schema objects.

func (PodSecurityPolicyListTypeOutput) Kind

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

func (PodSecurityPolicyListTypeOutput) ToPodSecurityPolicyListTypeOutput

func (o PodSecurityPolicyListTypeOutput) ToPodSecurityPolicyListTypeOutput() PodSecurityPolicyListTypeOutput

func (PodSecurityPolicyListTypeOutput) ToPodSecurityPolicyListTypeOutputWithContext

func (o PodSecurityPolicyListTypeOutput) ToPodSecurityPolicyListTypeOutputWithContext(ctx context.Context) PodSecurityPolicyListTypeOutput

type PodSecurityPolicyMap

type PodSecurityPolicyMap map[string]PodSecurityPolicyInput

func (PodSecurityPolicyMap) ElementType

func (PodSecurityPolicyMap) ElementType() reflect.Type

func (PodSecurityPolicyMap) ToPodSecurityPolicyMapOutput

func (i PodSecurityPolicyMap) ToPodSecurityPolicyMapOutput() PodSecurityPolicyMapOutput

func (PodSecurityPolicyMap) ToPodSecurityPolicyMapOutputWithContext

func (i PodSecurityPolicyMap) ToPodSecurityPolicyMapOutputWithContext(ctx context.Context) PodSecurityPolicyMapOutput

type PodSecurityPolicyMapInput

type PodSecurityPolicyMapInput interface {
	pulumi.Input

	ToPodSecurityPolicyMapOutput() PodSecurityPolicyMapOutput
	ToPodSecurityPolicyMapOutputWithContext(context.Context) PodSecurityPolicyMapOutput
}

PodSecurityPolicyMapInput is an input type that accepts PodSecurityPolicyMap and PodSecurityPolicyMapOutput values. You can construct a concrete instance of `PodSecurityPolicyMapInput` via:

PodSecurityPolicyMap{ "key": PodSecurityPolicyArgs{...} }

type PodSecurityPolicyMapOutput

type PodSecurityPolicyMapOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyMapOutput) ElementType

func (PodSecurityPolicyMapOutput) ElementType() reflect.Type

func (PodSecurityPolicyMapOutput) MapIndex

func (PodSecurityPolicyMapOutput) ToPodSecurityPolicyMapOutput

func (o PodSecurityPolicyMapOutput) ToPodSecurityPolicyMapOutput() PodSecurityPolicyMapOutput

func (PodSecurityPolicyMapOutput) ToPodSecurityPolicyMapOutputWithContext

func (o PodSecurityPolicyMapOutput) ToPodSecurityPolicyMapOutputWithContext(ctx context.Context) PodSecurityPolicyMapOutput

type PodSecurityPolicyOutput

type PodSecurityPolicyOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyOutput) ElementType

func (PodSecurityPolicyOutput) ElementType() reflect.Type

func (PodSecurityPolicyOutput) ToPodSecurityPolicyOutput

func (o PodSecurityPolicyOutput) ToPodSecurityPolicyOutput() PodSecurityPolicyOutput

func (PodSecurityPolicyOutput) ToPodSecurityPolicyOutputWithContext

func (o PodSecurityPolicyOutput) ToPodSecurityPolicyOutputWithContext(ctx context.Context) PodSecurityPolicyOutput

func (PodSecurityPolicyOutput) ToPodSecurityPolicyPtrOutput

func (o PodSecurityPolicyOutput) ToPodSecurityPolicyPtrOutput() PodSecurityPolicyPtrOutput

func (PodSecurityPolicyOutput) ToPodSecurityPolicyPtrOutputWithContext

func (o PodSecurityPolicyOutput) ToPodSecurityPolicyPtrOutputWithContext(ctx context.Context) PodSecurityPolicyPtrOutput

type PodSecurityPolicyPtrInput

type PodSecurityPolicyPtrInput interface {
	pulumi.Input

	ToPodSecurityPolicyPtrOutput() PodSecurityPolicyPtrOutput
	ToPodSecurityPolicyPtrOutputWithContext(ctx context.Context) PodSecurityPolicyPtrOutput
}

type PodSecurityPolicyPtrOutput

type PodSecurityPolicyPtrOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyPtrOutput) Elem added in v3.7.2

func (PodSecurityPolicyPtrOutput) ElementType

func (PodSecurityPolicyPtrOutput) ElementType() reflect.Type

func (PodSecurityPolicyPtrOutput) ToPodSecurityPolicyPtrOutput

func (o PodSecurityPolicyPtrOutput) ToPodSecurityPolicyPtrOutput() PodSecurityPolicyPtrOutput

