v1beta1

package
v3.10.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Nov 19, 2021 License: Apache-2.0 Imports: 9 Imported by: 2

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type AllowedCSIDriver 

type AllowedCSIDriver struct {
	// Name is the registered name of the CSI driver
	Name string `pulumi:"name"`
}

AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.

type AllowedCSIDriverArgs 

type AllowedCSIDriverArgs struct {
	// Name is the registered name of the CSI driver
	Name pulumi.StringInput `pulumi:"name"`
}

AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.

func (AllowedCSIDriverArgs) ElementType 

func (AllowedCSIDriverArgs) ElementType() reflect.Type

func (AllowedCSIDriverArgs) ToAllowedCSIDriverOutput 

func (i AllowedCSIDriverArgs) ToAllowedCSIDriverOutput() AllowedCSIDriverOutput

func (AllowedCSIDriverArgs) ToAllowedCSIDriverOutputWithContext 

func (i AllowedCSIDriverArgs) ToAllowedCSIDriverOutputWithContext(ctx context.Context) AllowedCSIDriverOutput

type AllowedCSIDriverArray 

type AllowedCSIDriverArray []AllowedCSIDriverInput

func (AllowedCSIDriverArray) ElementType 

func (AllowedCSIDriverArray) ElementType() reflect.Type

func (AllowedCSIDriverArray) ToAllowedCSIDriverArrayOutput 

func (i AllowedCSIDriverArray) ToAllowedCSIDriverArrayOutput() AllowedCSIDriverArrayOutput

func (AllowedCSIDriverArray) ToAllowedCSIDriverArrayOutputWithContext 

func (i AllowedCSIDriverArray) ToAllowedCSIDriverArrayOutputWithContext(ctx context.Context) AllowedCSIDriverArrayOutput

type AllowedCSIDriverArrayInput 

type AllowedCSIDriverArrayInput interface {
	pulumi.Input

	ToAllowedCSIDriverArrayOutput() AllowedCSIDriverArrayOutput
	ToAllowedCSIDriverArrayOutputWithContext(context.Context) AllowedCSIDriverArrayOutput
}

AllowedCSIDriverArrayInput is an input type that accepts AllowedCSIDriverArray and AllowedCSIDriverArrayOutput values. You can construct a concrete instance of `AllowedCSIDriverArrayInput` via: 

AllowedCSIDriverArray{ AllowedCSIDriverArgs{...} }

type AllowedCSIDriverArrayOutput 

type AllowedCSIDriverArrayOutput struct{ *pulumi.OutputState }

func (AllowedCSIDriverArrayOutput) ElementType 

func (AllowedCSIDriverArrayOutput) ElementType() reflect.Type

func (AllowedCSIDriverArrayOutput) Index 

func (o AllowedCSIDriverArrayOutput) Index(i pulumi.IntInput) AllowedCSIDriverOutput

func (AllowedCSIDriverArrayOutput) ToAllowedCSIDriverArrayOutput 

func (o AllowedCSIDriverArrayOutput) ToAllowedCSIDriverArrayOutput() AllowedCSIDriverArrayOutput

func (AllowedCSIDriverArrayOutput) ToAllowedCSIDriverArrayOutputWithContext 

func (o AllowedCSIDriverArrayOutput) ToAllowedCSIDriverArrayOutputWithContext(ctx context.Context) AllowedCSIDriverArrayOutput

type AllowedCSIDriverInput 

type AllowedCSIDriverInput interface {
	pulumi.Input

	ToAllowedCSIDriverOutput() AllowedCSIDriverOutput
	ToAllowedCSIDriverOutputWithContext(context.Context) AllowedCSIDriverOutput
}

AllowedCSIDriverInput is an input type that accepts AllowedCSIDriverArgs and AllowedCSIDriverOutput values. You can construct a concrete instance of `AllowedCSIDriverInput` via: 

AllowedCSIDriverArgs{...}

type AllowedCSIDriverOutput 

type AllowedCSIDriverOutput struct{ *pulumi.OutputState }

AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.

func (AllowedCSIDriverOutput) ElementType 

func (AllowedCSIDriverOutput) ElementType() reflect.Type

func (AllowedCSIDriverOutput) Name 

func (o AllowedCSIDriverOutput) Name() pulumi.StringOutput

Name is the registered name of the CSI driver

func (AllowedCSIDriverOutput) ToAllowedCSIDriverOutput 

func (o AllowedCSIDriverOutput) ToAllowedCSIDriverOutput() AllowedCSIDriverOutput

func (AllowedCSIDriverOutput) ToAllowedCSIDriverOutputWithContext 

func (o AllowedCSIDriverOutput) ToAllowedCSIDriverOutputWithContext(ctx context.Context) AllowedCSIDriverOutput

type AllowedFlexVolume 

type AllowedFlexVolume struct {
	// driver is the name of the Flexvolume driver.
	Driver string `pulumi:"driver"`
}

AllowedFlexVolume represents a single Flexvolume that is allowed to be used.

type AllowedFlexVolumeArgs 

type AllowedFlexVolumeArgs struct {
	// driver is the name of the Flexvolume driver.
	Driver pulumi.StringInput `pulumi:"driver"`
}

AllowedFlexVolume represents a single Flexvolume that is allowed to be used.

func (AllowedFlexVolumeArgs) ElementType 

func (AllowedFlexVolumeArgs) ElementType() reflect.Type

func (AllowedFlexVolumeArgs) ToAllowedFlexVolumeOutput 

func (i AllowedFlexVolumeArgs) ToAllowedFlexVolumeOutput() AllowedFlexVolumeOutput

func (AllowedFlexVolumeArgs) ToAllowedFlexVolumeOutputWithContext 

func (i AllowedFlexVolumeArgs) ToAllowedFlexVolumeOutputWithContext(ctx context.Context) AllowedFlexVolumeOutput

type AllowedFlexVolumeArray 

type AllowedFlexVolumeArray []AllowedFlexVolumeInput

func (AllowedFlexVolumeArray) ElementType 

func (AllowedFlexVolumeArray) ElementType() reflect.Type

func (AllowedFlexVolumeArray) ToAllowedFlexVolumeArrayOutput 

func (i AllowedFlexVolumeArray) ToAllowedFlexVolumeArrayOutput() AllowedFlexVolumeArrayOutput

func (AllowedFlexVolumeArray) ToAllowedFlexVolumeArrayOutputWithContext 

func (i AllowedFlexVolumeArray) ToAllowedFlexVolumeArrayOutputWithContext(ctx context.Context) AllowedFlexVolumeArrayOutput

type AllowedFlexVolumeArrayInput 

type AllowedFlexVolumeArrayInput interface {
	pulumi.Input

	ToAllowedFlexVolumeArrayOutput() AllowedFlexVolumeArrayOutput
	ToAllowedFlexVolumeArrayOutputWithContext(context.Context) AllowedFlexVolumeArrayOutput
}

AllowedFlexVolumeArrayInput is an input type that accepts AllowedFlexVolumeArray and AllowedFlexVolumeArrayOutput values. You can construct a concrete instance of `AllowedFlexVolumeArrayInput` via: 

AllowedFlexVolumeArray{ AllowedFlexVolumeArgs{...} }

type AllowedFlexVolumeArrayOutput 

type AllowedFlexVolumeArrayOutput struct{ *pulumi.OutputState }

func (AllowedFlexVolumeArrayOutput) ElementType 

func (AllowedFlexVolumeArrayOutput) ElementType() reflect.Type

func (AllowedFlexVolumeArrayOutput) Index 

func (o AllowedFlexVolumeArrayOutput) Index(i pulumi.IntInput) AllowedFlexVolumeOutput

func (AllowedFlexVolumeArrayOutput) ToAllowedFlexVolumeArrayOutput 

func (o AllowedFlexVolumeArrayOutput) ToAllowedFlexVolumeArrayOutput() AllowedFlexVolumeArrayOutput

func (AllowedFlexVolumeArrayOutput) ToAllowedFlexVolumeArrayOutputWithContext 

func (o AllowedFlexVolumeArrayOutput) ToAllowedFlexVolumeArrayOutputWithContext(ctx context.Context) AllowedFlexVolumeArrayOutput

type AllowedFlexVolumeInput 

type AllowedFlexVolumeInput interface {
	pulumi.Input

	ToAllowedFlexVolumeOutput() AllowedFlexVolumeOutput
	ToAllowedFlexVolumeOutputWithContext(context.Context) AllowedFlexVolumeOutput
}

AllowedFlexVolumeInput is an input type that accepts AllowedFlexVolumeArgs and AllowedFlexVolumeOutput values. You can construct a concrete instance of `AllowedFlexVolumeInput` via: 

AllowedFlexVolumeArgs{...}

type AllowedFlexVolumeOutput 

type AllowedFlexVolumeOutput struct{ *pulumi.OutputState }

AllowedFlexVolume represents a single Flexvolume that is allowed to be used.

func (AllowedFlexVolumeOutput) Driver 

func (o AllowedFlexVolumeOutput) Driver() pulumi.StringOutput

driver is the name of the Flexvolume driver.

func (AllowedFlexVolumeOutput) ElementType 

func (AllowedFlexVolumeOutput) ElementType() reflect.Type

func (AllowedFlexVolumeOutput) ToAllowedFlexVolumeOutput 

func (o AllowedFlexVolumeOutput) ToAllowedFlexVolumeOutput() AllowedFlexVolumeOutput

func (AllowedFlexVolumeOutput) ToAllowedFlexVolumeOutputWithContext 

func (o AllowedFlexVolumeOutput) ToAllowedFlexVolumeOutputWithContext(ctx context.Context) AllowedFlexVolumeOutput

type AllowedHostPath 

type AllowedHostPath struct {
	// pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
	//
	// Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`
	PathPrefix *string `pulumi:"pathPrefix"`
	// when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
	ReadOnly *bool `pulumi:"readOnly"`
}

AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.

type AllowedHostPathArgs 

type AllowedHostPathArgs struct {
	// pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
	//
	// Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`
	PathPrefix pulumi.StringPtrInput `pulumi:"pathPrefix"`
	// when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
	ReadOnly pulumi.BoolPtrInput `pulumi:"readOnly"`
}

AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.

func (AllowedHostPathArgs) ElementType 

func (AllowedHostPathArgs) ElementType() reflect.Type

func (AllowedHostPathArgs) ToAllowedHostPathOutput 

func (i AllowedHostPathArgs) ToAllowedHostPathOutput() AllowedHostPathOutput

func (AllowedHostPathArgs) ToAllowedHostPathOutputWithContext 

func (i AllowedHostPathArgs) ToAllowedHostPathOutputWithContext(ctx context.Context) AllowedHostPathOutput

type AllowedHostPathArray 

type AllowedHostPathArray []AllowedHostPathInput

func (AllowedHostPathArray) ElementType 

func (AllowedHostPathArray) ElementType() reflect.Type

func (AllowedHostPathArray) ToAllowedHostPathArrayOutput 

func (i AllowedHostPathArray) ToAllowedHostPathArrayOutput() AllowedHostPathArrayOutput

func (AllowedHostPathArray) ToAllowedHostPathArrayOutputWithContext 

func (i AllowedHostPathArray) ToAllowedHostPathArrayOutputWithContext(ctx context.Context) AllowedHostPathArrayOutput

type AllowedHostPathArrayInput 

type AllowedHostPathArrayInput interface {
	pulumi.Input

	ToAllowedHostPathArrayOutput() AllowedHostPathArrayOutput
	ToAllowedHostPathArrayOutputWithContext(context.Context) AllowedHostPathArrayOutput
}

AllowedHostPathArrayInput is an input type that accepts AllowedHostPathArray and AllowedHostPathArrayOutput values. You can construct a concrete instance of `AllowedHostPathArrayInput` via: 

AllowedHostPathArray{ AllowedHostPathArgs{...} }

type AllowedHostPathArrayOutput 

type AllowedHostPathArrayOutput struct{ *pulumi.OutputState }

func (AllowedHostPathArrayOutput) ElementType 

func (AllowedHostPathArrayOutput) ElementType() reflect.Type

func (AllowedHostPathArrayOutput) Index 

func (o AllowedHostPathArrayOutput) Index(i pulumi.IntInput) AllowedHostPathOutput

func (AllowedHostPathArrayOutput) ToAllowedHostPathArrayOutput 

func (o AllowedHostPathArrayOutput) ToAllowedHostPathArrayOutput() AllowedHostPathArrayOutput

func (AllowedHostPathArrayOutput) ToAllowedHostPathArrayOutputWithContext 

func (o AllowedHostPathArrayOutput) ToAllowedHostPathArrayOutputWithContext(ctx context.Context) AllowedHostPathArrayOutput

type AllowedHostPathInput 

type AllowedHostPathInput interface {
	pulumi.Input

	ToAllowedHostPathOutput() AllowedHostPathOutput
	ToAllowedHostPathOutputWithContext(context.Context) AllowedHostPathOutput
}

AllowedHostPathInput is an input type that accepts AllowedHostPathArgs and AllowedHostPathOutput values. You can construct a concrete instance of `AllowedHostPathInput` via: 

AllowedHostPathArgs{...}

type AllowedHostPathOutput 

type AllowedHostPathOutput struct{ *pulumi.OutputState }

AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.

func (AllowedHostPathOutput) ElementType 

func (AllowedHostPathOutput) ElementType() reflect.Type

func (AllowedHostPathOutput) PathPrefix 

func (o AllowedHostPathOutput) PathPrefix() pulumi.StringPtrOutput

pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.

Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`

func (AllowedHostPathOutput) ReadOnly 

func (o AllowedHostPathOutput) ReadOnly() pulumi.BoolPtrOutput

when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.

func (AllowedHostPathOutput) ToAllowedHostPathOutput 

func (o AllowedHostPathOutput) ToAllowedHostPathOutput() AllowedHostPathOutput

func (AllowedHostPathOutput) ToAllowedHostPathOutputWithContext 

func (o AllowedHostPathOutput) ToAllowedHostPathOutputWithContext(ctx context.Context) AllowedHostPathOutput

type Eviction 

type Eviction struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion *string `pulumi:"apiVersion"`
	// DeleteOptions may be provided
	DeleteOptions *metav1.DeleteOptions `pulumi:"deleteOptions"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind *string `pulumi:"kind"`
	// ObjectMeta describes the pod that is being evicted.
	Metadata *metav1.ObjectMeta `pulumi:"metadata"`
}

Eviction evicts a pod from its node subject to certain policies and safety constraints. This is a subresource of Pod. A request to cause such an eviction is created by POSTing to .../pods/<pod name>/evictions.

type EvictionArgs 

type EvictionArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput `pulumi:"apiVersion"`
	// DeleteOptions may be provided
	DeleteOptions metav1.DeleteOptionsPtrInput `pulumi:"deleteOptions"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput `pulumi:"kind"`
	// ObjectMeta describes the pod that is being evicted.
	Metadata metav1.ObjectMetaPtrInput `pulumi:"metadata"`
}

Eviction evicts a pod from its node subject to certain policies and safety constraints. This is a subresource of Pod. A request to cause such an eviction is created by POSTing to .../pods/<pod name>/evictions.

func (EvictionArgs) ElementType 

func (EvictionArgs) ElementType() reflect.Type

func (EvictionArgs) ToEvictionOutput 

func (i EvictionArgs) ToEvictionOutput() EvictionOutput

func (EvictionArgs) ToEvictionOutputWithContext 

func (i EvictionArgs) ToEvictionOutputWithContext(ctx context.Context) EvictionOutput

type EvictionInput 

type EvictionInput interface {
	pulumi.Input

	ToEvictionOutput() EvictionOutput
	ToEvictionOutputWithContext(context.Context) EvictionOutput
}

EvictionInput is an input type that accepts EvictionArgs and EvictionOutput values. You can construct a concrete instance of `EvictionInput` via: 

EvictionArgs{...}

type EvictionOutput 

type EvictionOutput struct{ *pulumi.OutputState }

Eviction evicts a pod from its node subject to certain policies and safety constraints. This is a subresource of Pod. A request to cause such an eviction is created by POSTing to .../pods/<pod name>/evictions.

func (EvictionOutput) ApiVersion 

func (o EvictionOutput) ApiVersion() pulumi.StringPtrOutput

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

func (EvictionOutput) DeleteOptions 

func (o EvictionOutput) DeleteOptions() metav1.DeleteOptionsPtrOutput

DeleteOptions may be provided

func (EvictionOutput) ElementType 

func (EvictionOutput) ElementType() reflect.Type

func (EvictionOutput) Kind 

func (o EvictionOutput) Kind() pulumi.StringPtrOutput

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

func (EvictionOutput) Metadata 

func (o EvictionOutput) Metadata() metav1.ObjectMetaPtrOutput

ObjectMeta describes the pod that is being evicted.

func (EvictionOutput) ToEvictionOutput 

func (o EvictionOutput) ToEvictionOutput() EvictionOutput

func (EvictionOutput) ToEvictionOutputWithContext 

func (o EvictionOutput) ToEvictionOutputWithContext(ctx context.Context) EvictionOutput

type FSGroupStrategyOptions 

type FSGroupStrategyOptions struct {
	// ranges are the allowed ranges of fs groups.  If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.
	Ranges []IDRange `pulumi:"ranges"`
	// rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
	Rule *string `pulumi:"rule"`
}

FSGroupStrategyOptions defines the strategy type and options used to create the strategy.

type FSGroupStrategyOptionsArgs 

type FSGroupStrategyOptionsArgs struct {
	// ranges are the allowed ranges of fs groups.  If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.
	Ranges IDRangeArrayInput `pulumi:"ranges"`
	// rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
	Rule pulumi.StringPtrInput `pulumi:"rule"`
}

FSGroupStrategyOptions defines the strategy type and options used to create the strategy.

func (FSGroupStrategyOptionsArgs) ElementType 

func (FSGroupStrategyOptionsArgs) ElementType() reflect.Type

func (FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsOutput 

func (i FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsOutput() FSGroupStrategyOptionsOutput

func (FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsOutputWithContext 

func (i FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsOutputWithContext(ctx context.Context) FSGroupStrategyOptionsOutput

func (FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsPtrOutput 

func (i FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsPtrOutput() FSGroupStrategyOptionsPtrOutput

func (FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsPtrOutputWithContext 

func (i FSGroupStrategyOptionsArgs) ToFSGroupStrategyOptionsPtrOutputWithContext(ctx context.Context) FSGroupStrategyOptionsPtrOutput

type FSGroupStrategyOptionsInput 

type FSGroupStrategyOptionsInput interface {
	pulumi.Input

	ToFSGroupStrategyOptionsOutput() FSGroupStrategyOptionsOutput
	ToFSGroupStrategyOptionsOutputWithContext(context.Context) FSGroupStrategyOptionsOutput
}

FSGroupStrategyOptionsInput is an input type that accepts FSGroupStrategyOptionsArgs and FSGroupStrategyOptionsOutput values. You can construct a concrete instance of `FSGroupStrategyOptionsInput` via: 

FSGroupStrategyOptionsArgs{...}

type FSGroupStrategyOptionsOutput 

type FSGroupStrategyOptionsOutput struct{ *pulumi.OutputState }

FSGroupStrategyOptions defines the strategy type and options used to create the strategy.

func (FSGroupStrategyOptionsOutput) ElementType 

func (FSGroupStrategyOptionsOutput) ElementType() reflect.Type

func (FSGroupStrategyOptionsOutput) Ranges 

func (o FSGroupStrategyOptionsOutput) Ranges() IDRangeArrayOutput

ranges are the allowed ranges of fs groups. If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.

func (FSGroupStrategyOptionsOutput) Rule 

func (o FSGroupStrategyOptionsOutput) Rule() pulumi.StringPtrOutput

rule is the strategy that will dictate what FSGroup is used in the SecurityContext.

func (FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsOutput 

func (o FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsOutput() FSGroupStrategyOptionsOutput

func (FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsOutputWithContext 

func (o FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsOutputWithContext(ctx context.Context) FSGroupStrategyOptionsOutput

func (FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsPtrOutput 

func (o FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsPtrOutput() FSGroupStrategyOptionsPtrOutput

func (FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsPtrOutputWithContext 

func (o FSGroupStrategyOptionsOutput) ToFSGroupStrategyOptionsPtrOutputWithContext(ctx context.Context) FSGroupStrategyOptionsPtrOutput

type FSGroupStrategyOptionsPtrInput 

type FSGroupStrategyOptionsPtrInput interface {
	pulumi.Input

	ToFSGroupStrategyOptionsPtrOutput() FSGroupStrategyOptionsPtrOutput
	ToFSGroupStrategyOptionsPtrOutputWithContext(context.Context) FSGroupStrategyOptionsPtrOutput
}