func (PodSecurityPolicyPtrOutput) ToPodSecurityPolicyPtrOutputWithContext

func (o PodSecurityPolicyPtrOutput) ToPodSecurityPolicyPtrOutputWithContext(ctx context.Context) PodSecurityPolicyPtrOutput

type PodSecurityPolicySpec

type PodSecurityPolicySpec struct {
	// allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
	AllowPrivilegeEscalation *bool `pulumi:"allowPrivilegeEscalation"`
	// AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.
	AllowedCSIDrivers []AllowedCSIDriver `pulumi:"allowedCSIDrivers"`
	// allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
	AllowedCapabilities []string `pulumi:"allowedCapabilities"`
	// allowedFlexVolumes is an allowlist of Flexvolumes.  Empty or nil indicates that all Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes is allowed in the "volumes" field.
	AllowedFlexVolumes []AllowedFlexVolume `pulumi:"allowedFlexVolumes"`
	// allowedHostPaths is an allowlist of host paths. Empty indicates that all host paths may be used.
	AllowedHostPaths []AllowedHostPath `pulumi:"allowedHostPaths"`
	// AllowedProcMountTypes is an allowlist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
	AllowedProcMountTypes []string `pulumi:"allowedProcMountTypes"`
	// allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.
	//
	// Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
	AllowedUnsafeSysctls []string `pulumi:"allowedUnsafeSysctls"`
	// defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
	DefaultAddCapabilities []string `pulumi:"defaultAddCapabilities"`
	// defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
	DefaultAllowPrivilegeEscalation *bool `pulumi:"defaultAllowPrivilegeEscalation"`
	// forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
	//
	// Examples: e.g. "foo/*" forbids "foo/bar", "foo/baz", etc. e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.
	ForbiddenSysctls []string `pulumi:"forbiddenSysctls"`
	// fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.
	FsGroup FSGroupStrategyOptions `pulumi:"fsGroup"`
	// hostIPC determines if the policy allows the use of HostIPC in the pod spec.
	HostIPC *bool `pulumi:"hostIPC"`
	// hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
	HostNetwork *bool `pulumi:"hostNetwork"`
	// hostPID determines if the policy allows the use of HostPID in the pod spec.
	HostPID *bool `pulumi:"hostPID"`
	// hostPorts determines which host port ranges are allowed to be exposed.
	HostPorts []HostPortRange `pulumi:"hostPorts"`
	// privileged determines if a pod can request to be run as privileged.
	Privileged *bool `pulumi:"privileged"`
	// readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
	ReadOnlyRootFilesystem *bool `pulumi:"readOnlyRootFilesystem"`
	// requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
	RequiredDropCapabilities []string `pulumi:"requiredDropCapabilities"`
	// RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod's RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.
	RunAsGroup *RunAsGroupStrategyOptions `pulumi:"runAsGroup"`
	// runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.
	RunAsUser RunAsUserStrategyOptions `pulumi:"runAsUser"`
	// runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod's runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.
	RuntimeClass *RuntimeClassStrategyOptions `pulumi:"runtimeClass"`
	// seLinux is the strategy that will dictate the allowable labels that may be set.
	SeLinux SELinuxStrategyOptions `pulumi:"seLinux"`
	// supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.
	SupplementalGroups SupplementalGroupsStrategyOptions `pulumi:"supplementalGroups"`
	// volumes is an allowlist of volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
	Volumes []string `pulumi:"volumes"`
}

PodSecurityPolicySpec defines the policy enforced.

type PodSecurityPolicySpecArgs

type PodSecurityPolicySpecArgs struct {
	// allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
	AllowPrivilegeEscalation pulumi.BoolPtrInput `pulumi:"allowPrivilegeEscalation"`
	// AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.
	AllowedCSIDrivers AllowedCSIDriverArrayInput `pulumi:"allowedCSIDrivers"`
	// allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
	AllowedCapabilities pulumi.StringArrayInput `pulumi:"allowedCapabilities"`
	// allowedFlexVolumes is an allowlist of Flexvolumes.  Empty or nil indicates that all Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes is allowed in the "volumes" field.
	AllowedFlexVolumes AllowedFlexVolumeArrayInput `pulumi:"allowedFlexVolumes"`
	// allowedHostPaths is an allowlist of host paths. Empty indicates that all host paths may be used.
	AllowedHostPaths AllowedHostPathArrayInput `pulumi:"allowedHostPaths"`
	// AllowedProcMountTypes is an allowlist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
	AllowedProcMountTypes pulumi.StringArrayInput `pulumi:"allowedProcMountTypes"`
	// allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.
	//
	// Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
	AllowedUnsafeSysctls pulumi.StringArrayInput `pulumi:"allowedUnsafeSysctls"`
	// defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
	DefaultAddCapabilities pulumi.StringArrayInput `pulumi:"defaultAddCapabilities"`
	// defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
	DefaultAllowPrivilegeEscalation pulumi.BoolPtrInput `pulumi:"defaultAllowPrivilegeEscalation"`
	// forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
	//
	// Examples: e.g. "foo/*" forbids "foo/bar", "foo/baz", etc. e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.
	ForbiddenSysctls pulumi.StringArrayInput `pulumi:"forbiddenSysctls"`
	// fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.
	FsGroup FSGroupStrategyOptionsInput `pulumi:"fsGroup"`
	// hostIPC determines if the policy allows the use of HostIPC in the pod spec.
	HostIPC pulumi.BoolPtrInput `pulumi:"hostIPC"`
	// hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
	HostNetwork pulumi.BoolPtrInput `pulumi:"hostNetwork"`
	// hostPID determines if the policy allows the use of HostPID in the pod spec.
	HostPID pulumi.BoolPtrInput `pulumi:"hostPID"`
	// hostPorts determines which host port ranges are allowed to be exposed.
	HostPorts HostPortRangeArrayInput `pulumi:"hostPorts"`
	// privileged determines if a pod can request to be run as privileged.
	Privileged pulumi.BoolPtrInput `pulumi:"privileged"`
	// readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
	ReadOnlyRootFilesystem pulumi.BoolPtrInput `pulumi:"readOnlyRootFilesystem"`
	// requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
	RequiredDropCapabilities pulumi.StringArrayInput `pulumi:"requiredDropCapabilities"`
	// RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod's RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.
	RunAsGroup RunAsGroupStrategyOptionsPtrInput `pulumi:"runAsGroup"`
	// runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.
	RunAsUser RunAsUserStrategyOptionsInput `pulumi:"runAsUser"`
	// runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod's runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.
	RuntimeClass RuntimeClassStrategyOptionsPtrInput `pulumi:"runtimeClass"`
	// seLinux is the strategy that will dictate the allowable labels that may be set.
	SeLinux SELinuxStrategyOptionsInput `pulumi:"seLinux"`
	// supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.
	SupplementalGroups SupplementalGroupsStrategyOptionsInput `pulumi:"supplementalGroups"`
	// volumes is an allowlist of volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
	Volumes pulumi.StringArrayInput `pulumi:"volumes"`
}

PodSecurityPolicySpec defines the policy enforced.

func (PodSecurityPolicySpecArgs) ElementType

func (PodSecurityPolicySpecArgs) ElementType() reflect.Type

func (PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecOutput

func (i PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecOutput() PodSecurityPolicySpecOutput

func (PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecOutputWithContext

func (i PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecOutputWithContext(ctx context.Context) PodSecurityPolicySpecOutput

func (PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecPtrOutput

func (i PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecPtrOutput() PodSecurityPolicySpecPtrOutput

func (PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecPtrOutputWithContext

func (i PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecPtrOutputWithContext(ctx context.Context) PodSecurityPolicySpecPtrOutput

type PodSecurityPolicySpecInput

type PodSecurityPolicySpecInput interface {
	pulumi.Input

	ToPodSecurityPolicySpecOutput() PodSecurityPolicySpecOutput
	ToPodSecurityPolicySpecOutputWithContext(context.Context) PodSecurityPolicySpecOutput
}

PodSecurityPolicySpecInput is an input type that accepts PodSecurityPolicySpecArgs and PodSecurityPolicySpecOutput values. You can construct a concrete instance of `PodSecurityPolicySpecInput` via:

PodSecurityPolicySpecArgs{...}

type PodSecurityPolicySpecOutput

type PodSecurityPolicySpecOutput struct{ *pulumi.OutputState }

PodSecurityPolicySpec defines the policy enforced.

func (PodSecurityPolicySpecOutput) AllowPrivilegeEscalation

func (o PodSecurityPolicySpecOutput) AllowPrivilegeEscalation() pulumi.BoolPtrOutput

allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.

func (PodSecurityPolicySpecOutput) AllowedCSIDrivers

AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.

func (PodSecurityPolicySpecOutput) AllowedCapabilities

func (o PodSecurityPolicySpecOutput) AllowedCapabilities() pulumi.StringArrayOutput

allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.

func (PodSecurityPolicySpecOutput) AllowedFlexVolumes

allowedFlexVolumes is an allowlist of Flexvolumes. Empty or nil indicates that all Flexvolumes may be used. This parameter is effective only when the usage of the Flexvolumes is allowed in the "volumes" field.

func (PodSecurityPolicySpecOutput) AllowedHostPaths

allowedHostPaths is an allowlist of host paths. Empty indicates that all host paths may be used.

func (PodSecurityPolicySpecOutput) AllowedProcMountTypes

func (o PodSecurityPolicySpecOutput) AllowedProcMountTypes() pulumi.StringArrayOutput

AllowedProcMountTypes is an allowlist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.

func (PodSecurityPolicySpecOutput) AllowedUnsafeSysctls

func (o PodSecurityPolicySpecOutput) AllowedUnsafeSysctls() pulumi.StringArrayOutput

allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.

Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.

func (PodSecurityPolicySpecOutput) DefaultAddCapabilities

func (o PodSecurityPolicySpecOutput) DefaultAddCapabilities() pulumi.StringArrayOutput

defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability. You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.

func (PodSecurityPolicySpecOutput) DefaultAllowPrivilegeEscalation

func (o PodSecurityPolicySpecOutput) DefaultAllowPrivilegeEscalation() pulumi.BoolPtrOutput

defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.

func (PodSecurityPolicySpecOutput) ElementType

func (PodSecurityPolicySpecOutput) ForbiddenSysctls

forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.

Examples: e.g. "foo/*" forbids "foo/bar", "foo/baz", etc. e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.

func (PodSecurityPolicySpecOutput) FsGroup

fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.

func (PodSecurityPolicySpecOutput) HostIPC

hostIPC determines if the policy allows the use of HostIPC in the pod spec.

func (PodSecurityPolicySpecOutput) HostNetwork

hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.

func (PodSecurityPolicySpecOutput) HostPID

hostPID determines if the policy allows the use of HostPID in the pod spec.

func (PodSecurityPolicySpecOutput) HostPorts

hostPorts determines which host port ranges are allowed to be exposed.

func (PodSecurityPolicySpecOutput) Privileged

privileged determines if a pod can request to be run as privileged.

func (PodSecurityPolicySpecOutput) ReadOnlyRootFilesystem

func (o PodSecurityPolicySpecOutput) ReadOnlyRootFilesystem() pulumi.BoolPtrOutput

readOnlyRootFilesystem when set to true will force containers to run with a read only root file system. If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.

func (PodSecurityPolicySpecOutput) RequiredDropCapabilities

func (o PodSecurityPolicySpecOutput) RequiredDropCapabilities() pulumi.StringArrayOutput

requiredDropCapabilities are the capabilities that will be dropped from the container. These are required to be dropped and cannot be added.

func (PodSecurityPolicySpecOutput) RunAsGroup

RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod's RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.

func (PodSecurityPolicySpecOutput) RunAsUser

runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.

func (PodSecurityPolicySpecOutput) RuntimeClass

runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod's runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.

func (PodSecurityPolicySpecOutput) SeLinux

seLinux is the strategy that will dictate the allowable labels that may be set.

func (PodSecurityPolicySpecOutput) SupplementalGroups

supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.

func (PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecOutput

func (o PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecOutput() PodSecurityPolicySpecOutput

func (PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecOutputWithContext

func (o PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecOutputWithContext(ctx context.Context) PodSecurityPolicySpecOutput

func (PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecPtrOutput

func (o PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecPtrOutput() PodSecurityPolicySpecPtrOutput

func (PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecPtrOutputWithContext

func (o PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecPtrOutputWithContext(ctx context.Context) PodSecurityPolicySpecPtrOutput

func (PodSecurityPolicySpecOutput) Volumes

volumes is an allowlist of volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.

type PodSecurityPolicySpecPtrInput

type PodSecurityPolicySpecPtrInput interface {
	pulumi.Input

	ToPodSecurityPolicySpecPtrOutput() PodSecurityPolicySpecPtrOutput
	ToPodSecurityPolicySpecPtrOutputWithContext(context.Context) PodSecurityPolicySpecPtrOutput
}

PodSecurityPolicySpecPtrInput is an input type that accepts PodSecurityPolicySpecArgs, PodSecurityPolicySpecPtr and PodSecurityPolicySpecPtrOutput values. You can construct a concrete instance of `PodSecurityPolicySpecPtrInput` via:

        PodSecurityPolicySpecArgs{...}

or:

        nil

type PodSecurityPolicySpecPtrOutput

type PodSecurityPolicySpecPtrOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicySpecPtrOutput) AllowPrivilegeEscalation

func (o PodSecurityPolicySpecPtrOutput) AllowPrivilegeEscalation() pulumi.BoolPtrOutput

allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.

func (PodSecurityPolicySpecPtrOutput) AllowedCSIDrivers

AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.

func (PodSecurityPolicySpecPtrOutput) AllowedCapabilities

allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.