FSGroupStrategyOptionsPtrInput is an input type that accepts FSGroupStrategyOptionsArgs, FSGroupStrategyOptionsPtr and FSGroupStrategyOptionsPtrOutput values. You can construct a concrete instance of `FSGroupStrategyOptionsPtrInput` via: 

        FSGroupStrategyOptionsArgs{...}

or:

        nil

func FSGroupStrategyOptionsPtr 

func FSGroupStrategyOptionsPtr(v *FSGroupStrategyOptionsArgs) FSGroupStrategyOptionsPtrInput

type FSGroupStrategyOptionsPtrOutput 

type FSGroupStrategyOptionsPtrOutput struct{ *pulumi.OutputState }

func (FSGroupStrategyOptionsPtrOutput) Elem 

func (o FSGroupStrategyOptionsPtrOutput) Elem() FSGroupStrategyOptionsOutput

func (FSGroupStrategyOptionsPtrOutput) ElementType 

func (FSGroupStrategyOptionsPtrOutput) ElementType() reflect.Type

func (FSGroupStrategyOptionsPtrOutput) Ranges 

func (o FSGroupStrategyOptionsPtrOutput) Ranges() IDRangeArrayOutput

ranges are the allowed ranges of fs groups. If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.

func (FSGroupStrategyOptionsPtrOutput) Rule 

func (o FSGroupStrategyOptionsPtrOutput) Rule() pulumi.StringPtrOutput

rule is the strategy that will dictate what FSGroup is used in the SecurityContext.

func (FSGroupStrategyOptionsPtrOutput) ToFSGroupStrategyOptionsPtrOutput 

func (o FSGroupStrategyOptionsPtrOutput) ToFSGroupStrategyOptionsPtrOutput() FSGroupStrategyOptionsPtrOutput

func (FSGroupStrategyOptionsPtrOutput) ToFSGroupStrategyOptionsPtrOutputWithContext 

func (o FSGroupStrategyOptionsPtrOutput) ToFSGroupStrategyOptionsPtrOutputWithContext(ctx context.Context) FSGroupStrategyOptionsPtrOutput

type HostPortRange 

type HostPortRange struct {
	// max is the end of the range, inclusive.
	Max int `pulumi:"max"`
	// min is the start of the range, inclusive.
	Min int `pulumi:"min"`
}

HostPortRange defines a range of host ports that will be enabled by a policy for pods to use. It requires both the start and end to be defined.

type HostPortRangeArgs 

type HostPortRangeArgs struct {
	// max is the end of the range, inclusive.
	Max pulumi.IntInput `pulumi:"max"`
	// min is the start of the range, inclusive.
	Min pulumi.IntInput `pulumi:"min"`
}

HostPortRange defines a range of host ports that will be enabled by a policy for pods to use. It requires both the start and end to be defined.

func (HostPortRangeArgs) ElementType 

func (HostPortRangeArgs) ElementType() reflect.Type

func (HostPortRangeArgs) ToHostPortRangeOutput 

func (i HostPortRangeArgs) ToHostPortRangeOutput() HostPortRangeOutput

func (HostPortRangeArgs) ToHostPortRangeOutputWithContext 

func (i HostPortRangeArgs) ToHostPortRangeOutputWithContext(ctx context.Context) HostPortRangeOutput

type HostPortRangeArray 

type HostPortRangeArray []HostPortRangeInput

func (HostPortRangeArray) ElementType 

func (HostPortRangeArray) ElementType() reflect.Type

func (HostPortRangeArray) ToHostPortRangeArrayOutput 

func (i HostPortRangeArray) ToHostPortRangeArrayOutput() HostPortRangeArrayOutput

func (HostPortRangeArray) ToHostPortRangeArrayOutputWithContext 

func (i HostPortRangeArray) ToHostPortRangeArrayOutputWithContext(ctx context.Context) HostPortRangeArrayOutput

type HostPortRangeArrayInput 

type HostPortRangeArrayInput interface {
	pulumi.Input

	ToHostPortRangeArrayOutput() HostPortRangeArrayOutput
	ToHostPortRangeArrayOutputWithContext(context.Context) HostPortRangeArrayOutput
}

HostPortRangeArrayInput is an input type that accepts HostPortRangeArray and HostPortRangeArrayOutput values. You can construct a concrete instance of `HostPortRangeArrayInput` via: 

HostPortRangeArray{ HostPortRangeArgs{...} }

type HostPortRangeArrayOutput 

type HostPortRangeArrayOutput struct{ *pulumi.OutputState }

func (HostPortRangeArrayOutput) ElementType 

func (HostPortRangeArrayOutput) ElementType() reflect.Type

func (HostPortRangeArrayOutput) Index 

func (o HostPortRangeArrayOutput) Index(i pulumi.IntInput) HostPortRangeOutput

func (HostPortRangeArrayOutput) ToHostPortRangeArrayOutput 

func (o HostPortRangeArrayOutput) ToHostPortRangeArrayOutput() HostPortRangeArrayOutput

func (HostPortRangeArrayOutput) ToHostPortRangeArrayOutputWithContext 

func (o HostPortRangeArrayOutput) ToHostPortRangeArrayOutputWithContext(ctx context.Context) HostPortRangeArrayOutput

type HostPortRangeInput 

type HostPortRangeInput interface {
	pulumi.Input

	ToHostPortRangeOutput() HostPortRangeOutput
	ToHostPortRangeOutputWithContext(context.Context) HostPortRangeOutput
}

HostPortRangeInput is an input type that accepts HostPortRangeArgs and HostPortRangeOutput values. You can construct a concrete instance of `HostPortRangeInput` via: 

HostPortRangeArgs{...}

type HostPortRangeOutput 

type HostPortRangeOutput struct{ *pulumi.OutputState }

HostPortRange defines a range of host ports that will be enabled by a policy for pods to use. It requires both the start and end to be defined.

func (HostPortRangeOutput) ElementType 

func (HostPortRangeOutput) ElementType() reflect.Type

func (HostPortRangeOutput) Max 

func (o HostPortRangeOutput) Max() pulumi.IntOutput

max is the end of the range, inclusive.

func (HostPortRangeOutput) Min 

func (o HostPortRangeOutput) Min() pulumi.IntOutput

min is the start of the range, inclusive.

func (HostPortRangeOutput) ToHostPortRangeOutput 

func (o HostPortRangeOutput) ToHostPortRangeOutput() HostPortRangeOutput

func (HostPortRangeOutput) ToHostPortRangeOutputWithContext 

func (o HostPortRangeOutput) ToHostPortRangeOutputWithContext(ctx context.Context) HostPortRangeOutput

type IDRange 

type IDRange struct {
	// max is the end of the range, inclusive.
	Max int `pulumi:"max"`
	// min is the start of the range, inclusive.
	Min int `pulumi:"min"`
}

IDRange provides a min/max of an allowed range of IDs.

type IDRangeArgs 

type IDRangeArgs struct {
	// max is the end of the range, inclusive.
	Max pulumi.IntInput `pulumi:"max"`
	// min is the start of the range, inclusive.
	Min pulumi.IntInput `pulumi:"min"`
}

IDRange provides a min/max of an allowed range of IDs.

func (IDRangeArgs) ElementType 

func (IDRangeArgs) ElementType() reflect.Type

func (IDRangeArgs) ToIDRangeOutput 

func (i IDRangeArgs) ToIDRangeOutput() IDRangeOutput

func (IDRangeArgs) ToIDRangeOutputWithContext 

func (i IDRangeArgs) ToIDRangeOutputWithContext(ctx context.Context) IDRangeOutput

type IDRangeArray 

type IDRangeArray []IDRangeInput

func (IDRangeArray) ElementType 

func (IDRangeArray) ElementType() reflect.Type

func (IDRangeArray) ToIDRangeArrayOutput 

func (i IDRangeArray) ToIDRangeArrayOutput() IDRangeArrayOutput

func (IDRangeArray) ToIDRangeArrayOutputWithContext 

func (i IDRangeArray) ToIDRangeArrayOutputWithContext(ctx context.Context) IDRangeArrayOutput

type IDRangeArrayInput 

type IDRangeArrayInput interface {
	pulumi.Input

	ToIDRangeArrayOutput() IDRangeArrayOutput
	ToIDRangeArrayOutputWithContext(context.Context) IDRangeArrayOutput
}

IDRangeArrayInput is an input type that accepts IDRangeArray and IDRangeArrayOutput values. You can construct a concrete instance of `IDRangeArrayInput` via: 

IDRangeArray{ IDRangeArgs{...} }

type IDRangeArrayOutput 

type IDRangeArrayOutput struct{ *pulumi.OutputState }

func (IDRangeArrayOutput) ElementType 

func (IDRangeArrayOutput) ElementType() reflect.Type

func (IDRangeArrayOutput) Index 

func (o IDRangeArrayOutput) Index(i pulumi.IntInput) IDRangeOutput

func (IDRangeArrayOutput) ToIDRangeArrayOutput 

func (o IDRangeArrayOutput) ToIDRangeArrayOutput() IDRangeArrayOutput

func (IDRangeArrayOutput) ToIDRangeArrayOutputWithContext 

func (o IDRangeArrayOutput) ToIDRangeArrayOutputWithContext(ctx context.Context) IDRangeArrayOutput

type IDRangeInput 

type IDRangeInput interface {
	pulumi.Input

	ToIDRangeOutput() IDRangeOutput
	ToIDRangeOutputWithContext(context.Context) IDRangeOutput
}

IDRangeInput is an input type that accepts IDRangeArgs and IDRangeOutput values. You can construct a concrete instance of `IDRangeInput` via: 

IDRangeArgs{...}

type IDRangeOutput 

type IDRangeOutput struct{ *pulumi.OutputState }

IDRange provides a min/max of an allowed range of IDs.

func (IDRangeOutput) ElementType 

func (IDRangeOutput) ElementType() reflect.Type

func (IDRangeOutput) Max 

func (o IDRangeOutput) Max() pulumi.IntOutput

max is the end of the range, inclusive.

func (IDRangeOutput) Min 

func (o IDRangeOutput) Min() pulumi.IntOutput

min is the start of the range, inclusive.

func (IDRangeOutput) ToIDRangeOutput 

func (o IDRangeOutput) ToIDRangeOutput() IDRangeOutput

func (IDRangeOutput) ToIDRangeOutputWithContext 

func (o IDRangeOutput) ToIDRangeOutputWithContext(ctx context.Context) IDRangeOutput

type PodDisruptionBudget 

type PodDisruptionBudget struct {
	pulumi.CustomResourceState

	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrOutput `pulumi:"apiVersion"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrOutput `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ObjectMetaPtrOutput `pulumi:"metadata"`
	// Specification of the desired behavior of the PodDisruptionBudget.
	Spec PodDisruptionBudgetSpecPtrOutput `pulumi:"spec"`
	// Most recently observed status of the PodDisruptionBudget.
	Status PodDisruptionBudgetStatusPtrOutput `pulumi:"status"`
}

PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods

func GetPodDisruptionBudget 

func GetPodDisruptionBudget(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PodDisruptionBudgetState, opts ...pulumi.ResourceOption) (*PodDisruptionBudget, error)

GetPodDisruptionBudget gets an existing PodDisruptionBudget resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPodDisruptionBudget 

func NewPodDisruptionBudget(ctx *pulumi.Context,
	name string, args *PodDisruptionBudgetArgs, opts ...pulumi.ResourceOption) (*PodDisruptionBudget, error)

NewPodDisruptionBudget registers a new resource with the given unique name, arguments, and options.

func (*PodDisruptionBudget) ElementType 

func (*PodDisruptionBudget) ElementType() reflect.Type

func (*PodDisruptionBudget) ToPodDisruptionBudgetOutput 

func (i *PodDisruptionBudget) ToPodDisruptionBudgetOutput() PodDisruptionBudgetOutput

func (*PodDisruptionBudget) ToPodDisruptionBudgetOutputWithContext 

func (i *PodDisruptionBudget) ToPodDisruptionBudgetOutputWithContext(ctx context.Context) PodDisruptionBudgetOutput

func (*PodDisruptionBudget) ToPodDisruptionBudgetPtrOutput 

func (i *PodDisruptionBudget) ToPodDisruptionBudgetPtrOutput() PodDisruptionBudgetPtrOutput

func (*PodDisruptionBudget) ToPodDisruptionBudgetPtrOutputWithContext 

func (i *PodDisruptionBudget) ToPodDisruptionBudgetPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetPtrOutput

type PodDisruptionBudgetArgs 

type PodDisruptionBudgetArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ObjectMetaPtrInput
	// Specification of the desired behavior of the PodDisruptionBudget.
	Spec PodDisruptionBudgetSpecPtrInput
}

The set of arguments for constructing a PodDisruptionBudget resource.

func (PodDisruptionBudgetArgs) ElementType 

func (PodDisruptionBudgetArgs) ElementType() reflect.Type

type PodDisruptionBudgetArray 

type PodDisruptionBudgetArray []PodDisruptionBudgetInput

func (PodDisruptionBudgetArray) ElementType 

func (PodDisruptionBudgetArray) ElementType() reflect.Type

func (PodDisruptionBudgetArray) ToPodDisruptionBudgetArrayOutput 

func (i PodDisruptionBudgetArray) ToPodDisruptionBudgetArrayOutput() PodDisruptionBudgetArrayOutput

func (PodDisruptionBudgetArray) ToPodDisruptionBudgetArrayOutputWithContext 

func (i PodDisruptionBudgetArray) ToPodDisruptionBudgetArrayOutputWithContext(ctx context.Context) PodDisruptionBudgetArrayOutput

type PodDisruptionBudgetArrayInput 

type PodDisruptionBudgetArrayInput interface {
	pulumi.Input

	ToPodDisruptionBudgetArrayOutput() PodDisruptionBudgetArrayOutput
	ToPodDisruptionBudgetArrayOutputWithContext(context.Context) PodDisruptionBudgetArrayOutput
}

PodDisruptionBudgetArrayInput is an input type that accepts PodDisruptionBudgetArray and PodDisruptionBudgetArrayOutput values. You can construct a concrete instance of `PodDisruptionBudgetArrayInput` via: 

PodDisruptionBudgetArray{ PodDisruptionBudgetArgs{...} }

type PodDisruptionBudgetArrayOutput 

type PodDisruptionBudgetArrayOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetArrayOutput) ElementType 

func (PodDisruptionBudgetArrayOutput) ElementType() reflect.Type

func (PodDisruptionBudgetArrayOutput) Index 

func (o PodDisruptionBudgetArrayOutput) Index(i pulumi.IntInput) PodDisruptionBudgetOutput

func (PodDisruptionBudgetArrayOutput) ToPodDisruptionBudgetArrayOutput 

func (o PodDisruptionBudgetArrayOutput) ToPodDisruptionBudgetArrayOutput() PodDisruptionBudgetArrayOutput

func (PodDisruptionBudgetArrayOutput) ToPodDisruptionBudgetArrayOutputWithContext 

func (o PodDisruptionBudgetArrayOutput) ToPodDisruptionBudgetArrayOutputWithContext(ctx context.Context) PodDisruptionBudgetArrayOutput

type PodDisruptionBudgetInput 

type PodDisruptionBudgetInput interface {
	pulumi.Input

	ToPodDisruptionBudgetOutput() PodDisruptionBudgetOutput
	ToPodDisruptionBudgetOutputWithContext(ctx context.Context) PodDisruptionBudgetOutput
}

type PodDisruptionBudgetList 

type PodDisruptionBudgetList struct {
	pulumi.CustomResourceState

	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrOutput `pulumi:"apiVersion"`
	// items list individual PodDisruptionBudget objects
	Items PodDisruptionBudgetTypeArrayOutput `pulumi:"items"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrOutput `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ListMetaPtrOutput `pulumi:"metadata"`
}

PodDisruptionBudgetList is a collection of PodDisruptionBudgets.

func GetPodDisruptionBudgetList 

func GetPodDisruptionBudgetList(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PodDisruptionBudgetListState, opts ...pulumi.ResourceOption) (*PodDisruptionBudgetList, error)

GetPodDisruptionBudgetList gets an existing PodDisruptionBudgetList resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPodDisruptionBudgetList 

func NewPodDisruptionBudgetList(ctx *pulumi.Context,
	name string, args *PodDisruptionBudgetListArgs, opts ...pulumi.ResourceOption) (*PodDisruptionBudgetList, error)

NewPodDisruptionBudgetList registers a new resource with the given unique name, arguments, and options.

func (*PodDisruptionBudgetList) ElementType 

func (*PodDisruptionBudgetList) ElementType() reflect.Type

func (*PodDisruptionBudgetList) ToPodDisruptionBudgetListOutput 

func (i *PodDisruptionBudgetList) ToPodDisruptionBudgetListOutput() PodDisruptionBudgetListOutput

func (*PodDisruptionBudgetList) ToPodDisruptionBudgetListOutputWithContext 

func (i *PodDisruptionBudgetList) ToPodDisruptionBudgetListOutputWithContext(ctx context.Context) PodDisruptionBudgetListOutput

func (*PodDisruptionBudgetList) ToPodDisruptionBudgetListPtrOutput 

func (i *PodDisruptionBudgetList) ToPodDisruptionBudgetListPtrOutput() PodDisruptionBudgetListPtrOutput

func (*PodDisruptionBudgetList) ToPodDisruptionBudgetListPtrOutputWithContext 

func (i *PodDisruptionBudgetList) ToPodDisruptionBudgetListPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetListPtrOutput

type PodDisruptionBudgetListArgs 

type PodDisruptionBudgetListArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput
	// items list individual PodDisruptionBudget objects
	Items PodDisruptionBudgetTypeArrayInput
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ListMetaPtrInput
}

The set of arguments for constructing a PodDisruptionBudgetList resource.

func (PodDisruptionBudgetListArgs) ElementType 

func (PodDisruptionBudgetListArgs) ElementType() reflect.Type

type PodDisruptionBudgetListArray 

type PodDisruptionBudgetListArray []PodDisruptionBudgetListInput

func (PodDisruptionBudgetListArray) ElementType 

func (PodDisruptionBudgetListArray) ElementType() reflect.Type

func (PodDisruptionBudgetListArray) ToPodDisruptionBudgetListArrayOutput 

func (i PodDisruptionBudgetListArray) ToPodDisruptionBudgetListArrayOutput() PodDisruptionBudgetListArrayOutput

func (PodDisruptionBudgetListArray) ToPodDisruptionBudgetListArrayOutputWithContext 

func (i PodDisruptionBudgetListArray) ToPodDisruptionBudgetListArrayOutputWithContext(ctx context.Context) PodDisruptionBudgetListArrayOutput

type PodDisruptionBudgetListArrayInput 

type PodDisruptionBudgetListArrayInput interface {
	pulumi.Input

	ToPodDisruptionBudgetListArrayOutput() PodDisruptionBudgetListArrayOutput
	ToPodDisruptionBudgetListArrayOutputWithContext(context.Context) PodDisruptionBudgetListArrayOutput
}

PodDisruptionBudgetListArrayInput is an input type that accepts PodDisruptionBudgetListArray and PodDisruptionBudgetListArrayOutput values. You can construct a concrete instance of `PodDisruptionBudgetListArrayInput` via: 