func (PodSecurityPolicySpecPtrOutput) AllowedFlexVolumes

allowedFlexVolumes is an allowlist of Flexvolumes. Empty or nil indicates that all Flexvolumes may be used. This parameter is effective only when the usage of the Flexvolumes is allowed in the "volumes" field.

func (PodSecurityPolicySpecPtrOutput) AllowedHostPaths

allowedHostPaths is an allowlist of host paths. Empty indicates that all host paths may be used.

func (PodSecurityPolicySpecPtrOutput) AllowedProcMountTypes

func (o PodSecurityPolicySpecPtrOutput) AllowedProcMountTypes() pulumi.StringArrayOutput

AllowedProcMountTypes is an allowlist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.

func (PodSecurityPolicySpecPtrOutput) AllowedUnsafeSysctls

func (o PodSecurityPolicySpecPtrOutput) AllowedUnsafeSysctls() pulumi.StringArrayOutput

allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.

Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.

func (PodSecurityPolicySpecPtrOutput) DefaultAddCapabilities

func (o PodSecurityPolicySpecPtrOutput) DefaultAddCapabilities() pulumi.StringArrayOutput

defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability. You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.

func (PodSecurityPolicySpecPtrOutput) DefaultAllowPrivilegeEscalation

func (o PodSecurityPolicySpecPtrOutput) DefaultAllowPrivilegeEscalation() pulumi.BoolPtrOutput

defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.

func (PodSecurityPolicySpecPtrOutput) Elem

func (PodSecurityPolicySpecPtrOutput) ElementType

func (PodSecurityPolicySpecPtrOutput) ForbiddenSysctls

forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.

Examples: e.g. "foo/*" forbids "foo/bar", "foo/baz", etc. e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.

func (PodSecurityPolicySpecPtrOutput) FsGroup

fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.

func (PodSecurityPolicySpecPtrOutput) HostIPC

hostIPC determines if the policy allows the use of HostIPC in the pod spec.

func (PodSecurityPolicySpecPtrOutput) HostNetwork

hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.

func (PodSecurityPolicySpecPtrOutput) HostPID

hostPID determines if the policy allows the use of HostPID in the pod spec.

func (PodSecurityPolicySpecPtrOutput) HostPorts

hostPorts determines which host port ranges are allowed to be exposed.

func (PodSecurityPolicySpecPtrOutput) Privileged

privileged determines if a pod can request to be run as privileged.

func (PodSecurityPolicySpecPtrOutput) ReadOnlyRootFilesystem

func (o PodSecurityPolicySpecPtrOutput) ReadOnlyRootFilesystem() pulumi.BoolPtrOutput

readOnlyRootFilesystem when set to true will force containers to run with a read only root file system. If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.

func (PodSecurityPolicySpecPtrOutput) RequiredDropCapabilities

func (o PodSecurityPolicySpecPtrOutput) RequiredDropCapabilities() pulumi.StringArrayOutput

requiredDropCapabilities are the capabilities that will be dropped from the container. These are required to be dropped and cannot be added.

func (PodSecurityPolicySpecPtrOutput) RunAsGroup

RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod's RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.

func (PodSecurityPolicySpecPtrOutput) RunAsUser

runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.

func (PodSecurityPolicySpecPtrOutput) RuntimeClass

runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod's runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.

func (PodSecurityPolicySpecPtrOutput) SeLinux

seLinux is the strategy that will dictate the allowable labels that may be set.

func (PodSecurityPolicySpecPtrOutput) SupplementalGroups

supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.

func (PodSecurityPolicySpecPtrOutput) ToPodSecurityPolicySpecPtrOutput

func (o PodSecurityPolicySpecPtrOutput) ToPodSecurityPolicySpecPtrOutput() PodSecurityPolicySpecPtrOutput

func (PodSecurityPolicySpecPtrOutput) ToPodSecurityPolicySpecPtrOutputWithContext

func (o PodSecurityPolicySpecPtrOutput) ToPodSecurityPolicySpecPtrOutputWithContext(ctx context.Context) PodSecurityPolicySpecPtrOutput

func (PodSecurityPolicySpecPtrOutput) Volumes

volumes is an allowlist of volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.

type PodSecurityPolicyState

type PodSecurityPolicyState struct {
}

func (PodSecurityPolicyState) ElementType

func (PodSecurityPolicyState) ElementType() reflect.Type

type PodSecurityPolicyType

type PodSecurityPolicyType struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion *string `pulumi:"apiVersion"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind *string `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata *metav1.ObjectMeta `pulumi:"metadata"`
	// spec defines the policy enforced.
	Spec *PodSecurityPolicySpec `pulumi:"spec"`
}