PodDisruptionBudgetListArray{ PodDisruptionBudgetListArgs{...} }

type PodDisruptionBudgetListArrayOutput 

type PodDisruptionBudgetListArrayOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetListArrayOutput) ElementType 

func (PodDisruptionBudgetListArrayOutput) ElementType() reflect.Type

func (PodDisruptionBudgetListArrayOutput) Index 

func (o PodDisruptionBudgetListArrayOutput) Index(i pulumi.IntInput) PodDisruptionBudgetListOutput

func (PodDisruptionBudgetListArrayOutput) ToPodDisruptionBudgetListArrayOutput 

func (o PodDisruptionBudgetListArrayOutput) ToPodDisruptionBudgetListArrayOutput() PodDisruptionBudgetListArrayOutput

func (PodDisruptionBudgetListArrayOutput) ToPodDisruptionBudgetListArrayOutputWithContext 

func (o PodDisruptionBudgetListArrayOutput) ToPodDisruptionBudgetListArrayOutputWithContext(ctx context.Context) PodDisruptionBudgetListArrayOutput

type PodDisruptionBudgetListInput 

type PodDisruptionBudgetListInput interface {
	pulumi.Input

	ToPodDisruptionBudgetListOutput() PodDisruptionBudgetListOutput
	ToPodDisruptionBudgetListOutputWithContext(ctx context.Context) PodDisruptionBudgetListOutput
}

type PodDisruptionBudgetListMap 

type PodDisruptionBudgetListMap map[string]PodDisruptionBudgetListInput

func (PodDisruptionBudgetListMap) ElementType 

func (PodDisruptionBudgetListMap) ElementType() reflect.Type

func (PodDisruptionBudgetListMap) ToPodDisruptionBudgetListMapOutput 

func (i PodDisruptionBudgetListMap) ToPodDisruptionBudgetListMapOutput() PodDisruptionBudgetListMapOutput

func (PodDisruptionBudgetListMap) ToPodDisruptionBudgetListMapOutputWithContext 

func (i PodDisruptionBudgetListMap) ToPodDisruptionBudgetListMapOutputWithContext(ctx context.Context) PodDisruptionBudgetListMapOutput

type PodDisruptionBudgetListMapInput 

type PodDisruptionBudgetListMapInput interface {
	pulumi.Input

	ToPodDisruptionBudgetListMapOutput() PodDisruptionBudgetListMapOutput
	ToPodDisruptionBudgetListMapOutputWithContext(context.Context) PodDisruptionBudgetListMapOutput
}

PodDisruptionBudgetListMapInput is an input type that accepts PodDisruptionBudgetListMap and PodDisruptionBudgetListMapOutput values. You can construct a concrete instance of `PodDisruptionBudgetListMapInput` via: 

PodDisruptionBudgetListMap{ "key": PodDisruptionBudgetListArgs{...} }

type PodDisruptionBudgetListMapOutput 

type PodDisruptionBudgetListMapOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetListMapOutput) ElementType 

func (PodDisruptionBudgetListMapOutput) ElementType() reflect.Type

func (PodDisruptionBudgetListMapOutput) MapIndex 

func (o PodDisruptionBudgetListMapOutput) MapIndex(k pulumi.StringInput) PodDisruptionBudgetListOutput

func (PodDisruptionBudgetListMapOutput) ToPodDisruptionBudgetListMapOutput 

func (o PodDisruptionBudgetListMapOutput) ToPodDisruptionBudgetListMapOutput() PodDisruptionBudgetListMapOutput

func (PodDisruptionBudgetListMapOutput) ToPodDisruptionBudgetListMapOutputWithContext 

func (o PodDisruptionBudgetListMapOutput) ToPodDisruptionBudgetListMapOutputWithContext(ctx context.Context) PodDisruptionBudgetListMapOutput

type PodDisruptionBudgetListOutput 

type PodDisruptionBudgetListOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetListOutput) ElementType 

func (PodDisruptionBudgetListOutput) ElementType() reflect.Type

func (PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListOutput 

func (o PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListOutput() PodDisruptionBudgetListOutput

func (PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListOutputWithContext 

func (o PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListOutputWithContext(ctx context.Context) PodDisruptionBudgetListOutput

func (PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListPtrOutput 

func (o PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListPtrOutput() PodDisruptionBudgetListPtrOutput

func (PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListPtrOutputWithContext 

func (o PodDisruptionBudgetListOutput) ToPodDisruptionBudgetListPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetListPtrOutput

type PodDisruptionBudgetListPtrInput 

type PodDisruptionBudgetListPtrInput interface {
	pulumi.Input

	ToPodDisruptionBudgetListPtrOutput() PodDisruptionBudgetListPtrOutput
	ToPodDisruptionBudgetListPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetListPtrOutput
}

type PodDisruptionBudgetListPtrOutput 

type PodDisruptionBudgetListPtrOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetListPtrOutput) Elem added in v3.7.2 

func (o PodDisruptionBudgetListPtrOutput) Elem() PodDisruptionBudgetListOutput

func (PodDisruptionBudgetListPtrOutput) ElementType 

func (PodDisruptionBudgetListPtrOutput) ElementType() reflect.Type

func (PodDisruptionBudgetListPtrOutput) ToPodDisruptionBudgetListPtrOutput 

func (o PodDisruptionBudgetListPtrOutput) ToPodDisruptionBudgetListPtrOutput() PodDisruptionBudgetListPtrOutput

func (PodDisruptionBudgetListPtrOutput) ToPodDisruptionBudgetListPtrOutputWithContext 

func (o PodDisruptionBudgetListPtrOutput) ToPodDisruptionBudgetListPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetListPtrOutput

type PodDisruptionBudgetListState 

type PodDisruptionBudgetListState struct {
}

func (PodDisruptionBudgetListState) ElementType 

func (PodDisruptionBudgetListState) ElementType() reflect.Type

type PodDisruptionBudgetListType 

type PodDisruptionBudgetListType struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion *string `pulumi:"apiVersion"`
	// items list individual PodDisruptionBudget objects
	Items []PodDisruptionBudgetType `pulumi:"items"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind *string `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata *metav1.ListMeta `pulumi:"metadata"`
}

PodDisruptionBudgetList is a collection of PodDisruptionBudgets.

type PodDisruptionBudgetListTypeArgs 

type PodDisruptionBudgetListTypeArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput `pulumi:"apiVersion"`
	// items list individual PodDisruptionBudget objects
	Items PodDisruptionBudgetTypeArrayInput `pulumi:"items"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ListMetaPtrInput `pulumi:"metadata"`
}

PodDisruptionBudgetList is a collection of PodDisruptionBudgets.

func (PodDisruptionBudgetListTypeArgs) ElementType 

func (PodDisruptionBudgetListTypeArgs) ElementType() reflect.Type

func (PodDisruptionBudgetListTypeArgs) ToPodDisruptionBudgetListTypeOutput 

func (i PodDisruptionBudgetListTypeArgs) ToPodDisruptionBudgetListTypeOutput() PodDisruptionBudgetListTypeOutput

func (PodDisruptionBudgetListTypeArgs) ToPodDisruptionBudgetListTypeOutputWithContext 

func (i PodDisruptionBudgetListTypeArgs) ToPodDisruptionBudgetListTypeOutputWithContext(ctx context.Context) PodDisruptionBudgetListTypeOutput

type PodDisruptionBudgetListTypeInput 

type PodDisruptionBudgetListTypeInput interface {
	pulumi.Input

	ToPodDisruptionBudgetListTypeOutput() PodDisruptionBudgetListTypeOutput
	ToPodDisruptionBudgetListTypeOutputWithContext(context.Context) PodDisruptionBudgetListTypeOutput
}

PodDisruptionBudgetListTypeInput is an input type that accepts PodDisruptionBudgetListTypeArgs and PodDisruptionBudgetListTypeOutput values. You can construct a concrete instance of `PodDisruptionBudgetListTypeInput` via: 

PodDisruptionBudgetListTypeArgs{...}

type PodDisruptionBudgetListTypeOutput 

type PodDisruptionBudgetListTypeOutput struct{ *pulumi.OutputState }

PodDisruptionBudgetList is a collection of PodDisruptionBudgets.

func (PodDisruptionBudgetListTypeOutput) ApiVersion 

func (o PodDisruptionBudgetListTypeOutput) ApiVersion() pulumi.StringPtrOutput

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

func (PodDisruptionBudgetListTypeOutput) ElementType 

func (PodDisruptionBudgetListTypeOutput) ElementType() reflect.Type

func (PodDisruptionBudgetListTypeOutput) Items 

func (o PodDisruptionBudgetListTypeOutput) Items() PodDisruptionBudgetTypeArrayOutput

items list individual PodDisruptionBudget objects

func (PodDisruptionBudgetListTypeOutput) Kind 

func (o PodDisruptionBudgetListTypeOutput) Kind() pulumi.StringPtrOutput

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

func (PodDisruptionBudgetListTypeOutput) Metadata 

func (o PodDisruptionBudgetListTypeOutput) Metadata() metav1.ListMetaPtrOutput

Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata

func (PodDisruptionBudgetListTypeOutput) ToPodDisruptionBudgetListTypeOutput 

func (o PodDisruptionBudgetListTypeOutput) ToPodDisruptionBudgetListTypeOutput() PodDisruptionBudgetListTypeOutput

func (PodDisruptionBudgetListTypeOutput) ToPodDisruptionBudgetListTypeOutputWithContext 

func (o PodDisruptionBudgetListTypeOutput) ToPodDisruptionBudgetListTypeOutputWithContext(ctx context.Context) PodDisruptionBudgetListTypeOutput

type PodDisruptionBudgetMap 

type PodDisruptionBudgetMap map[string]PodDisruptionBudgetInput

func (PodDisruptionBudgetMap) ElementType 

func (PodDisruptionBudgetMap) ElementType() reflect.Type

func (PodDisruptionBudgetMap) ToPodDisruptionBudgetMapOutput 

func (i PodDisruptionBudgetMap) ToPodDisruptionBudgetMapOutput() PodDisruptionBudgetMapOutput

func (PodDisruptionBudgetMap) ToPodDisruptionBudgetMapOutputWithContext 

func (i PodDisruptionBudgetMap) ToPodDisruptionBudgetMapOutputWithContext(ctx context.Context) PodDisruptionBudgetMapOutput

type PodDisruptionBudgetMapInput 

type PodDisruptionBudgetMapInput interface {
	pulumi.Input

	ToPodDisruptionBudgetMapOutput() PodDisruptionBudgetMapOutput
	ToPodDisruptionBudgetMapOutputWithContext(context.Context) PodDisruptionBudgetMapOutput
}

PodDisruptionBudgetMapInput is an input type that accepts PodDisruptionBudgetMap and PodDisruptionBudgetMapOutput values. You can construct a concrete instance of `PodDisruptionBudgetMapInput` via: 

PodDisruptionBudgetMap{ "key": PodDisruptionBudgetArgs{...} }

type PodDisruptionBudgetMapOutput 

type PodDisruptionBudgetMapOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetMapOutput) ElementType 

func (PodDisruptionBudgetMapOutput) ElementType() reflect.Type

func (PodDisruptionBudgetMapOutput) MapIndex 

func (o PodDisruptionBudgetMapOutput) MapIndex(k pulumi.StringInput) PodDisruptionBudgetOutput

func (PodDisruptionBudgetMapOutput) ToPodDisruptionBudgetMapOutput 

func (o PodDisruptionBudgetMapOutput) ToPodDisruptionBudgetMapOutput() PodDisruptionBudgetMapOutput

func (PodDisruptionBudgetMapOutput) ToPodDisruptionBudgetMapOutputWithContext 

func (o PodDisruptionBudgetMapOutput) ToPodDisruptionBudgetMapOutputWithContext(ctx context.Context) PodDisruptionBudgetMapOutput

type PodDisruptionBudgetOutput 

type PodDisruptionBudgetOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetOutput) ElementType 

func (PodDisruptionBudgetOutput) ElementType() reflect.Type

func (PodDisruptionBudgetOutput) ToPodDisruptionBudgetOutput 

func (o PodDisruptionBudgetOutput) ToPodDisruptionBudgetOutput() PodDisruptionBudgetOutput

func (PodDisruptionBudgetOutput) ToPodDisruptionBudgetOutputWithContext 

func (o PodDisruptionBudgetOutput) ToPodDisruptionBudgetOutputWithContext(ctx context.Context) PodDisruptionBudgetOutput

func (PodDisruptionBudgetOutput) ToPodDisruptionBudgetPtrOutput 

func (o PodDisruptionBudgetOutput) ToPodDisruptionBudgetPtrOutput() PodDisruptionBudgetPtrOutput

func (PodDisruptionBudgetOutput) ToPodDisruptionBudgetPtrOutputWithContext 

func (o PodDisruptionBudgetOutput) ToPodDisruptionBudgetPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetPtrOutput

type PodDisruptionBudgetPtrInput 

type PodDisruptionBudgetPtrInput interface {
	pulumi.Input

	ToPodDisruptionBudgetPtrOutput() PodDisruptionBudgetPtrOutput
	ToPodDisruptionBudgetPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetPtrOutput
}

type PodDisruptionBudgetPtrOutput 

type PodDisruptionBudgetPtrOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetPtrOutput) Elem added in v3.7.2 

func (o PodDisruptionBudgetPtrOutput) Elem() PodDisruptionBudgetOutput

func (PodDisruptionBudgetPtrOutput) ElementType 

func (PodDisruptionBudgetPtrOutput) ElementType() reflect.Type

func (PodDisruptionBudgetPtrOutput) ToPodDisruptionBudgetPtrOutput 

func (o PodDisruptionBudgetPtrOutput) ToPodDisruptionBudgetPtrOutput() PodDisruptionBudgetPtrOutput

func (PodDisruptionBudgetPtrOutput) ToPodDisruptionBudgetPtrOutputWithContext 

func (o PodDisruptionBudgetPtrOutput) ToPodDisruptionBudgetPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetPtrOutput

type PodDisruptionBudgetSpec 

type PodDisruptionBudgetSpec struct {
	// An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
	MaxUnavailable interface{} `pulumi:"maxUnavailable"`
	// An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
	MinAvailable interface{} `pulumi:"minAvailable"`
	// Label query over pods whose evictions are managed by the disruption budget. A null selector selects no pods. An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. In policy/v1, an empty selector will select all pods in the namespace.
	Selector *metav1.LabelSelector `pulumi:"selector"`
}

PodDisruptionBudgetSpec is a description of a PodDisruptionBudget.

type PodDisruptionBudgetSpecArgs 

type PodDisruptionBudgetSpecArgs struct {
	// An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
	MaxUnavailable pulumi.Input `pulumi:"maxUnavailable"`
	// An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
	MinAvailable pulumi.Input `pulumi:"minAvailable"`
	// Label query over pods whose evictions are managed by the disruption budget. A null selector selects no pods. An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. In policy/v1, an empty selector will select all pods in the namespace.
	Selector metav1.LabelSelectorPtrInput `pulumi:"selector"`
}

PodDisruptionBudgetSpec is a description of a PodDisruptionBudget.

func (PodDisruptionBudgetSpecArgs) ElementType 

func (PodDisruptionBudgetSpecArgs) ElementType() reflect.Type

func (PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecOutput 

func (i PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecOutput() PodDisruptionBudgetSpecOutput

func (PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecOutputWithContext 

func (i PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecOutputWithContext(ctx context.Context) PodDisruptionBudgetSpecOutput

func (PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecPtrOutput 

func (i PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecPtrOutput() PodDisruptionBudgetSpecPtrOutput

func (PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecPtrOutputWithContext 

func (i PodDisruptionBudgetSpecArgs) ToPodDisruptionBudgetSpecPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetSpecPtrOutput

type PodDisruptionBudgetSpecInput 

type PodDisruptionBudgetSpecInput interface {
	pulumi.Input

	ToPodDisruptionBudgetSpecOutput() PodDisruptionBudgetSpecOutput
	ToPodDisruptionBudgetSpecOutputWithContext(context.Context) PodDisruptionBudgetSpecOutput
}

PodDisruptionBudgetSpecInput is an input type that accepts PodDisruptionBudgetSpecArgs and PodDisruptionBudgetSpecOutput values. You can construct a concrete instance of `PodDisruptionBudgetSpecInput` via: 

PodDisruptionBudgetSpecArgs{...}

type PodDisruptionBudgetSpecOutput 

type PodDisruptionBudgetSpecOutput struct{ *pulumi.OutputState }

PodDisruptionBudgetSpec is a description of a PodDisruptionBudget.

func (PodDisruptionBudgetSpecOutput) ElementType 

func (PodDisruptionBudgetSpecOutput) ElementType() reflect.Type

func (PodDisruptionBudgetSpecOutput) MaxUnavailable 

func (o PodDisruptionBudgetSpecOutput) MaxUnavailable() pulumi.AnyOutput

An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".

func (PodDisruptionBudgetSpecOutput) MinAvailable 

func (o PodDisruptionBudgetSpecOutput) MinAvailable() pulumi.AnyOutput

An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod. So for example you can prevent all voluntary evictions by specifying "100%".

func (PodDisruptionBudgetSpecOutput) Selector 

func (o PodDisruptionBudgetSpecOutput) Selector() metav1.LabelSelectorPtrOutput

Label query over pods whose evictions are managed by the disruption budget. A null selector selects no pods. An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. In policy/v1, an empty selector will select all pods in the namespace.

func (PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecOutput 

func (o PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecOutput() PodDisruptionBudgetSpecOutput

func (PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecOutputWithContext 

func (o PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecOutputWithContext(ctx context.Context) PodDisruptionBudgetSpecOutput

func (PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecPtrOutput 

func (o PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecPtrOutput() PodDisruptionBudgetSpecPtrOutput

func (PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecPtrOutputWithContext 

func (o PodDisruptionBudgetSpecOutput) ToPodDisruptionBudgetSpecPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetSpecPtrOutput

type PodDisruptionBudgetSpecPtrInput 

type PodDisruptionBudgetSpecPtrInput interface {
	pulumi.Input

	ToPodDisruptionBudgetSpecPtrOutput() PodDisruptionBudgetSpecPtrOutput
	ToPodDisruptionBudgetSpecPtrOutputWithContext(context.Context) PodDisruptionBudgetSpecPtrOutput
}

PodDisruptionBudgetSpecPtrInput is an input type that accepts PodDisruptionBudgetSpecArgs, PodDisruptionBudgetSpecPtr and PodDisruptionBudgetSpecPtrOutput values. You can construct a concrete instance of `PodDisruptionBudgetSpecPtrInput` via: 

        PodDisruptionBudgetSpecArgs{...}

or:

        nil

func PodDisruptionBudgetSpecPtr 

func PodDisruptionBudgetSpecPtr(v *PodDisruptionBudgetSpecArgs) PodDisruptionBudgetSpecPtrInput

type PodDisruptionBudgetSpecPtrOutput 

type PodDisruptionBudgetSpecPtrOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetSpecPtrOutput) Elem 

func (o PodDisruptionBudgetSpecPtrOutput) Elem() PodDisruptionBudgetSpecOutput

func (PodDisruptionBudgetSpecPtrOutput) ElementType 

func (PodDisruptionBudgetSpecPtrOutput) ElementType() reflect.Type

func (PodDisruptionBudgetSpecPtrOutput) MaxUnavailable 

func (o PodDisruptionBudgetSpecPtrOutput) MaxUnavailable() pulumi.AnyOutput

An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".

func (PodDisruptionBudgetSpecPtrOutput) MinAvailable 

func (o PodDisruptionBudgetSpecPtrOutput) MinAvailable() pulumi.AnyOutput

An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod. So for example you can prevent all voluntary evictions by specifying "100%".

func (PodDisruptionBudgetSpecPtrOutput) Selector 

func (o PodDisruptionBudgetSpecPtrOutput) Selector() metav1.LabelSelectorPtrOutput

Label query over pods whose evictions are managed by the disruption budget. A null selector selects no pods. An empty selector ({}) also selects no pods, which differs from standard behavior of selecting all pods. In policy/v1, an empty selector will select all pods in the namespace.

func (PodDisruptionBudgetSpecPtrOutput) ToPodDisruptionBudgetSpecPtrOutput 

func (o PodDisruptionBudgetSpecPtrOutput) ToPodDisruptionBudgetSpecPtrOutput() PodDisruptionBudgetSpecPtrOutput

func (PodDisruptionBudgetSpecPtrOutput) ToPodDisruptionBudgetSpecPtrOutputWithContext 

func (o PodDisruptionBudgetSpecPtrOutput) ToPodDisruptionBudgetSpecPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetSpecPtrOutput

type PodDisruptionBudgetState 

type PodDisruptionBudgetState struct {
}

func (PodDisruptionBudgetState) ElementType 

func (PodDisruptionBudgetState) ElementType() reflect.Type

type PodDisruptionBudgetStatus 

type PodDisruptionBudgetStatus struct {
	// Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn't able to compute
	//               the number of allowed disruptions. Therefore no disruptions are
	//               allowed and the status of the condition will be False.
	// - InsufficientPods: The number of pods are either at or below the number
	//                     required by the PodDisruptionBudget. No disruptions are
	//                     allowed and the status of the condition will be False.
	// - SufficientPods: There are more pods than required by the PodDisruptionBudget.
	//                   The condition will be True, and the number of allowed
	//                   disruptions are provided by the disruptionsAllowed property.
	Conditions []metav1.Condition `pulumi:"conditions"`
	// current number of healthy pods
	CurrentHealthy int `pulumi:"currentHealthy"`
	// minimum desired number of healthy pods
	DesiredHealthy int `pulumi:"desiredHealthy"`
	// DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.
	DisruptedPods map[string]string `pulumi:"disruptedPods"`
	// Number of pod disruptions that are currently allowed.
	DisruptionsAllowed int `pulumi:"disruptionsAllowed"`
	// total number of pods counted by this disruption budget
	ExpectedPods int `pulumi:"expectedPods"`
	// Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.
	ObservedGeneration *int `pulumi:"observedGeneration"`
}

PodDisruptionBudgetStatus represents information about the status of a PodDisruptionBudget. Status may trail the actual state of a system.

type PodDisruptionBudgetStatusArgs 

type PodDisruptionBudgetStatusArgs struct {
	// Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn't able to compute
	//               the number of allowed disruptions. Therefore no disruptions are
	//               allowed and the status of the condition will be False.
	// - InsufficientPods: The number of pods are either at or below the number
	//                     required by the PodDisruptionBudget. No disruptions are
	//                     allowed and the status of the condition will be False.
	// - SufficientPods: There are more pods than required by the PodDisruptionBudget.
	//                   The condition will be True, and the number of allowed
	//                   disruptions are provided by the disruptionsAllowed property.
	Conditions metav1.ConditionArrayInput `pulumi:"conditions"`
	// current number of healthy pods
	CurrentHealthy pulumi.IntInput `pulumi:"currentHealthy"`
	// minimum desired number of healthy pods
	DesiredHealthy pulumi.IntInput `pulumi:"desiredHealthy"`
	// DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.
	DisruptedPods pulumi.StringMapInput `pulumi:"disruptedPods"`
	// Number of pod disruptions that are currently allowed.
	DisruptionsAllowed pulumi.IntInput `pulumi:"disruptionsAllowed"`
	// total number of pods counted by this disruption budget
	ExpectedPods pulumi.IntInput `pulumi:"expectedPods"`
	// Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.
	ObservedGeneration pulumi.IntPtrInput `pulumi:"observedGeneration"`
}

PodDisruptionBudgetStatus represents information about the status of a PodDisruptionBudget. Status may trail the actual state of a system.

func (PodDisruptionBudgetStatusArgs) ElementType 

func (PodDisruptionBudgetStatusArgs) ElementType() reflect.Type

func (PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusOutput 

func (i PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusOutput() PodDisruptionBudgetStatusOutput

func (PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusOutputWithContext 

func (i PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusOutputWithContext(ctx context.Context) PodDisruptionBudgetStatusOutput

func (PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusPtrOutput 

func (i PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusPtrOutput() PodDisruptionBudgetStatusPtrOutput

func (PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusPtrOutputWithContext 

func (i PodDisruptionBudgetStatusArgs) ToPodDisruptionBudgetStatusPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetStatusPtrOutput

type PodDisruptionBudgetStatusInput 

type PodDisruptionBudgetStatusInput interface {
	pulumi.Input

	ToPodDisruptionBudgetStatusOutput() PodDisruptionBudgetStatusOutput
	ToPodDisruptionBudgetStatusOutputWithContext(context.Context) PodDisruptionBudgetStatusOutput
}

PodDisruptionBudgetStatusInput is an input type that accepts PodDisruptionBudgetStatusArgs and PodDisruptionBudgetStatusOutput values. You can construct a concrete instance of `PodDisruptionBudgetStatusInput` via: 

PodDisruptionBudgetStatusArgs{...}

type PodDisruptionBudgetStatusOutput 

type PodDisruptionBudgetStatusOutput struct{ *pulumi.OutputState }

PodDisruptionBudgetStatus represents information about the status of a PodDisruptionBudget. Status may trail the actual state of a system.

func (PodDisruptionBudgetStatusOutput) Conditions 

func (o PodDisruptionBudgetStatusOutput) Conditions() metav1.ConditionArrayOutput

Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn't able to compute 

the number of allowed disruptions. Therefore no disruptions are
allowed and the status of the condition will be False.
  • InsufficientPods: The number of pods are either at or below the number required by the PodDisruptionBudget. No disruptions are allowed and the status of the condition will be False.
  • SufficientPods: There are more pods than required by the PodDisruptionBudget. The condition will be True, and the number of allowed disruptions are provided by the disruptionsAllowed property.

func (PodDisruptionBudgetStatusOutput) CurrentHealthy 

func (o PodDisruptionBudgetStatusOutput) CurrentHealthy() pulumi.IntOutput

current number of healthy pods

func (PodDisruptionBudgetStatusOutput) DesiredHealthy 

func (o PodDisruptionBudgetStatusOutput) DesiredHealthy() pulumi.IntOutput

minimum desired number of healthy pods

func (PodDisruptionBudgetStatusOutput) DisruptedPods 

func (o PodDisruptionBudgetStatusOutput) DisruptedPods() pulumi.StringMapOutput

DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.

func (PodDisruptionBudgetStatusOutput) DisruptionsAllowed 

func (o PodDisruptionBudgetStatusOutput) DisruptionsAllowed() pulumi.IntOutput

Number of pod disruptions that are currently allowed.

func (PodDisruptionBudgetStatusOutput) ElementType 

func (PodDisruptionBudgetStatusOutput) ElementType() reflect.Type

func (PodDisruptionBudgetStatusOutput) ExpectedPods 

func (o PodDisruptionBudgetStatusOutput) ExpectedPods() pulumi.IntOutput

total number of pods counted by this disruption budget

func (PodDisruptionBudgetStatusOutput) ObservedGeneration 

func (o PodDisruptionBudgetStatusOutput) ObservedGeneration() pulumi.IntPtrOutput

Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.

func (PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusOutput 

func (o PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusOutput() PodDisruptionBudgetStatusOutput

func (PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusOutputWithContext 

func (o PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusOutputWithContext(ctx context.Context) PodDisruptionBudgetStatusOutput

func (PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusPtrOutput 

func (o PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusPtrOutput() PodDisruptionBudgetStatusPtrOutput

func (PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusPtrOutputWithContext 

func (o PodDisruptionBudgetStatusOutput) ToPodDisruptionBudgetStatusPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetStatusPtrOutput

type PodDisruptionBudgetStatusPtrInput 

type PodDisruptionBudgetStatusPtrInput interface {
	pulumi.Input

	ToPodDisruptionBudgetStatusPtrOutput() PodDisruptionBudgetStatusPtrOutput
	ToPodDisruptionBudgetStatusPtrOutputWithContext(context.Context) PodDisruptionBudgetStatusPtrOutput
}

PodDisruptionBudgetStatusPtrInput is an input type that accepts PodDisruptionBudgetStatusArgs, PodDisruptionBudgetStatusPtr and PodDisruptionBudgetStatusPtrOutput values. You can construct a concrete instance of `PodDisruptionBudgetStatusPtrInput` via: 

        PodDisruptionBudgetStatusArgs{...}

or:

        nil

func PodDisruptionBudgetStatusPtr 

func PodDisruptionBudgetStatusPtr(v *PodDisruptionBudgetStatusArgs) PodDisruptionBudgetStatusPtrInput

type PodDisruptionBudgetStatusPtrOutput 

type PodDisruptionBudgetStatusPtrOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetStatusPtrOutput) Conditions 

func (o PodDisruptionBudgetStatusPtrOutput) Conditions() metav1.ConditionArrayOutput

Conditions contain conditions for PDB. The disruption controller sets the DisruptionAllowed condition. The following are known values for the reason field (additional reasons could be added in the future): - SyncFailed: The controller encountered an error and wasn't able to compute 

the number of allowed disruptions. Therefore no disruptions are
allowed and the status of the condition will be False.
  • InsufficientPods: The number of pods are either at or below the number required by the PodDisruptionBudget. No disruptions are allowed and the status of the condition will be False.
  • SufficientPods: There are more pods than required by the PodDisruptionBudget. The condition will be True, and the number of allowed disruptions are provided by the disruptionsAllowed property.

func (PodDisruptionBudgetStatusPtrOutput) CurrentHealthy 

func (o PodDisruptionBudgetStatusPtrOutput) CurrentHealthy() pulumi.IntPtrOutput

current number of healthy pods

func (PodDisruptionBudgetStatusPtrOutput) DesiredHealthy 

func (o PodDisruptionBudgetStatusPtrOutput) DesiredHealthy() pulumi.IntPtrOutput

minimum desired number of healthy pods

func (PodDisruptionBudgetStatusPtrOutput) DisruptedPods 

func (o PodDisruptionBudgetStatusPtrOutput) DisruptedPods() pulumi.StringMapOutput

DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.

func (PodDisruptionBudgetStatusPtrOutput) DisruptionsAllowed 

func (o PodDisruptionBudgetStatusPtrOutput) DisruptionsAllowed() pulumi.IntPtrOutput

Number of pod disruptions that are currently allowed.

func (PodDisruptionBudgetStatusPtrOutput) Elem 

func (o PodDisruptionBudgetStatusPtrOutput) Elem() PodDisruptionBudgetStatusOutput

func (PodDisruptionBudgetStatusPtrOutput) ElementType 

func (PodDisruptionBudgetStatusPtrOutput) ElementType() reflect.Type

func (PodDisruptionBudgetStatusPtrOutput) ExpectedPods 

func (o PodDisruptionBudgetStatusPtrOutput) ExpectedPods() pulumi.IntPtrOutput

total number of pods counted by this disruption budget

func (PodDisruptionBudgetStatusPtrOutput) ObservedGeneration 

func (o PodDisruptionBudgetStatusPtrOutput) ObservedGeneration() pulumi.IntPtrOutput

Most recent generation observed when updating this PDB status. DisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.

func (PodDisruptionBudgetStatusPtrOutput) ToPodDisruptionBudgetStatusPtrOutput 

func (o PodDisruptionBudgetStatusPtrOutput) ToPodDisruptionBudgetStatusPtrOutput() PodDisruptionBudgetStatusPtrOutput

func (PodDisruptionBudgetStatusPtrOutput) ToPodDisruptionBudgetStatusPtrOutputWithContext 

func (o PodDisruptionBudgetStatusPtrOutput) ToPodDisruptionBudgetStatusPtrOutputWithContext(ctx context.Context) PodDisruptionBudgetStatusPtrOutput

type PodDisruptionBudgetType 

type PodDisruptionBudgetType struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion *string `pulumi:"apiVersion"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind *string `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata *metav1.ObjectMeta `pulumi:"metadata"`
	// Specification of the desired behavior of the PodDisruptionBudget.
	Spec *PodDisruptionBudgetSpec `pulumi:"spec"`
	// Most recently observed status of the PodDisruptionBudget.
	Status *PodDisruptionBudgetStatus `pulumi:"status"`
}

PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods

type PodDisruptionBudgetTypeArgs 

type PodDisruptionBudgetTypeArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput `pulumi:"apiVersion"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ObjectMetaPtrInput `pulumi:"metadata"`
	// Specification of the desired behavior of the PodDisruptionBudget.
	Spec PodDisruptionBudgetSpecPtrInput `pulumi:"spec"`
	// Most recently observed status of the PodDisruptionBudget.
	Status PodDisruptionBudgetStatusPtrInput `pulumi:"status"`
}

PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods

func (PodDisruptionBudgetTypeArgs) ElementType 

func (PodDisruptionBudgetTypeArgs) ElementType() reflect.Type

func (PodDisruptionBudgetTypeArgs) ToPodDisruptionBudgetTypeOutput 

func (i PodDisruptionBudgetTypeArgs) ToPodDisruptionBudgetTypeOutput() PodDisruptionBudgetTypeOutput

func (PodDisruptionBudgetTypeArgs) ToPodDisruptionBudgetTypeOutputWithContext 

func (i PodDisruptionBudgetTypeArgs) ToPodDisruptionBudgetTypeOutputWithContext(ctx context.Context) PodDisruptionBudgetTypeOutput

type PodDisruptionBudgetTypeArray 

type PodDisruptionBudgetTypeArray []PodDisruptionBudgetTypeInput

func (PodDisruptionBudgetTypeArray) ElementType 

func (PodDisruptionBudgetTypeArray) ElementType() reflect.Type

func (PodDisruptionBudgetTypeArray) ToPodDisruptionBudgetTypeArrayOutput 

func (i PodDisruptionBudgetTypeArray) ToPodDisruptionBudgetTypeArrayOutput() PodDisruptionBudgetTypeArrayOutput

func (PodDisruptionBudgetTypeArray) ToPodDisruptionBudgetTypeArrayOutputWithContext 

func (i PodDisruptionBudgetTypeArray) ToPodDisruptionBudgetTypeArrayOutputWithContext(ctx context.Context) PodDisruptionBudgetTypeArrayOutput

type PodDisruptionBudgetTypeArrayInput 

type PodDisruptionBudgetTypeArrayInput interface {
	pulumi.Input

	ToPodDisruptionBudgetTypeArrayOutput() PodDisruptionBudgetTypeArrayOutput
	ToPodDisruptionBudgetTypeArrayOutputWithContext(context.Context) PodDisruptionBudgetTypeArrayOutput
}

PodDisruptionBudgetTypeArrayInput is an input type that accepts PodDisruptionBudgetTypeArray and PodDisruptionBudgetTypeArrayOutput values. You can construct a concrete instance of `PodDisruptionBudgetTypeArrayInput` via: 

PodDisruptionBudgetTypeArray{ PodDisruptionBudgetTypeArgs{...} }

type PodDisruptionBudgetTypeArrayOutput 

type PodDisruptionBudgetTypeArrayOutput struct{ *pulumi.OutputState }

func (PodDisruptionBudgetTypeArrayOutput) ElementType 

func (PodDisruptionBudgetTypeArrayOutput) ElementType() reflect.Type

func (PodDisruptionBudgetTypeArrayOutput) Index 

func (o PodDisruptionBudgetTypeArrayOutput) Index(i pulumi.IntInput) PodDisruptionBudgetTypeOutput

func (PodDisruptionBudgetTypeArrayOutput) ToPodDisruptionBudgetTypeArrayOutput 

func (o PodDisruptionBudgetTypeArrayOutput) ToPodDisruptionBudgetTypeArrayOutput() PodDisruptionBudgetTypeArrayOutput

func (PodDisruptionBudgetTypeArrayOutput) ToPodDisruptionBudgetTypeArrayOutputWithContext 

func (o PodDisruptionBudgetTypeArrayOutput) ToPodDisruptionBudgetTypeArrayOutputWithContext(ctx context.Context) PodDisruptionBudgetTypeArrayOutput

type PodDisruptionBudgetTypeInput 

type PodDisruptionBudgetTypeInput interface {
	pulumi.Input

	ToPodDisruptionBudgetTypeOutput() PodDisruptionBudgetTypeOutput
	ToPodDisruptionBudgetTypeOutputWithContext(context.Context) PodDisruptionBudgetTypeOutput
}

PodDisruptionBudgetTypeInput is an input type that accepts PodDisruptionBudgetTypeArgs and PodDisruptionBudgetTypeOutput values. You can construct a concrete instance of `PodDisruptionBudgetTypeInput` via: 

PodDisruptionBudgetTypeArgs{...}

type PodDisruptionBudgetTypeOutput 

type PodDisruptionBudgetTypeOutput struct{ *pulumi.OutputState }

PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods

func (PodDisruptionBudgetTypeOutput) ApiVersion 

func (o PodDisruptionBudgetTypeOutput) ApiVersion() pulumi.StringPtrOutput

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

func (PodDisruptionBudgetTypeOutput) ElementType 

func (PodDisruptionBudgetTypeOutput) ElementType() reflect.Type

func (PodDisruptionBudgetTypeOutput) Kind 

func (o PodDisruptionBudgetTypeOutput) Kind() pulumi.StringPtrOutput

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

func (PodDisruptionBudgetTypeOutput) Metadata 

func (o PodDisruptionBudgetTypeOutput) Metadata() metav1.ObjectMetaPtrOutput

Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata

func (PodDisruptionBudgetTypeOutput) Spec 

func (o PodDisruptionBudgetTypeOutput) Spec() PodDisruptionBudgetSpecPtrOutput

Specification of the desired behavior of the PodDisruptionBudget.

func (PodDisruptionBudgetTypeOutput) Status 

func (o PodDisruptionBudgetTypeOutput) Status() PodDisruptionBudgetStatusPtrOutput

Most recently observed status of the PodDisruptionBudget.

func (PodDisruptionBudgetTypeOutput) ToPodDisruptionBudgetTypeOutput 

func (o PodDisruptionBudgetTypeOutput) ToPodDisruptionBudgetTypeOutput() PodDisruptionBudgetTypeOutput

func (PodDisruptionBudgetTypeOutput) ToPodDisruptionBudgetTypeOutputWithContext 

func (o PodDisruptionBudgetTypeOutput) ToPodDisruptionBudgetTypeOutputWithContext(ctx context.Context) PodDisruptionBudgetTypeOutput

type PodSecurityPolicy 

type PodSecurityPolicy struct {
	pulumi.CustomResourceState

	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrOutput `pulumi:"apiVersion"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrOutput `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ObjectMetaPtrOutput `pulumi:"metadata"`
	// spec defines the policy enforced.
	Spec PodSecurityPolicySpecPtrOutput `pulumi:"spec"`
}

PodSecurityPolicy governs the ability to make requests that affect the Security Context that will be applied to a pod and container. Deprecated in 1.21.

func GetPodSecurityPolicy 

func GetPodSecurityPolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PodSecurityPolicyState, opts ...pulumi.ResourceOption) (*PodSecurityPolicy, error)

GetPodSecurityPolicy gets an existing PodSecurityPolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPodSecurityPolicy 

func NewPodSecurityPolicy(ctx *pulumi.Context,
	name string, args *PodSecurityPolicyArgs, opts ...pulumi.ResourceOption) (*PodSecurityPolicy, error)

NewPodSecurityPolicy registers a new resource with the given unique name, arguments, and options.

func (*PodSecurityPolicy) ElementType 

func (*PodSecurityPolicy) ElementType() reflect.Type

func (*PodSecurityPolicy) ToPodSecurityPolicyOutput 

func (i *PodSecurityPolicy) ToPodSecurityPolicyOutput() PodSecurityPolicyOutput

func (*PodSecurityPolicy) ToPodSecurityPolicyOutputWithContext 

func (i *PodSecurityPolicy) ToPodSecurityPolicyOutputWithContext(ctx context.Context) PodSecurityPolicyOutput

func (*PodSecurityPolicy) ToPodSecurityPolicyPtrOutput 

func (i *PodSecurityPolicy) ToPodSecurityPolicyPtrOutput() PodSecurityPolicyPtrOutput

func (*PodSecurityPolicy) ToPodSecurityPolicyPtrOutputWithContext 

func (i *PodSecurityPolicy) ToPodSecurityPolicyPtrOutputWithContext(ctx context.Context) PodSecurityPolicyPtrOutput

type PodSecurityPolicyArgs 

type PodSecurityPolicyArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ObjectMetaPtrInput
	// spec defines the policy enforced.
	Spec PodSecurityPolicySpecPtrInput
}

The set of arguments for constructing a PodSecurityPolicy resource.

func (PodSecurityPolicyArgs) ElementType 

func (PodSecurityPolicyArgs) ElementType() reflect.Type

type PodSecurityPolicyArray 

type PodSecurityPolicyArray []PodSecurityPolicyInput

func (PodSecurityPolicyArray) ElementType 

func (PodSecurityPolicyArray) ElementType() reflect.Type

func (PodSecurityPolicyArray) ToPodSecurityPolicyArrayOutput 

func (i PodSecurityPolicyArray) ToPodSecurityPolicyArrayOutput() PodSecurityPolicyArrayOutput

func (PodSecurityPolicyArray) ToPodSecurityPolicyArrayOutputWithContext 

func (i PodSecurityPolicyArray) ToPodSecurityPolicyArrayOutputWithContext(ctx context.Context) PodSecurityPolicyArrayOutput

type PodSecurityPolicyArrayInput 

type PodSecurityPolicyArrayInput interface {
	pulumi.Input

	ToPodSecurityPolicyArrayOutput() PodSecurityPolicyArrayOutput
	ToPodSecurityPolicyArrayOutputWithContext(context.Context) PodSecurityPolicyArrayOutput
}

PodSecurityPolicyArrayInput is an input type that accepts PodSecurityPolicyArray and PodSecurityPolicyArrayOutput values. You can construct a concrete instance of `PodSecurityPolicyArrayInput` via: 