PodSecurityPolicy governs the ability to make requests that affect the Security Context that will be applied to a pod and container. Deprecated in 1.21.

type PodSecurityPolicyTypeArgs

type PodSecurityPolicyTypeArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput `pulumi:"apiVersion"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ObjectMetaPtrInput `pulumi:"metadata"`
	// spec defines the policy enforced.
	Spec PodSecurityPolicySpecPtrInput `pulumi:"spec"`
}

PodSecurityPolicy governs the ability to make requests that affect the Security Context that will be applied to a pod and container. Deprecated in 1.21.

func (PodSecurityPolicyTypeArgs) ElementType

func (PodSecurityPolicyTypeArgs) ElementType() reflect.Type

func (PodSecurityPolicyTypeArgs) ToPodSecurityPolicyTypeOutput

func (i PodSecurityPolicyTypeArgs) ToPodSecurityPolicyTypeOutput() PodSecurityPolicyTypeOutput

func (PodSecurityPolicyTypeArgs) ToPodSecurityPolicyTypeOutputWithContext

func (i PodSecurityPolicyTypeArgs) ToPodSecurityPolicyTypeOutputWithContext(ctx context.Context) PodSecurityPolicyTypeOutput

type PodSecurityPolicyTypeArray

type PodSecurityPolicyTypeArray []PodSecurityPolicyTypeInput

func (PodSecurityPolicyTypeArray) ElementType

func (PodSecurityPolicyTypeArray) ElementType() reflect.Type

func (PodSecurityPolicyTypeArray) ToPodSecurityPolicyTypeArrayOutput

func (i PodSecurityPolicyTypeArray) ToPodSecurityPolicyTypeArrayOutput() PodSecurityPolicyTypeArrayOutput

func (PodSecurityPolicyTypeArray) ToPodSecurityPolicyTypeArrayOutputWithContext

func (i PodSecurityPolicyTypeArray) ToPodSecurityPolicyTypeArrayOutputWithContext(ctx context.Context) PodSecurityPolicyTypeArrayOutput

type PodSecurityPolicyTypeArrayInput

type PodSecurityPolicyTypeArrayInput interface {
	pulumi.Input

	ToPodSecurityPolicyTypeArrayOutput() PodSecurityPolicyTypeArrayOutput
	ToPodSecurityPolicyTypeArrayOutputWithContext(context.Context) PodSecurityPolicyTypeArrayOutput
}

PodSecurityPolicyTypeArrayInput is an input type that accepts PodSecurityPolicyTypeArray and PodSecurityPolicyTypeArrayOutput values. You can construct a concrete instance of `PodSecurityPolicyTypeArrayInput` via:

PodSecurityPolicyTypeArray{ PodSecurityPolicyTypeArgs{...} }

type PodSecurityPolicyTypeArrayOutput

type PodSecurityPolicyTypeArrayOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyTypeArrayOutput) ElementType

func (PodSecurityPolicyTypeArrayOutput) Index

func (PodSecurityPolicyTypeArrayOutput) ToPodSecurityPolicyTypeArrayOutput

func (o PodSecurityPolicyTypeArrayOutput) ToPodSecurityPolicyTypeArrayOutput() PodSecurityPolicyTypeArrayOutput

func (PodSecurityPolicyTypeArrayOutput) ToPodSecurityPolicyTypeArrayOutputWithContext

func (o PodSecurityPolicyTypeArrayOutput) ToPodSecurityPolicyTypeArrayOutputWithContext(ctx context.Context) PodSecurityPolicyTypeArrayOutput

type PodSecurityPolicyTypeInput

type PodSecurityPolicyTypeInput interface {
	pulumi.Input

	ToPodSecurityPolicyTypeOutput() PodSecurityPolicyTypeOutput
	ToPodSecurityPolicyTypeOutputWithContext(context.Context) PodSecurityPolicyTypeOutput
}

PodSecurityPolicyTypeInput is an input type that accepts PodSecurityPolicyTypeArgs and PodSecurityPolicyTypeOutput values. You can construct a concrete instance of `PodSecurityPolicyTypeInput` via:

PodSecurityPolicyTypeArgs{...}

type PodSecurityPolicyTypeOutput

type PodSecurityPolicyTypeOutput struct{ *pulumi.OutputState }

PodSecurityPolicy governs the ability to make requests that affect the Security Context that will be applied to a pod and container. Deprecated in 1.21.

func (PodSecurityPolicyTypeOutput) ApiVersion

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

func (PodSecurityPolicyTypeOutput) ElementType

func (PodSecurityPolicyTypeOutput) Kind

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

func (PodSecurityPolicyTypeOutput) Spec

spec defines the policy enforced.