PodSecurityPolicyArray{ PodSecurityPolicyArgs{...} }

type PodSecurityPolicyArrayOutput 

type PodSecurityPolicyArrayOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyArrayOutput) ElementType 

func (PodSecurityPolicyArrayOutput) ElementType() reflect.Type

func (PodSecurityPolicyArrayOutput) Index 

func (o PodSecurityPolicyArrayOutput) Index(i pulumi.IntInput) PodSecurityPolicyOutput

func (PodSecurityPolicyArrayOutput) ToPodSecurityPolicyArrayOutput 

func (o PodSecurityPolicyArrayOutput) ToPodSecurityPolicyArrayOutput() PodSecurityPolicyArrayOutput

func (PodSecurityPolicyArrayOutput) ToPodSecurityPolicyArrayOutputWithContext 

func (o PodSecurityPolicyArrayOutput) ToPodSecurityPolicyArrayOutputWithContext(ctx context.Context) PodSecurityPolicyArrayOutput

type PodSecurityPolicyInput 

type PodSecurityPolicyInput interface {
	pulumi.Input

	ToPodSecurityPolicyOutput() PodSecurityPolicyOutput
	ToPodSecurityPolicyOutputWithContext(ctx context.Context) PodSecurityPolicyOutput
}

type PodSecurityPolicyList 

type PodSecurityPolicyList struct {
	pulumi.CustomResourceState

	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrOutput `pulumi:"apiVersion"`
	// items is a list of schema objects.
	Items PodSecurityPolicyTypeArrayOutput `pulumi:"items"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrOutput `pulumi:"kind"`
	// Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ListMetaPtrOutput `pulumi:"metadata"`
}

PodSecurityPolicyList is a list of PodSecurityPolicy objects.

func GetPodSecurityPolicyList 

func GetPodSecurityPolicyList(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PodSecurityPolicyListState, opts ...pulumi.ResourceOption) (*PodSecurityPolicyList, error)

GetPodSecurityPolicyList gets an existing PodSecurityPolicyList resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPodSecurityPolicyList 

func NewPodSecurityPolicyList(ctx *pulumi.Context,
	name string, args *PodSecurityPolicyListArgs, opts ...pulumi.ResourceOption) (*PodSecurityPolicyList, error)

NewPodSecurityPolicyList registers a new resource with the given unique name, arguments, and options.

func (*PodSecurityPolicyList) ElementType 

func (*PodSecurityPolicyList) ElementType() reflect.Type

func (*PodSecurityPolicyList) ToPodSecurityPolicyListOutput 

func (i *PodSecurityPolicyList) ToPodSecurityPolicyListOutput() PodSecurityPolicyListOutput

func (*PodSecurityPolicyList) ToPodSecurityPolicyListOutputWithContext 

func (i *PodSecurityPolicyList) ToPodSecurityPolicyListOutputWithContext(ctx context.Context) PodSecurityPolicyListOutput

func (*PodSecurityPolicyList) ToPodSecurityPolicyListPtrOutput 

func (i *PodSecurityPolicyList) ToPodSecurityPolicyListPtrOutput() PodSecurityPolicyListPtrOutput

func (*PodSecurityPolicyList) ToPodSecurityPolicyListPtrOutputWithContext 

func (i *PodSecurityPolicyList) ToPodSecurityPolicyListPtrOutputWithContext(ctx context.Context) PodSecurityPolicyListPtrOutput

type PodSecurityPolicyListArgs 

type PodSecurityPolicyListArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput
	// items is a list of schema objects.
	Items PodSecurityPolicyTypeArrayInput
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput
	// Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ListMetaPtrInput
}

The set of arguments for constructing a PodSecurityPolicyList resource.

func (PodSecurityPolicyListArgs) ElementType 

func (PodSecurityPolicyListArgs) ElementType() reflect.Type

type PodSecurityPolicyListArray 

type PodSecurityPolicyListArray []PodSecurityPolicyListInput

func (PodSecurityPolicyListArray) ElementType 

func (PodSecurityPolicyListArray) ElementType() reflect.Type

func (PodSecurityPolicyListArray) ToPodSecurityPolicyListArrayOutput 

func (i PodSecurityPolicyListArray) ToPodSecurityPolicyListArrayOutput() PodSecurityPolicyListArrayOutput

func (PodSecurityPolicyListArray) ToPodSecurityPolicyListArrayOutputWithContext 

func (i PodSecurityPolicyListArray) ToPodSecurityPolicyListArrayOutputWithContext(ctx context.Context) PodSecurityPolicyListArrayOutput

type PodSecurityPolicyListArrayInput 

type PodSecurityPolicyListArrayInput interface {
	pulumi.Input

	ToPodSecurityPolicyListArrayOutput() PodSecurityPolicyListArrayOutput
	ToPodSecurityPolicyListArrayOutputWithContext(context.Context) PodSecurityPolicyListArrayOutput
}

PodSecurityPolicyListArrayInput is an input type that accepts PodSecurityPolicyListArray and PodSecurityPolicyListArrayOutput values. You can construct a concrete instance of `PodSecurityPolicyListArrayInput` via: 

PodSecurityPolicyListArray{ PodSecurityPolicyListArgs{...} }

type PodSecurityPolicyListArrayOutput 

type PodSecurityPolicyListArrayOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyListArrayOutput) ElementType 

func (PodSecurityPolicyListArrayOutput) ElementType() reflect.Type

func (PodSecurityPolicyListArrayOutput) Index 

func (o PodSecurityPolicyListArrayOutput) Index(i pulumi.IntInput) PodSecurityPolicyListOutput

func (PodSecurityPolicyListArrayOutput) ToPodSecurityPolicyListArrayOutput 

func (o PodSecurityPolicyListArrayOutput) ToPodSecurityPolicyListArrayOutput() PodSecurityPolicyListArrayOutput

func (PodSecurityPolicyListArrayOutput) ToPodSecurityPolicyListArrayOutputWithContext 

func (o PodSecurityPolicyListArrayOutput) ToPodSecurityPolicyListArrayOutputWithContext(ctx context.Context) PodSecurityPolicyListArrayOutput

type PodSecurityPolicyListInput 

type PodSecurityPolicyListInput interface {
	pulumi.Input

	ToPodSecurityPolicyListOutput() PodSecurityPolicyListOutput
	ToPodSecurityPolicyListOutputWithContext(ctx context.Context) PodSecurityPolicyListOutput
}

type PodSecurityPolicyListMap 

type PodSecurityPolicyListMap map[string]PodSecurityPolicyListInput

func (PodSecurityPolicyListMap) ElementType 

func (PodSecurityPolicyListMap) ElementType() reflect.Type

func (PodSecurityPolicyListMap) ToPodSecurityPolicyListMapOutput 

func (i PodSecurityPolicyListMap) ToPodSecurityPolicyListMapOutput() PodSecurityPolicyListMapOutput

func (PodSecurityPolicyListMap) ToPodSecurityPolicyListMapOutputWithContext 

func (i PodSecurityPolicyListMap) ToPodSecurityPolicyListMapOutputWithContext(ctx context.Context) PodSecurityPolicyListMapOutput

type PodSecurityPolicyListMapInput 

type PodSecurityPolicyListMapInput interface {
	pulumi.Input

	ToPodSecurityPolicyListMapOutput() PodSecurityPolicyListMapOutput
	ToPodSecurityPolicyListMapOutputWithContext(context.Context) PodSecurityPolicyListMapOutput
}

PodSecurityPolicyListMapInput is an input type that accepts PodSecurityPolicyListMap and PodSecurityPolicyListMapOutput values. You can construct a concrete instance of `PodSecurityPolicyListMapInput` via: 

PodSecurityPolicyListMap{ "key": PodSecurityPolicyListArgs{...} }

type PodSecurityPolicyListMapOutput 

type PodSecurityPolicyListMapOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyListMapOutput) ElementType 

func (PodSecurityPolicyListMapOutput) ElementType() reflect.Type

func (PodSecurityPolicyListMapOutput) MapIndex 

func (o PodSecurityPolicyListMapOutput) MapIndex(k pulumi.StringInput) PodSecurityPolicyListOutput

func (PodSecurityPolicyListMapOutput) ToPodSecurityPolicyListMapOutput 

func (o PodSecurityPolicyListMapOutput) ToPodSecurityPolicyListMapOutput() PodSecurityPolicyListMapOutput

func (PodSecurityPolicyListMapOutput) ToPodSecurityPolicyListMapOutputWithContext 

func (o PodSecurityPolicyListMapOutput) ToPodSecurityPolicyListMapOutputWithContext(ctx context.Context) PodSecurityPolicyListMapOutput

type PodSecurityPolicyListOutput 

type PodSecurityPolicyListOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyListOutput) ElementType 

func (PodSecurityPolicyListOutput) ElementType() reflect.Type

func (PodSecurityPolicyListOutput) ToPodSecurityPolicyListOutput 

func (o PodSecurityPolicyListOutput) ToPodSecurityPolicyListOutput() PodSecurityPolicyListOutput

func (PodSecurityPolicyListOutput) ToPodSecurityPolicyListOutputWithContext 

func (o PodSecurityPolicyListOutput) ToPodSecurityPolicyListOutputWithContext(ctx context.Context) PodSecurityPolicyListOutput

func (PodSecurityPolicyListOutput) ToPodSecurityPolicyListPtrOutput 

func (o PodSecurityPolicyListOutput) ToPodSecurityPolicyListPtrOutput() PodSecurityPolicyListPtrOutput

func (PodSecurityPolicyListOutput) ToPodSecurityPolicyListPtrOutputWithContext 

func (o PodSecurityPolicyListOutput) ToPodSecurityPolicyListPtrOutputWithContext(ctx context.Context) PodSecurityPolicyListPtrOutput

type PodSecurityPolicyListPtrInput 

type PodSecurityPolicyListPtrInput interface {
	pulumi.Input

	ToPodSecurityPolicyListPtrOutput() PodSecurityPolicyListPtrOutput
	ToPodSecurityPolicyListPtrOutputWithContext(ctx context.Context) PodSecurityPolicyListPtrOutput
}

type PodSecurityPolicyListPtrOutput 

type PodSecurityPolicyListPtrOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyListPtrOutput) Elem added in v3.7.2 

func (o PodSecurityPolicyListPtrOutput) Elem() PodSecurityPolicyListOutput

func (PodSecurityPolicyListPtrOutput) ElementType 

func (PodSecurityPolicyListPtrOutput) ElementType() reflect.Type

func (PodSecurityPolicyListPtrOutput) ToPodSecurityPolicyListPtrOutput 

func (o PodSecurityPolicyListPtrOutput) ToPodSecurityPolicyListPtrOutput() PodSecurityPolicyListPtrOutput

func (PodSecurityPolicyListPtrOutput) ToPodSecurityPolicyListPtrOutputWithContext 

func (o PodSecurityPolicyListPtrOutput) ToPodSecurityPolicyListPtrOutputWithContext(ctx context.Context) PodSecurityPolicyListPtrOutput

type PodSecurityPolicyListState 

type PodSecurityPolicyListState struct {
}

func (PodSecurityPolicyListState) ElementType 

func (PodSecurityPolicyListState) ElementType() reflect.Type

type PodSecurityPolicyListType 

type PodSecurityPolicyListType struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion *string `pulumi:"apiVersion"`
	// items is a list of schema objects.
	Items []PodSecurityPolicyType `pulumi:"items"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind *string `pulumi:"kind"`
	// Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata *metav1.ListMeta `pulumi:"metadata"`
}

PodSecurityPolicyList is a list of PodSecurityPolicy objects.

type PodSecurityPolicyListTypeArgs 

type PodSecurityPolicyListTypeArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput `pulumi:"apiVersion"`
	// items is a list of schema objects.
	Items PodSecurityPolicyTypeArrayInput `pulumi:"items"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput `pulumi:"kind"`
	// Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ListMetaPtrInput `pulumi:"metadata"`
}

PodSecurityPolicyList is a list of PodSecurityPolicy objects.

func (PodSecurityPolicyListTypeArgs) ElementType 

func (PodSecurityPolicyListTypeArgs) ElementType() reflect.Type

func (PodSecurityPolicyListTypeArgs) ToPodSecurityPolicyListTypeOutput 

func (i PodSecurityPolicyListTypeArgs) ToPodSecurityPolicyListTypeOutput() PodSecurityPolicyListTypeOutput

func (PodSecurityPolicyListTypeArgs) ToPodSecurityPolicyListTypeOutputWithContext 

func (i PodSecurityPolicyListTypeArgs) ToPodSecurityPolicyListTypeOutputWithContext(ctx context.Context) PodSecurityPolicyListTypeOutput

type PodSecurityPolicyListTypeInput 

type PodSecurityPolicyListTypeInput interface {
	pulumi.Input

	ToPodSecurityPolicyListTypeOutput() PodSecurityPolicyListTypeOutput
	ToPodSecurityPolicyListTypeOutputWithContext(context.Context) PodSecurityPolicyListTypeOutput
}

PodSecurityPolicyListTypeInput is an input type that accepts PodSecurityPolicyListTypeArgs and PodSecurityPolicyListTypeOutput values. You can construct a concrete instance of `PodSecurityPolicyListTypeInput` via: 

PodSecurityPolicyListTypeArgs{...}

type PodSecurityPolicyListTypeOutput 

type PodSecurityPolicyListTypeOutput struct{ *pulumi.OutputState }

PodSecurityPolicyList is a list of PodSecurityPolicy objects.

func (PodSecurityPolicyListTypeOutput) ApiVersion 

func (o PodSecurityPolicyListTypeOutput) ApiVersion() pulumi.StringPtrOutput

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

func (PodSecurityPolicyListTypeOutput) ElementType 

func (PodSecurityPolicyListTypeOutput) ElementType() reflect.Type

func (PodSecurityPolicyListTypeOutput) Items 

func (o PodSecurityPolicyListTypeOutput) Items() PodSecurityPolicyTypeArrayOutput

items is a list of schema objects.

func (PodSecurityPolicyListTypeOutput) Kind 

func (o PodSecurityPolicyListTypeOutput) Kind() pulumi.StringPtrOutput

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

func (PodSecurityPolicyListTypeOutput) Metadata 

func (o PodSecurityPolicyListTypeOutput) Metadata() metav1.ListMetaPtrOutput

Standard list metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata

func (PodSecurityPolicyListTypeOutput) ToPodSecurityPolicyListTypeOutput 

func (o PodSecurityPolicyListTypeOutput) ToPodSecurityPolicyListTypeOutput() PodSecurityPolicyListTypeOutput

func (PodSecurityPolicyListTypeOutput) ToPodSecurityPolicyListTypeOutputWithContext 

func (o PodSecurityPolicyListTypeOutput) ToPodSecurityPolicyListTypeOutputWithContext(ctx context.Context) PodSecurityPolicyListTypeOutput

type PodSecurityPolicyMap 

type PodSecurityPolicyMap map[string]PodSecurityPolicyInput

func (PodSecurityPolicyMap) ElementType 

func (PodSecurityPolicyMap) ElementType() reflect.Type

func (PodSecurityPolicyMap) ToPodSecurityPolicyMapOutput 

func (i PodSecurityPolicyMap) ToPodSecurityPolicyMapOutput() PodSecurityPolicyMapOutput

func (PodSecurityPolicyMap) ToPodSecurityPolicyMapOutputWithContext 

func (i PodSecurityPolicyMap) ToPodSecurityPolicyMapOutputWithContext(ctx context.Context) PodSecurityPolicyMapOutput

type PodSecurityPolicyMapInput 

type PodSecurityPolicyMapInput interface {
	pulumi.Input

	ToPodSecurityPolicyMapOutput() PodSecurityPolicyMapOutput
	ToPodSecurityPolicyMapOutputWithContext(context.Context) PodSecurityPolicyMapOutput
}

PodSecurityPolicyMapInput is an input type that accepts PodSecurityPolicyMap and PodSecurityPolicyMapOutput values. You can construct a concrete instance of `PodSecurityPolicyMapInput` via: 

PodSecurityPolicyMap{ "key": PodSecurityPolicyArgs{...} }

type PodSecurityPolicyMapOutput 

type PodSecurityPolicyMapOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyMapOutput) ElementType 

func (PodSecurityPolicyMapOutput) ElementType() reflect.Type

func (PodSecurityPolicyMapOutput) MapIndex 

func (o PodSecurityPolicyMapOutput) MapIndex(k pulumi.StringInput) PodSecurityPolicyOutput

func (PodSecurityPolicyMapOutput) ToPodSecurityPolicyMapOutput 

func (o PodSecurityPolicyMapOutput) ToPodSecurityPolicyMapOutput() PodSecurityPolicyMapOutput

func (PodSecurityPolicyMapOutput) ToPodSecurityPolicyMapOutputWithContext 

func (o PodSecurityPolicyMapOutput) ToPodSecurityPolicyMapOutputWithContext(ctx context.Context) PodSecurityPolicyMapOutput

type PodSecurityPolicyOutput 

type PodSecurityPolicyOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyOutput) ElementType 

func (PodSecurityPolicyOutput) ElementType() reflect.Type

func (PodSecurityPolicyOutput) ToPodSecurityPolicyOutput 

func (o PodSecurityPolicyOutput) ToPodSecurityPolicyOutput() PodSecurityPolicyOutput

func (PodSecurityPolicyOutput) ToPodSecurityPolicyOutputWithContext 

func (o PodSecurityPolicyOutput) ToPodSecurityPolicyOutputWithContext(ctx context.Context) PodSecurityPolicyOutput

func (PodSecurityPolicyOutput) ToPodSecurityPolicyPtrOutput 

func (o PodSecurityPolicyOutput) ToPodSecurityPolicyPtrOutput() PodSecurityPolicyPtrOutput

func (PodSecurityPolicyOutput) ToPodSecurityPolicyPtrOutputWithContext 

func (o PodSecurityPolicyOutput) ToPodSecurityPolicyPtrOutputWithContext(ctx context.Context) PodSecurityPolicyPtrOutput

type PodSecurityPolicyPtrInput 

type PodSecurityPolicyPtrInput interface {
	pulumi.Input

	ToPodSecurityPolicyPtrOutput() PodSecurityPolicyPtrOutput
	ToPodSecurityPolicyPtrOutputWithContext(ctx context.Context) PodSecurityPolicyPtrOutput
}

type PodSecurityPolicyPtrOutput 

type PodSecurityPolicyPtrOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyPtrOutput) Elem added in v3.7.2 

func (o PodSecurityPolicyPtrOutput) Elem() PodSecurityPolicyOutput

func (PodSecurityPolicyPtrOutput) ElementType 

func (PodSecurityPolicyPtrOutput) ElementType() reflect.Type

func (PodSecurityPolicyPtrOutput) ToPodSecurityPolicyPtrOutput 

func (o PodSecurityPolicyPtrOutput) ToPodSecurityPolicyPtrOutput() PodSecurityPolicyPtrOutput

func (PodSecurityPolicyPtrOutput) ToPodSecurityPolicyPtrOutputWithContext 

func (o PodSecurityPolicyPtrOutput) ToPodSecurityPolicyPtrOutputWithContext(ctx context.Context) PodSecurityPolicyPtrOutput

type PodSecurityPolicySpec 

type PodSecurityPolicySpec struct {
	// allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
	AllowPrivilegeEscalation *bool `pulumi:"allowPrivilegeEscalation"`
	// AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.
	AllowedCSIDrivers []AllowedCSIDriver `pulumi:"allowedCSIDrivers"`
	// allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
	AllowedCapabilities []string `pulumi:"allowedCapabilities"`
	// allowedFlexVolumes is an allowlist of Flexvolumes.  Empty or nil indicates that all Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes is allowed in the "volumes" field.
	AllowedFlexVolumes []AllowedFlexVolume `pulumi:"allowedFlexVolumes"`
	// allowedHostPaths is an allowlist of host paths. Empty indicates that all host paths may be used.
	AllowedHostPaths []AllowedHostPath `pulumi:"allowedHostPaths"`
	// AllowedProcMountTypes is an allowlist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
	AllowedProcMountTypes []string `pulumi:"allowedProcMountTypes"`
	// allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.
	//
	// Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
	AllowedUnsafeSysctls []string `pulumi:"allowedUnsafeSysctls"`
	// defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
	DefaultAddCapabilities []string `pulumi:"defaultAddCapabilities"`
	// defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
	DefaultAllowPrivilegeEscalation *bool `pulumi:"defaultAllowPrivilegeEscalation"`
	// forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
	//
	// Examples: e.g. "foo/*" forbids "foo/bar", "foo/baz", etc. e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.
	ForbiddenSysctls []string `pulumi:"forbiddenSysctls"`
	// fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.
	FsGroup FSGroupStrategyOptions `pulumi:"fsGroup"`
	// hostIPC determines if the policy allows the use of HostIPC in the pod spec.
	HostIPC *bool `pulumi:"hostIPC"`
	// hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
	HostNetwork *bool `pulumi:"hostNetwork"`
	// hostPID determines if the policy allows the use of HostPID in the pod spec.
	HostPID *bool `pulumi:"hostPID"`
	// hostPorts determines which host port ranges are allowed to be exposed.
	HostPorts []HostPortRange `pulumi:"hostPorts"`
	// privileged determines if a pod can request to be run as privileged.
	Privileged *bool `pulumi:"privileged"`
	// readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
	ReadOnlyRootFilesystem *bool `pulumi:"readOnlyRootFilesystem"`
	// requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
	RequiredDropCapabilities []string `pulumi:"requiredDropCapabilities"`
	// RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod's RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.
	RunAsGroup *RunAsGroupStrategyOptions `pulumi:"runAsGroup"`
	// runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.
	RunAsUser RunAsUserStrategyOptions `pulumi:"runAsUser"`
	// runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod's runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.
	RuntimeClass *RuntimeClassStrategyOptions `pulumi:"runtimeClass"`
	// seLinux is the strategy that will dictate the allowable labels that may be set.
	SeLinux SELinuxStrategyOptions `pulumi:"seLinux"`
	// supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.
	SupplementalGroups SupplementalGroupsStrategyOptions `pulumi:"supplementalGroups"`
	// volumes is an allowlist of volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
	Volumes []string `pulumi:"volumes"`
}

PodSecurityPolicySpec defines the policy enforced.

type PodSecurityPolicySpecArgs 

type PodSecurityPolicySpecArgs struct {
	// allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
	AllowPrivilegeEscalation pulumi.BoolPtrInput `pulumi:"allowPrivilegeEscalation"`
	// AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.
	AllowedCSIDrivers AllowedCSIDriverArrayInput `pulumi:"allowedCSIDrivers"`
	// allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
	AllowedCapabilities pulumi.StringArrayInput `pulumi:"allowedCapabilities"`
	// allowedFlexVolumes is an allowlist of Flexvolumes.  Empty or nil indicates that all Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes is allowed in the "volumes" field.
	AllowedFlexVolumes AllowedFlexVolumeArrayInput `pulumi:"allowedFlexVolumes"`
	// allowedHostPaths is an allowlist of host paths. Empty indicates that all host paths may be used.
	AllowedHostPaths AllowedHostPathArrayInput `pulumi:"allowedHostPaths"`
	// AllowedProcMountTypes is an allowlist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
	AllowedProcMountTypes pulumi.StringArrayInput `pulumi:"allowedProcMountTypes"`
	// allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.
	//
	// Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
	AllowedUnsafeSysctls pulumi.StringArrayInput `pulumi:"allowedUnsafeSysctls"`
	// defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
	DefaultAddCapabilities pulumi.StringArrayInput `pulumi:"defaultAddCapabilities"`
	// defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
	DefaultAllowPrivilegeEscalation pulumi.BoolPtrInput `pulumi:"defaultAllowPrivilegeEscalation"`
	// forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
	//
	// Examples: e.g. "foo/*" forbids "foo/bar", "foo/baz", etc. e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.
	ForbiddenSysctls pulumi.StringArrayInput `pulumi:"forbiddenSysctls"`
	// fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.
	FsGroup FSGroupStrategyOptionsInput `pulumi:"fsGroup"`
	// hostIPC determines if the policy allows the use of HostIPC in the pod spec.
	HostIPC pulumi.BoolPtrInput `pulumi:"hostIPC"`
	// hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
	HostNetwork pulumi.BoolPtrInput `pulumi:"hostNetwork"`
	// hostPID determines if the policy allows the use of HostPID in the pod spec.
	HostPID pulumi.BoolPtrInput `pulumi:"hostPID"`
	// hostPorts determines which host port ranges are allowed to be exposed.
	HostPorts HostPortRangeArrayInput `pulumi:"hostPorts"`
	// privileged determines if a pod can request to be run as privileged.
	Privileged pulumi.BoolPtrInput `pulumi:"privileged"`
	// readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
	ReadOnlyRootFilesystem pulumi.BoolPtrInput `pulumi:"readOnlyRootFilesystem"`
	// requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
	RequiredDropCapabilities pulumi.StringArrayInput `pulumi:"requiredDropCapabilities"`
	// RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod's RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.
	RunAsGroup RunAsGroupStrategyOptionsPtrInput `pulumi:"runAsGroup"`
	// runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.
	RunAsUser RunAsUserStrategyOptionsInput `pulumi:"runAsUser"`
	// runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod's runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.
	RuntimeClass RuntimeClassStrategyOptionsPtrInput `pulumi:"runtimeClass"`
	// seLinux is the strategy that will dictate the allowable labels that may be set.
	SeLinux SELinuxStrategyOptionsInput `pulumi:"seLinux"`
	// supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.
	SupplementalGroups SupplementalGroupsStrategyOptionsInput `pulumi:"supplementalGroups"`
	// volumes is an allowlist of volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
	Volumes pulumi.StringArrayInput `pulumi:"volumes"`
}

PodSecurityPolicySpec defines the policy enforced.

func (PodSecurityPolicySpecArgs) ElementType 

func (PodSecurityPolicySpecArgs) ElementType() reflect.Type

func (PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecOutput 

func (i PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecOutput() PodSecurityPolicySpecOutput

func (PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecOutputWithContext 

func (i PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecOutputWithContext(ctx context.Context) PodSecurityPolicySpecOutput

func (PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecPtrOutput 

func (i PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecPtrOutput() PodSecurityPolicySpecPtrOutput

func (PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecPtrOutputWithContext 

func (i PodSecurityPolicySpecArgs) ToPodSecurityPolicySpecPtrOutputWithContext(ctx context.Context) PodSecurityPolicySpecPtrOutput

type PodSecurityPolicySpecInput 

type PodSecurityPolicySpecInput interface {
	pulumi.Input

	ToPodSecurityPolicySpecOutput() PodSecurityPolicySpecOutput
	ToPodSecurityPolicySpecOutputWithContext(context.Context) PodSecurityPolicySpecOutput
}

PodSecurityPolicySpecInput is an input type that accepts PodSecurityPolicySpecArgs and PodSecurityPolicySpecOutput values. You can construct a concrete instance of `PodSecurityPolicySpecInput` via: 

PodSecurityPolicySpecArgs{...}

type PodSecurityPolicySpecOutput 

type PodSecurityPolicySpecOutput struct{ *pulumi.OutputState }

PodSecurityPolicySpec defines the policy enforced.

func (PodSecurityPolicySpecOutput) AllowPrivilegeEscalation 

func (o PodSecurityPolicySpecOutput) AllowPrivilegeEscalation() pulumi.BoolPtrOutput

allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.

func (PodSecurityPolicySpecOutput) AllowedCSIDrivers 

func (o PodSecurityPolicySpecOutput) AllowedCSIDrivers() AllowedCSIDriverArrayOutput

AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.

func (PodSecurityPolicySpecOutput) AllowedCapabilities 

func (o PodSecurityPolicySpecOutput) AllowedCapabilities() pulumi.StringArrayOutput

allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.

func (PodSecurityPolicySpecOutput) AllowedFlexVolumes 

func (o PodSecurityPolicySpecOutput) AllowedFlexVolumes() AllowedFlexVolumeArrayOutput

allowedFlexVolumes is an allowlist of Flexvolumes. Empty or nil indicates that all Flexvolumes may be used. This parameter is effective only when the usage of the Flexvolumes is allowed in the "volumes" field.

func (PodSecurityPolicySpecOutput) AllowedHostPaths 

func (o PodSecurityPolicySpecOutput) AllowedHostPaths() AllowedHostPathArrayOutput

allowedHostPaths is an allowlist of host paths. Empty indicates that all host paths may be used.

func (PodSecurityPolicySpecOutput) AllowedProcMountTypes 

func (o PodSecurityPolicySpecOutput) AllowedProcMountTypes() pulumi.StringArrayOutput

AllowedProcMountTypes is an allowlist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.

func (PodSecurityPolicySpecOutput) AllowedUnsafeSysctls 

func (o PodSecurityPolicySpecOutput) AllowedUnsafeSysctls() pulumi.StringArrayOutput

allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.

Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.

func (PodSecurityPolicySpecOutput) DefaultAddCapabilities 

func (o PodSecurityPolicySpecOutput) DefaultAddCapabilities() pulumi.StringArrayOutput

defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability. You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.

func (PodSecurityPolicySpecOutput) DefaultAllowPrivilegeEscalation 

func (o PodSecurityPolicySpecOutput) DefaultAllowPrivilegeEscalation() pulumi.BoolPtrOutput

defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.

func (PodSecurityPolicySpecOutput) ElementType 

func (PodSecurityPolicySpecOutput) ElementType() reflect.Type

func (PodSecurityPolicySpecOutput) ForbiddenSysctls 

func (o PodSecurityPolicySpecOutput) ForbiddenSysctls() pulumi.StringArrayOutput

forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.

Examples: e.g. "foo/*" forbids "foo/bar", "foo/baz", etc. e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.

func (PodSecurityPolicySpecOutput) FsGroup 

func (o PodSecurityPolicySpecOutput) FsGroup() FSGroupStrategyOptionsOutput

fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.

func (PodSecurityPolicySpecOutput) HostIPC 

func (o PodSecurityPolicySpecOutput) HostIPC() pulumi.BoolPtrOutput

hostIPC determines if the policy allows the use of HostIPC in the pod spec.

func (PodSecurityPolicySpecOutput) HostNetwork 

func (o PodSecurityPolicySpecOutput) HostNetwork() pulumi.BoolPtrOutput

hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.

func (PodSecurityPolicySpecOutput) HostPID 

func (o PodSecurityPolicySpecOutput) HostPID() pulumi.BoolPtrOutput

hostPID determines if the policy allows the use of HostPID in the pod spec.

func (PodSecurityPolicySpecOutput) HostPorts 

func (o PodSecurityPolicySpecOutput) HostPorts() HostPortRangeArrayOutput

hostPorts determines which host port ranges are allowed to be exposed.

func (PodSecurityPolicySpecOutput) Privileged 

func (o PodSecurityPolicySpecOutput) Privileged() pulumi.BoolPtrOutput

privileged determines if a pod can request to be run as privileged.

func (PodSecurityPolicySpecOutput) ReadOnlyRootFilesystem 

func (o PodSecurityPolicySpecOutput) ReadOnlyRootFilesystem() pulumi.BoolPtrOutput

readOnlyRootFilesystem when set to true will force containers to run with a read only root file system. If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.

func (PodSecurityPolicySpecOutput) RequiredDropCapabilities 

func (o PodSecurityPolicySpecOutput) RequiredDropCapabilities() pulumi.StringArrayOutput

requiredDropCapabilities are the capabilities that will be dropped from the container. These are required to be dropped and cannot be added.

func (PodSecurityPolicySpecOutput) RunAsGroup 

func (o PodSecurityPolicySpecOutput) RunAsGroup() RunAsGroupStrategyOptionsPtrOutput

RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod's RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.

func (PodSecurityPolicySpecOutput) RunAsUser 

func (o PodSecurityPolicySpecOutput) RunAsUser() RunAsUserStrategyOptionsOutput

runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.

func (PodSecurityPolicySpecOutput) RuntimeClass 

func (o PodSecurityPolicySpecOutput) RuntimeClass() RuntimeClassStrategyOptionsPtrOutput

runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod's runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.

func (PodSecurityPolicySpecOutput) SeLinux 

func (o PodSecurityPolicySpecOutput) SeLinux() SELinuxStrategyOptionsOutput

seLinux is the strategy that will dictate the allowable labels that may be set.

func (PodSecurityPolicySpecOutput) SupplementalGroups 

func (o PodSecurityPolicySpecOutput) SupplementalGroups() SupplementalGroupsStrategyOptionsOutput

supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.

func (PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecOutput 

func (o PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecOutput() PodSecurityPolicySpecOutput

func (PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecOutputWithContext 

func (o PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecOutputWithContext(ctx context.Context) PodSecurityPolicySpecOutput

func (PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecPtrOutput 

func (o PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecPtrOutput() PodSecurityPolicySpecPtrOutput

func (PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecPtrOutputWithContext 

func (o PodSecurityPolicySpecOutput) ToPodSecurityPolicySpecPtrOutputWithContext(ctx context.Context) PodSecurityPolicySpecPtrOutput

func (PodSecurityPolicySpecOutput) Volumes 

func (o PodSecurityPolicySpecOutput) Volumes() pulumi.StringArrayOutput

volumes is an allowlist of volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.

type PodSecurityPolicySpecPtrInput 

type PodSecurityPolicySpecPtrInput interface {
	pulumi.Input

	ToPodSecurityPolicySpecPtrOutput() PodSecurityPolicySpecPtrOutput
	ToPodSecurityPolicySpecPtrOutputWithContext(context.Context) PodSecurityPolicySpecPtrOutput
}

PodSecurityPolicySpecPtrInput is an input type that accepts PodSecurityPolicySpecArgs, PodSecurityPolicySpecPtr and PodSecurityPolicySpecPtrOutput values. You can construct a concrete instance of `PodSecurityPolicySpecPtrInput` via: 

        PodSecurityPolicySpecArgs{...}

or:

        nil

func PodSecurityPolicySpecPtr 

func PodSecurityPolicySpecPtr(v *PodSecurityPolicySpecArgs) PodSecurityPolicySpecPtrInput

type PodSecurityPolicySpecPtrOutput 

type PodSecurityPolicySpecPtrOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicySpecPtrOutput) AllowPrivilegeEscalation 

func (o PodSecurityPolicySpecPtrOutput) AllowPrivilegeEscalation() pulumi.BoolPtrOutput

allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.

func (PodSecurityPolicySpecPtrOutput) AllowedCSIDrivers 

func (o PodSecurityPolicySpecPtrOutput) AllowedCSIDrivers() AllowedCSIDriverArrayOutput

AllowedCSIDrivers is an allowlist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is a beta field, and is only honored if the API server enables the CSIInlineVolume feature gate.

func (PodSecurityPolicySpecPtrOutput) AllowedCapabilities 

func (o PodSecurityPolicySpecPtrOutput) AllowedCapabilities() pulumi.StringArrayOutput

allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.

func (PodSecurityPolicySpecPtrOutput) AllowedFlexVolumes 

func (o PodSecurityPolicySpecPtrOutput) AllowedFlexVolumes() AllowedFlexVolumeArrayOutput

allowedFlexVolumes is an allowlist of Flexvolumes. Empty or nil indicates that all Flexvolumes may be used. This parameter is effective only when the usage of the Flexvolumes is allowed in the "volumes" field.

func (PodSecurityPolicySpecPtrOutput) AllowedHostPaths 

func (o PodSecurityPolicySpecPtrOutput) AllowedHostPaths() AllowedHostPathArrayOutput

allowedHostPaths is an allowlist of host paths. Empty indicates that all host paths may be used.

func (PodSecurityPolicySpecPtrOutput) AllowedProcMountTypes 

func (o PodSecurityPolicySpecPtrOutput) AllowedProcMountTypes() pulumi.StringArrayOutput

AllowedProcMountTypes is an allowlist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.

func (PodSecurityPolicySpecPtrOutput) AllowedUnsafeSysctls 

func (o PodSecurityPolicySpecPtrOutput) AllowedUnsafeSysctls() pulumi.StringArrayOutput

allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to allowlist all allowed unsafe sysctls explicitly to avoid rejection.

Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.

func (PodSecurityPolicySpecPtrOutput) DefaultAddCapabilities 

func (o PodSecurityPolicySpecPtrOutput) DefaultAddCapabilities() pulumi.StringArrayOutput

defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability. You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.

func (PodSecurityPolicySpecPtrOutput) DefaultAllowPrivilegeEscalation 

func (o PodSecurityPolicySpecPtrOutput) DefaultAllowPrivilegeEscalation() pulumi.BoolPtrOutput

defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.

func (PodSecurityPolicySpecPtrOutput) Elem 

func (o PodSecurityPolicySpecPtrOutput) Elem() PodSecurityPolicySpecOutput

func (PodSecurityPolicySpecPtrOutput) ElementType 

func (PodSecurityPolicySpecPtrOutput) ElementType() reflect.Type

func (PodSecurityPolicySpecPtrOutput) ForbiddenSysctls 

func (o PodSecurityPolicySpecPtrOutput) ForbiddenSysctls() pulumi.StringArrayOutput

forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.

Examples: e.g. "foo/*" forbids "foo/bar", "foo/baz", etc. e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.

func (PodSecurityPolicySpecPtrOutput) FsGroup 

func (o PodSecurityPolicySpecPtrOutput) FsGroup() FSGroupStrategyOptionsPtrOutput

fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.

func (PodSecurityPolicySpecPtrOutput) HostIPC 

func (o PodSecurityPolicySpecPtrOutput) HostIPC() pulumi.BoolPtrOutput

hostIPC determines if the policy allows the use of HostIPC in the pod spec.

func (PodSecurityPolicySpecPtrOutput) HostNetwork 

func (o PodSecurityPolicySpecPtrOutput) HostNetwork() pulumi.BoolPtrOutput

hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.

func (PodSecurityPolicySpecPtrOutput) HostPID 

func (o PodSecurityPolicySpecPtrOutput) HostPID() pulumi.BoolPtrOutput

hostPID determines if the policy allows the use of HostPID in the pod spec.

func (PodSecurityPolicySpecPtrOutput) HostPorts 

func (o PodSecurityPolicySpecPtrOutput) HostPorts() HostPortRangeArrayOutput

hostPorts determines which host port ranges are allowed to be exposed.

func (PodSecurityPolicySpecPtrOutput) Privileged 

func (o PodSecurityPolicySpecPtrOutput) Privileged() pulumi.BoolPtrOutput

privileged determines if a pod can request to be run as privileged.

func (PodSecurityPolicySpecPtrOutput) ReadOnlyRootFilesystem 

func (o PodSecurityPolicySpecPtrOutput) ReadOnlyRootFilesystem() pulumi.BoolPtrOutput

readOnlyRootFilesystem when set to true will force containers to run with a read only root file system. If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.

func (PodSecurityPolicySpecPtrOutput) RequiredDropCapabilities 

func (o PodSecurityPolicySpecPtrOutput) RequiredDropCapabilities() pulumi.StringArrayOutput

requiredDropCapabilities are the capabilities that will be dropped from the container. These are required to be dropped and cannot be added.

func (PodSecurityPolicySpecPtrOutput) RunAsGroup 

func (o PodSecurityPolicySpecPtrOutput) RunAsGroup() RunAsGroupStrategyOptionsPtrOutput

RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod's RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.

func (PodSecurityPolicySpecPtrOutput) RunAsUser 

func (o PodSecurityPolicySpecPtrOutput) RunAsUser() RunAsUserStrategyOptionsPtrOutput

runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.

func (PodSecurityPolicySpecPtrOutput) RuntimeClass 

func (o PodSecurityPolicySpecPtrOutput) RuntimeClass() RuntimeClassStrategyOptionsPtrOutput

runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod's runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.

func (PodSecurityPolicySpecPtrOutput) SeLinux 

func (o PodSecurityPolicySpecPtrOutput) SeLinux() SELinuxStrategyOptionsPtrOutput

seLinux is the strategy that will dictate the allowable labels that may be set.

func (PodSecurityPolicySpecPtrOutput) SupplementalGroups 

func (o PodSecurityPolicySpecPtrOutput) SupplementalGroups() SupplementalGroupsStrategyOptionsPtrOutput

supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.

func (PodSecurityPolicySpecPtrOutput) ToPodSecurityPolicySpecPtrOutput 

func (o PodSecurityPolicySpecPtrOutput) ToPodSecurityPolicySpecPtrOutput() PodSecurityPolicySpecPtrOutput

func (PodSecurityPolicySpecPtrOutput) ToPodSecurityPolicySpecPtrOutputWithContext 

func (o PodSecurityPolicySpecPtrOutput) ToPodSecurityPolicySpecPtrOutputWithContext(ctx context.Context) PodSecurityPolicySpecPtrOutput

func (PodSecurityPolicySpecPtrOutput) Volumes 

func (o PodSecurityPolicySpecPtrOutput) Volumes() pulumi.StringArrayOutput

volumes is an allowlist of volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.