func (PodSecurityPolicyTypeOutput) ToPodSecurityPolicyTypeOutput

func (o PodSecurityPolicyTypeOutput) ToPodSecurityPolicyTypeOutput() PodSecurityPolicyTypeOutput

func (PodSecurityPolicyTypeOutput) ToPodSecurityPolicyTypeOutputWithContext

func (o PodSecurityPolicyTypeOutput) ToPodSecurityPolicyTypeOutputWithContext(ctx context.Context) PodSecurityPolicyTypeOutput

type RunAsGroupStrategyOptions

type RunAsGroupStrategyOptions struct {
	// ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.
	Ranges []IDRange `pulumi:"ranges"`
	// rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
	Rule string `pulumi:"rule"`
}

RunAsGroupStrategyOptions defines the strategy type and any options used to create the strategy.

type RunAsGroupStrategyOptionsArgs

type RunAsGroupStrategyOptionsArgs struct {
	// ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.
	Ranges IDRangeArrayInput `pulumi:"ranges"`
	// rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
	Rule pulumi.StringInput `pulumi:"rule"`
}

RunAsGroupStrategyOptions defines the strategy type and any options used to create the strategy.

func (RunAsGroupStrategyOptionsArgs) ElementType

func (RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsOutput

func (i RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsOutput() RunAsGroupStrategyOptionsOutput

func (RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsOutputWithContext

func (i RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsOutputWithContext(ctx context.Context) RunAsGroupStrategyOptionsOutput

func (RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsPtrOutput

func (i RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsPtrOutput() RunAsGroupStrategyOptionsPtrOutput

func (RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsPtrOutputWithContext

func (i RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsPtrOutputWithContext(ctx context.Context) RunAsGroupStrategyOptionsPtrOutput

type RunAsGroupStrategyOptionsInput

type RunAsGroupStrategyOptionsInput interface {
	pulumi.Input

	ToRunAsGroupStrategyOptionsOutput() RunAsGroupStrategyOptionsOutput
	ToRunAsGroupStrategyOptionsOutputWithContext(context.Context) RunAsGroupStrategyOptionsOutput
}

RunAsGroupStrategyOptionsInput is an input type that accepts RunAsGroupStrategyOptionsArgs and RunAsGroupStrategyOptionsOutput values. You can construct a concrete instance of `RunAsGroupStrategyOptionsInput` via:

RunAsGroupStrategyOptionsArgs{...}

type RunAsGroupStrategyOptionsOutput

type RunAsGroupStrategyOptionsOutput struct{ *pulumi.OutputState }

RunAsGroupStrategyOptions defines the strategy type and any options used to create the strategy.

func (RunAsGroupStrategyOptionsOutput) ElementType

func (RunAsGroupStrategyOptionsOutput) Ranges

ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.

func (RunAsGroupStrategyOptionsOutput) Rule

rule is the strategy that will dictate the allowable RunAsGroup values that may be set.

func (RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsOutput

func (o RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsOutput() RunAsGroupStrategyOptionsOutput

func (RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsOutputWithContext

func (o RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsOutputWithContext(ctx context.Context) RunAsGroupStrategyOptionsOutput

func (RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsPtrOutput

func (o RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsPtrOutput() RunAsGroupStrategyOptionsPtrOutput

func (RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsPtrOutputWithContext

func (o RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsPtrOutputWithContext(ctx context.Context) RunAsGroupStrategyOptionsPtrOutput

type RunAsGroupStrategyOptionsPtrInput

type RunAsGroupStrategyOptionsPtrInput interface {
	pulumi.Input

	ToRunAsGroupStrategyOptionsPtrOutput() RunAsGroupStrategyOptionsPtrOutput
	ToRunAsGroupStrategyOptionsPtrOutputWithContext(context.Context) RunAsGroupStrategyOptionsPtrOutput
}

RunAsGroupStrategyOptionsPtrInput is an input type that accepts RunAsGroupStrategyOptionsArgs, RunAsGroupStrategyOptionsPtr and RunAsGroupStrategyOptionsPtrOutput values. You can construct a concrete instance of `RunAsGroupStrategyOptionsPtrInput` via:

        RunAsGroupStrategyOptionsArgs{...}

or:

        nil

type RunAsGroupStrategyOptionsPtrOutput

type RunAsGroupStrategyOptionsPtrOutput struct{ *pulumi.OutputState }

func (RunAsGroupStrategyOptionsPtrOutput) Elem

func (RunAsGroupStrategyOptionsPtrOutput) ElementType

func (RunAsGroupStrategyOptionsPtrOutput) Ranges

ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.