type PodSecurityPolicyState 

type PodSecurityPolicyState struct {
}

func (PodSecurityPolicyState) ElementType 

func (PodSecurityPolicyState) ElementType() reflect.Type

type PodSecurityPolicyType 

type PodSecurityPolicyType struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion *string `pulumi:"apiVersion"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind *string `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata *metav1.ObjectMeta `pulumi:"metadata"`
	// spec defines the policy enforced.
	Spec *PodSecurityPolicySpec `pulumi:"spec"`
}

PodSecurityPolicy governs the ability to make requests that affect the Security Context that will be applied to a pod and container. Deprecated in 1.21.

type PodSecurityPolicyTypeArgs 

type PodSecurityPolicyTypeArgs struct {
	// APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
	ApiVersion pulumi.StringPtrInput `pulumi:"apiVersion"`
	// Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
	Kind pulumi.StringPtrInput `pulumi:"kind"`
	// Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
	Metadata metav1.ObjectMetaPtrInput `pulumi:"metadata"`
	// spec defines the policy enforced.
	Spec PodSecurityPolicySpecPtrInput `pulumi:"spec"`
}

PodSecurityPolicy governs the ability to make requests that affect the Security Context that will be applied to a pod and container. Deprecated in 1.21.

func (PodSecurityPolicyTypeArgs) ElementType 

func (PodSecurityPolicyTypeArgs) ElementType() reflect.Type

func (PodSecurityPolicyTypeArgs) ToPodSecurityPolicyTypeOutput 

func (i PodSecurityPolicyTypeArgs) ToPodSecurityPolicyTypeOutput() PodSecurityPolicyTypeOutput

func (PodSecurityPolicyTypeArgs) ToPodSecurityPolicyTypeOutputWithContext 

func (i PodSecurityPolicyTypeArgs) ToPodSecurityPolicyTypeOutputWithContext(ctx context.Context) PodSecurityPolicyTypeOutput

type PodSecurityPolicyTypeArray 

type PodSecurityPolicyTypeArray []PodSecurityPolicyTypeInput

func (PodSecurityPolicyTypeArray) ElementType 

func (PodSecurityPolicyTypeArray) ElementType() reflect.Type

func (PodSecurityPolicyTypeArray) ToPodSecurityPolicyTypeArrayOutput 

func (i PodSecurityPolicyTypeArray) ToPodSecurityPolicyTypeArrayOutput() PodSecurityPolicyTypeArrayOutput

func (PodSecurityPolicyTypeArray) ToPodSecurityPolicyTypeArrayOutputWithContext 

func (i PodSecurityPolicyTypeArray) ToPodSecurityPolicyTypeArrayOutputWithContext(ctx context.Context) PodSecurityPolicyTypeArrayOutput

type PodSecurityPolicyTypeArrayInput 

type PodSecurityPolicyTypeArrayInput interface {
	pulumi.Input

	ToPodSecurityPolicyTypeArrayOutput() PodSecurityPolicyTypeArrayOutput
	ToPodSecurityPolicyTypeArrayOutputWithContext(context.Context) PodSecurityPolicyTypeArrayOutput
}

PodSecurityPolicyTypeArrayInput is an input type that accepts PodSecurityPolicyTypeArray and PodSecurityPolicyTypeArrayOutput values. You can construct a concrete instance of `PodSecurityPolicyTypeArrayInput` via: 

PodSecurityPolicyTypeArray{ PodSecurityPolicyTypeArgs{...} }

type PodSecurityPolicyTypeArrayOutput 

type PodSecurityPolicyTypeArrayOutput struct{ *pulumi.OutputState }

func (PodSecurityPolicyTypeArrayOutput) ElementType 

func (PodSecurityPolicyTypeArrayOutput) ElementType() reflect.Type

func (PodSecurityPolicyTypeArrayOutput) Index 

func (o PodSecurityPolicyTypeArrayOutput) Index(i pulumi.IntInput) PodSecurityPolicyTypeOutput

func (PodSecurityPolicyTypeArrayOutput) ToPodSecurityPolicyTypeArrayOutput 

func (o PodSecurityPolicyTypeArrayOutput) ToPodSecurityPolicyTypeArrayOutput() PodSecurityPolicyTypeArrayOutput

func (PodSecurityPolicyTypeArrayOutput) ToPodSecurityPolicyTypeArrayOutputWithContext 

func (o PodSecurityPolicyTypeArrayOutput) ToPodSecurityPolicyTypeArrayOutputWithContext(ctx context.Context) PodSecurityPolicyTypeArrayOutput

type PodSecurityPolicyTypeInput 

type PodSecurityPolicyTypeInput interface {
	pulumi.Input

	ToPodSecurityPolicyTypeOutput() PodSecurityPolicyTypeOutput
	ToPodSecurityPolicyTypeOutputWithContext(context.Context) PodSecurityPolicyTypeOutput
}

PodSecurityPolicyTypeInput is an input type that accepts PodSecurityPolicyTypeArgs and PodSecurityPolicyTypeOutput values. You can construct a concrete instance of `PodSecurityPolicyTypeInput` via: 

PodSecurityPolicyTypeArgs{...}

type PodSecurityPolicyTypeOutput 

type PodSecurityPolicyTypeOutput struct{ *pulumi.OutputState }

PodSecurityPolicy governs the ability to make requests that affect the Security Context that will be applied to a pod and container. Deprecated in 1.21.

func (PodSecurityPolicyTypeOutput) ApiVersion 

func (o PodSecurityPolicyTypeOutput) ApiVersion() pulumi.StringPtrOutput

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

func (PodSecurityPolicyTypeOutput) ElementType 

func (PodSecurityPolicyTypeOutput) ElementType() reflect.Type

func (PodSecurityPolicyTypeOutput) Kind 

func (o PodSecurityPolicyTypeOutput) Kind() pulumi.StringPtrOutput

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

func (PodSecurityPolicyTypeOutput) Metadata 

func (o PodSecurityPolicyTypeOutput) Metadata() metav1.ObjectMetaPtrOutput

Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata

func (PodSecurityPolicyTypeOutput) Spec 

func (o PodSecurityPolicyTypeOutput) Spec() PodSecurityPolicySpecPtrOutput

spec defines the policy enforced.

func (PodSecurityPolicyTypeOutput) ToPodSecurityPolicyTypeOutput 

func (o PodSecurityPolicyTypeOutput) ToPodSecurityPolicyTypeOutput() PodSecurityPolicyTypeOutput

func (PodSecurityPolicyTypeOutput) ToPodSecurityPolicyTypeOutputWithContext 

func (o PodSecurityPolicyTypeOutput) ToPodSecurityPolicyTypeOutputWithContext(ctx context.Context) PodSecurityPolicyTypeOutput

type RunAsGroupStrategyOptions 

type RunAsGroupStrategyOptions struct {
	// ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.
	Ranges []IDRange `pulumi:"ranges"`
	// rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
	Rule string `pulumi:"rule"`
}

RunAsGroupStrategyOptions defines the strategy type and any options used to create the strategy.

type RunAsGroupStrategyOptionsArgs 

type RunAsGroupStrategyOptionsArgs struct {
	// ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.
	Ranges IDRangeArrayInput `pulumi:"ranges"`
	// rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
	Rule pulumi.StringInput `pulumi:"rule"`
}

RunAsGroupStrategyOptions defines the strategy type and any options used to create the strategy.

func (RunAsGroupStrategyOptionsArgs) ElementType 

func (RunAsGroupStrategyOptionsArgs) ElementType() reflect.Type

func (RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsOutput 

func (i RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsOutput() RunAsGroupStrategyOptionsOutput

func (RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsOutputWithContext 

func (i RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsOutputWithContext(ctx context.Context) RunAsGroupStrategyOptionsOutput

func (RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsPtrOutput 

func (i RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsPtrOutput() RunAsGroupStrategyOptionsPtrOutput

func (RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsPtrOutputWithContext 

func (i RunAsGroupStrategyOptionsArgs) ToRunAsGroupStrategyOptionsPtrOutputWithContext(ctx context.Context) RunAsGroupStrategyOptionsPtrOutput

type RunAsGroupStrategyOptionsInput 

type RunAsGroupStrategyOptionsInput interface {
	pulumi.Input

	ToRunAsGroupStrategyOptionsOutput() RunAsGroupStrategyOptionsOutput
	ToRunAsGroupStrategyOptionsOutputWithContext(context.Context) RunAsGroupStrategyOptionsOutput
}

RunAsGroupStrategyOptionsInput is an input type that accepts RunAsGroupStrategyOptionsArgs and RunAsGroupStrategyOptionsOutput values. You can construct a concrete instance of `RunAsGroupStrategyOptionsInput` via: 

RunAsGroupStrategyOptionsArgs{...}

type RunAsGroupStrategyOptionsOutput 

type RunAsGroupStrategyOptionsOutput struct{ *pulumi.OutputState }

RunAsGroupStrategyOptions defines the strategy type and any options used to create the strategy.

func (RunAsGroupStrategyOptionsOutput) ElementType 

func (RunAsGroupStrategyOptionsOutput) ElementType() reflect.Type

func (RunAsGroupStrategyOptionsOutput) Ranges 

func (o RunAsGroupStrategyOptionsOutput) Ranges() IDRangeArrayOutput

ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.

func (RunAsGroupStrategyOptionsOutput) Rule 

func (o RunAsGroupStrategyOptionsOutput) Rule() pulumi.StringOutput

rule is the strategy that will dictate the allowable RunAsGroup values that may be set.

func (RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsOutput 

func (o RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsOutput() RunAsGroupStrategyOptionsOutput

func (RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsOutputWithContext 

func (o RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsOutputWithContext(ctx context.Context) RunAsGroupStrategyOptionsOutput

func (RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsPtrOutput 

func (o RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsPtrOutput() RunAsGroupStrategyOptionsPtrOutput

func (RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsPtrOutputWithContext 

func (o RunAsGroupStrategyOptionsOutput) ToRunAsGroupStrategyOptionsPtrOutputWithContext(ctx context.Context) RunAsGroupStrategyOptionsPtrOutput

type RunAsGroupStrategyOptionsPtrInput 

type RunAsGroupStrategyOptionsPtrInput interface {
	pulumi.Input

	ToRunAsGroupStrategyOptionsPtrOutput() RunAsGroupStrategyOptionsPtrOutput
	ToRunAsGroupStrategyOptionsPtrOutputWithContext(context.Context) RunAsGroupStrategyOptionsPtrOutput
}

RunAsGroupStrategyOptionsPtrInput is an input type that accepts RunAsGroupStrategyOptionsArgs, RunAsGroupStrategyOptionsPtr and RunAsGroupStrategyOptionsPtrOutput values. You can construct a concrete instance of `RunAsGroupStrategyOptionsPtrInput` via: 

        RunAsGroupStrategyOptionsArgs{...}

or:

        nil

func RunAsGroupStrategyOptionsPtr 

func RunAsGroupStrategyOptionsPtr(v *RunAsGroupStrategyOptionsArgs) RunAsGroupStrategyOptionsPtrInput

type RunAsGroupStrategyOptionsPtrOutput 

type RunAsGroupStrategyOptionsPtrOutput struct{ *pulumi.OutputState }

func (RunAsGroupStrategyOptionsPtrOutput) Elem 

func (o RunAsGroupStrategyOptionsPtrOutput) Elem() RunAsGroupStrategyOptionsOutput

func (RunAsGroupStrategyOptionsPtrOutput) ElementType 

func (RunAsGroupStrategyOptionsPtrOutput) ElementType() reflect.Type

func (RunAsGroupStrategyOptionsPtrOutput) Ranges 

func (o RunAsGroupStrategyOptionsPtrOutput) Ranges() IDRangeArrayOutput

ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.

func (RunAsGroupStrategyOptionsPtrOutput) Rule 

func (o RunAsGroupStrategyOptionsPtrOutput) Rule() pulumi.StringPtrOutput

rule is the strategy that will dictate the allowable RunAsGroup values that may be set.

func (RunAsGroupStrategyOptionsPtrOutput) ToRunAsGroupStrategyOptionsPtrOutput 

func (o RunAsGroupStrategyOptionsPtrOutput) ToRunAsGroupStrategyOptionsPtrOutput() RunAsGroupStrategyOptionsPtrOutput

func (RunAsGroupStrategyOptionsPtrOutput) ToRunAsGroupStrategyOptionsPtrOutputWithContext 

func (o RunAsGroupStrategyOptionsPtrOutput) ToRunAsGroupStrategyOptionsPtrOutputWithContext(ctx context.Context) RunAsGroupStrategyOptionsPtrOutput

type RunAsUserStrategyOptions 

type RunAsUserStrategyOptions struct {
	// ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.
	Ranges []IDRange `pulumi:"ranges"`
	// rule is the strategy that will dictate the allowable RunAsUser values that may be set.
	Rule string `pulumi:"rule"`
}

RunAsUserStrategyOptions defines the strategy type and any options used to create the strategy.

type RunAsUserStrategyOptionsArgs 

type RunAsUserStrategyOptionsArgs struct {
	// ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.
	Ranges IDRangeArrayInput `pulumi:"ranges"`
	// rule is the strategy that will dictate the allowable RunAsUser values that may be set.
	Rule pulumi.StringInput `pulumi:"rule"`
}

RunAsUserStrategyOptions defines the strategy type and any options used to create the strategy.

func (RunAsUserStrategyOptionsArgs) ElementType 

func (RunAsUserStrategyOptionsArgs) ElementType() reflect.Type

func (RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsOutput 

func (i RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsOutput() RunAsUserStrategyOptionsOutput

func (RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsOutputWithContext 

func (i RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsOutputWithContext(ctx context.Context) RunAsUserStrategyOptionsOutput

func (RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsPtrOutput 

func (i RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsPtrOutput() RunAsUserStrategyOptionsPtrOutput

func (RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsPtrOutputWithContext 

func (i RunAsUserStrategyOptionsArgs) ToRunAsUserStrategyOptionsPtrOutputWithContext(ctx context.Context) RunAsUserStrategyOptionsPtrOutput

type RunAsUserStrategyOptionsInput 

type RunAsUserStrategyOptionsInput interface {
	pulumi.Input

	ToRunAsUserStrategyOptionsOutput() RunAsUserStrategyOptionsOutput
	ToRunAsUserStrategyOptionsOutputWithContext(context.Context) RunAsUserStrategyOptionsOutput
}

RunAsUserStrategyOptionsInput is an input type that accepts RunAsUserStrategyOptionsArgs and RunAsUserStrategyOptionsOutput values. You can construct a concrete instance of `RunAsUserStrategyOptionsInput` via: 

RunAsUserStrategyOptionsArgs{...}

type RunAsUserStrategyOptionsOutput 

type RunAsUserStrategyOptionsOutput struct{ *pulumi.OutputState }

RunAsUserStrategyOptions defines the strategy type and any options used to create the strategy.

func (RunAsUserStrategyOptionsOutput) ElementType 

func (RunAsUserStrategyOptionsOutput) ElementType() reflect.Type

func (RunAsUserStrategyOptionsOutput) Ranges 

func (o RunAsUserStrategyOptionsOutput) Ranges() IDRangeArrayOutput

ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.

func (RunAsUserStrategyOptionsOutput) Rule 

func (o RunAsUserStrategyOptionsOutput) Rule() pulumi.StringOutput

rule is the strategy that will dictate the allowable RunAsUser values that may be set.

func (RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsOutput 

func (o RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsOutput() RunAsUserStrategyOptionsOutput

func (RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsOutputWithContext 

func (o RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsOutputWithContext(ctx context.Context) RunAsUserStrategyOptionsOutput

func (RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsPtrOutput 

func (o RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsPtrOutput() RunAsUserStrategyOptionsPtrOutput

func (RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsPtrOutputWithContext 

func (o RunAsUserStrategyOptionsOutput) ToRunAsUserStrategyOptionsPtrOutputWithContext(ctx context.Context) RunAsUserStrategyOptionsPtrOutput

type RunAsUserStrategyOptionsPtrInput 

type RunAsUserStrategyOptionsPtrInput interface {
	pulumi.Input

	ToRunAsUserStrategyOptionsPtrOutput() RunAsUserStrategyOptionsPtrOutput
	ToRunAsUserStrategyOptionsPtrOutputWithContext(context.Context) RunAsUserStrategyOptionsPtrOutput
}

RunAsUserStrategyOptionsPtrInput is an input type that accepts RunAsUserStrategyOptionsArgs, RunAsUserStrategyOptionsPtr and RunAsUserStrategyOptionsPtrOutput values. You can construct a concrete instance of `RunAsUserStrategyOptionsPtrInput` via: 

        RunAsUserStrategyOptionsArgs{...}

or:

        nil

func RunAsUserStrategyOptionsPtr 

func RunAsUserStrategyOptionsPtr(v *RunAsUserStrategyOptionsArgs) RunAsUserStrategyOptionsPtrInput

type RunAsUserStrategyOptionsPtrOutput 

type RunAsUserStrategyOptionsPtrOutput struct{ *pulumi.OutputState }

func (RunAsUserStrategyOptionsPtrOutput) Elem 

func (o RunAsUserStrategyOptionsPtrOutput) Elem() RunAsUserStrategyOptionsOutput

func (RunAsUserStrategyOptionsPtrOutput) ElementType 

func (RunAsUserStrategyOptionsPtrOutput) ElementType() reflect.Type

func (RunAsUserStrategyOptionsPtrOutput) Ranges 

func (o RunAsUserStrategyOptionsPtrOutput) Ranges() IDRangeArrayOutput

ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.

func (RunAsUserStrategyOptionsPtrOutput) Rule 

func (o RunAsUserStrategyOptionsPtrOutput) Rule() pulumi.StringPtrOutput

rule is the strategy that will dictate the allowable RunAsUser values that may be set.

func (RunAsUserStrategyOptionsPtrOutput) ToRunAsUserStrategyOptionsPtrOutput 

func (o RunAsUserStrategyOptionsPtrOutput) ToRunAsUserStrategyOptionsPtrOutput() RunAsUserStrategyOptionsPtrOutput

func (RunAsUserStrategyOptionsPtrOutput) ToRunAsUserStrategyOptionsPtrOutputWithContext 

func (o RunAsUserStrategyOptionsPtrOutput) ToRunAsUserStrategyOptionsPtrOutputWithContext(ctx context.Context) RunAsUserStrategyOptionsPtrOutput

type RuntimeClassStrategyOptions 

type RuntimeClassStrategyOptions struct {
	// allowedRuntimeClassNames is an allowlist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.
	AllowedRuntimeClassNames []string `pulumi:"allowedRuntimeClassNames"`
	// defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.
	DefaultRuntimeClassName *string `pulumi:"defaultRuntimeClassName"`
}

RuntimeClassStrategyOptions define the strategy that will dictate the allowable RuntimeClasses for a pod.

type RuntimeClassStrategyOptionsArgs 

type RuntimeClassStrategyOptionsArgs struct {
	// allowedRuntimeClassNames is an allowlist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.
	AllowedRuntimeClassNames pulumi.StringArrayInput `pulumi:"allowedRuntimeClassNames"`
	// defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.
	DefaultRuntimeClassName pulumi.StringPtrInput `pulumi:"defaultRuntimeClassName"`
}

RuntimeClassStrategyOptions define the strategy that will dictate the allowable RuntimeClasses for a pod.

func (RuntimeClassStrategyOptionsArgs) ElementType 

func (RuntimeClassStrategyOptionsArgs) ElementType() reflect.Type

func (RuntimeClassStrategyOptionsArgs) ToRuntimeClassStrategyOptionsOutput 

func (i RuntimeClassStrategyOptionsArgs) ToRuntimeClassStrategyOptionsOutput() RuntimeClassStrategyOptionsOutput

func (RuntimeClassStrategyOptionsArgs) ToRuntimeClassStrategyOptionsOutputWithContext 

func (i RuntimeClassStrategyOptionsArgs) ToRuntimeClassStrategyOptionsOutputWithContext(ctx context.Context) RuntimeClassStrategyOptionsOutput

func (RuntimeClassStrategyOptionsArgs) ToRuntimeClassStrategyOptionsPtrOutput 

func (i RuntimeClassStrategyOptionsArgs) ToRuntimeClassStrategyOptionsPtrOutput() RuntimeClassStrategyOptionsPtrOutput

func (RuntimeClassStrategyOptionsArgs) ToRuntimeClassStrategyOptionsPtrOutputWithContext 

func (i RuntimeClassStrategyOptionsArgs) ToRuntimeClassStrategyOptionsPtrOutputWithContext(ctx context.Context) RuntimeClassStrategyOptionsPtrOutput

type RuntimeClassStrategyOptionsInput 

type RuntimeClassStrategyOptionsInput interface {
	pulumi.Input

	ToRuntimeClassStrategyOptionsOutput() RuntimeClassStrategyOptionsOutput
	ToRuntimeClassStrategyOptionsOutputWithContext(context.Context) RuntimeClassStrategyOptionsOutput
}

RuntimeClassStrategyOptionsInput is an input type that accepts RuntimeClassStrategyOptionsArgs and RuntimeClassStrategyOptionsOutput values. You can construct a concrete instance of `RuntimeClassStrategyOptionsInput` via: 

RuntimeClassStrategyOptionsArgs{...}

type RuntimeClassStrategyOptionsOutput 

type RuntimeClassStrategyOptionsOutput struct{ *pulumi.OutputState }

RuntimeClassStrategyOptions define the strategy that will dictate the allowable RuntimeClasses for a pod.

func (RuntimeClassStrategyOptionsOutput) AllowedRuntimeClassNames 

func (o RuntimeClassStrategyOptionsOutput) AllowedRuntimeClassNames() pulumi.StringArrayOutput

allowedRuntimeClassNames is an allowlist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.

func (RuntimeClassStrategyOptionsOutput) DefaultRuntimeClassName 

func (o RuntimeClassStrategyOptionsOutput) DefaultRuntimeClassName() pulumi.StringPtrOutput

defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.

func (RuntimeClassStrategyOptionsOutput) ElementType 

func (RuntimeClassStrategyOptionsOutput) ElementType() reflect.Type

func (RuntimeClassStrategyOptionsOutput) ToRuntimeClassStrategyOptionsOutput 

func (o RuntimeClassStrategyOptionsOutput) ToRuntimeClassStrategyOptionsOutput() RuntimeClassStrategyOptionsOutput

func (RuntimeClassStrategyOptionsOutput) ToRuntimeClassStrategyOptionsOutputWithContext 

func (o RuntimeClassStrategyOptionsOutput) ToRuntimeClassStrategyOptionsOutputWithContext(ctx context.Context) RuntimeClassStrategyOptionsOutput

func (RuntimeClassStrategyOptionsOutput) ToRuntimeClassStrategyOptionsPtrOutput 

func (o RuntimeClassStrategyOptionsOutput) ToRuntimeClassStrategyOptionsPtrOutput() RuntimeClassStrategyOptionsPtrOutput

func (RuntimeClassStrategyOptionsOutput) ToRuntimeClassStrategyOptionsPtrOutputWithContext 

func (o RuntimeClassStrategyOptionsOutput) ToRuntimeClassStrategyOptionsPtrOutputWithContext(ctx context.Context) RuntimeClassStrategyOptionsPtrOutput

type RuntimeClassStrategyOptionsPtrInput 

type RuntimeClassStrategyOptionsPtrInput interface {
	pulumi.Input

	ToRuntimeClassStrategyOptionsPtrOutput() RuntimeClassStrategyOptionsPtrOutput
	ToRuntimeClassStrategyOptionsPtrOutputWithContext(context.Context) RuntimeClassStrategyOptionsPtrOutput
}

RuntimeClassStrategyOptionsPtrInput is an input type that accepts RuntimeClassStrategyOptionsArgs, RuntimeClassStrategyOptionsPtr and RuntimeClassStrategyOptionsPtrOutput values. You can construct a concrete instance of `RuntimeClassStrategyOptionsPtrInput` via: 

        RuntimeClassStrategyOptionsArgs{...}

or:

        nil

func RuntimeClassStrategyOptionsPtr 

func RuntimeClassStrategyOptionsPtr(v *RuntimeClassStrategyOptionsArgs) RuntimeClassStrategyOptionsPtrInput

type RuntimeClassStrategyOptionsPtrOutput 

type RuntimeClassStrategyOptionsPtrOutput struct{ *pulumi.OutputState }

func (RuntimeClassStrategyOptionsPtrOutput) AllowedRuntimeClassNames 

func (o RuntimeClassStrategyOptionsPtrOutput) AllowedRuntimeClassNames() pulumi.StringArrayOutput

allowedRuntimeClassNames is an allowlist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.

func (RuntimeClassStrategyOptionsPtrOutput) DefaultRuntimeClassName 

func (o RuntimeClassStrategyOptionsPtrOutput) DefaultRuntimeClassName() pulumi.StringPtrOutput

defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.

func (RuntimeClassStrategyOptionsPtrOutput) Elem 

func (o RuntimeClassStrategyOptionsPtrOutput) Elem() RuntimeClassStrategyOptionsOutput

func (RuntimeClassStrategyOptionsPtrOutput) ElementType 

func (RuntimeClassStrategyOptionsPtrOutput) ElementType() reflect.Type

func (RuntimeClassStrategyOptionsPtrOutput) ToRuntimeClassStrategyOptionsPtrOutput 

func (o RuntimeClassStrategyOptionsPtrOutput) ToRuntimeClassStrategyOptionsPtrOutput() RuntimeClassStrategyOptionsPtrOutput

func (RuntimeClassStrategyOptionsPtrOutput) ToRuntimeClassStrategyOptionsPtrOutputWithContext 

func (o RuntimeClassStrategyOptionsPtrOutput) ToRuntimeClassStrategyOptionsPtrOutputWithContext(ctx context.Context) RuntimeClassStrategyOptionsPtrOutput

type SELinuxStrategyOptions 

type SELinuxStrategyOptions struct {
	// rule is the strategy that will dictate the allowable labels that may be set.
	Rule string `pulumi:"rule"`
	// seLinuxOptions required to run as; required for MustRunAs More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
	SeLinuxOptions *corev1.SELinuxOptions `pulumi:"seLinuxOptions"`
}

SELinuxStrategyOptions defines the strategy type and any options used to create the strategy.

type SELinuxStrategyOptionsArgs 

type SELinuxStrategyOptionsArgs struct {
	// rule is the strategy that will dictate the allowable labels that may be set.
	Rule pulumi.StringInput `pulumi:"rule"`
	// seLinuxOptions required to run as; required for MustRunAs More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
	SeLinuxOptions corev1.SELinuxOptionsPtrInput `pulumi:"seLinuxOptions"`
}

SELinuxStrategyOptions defines the strategy type and any options used to create the strategy.

func (SELinuxStrategyOptionsArgs) ElementType 

func (SELinuxStrategyOptionsArgs) ElementType() reflect.Type

func (SELinuxStrategyOptionsArgs) ToSELinuxStrategyOptionsOutput 

func (i SELinuxStrategyOptionsArgs) ToSELinuxStrategyOptionsOutput() SELinuxStrategyOptionsOutput

func (SELinuxStrategyOptionsArgs) ToSELinuxStrategyOptionsOutputWithContext 

func (i SELinuxStrategyOptionsArgs) ToSELinuxStrategyOptionsOutputWithContext(ctx context.Context) SELinuxStrategyOptionsOutput

func (SELinuxStrategyOptionsArgs) ToSELinuxStrategyOptionsPtrOutput 

func (i SELinuxStrategyOptionsArgs) ToSELinuxStrategyOptionsPtrOutput() SELinuxStrategyOptionsPtrOutput

func (SELinuxStrategyOptionsArgs) ToSELinuxStrategyOptionsPtrOutputWithContext 

func (i SELinuxStrategyOptionsArgs) ToSELinuxStrategyOptionsPtrOutputWithContext(ctx context.Context) SELinuxStrategyOptionsPtrOutput

type SELinuxStrategyOptionsInput 

type SELinuxStrategyOptionsInput interface {
	pulumi.Input

	ToSELinuxStrategyOptionsOutput() SELinuxStrategyOptionsOutput
	ToSELinuxStrategyOptionsOutputWithContext(context.Context) SELinuxStrategyOptionsOutput
}

SELinuxStrategyOptionsInput is an input type that accepts SELinuxStrategyOptionsArgs and SELinuxStrategyOptionsOutput values. You can construct a concrete instance of `SELinuxStrategyOptionsInput` via: 

SELinuxStrategyOptionsArgs{...}

type SELinuxStrategyOptionsOutput 

type SELinuxStrategyOptionsOutput struct{ *pulumi.OutputState }

SELinuxStrategyOptions defines the strategy type and any options used to create the strategy.

func (SELinuxStrategyOptionsOutput) ElementType 

func (SELinuxStrategyOptionsOutput) ElementType() reflect.Type

func (SELinuxStrategyOptionsOutput) Rule 

func (o SELinuxStrategyOptionsOutput) Rule() pulumi.StringOutput

rule is the strategy that will dictate the allowable labels that may be set.

func (SELinuxStrategyOptionsOutput) SeLinuxOptions 

func (o SELinuxStrategyOptionsOutput) SeLinuxOptions() corev1.SELinuxOptionsPtrOutput

seLinuxOptions required to run as; required for MustRunAs More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/

func (SELinuxStrategyOptionsOutput) ToSELinuxStrategyOptionsOutput 

func (o SELinuxStrategyOptionsOutput) ToSELinuxStrategyOptionsOutput() SELinuxStrategyOptionsOutput

func (SELinuxStrategyOptionsOutput) ToSELinuxStrategyOptionsOutputWithContext 

func (o SELinuxStrategyOptionsOutput) ToSELinuxStrategyOptionsOutputWithContext(ctx context.Context) SELinuxStrategyOptionsOutput

func (SELinuxStrategyOptionsOutput) ToSELinuxStrategyOptionsPtrOutput 

func (o SELinuxStrategyOptionsOutput) ToSELinuxStrategyOptionsPtrOutput() SELinuxStrategyOptionsPtrOutput

func (SELinuxStrategyOptionsOutput) ToSELinuxStrategyOptionsPtrOutputWithContext 

func (o SELinuxStrategyOptionsOutput) ToSELinuxStrategyOptionsPtrOutputWithContext(ctx context.Context) SELinuxStrategyOptionsPtrOutput

type SELinuxStrategyOptionsPtrInput 

type SELinuxStrategyOptionsPtrInput interface {
	pulumi.Input

	ToSELinuxStrategyOptionsPtrOutput() SELinuxStrategyOptionsPtrOutput
	ToSELinuxStrategyOptionsPtrOutputWithContext(context.Context) SELinuxStrategyOptionsPtrOutput
}

SELinuxStrategyOptionsPtrInput is an input type that accepts SELinuxStrategyOptionsArgs, SELinuxStrategyOptionsPtr and SELinuxStrategyOptionsPtrOutput values. You can construct a concrete instance of `SELinuxStrategyOptionsPtrInput` via: 

        SELinuxStrategyOptionsArgs{...}

or:

        nil

func SELinuxStrategyOptionsPtr 

func SELinuxStrategyOptionsPtr(v *SELinuxStrategyOptionsArgs) SELinuxStrategyOptionsPtrInput

type SELinuxStrategyOptionsPtrOutput 

type SELinuxStrategyOptionsPtrOutput struct{ *pulumi.OutputState }

func (SELinuxStrategyOptionsPtrOutput) Elem 

func (o SELinuxStrategyOptionsPtrOutput) Elem() SELinuxStrategyOptionsOutput

func (SELinuxStrategyOptionsPtrOutput) ElementType 

func (SELinuxStrategyOptionsPtrOutput) ElementType() reflect.Type

func (SELinuxStrategyOptionsPtrOutput) Rule 

func (o SELinuxStrategyOptionsPtrOutput) Rule() pulumi.StringPtrOutput

rule is the strategy that will dictate the allowable labels that may be set.

func (SELinuxStrategyOptionsPtrOutput) SeLinuxOptions 

func (o SELinuxStrategyOptionsPtrOutput) SeLinuxOptions() corev1.SELinuxOptionsPtrOutput

seLinuxOptions required to run as; required for MustRunAs More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/

func (SELinuxStrategyOptionsPtrOutput) ToSELinuxStrategyOptionsPtrOutput 

func (o SELinuxStrategyOptionsPtrOutput) ToSELinuxStrategyOptionsPtrOutput() SELinuxStrategyOptionsPtrOutput

func (SELinuxStrategyOptionsPtrOutput) ToSELinuxStrategyOptionsPtrOutputWithContext 

func (o SELinuxStrategyOptionsPtrOutput) ToSELinuxStrategyOptionsPtrOutputWithContext(ctx context.Context) SELinuxStrategyOptionsPtrOutput

type SupplementalGroupsStrategyOptions 

type SupplementalGroupsStrategyOptions struct {
	// ranges are the allowed ranges of supplemental groups.  If you would like to force a single supplemental group then supply a single range with the same start and end. Required for MustRunAs.
	Ranges []IDRange `pulumi:"ranges"`
	// rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.
	Rule *string `pulumi:"rule"`
}

SupplementalGroupsStrategyOptions defines the strategy type and options used to create the strategy.

type SupplementalGroupsStrategyOptionsArgs 

type SupplementalGroupsStrategyOptionsArgs struct {
	// ranges are the allowed ranges of supplemental groups.  If you would like to force a single supplemental group then supply a single range with the same start and end. Required for MustRunAs.
	Ranges IDRangeArrayInput `pulumi:"ranges"`
	// rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.
	Rule pulumi.StringPtrInput `pulumi:"rule"`
}

SupplementalGroupsStrategyOptions defines the strategy type and options used to create the strategy.

func (SupplementalGroupsStrategyOptionsArgs) ElementType 

func (SupplementalGroupsStrategyOptionsArgs) ElementType() reflect.Type

func (SupplementalGroupsStrategyOptionsArgs) ToSupplementalGroupsStrategyOptionsOutput 

func (i SupplementalGroupsStrategyOptionsArgs) ToSupplementalGroupsStrategyOptionsOutput() SupplementalGroupsStrategyOptionsOutput

func (SupplementalGroupsStrategyOptionsArgs) ToSupplementalGroupsStrategyOptionsOutputWithContext 

func (i SupplementalGroupsStrategyOptionsArgs) ToSupplementalGroupsStrategyOptionsOutputWithContext(ctx context.Context) SupplementalGroupsStrategyOptionsOutput

func (SupplementalGroupsStrategyOptionsArgs) ToSupplementalGroupsStrategyOptionsPtrOutput 

func (i SupplementalGroupsStrategyOptionsArgs) ToSupplementalGroupsStrategyOptionsPtrOutput() SupplementalGroupsStrategyOptionsPtrOutput

func (SupplementalGroupsStrategyOptionsArgs) ToSupplementalGroupsStrategyOptionsPtrOutputWithContext 

func (i SupplementalGroupsStrategyOptionsArgs) ToSupplementalGroupsStrategyOptionsPtrOutputWithContext(ctx context.Context) SupplementalGroupsStrategyOptionsPtrOutput

type SupplementalGroupsStrategyOptionsInput 

type SupplementalGroupsStrategyOptionsInput interface {
	pulumi.Input

	ToSupplementalGroupsStrategyOptionsOutput() SupplementalGroupsStrategyOptionsOutput
	ToSupplementalGroupsStrategyOptionsOutputWithContext(context.Context) SupplementalGroupsStrategyOptionsOutput
}

SupplementalGroupsStrategyOptionsInput is an input type that accepts SupplementalGroupsStrategyOptionsArgs and SupplementalGroupsStrategyOptionsOutput values. You can construct a concrete instance of `SupplementalGroupsStrategyOptionsInput` via: 

SupplementalGroupsStrategyOptionsArgs{...}

type SupplementalGroupsStrategyOptionsOutput 

type SupplementalGroupsStrategyOptionsOutput struct{ *pulumi.OutputState }

SupplementalGroupsStrategyOptions defines the strategy type and options used to create the strategy.

func (SupplementalGroupsStrategyOptionsOutput) ElementType 

func (SupplementalGroupsStrategyOptionsOutput) ElementType() reflect.Type

func (SupplementalGroupsStrategyOptionsOutput) Ranges 

func (o SupplementalGroupsStrategyOptionsOutput) Ranges() IDRangeArrayOutput

ranges are the allowed ranges of supplemental groups. If you would like to force a single supplemental group then supply a single range with the same start and end. Required for MustRunAs.

func (SupplementalGroupsStrategyOptionsOutput) Rule 

func (o SupplementalGroupsStrategyOptionsOutput) Rule() pulumi.StringPtrOutput

rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.

func (SupplementalGroupsStrategyOptionsOutput) ToSupplementalGroupsStrategyOptionsOutput 

func (o SupplementalGroupsStrategyOptionsOutput) ToSupplementalGroupsStrategyOptionsOutput() SupplementalGroupsStrategyOptionsOutput

func (SupplementalGroupsStrategyOptionsOutput) ToSupplementalGroupsStrategyOptionsOutputWithContext 

func (o SupplementalGroupsStrategyOptionsOutput) ToSupplementalGroupsStrategyOptionsOutputWithContext(ctx context.Context) SupplementalGroupsStrategyOptionsOutput

func (SupplementalGroupsStrategyOptionsOutput) ToSupplementalGroupsStrategyOptionsPtrOutput 

func (o SupplementalGroupsStrategyOptionsOutput) ToSupplementalGroupsStrategyOptionsPtrOutput() SupplementalGroupsStrategyOptionsPtrOutput

func (SupplementalGroupsStrategyOptionsOutput) ToSupplementalGroupsStrategyOptionsPtrOutputWithContext 

func (o SupplementalGroupsStrategyOptionsOutput) ToSupplementalGroupsStrategyOptionsPtrOutputWithContext(ctx context.Context) SupplementalGroupsStrategyOptionsPtrOutput

type SupplementalGroupsStrategyOptionsPtrInput 

type SupplementalGroupsStrategyOptionsPtrInput interface {
	pulumi.Input

	ToSupplementalGroupsStrategyOptionsPtrOutput() SupplementalGroupsStrategyOptionsPtrOutput
	ToSupplementalGroupsStrategyOptionsPtrOutputWithContext(context.Context) SupplementalGroupsStrategyOptionsPtrOutput
}

SupplementalGroupsStrategyOptionsPtrInput is an input type that accepts SupplementalGroupsStrategyOptionsArgs, SupplementalGroupsStrategyOptionsPtr and SupplementalGroupsStrategyOptionsPtrOutput values. You can construct a concrete instance of `SupplementalGroupsStrategyOptionsPtrInput` via: 

        SupplementalGroupsStrategyOptionsArgs{...}

or:

        nil

func SupplementalGroupsStrategyOptionsPtr 

func SupplementalGroupsStrategyOptionsPtr(v *SupplementalGroupsStrategyOptionsArgs) SupplementalGroupsStrategyOptionsPtrInput

type SupplementalGroupsStrategyOptionsPtrOutput 

type SupplementalGroupsStrategyOptionsPtrOutput struct{ *pulumi.OutputState }

func (SupplementalGroupsStrategyOptionsPtrOutput) Elem 

func (o SupplementalGroupsStrategyOptionsPtrOutput) Elem() SupplementalGroupsStrategyOptionsOutput

func (SupplementalGroupsStrategyOptionsPtrOutput) ElementType 

func (SupplementalGroupsStrategyOptionsPtrOutput) ElementType() reflect.Type

func (SupplementalGroupsStrategyOptionsPtrOutput) Ranges 

func (o SupplementalGroupsStrategyOptionsPtrOutput) Ranges() IDRangeArrayOutput

ranges are the allowed ranges of supplemental groups. If you would like to force a single supplemental group then supply a single range with the same start and end. Required for MustRunAs.

func (SupplementalGroupsStrategyOptionsPtrOutput) Rule 

func (o SupplementalGroupsStrategyOptionsPtrOutput) Rule() pulumi.StringPtrOutput

rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.

func (SupplementalGroupsStrategyOptionsPtrOutput) ToSupplementalGroupsStrategyOptionsPtrOutput 

func (o SupplementalGroupsStrategyOptionsPtrOutput) ToSupplementalGroupsStrategyOptionsPtrOutput() SupplementalGroupsStrategyOptionsPtrOutput

func (SupplementalGroupsStrategyOptionsPtrOutput) ToSupplementalGroupsStrategyOptionsPtrOutputWithContext 

func (o SupplementalGroupsStrategyOptionsPtrOutput) ToSupplementalGroupsStrategyOptionsPtrOutputWithContext(ctx context.Context) SupplementalGroupsStrategyOptionsPtrOutput

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.