func (RunAsGroupStrategyOptionsPtrOutput) Rule

rule is the strategy that will dictate the allowable RunAsGroup values that may be set.

func (RunAsGroupStrategyOptionsPtrOutput) ToRunAsGroupStrategyOptionsPtrOutput

func (o RunAsGroupStrategyOptionsPtrOutput) ToRunAsGroupStrategyOptionsPtrOutput() RunAsGroupStrategyOptionsPtrOutput

func (RunAsGroupStrategyOptionsPtrOutput) ToRunAsGroupStrategyOptionsPtrOutputWithContext

func (o RunAsGroupStrategyOptionsPtrOutput) ToRunAsGroupStrategyOptionsPtrOutputWithContext(ctx context.Context) RunAsGroupStrategyOptionsPtrOutput

type RunAsUserStrategyOptions

type RunAsUserStrategyOptions struct {
	// ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.
	Ranges []IDRange `pulumi:"ranges"`
	// rule is the strategy that will dictate the allowable RunAsUser values that may be set.
	Rule string `pulumi:"rule"`
}

RunAsUserStrategyOptions defines the strategy type and any options used to create the strategy.

type RunAsUserStrategyOptionsArgs

type RunAsUserStrategyOptionsArgs struct {
	// ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.
	Ranges IDRangeArrayInput `pulumi:"ranges"`
	// rule is the strategy that will dictate the allowable RunAsUser values that may be set.
	Rule pulumi.StringInput `pulumi:"rule"`
}

RunAsUserStrategyOptions defines the strategy type and any options used to create the strategy.

func (RunAsUserStrategyOptionsArgs) ElementType

func (RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsOutput

func (i RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsOutput() RunAsUserStrategyOptionsOutput

func (RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsOutputWithContext

func (i RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsOutputWithContext(ctx context.Context) RunAsUserStrategyOptionsOutput

func (RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsPtrOutput

func (i RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsPtrOutput() RunAsUserStrategyOptionsPtrOutput

func (RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsPtrOutputWithContext

func (i RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsPtrOutputWithContext(ctx context.Context) RunAsUserStrategyOptionsPtrOutput

type RunAsUserStrategyOptionsInput

type RunAsUserStrategyOptionsInput interface {
	pulumi.Input

	ToRunAsUserStrategyOptionsOutput() RunAsUserStrategyOptionsOutput
	ToRunAsUserStrategyOptionsOutputWithContext(context.Context) RunAsUserStrategyOptionsOutput
}

RunAsUserStrategyOptionsInput is an input type that accepts RunAsUserStrategyOptionsArgs and RunAsUserStrategyOptionsOutput values. You can construct a concrete instance of `RunAsUserStrategyOptionsInput` via:

RunAsUserStrategyOptionsArgs{...}

type RunAsUserStrategyOptionsOutput

type RunAsUserStrategyOptionsOutput struct{ *pulumi.OutputState }

RunAsUserStrategyOptions defines the strategy type and any options used to create the strategy.

func (RunAsUserStrategyOptionsOutput) ElementType

func (RunAsUserStrategyOptionsOutput) Ranges

ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.

func (RunAsUserStrategyOptionsOutput) Rule

rule is the strategy that will dictate the allowable RunAsUser values that may be set.

func (RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsOutput

func (o RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsOutput() RunAsUserStrategyOptionsOutput

func (RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsOutputWithContext

func (o RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsOutputWithContext(ctx context.Context) RunAsUserStrategyOptionsOutput

func (RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsPtrOutput

func (o RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsPtrOutput() RunAsUserStrategyOptionsPtrOutput

func (RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsPtrOutputWithContext

func (o RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsPtrOutputWithContext(ctx context.Context) RunAsUserStrategyOptionsPtrOutput

type RunAsUserStrategyOptionsPtrInput

type RunAsUserStrategyOptionsPtrInput interface {
	pulumi.Input

	ToRunAsUserStrategyOptionsPtrOutput() RunAsUserStrategyOptionsPtrOutput
	ToRunAsUserStrategyOptionsPtrOutputWithContext(context.Context) RunAsUserStrategyOptionsPtrOutput
}

RunAsUserStrategyOptionsPtrInput is an input type that accepts RunAsUserStrategyOptionsArgs, RunAsUserStrategyOptionsPtr and RunAsUserStrategyOptionsPtrOutput values. You can construct a concrete instance of `RunAsUserStrategyOptionsPtrInput` via:

        RunAsUserStrategyOptionsArgs{...}

or:

        nil

type RunAsUserStrategyOptionsPtrOutput

type RunAsUserStrategyOptionsPtrOutput struct{ *pulumi.OutputState }